Sujet Précédent Sujet Suivant

Message de la page web : ity.im ads - le supprimer

Fylis Messages postés 28 Statut Membre -  
 Utilisateur anonyme -
Bonjour,

En novembre dernier, mon ordinateur a été infecté par un virus. Avec quelques manips, j'ai réussi à le remettre en état. Sauf que j'ai quelques saletés qui ont dû rester car depuis j'ai des petits soucis :

1. Catalyst Control Center ne démarre plus. J'ai essayé de le réparer, de le mettre à jour, rien à faire. Après plusieurs manips sans résultat, j'ai finalement décidé de le supprimer. Mon ordi semble vivre plutôt bien sans lui...

2. Quand je suis sur internet, très souvent, quand je veux aller sur un site en particulier (hotmail ou autre), cela me renvoie finalement vers un tout autre site (des dentistes à malte, ebay etc etc). J'ai désinstallé et réinstallé plusieurs fois Firefox, je l'ai réinitialisé plusieurs fois aussi, rien à faire, ça continue. (je me demande si le problème n'est pas lié à IE que je n'ai plus dans mes programmes installés, mais qui est toujours présent sur :C sans que j'arrive à le supprimer...)

3. Depuis mardi, j'ai une fenêtre "message de la page web" qui se lance dès que je démarre mon ordi. Ça me marque : "pleaes remove all ity.im ads from your website". D-s que j'essaie de la fermer, j'en ai trois autres qui s'ouvrent dans la foulée. Par contre, si je n'y touche pas, elle reste là et ne dérange personne. (Bizarrement, ça a commencé le jour où je me suis inscrite sur Hootsuite...).

A part ça, tout semble aller bien. Mon ordi démarre comme il faut, mes logiciels fonctionnent tous normalement et Avast ne détecte aucun virus (les fichiers infectés ont été supprimés, j'ai fais plusieurs scans au démarrage, rien n'est détecté).

Si quelqu'un a une idée pour que je corrige tout ça, je lui en serai bien reconnaissante. Ça ne me dérange aucunement pour travailler sur l'ordi, mais c'est quand même gênant tous ces pop-ups...

Merci d'avance !

PS : Si ça peut servir, voilà les propriétés de mon ordi :
Sony Vaio : Windows 7, Edition familiale Premium, 64 bits
Processeur : Intel Core i3 CPU, M370 @ 2.40GHz

PS 2 : Je ne sais pas du tout si j'ai posté au bon endroit : je l'ai mis dans "Internet" car les problèmes surgissent essentiellement quand je me connecte....

A voir également:

53 réponses

Précédent
Réponse 21 / 53
Fylis Messages postés 28 Statut Membre
 
Re,
Voilà le rapport que ça a donné... ça ne semble pas bon... Elle est coriace la bestiole !

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7600

device: opened successfully
user: error reading MBR
error: Read Descripteur non valide
kernel: error reading MBR
0
Réponse 22 / 53
Utilisateur anonyme
 
Re

Si tu disposes d'un logiciel de gravure sinon:

Télécharge et dezippe BurnCDCC.zip --> ftp://terabyteunlimited.com/burncdcc.zip

Ensuite tu télécharges:

http://18382.whserv.de/admin/index.php

Tu graves bien une image (Iso) de ce programme Supergrub
Boote sur le CD et choisis avec les flèches de ton clavier WIN=> MBR & !WIN!

Ensuite tu redémarres sous Windows

@+
0
Réponse 23 / 53
Fylis Messages postés 28 Statut Membre
 
Arf... je suis perdue là : j'ai ça qui apparait quand je veux télécharger Supergrub :

C:\Users\Elphie\Desktop\super_grub_disk_0.9799.iso ne pourra être enregistré car le fichier source ne peut être lu.

Réessayez plus tard ou contactez l'administrateur du serveur.
0
Réponse 24 / 53
Utilisateur anonyme
 
Re

Procède à partir d'un autre PC
Certainement que ce rootkit bloque ce fichier comme les autres outils utilisés

@+
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 53
Fylis Messages postés 28 Statut Membre
 
Re,

J'ai testé, et ça ne veut toujours pas, désolée, ça me fait la même chose sur deux autres PC...
0
Réponse 26 / 53
Utilisateur anonyme
 
Re

essaie à partir ce cette page
https://www.commentcamarche.net/faq/15961-super-grub-disk-live-cd#site-de-telechargement

@+
0
Réponse 27 / 53
Fylis Messages postés 28 Statut Membre
 
Oh ! J'ai bien l'impression que ça a marché ! Je n'ai plus de "message de la page web" qui s'affiche, ni plein de pop-ups rouges d'Avast et mes pages internet chargent bien plus vite !

Et maintenant, j'ai Avast qui vient de m'annoncer (enfin !) qu'un Rootkit avait été trouvé et me recommande de le supprimer sur le champ... C'est chose faite !

Je crois que ça, c'est réglé ! Merci beaucoup :D

J'ai lancé un scan au démarrage, reste plus qu'à espérer que ça règlera le soucis de Windows Update par la même occasion !
0
Réponse 28 / 53
Utilisateur anonyme
 
Re

merci de me tenir au courant

@+
0
Réponse 29 / 53
Fylis Messages postés 28 Statut Membre
 
Bonjour,

Je viens aux nouvelles ! Alors, tout va bien dans l'ensemble, mais je crois que Avast va avoir besoin d'un peu d'aide : j'ai lancé deux fois un scan au démarrage, mais il continue à m'informer que le rootkit MBR:SST (RTK) a été trouvé - il a du mal à le supprimer on dirait. Parmi la longue liste de logiciels, il vaut mieux que j'utilise lequel ?

A bientôt !
0
Réponse 30 / 53
Utilisateur anonyme
 
Bonsoir

Reprend ceci:
https://forums.commentcamarche.net/forum/affich-26935004-message-de-la-page-web-ity-im-ads-le-supprimer?full#14

@+
0
Réponse 31 / 53
Fylis Messages postés 28 Statut Membre
 
Re,

TDSS a accepté de se lancer cette fois, c'est bon signe !
Il n'a trouvé qu'un objet "suspicious", j'ai donc fait "Skip", comme demandé.
Par contre, Avast me détecte bien une menace de haute importance sur la partition 4 si j'ai bien compris : le nom du fichier est MBR:\\.\Physicaldrive0\Partition4....

Voilà déjà le rapport de TDSS :

21:45:38.0973 6140 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:45:39.0322 6140 ============================================================
21:45:39.0322 6140 Current date / time: 2013/01/21 21:45:39.0322
21:45:39.0323 6140 SystemInfo:
21:45:39.0323 6140
21:45:39.0323 6140 OS Version: 6.1.7600 ServicePack: 0.0
21:45:39.0323 6140 Product type: Workstation
21:45:39.0323 6140 ComputerName: PATCH
21:45:39.0323 6140 UserName: Elphie
21:45:39.0323 6140 Windows directory: C:\Windows
21:45:39.0323 6140 System windows directory: C:\Windows
21:45:39.0323 6140 Running under WOW64
21:45:39.0323 6140 Processor architecture: Intel x64
21:45:39.0323 6140 Number of processors: 4
21:45:39.0323 6140 Page size: 0x1000
21:45:39.0323 6140 Boot type: Normal boot
21:45:39.0323 6140 ============================================================
21:45:40.0059 6140 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:45:40.0065 6140 ============================================================
21:45:40.0065 6140 \Device\Harddisk0\DR0:
21:45:40.0066 6140 MBR partitions:
21:45:40.0066 6140 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1AAB800, BlocksNum 0x32000
21:45:40.0066 6140 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1ADD800, BlocksNum 0x388A1030
21:45:40.0066 6140 ============================================================
21:45:40.0090 6140 C: <-> \Device\Harddisk0\DR0\Partition2
21:45:40.0091 6140 ============================================================
21:45:40.0091 6140 Initialize success
21:45:40.0091 6140 ============================================================
21:48:36.0314 0296 ============================================================
21:48:36.0314 0296 Scan started
21:48:36.0314 0296 Mode: Manual;
21:48:36.0314 0296 ============================================================
21:48:36.0763 0296 ================ Scan system memory ========================
21:48:36.0763 0296 System memory - ok
21:48:36.0764 0296 ================ Scan services =============================
21:48:36.0934 0296 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:48:36.0942 0296 1394ohci - ok
21:48:37.0020 0296 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:48:37.0025 0296 ACDaemon - ok
21:48:37.0122 0296 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:48:37.0131 0296 ACPI - ok
21:48:37.0154 0296 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:48:37.0157 0296 AcpiPmi - ok
21:48:37.0213 0296 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
21:48:37.0219 0296 AdobeActiveFileMonitor8.0 - ok
21:48:37.0468 0296 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:48:37.0476 0296 AdobeFlashPlayerUpdateSvc - ok
21:48:37.0620 0296 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:48:37.0632 0296 adp94xx - ok
21:48:37.0663 0296 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:48:37.0672 0296 adpahci - ok
21:48:37.0694 0296 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:48:37.0700 0296 adpu320 - ok
21:48:37.0729 0296 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:48:37.0731 0296 AeLookupSvc - ok
21:48:37.0779 0296 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
21:48:37.0792 0296 AFD - ok
21:48:37.0807 0296 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:48:37.0811 0296 agp440 - ok
21:48:38.0007 0296 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
21:48:38.0007 0296 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
21:48:38.0014 0296 Akamai ( HiddenFile.Multi.Generic ) - warning
21:48:38.0014 0296 Akamai - detected HiddenFile.Multi.Generic (1)
21:48:38.0068 0296 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:48:38.0072 0296 ALG - ok
21:48:38.0088 0296 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:48:38.0090 0296 aliide - ok
21:48:38.0118 0296 [ 3F9B03B72577A6A7405BF30801CBD159 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:48:38.0120 0296 AMD External Events Utility - ok
21:48:38.0137 0296 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:48:38.0139 0296 amdide - ok
21:48:38.0158 0296 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:48:38.0161 0296 AmdK8 - ok
21:48:38.0341 0296 [ EA244A8B88DE8B5986BF3B7903B063AF ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:48:38.0489 0296 amdkmdag - ok
21:48:38.0523 0296 [ DCA6E341A4A7C31EA8A14C6166C9B249 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:48:38.0525 0296 amdkmdap - ok
21:48:38.0538 0296 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
21:48:38.0540 0296 AmdPPM - ok
21:48:38.0566 0296 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:48:38.0571 0296 amdsata - ok
21:48:38.0600 0296 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
21:48:38.0606 0296 amdsbs - ok
21:48:38.0621 0296 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:48:38.0622 0296 amdxata - ok
21:48:38.0626 0296 androidusb - ok
21:48:38.0641 0296 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
21:48:38.0644 0296 AppID - ok
21:48:38.0664 0296 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:48:38.0667 0296 AppIDSvc - ok
21:48:38.0682 0296 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
21:48:38.0683 0296 Appinfo - ok
21:48:38.0699 0296 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
21:48:38.0703 0296 arc - ok
21:48:38.0715 0296 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:48:38.0718 0296 arcsas - ok
21:48:38.0736 0296 [ C130BC4A51B1382B2BE8E44579EC4C0A ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
21:48:38.0737 0296 ArcSoftKsUFilter - ok
21:48:38.0823 0296 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
21:48:38.0854 0296 aswFsBlk - ok
21:48:38.0896 0296 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
21:48:38.0897 0296 aswMonFlt - ok
21:48:38.0946 0296 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
21:48:38.0948 0296 aswRdr - ok
21:48:39.0010 0296 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
21:48:39.0022 0296 aswSnx - ok
21:48:39.0069 0296 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
21:48:39.0073 0296 aswSP - ok
21:48:39.0119 0296 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
21:48:39.0120 0296 aswTdi - ok
21:48:39.0152 0296 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:48:39.0155 0296 AsyncMac - ok
21:48:39.0173 0296 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:48:39.0176 0296 atapi - ok
21:48:39.0242 0296 [ CCA705CDF038D5BC243203CE4416B345 ] athr C:\Windows\system32\DRIVERS\athrx.sys
21:48:39.0299 0296 athr - ok
21:48:39.0470 0296 [ EA244A8B88DE8B5986BF3B7903B063AF ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:48:39.0504 0296 atikmdag - ok
21:48:39.0550 0296 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:48:39.0566 0296 AudioEndpointBuilder - ok
21:48:39.0586 0296 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:48:39.0594 0296 AudioSrv - ok
21:48:39.0738 0296 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:48:39.0739 0296 avast! Antivirus - ok
21:48:39.0778 0296 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:48:39.0782 0296 AxInstSV - ok
21:48:39.0818 0296 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
21:48:39.0829 0296 b06bdrv - ok
21:48:39.0853 0296 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:48:39.0860 0296 b57nd60a - ok
21:48:39.0870 0296 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:48:39.0873 0296 BDESVC - ok
21:48:39.0886 0296 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:48:39.0889 0296 Beep - ok
21:48:39.0948 0296 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
21:48:39.0970 0296 BFE - ok
21:48:40.0019 0296 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
21:48:40.0053 0296 BITS - ok
21:48:40.0077 0296 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:48:40.0079 0296 blbdrive - ok
21:48:40.0109 0296 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:48:40.0113 0296 bowser - ok
21:48:40.0138 0296 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
21:48:40.0140 0296 BrFiltLo - ok
21:48:40.0158 0296 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
21:48:40.0160 0296 BrFiltUp - ok
21:48:40.0195 0296 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
21:48:40.0197 0296 Browser - ok
21:48:40.0220 0296 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:48:40.0228 0296 Brserid - ok
21:48:40.0247 0296 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:48:40.0249 0296 BrSerWdm - ok
21:48:40.0268 0296 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:48:40.0270 0296 BrUsbMdm - ok
21:48:40.0287 0296 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:48:40.0290 0296 BrUsbSer - ok
21:48:40.0314 0296 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
21:48:40.0316 0296 BthEnum - ok
21:48:40.0332 0296 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:48:40.0336 0296 BTHMODEM - ok
21:48:40.0357 0296 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:48:40.0360 0296 BthPan - ok
21:48:40.0397 0296 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:48:40.0408 0296 BTHPORT - ok
21:48:40.0424 0296 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:48:40.0427 0296 bthserv - ok
21:48:40.0451 0296 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:48:40.0453 0296 BTHUSB - ok
21:48:40.0484 0296 [ 59E3510784548C6939C1B3B985C232E3 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
21:48:40.0491 0296 btwampfl - ok
21:48:40.0503 0296 [ 1872074ED0A3FB22E3F1E3197B984BFA ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:48:40.0505 0296 btwaudio - ok
21:48:40.0532 0296 [ 691CF076C33AB1C3A5B2FD5450300733 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
21:48:40.0534 0296 btwavdt - ok
21:48:40.0592 0296 [ 8BA6E93A182126781952A7895EC1E4B2 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:48:40.0604 0296 btwdins - ok
21:48:40.0643 0296 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:48:40.0644 0296 btwl2cap - ok
21:48:40.0674 0296 [ C9273B20DEC8CE38DBCE5D29DE63C907 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:48:40.0675 0296 btwrchid - ok
21:48:40.0697 0296 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:48:40.0700 0296 cdfs - ok
21:48:40.0716 0296 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:48:40.0721 0296 cdrom - ok
21:48:40.0745 0296 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
21:48:40.0748 0296 CertPropSvc - ok
21:48:40.0762 0296 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
21:48:40.0765 0296 circlass - ok
21:48:40.0792 0296 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:48:40.0800 0296 CLFS - ok
21:48:40.0883 0296 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:48:40.0886 0296 clr_optimization_v2.0.50727_32 - ok
21:48:40.0923 0296 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:48:40.0927 0296 clr_optimization_v2.0.50727_64 - ok
21:48:40.0988 0296 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:48:40.0992 0296 clr_optimization_v4.0.30319_32 - ok
21:48:41.0018 0296 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:48:41.0022 0296 clr_optimization_v4.0.30319_64 - ok
21:48:41.0038 0296 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
21:48:41.0040 0296 CmBatt - ok
21:48:41.0057 0296 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:48:41.0060 0296 cmdide - ok
21:48:41.0088 0296 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
21:48:41.0097 0296 CNG - ok
21:48:41.0115 0296 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
21:48:41.0115 0296 Compbatt - ok
21:48:41.0143 0296 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:48:41.0146 0296 CompositeBus - ok
21:48:41.0152 0296 COMSysApp - ok
21:48:41.0183 0296 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:48:41.0186 0296 crcdisk - ok
21:48:41.0231 0296 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:48:41.0236 0296 CryptSvc - ok
21:48:41.0340 0296 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:48:41.0351 0296 cvhsvc - ok
21:48:41.0381 0296 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:48:41.0393 0296 DcomLaunch - ok
21:48:41.0419 0296 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:48:41.0426 0296 defragsvc - ok
21:48:41.0446 0296 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:48:41.0449 0296 DfsC - ok
21:48:41.0474 0296 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
21:48:41.0480 0296 Dhcp - ok
21:48:41.0507 0296 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:48:41.0509 0296 discache - ok
21:48:41.0538 0296 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
21:48:41.0540 0296 Disk - ok
21:48:41.0573 0296 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:48:41.0578 0296 Dnscache - ok
21:48:41.0604 0296 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
21:48:41.0611 0296 dot3svc - ok
21:48:41.0628 0296 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
21:48:41.0633 0296 DPS - ok
21:48:41.0659 0296 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:48:41.0662 0296 drmkaud - ok
21:48:41.0717 0296 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:48:41.0729 0296 DXGKrnl - ok
21:48:41.0775 0296 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:48:41.0779 0296 EapHost - ok
21:48:41.0893 0296 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
21:48:41.0989 0296 ebdrv - ok
21:48:42.0036 0296 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
21:48:42.0039 0296 EFS - ok
21:48:42.0097 0296 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:48:42.0126 0296 ehRecvr - ok
21:48:42.0153 0296 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:48:42.0157 0296 ehSched - ok
21:48:42.0190 0296 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:48:42.0202 0296 elxstor - ok
21:48:42.0224 0296 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:48:42.0227 0296 ErrDev - ok
21:48:42.0260 0296 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:48:42.0269 0296 EventSystem - ok
21:48:42.0292 0296 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:48:42.0298 0296 exfat - ok
21:48:42.0316 0296 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:48:42.0321 0296 fastfat - ok
21:48:42.0350 0296 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
21:48:42.0373 0296 Fax - ok
21:48:42.0394 0296 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
21:48:42.0397 0296 fdc - ok
21:48:42.0410 0296 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:48:42.0412 0296 fdPHost - ok
21:48:42.0423 0296 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:48:42.0427 0296 FDResPub - ok
21:48:42.0438 0296 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:48:42.0441 0296 FileInfo - ok
21:48:42.0460 0296 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:48:42.0463 0296 Filetrace - ok
21:48:42.0498 0296 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:48:42.0521 0296 FLEXnet Licensing Service - ok
21:48:42.0538 0296 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
21:48:42.0541 0296 flpydisk - ok
21:48:42.0565 0296 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:48:42.0572 0296 FltMgr - ok
21:48:42.0628 0296 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
21:48:42.0644 0296 FontCache - ok
21:48:42.0711 0296 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:48:42.0714 0296 FontCache3.0.0.0 - ok
21:48:42.0740 0296 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:48:42.0743 0296 FsDepends - ok
21:48:42.0771 0296 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
21:48:42.0775 0296 fssfltr - ok
21:48:42.0869 0296 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:48:42.0912 0296 fsssvc - ok
21:48:42.0949 0296 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:48:42.0950 0296 Fs_Rec - ok
21:48:42.0979 0296 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:48:42.0984 0296 fvevol - ok
21:48:43.0011 0296 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:48:43.0014 0296 gagp30kx - ok
21:48:43.0044 0296 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
21:48:43.0067 0296 gpsvc - ok
21:48:43.0104 0296 [ B9893A68032A6D9ADDB5B98287C630F7 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys
21:48:43.0107 0296 grmnusb - ok
21:48:43.0141 0296 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:48:43.0144 0296 hcw85cir - ok
21:48:43.0163 0296 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:48:43.0170 0296 HdAudAddService - ok
21:48:43.0186 0296 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:48:43.0188 0296 HDAudBus - ok
21:48:43.0218 0296 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\drivers\HECIx64.sys
21:48:43.0219 0296 HECIx64 - ok
21:48:43.0246 0296 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
21:48:43.0248 0296 HidBatt - ok
21:48:43.0285 0296 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:48:43.0288 0296 HidBth - ok
21:48:43.0305 0296 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
21:48:43.0308 0296 HidIr - ok
21:48:43.0337 0296 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:48:43.0341 0296 hidserv - ok
21:48:43.0354 0296 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:48:43.0356 0296 HidUsb - ok
21:48:43.0371 0296 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:48:43.0376 0296 hkmsvc - ok
21:48:43.0389 0296 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:48:43.0396 0296 HomeGroupListener - ok
21:48:43.0427 0296 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:48:43.0433 0296 HomeGroupProvider - ok
21:48:43.0451 0296 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:48:43.0454 0296 HpSAMD - ok
21:48:43.0485 0296 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:48:43.0507 0296 HTTP - ok
21:48:43.0536 0296 [ 1A5DA10E18FC2643E94C5DC7FA965868 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:48:43.0539 0296 hwdatacard - ok
21:48:43.0559 0296 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:48:43.0560 0296 hwpolicy - ok
21:48:43.0579 0296 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:48:43.0582 0296 i8042prt - ok
21:48:43.0605 0296 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\drivers\iaStor.sys
21:48:43.0609 0296 iaStor - ok
21:48:43.0666 0296 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
21:48:43.0667 0296 IAStorDataMgrSvc - ok
21:48:43.0708 0296 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:48:43.0719 0296 iaStorV - ok
21:48:43.0784 0296 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:48:43.0815 0296 idsvc - ok
21:48:44.0053 0296 [ 2A22AB054F4630D2EF4BAB2853F6D5F6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
21:48:44.0281 0296 igfx - ok
21:48:44.0326 0296 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:48:44.0330 0296 iirsp - ok
21:48:44.0371 0296 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
21:48:44.0404 0296 IKEEXT - ok
21:48:44.0440 0296 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
21:48:44.0446 0296 Impcd - ok
21:48:44.0536 0296 [ 526E482AFB586CB1CDD687869DECF686 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:48:44.0552 0296 IntcAzAudAddService - ok
21:48:44.0602 0296 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
21:48:44.0610 0296 IntcDAud - ok
21:48:44.0626 0296 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:48:44.0628 0296 intelide - ok
21:48:44.0647 0296 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
21:48:44.0648 0296 intelppm - ok
21:48:44.0675 0296 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:48:44.0681 0296 IPBusEnum - ok
21:48:44.0698 0296 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:48:44.0701 0296 IpFilterDriver - ok
21:48:44.0731 0296 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:48:44.0744 0296 iphlpsvc - ok
21:48:44.0780 0296 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:48:44.0783 0296 IPMIDRV - ok
21:48:44.0801 0296 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:48:44.0805 0296 IPNAT - ok
21:48:44.0824 0296 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:48:44.0844 0296 IRENUM - ok
21:48:44.0861 0296 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:48:44.0864 0296 isapnp - ok
21:48:44.0878 0296 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:48:44.0885 0296 iScsiPrt - ok
21:48:44.0907 0296 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
21:48:44.0908 0296 kbdclass - ok
21:48:44.0924 0296 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:48:44.0927 0296 kbdhid - ok
21:48:44.0942 0296 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
21:48:44.0945 0296 KeyIso - ok
21:48:44.0972 0296 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:48:44.0975 0296 KSecDD - ok
21:48:44.0996 0296 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:48:45.0000 0296 KSecPkg - ok
21:48:45.0020 0296 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:48:45.0022 0296 ksthunk - ok
21:48:45.0050 0296 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:48:45.0061 0296 KtmRm - ok
21:48:45.0093 0296 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:48:45.0097 0296 LanmanServer - ok
21:48:45.0113 0296 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:48:45.0118 0296 LanmanWorkstation - ok
21:48:45.0142 0296 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:48:45.0145 0296 lltdio - ok
21:48:45.0159 0296 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:48:45.0167 0296 lltdsvc - ok
21:48:45.0185 0296 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:48:45.0187 0296 lmhosts - ok
21:48:45.0224 0296 [ 3D23191672D83E90D1CF63927EE98136 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:48:45.0229 0296 LMS - ok
21:48:45.0272 0296 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:48:45.0277 0296 LSI_FC - ok
21:48:45.0290 0296 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:48:45.0294 0296 LSI_SAS - ok
21:48:45.0314 0296 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
21:48:45.0319 0296 LSI_SAS2 - ok
21:48:45.0339 0296 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:48:45.0343 0296 LSI_SCSI - ok
21:48:45.0362 0296 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:48:45.0365 0296 luafv - ok
21:48:45.0391 0296 [ BB6F30527EEA0D3F61095A8AFA31E2D6 ] massfilter C:\Windows\system32\DRIVERS\massfilter.sys
21:48:45.0394 0296 massfilter - ok
21:48:45.0397 0296 massfilter_hs - ok
21:48:45.0424 0296 MBAMProtector - ok
21:48:45.0492 0296 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:48:45.0496 0296 MBAMScheduler - ok
21:48:45.0555 0296 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:48:45.0578 0296 MBAMService - ok
21:48:45.0606 0296 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:48:45.0612 0296 Mcx2Svc - ok
21:48:45.0635 0296 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
21:48:45.0638 0296 megasas - ok
21:48:45.0659 0296 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
21:48:45.0667 0296 MegaSR - ok
21:48:45.0736 0296 [ 9C9FC3770BD600B2D761D666234C244D ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys
21:48:45.0746 0296 mfencbdc - ok
21:48:45.0784 0296 [ 93241CC8509B622B47EEA1B8505CF511 ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys
21:48:45.0787 0296 mfencrk - ok
21:48:45.0816 0296 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:48:45.0822 0296 MMCSS - ok
21:48:45.0836 0296 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:48:45.0838 0296 Modem - ok
21:48:45.0861 0296 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:48:45.0863 0296 monitor - ok
21:48:45.0888 0296 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:48:45.0889 0296 mouclass - ok
21:48:45.0908 0296 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:48:45.0911 0296 mouhid - ok
21:48:45.0927 0296 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:48:45.0930 0296 mountmgr - ok
21:48:46.0001 0296 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:48:46.0005 0296 MozillaMaintenance - ok
21:48:46.0045 0296 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\drivers\mpio.sys
21:48:46.0051 0296 mpio - ok
21:48:46.0060 0296 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:48:46.0063 0296 mpsdrv - ok
21:48:46.0107 0296 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:48:46.0135 0296 MpsSvc - ok
21:48:46.0151 0296 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:48:46.0156 0296 MRxDAV - ok
21:48:46.0189 0296 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:48:46.0194 0296 mrxsmb - ok
21:48:46.0238 0296 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:48:46.0245 0296 mrxsmb10 - ok
21:48:46.0272 0296 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:48:46.0276 0296 mrxsmb20 - ok
21:48:46.0297 0296 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\drivers\msahci.sys
21:48:46.0300 0296 msahci - ok
21:48:46.0322 0296 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:48:46.0327 0296 msdsm - ok
21:48:46.0354 0296 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:48:46.0362 0296 MSDTC - ok
21:48:46.0385 0296 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:48:46.0388 0296 Msfs - ok
21:48:46.0407 0296 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:48:46.0409 0296 mshidkmdf - ok
21:48:46.0426 0296 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:48:46.0427 0296 msisadrv - ok
21:48:46.0448 0296 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:48:46.0453 0296 MSiSCSI - ok
21:48:46.0469 0296 msiserver - ok
21:48:46.0490 0296 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:48:46.0492 0296 MSKSSRV - ok
21:48:46.0497 0296 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:48:46.0499 0296 MSPCLOCK - ok
21:48:46.0503 0296 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:48:46.0505 0296 MSPQM - ok
21:48:46.0525 0296 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:48:46.0532 0296 MsRPC - ok
21:48:46.0545 0296 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:48:46.0546 0296 mssmbios - ok
21:48:46.0555 0296 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:48:46.0558 0296 MSTEE - ok
21:48:46.0567 0296 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
21:48:46.0570 0296 MTConfig - ok
21:48:46.0585 0296 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:48:46.0586 0296 Mup - ok
21:48:46.0616 0296 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
21:48:46.0627 0296 napagent - ok
21:48:46.0646 0296 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:48:46.0653 0296 NativeWifiP - ok
21:48:46.0683 0296 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
21:48:46.0721 0296 NDIS - ok
21:48:46.0747 0296 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:48:46.0750 0296 NdisCap - ok
21:48:46.0769 0296 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:48:46.0772 0296 NdisTapi - ok
21:48:46.0792 0296 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:48:46.0796 0296 Ndisuio - ok
21:48:46.0805 0296 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:48:46.0809 0296 NdisWan - ok
21:48:46.0839 0296 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:48:46.0842 0296 NDProxy - ok
21:48:46.0854 0296 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:48:46.0857 0296 NetBIOS - ok
21:48:46.0868 0296 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:48:46.0873 0296 NetBT - ok
21:48:46.0889 0296 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
21:48:46.0892 0296 Netlogon - ok
21:48:46.0919 0296 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:48:46.0928 0296 Netman - ok
21:48:46.0948 0296 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:48:46.0977 0296 netprofm - ok
21:48:46.0999 0296 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:48:47.0003 0296 NetTcpPortSharing - ok
21:48:47.0012 0296 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:48:47.0015 0296 nfrd960 - ok
21:48:47.0037 0296 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:48:47.0045 0296 NlaSvc - ok
21:48:47.0071 0296 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:48:47.0074 0296 Npfs - ok
21:48:47.0096 0296 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:48:47.0098 0296 nsi - ok
21:48:47.0115 0296 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:48:47.0117 0296 nsiproxy - ok
21:48:47.0171 0296 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:48:47.0215 0296 Ntfs - ok
21:48:47.0235 0296 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:48:47.0237 0296 Null - ok
21:48:47.0269 0296 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:48:47.0274 0296 nvraid - ok
21:48:47.0308 0296 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:48:47.0313 0296 nvstor - ok
21:48:47.0331 0296 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:48:47.0335 0296 nv_agp - ok
21:48:47.0363 0296 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:48:47.0366 0296 ohci1394 - ok
21:48:47.0394 0296 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:48:47.0398 0296 ose - ok
21:48:47.0563 0296 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:48:47.0694 0296 osppsvc - ok
21:48:47.0715 0296 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:48:47.0724 0296 p2pimsvc - ok
21:48:47.0756 0296 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:48:47.0767 0296 p2psvc - ok
21:48:47.0785 0296 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
21:48:47.0789 0296 Parport - ok
21:48:47.0819 0296 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:48:47.0822 0296 partmgr - ok
21:48:47.0868 0296 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:48:47.0876 0296 PcaSvc - ok
21:48:47.0910 0296 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\drivers\pci.sys
21:48:47.0914 0296 pci - ok
21:48:47.0937 0296 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:48:47.0939 0296 pciide - ok
21:48:47.0965 0296 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
21:48:47.0971 0296 pcmcia - ok
21:48:47.0995 0296 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:48:47.0997 0296 pcw - ok
21:48:48.0031 0296 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:48:48.0056 0296 PEAUTH - ok
21:48:48.0269 0296 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:48:48.0275 0296 PerfHost - ok
21:48:48.0401 0296 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
21:48:48.0452 0296 pla - ok
21:48:48.0514 0296 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:48:48.0526 0296 PlugPlay - ok
21:48:48.0547 0296 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:48:48.0552 0296 PNRPAutoReg - ok
21:48:48.0577 0296 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:48:48.0582 0296 PNRPsvc - ok
21:48:48.0611 0296 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:48:48.0622 0296 PolicyAgent - ok
21:48:48.0645 0296 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:48:48.0652 0296 Power - ok
21:48:48.0717 0296 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:48:48.0721 0296 PptpMiniport - ok
21:48:48.0741 0296 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
21:48:48.0744 0296 Processor - ok
21:48:48.0770 0296 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
21:48:48.0777 0296 ProfSvc - ok
21:48:48.0815 0296 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:48:48.0819 0296 ProtectedStorage - ok
21:48:48.0839 0296 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:48:48.0843 0296 Psched - ok
21:48:48.0872 0296 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
21:48:48.0874 0296 PxHlpa64 - ok
21:48:48.0939 0296 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:48:49.0005 0296 ql2300 - ok
21:48:49.0048 0296 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:48:49.0053 0296 ql40xx - ok
21:48:49.0079 0296 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:48:49.0101 0296 QWAVE - ok
21:48:49.0114 0296 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:48:49.0118 0296 QWAVEdrv - ok
21:48:49.0132 0296 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:48:49.0136 0296 RasAcd - ok
21:48:49.0157 0296 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:48:49.0160 0296 RasAgileVpn - ok
21:48:49.0180 0296 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:48:49.0187 0296 RasAuto - ok
21:48:49.0201 0296 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:48:49.0205 0296 Rasl2tp - ok
21:48:49.0223 0296 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
21:48:49.0232 0296 RasMan - ok
21:48:49.0243 0296 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:48:49.0246 0296 RasPppoe - ok
21:48:49.0262 0296 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:48:49.0265 0296 RasSstp - ok
21:48:49.0291 0296 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:48:49.0298 0296 rdbss - ok
21:48:49.0310 0296 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
21:48:49.0313 0296 rdpbus - ok
21:48:49.0334 0296 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:48:49.0336 0296 RDPCDD - ok
21:48:49.0344 0296 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:48:49.0345 0296 RDPENCDD - ok
21:48:49.0369 0296 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:48:49.0371 0296 RDPREFMP - ok
21:48:49.0405 0296 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:48:49.0411 0296 RDPWD - ok
21:48:49.0442 0296 [ E5DC9BA9E439D6DBDD79F8CAACB5BF01 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:48:49.0447 0296 rdyboost - ok
21:48:49.0472 0296 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:48:49.0477 0296 RemoteAccess - ok
21:48:49.0505 0296 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:48:49.0511 0296 RemoteRegistry - ok
21:48:49.0540 0296 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:48:49.0545 0296 RFCOMM - ok
21:48:49.0574 0296 [ FA6ABC06B629DA29634D31F1FE0347BD ] rimspci C:\Windows\system32\drivers\rimssne64.sys
21:48:49.0577 0296 rimspci - ok
21:48:49.0602 0296 [ 8F8539A7F5C117D4407B2985995671F2 ] risdsnpe C:\Windows\system32\drivers\risdsne64.sys
21:48:49.0606 0296 risdsnpe - ok
21:48:49.0623 0296 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:48:49.0628 0296 RpcEptMapper - ok
21:48:49.0649 0296 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:48:49.0652 0296 RpcLocator - ok
21:48:49.0678 0296 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
21:48:49.0684 0296 RpcSs - ok
21:48:49.0702 0296 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:48:49.0705 0296 rspndr - ok
21:48:49.0739 0296 [ D6D381B76056C668679723938F06F16C ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
21:48:49.0741 0296 RTHDMIAzAudService - ok
21:48:49.0762 0296 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
21:48:49.0764 0296 SamSs - ok
21:48:49.0792 0296 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:48:49.0795 0296 sbp2port - ok
21:48:49.0819 0296 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:48:49.0826 0296 SCardSvr - ok
21:48:49.0847 0296 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:48:49.0850 0296 scfilter - ok
21:48:49.0897 0296 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
21:48:49.0906 0296 Schedule - ok
21:48:49.0934 0296 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:48:49.0936 0296 SCPolicySvc - ok
21:48:49.0957 0296 [ 2C8D162EFAF73ABD36D8BCBB6340CAE7 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:48:49.0960 0296 sdbus - ok
21:48:49.0987 0296 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:48:49.0994 0296 SDRSVC - ok
21:48:50.0014 0296 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:48:50.0016 0296 secdrv - ok
21:48:50.0028 0296 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
21:48:50.0033 0296 seclogon - ok
21:48:50.0047 0296 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:48:50.0052 0296 SENS - ok
21:48:50.0065 0296 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:48:50.0070 0296 SensrSvc - ok
21:48:50.0087 0296 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
21:48:50.0090 0296 Serenum - ok
21:48:50.0112 0296 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
21:48:50.0115 0296 Serial - ok
21:48:50.0150 0296 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:48:50.0152 0296 sermouse - ok
21:48:50.0180 0296 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
21:48:50.0186 0296 SessionEnv - ok
21:48:50.0203 0296 [ 286D3889E6AB5589646FF8A63CB928AE ] SFEP C:\Windows\system32\drivers\SFEP.sys
21:48:50.0205 0296 SFEP - ok
21:48:50.0237 0296 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:48:50.0240 0296 sffdisk - ok
21:48:50.0270 0296 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:48:50.0273 0296 sffp_mmc - ok
21:48:50.0288 0296 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:48:50.0291 0296 sffp_sd - ok
21:48:50.0309 0296 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:48:50.0313 0296 sfloppy - ok
21:48:50.0361 0296 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
21:48:50.0371 0296 Sftfs - ok
21:48:50.0505 0296 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:48:50.0512 0296 sftlist - ok
21:48:50.0552 0296 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:48:50.0555 0296 Sftplay - ok
21:48:50.0576 0296 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:48:50.0577 0296 Sftredir - ok
21:48:50.0613 0296 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
21:48:50.0614 0296 Sftvol - ok
21:48:50.0636 0296 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:48:50.0638 0296 sftvsa - ok
21:48:50.0706 0296 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:48:50.0717 0296 SharedAccess - ok
21:48:50.0750 0296 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:48:50.0764 0296 ShellHWDetection - ok
21:48:50.0792 0296 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
21:48:50.0794 0296 SiSRaid2 - ok
21:48:50.0824 0296 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:48:50.0827 0296 SiSRaid4 - ok
21:48:50.0847 0296 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:48:50.0851 0296 Smb - ok
21:48:50.0881 0296 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:48:50.0886 0296 SNMPTRAP - ok
21:48:50.0945 0296 [ C3E69DB0A4E59564230E053232F39AC7 ] SOHCImp C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
21:48:50.0947 0296 SOHCImp - ok
21:48:50.0975 0296 [ 65CC4779A29C3E82B987BD4961790DFF ] SOHDms C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
21:48:50.0979 0296 SOHDms - ok
21:48:50.0993 0296 [ F47D75CEE1844EEF4A9EA6EE768828FB ] SOHDs C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
21:48:50.0995 0296 SOHDs - ok
21:48:51.0110 0296 [ 5449FC97476F52E027409E703791E6A9 ] SpfService C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
21:48:51.0115 0296 SpfService - ok
21:48:51.0152 0296 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:48:51.0153 0296 spldr - ok
21:48:51.0202 0296 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
21:48:51.0233 0296 Spooler - ok
21:48:51.0375 0296 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
21:48:51.0488 0296 sppsvc - ok
21:48:51.0505 0296 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:48:51.0510 0296 sppuinotify - ok
21:48:51.0558 0296 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:48:51.0571 0296 srv - ok
21:48:51.0594 0296 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:48:51.0604 0296 srv2 - ok
21:48:51.0625 0296 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:48:51.0631 0296 srvnet - ok
21:48:51.0701 0296 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:48:51.0712 0296 SSDPSRV - ok
21:48:51.0726 0296 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:48:51.0737 0296 SstpSvc - ok
21:48:51.0767 0296 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
21:48:51.0770 0296 stexstor - ok
21:48:51.0800 0296 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
21:48:51.0823 0296 stisvc - ok
21:48:51.0845 0296 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:48:51.0846 0296 swenum - ok
21:48:51.0908 0296 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:48:51.0915 0296 SwitchBoard - ok
21:48:51.0953 0296 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:48:51.0975 0296 swprv - ok
21:48:52.0008 0296 [ 20F8F4C2ED3F492DA318D98E72F77209 ] SynTP C:\Windows\system32\drivers\SynTP.sys
21:48:52.0012 0296 SynTP - ok
21:48:52.0068 0296 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
21:48:52.0142 0296 SysMain - ok
21:48:52.0164 0296 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:48:52.0170 0296 TabletInputService - ok
21:48:52.0186 0296 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
21:48:52.0195 0296 TapiSrv - ok
21:48:52.0202 0296 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:48:52.0206 0296 TBS - ok
21:48:52.0280 0296 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:48:52.0327 0296 Tcpip - ok
21:48:52.0385 0296 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:48:52.0400 0296 TCPIP6 - ok
21:48:52.0419 0296 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:48:52.0422 0296 tcpipreg - ok
21:48:52.0439 0296 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:48:52.0442 0296 TDPIPE - ok
21:48:52.0480 0296 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:48:52.0483 0296 TDTCP - ok
21:48:52.0512 0296 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:48:52.0515 0296 tdx - ok
21:48:52.0541 0296 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:48:52.0542 0296 TermDD - ok
21:48:52.0589 0296 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
21:48:52.0618 0296 TermService - ok
21:48:52.0630 0296 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:48:52.0637 0296 Themes - ok
21:48:52.0661 0296 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:48:52.0665 0296 THREADORDER - ok
21:48:52.0681 0296 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:48:52.0689 0296 TrkWks - ok
21:48:52.0736 0296 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:48:52.0742 0296 TrustedInstaller - ok
21:48:52.0779 0296 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:48:52.0782 0296 tssecsrv - ok
21:48:52.0800 0296 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:48:52.0804 0296 tunnel - ok
21:48:52.0826 0296 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:48:52.0831 0296 uagp35 - ok
21:48:52.0889 0296 [ 63F6D08C54D5B3C1B12A6172032055C7 ] uCamMonitor C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
21:48:52.0892 0296 uCamMonitor - ok
21:48:52.0919 0296 [ 0E5E962B5649D544BE54E8C90761EA2B ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:48:52.0928 0296 udfs - ok
21:48:52.0985 0296 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:48:52.0991 0296 UI0Detect - ok
21:48:53.0008 0296 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:48:53.0011 0296 uliagpkx - ok
21:48:53.0023 0296 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:48:53.0025 0296 umbus - ok
21:48:53.0050 0296 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
21:48:53.0052 0296 UmPass - ok
21:48:53.0169 0296 [ 11A559E0F10CC5E788984023DF400A6F ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
21:48:53.0274 0296 UNS - ok
21:48:53.0302 0296 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:48:53.0311 0296 upnphost - ok
21:48:53.0349 0296 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
21:48:53.0352 0296 usbaudio - ok
21:48:53.0389 0296 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:48:53.0393 0296 usbccgp - ok
21:48:53.0424 0296 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:48:53.0428 0296 usbcir - ok
21:48:53.0464 0296 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\drivers\usbehci.sys
21:48:53.0467 0296 usbehci - ok
21:48:53.0487 0296 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:48:53.0494 0296 usbhub - ok
21:48:53.0526 0296 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:48:53.0528 0296 usbohci - ok
21:48:53.0558 0296 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:48:53.0561 0296 usbprint - ok
21:48:53.0590 0296 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:48:53.0593 0296 usbscan - ok
21:48:53.0614 0296 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Win
0
Réponse 32 / 53
Utilisateur anonyme
 
Bonjour

On réessaie ceci:
https://forums.commentcamarche.net/forum/affich-26935004-message-de-la-page-web-ity-im-ads-le-supprimer?full#16

@+
0
Réponse 33 / 53
Fylis Messages postés 28 Statut Membre
 
Bonjour,

Cette fois, ça a marché ! Voilà le rapport de Asw :

aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-01-22 16:02:18
-----------------------------
16:02:18.898 OS Version: Windows x64 6.1.7600
16:02:18.898 Number of processors: 4 586 0x2505
16:02:18.899 ComputerName: PATCH UserName:
16:02:20.446 Initialize success
16:02:20.551 AVAST engine defs: 13012200
16:02:31.886 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:02:31.891 Disk 0 Vendor: ST950032 0006 Size: 476940MB BusType: 3
16:02:32.063 Disk 0 MBR read successfully
16:02:32.067 Disk 0 MBR scan
16:02:32.073 Disk 0 unknown MBR code
16:02:32.083 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13654 MB offset 2048
16:02:32.105 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 27965440
16:02:32.120 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 463170 MB offset 28170240
16:02:32.162 Disk 0 Partition 4 00 17 Hidd HPFS/NTFS NTFS 10 MB offset 976744448
16:02:32.170 Disk 0 Partition 4 **INFECTED** MBR:SST [Rtk]
16:02:32.179 Disk 0 MBR [SST] **ROOTKIT**
16:02:32.188 Disk 0 trace - called modules:
16:02:32.198 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
16:02:32.391 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800638a060]
16:02:32.401 3 CLASSPNP.SYS[fffff88001ae143f] -> nt!IofCallDriver -> [0xfffffa8004348e40]
16:02:32.410 5 ACPI.sys[fffff88000ede781] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800434b050]
16:02:33.823 AVAST engine scan C:\Windows
16:02:36.636 AVAST engine scan C:\Windows\system32
16:05:45.796 AVAST engine scan C:\Windows\system32\drivers
16:05:59.773 AVAST engine scan C:\Users\Elphie
16:11:16.632 Disk 0 MBR has been saved successfully to "C:\Users\Elphie\Documents\MBR.dat"
16:11:16.640 The log file has been saved successfully to "C:\Users\Elphie\Documents\aswMBR.txt"
0
Réponse 34 / 53
Utilisateur anonyme
 
Bonsoir

Tu relances aswMBR option FixMBR et poste moi ensuite son rapport

Merci

@+
0
Réponse 35 / 53
Fylis Messages postés 28 Statut Membre
 
Re,

Et voilà le rapport version FixMBR !

aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-01-22 22:46:03
-----------------------------
22:46:03.365 OS Version: Windows x64 6.1.7600
22:46:03.365 Number of processors: 4 586 0x2505
22:46:03.367 ComputerName: PATCH UserName:
22:46:04.813 Initialize success
22:46:04.923 AVAST engine defs: 13012200
22:46:27.457 Verifying
22:46:37.482 Disk 0 Windows 601 MBR fixed successfully
22:46:59.902 Disk 0 MBR has been saved successfully to "C:\Users\Elphie\Documents\MBR.dat"
22:46:59.902 The log file has been saved successfully to "C:\Users\Elphie\Documents\aswMBR2.txt"
0
Réponse 36 / 53
Utilisateur anonyme
 
Bonjour

Pour vérification

Relance aswMBR option scan et poste moi son rapport;merci

@+
0
Réponse 37 / 53
Fylis Messages postés 28 Statut Membre
 
Bonjour,

Voilà le dernier rapport option scan.

aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-01-24 14:26:31
-----------------------------
14:26:31.307 OS Version: Windows x64 6.1.7600
14:26:31.307 Number of processors: 4 586 0x2505
14:26:31.309 ComputerName: PATCH UserName:
14:26:35.362 Initialize success
14:26:35.549 AVAST engine defs: 13012400
14:26:37.712 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
14:26:37.717 Disk 0 Vendor: ST950032 0006 Size: 476940MB BusType: 3
14:26:37.733 Disk 0 MBR read successfully
14:26:37.737 Disk 0 MBR scan
14:26:37.742 Disk 0 Windows 7 default MBR code
14:26:37.753 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13654 MB offset 2048
14:26:37.765 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 27965440
14:26:37.779 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 463170 MB offset 28170240
14:26:37.822 Disk 0 Partition 4 00 17 Hidd HPFS/NTFS NTFS 10 MB offset 976744448
14:26:37.831 Disk 0 Partition 4 **INFECTED** MBR:SST [Rtk]
14:26:37.841 Disk 0 MBR [SST] **ROOTKIT**
14:26:37.847 Disk 0 trace - called modules:
14:26:37.852 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
14:26:37.858 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800638b060]
14:26:37.864 3 CLASSPNP.SYS[fffff88001b2443f] -> nt!IofCallDriver -> [0xfffffa80043453d0]
14:26:37.868 5 ACPI.sys[fffff88000ef8781] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800434a050]
14:26:39.942 AVAST engine scan C:\Windows
14:26:42.976 AVAST engine scan C:\Windows\system32
14:31:11.323 AVAST engine scan C:\Windows\system32\drivers
14:31:44.609 AVAST engine scan C:\Users\Elphie
15:03:53.456 AVAST engine scan C:\ProgramData
15:11:25.944 Scan finished successfully
15:11:47.260 Disk 0 MBR has been saved successfully to "C:\Users\Elphie\Documents\MBR.dat"
15:11:47.282 The log file has been saved successfully to "C:\Users\Elphie\Documents\aswMBR.txt"
0
Réponse 38 / 53
Utilisateur anonyme
 
Bonsoir

Poste moi un nouveau rapport de RogueKiller option scan

Merci

@+
0
Réponse 39 / 53
Fylis Messages postés 28 Statut Membre
 
Re,

Voilà le rapport !

RogueKiller V8.4.3 [Jan 24 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows 7 (6.1.7600 ) 64 bits version
Demarrage : Mode normal
Utilisateur : Elphie [Droits d'admin]
Mode : Recherche -- Date : 24/01/2013 22:18:13
| ARK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 4 ¤¤¤
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> TROUVÉ
[HJ DESK] HKCU\[...]\NewStartPanel : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> TROUVÉ
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

¤¤¤ Driver : [NON CHARGE] ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
::1 localhost

¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 0209788e6e8609063b847e7c36542cfb
[BSP] 03892500bfa2449b08b9f0f00029e31e : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 13654 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 27965440 | Size: 100 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 28170240 | Size: 463170 Mo
3 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 976744448 | Size: 10 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[2]_S_24012013_221813.txt >>
RKreport[1]_S_24012013_221745.txt ; RKreport[2]_S_24012013_221813.txt
0
Réponse 40 / 53
Utilisateur anonyme
 
Bonjour

Avast te détecte toujours ce rootkit?

Les mises à jour de Windows se font elles maintenant?

@+
0

Discussions similaires

SMS message vocal arnaque ?
kikidefer -
Stepik -

10 réponses
Code source couleur de fond
Mehdi-Amg -
Techno01 -

9 réponses
Signification de ^^
takataka26 -
Adraen -

13 réponses