Sujet Précédent Sujet Suivant

Problème virus, AVG2013/windows 7

Fermé
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013 - 31 janv. 2013 à 17:42
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 31 janv. 2013 à 21:28
Bonjour,

Voila mon problème : depuis quelques temps, j'ai AVG, qui me détecte des virus par dizaines, et la fenêtre de "AVG internet security", apparais environ toutes les 10secs, avec des virus que je met à chaque fois en quarantaine, et qui reviennent en boucle. (cheval de troie, "Luhe.Sirefef.A", etc etc...)
De plus, il y à des virus (exemple : Win64/Patched.A sous C:\windows\System32\services.exe) que je ne peut pas mettre en quarantaine, et que je ne peut pas supprimer.

Etant novice, j'aimerais votre aide pour m'aider à me débarrasser de ces virus !

Je vous remercie par avance pour votre aide !

Jerometell



A voir également:

13 réponses

Réponse 1 / 13
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 641
31 janv. 2013 à 17:45
Salut,

Désactive AVG puis :

[*] Télécharger sur le bureau https://www.luanagames.com/index.fr.html (by tigzy)
[*] Quitter tous les programmes
[*] Lancer RogueKiller.exe.
[*] Attendre que le Prescan ait fini ...
[*] Lance un scan afin de débloquer le bouton Suppression à droite.
[*] Clic sur Suppression.
Poste le rapport ici.

!!! Je répète bien faire Suppression à droite et poster le rapport. !!!

0
Réponse 2 / 13
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013
31 janv. 2013 à 18:00
RogueKiller V8.4.3 [Jan 31 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/

Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : Jérôme [Droits d'admin]
Mode : Suppression -- Date : 31/01/2013 17:59:56
| ARK || MBR |

¤¤¤ Processus malicieux : 1 ¤¤¤
[SUSP PATH] UnsignedThemesSvc.exe -- C:\Windows\UnsignedThemesSvc.exe -> TUÉ [TermProc]

¤¤¤ Entrees de registre : 7 ¤¤¤
[SHELL][SUSP PATH] HKLM\[...]\Wow6432Node\Winlogon : Userinit (C:\Windows\system32\userinit.exe,C:\Windows\msnmls.exe) -> REMPLACÉ (userinit.exe)
[HJPOL] HKCU\[...]\System : DisableTaskMgr (1) -> SUPPRIMÉ
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REMPLACÉ (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REMPLACÉ (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0)
[SCREENSV][SUSP PATH] HKCU\[...]\Desktop (C:\Windows\Flurry.scr) -> REMPLACÉ (C:\Windows\system32\logon.scr)

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][FILE] @ : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\@ --> SUPPRIMÉ
[Del.Parent][FILE] 00000004.@ : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\U\00000004.@ --> SUPPRIMÉ
[Del.Parent][FILE] 00000008.@ : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\U\00000008.@ --> SUPPRIMÉ
[Del.Parent][FILE] 000000cb.@ : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\U\000000cb.@ --> SUPPRIMÉ
[Del.Parent][FILE] 80000032.@ : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\U\80000032.@ --> SUPPRIMÉ
[Del.Parent][FILE] 80000064.@ : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\U\80000064.@ --> SUPPRIMÉ
[ZeroAccess][FOLDER] ROOT : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\U --> SUPPRIMÉ
[Del.Parent][FILE] 00000004.@ : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\L\00000004.@ --> SUPPRIMÉ
[Del.Parent][FILE] 1afb2d56 : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\L\1afb2d56 --> SUPPRIMÉ
[Del.Parent][FILE] 201d3dde : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\L\201d3dde --> SUPPRIMÉ
[Del.Parent][FILE] 4cce1f70 : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\L\4cce1f70 --> SUPPRIMÉ
[ZeroAccess][FOLDER] ROOT : C:\Windows\Installer\{a3fc808c-f825-e3c4-00ee-baae48027521}\L --> SUPPRIMÉ
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_32\Desktop.ini --> SUPPRIMÉ
[ZeroAccess][FILE] Desktop.ini : C:\Windows\Assembly\GAC_64\Desktop.ini --> SUPPRIMÉ

¤¤¤ Driver : [NON CHARGE] ¤¤¤

¤¤¤ Infection : ZeroAccess ¤¤¤

¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

*= --------\ Owned by KEYZ LOGGER /--------- =*
127.0.0.1 www.virustotal.com
127.0.0.1 virustotal.com
127.0.0.1 www.scanner.novirusthanks.org
127.0.0.1 scanner.novirusthanks.org
127.0.0.1 www.f-secure.com
127.0.0.1 f-secure.com
127.0.0.1 www.kaspersky.com
127.0.0.1 kaspersky.com
127.0.0.1 www.bitdefender.com
127.0.0.1 bitdefender.com
127.0.0.1 www.myavscan.com
127.0.0.1 virusscan.jotti.org
127.0.0.1 www.home.mcafee.com
127.0.0.1 home.mcafee.com
127.0.0.1 www.onlinescan.avast.com
127.0.0.1 onlinescan.avast.com
127.0.0.1 www.viruschief.com
127.0.0.1 viruschief.com
127.0.0.1 www.fortiguard.com
[...]


¤¤¤ MBR Verif: ¤¤¤

+++++ PhysicalDrive0: FUJITSU MJA2500BH G2 +++++
--- User ---
[MBR] 4e4b3214a70fa7c82c6162a2e916d196
[BSP] ced0a8fcb57232d5d9342de1c136afdb : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 400 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 821248 | Size: 238470 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 489207808 | Size: 238069 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Termine : << RKreport[2]_D_31012013_175956.txt >>
RKreport[1]_S_31012013_175929.txt ; RKreport[2]_D_31012013_175956.txt
0
Réponse 3 / 13
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 641
31 janv. 2013 à 18:04
Tu dois avoir un dossier RKQuarantaine, zip le dossier avec un mot de passe de préférences et envoie le zip sur http://upload.malekal.com ou par mail à spamhere-@wanadoo.fr
0
Réponse 4 / 13
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013
31 janv. 2013 à 18:10
Voila c'est fait ! Le mot de passe est "virus"
Que dois-je faire maintenant ?

(merci pour votre aide)
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 641
31 janv. 2013 à 18:15
Passe un coup de TDSSKiller : https://forum.malekal.com/viewtopic.php?t=28637&start=
Lire ce qui est écrit au niveau des suppressions/réparation (delete et cure), ne pas supprimer n'importe quoi.
Poste le rapport ici.


PUIS :



Télécharge http://general-changelog-team.fr/telechargements/logiciels/viewdownload/75-outils-de-xplode/28-adwcleaner AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Suppression] puis patiente le temps du scan (Pas besoin de faire de Recherche avant).
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt


PUIS :

Faire un scan OTL pour diagnostiquer les programmes qui tournent et déceler des infections :

Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/

* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Dans le cas d'Avast!, ne pas lancer le programme dans la Sandbox (voir lien d'aide ci-dessus).

* Lance OTL
* En haut à droite de Analyse rapide, coche "tous les utilisateurs"
* Sur OTL, sous Personnalisation, copie-colle le script ci-dessous :



netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\consrv.dll
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32 /s
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList /s
CREATERESTOREPOINT
nslookup www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs



* Clique sur le bouton Analyse.

NE PAS COPIER/COLLER LE RAPPORT ICI - DONNER LE LIEN PJJOINT
* Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent), donne le ou les liens pjjoint qui pointent vers ces rapports ici dans un nouveau message.
NE PAS COPIER/COLLER LE RAPPORT ICI - DONNER LE LIEN PJJOINT

0
Réponse 6 / 13
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013
31 janv. 2013 à 19:06
RAPPORT TDSSKILER :

19:04:52.0589 3452 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
19:04:52.0707 3452 ============================================================
19:04:52.0707 3452 Current date / time: 2013/01/31 19:04:52.0707
19:04:52.0707 3452 SystemInfo:
19:04:52.0707 3452
19:04:52.0708 3452 OS Version: 6.1.7601 ServicePack: 1.0
19:04:52.0708 3452 Product type: Workstation
19:04:52.0708 3452 ComputerName: JÉRÔME-TOSH
19:04:52.0708 3452 UserName: Jérôme
19:04:52.0708 3452 Windows directory: C:\Windows
19:04:52.0708 3452 System windows directory: C:\Windows
19:04:52.0708 3452 Running under WOW64
19:04:52.0708 3452 Processor architecture: Intel x64
19:04:52.0708 3452 Number of processors: 2
19:04:52.0708 3452 Page size: 0x1000
19:04:52.0708 3452 Boot type: Normal boot
19:04:52.0708 3452 ============================================================
19:04:53.0399 3452 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:04:53.0407 3452 ============================================================
19:04:53.0407 3452 \Device\Harddisk0\DR0:
19:04:53.0410 3452 MBR partitions:
19:04:53.0410 3452 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x1D1C3000
19:04:53.0410 3452 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D28B800, BlocksNum 0x1D0FA800
19:04:53.0410 3452 ============================================================
19:04:53.0425 3452 C: <-> \Device\Harddisk0\DR0\Partition1
19:04:53.0457 3452 D: <-> \Device\Harddisk0\DR0\Partition2
19:04:53.0458 3452 ============================================================
19:04:53.0458 3452 Initialize success
19:04:53.0458 3452 ============================================================
19:04:56.0196 6428 ============================================================
19:04:56.0196 6428 Scan started
19:04:56.0196 6428 Mode: Manual;
19:04:56.0196 6428 ============================================================
19:04:57.0437 6428 ================ Scan system memory ========================
19:04:57.0437 6428 System memory - ok
19:04:57.0438 6428 ================ Scan services =============================
19:04:57.0597 6428 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:04:57.0602 6428 1394ohci - ok
19:04:57.0635 6428 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:04:57.0637 6428 ACPI - ok
19:04:57.0676 6428 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:04:57.0677 6428 AcpiPmi - ok
19:04:57.0851 6428 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:04:57.0853 6428 AdobeFlashPlayerUpdateSvc - ok
19:04:57.0925 6428 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:04:57.0962 6428 adp94xx - ok
19:04:58.0015 6428 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:04:58.0020 6428 adpahci - ok
19:04:58.0064 6428 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:04:58.0068 6428 adpu320 - ok
19:04:58.0091 6428 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:04:58.0092 6428 AeLookupSvc - ok
19:04:58.0157 6428 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:04:58.0179 6428 AFD - ok
19:04:58.0225 6428 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:04:58.0227 6428 agp440 - ok
19:04:58.0286 6428 [ 595C626C7AE98C69F65CCC3FED352994 ] AirDisplay C:\Windows\system32\DRIVERS\AVVideoCard.sys
19:04:58.0296 6428 AirDisplay - ok
19:04:58.0356 6428 [ D15748EEA741C396C8414DC8168B3753 ] AirDisplayMirror C:\Windows\system32\DRIVERS\AVVideoCardMirror.sys
19:04:58.0357 6428 AirDisplayMirror - ok
19:04:58.0408 6428 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:04:58.0410 6428 ALG - ok
19:04:58.0467 6428 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:04:58.0469 6428 aliide - ok
19:04:58.0513 6428 [ 98A2774D3F18C107874C8C1163EBE484 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:04:58.0515 6428 AMD External Events Utility - ok
19:04:58.0537 6428 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:04:58.0538 6428 amdide - ok
19:04:58.0582 6428 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:04:58.0584 6428 AmdK8 - ok
19:04:58.0596 6428 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:04:58.0598 6428 AmdPPM - ok
19:04:58.0659 6428 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:04:58.0661 6428 amdsata - ok
19:04:58.0690 6428 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:04:58.0694 6428 amdsbs - ok
19:04:58.0745 6428 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:04:58.0745 6428 amdxata - ok
19:04:58.0804 6428 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:04:58.0806 6428 AppID - ok
19:04:58.0840 6428 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:04:58.0841 6428 AppIDSvc - ok
19:04:59.0228 6428 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:04:59.0230 6428 Appinfo - ok
19:04:59.0369 6428 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:04:59.0371 6428 Apple Mobile Device - ok
19:04:59.0434 6428 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:04:59.0436 6428 arc - ok
19:04:59.0458 6428 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:04:59.0460 6428 arcsas - ok
19:04:59.0596 6428 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:04:59.0598 6428 aspnet_state - ok
19:04:59.0634 6428 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:04:59.0635 6428 AsyncMac - ok
19:04:59.0678 6428 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:04:59.0678 6428 atapi - ok
19:04:59.0734 6428 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\Windows\system32\DRIVERS\athrx.sys
19:04:59.0783 6428 athr - ok
19:04:59.0956 6428 [ 173F4C05F87085E9BDA3F7037BC9F40E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:05:00.0091 6428 atikmdag - ok
19:05:00.0159 6428 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:05:00.0164 6428 AudioEndpointBuilder - ok
19:05:00.0182 6428 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:05:00.0186 6428 AudioSrv - ok
19:05:00.0339 6428 [ 3A457C2F798CAD79CD30224E723E01FB ] AVG Security Toolbar Service C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe
19:05:00.0345 6428 AVG Security Toolbar Service - ok
19:05:00.0646 6428 [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
19:05:00.0679 6428 AVGIDSAgent - ok
19:05:00.0763 6428 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
19:05:00.0790 6428 AVGIDSDriver - ok
19:05:00.0836 6428 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
19:05:00.0837 6428 AVGIDSHA - ok
19:05:00.0930 6428 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
19:05:00.0931 6428 Avgldx64 - ok
19:05:01.0026 6428 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
19:05:01.0029 6428 Avgloga - ok
19:05:01.0123 6428 [ 841C40C193889730848849AC220D9242 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
19:05:01.0125 6428 Avgmfx64 - ok
19:05:01.0207 6428 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
19:05:01.0208 6428 Avgrkx64 - ok
19:05:01.0271 6428 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
19:05:01.0272 6428 Avgtdia - ok
19:05:01.0407 6428 [ 95AED7BB68CF3381AF19DA81BC7DD3FB ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
19:05:01.0408 6428 avgtp - ok
19:05:01.0466 6428 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
19:05:01.0468 6428 avgwd - ok
19:05:01.0547 6428 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:05:01.0550 6428 AxInstSV - ok
19:05:01.0606 6428 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:05:01.0629 6428 b06bdrv - ok
19:05:01.0663 6428 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:05:01.0667 6428 b57nd60a - ok
19:05:01.0697 6428 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:05:01.0699 6428 BDESVC - ok
19:05:01.0752 6428 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:05:01.0753 6428 Beep - ok
19:05:01.0869 6428 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:05:01.0890 6428 BFE - ok
19:05:01.0923 6428 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:05:01.0924 6428 blbdrive - ok
19:05:02.0025 6428 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:05:02.0028 6428 Bonjour Service - ok
19:05:02.0070 6428 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:05:02.0071 6428 bowser - ok
19:05:02.0121 6428 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:05:02.0122 6428 BrFiltLo - ok
19:05:02.0134 6428 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:05:02.0135 6428 BrFiltUp - ok
19:05:02.0177 6428 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
19:05:02.0179 6428 Browser - ok
19:05:02.0212 6428 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:05:02.0217 6428 Brserid - ok
19:05:02.0234 6428 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:05:02.0236 6428 BrSerWdm - ok
19:05:02.0270 6428 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:05:02.0271 6428 BrUsbMdm - ok
19:05:02.0291 6428 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:05:02.0292 6428 BrUsbSer - ok
19:05:02.0352 6428 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:05:02.0354 6428 BthEnum - ok
19:05:02.0388 6428 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:05:02.0390 6428 BTHMODEM - ok
19:05:02.0435 6428 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:05:02.0438 6428 BthPan - ok
19:05:02.0507 6428 [ 64C198198501F7560EE41D8D1EFA7952 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:05:02.0518 6428 BTHPORT - ok
19:05:02.0557 6428 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:05:02.0558 6428 bthserv - ok
19:05:02.0629 6428 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:05:02.0631 6428 BTHUSB - ok
19:05:02.0681 6428 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:05:02.0683 6428 cdfs - ok
19:05:02.0752 6428 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:05:02.0755 6428 cdrom - ok
19:05:02.0797 6428 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:05:02.0799 6428 CertPropSvc - ok
19:05:02.0880 6428 [ 837FF2D497880198C918E6954DBD170C ] cfWiMAXService C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
19:05:02.0882 6428 cfWiMAXService - ok
19:05:02.0931 6428 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:05:02.0933 6428 circlass - ok
19:05:02.0972 6428 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:05:02.0974 6428 CLFS - ok
19:05:03.0027 6428 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:05:03.0028 6428 clr_optimization_v2.0.50727_32 - ok
19:05:03.0069 6428 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:05:03.0071 6428 clr_optimization_v2.0.50727_64 - ok
19:05:03.0162 6428 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:05:03.0163 6428 clr_optimization_v4.0.30319_32 - ok
19:05:03.0219 6428 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:05:03.0220 6428 clr_optimization_v4.0.30319_64 - ok
19:05:03.0269 6428 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:05:03.0271 6428 CmBatt - ok
19:05:03.0296 6428 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:05:03.0298 6428 cmdide - ok
19:05:03.0335 6428 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:05:03.0338 6428 CNG - ok
19:05:03.0390 6428 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:05:03.0391 6428 Compbatt - ok
19:05:03.0433 6428 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:05:03.0434 6428 CompositeBus - ok
19:05:03.0451 6428 COMSysApp - ok
19:05:03.0486 6428 [ D252C53BCDFC199BBA55EEB10CDB266E ] ConfigFree Gadget Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
19:05:03.0487 6428 ConfigFree Gadget Service - ok
19:05:03.0525 6428 [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
19:05:03.0526 6428 ConfigFree Service - ok
19:05:03.0546 6428 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:05:03.0548 6428 crcdisk - ok
19:05:03.0622 6428 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:05:03.0624 6428 CryptSvc - ok
19:05:03.0691 6428 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:05:03.0695 6428 DcomLaunch - ok
19:05:03.0862 6428 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:05:03.0867 6428 defragsvc - ok
19:05:03.0900 6428 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:05:03.0902 6428 DfsC - ok
19:05:03.0938 6428 DhaHelper - ok
19:05:03.0982 6428 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:05:03.0984 6428 Dhcp - ok
19:05:03.0998 6428 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:05:03.0999 6428 discache - ok
19:05:04.0055 6428 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:05:04.0056 6428 Disk - ok
19:05:04.0110 6428 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:05:04.0112 6428 Dnscache - ok
19:05:04.0152 6428 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:05:04.0156 6428 dot3svc - ok
19:05:04.0194 6428 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:05:04.0195 6428 DPS - ok
19:05:04.0237 6428 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:05:04.0238 6428 drmkaud - ok
19:05:04.0291 6428 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:05:04.0299 6428 DXGKrnl - ok
19:05:04.0349 6428 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:05:04.0350 6428 EapHost - ok
19:05:04.0427 6428 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:05:04.0512 6428 ebdrv - ok
19:05:04.0553 6428 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:05:04.0554 6428 EFS - ok
19:05:04.0624 6428 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:05:04.0628 6428 ehRecvr - ok
19:05:04.0648 6428 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:05:04.0649 6428 ehSched - ok
19:05:04.0734 6428 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:05:04.0750 6428 elxstor - ok
19:05:04.0794 6428 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:05:04.0796 6428 ErrDev - ok
19:05:04.0836 6428 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:05:04.0839 6428 EventSystem - ok
19:05:04.0859 6428 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:05:04.0862 6428 exfat - ok
19:05:04.0885 6428 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:05:04.0888 6428 fastfat - ok
19:05:04.0944 6428 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:05:04.0987 6428 Fax - ok
19:05:05.0013 6428 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:05:05.0014 6428 fdc - ok
19:05:05.0071 6428 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:05:05.0073 6428 fdPHost - ok
19:05:05.0088 6428 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:05:05.0090 6428 FDResPub - ok
19:05:05.0103 6428 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:05:05.0104 6428 FileInfo - ok
19:05:05.0112 6428 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:05:05.0113 6428 Filetrace - ok
19:05:05.0138 6428 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:05:05.0139 6428 flpydisk - ok
19:05:05.0179 6428 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:05:05.0181 6428 FltMgr - ok
19:05:05.0242 6428 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:05:05.0291 6428 FontCache - ok
19:05:05.0345 6428 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:05:05.0346 6428 FontCache3.0.0.0 - ok
19:05:05.0366 6428 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:05:05.0368 6428 FsDepends - ok
19:05:05.0402 6428 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:05:05.0402 6428 Fs_Rec - ok
19:05:05.0450 6428 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:05:05.0452 6428 fvevol - ok
19:05:05.0506 6428 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:05:05.0508 6428 gagp30kx - ok
19:05:05.0600 6428 [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
19:05:05.0602 6428 GameConsoleService - ok
19:05:05.0667 6428 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:05:05.0668 6428 GEARAspiWDM - ok
19:05:05.0705 6428 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:05:05.0711 6428 gpsvc - ok
19:05:05.0848 6428 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:05:05.0851 6428 gupdate - ok
19:05:05.0882 6428 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:05:05.0884 6428 gupdatem - ok
19:05:05.0912 6428 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:05:05.0914 6428 hcw85cir - ok
19:05:05.0973 6428 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:05:05.0979 6428 HdAudAddService - ok
19:05:05.0994 6428 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:05:05.0996 6428 HDAudBus - ok
19:05:06.0019 6428 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:05:06.0021 6428 HidBatt - ok
19:05:06.0039 6428 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:05:06.0041 6428 HidBth - ok
19:05:06.0061 6428 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:05:06.0063 6428 HidIr - ok
19:05:06.0086 6428 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:05:06.0087 6428 hidserv - ok
19:05:06.0148 6428 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:05:06.0150 6428 HidUsb - ok
19:05:06.0211 6428 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:05:06.0213 6428 hkmsvc - ok
19:05:06.0254 6428 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:05:06.0258 6428 HomeGroupListener - ok
19:05:06.0301 6428 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:05:06.0305 6428 HomeGroupProvider - ok
19:05:06.0364 6428 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:05:06.0366 6428 HpSAMD - ok
19:05:06.0404 6428 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:05:06.0408 6428 HTTP - ok
19:05:06.0435 6428 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:05:06.0436 6428 hwpolicy - ok
19:05:06.0480 6428 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:05:06.0482 6428 i8042prt - ok
19:05:06.0514 6428 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
19:05:06.0517 6428 iaStor - ok
19:05:06.0588 6428 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:05:06.0600 6428 iaStorV - ok
19:05:06.0660 6428 [ 3CBC834892B5E04CE635BB60FB0EE6FF ] IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys
19:05:06.0662 6428 IDMWFP - ok
19:05:06.0922 6428 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:05:06.0923 6428 IDriverT - ok
19:05:06.0983 6428 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:05:07.0014 6428 idsvc - ok
19:05:07.0065 6428 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:05:07.0067 6428 iirsp - ok
19:05:07.0134 6428 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:05:07.0176 6428 IKEEXT - ok
19:05:07.0268 6428 [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:05:07.0279 6428 IntcAzAudAddService - ok
19:05:07.0314 6428 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:05:07.0315 6428 intelide - ok
19:05:07.0359 6428 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:05:07.0360 6428 intelppm - ok
19:05:07.0415 6428 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:05:07.0417 6428 IPBusEnum - ok
19:05:07.0478 6428 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:05:07.0480 6428 IpFilterDriver - ok
19:05:07.0509 6428 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:05:07.0512 6428 IPMIDRV - ok
19:05:07.0567 6428 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:05:07.0569 6428 IPNAT - ok
19:05:07.0637 6428 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:05:07.0641 6428 iPod Service - ok
19:05:07.0685 6428 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:05:07.0686 6428 IRENUM - ok
19:05:07.0724 6428 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:05:07.0733 6428 isapnp - ok
19:05:07.0784 6428 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:05:07.0789 6428 iScsiPrt - ok
19:05:07.0817 6428 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:05:07.0818 6428 kbdclass - ok
19:05:07.0868 6428 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:05:07.0869 6428 kbdhid - ok
19:05:07.0887 6428 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:05:07.0888 6428 KeyIso - ok
19:05:07.0920 6428 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:05:07.0921 6428 KSecDD - ok
19:05:07.0931 6428 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:05:07.0932 6428 KSecPkg - ok
19:05:07.0966 6428 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:05:07.0968 6428 ksthunk - ok
19:05:08.0016 6428 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:05:08.0027 6428 KtmRm - ok
19:05:08.0080 6428 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:05:08.0082 6428 LanmanServer - ok
19:05:08.0119 6428 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:05:08.0121 6428 LanmanWorkstation - ok
19:05:08.0167 6428 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:05:08.0168 6428 lltdio - ok
19:05:08.0217 6428 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:05:08.0223 6428 lltdsvc - ok
19:05:08.0237 6428 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:05:08.0238 6428 lmhosts - ok
19:05:08.0323 6428 [ 7109163D8027076D2680CFC4E80E2A28 ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
19:05:08.0325 6428 LMIGuardianSvc - ok
19:05:08.0400 6428 [ 0317335B15FF3BDA8E10197E3434CFC0 ] LMIInfo C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
19:05:08.0401 6428 LMIInfo - ok
19:05:08.0466 6428 [ 8054CE1FC8B417691960D00F931516A7 ] LMIMaint C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
19:05:08.0468 6428 LMIMaint - ok
19:05:08.0533 6428 [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
19:05:08.0533 6428 lmimirr - ok
19:05:08.0575 6428 LMIRfsClientNP - ok
19:05:08.0606 6428 [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
19:05:08.0607 6428 LMIRfsDriver - ok
19:05:08.0667 6428 [ D3760BC17E1755091B7120CF32DBF56B ] LogMeIn C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
19:05:08.0670 6428 LogMeIn - ok
19:05:08.0733 6428 [ 41E122F6D1448C94CC05196BC41D6BFB ] LPCFilter C:\Windows\system32\DRIVERS\LPCFilter.sys
19:05:08.0734 6428 LPCFilter - ok
19:05:08.0779 6428 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:05:08.0781 6428 LSI_FC - ok
19:05:08.0793 6428 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:05:08.0796 6428 LSI_SAS - ok
19:05:08.0809 6428 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:05:08.0812 6428 LSI_SAS2 - ok
19:05:08.0837 6428 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:05:08.0840 6428 LSI_SCSI - ok
19:05:08.0855 6428 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:05:08.0856 6428 luafv - ok
19:05:08.0909 6428 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:05:08.0912 6428 Mcx2Svc - ok
19:05:08.0953 6428 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:05:08.0955 6428 megasas - ok
19:05:08.0973 6428 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:05:08.0978 6428 MegaSR - ok
19:05:09.0002 6428 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:05:09.0003 6428 MMCSS - ok
19:05:09.0033 6428 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:05:09.0035 6428 Modem - ok
19:05:09.0081 6428 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:05:09.0082 6428 monitor - ok
19:05:09.0120 6428 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:05:09.0121 6428 mouclass - ok
19:05:09.0158 6428 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:05:09.0159 6428 mouhid - ok
19:05:09.0197 6428 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:05:09.0198 6428 mountmgr - ok
19:05:09.0264 6428 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:05:09.0265 6428 MozillaMaintenance - ok
19:05:09.0300 6428 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:05:09.0303 6428 mpio - ok
19:05:09.0331 6428 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:05:09.0334 6428 mpsdrv - ok
19:05:09.0376 6428 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:05:09.0379 6428 MRxDAV - ok
19:05:09.0422 6428 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:05:09.0424 6428 mrxsmb - ok
19:05:09.0466 6428 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:05:09.0468 6428 mrxsmb10 - ok
19:05:09.0481 6428 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:05:09.0482 6428 mrxsmb20 - ok
19:05:09.0518 6428 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:05:09.0519 6428 msahci - ok
19:05:09.0564 6428 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:05:09.0567 6428 msdsm - ok
19:05:09.0590 6428 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:05:09.0594 6428 MSDTC - ok
19:05:09.0643 6428 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:05:09.0645 6428 Msfs - ok
19:05:09.0675 6428 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:05:09.0676 6428 mshidkmdf - ok
19:05:09.0694 6428 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:05:09.0695 6428 msisadrv - ok
19:05:09.0758 6428 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:05:09.0761 6428 MSiSCSI - ok
19:05:09.0765 6428 msiserver - ok
19:05:09.0816 6428 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:05:09.0818 6428 MSKSSRV - ok
19:05:09.0830 6428 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:05:09.0831 6428 MSPCLOCK - ok
19:05:09.0835 6428 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:05:09.0836 6428 MSPQM - ok
19:05:09.0876 6428 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:05:09.0879 6428 MsRPC - ok
19:05:09.0936 6428 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:05:09.0936 6428 mssmbios - ok
19:05:09.0998 6428 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:05:09.0999 6428 MSTEE - ok
19:05:10.0009 6428 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:05:10.0011 6428 MTConfig - ok
19:05:10.0106 6428 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:05:10.0107 6428 Mup - ok
19:05:10.0143 6428 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:05:10.0165 6428 napagent - ok
19:05:10.0240 6428 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:05:10.0242 6428 NativeWifiP - ok
19:05:10.0313 6428 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:05:10.0319 6428 NDIS - ok
19:05:10.0360 6428 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:05:10.0361 6428 NdisCap - ok
19:05:10.0394 6428 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:05:10.0395 6428 NdisTapi - ok
19:05:10.0452 6428 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:05:10.0453 6428 Ndisuio - ok
19:05:10.0483 6428 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:05:10.0486 6428 NdisWan - ok
19:05:10.0523 6428 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:05:10.0525 6428 NDProxy - ok
19:05:10.0562 6428 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:05:10.0563 6428 NetBIOS - ok
19:05:10.0600 6428 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:05:10.0607 6428 NetBT - ok
19:05:10.0622 6428 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:05:10.0625 6428 Netlogon - ok
19:05:10.0674 6428 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:05:10.0697 6428 Netman - ok
19:05:10.0784 6428 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:05:10.0788 6428 NetMsmqActivator - ok
19:05:10.0798 6428 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:05:10.0802 6428 NetPipeActivator - ok
19:05:10.0887 6428 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:05:10.0896 6428 netprofm - ok
19:05:10.0924 6428 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:05:10.0927 6428 NetTcpActivator - ok
19:05:10.0937 6428 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:05:10.0940 6428 NetTcpPortSharing - ok
19:05:10.0987 6428 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:05:10.0990 6428 nfrd960 - ok
19:05:11.0047 6428 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:05:11.0054 6428 NlaSvc - ok
19:05:11.0110 6428 NPF - ok
19:05:11.0139 6428 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:05:11.0142 6428 Npfs - ok
19:05:11.0174 6428 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:05:11.0177 6428 nsi - ok
19:05:11.0212 6428 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:05:11.0214 6428 nsiproxy - ok
19:05:11.0310 6428 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:05:11.0335 6428 Ntfs - ok
19:05:11.0363 6428 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:05:11.0365 6428 Null - ok
19:05:11.0417 6428 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:05:11.0423 6428 nvraid - ok
19:05:11.0445 6428 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:05:11.0451 6428 nvstor - ok
19:05:11.0511 6428 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:05:11.0516 6428 nv_agp - ok
19:05:11.0624 6428 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:05:11.0654 6428 odserv - ok
19:05:11.0696 6428 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:05:11.0700 6428 ohci1394 - ok
19:05:11.0783 6428 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:05:11.0786 6428 ose - ok
19:05:11.0870 6428 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:05:11.0892 6428 p2pimsvc - ok
19:05:11.0926 6428 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:05:11.0960 6428 p2psvc - ok
19:05:11.0992 6428 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:05:11.0997 6428 Parport - ok
19:05:12.0040 6428 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:05:12.0043 6428 partmgr - ok
19:05:12.0077 6428 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:05:12.0083 6428 PcaSvc - ok
19:05:12.0150 6428 [ 81B5E63131090879AD6EF9F32109B88D ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
19:05:12.0153 6428 pccsmcfd - ok
19:05:12.0196 6428 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:05:12.0200 6428 pci - ok
19:05:12.0219 6428 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:05:12.0221 6428 pciide - ok
19:05:12.0262 6428 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:05:12.0269 6428 pcmcia - ok
19:05:12.0290 6428 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:05:12.0292 6428 pcw - ok
19:05:12.0322 6428 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:05:12.0334 6428 PEAUTH - ok
19:05:12.0442 6428 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:05:12.0446 6428 PerfHost - ok
19:05:12.0536 6428 [ 663962900E7FEA522126BA287715BB4A ] PGEffect C:\Windows\system32\DRIVERS\pgeffect.sys
19:05:12.0538 6428 PGEffect - ok
19:05:12.0614 6428 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:05:12.0661 6428 pla - ok
19:05:12.0742 6428 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:05:12.0751 6428 PlugPlay - ok
19:05:12.0775 6428 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:05:12.0780 6428 PNRPAutoReg - ok
19:05:12.0814 6428 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:05:12.0822 6428 PNRPsvc - ok
19:05:12.0886 6428 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:05:12.0909 6428 PolicyAgent - ok
19:05:12.0946 6428 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:05:12.0953 6428 Power - ok
19:05:13.0019 6428 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:05:13.0023 6428 PptpMiniport - ok
19:05:13.0063 6428 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:05:13.0067 6428 Processor - ok
19:05:13.0121 6428 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
19:05:13.0127 6428 ProfSvc - ok
19:05:13.0145 6428 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:05:13.0148 6428 ProtectedStorage - ok
19:05:13.0212 6428 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:05:13.0216 6428 Psched - ok
19:05:13.0439 6428 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:05:13.0508 6428 ql2300 - ok
19:05:13.0528 6428 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:05:13.0534 6428 ql40xx - ok
19:05:13.0569 6428 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:05:13.0580 6428 QWAVE - ok
19:05:13.0599 6428 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:05:13.0602 6428 QWAVEdrv - ok
19:05:13.0635 6428 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:05:13.0638 6428 RasAcd - ok
19:05:13.0689 6428 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:05:13.0693 6428 RasAgileVpn - ok
19:05:13.0727 6428 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:05:13.0733 6428 RasAuto - ok
19:05:13.0775 6428 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:05:13.0779 6428 Rasl2tp - ok
19:05:13.0799 6428 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:05:13.0823 6428 RasMan - ok
19:05:13.0880 6428 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:05:13.0885 6428 RasPppoe - ok
19:05:13.0902 6428 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:05:13.0906 6428 RasSstp - ok
19:05:13.0955 6428 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:05:13.0966 6428 rdbss - ok
19:05:13.0988 6428 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:05:13.0991 6428 rdpbus - ok
19:05:14.0012 6428 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:05:14.0014 6428 RDPCDD - ok
19:05:14.0064 6428 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:05:14.0066 6428 RDPENCDD - ok
19:05:14.0091 6428 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:05:14.0093 6428 RDPREFMP - ok
19:05:14.0145 6428 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:05:14.0152 6428 RDPWD - ok
19:05:14.0215 6428 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:05:14.0220 6428 rdyboost - ok
19:05:14.0287 6428 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:05:14.0292 6428 RemoteAccess - ok
19:05:14.0350 6428 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:05:14.0361 6428 RemoteRegistry - ok
19:05:14.0414 6428 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:05:14.0419 6428 RFCOMM - ok
19:05:14.0447 6428 rpcapd - ok
19:05:14.0490 6428 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:05:14.0495 6428 RpcEptMapper - ok
19:05:14.0519 6428 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:05:14.0522 6428 RpcLocator - ok
19:05:14.0577 6428 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:05:14.0587 6428 RpcSs - ok
19:05:14.0644 6428 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:05:14.0647 6428 rspndr - ok
19:05:14.0709 6428 [ 8C22F21C924413D4E109995F748E18BB ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
19:05:14.0721 6428 RSUSBSTOR - ok
19:05:14.0768 6428 [ 483C537E69FA97C77F7FE0E2E1C1F102 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
19:05:14.0772 6428 RTHDMIAzAudService - ok
19:05:14.0836 6428 [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:05:14.0843 6428 RTL8167 - ok
19:05:14.0926 6428 [ 7475548B0BA58EBA4D12414FC9E9DFE6 ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
19:05:14.0943 6428 rtl8192se - ok
19:05:14.0953 6428 RtsUIR - ok
19:05:14.0979 6428 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:05:14.0982 6428 SamSs - ok
19:05:15.0020 6428 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:05:15.0025 6428 sbp2port - ok
19:05:15.0065 6428 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:05:15.0077 6428 SCardSvr - ok
19:05:15.0113 6428 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:05:15.0116 6428 scfilter - ok
19:05:15.0182 6428 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:05:15.0201 6428 Schedule - ok
19:05:15.0248 6428 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:05:15.0251 6428 SCPolicySvc - ok
19:05:15.0271 6428 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:05:15.0282 6428 SDRSVC - ok
19:05:15.0342 6428 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:05:15.0345 6428 secdrv - ok
19:05:15.0388 6428 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:05:15.0393 6428 seclogon - ok
19:05:15.0422 6428 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:05:15.0427 6428 SENS - ok
19:05:15.0441 6428 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:05:15.0445 6428 SensrSvc - ok
19:05:15.0475 6428 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:05:15.0478 6428 Serenum - ok
19:05:15.0499 6428 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:05:15.0504 6428 Serial - ok
19:05:15.0545 6428 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:05:15.0548 6428 sermouse - ok
19:05:15.0657 6428 [ 9D38320BB32230349379DF5DDBBF7FCE ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
19:05:15.0682 6428 ServiceLayer - ok
19:05:15.0743 6428 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:05:15.0750 6428 SessionEnv - ok
19:05:15.0799 6428 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:05:15.0802 6428 sffdisk - ok
19:05:15.0818 6428 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:05:15.0822 6428 sffp_mmc - ok
19:05:15.0837 6428 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:05:15.0840 6428 sffp_sd - ok
19:05:15.0863 6428 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:05:15.0866 6428 sfloppy - ok
19:05:15.0924 6428 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:05:15.0932 6428 ShellHWDetection - ok
19:05:16.0017 6428 [ AB191E50DA5DC1E69311742E3930A61E ] SilvrLnk C:\Windows\system32\DRIVERS\silvrlnk.sys
19:05:16.0022 6428 SilvrLnk - ok
19:05:16.0068 6428 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:05:16.0072 6428 SiSRaid2 - ok
19:05:16.0104 6428 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:05:16.0108 6428 SiSRaid4 - ok
19:05:16.0322 6428 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
19:05:16.0365 6428 Skype C2C Service - ok
19:05:16.0476 6428 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:05:16.0480 6428 SkypeUpdate - ok
19:05:16.0533 6428 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:05:16.0537 6428 Smb - ok
19:05:16.0603 6428 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:05:16.0607 6428 SNMPTRAP - ok
19:05:16.0630 6428 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:05:16.0632 6428 spldr - ok
19:05:16.0698 6428 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
19:05:16.0710 6428 Spooler - ok
19:05:16.0851 6428 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:05:16.0966 6428 sppsvc - ok
19:05:16.0992 6428 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:05:16.0998 6428 sppuinotify - ok
19:05:17.0049 6428 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:05:17.0057 6428 srv - ok
19:05:17.0082 6428 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:05:17.0089 6428 srv2 - ok
19:05:17.0117 6428 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:05:17.0121 6428 srvnet - ok
19:05:17.0170 6428 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:05:17.0182 6428 SSDPSRV - ok
19:05:17.0206 6428 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:05:17.0211 6428 SstpSvc - ok
19:05:17.0246 6428 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:05:17.0249 6428 stexstor - ok
19:05:17.0301 6428 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:05:17.0324 6428 stisvc - ok
19:05:17.0417 6428 [ BD6CA1593FDBEC10917EC3092A6E6C92 ] supdate C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe
19:05:17.0420 6428 supdate - ok
19:05:17.0466 6428 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:05:17.0468 6428 swenum - ok
19:05:17.0506 6428 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:05:17.0530 6428 swprv - ok
19:05:17.0592 6428 [ BE7311DA9D6833FA69ED04B744A1C8F8 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
19:05:17.0597 6428 SynTP - ok
19:05:17.0684 6428 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:05:17.0742 6428 SysMain - ok
19:05:17.0793 6428 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:05:17.0800 6428 TabletInputService - ok
19:05:17.0823 6428 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:05:17.0846 6428 TapiSrv - ok
19:05:17.0871 6428 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:05:17.0876 6428 TBS - ok
19:05:17.0981 6428 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:05:18.0008 6428 Tcpip - ok
19:05:18.0103 6428 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:05:18.0131 6428 TCPIP6 - ok
19:05:18.0188 6428 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:05:18.0191 6428 tcpipreg - ok
19:05:18.0263 6428 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
19:05:18.0265 6428 tdcmdpst - ok
19:05:18.0301 6428 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:05:18.0304 6428 TDPIPE - ok
19:05:18.0341 6428 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:05:18.0375 6428 TDTCP - ok
19:05:18.0443 6428 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:05:18.0448 6428 tdx - ok
19:05:18.0481 6428 [ 63B4F544664DC5154FDA4213E2AF09D0 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
19:05:18.0484 6428 TemproMonitoringService - ok
19:05:18.0539 6428 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:05:18.0542 6428 TermDD - ok
19:05:18.0598 6428 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:05:18.0644 6428 TermService - ok
19:05:18.0698 6428 TFsExDisk - ok
19:05:18.0736 6428 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:05:18.0741 6428 Themes - ok
19:05:18.0772 6428 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:05:18.0776 6428 THREADORDER - ok
19:05:18.0801 6428 TICalc - ok
19:05:18.0883 6428 [ F120967184A27E927052E8DDBB727851 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
19:05:18.0885 6428 TMachInfo - ok
19:05:18.0934 6428 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe
19:05:18.0941 6428 TODDSrv - ok
19:05:19.0028 6428 [ 4DB8C79BCEA76063B83B13410366A1F7 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
19:05:19.0037 6428 TosCoSrv - ok
19:05:19.0109 6428 [ 707800855AFBD7648375EFB1519B8D6D ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
19:05:19.0114 6428 TOSHIBA eco Utility Service - ok
19:05:19.0188 6428 [ DD58E1250F604CBBADDA04575E5E2376 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
19:05:19.0192 6428 TOSHIBA HDD SSD Alert Service - ok
19:05:19.0256 6428 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\Windows\system32\DRIVERS\tos_sps64.sys
19:05:19.0264 6428 tos_sps64 - ok
19:05:19.0329 6428 [ DE64C52BD0671165CF2EEBF2A728A3E2 ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
19:05:19.0341 6428 TPCHSrv - ok
19:05:19.0376 6428 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:05:19.0383 6428 TrkWks - ok
19:05:19.0439 6428 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:05:19.0442 6428 TrustedInstaller - ok
19:05:19.0494 6428 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:05:19.0496 6428 tssecsrv - ok
19:05:19.0546 6428 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:05:19.0549 6428 TsUsbFlt - ok
19:05:19.0604 6428 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:05:19.0609 6428 tunnel - ok
19:05:19.0657 6428 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
19:05:19.0659 6428 TVALZ - ok
19:05:19.0719 6428 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\Windows\system32\DRIVERS\TVALZFL.sys
19:05:19.0721 6428 TVALZFL - ok
19:05:19.0751 6428 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:05:19.0755 6428 uagp35 - ok
19:05:19.0801 6428 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:05:19.0823 6428 udfs - ok
19:05:19.0878 6428 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:05:19.0883 6428 UI0Detect - ok
19:05:19.0925 6428 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:05:19.0929 6428 uliagpkx - ok
19:05:19.0971 6428 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:05:19.0974 6428 umbus - ok
19:05:20.0006 6428 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:05:20.0009 6428 UmPass - ok
19:05:20.0061 6428 [ 8F387A1CC015A3F5020700C657A0FC85 ] UnsignedThemes C:\Windows\UnsignedThemesSvc.exe
19:05:20.0063 6428 UnsignedThemes - ok
19:05:20.0101 6428 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:05:20.0124 6428 upnphost - ok
19:05:20.0209 6428 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:05:20.0213 6428 USBAAPL64 - ok
19:05:20.0256 6428 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:05:20.0260 6428 usbccgp - ok
19:05:20.0269 6428 USBCCID - ok
19:05:20.0329 6428 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:05:20.0334 6428 usbcir - ok
19:05:20.0368 6428 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:05:20.0371 6428 usbehci - ok
19:05:20.0445 6428 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:05:20.0468 6428 usbhub - ok
19:05:20.0492 6428 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:05:20.0495 6428 usbohci - ok
19:05:20.0522 6428 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:05:20.0525 6428 usbprint - ok
19:05:20.0590 6428 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:05:20.0594 6428 USBSTOR - ok
19:05:20.0652 6428 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:05:20.0655 6428 usbuhci - ok
19:05:20.0737 6428 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\
0
Réponse 7 / 13
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013
31 janv. 2013 à 19:23
# AdwCleaner v2.109 - Rapport créé le 31/01/2013 à 19:13:24
# Mis à jour le 26/01/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Jérôme - JÉRÔME-TOSH
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Jérôme\Downloads\Programs\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****


***** [Registre] *****


***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16447

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v17.0.1 (fr)

Fichier : C:\Users\Jérôme\AppData\Roaming\Mozilla\Firefox\Profiles\bjqlhuvg.default\prefs.js

[OK] Le fichier ne contient aucune entrée illégitime.

-\\ Google Chrome v24.0.1312.56

Fichier : C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[S1].txt - [968 octets] - [31/01/2013 19:13:24]

########## EOF - C:\AdwCleaner[S1].txt - [1027 octets] ##########
0
Réponse 8 / 13
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013
31 janv. 2013 à 20:13
Et voila le lien pijoint => https://pjjoint.malekal.com/files.php?id=20130131_o13r9y14o10p15
0
Réponse 9 / 13
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 641
Modifié par Malekal_morte- le 31/01/2013 à 20:37
Beaucoup de programmes parasites!
Désinstalle Internet Download Manager - si tu ne t'en sers pas.


Relance OTL.
o sous Persfonnalisation (Custom Scan), copie_colle le contenu du cadre ci dessous (bien prendre :OTL en début).
Clic Correction (Fix), un rapport apparraitra, copie/colle le contenu ici:

:OTL
[2010/06/01 19:11:29 | 000,000,000 | ---D | M] -- C:\Users\Jérôme\AppData\Roaming\E5CBD6C24D6DA3FE3098092A1A5A03DA
[2012/09/29 17:26:57 | 000,000,000 | ---D | M] (IDM CC) -- C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\mozilla_cc@internetdownloadmanager.com
[2012/10/07 13:18:19 | 000,000,000 | ---D | M] (Stylish-Custom) -- C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org
[2012/10/10 16:15:05 | 001,626,141 | ---- | M] () (No name found) -- C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\firebug@software.joehewitt.com.xpi
[2011/11/11 14:54:42 | 000,006,796 | ---- | M] () (No name found) -- C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\info@youtube-mp3.org.xpi
[2012/07/02 23:49:38 | 000,051,442 | ---- | M] () (No name found) -- C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\survey-remover@gmx.com.xpi
[2012/05/08 08:49:33 | 000,011,503 | ---- | M] () (No name found) -- C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\twitzerTiny@shorttext.com.xpi
[2012/10/07 13:18:14 | 000,024,227 | ---- | M] () (No name found) -- C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\{0e3fc079-afbb-4a00-87e5-9486062d0f9c}.xpi
[2013/01/13 16:48:33 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
File not found (No name found) -- C:\PROGRAMDATA\AVG SECURE SEARCH\FIREFOXEXT\14.0.2.14
File not found (No name found) -- C:\USERS\JéRÃME\APPDATA\ROAMING\MOZILLA\EXTENSIONS\{EC8030F7-C20A-464F-9B0E-13A3A9E97384}\GENCRAWLER@SOME.COM
File not found (No name found) -- C:\USERS\JéRÃME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BJQLHUVG.DEFAULT\EXTENSIONS\INFO@YOUTUBE-MP3.ORG.XPI
File not found (No name found) -- C:\USERS\JéRÃME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BJQLHUVG.DEFAULT\EXTENSIONS\MOZILLA_CC@INTERNETDOWNLOADMANAGER.COM
File not found (No name found) -- C:\USERS\JéRÃME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BJQLHUVG.DEFAULT\EXTENSIONS\STYLISH-CUSTOM@CHOGGI.DYNDNS.ORG
File not found (No name found) -- C:\USERS\JéRÃME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\BJQLHUVG.DEFAULT\EXTENSIONS\TWITZERTINY@SHORTTEXT.COM.XPI
CHR - plugin: Internet Download Manager Plugin (Enabled) = C:\Users\J\u00E9r\u00F4me\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0\IDMGCExt.dll
CHR - Extension: IDM Integration = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0\
CHR - Extension: IDM Integration = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.14.4_0\
CHR - Extension: IncrediMail MediaBar Francais 2 = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.16.7_0\
CHR - Extension: IncrediMail MediaBar Francais 2 = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\
CHR - Extension: IDM Integration = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0\
CHR - Extension: IDM Integration = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.14.4_0\
CHR - Extension: IncrediMail MediaBar Francais 2 = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.16.7_0\
CHR - Extension: IncrediMail MediaBar Francais 2 = C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\
O3:[b]64bit:/b - HKLM\..\Toolbar: (Astroburn Toolbar) - {EFEED92A-A33D-4873-BA8F-32BAA631E54D} - C:\Program Files (x86)\Astroburn Toolbar\ABToolbar64.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No CLSID value found.
O3 - HKU\S-1-5-21-4023859825-3988872186-3578057955-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-4023859825-3988872186-3578057955-1000\..\Toolbar\WebBrowser: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3:[b]64bit:/b - HKU\S-1-5-21-4023859825-3988872186-3578057955-1000\..\Toolbar\WebBrowser: (Astroburn Toolbar) - {EFEED92A-A33D-4873-BA8F-32BAA631E54D} - C:\Program Files (x86)\Astroburn Toolbar\ABToolbar64.dll File not found
IE - HKU\S-1-5-21-4023859825-3988872186-3578057955-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com?a=19emq0zzOZA
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www6.pucuy.com/?tdfs=1&searchbox=1&showDomain=1
:Commands
[resethosts]

* redemarre le pc sous windows et poste le rapport ici

Like the angel you are, you laugh creating a lightness in my chest,
Your eyes they penetrate me,
(Your answer's always 'maybe')
That's when I got up and left
0
Réponse 10 / 13
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013
31 janv. 2013 à 20:55
Je me sers d'IDM...
Voici le rapport

========== OTL ==========
C:\Users\Jérôme\AppData\Roaming\E5CBD6C24D6DA3FE3098092A1A5A03DA folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\mozilla_cc@internetdownloadmanager.com\META-INF folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\mozilla_cc@internetdownloadmanager.com\components8 folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\mozilla_cc@internetdownloadmanager.com\components2 folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\mozilla_cc@internetdownloadmanager.com\components folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\mozilla_cc@internetdownloadmanager.com\chrome folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\mozilla_cc@internetdownloadmanager.com folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\skin folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale\zh-CN folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale\sv-SE folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale\ko-KR folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale\ja-JP folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale\es folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale\en-US folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale\de folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\locale folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\defaults\preferences folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\defaults folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\content folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\components folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\chrome\icons\default folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\chrome\icons folder moved successfully.
Folder move failed. C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\chrome scheduled to be moved on reboot.
Folder move failed. C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org scheduled to be moved on reboot.
C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\firebug@software.joehewitt.com.xpi moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\info@youtube-mp3.org.xpi moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\survey-remover@gmx.com.xpi moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\twitzerTiny@shorttext.com.xpi moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\firefox\profiles\bjqlhuvg.default\extensions\{0e3fc079-afbb-4a00-87e5-9486062d0f9c}.xpi moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons\default folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome\icons folder moved successfully.
Folder move failed. C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome scheduled to be moved on reboot.
Folder move failed. C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} scheduled to be moved on reboot.
File C:\Users\J\u00E9r\u00F4me\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0\IDMGCExt.dll not found.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0\_locales\en folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0\_locales folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0\images folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0 folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.14.4_0\_locales\en folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.14.4_0\_locales folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.14.4_0\images folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.14.4_0 folder moved successfully.
File C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.16.7_0 not found.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search\NewTabPages\js folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search\NewTabPages\img folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search\NewTabPages\html folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search\NewTabPages\css folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search\NewTabPages\API folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search\NewTabPages folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search\html folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\Search folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0\plugins folder moved successfully.
C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0 folder moved successfully.
File C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.12.25.1_0 not found.
File C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.14.4_0 not found.
File C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.16.7_0 not found.
File C:\Users\Jérôme\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbffombmdffoemfimpemoaaplncjdgfm\2.3.19.11_0 not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{872B5B88-9DB5-4310-BDD0-AC189557E5F5}\ not found.
Registry value HKEY_USERS\S-1-5-21-4023859825-3988872186-3578057955-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-4023859825-3988872186-3578057955-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
HKU\S-1-5-21-4023859825-3988872186-3578057955-1000\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.69.0 log created on 01312013_204724

Files\Folders moved on Reboot...
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org\chrome folder moved successfully.
C:\Users\Jérôme\AppData\Roaming\mozilla\Firefox\Profiles\bjqlhuvg.default\extensions\Stylish-Custom@choggi.dyndns.org folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\chrome folder moved successfully.
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} folder moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
0
Réponse 11 / 13
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 641
31 janv. 2013 à 21:21
Encore des alertes d'AVG ?
0
Réponse 12 / 13
jerometell Messages postés 11 Date d'inscription lundi 19 novembre 2012 Statut Membre Dernière intervention 31 janvier 2013
31 janv. 2013 à 21:23
ça n'a pas l'air ! :D
Merci beaucoup pour votre aide !
0
Réponse 13 / 13
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 641
31 janv. 2013 à 21:28
Sécurise ton PC !

Important - ton infection est venue par un exploit sur site web :

Un exploit sur site WEB permet l'infection de ton ordinateur de manière automatiquement à la visite d'un site WEB qui a été hacké, il tire partie du fait que tu as des logiciels (Java, Adobe Reader etc) qui sont pas à jour et possèdent des vulnérabilités qui permettent l'execution de code (malicieux dans notre cas) à ton insu.
Le fait de ne pas avoir des logiciels à jour et qui ont potentiellement des vulnérabilités permettent donc d'infecter ton système.
Exemple avec : Exploit Java

Il faut donc impérativement maintenir tes logiciels à jour afin de ne pas voir ces portes d'entrée sur ton système.
Tant que ces logiciels ne seront pas à jour, ton PC est vulnérable et les infections peuvent s'installer facilement.

IMPORTANT : mettre à jour tes programmes notamment Java/Adobe Reader et Flash :
/faq/13362-mettre-a-jour-son-pc-contre-les-failles-de-securite
https://forum.malekal.com/viewtopic.php?t=15960&start=

Désactive Java de tes navigateurs WEB : https://www.commentcamarche.net/faq/35621-desactiver-java-sur-ses-navigateurs-web


Passe le mot à tes amis !

~~

Filtrer les PUPs/Adwares les plus fréquents avec HOSTS Anti-PUPs/Adwares : http://www.malekal.com/2012/01/10/hosts-anti-pupsadware/

~~

Le reste de la sécurité : http://forum.malekal.com/comment-securiser-son-ordinateur.html
0