Sujet Précédent Sujet Suivant

Pc infect?

Résolu/Fermé
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013 - 20 mai 2013 à 13:40
 Utilisateur anonyme - 26 mai 2013 à 20:38
Bonjour,
Mon Pc s'éteint tout seul, je ne peux plus ouvrir Outlook, je ne peux plus ouvrir mes docs, de nombreuse pages de pub s'affichent.... J'ai avast comme anti virus et je ne suis pas un grand informaticien! Pouvez vous m' aider,
Merci
A voir également:

83 réponses

Précédent
Réponse 21 / 83
Utilisateur anonyme
20 mai 2013 à 20:38
ton rapport n'est pas complet !

mais pas bien grave :


Télécharge Malwarebytes' Anti-Malware et enregistre le sur ton bureau:

https://fr.malwarebytes.com/mwb-download/
ou :

https://www.malekal.com/tutoriel-malwarebyte-anti-malware/


/!\Utilisateur de Vista, Windows 7 et W8 : Clique droit sur le logo de Malwarebytes' Anti-Malware, « exécuter en tant qu'Administrateur »

. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. si le pare-feu demande l'autorisation de se connecter pour malwarebytes, acceptes
. Une fois la mise à jour terminé
. rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, cliques sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. rends toi dans l'onglet rapport/log
. tu cliques dessus pour l'afficher une fois affiché
. tu cliques sur édition en haut du boc notes, et puis sur sélectionner tous
. tu recliques sur édition et puis sur copier et tu reviens sur le forum et dans ta réponse
. Tu cliques droit dans le cadre de la réponse et coller
. À la fin du scan, il se peut que MBAM ait besoin de redémarrer le pc pour finaliser la suppression, donc pas de panique, redémarre ton pc !!!

Si tu as besoin d'aide regarde ce tutoriel :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/

0
Réponse 22 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 12:07
bonjour,
voilà le rapport de malwarebytes :
Malwarebytes Anti-Malware (Essai) 1.75.0.1300
www.malwarebytes.org

Version de la base de données: v2013.05.21.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Philippe :: MAISON [administrateur]

Protection: Activé

21/05/2013 09:53:10
mbam-log-2013-05-21 (09-53-10).txt

Type d'examen: Examen complet (C:\|D:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 817015
Temps écoulé: 2 heure(s), 4 minute(s), 29 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 1
HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B} (Adware.Boxore) -> Mis en quarantaine et supprimé avec succès.

Valeur(s) du Registre détectée(s): 1
HKLM\SOFTWARE\Software\Update\Clients\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}|name (Adware.Boxore) -> Données: BoxoreClient -> Mis en quarantaine et supprimé avec succès.

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 2
C:\Users\PAUL\Documents\dj\SoftonicDownloader_pour_virtual-dj.exe (PUP.OfferBundler.ST) -> Mis en quarantaine et supprimé avec succès.
C:\Windows\Installer\16f97ed.msi (Adware.Boxore) -> Mis en quarantaine et supprimé avec succès.

(fin)
0
Réponse 23 / 83
Utilisateur anonyme
21 mai 2013 à 15:11
bonjour,

redémarre ton pc et donne moi des nouvelles de son fonctionnement avant de continuer



0
Réponse 24 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 16:54
avant toutes choses, un grand merci pour ton aide.
il y a énormement de progres : le PC s'ouvre plutot vite, je peux consulter mes docs et mes images, il n'y a plus de pages de pub qui s'ouvrent lorsque je vais sur internet.
le 3 points qui à mon sens restent problématiques :

- lorsque je rentre sur ma session apparait un message en bas à droite de mon écran : " votre demarrage systeme a trop duré, acheté Tune up utilities pour desactiver tous les programmes qui ralentissent votre demarrage systeme"

- je ne peux plus ouvrir outlook!
lorsque je clique dessus apparait une fenetre "préparation initial", le PC travaille et au bout de 3 à 4 mn apparait une nouvelle fenetre " erreur irrécupérable lors de l'installation"

- mon anti virus AVAST est désactivé et impossible de le réactiver?? pourtant je suis toujours enregistré!

voilà les dernieres nouvelles.
encore merci
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 83
Utilisateur anonyme
21 mai 2013 à 17:04
- lorsque je rentre sur ma session apparait un message en bas à droite de mon écran : " votre demarrage systeme a trop duré, acheté Tune up utilities pour desactiver tous les programmes qui ralentissent votre demarrage systeme"


est ce que tu as tune up sur ton pc ?

si oui, désinstalle le !



- je ne peux plus ouvrir outlook!
lorsque je clique dessus apparait une fenetre "préparation initial", le PC travaille et au bout de 3 à 4 mn apparait une nouvelle fenetre " erreur irrécupérable lors de l'installation"

hummm, je dirais qu'il y a un truc, mais j'ai un doute !!!



- mon anti virus AVAST est désactivé et impossible de le réactiver?? pourtant je suis toujours enregistré!


ceci n'est pas normal !


* Télécharge TDSSKiller sur ton bureau :

https://support.kaspersky.com/downloads/utils/tdsskiller.exe

* Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant qu'administrateur " )

* Clique sur [Start Scan] pour démarrer l'analyse.

* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]

* Un rapport s'ouvrira au redémarrage du PC.

* Copie/Colle son contenu dans ta prochaine réponse.

Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.

note :
Conserve l'action proposée par défaut par l'outil :

- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" ou Sptd ou ForgedFile.Multi.Generic : laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas:D

0
Réponse 26 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 17:36
A priori rien??

17:31:25.0853 4892 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:31:26.0104 4892 ============================================================
17:31:26.0104 4892 Current date / time: 2013/05/21 17:31:26.0104
17:31:26.0104 4892 SystemInfo:
17:31:26.0104 4892
17:31:26.0104 4892 OS Version: 6.1.7601 ServicePack: 1.0
17:31:26.0104 4892 Product type: Workstation
17:31:26.0104 4892 ComputerName: MAISON
17:31:26.0104 4892 UserName: Philippe
17:31:26.0104 4892 Windows directory: C:\Windows
17:31:26.0104 4892 System windows directory: C:\Windows
17:31:26.0104 4892 Running under WOW64
17:31:26.0104 4892 Processor architecture: Intel x64
17:31:26.0104 4892 Number of processors: 4
17:31:26.0105 4892 Page size: 0x1000
17:31:26.0105 4892 Boot type: Normal boot
17:31:26.0105 4892 ============================================================
17:31:26.0435 4892 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:31:26.0452 4892 ============================================================
17:31:26.0452 4892 \Device\Harddisk0\DR0:
17:31:26.0453 4892 MBR partitions:
17:31:26.0453 4892 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:31:26.0453 4892 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xE724A800
17:31:26.0453 4892 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xE727D000, BlocksNum 0x1B8B000
17:31:26.0453 4892 ============================================================
17:31:26.0475 4892 C: <-> \Device\Harddisk0\DR0\Partition2
17:31:26.0529 4892 D: <-> \Device\Harddisk0\DR0\Partition3
17:31:26.0529 4892 ============================================================
17:31:26.0529 4892 Initialize success
17:31:26.0529 4892 ============================================================
17:31:30.0194 4400 ============================================================
17:31:30.0194 4400 Scan started
17:31:30.0194 4400 Mode: Manual;
17:31:30.0194 4400 ============================================================
17:31:30.0317 4400 ================ Scan system memory ========================
17:31:30.0317 4400 System memory - ok
17:31:30.0317 4400 ================ Scan services =============================
17:31:30.0585 4400 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:31:30.0587 4400 1394ohci - ok
17:31:30.0626 4400 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:31:30.0627 4400 ACPI - ok
17:31:30.0682 4400 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:31:30.0682 4400 AcpiPmi - ok
17:31:30.0777 4400 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:31:30.0778 4400 AdobeARMservice - ok
17:31:30.0880 4400 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:31:30.0882 4400 AdobeFlashPlayerUpdateSvc - ok
17:31:30.0930 4400 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:31:30.0934 4400 adp94xx - ok
17:31:30.0946 4400 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:31:30.0949 4400 adpahci - ok
17:31:30.0966 4400 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:31:30.0968 4400 adpu320 - ok
17:31:31.0006 4400 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:31:31.0007 4400 AeLookupSvc - ok
17:31:31.0086 4400 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
17:31:31.0087 4400 AESTFilters - ok
17:31:31.0129 4400 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:31:31.0134 4400 AFD - ok
17:31:31.0150 4400 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:31:31.0151 4400 agp440 - ok
17:31:31.0166 4400 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:31:31.0167 4400 ALG - ok
17:31:31.0191 4400 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:31:31.0191 4400 aliide - ok
17:31:31.0223 4400 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:31:31.0223 4400 amdide - ok
17:31:31.0235 4400 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:31:31.0236 4400 AmdK8 - ok
17:31:31.0257 4400 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:31:31.0258 4400 AmdPPM - ok
17:31:31.0296 4400 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:31:31.0297 4400 amdsata - ok
17:31:31.0343 4400 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:31:31.0345 4400 amdsbs - ok
17:31:31.0370 4400 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:31:31.0371 4400 amdxata - ok
17:31:31.0398 4400 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:31:31.0399 4400 AppID - ok
17:31:31.0403 4400 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:31:31.0404 4400 AppIDSvc - ok
17:31:31.0456 4400 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
17:31:31.0457 4400 Appinfo - ok
17:31:31.0517 4400 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:31:31.0518 4400 Apple Mobile Device - ok
17:31:31.0537 4400 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:31:31.0538 4400 arc - ok
17:31:31.0556 4400 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:31:31.0558 4400 arcsas - ok
17:31:31.0663 4400 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:31:31.0664 4400 aspnet_state - ok
17:31:31.0705 4400 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
17:31:31.0706 4400 aswFsBlk - ok
17:31:31.0731 4400 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
17:31:31.0732 4400 aswMonFlt - ok
17:31:31.0745 4400 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
17:31:31.0746 4400 aswRdr - ok
17:31:31.0778 4400 aswRvrt - ok
17:31:31.0828 4400 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
17:31:31.0836 4400 aswSnx - ok
17:31:31.0850 4400 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
17:31:31.0853 4400 aswSP - ok
17:31:31.0873 4400 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
17:31:31.0874 4400 aswTdi - ok
17:31:31.0883 4400 aswVmm - ok
17:31:31.0897 4400 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:31:31.0898 4400 AsyncMac - ok
17:31:31.0925 4400 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:31:31.0926 4400 atapi - ok
17:31:31.0967 4400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:31:31.0973 4400 AudioEndpointBuilder - ok
17:31:31.0992 4400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:31:31.0997 4400 AudioSrv - ok
17:31:32.0055 4400 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:31:32.0056 4400 avast! Antivirus - ok
17:31:32.0094 4400 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:31:32.0096 4400 AxInstSV - ok
17:31:32.0131 4400 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:31:32.0135 4400 b06bdrv - ok
17:31:32.0147 4400 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:31:32.0150 4400 b57nd60a - ok
17:31:32.0175 4400 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:31:32.0177 4400 BDESVC - ok
17:31:32.0189 4400 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:31:32.0190 4400 Beep - ok
17:31:32.0256 4400 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:31:32.0262 4400 BFE - ok
17:31:32.0312 4400 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:31:32.0322 4400 BITS - ok
17:31:32.0341 4400 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:31:32.0342 4400 blbdrive - ok
17:31:32.0400 4400 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:31:32.0404 4400 Bonjour Service - ok
17:31:32.0453 4400 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:31:32.0454 4400 bowser - ok
17:31:32.0464 4400 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:31:32.0464 4400 BrFiltLo - ok
17:31:32.0482 4400 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:31:32.0482 4400 BrFiltUp - ok
17:31:32.0519 4400 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:31:32.0521 4400 Browser - ok
17:31:32.0541 4400 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:31:32.0544 4400 Brserid - ok
17:31:32.0563 4400 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:31:32.0564 4400 BrSerWdm - ok
17:31:32.0585 4400 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:31:32.0585 4400 BrUsbMdm - ok
17:31:32.0599 4400 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:31:32.0600 4400 BrUsbSer - ok
17:31:32.0615 4400 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:31:32.0615 4400 BTHMODEM - ok
17:31:32.0645 4400 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:31:32.0646 4400 bthserv - ok
17:31:32.0667 4400 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:31:32.0669 4400 cdfs - ok
17:31:32.0683 4400 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:31:32.0684 4400 cdrom - ok
17:31:32.0705 4400 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:31:32.0706 4400 CertPropSvc - ok
17:31:32.0731 4400 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:31:32.0732 4400 circlass - ok
17:31:32.0752 4400 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:31:32.0755 4400 CLFS - ok
17:31:32.0823 4400 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:31:32.0824 4400 clr_optimization_v2.0.50727_32 - ok
17:31:32.0854 4400 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:31:32.0855 4400 clr_optimization_v2.0.50727_64 - ok
17:31:32.0925 4400 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:31:32.0927 4400 clr_optimization_v4.0.30319_32 - ok
17:31:32.0954 4400 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:31:32.0956 4400 clr_optimization_v4.0.30319_64 - ok
17:31:32.0973 4400 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:31:32.0973 4400 CmBatt - ok
17:31:33.0002 4400 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:31:33.0003 4400 cmdide - ok
17:31:33.0052 4400 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
17:31:33.0056 4400 CNG - ok
17:31:33.0075 4400 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:31:33.0076 4400 Compbatt - ok
17:31:33.0103 4400 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:31:33.0104 4400 CompositeBus - ok
17:31:33.0117 4400 COMSysApp - ok
17:31:33.0150 4400 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:31:33.0151 4400 crcdisk - ok
17:31:33.0185 4400 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:31:33.0187 4400 CryptSvc - ok
17:31:33.0251 4400 [ BA25D4B9B067248F7CAC416E855D706B ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
17:31:33.0252 4400 dc3d - ok
17:31:33.0298 4400 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:31:33.0306 4400 DcomLaunch - ok
17:31:33.0320 4400 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:31:33.0323 4400 defragsvc - ok
17:31:33.0362 4400 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:31:33.0364 4400 DfsC - ok
17:31:33.0402 4400 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:31:33.0405 4400 Dhcp - ok
17:31:33.0420 4400 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:31:33.0421 4400 discache - ok
17:31:33.0436 4400 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:31:33.0437 4400 Disk - ok
17:31:33.0465 4400 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:31:33.0468 4400 Dnscache - ok
17:31:33.0491 4400 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:31:33.0494 4400 dot3svc - ok
17:31:33.0516 4400 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:31:33.0519 4400 DPS - ok
17:31:33.0554 4400 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:31:33.0554 4400 drmkaud - ok
17:31:33.0601 4400 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:31:33.0609 4400 DXGKrnl - ok
17:31:33.0635 4400 EagleX64 - ok
17:31:33.0667 4400 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:31:33.0669 4400 EapHost - ok
17:31:33.0746 4400 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:31:33.0770 4400 ebdrv - ok
17:31:33.0829 4400 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:31:33.0831 4400 EFS - ok
17:31:33.0902 4400 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:31:33.0907 4400 ehRecvr - ok
17:31:33.0925 4400 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:31:33.0927 4400 ehSched - ok
17:31:33.0954 4400 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:31:33.0958 4400 elxstor - ok
17:31:33.0992 4400 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:31:33.0993 4400 ErrDev - ok
17:31:34.0031 4400 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:31:34.0035 4400 EventSystem - ok
17:31:34.0063 4400 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:31:34.0065 4400 exfat - ok
17:31:34.0082 4400 ezSharedSvc - ok
17:31:34.0107 4400 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:31:34.0109 4400 fastfat - ok
17:31:34.0162 4400 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:31:34.0169 4400 Fax - ok
17:31:34.0190 4400 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:31:34.0191 4400 fdc - ok
17:31:34.0204 4400 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:31:34.0205 4400 fdPHost - ok
17:31:34.0215 4400 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:31:34.0217 4400 FDResPub - ok
17:31:34.0234 4400 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:31:34.0235 4400 FileInfo - ok
17:31:34.0244 4400 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:31:34.0244 4400 Filetrace - ok
17:31:34.0263 4400 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:31:34.0264 4400 flpydisk - ok
17:31:34.0293 4400 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:31:34.0296 4400 FltMgr - ok
17:31:34.0346 4400 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
17:31:34.0356 4400 FontCache - ok
17:31:34.0394 4400 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:31:34.0395 4400 FontCache3.0.0.0 - ok
17:31:34.0410 4400 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:31:34.0411 4400 FsDepends - ok
17:31:34.0443 4400 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
17:31:34.0444 4400 fssfltr - ok
17:31:34.0544 4400 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
17:31:34.0556 4400 fsssvc - ok
17:31:34.0560 4400 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:31:34.0561 4400 Fs_Rec - ok
17:31:34.0596 4400 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:31:34.0597 4400 fvevol - ok
17:31:34.0620 4400 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:31:34.0621 4400 gagp30kx - ok
17:31:34.0678 4400 [ D154305DE6090E6E84E525F84BB08A06 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:31:34.0681 4400 GameConsoleService - ok
17:31:34.0709 4400 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:31:34.0710 4400 GEARAspiWDM - ok
17:31:34.0749 4400 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:31:34.0756 4400 gpsvc - ok
17:31:34.0828 4400 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:31:34.0829 4400 gupdate - ok
17:31:34.0843 4400 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:31:34.0845 4400 gupdatem - ok
17:31:34.0882 4400 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:31:34.0884 4400 gusvc - ok
17:31:34.0902 4400 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:31:34.0903 4400 hcw85cir - ok
17:31:34.0957 4400 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:31:34.0960 4400 HdAudAddService - ok
17:31:34.0994 4400 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:31:34.0995 4400 HDAudBus - ok
17:31:35.0012 4400 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:31:35.0012 4400 HidBatt - ok
17:31:35.0030 4400 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:31:35.0031 4400 HidBth - ok
17:31:35.0050 4400 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:31:35.0051 4400 HidIr - ok
17:31:35.0056 4400 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:31:35.0058 4400 hidserv - ok
17:31:35.0099 4400 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:31:35.0100 4400 HidUsb - ok
17:31:35.0122 4400 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:31:35.0125 4400 hkmsvc - ok
17:31:35.0156 4400 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:31:35.0160 4400 HomeGroupListener - ok
17:31:35.0176 4400 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:31:35.0181 4400 HomeGroupProvider - ok
17:31:35.0257 4400 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:31:35.0259 4400 HP Support Assistant Service - ok
17:31:35.0315 4400 [ 3DC11A802353401332D49C3CBFBBE5FC ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
17:31:35.0317 4400 HPClientSvc - ok
17:31:35.0381 4400 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:31:35.0389 4400 hpqwmiex - ok
17:31:35.0419 4400 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:31:35.0420 4400 HpSAMD - ok
17:31:35.0460 4400 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:31:35.0466 4400 HTTP - ok
17:31:35.0492 4400 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:31:35.0493 4400 hwpolicy - ok
17:31:35.0533 4400 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:31:35.0535 4400 i8042prt - ok
17:31:35.0557 4400 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
17:31:35.0561 4400 iaStor - ok
17:31:35.0594 4400 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:31:35.0598 4400 iaStorV - ok
17:31:35.0639 4400 IDriverT - ok
17:31:35.0695 4400 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:31:35.0702 4400 idsvc - ok
17:31:35.0730 4400 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:31:35.0731 4400 iirsp - ok
17:31:35.0768 4400 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:31:35.0776 4400 IKEEXT - ok
17:31:35.0799 4400 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:31:35.0800 4400 intelide - ok
17:31:35.0819 4400 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:31:35.0820 4400 intelppm - ok
17:31:35.0834 4400 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:31:35.0837 4400 IPBusEnum - ok
17:31:35.0863 4400 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:31:35.0864 4400 IpFilterDriver - ok
17:31:35.0908 4400 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:31:35.0914 4400 iphlpsvc - ok
17:31:35.0938 4400 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:31:35.0940 4400 IPMIDRV - ok
17:31:35.0961 4400 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:31:35.0962 4400 IPNAT - ok
17:31:36.0032 4400 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
17:31:36.0037 4400 iPod Service - ok
17:31:36.0069 4400 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:31:36.0070 4400 IRENUM - ok
17:31:36.0100 4400 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:31:36.0101 4400 isapnp - ok
17:31:36.0122 4400 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:31:36.0125 4400 iScsiPrt - ok
17:31:36.0165 4400 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:31:36.0166 4400 kbdclass - ok
17:31:36.0206 4400 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:31:36.0207 4400 kbdhid - ok
17:31:36.0216 4400 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:31:36.0219 4400 KeyIso - ok
17:31:36.0242 4400 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:31:36.0243 4400 KSecDD - ok
17:31:36.0272 4400 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:31:36.0273 4400 KSecPkg - ok
17:31:36.0277 4400 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:31:36.0278 4400 ksthunk - ok
17:31:36.0308 4400 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:31:36.0313 4400 KtmRm - ok
17:31:36.0357 4400 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:31:36.0363 4400 LanmanServer - ok
17:31:36.0383 4400 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:31:36.0388 4400 LanmanWorkstation - ok
17:31:36.0422 4400 [ FA4A45C179AB0E0F1A31B9751D4B18D7 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:31:36.0423 4400 LightScribeService - ok
17:31:36.0444 4400 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:31:36.0445 4400 lltdio - ok
17:31:36.0472 4400 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:31:36.0476 4400 lltdsvc - ok
17:31:36.0487 4400 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:31:36.0489 4400 lmhosts - ok
17:31:36.0543 4400 [ 926EBA26A8B49D1597751CED06B50862 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:31:36.0546 4400 LMS - ok
17:31:36.0582 4400 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:31:36.0583 4400 LSI_FC - ok
17:31:36.0594 4400 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:31:36.0595 4400 LSI_SAS - ok
17:31:36.0621 4400 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:31:36.0622 4400 LSI_SAS2 - ok
17:31:36.0644 4400 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:31:36.0645 4400 LSI_SCSI - ok
17:31:36.0668 4400 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:31:36.0669 4400 luafv - ok
17:31:36.0707 4400 [ 07389F6925E490D2DB7882110E99921C ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys
17:31:36.0708 4400 lvpepf64 - ok
17:31:36.0746 4400 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
17:31:36.0747 4400 LVPr2M64 - ok
17:31:36.0750 4400 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
17:31:36.0751 4400 LVPr2Mon - ok
17:31:36.0823 4400 [ 9CD0DC863BE5D40A762F7D84F11A8471 ] LVPrcS64 C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe
17:31:36.0825 4400 LVPrcS64 - ok
17:31:36.0876 4400 [ 7F0BA3A6E8996F15693C6B7D81DA049E ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
17:31:36.0883 4400 LVRS64 - ok
17:31:36.0892 4400 [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
17:31:36.0893 4400 LVUSBS64 - ok
17:31:36.0973 4400 [ A8D7C97016E6B76EF472A4C7AB357EE3 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
17:31:36.0992 4400 LVUVC64 - ok
17:31:37.0053 4400 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:31:37.0054 4400 MBAMProtector - ok
17:31:37.0126 4400 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:31:37.0130 4400 MBAMScheduler - ok
17:31:37.0180 4400 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:31:37.0186 4400 MBAMService - ok
17:31:37.0224 4400 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:31:37.0227 4400 Mcx2Svc - ok
17:31:37.0240 4400 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:31:37.0241 4400 megasas - ok
17:31:37.0262 4400 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:31:37.0265 4400 MegaSR - ok
17:31:37.0300 4400 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:31:37.0301 4400 MEIx64 - ok
17:31:37.0355 4400 Microsoft SharePoint Workspace Audit Service - ok
17:31:37.0390 4400 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:31:37.0393 4400 MMCSS - ok
17:31:37.0424 4400 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:31:37.0425 4400 Modem - ok
17:31:37.0449 4400 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:31:37.0450 4400 monitor - ok
17:31:37.0475 4400 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:31:37.0476 4400 mouclass - ok
17:31:37.0491 4400 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:31:37.0492 4400 mouhid - ok
17:31:37.0528 4400 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:31:37.0529 4400 mountmgr - ok
17:31:37.0554 4400 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:31:37.0556 4400 mpio - ok
17:31:37.0574 4400 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:31:37.0575 4400 mpsdrv - ok
17:31:37.0609 4400 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:31:37.0617 4400 MpsSvc - ok
17:31:37.0647 4400 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:31:37.0649 4400 MRxDAV - ok
17:31:37.0664 4400 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:31:37.0665 4400 mrxsmb - ok
17:31:37.0698 4400 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:31:37.0701 4400 mrxsmb10 - ok
17:31:37.0716 4400 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:31:37.0718 4400 mrxsmb20 - ok
17:31:37.0751 4400 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:31:37.0752 4400 msahci - ok
17:31:37.0778 4400 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:31:37.0779 4400 msdsm - ok
17:31:37.0804 4400 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:31:37.0808 4400 MSDTC - ok
17:31:37.0826 4400 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:31:37.0827 4400 Msfs - ok
17:31:37.0843 4400 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:31:37.0843 4400 mshidkmdf - ok
17:31:37.0856 4400 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:31:37.0857 4400 msisadrv - ok
17:31:37.0884 4400 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:31:37.0886 4400 MSiSCSI - ok
17:31:37.0889 4400 msiserver - ok
17:31:37.0918 4400 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:31:37.0919 4400 MSKSSRV - ok
17:31:37.0952 4400 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:31:37.0953 4400 MSPCLOCK - ok
17:31:37.0964 4400 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:31:37.0964 4400 MSPQM - ok
17:31:37.0994 4400 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:31:37.0997 4400 MsRPC - ok
17:31:38.0039 4400 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:31:38.0040 4400 mssmbios - ok
17:31:38.0058 4400 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:31:38.0059 4400 MSTEE - ok
17:31:38.0071 4400 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:31:38.0072 4400 MTConfig - ok
17:31:38.0087 4400 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:31:38.0089 4400 Mup - ok
17:31:38.0126 4400 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:31:38.0135 4400 napagent - ok
17:31:38.0165 4400 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:31:38.0168 4400 NativeWifiP - ok
17:31:38.0222 4400 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:31:38.0230 4400 NDIS - ok
17:31:38.0247 4400 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:31:38.0248 4400 NdisCap - ok
17:31:38.0267 4400 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:31:38.0268 4400 NdisTapi - ok
17:31:38.0305 4400 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:31:38.0306 4400 Ndisuio - ok
17:31:38.0334 4400 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:31:38.0336 4400 NdisWan - ok
17:31:38.0357 4400 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:31:38.0358 4400 NDProxy - ok
17:31:38.0401 4400 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
17:31:38.0401 4400 Netaapl - ok
17:31:38.0417 4400 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:31:38.0418 4400 NetBIOS - ok
17:31:38.0447 4400 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:31:38.0449 4400 NetBT - ok
17:31:38.0460 4400 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:31:38.0463 4400 Netlogon - ok
17:31:38.0494 4400 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:31:38.0500 4400 Netman - ok
17:31:38.0560 4400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:38.0562 4400 NetMsmqActivator - ok
17:31:38.0575 4400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:38.0577 4400 NetPipeActivator - ok
17:31:38.0600 4400 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:31:38.0606 4400 netprofm - ok
17:31:38.0677 4400 [ 2EED549279D7FBD10B846B5397573967 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
17:31:38.0691 4400 netr28x - ok
17:31:38.0717 4400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:38.0718 4400 NetTcpActivator - ok
17:31:38.0721 4400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:31:38.0722 4400 NetTcpPortSharing - ok
17:31:38.0742 4400 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:31:38.0742 4400 nfrd960 - ok
17:31:38.0767 4400 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:31:38.0770 4400 NlaSvc - ok
17:31:38.0861 4400 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
17:31:38.0880 4400 NOBU - ok
17:31:38.0895 4400 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:31:38.0895 4400 Npfs - ok
17:31:38.0915 4400 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:31:38.0917 4400 nsi - ok
17:31:38.0931 4400 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:31:38.0931 4400 nsiproxy - ok
17:31:38.0991 4400 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:31:39.0005 4400 Ntfs - ok
17:31:39.0023 4400 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:31:39.0023 4400 Null - ok
17:31:39.0055 4400 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
17:31:39.0057 4400 NVHDA - ok
17:31:39.0286 4400 [ C013E857695D231E9E02088E4CD0982B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:31:39.0346 4400 nvlddmkm - ok
17:31:39.0462 4400 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:31:39.0464 4400 nvraid - ok
17:31:39.0510 4400 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:31:39.0512 4400 nvstor - ok
17:31:39.0556 4400 [ 39F24315F99CDB2C9997140F31D44D08 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:31:39.0566 4400 nvsvc - ok
17:31:39.0645 4400 [ F3537A1DBFFDB81B169C482B7030C6CA ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:31:39.0663 4400 nvUpdatusService - ok
17:31:39.0726 4400 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:31:39.0728 4400 nv_agp - ok
17:31:39.0756 4400 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:31:39.0757 4400 ohci1394 - ok
17:31:39.0830 4400 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:31:39.0832 4400 ose - ok
17:31:39.0953 4400 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:31:39.0978 4400 osppsvc - ok
17:31:39.0996 4400 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:31:39.0999 4400 p2pimsvc - ok
17:31:40.0014 4400 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:31:40.0017 4400 p2psvc - ok
17:31:40.0048 4400 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:31:40.0049 4400 Parport - ok
17:31:40.0092 4400 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:31:40.0093 4400 partmgr - ok
17:31:40.0106 4400 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:31:40.0110 4400 PcaSvc - ok
17:31:40.0124 4400 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:31:40.0129 4400 pci - ok
17:31:40.0143 4400 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:31:40.0144 4400 pciide - ok
17:31:40.0171 4400 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:31:40.0174 4400 pcmcia - ok
17:31:40.0196 4400 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:31:40.0198 4400 pcw - ok
17:31:40.0216 4400 pdfcDispatcher - ok
17:31:40.0240 4400 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:31:40.0245 4400 PEAUTH - ok
17:31:40.0294 4400 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:31:40.0297 4400 PerfHost - ok
17:31:40.0366 4400 [ 087A343DFC337F37723DD7912DE6B6CD ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
17:31:40.0387 4400 PID_PEPI - ok
17:31:40.0457 4400 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:31:40.0468 4400 pla - ok
17:31:40.0527 4400 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:31:40.0534 4400 PlugPlay - ok
17:31:40.0550 4400 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:31:40.0554 4400 PNRPAutoReg - ok
17:31:40.0562 4400 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:31:40.0567 4400 PNRPsvc - ok
17:31:40.0602 4400 [ 34A8FAE065249F85A67A3215FF5ECB34 ] Point64 C:\Windows\system32\DRIVERS\point64.sys
17:31:40.0603 4400 Point64 - ok
17:31:40.0620 4400 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:31:40.0626 4400 PolicyAgent - ok
17:31:40.0655 4400 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:31:40.0658 4400 Power - ok
17:31:40.0694 4400 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:31:40.0696 4400 PptpMiniport - ok
17:31:40.0716 4400 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:31:40.0717 4400 Processor - ok
17:31:40.0749 4400 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:31:40.0754 4400 ProfSvc - ok
17:31:40.0764 4400 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:31:40.0767 4400 ProtectedStorage - ok
17:31:40.0807 4400 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:31:40.0809 4400 Psched - ok
17:31:40.0862 4400 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:31:40.0874 4400 ql2300 - ok
17:31:40.0896 4400 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:31:40.0897 4400 ql40xx - ok
17:31:40.0913 4400 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:31:40.0916 4400 QWAVE - ok
17:31:40.0930 4400 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:31:40.0930 4400 QWAVEdrv - ok
17:31:40.0948 4400 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:31:40.0949 4400 RasAcd - ok
17:31:40.0972 4400 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:31:40.0973 4400 RasAgileVpn - ok
17:31:40.0991 4400 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:31:40.0995 4400 RasAuto - ok
17:31:41.0012 4400 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:31:41.0013 4400 Rasl2tp - ok
17:31:41.0046 4400 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:31:41.0050 4400 RasMan - ok
17:31:41.0063 4400 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:31:41.0064 4400 RasPppoe - ok
17:31:41.0077 4400 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:31:41.0078 4400 RasSstp - ok
17:31:41.0090 4400 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:31:41.0092 4400 rdbss - ok
17:31:41.0106 4400 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:31:41.0107 4400 rdpbus - ok
17:31:41.0124 4400 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:31:41.0124 4400 RDPCDD - ok
17:31:41.0137 4400 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:31:41.0138 4400 RDPENCDD - ok
17:31:41.0153 4400 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:31:41.0154 4400 RDPREFMP - ok
17:31:41.0205 4400 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:31:41.0206 4400 RdpVideoMiniport - ok
17:31:41.0262 4400 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:31:41.0264 4400 RDPWD - ok
17:31:41.0312 4400 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:31:41.0314 4400 rdyboost - ok
17:31:41.0342 4400 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:31:41.0345 4400 RemoteAccess - ok
17:31:41.0368 4400 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:31:41.0373 4400 RemoteRegistry - ok
17:31:41.0387 4400 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:31:41.0391 4400 RpcEptMapper - ok
17:31:41.0409 4400 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:31:41.0411 4400 RpcLocator - ok
17:31:41.0445 4400 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:31:41.0453 4400 RpcSs - ok
17:31:41.0462 4400 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:31:41.0464 4400 rspndr - ok
17:31:41.0497 4400 [ AFC12DFA4C7B089673AD67402CA19EDB ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:31:41.0501 4400 RTL8167 - ok
17:31:41.0506 4400 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:31:41.0508 4400 SamSs - ok
17:31:41.0539 4400 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:31:41.0541 4400 sbp2port - ok
17:31:41.0569 4400 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:31:41.0574 4400 SCardSvr - ok
17:31:41.0603 4400 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:31:41.0604 4400 scfilter - ok
17:31:41.0644 4400 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:31:41.0656 4400 Schedule - ok
17:31:41.0680 4400 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:31:41.0681 4400 SCPolicySvc - ok
17:31:41.0707 4400 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:31:41.0711 4400 SDRSVC - ok
17:31:41.0735 4400 [ 331E7BDE228914574FC9AE6CD520DAFA ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
17:31:41.0737 4400 SeaPort - ok
17:31:41.0752 4400 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:31:41.0753 4400 secdrv - ok
17:31:41.0781 4400 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:31:41.0785 4400 seclogon - ok
17:31:41.0811 4400 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:31:41.0815 4400 SENS - ok
17:31:41.0823 4400 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:31:41.0827 4400 SensrSvc - ok
17:31:41.0847 4400 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:31:41.0848 4400 Serenum - ok
17:31:41.0862 4400 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:31:41.0864 4400 Serial - ok
17:31:41.0896 4400 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:31:41.0897 4400 sermouse - ok
17:31:41.0925 4400 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:31:41.0930 4400 SessionEnv - ok
17:31:41.0960 4400 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:31:41.0961 4400 sffdisk - ok
17:31:42.0003 4400 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:31:42.0004 4400 sffp_mmc - ok
17:31:42.0021 4400 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:31:42.0022 4400 sffp_sd - ok
17:31:42.0040 4400 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:31:42.0041 4400 sfloppy - ok
17:31:42.0067 4400 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:31:42.0072 4400 SharedAccess - ok
17:31:42.0106 4400 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:31:42.0112 4400 ShellHWDetection - ok
17:31:42.0134 4400 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:31:42.0135 4400 SiSRaid2 - ok
17:31:42.0157 4400 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:31:42.0158 4400 SiSRaid4 - ok
17:31:42.0251 4400 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:31:42.0253 4400 SkypeUpdate - ok
17:31:42.0264 4400 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:31:42.0266 4400 Smb - ok
17:31:42.0289 4400 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:31:42.0293 4400 SNMPTRAP - ok
17:31:42.0307 4400 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:31:42.0308 4400 spldr - ok
17:31:42.0353 4400 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:31:42.0361 4400 Spooler - ok
17:31:42.0448 4400 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:31:42.0472 4400 sppsvc - ok
17:31:42.0541 4400 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:31:42.0545 4400 sppuinotify - ok
17:31:42.0572 4400 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:31:42.0576 4400 srv - ok
17:31:42.0599 4400 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:31:42.0604 4400 srv2 - ok
17:31:42.0614 4400 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:31:42.0616 4400 srvnet - ok
17:31:42.0659 4400 [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus C:\Windows\system32\DRIVERS\ssadbus.sys
17:31:42.0661 4400 ssadbus - ok
17:31:42.0707 4400 [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl C:\Windows\system32\DRIVERS\ssadmdfl.sys
17:31:42.0708 4400 ssadmdfl - ok
17:31:42.0729 4400 [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm C:\Windows\system32\DRIVERS\ssadmdm.sys
17:31:42.0731 4400 ssadmdm - ok
17:31:42.0762 4400 [ ED161B91FDF7EAA39469D72D463D5F4E ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
17:31:42.0763 4400 sscdbus - ok
17:31:42.0820 4400 [ 4CB09E77593DBD8D7AF33B37375CA715 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
17:31:42.0821 4400 sscdmdfl - ok
17:31:42.0864 4400 [ C7B4CF53497A6E5363F3439427663882 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
17:31:42.0866 4400 sscdmdm - ok
17:31:42.0896 4400 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:31:42.0901 4400 SSDPSRV - ok
17:31:42.0910 4400 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:31:42.0914 4400 SstpSvc - ok
17:31:42.0978 4400 [ 605ECCCE95ACF7AF12CBCCDAB55B8DD0 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
17:31:42.0981 4400 STacSV - ok
17:31:43.0001 4400 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:31:43.0002 4400 stexstor - ok
17:31:43.0038 4400 [ 5709F6AEECC9C43AD9D550FB1D882209 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
17:31:43.0043 4400 STHDA - ok
17:31:43.0095 4400 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:31:43.0104 4400 stisvc - ok
17:31:43.0139 4400 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:31:43.0140 4400 swenum - ok
17:31:43.0165 4400 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:31:43.0173 4400 swprv - ok
17:31:43.0227 4400 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:31:43.0244 4400 SysMain - ok
17:31:43.0276 4400 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:31:43.0280 4400 TabletInputService - ok
17:31:43.0297 4400 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:31:43.0303 4400 TapiSrv - ok
17:31:43.0320 4400 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:31:43.0323 4400 TBS - ok
17:31:43.0376 4400 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:31:43.0391 4400 Tcpip - ok
17:31:43.0436 4400 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:31:43.0451 4400 TCPIP6 - ok
17:31:43.0488 4400 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:31:43.0490 4400 tcpipreg - ok
17:31:43.0511 4400 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:31:43.0513 4400 TDPIPE - ok
17:31:43.0537 4400 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:31:43.0538 4400 TDTCP - ok
17:31:43.0566 4400 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:31:43.0567 4400 tdx - ok
17:31:43.0585 4400 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:31:43.0586 4400 TermDD - ok
17:31:43.0628 4400 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:31:43.0637 4400 TermService - ok
17:31:43.0646 4400 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:31:43.0650 4400 Themes - ok
17:31:43.0667 4400 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:31:43.0670 4400 THREADORDER - ok
17:31:43.0728 4400 [ 0407143F2BBC1A5DD5B518AC0704FCBF ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
17:31:43.0729 4400 TomTomHOMEService - ok
17:31:43.0739 4400 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:31:43.0744 4400 TrkWks - ok
17:31:43.0799 4400 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:31:43.0801 4400 TrustedInstaller - ok
17:31:43.0838 4400 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:31:43.0839 4400 tssecsrv - ok
17:31:43.0894 4400 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:31:43.0896 4400 TsUsbFlt - ok
17:31:44.0020 4400 [ FABA1F0CD62160707169345028A0850C ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
17:31:44.0034 4400 TuneUp.UtilitiesSvc - ok
17:31:44.0075 4400 [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys
17:31:44.0075 4400 TuneUpUtilitiesDrv - ok
17:31:44.0097 4400 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:31:44.0099 4400 tunnel - ok
17:31:44.0121 4400 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:31:44.0123 4400 uagp35 - ok
17:31:44.0160 4400 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:31:44.0163 4400 udfs - ok
17:31:44.0174 4400 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:31:44.0178 4400 UI0Detect - ok
17:31:44.0206 4400 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:31:44.0207 4400 uliagpkx - ok
17:31:44.0250 4400 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:31:44.0251 4400 umbus - ok
17:31:44.0270 4400 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:31:44.0271 4400 UmPass - ok
17:31:44.0347 4400 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:31:44.0350 4400 UMVPFSrv - ok
17:31:44.0435 4400 [ FDF92EC84FECEE834FB10A2A0A19BCDA ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:31:44.0451 4400 UNS - ok
17:31:44.0471 4400 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:31:44.0474 4400 upnphost - ok
17:31:44.0517 4400 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
17:31:44.0518 4400 USBAAPL64 - ok
17:31:44.0563 4400 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:31:44.0565 4400 usbaudio - ok
17:31:44.0592 4400 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:31:44.0594 4400 usbccgp - ok
17:31:44.0642 4400 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:31:44.0643 4400 usbcir - ok
17:31:44.0648 4400 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:31:44.0649 4400 usbehci - ok
17:31:44.0679 4400 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:31:44.0682 4400 usbhub - ok
17:31:44.0703 4400 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:31:44.0704 4400 usbohci - ok
17:31:44.0729 4400 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:31:44.0730 4400 usbprint - ok
17:31:44.0750 4400 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:31:44.0751 4400 us
0
Réponse 27 / 83
Utilisateur anonyme
21 mai 2013 à 17:38
ok,

/!\ Utilisateur de Vista : Ne pas oublier de désactiver l'UAC juste le temps de désinfection de ton pc, il sera à réactiver plus tard


► Télécharges ComboFix à partir de ce lien et enregistres le sur ton bureau :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
ou ici :
https://forum.pcastuces.com/combofix_renomme_au_telechargement-f31s22.htm
A lire
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

Avant d'utiliser ComboFix :

► ferme les fenêtres de tous les programmes en cours.

► Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.
Une fois fait, sur ton bureau double-clic sur Combofix.exe.

/!\Utilisateur de Vista & Windows7 : Clique droit sur le logo de Combofix, « exécuter en tant qu'Administrateur »

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

- il se peut que Combofix ait besoin de se connecter à internet pour trouver les mises à jour, donc il faut l'autoriser.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redémarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.
- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\ComboFix\ComboFix.txt)
► Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.
► Reviens sur le forum, et copie et colle la totalité du contenu de Combofix.txt dans ton prochain message.

0
Réponse 28 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 18:06
et voilà. toujours pas possible de réactiver AVAST.

ComboFix 13-05-20.01 - Philippe 21/05/2013 17:48:58.1.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.6127.4198 [GMT 2:00]
Lancé depuis: c:\users\Philippe\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Windows Live\Messenger\msacm32.dll
c:\programdata\25283a27203c_c
C:\Thumbs.db
c:\users\Philippe\AppData\Roaming\app
c:\users\Philippe\AppData\Roaming\app\Jerakine_lang.dat
c:\users\Philippe\AppData\Roaming\app\Jerakine_lang_vesrion.dat
c:\users\Philippe\vlc-1.1.10-win32.exe
c:\windows\SysWow64\muzapp.exe
c:\windows\SysWow64\SET4730.tmp
c:\windows\SysWow64\System32\MASetupCleaner.exe
c:\windows\SysWow64\System32\muzapp.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2013-04-21 au 2013-05-21 ))))))))))))))))))))))))))))))))))))
.
.
2013-05-21 15:57 . 2013-05-21 15:57 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-05-21 15:57 . 2013-05-21 15:57 -------- d-----w- c:\users\PAUL\AppData\Local\temp
2013-05-21 15:57 . 2013-05-21 15:57 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-21 15:57 . 2013-05-21 15:57 -------- d-----w- c:\users\CATHY\AppData\Local\temp
2013-05-21 13:00 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3B5D485E-BEE5-4E90-98F8-73DD53866546}\mpengine.dll
2013-05-21 07:50 . 2013-05-21 07:50 -------- d-----w- c:\users\Philippe\AppData\Roaming\Malwarebytes
2013-05-21 07:50 . 2013-05-21 07:50 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-05-21 07:50 . 2013-05-21 07:50 -------- d-----w- c:\programdata\Malwarebytes
2013-05-21 07:50 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-05-20 16:08 . 2013-05-20 16:08 512 ----a-w- C:\PhysicalDisk0_MBR.bin
2013-05-20 12:03 . 2013-05-20 18:09 -------- d-----w- C:\ZHP
2013-05-20 12:03 . 2013-05-20 16:08 -------- d-----w- c:\program files (x86)\ZHPDiag
2013-05-20 10:11 . 2013-05-20 10:11 -------- d-----w- c:\program files (x86)\Common Files\Borland Shared
2013-05-20 10:11 . 2013-05-21 00:03 -------- d-----w- c:\program files (x86)\ZebHelpProcess
2013-05-19 14:28 . 2013-05-19 14:28 -------- d-----w- c:\users\Philippe\AppData\Roaming\Uniblue
2013-05-19 14:24 . 2013-05-19 14:24 -------- d-----w- c:\users\Philippe\AppData\Local\Programs
2013-05-15 20:41 . 2013-05-05 21:36 17818624 ----a-w- c:\windows\system32\mshtml.dll
2013-05-15 20:41 . 2013-05-05 21:16 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-05-15 20:41 . 2013-05-05 19:12 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-05-15 19:30 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-05-15 17:36 . 2013-05-15 17:36 -------- d-----w- c:\program files\CCleaner
2013-05-11 10:37 . 2013-05-11 10:37 209472 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
2013-04-27 11:27 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-27 10:56 . 2013-04-27 10:56 -------- d-----w- C:\d378c1f808ef22fb01e365ef
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 20:50 . 2011-07-03 08:09 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 09:43 . 2011-08-16 18:08 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-14 18:13 . 2011-10-08 06:35 235 ----a-w- c:\windows\SysWow64\nxEuUninstall.bat
2013-05-14 18:13 . 2011-10-08 06:35 446464 ----a-w- c:\windows\NEXON_EU_DownloaderUpdater.exe
2013-05-02 00:06 . 2011-08-30 09:53 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-15 19:30 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 19:30 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 19:30 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 19:30 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 19:30 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 19:30 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-03-23 14:34 . 2012-05-01 08:00 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-23 14:34 . 2011-07-01 07:21 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-19 06:04 . 2013-04-11 16:26 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-11 16:26 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-11 16:26 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-11 16:26 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-11 16:26 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-11 16:26 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-10 13:56 . 2013-03-10 13:56 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-03-10 13:56 . 2013-03-10 13:56 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-10 13:56 . 2013-03-10 13:56 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-03-10 13:56 . 2013-03-10 13:56 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-03-10 13:56 . 2013-03-10 13:56 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-10 13:56 . 2013-03-10 13:56 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-10 13:56 . 2013-03-10 13:56 367104 ----a-w- c:\windows\SysWow64\html.iec
2013-03-10 13:56 . 2013-03-10 13:56 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-10 13:56 . 2013-03-10 13:56 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-10 13:56 . 2013-03-10 13:56 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-10 13:56 . 2013-03-10 13:56 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-10 13:56 . 2013-03-10 13:56 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-10 13:56 . 2013-03-10 13:56 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-10 13:56 . 2013-03-10 13:56 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-10 13:56 . 2013-03-10 13:56 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2013-03-10 13:56 . 2013-03-10 13:56 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-10 13:56 . 2013-03-10 13:56 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-03-10 13:56 . 2013-03-10 13:56 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2013-03-10 13:56 . 2013-03-10 13:56 85504 ----a-w- c:\windows\system32\iesetup.dll
2013-03-10 13:56 . 2013-03-10 13:56 82432 ----a-w- c:\windows\system32\icardie.dll
2013-03-10 13:56 . 2013-03-10 13:56 76800 ----a-w- c:\windows\system32\tdc.ocx
2013-03-10 13:56 . 2013-03-10 13:56 65024 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-10 13:56 . 2013-03-10 13:56 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-10 13:56 . 2013-03-10 13:56 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-10 13:56 . 2013-03-10 13:56 49664 ----a-w- c:\windows\system32\imgutil.dll
2013-03-10 13:56 . 2013-03-10 13:56 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-10 13:56 . 2013-03-10 13:56 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-10 13:56 . 2013-03-10 13:56 448512 ----a-w- c:\windows\system32\html.iec
2013-03-10 13:56 . 2013-03-10 13:56 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-10 13:56 . 2013-03-10 13:56 39936 ----a-w- c:\windows\system32\iernonce.dll
2013-03-10 13:56 . 2013-03-10 13:56 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-10 13:56 . 2013-03-10 13:56 30720 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-10 13:56 . 2013-03-10 13:56 282112 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-10 13:56 . 2013-03-10 13:56 267776 ----a-w- c:\windows\system32\ieaksie.dll
2013-03-10 13:56 . 2013-03-10 13:56 249344 ----a-w- c:\windows\system32\webcheck.dll
2013-03-10 13:56 . 2013-03-10 13:56 222208 ----a-w- c:\windows\system32\msls31.dll
2013-03-10 13:56 . 2013-03-10 13:56 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-10 13:56 . 2013-03-10 13:56 165888 ----a-w- c:\windows\system32\iexpress.exe
2013-03-10 13:56 . 2013-03-10 13:56 163840 ----a-w- c:\windows\system32\ieakui.dll
2013-03-10 13:56 . 2013-03-10 13:56 160256 ----a-w- c:\windows\system32\wextract.exe
2013-03-10 13:56 . 2013-03-10 13:56 160256 ----a-w- c:\windows\system32\ieakeng.dll
2013-03-10 13:56 . 2013-03-10 13:56 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-10 13:56 . 2013-03-10 13:56 145920 ----a-w- c:\windows\system32\iepeers.dll
2013-03-10 13:56 . 2013-03-10 13:56 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-10 13:56 . 2013-03-10 13:56 12288 ----a-w- c:\windows\system32\mshta.exe
2013-03-10 13:56 . 2013-03-10 13:56 114176 ----a-w- c:\windows\system32\admparse.dll
2013-03-10 13:56 . 2013-03-10 13:56 111616 ----a-w- c:\windows\system32\iesysprep.dll
2013-03-10 13:56 . 2013-03-10 13:56 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-10 13:56 . 2013-03-10 13:56 103936 ----a-w- c:\windows\system32\inseng.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Vid"="c:\program files (x86)\Logitech\Vid HD\Vid.exe" [2010-10-29 5915480]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-08-17 39408]
"KPeerNexonEU"="c:\nexon\NEXON_EU_Downloader\nxEULauncher.exe" [2011-10-08 438272]
"TomTomHOME.exe"="c:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2012-08-28 247768]
"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2012-12-17 59872]
"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2012-12-17 59872]
"Facebook Update"="c:\users\Philippe\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-11-26 138096]
"EADM"="c:\program files (x86)\Origin\Origin.exe" [2013-03-26 3497552]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18642024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PDF Complete"="c:\program files (x86)\PDF Complete\pdfsty.exe" [2010-09-28 664600]
"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-01 1155928]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-08-30 61112]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"LogitechVideoRepair"="c:\program files (x86)\Logitech\Video\ISStart.exe" [2004-12-14 458752]
"LogitechVideoTray"="c:\program files (x86)\Logitech\Video\LogiTray.exe" [2004-12-14 217088]
"LWS"="c:\program files (x86)\Logitech\LWS\Webcam Software\LWS.exe" [2010-05-07 165208]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-05-11 958576]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Snapfish PictureMover.lnk - c:\program files (x86)\PictureMover\Bin\PictureMover.exe [2010-9-28 1040952]
Téléchargement en arrière-plan de SolidWorks.lnk - c:\program files (x86)\Common Files\Gestionnaire d'installation SolidWorks\BackgroundDownloading\sldBgDwld.exe [2013-2-23 2737768]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"HP Software Update"=c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe"
.
R0 aswRvrt;aswRvrt; [x]
R0 aswVmm;aswVmm; [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2013-01-31 2402080]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 lvpepf64;Volume Adapter;c:\windows\system32\DRIVERS\lv302a64.sys [2008-07-26 15768]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2008-07-26 790424]
R3 LVUSBS64;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBS64.sys [2008-07-26 50072]
R3 LVUVC64;Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2010-11-10 4162784]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl64.sys [2011-05-10 22528]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-07-20 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-07-20 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-07-20 177640]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-12-13 54784]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-07-01 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe [x]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-08-06 291896]
S2 LVPrcS64;Process Monitor;c:\program files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe [2010-05-07 197976]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe [2010-09-28 1119768]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-04-01 428640]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-05 2655768]
S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\DRIVERS\dc3d.sys [2012-11-26 75904]
S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2013-01-29 50800]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-12-29 412776]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-11-16 11880]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - 01249154
*NewlyCreated* - 80958897
*Deregistered* - 01249154
*Deregistered* - 80958897
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-11 16:14 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2013-03-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-01 14:34]
.
2013-03-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2041737202-3628114287-3878302838-1001Core.job
- c:\users\Philippe\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-26 19:36]
.
2013-03-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2041737202-3628114287-3878302838-1001UA.job
- c:\users\Philippe\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-26 19:36]
.
2013-03-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2041737202-3628114287-3878302838-1005Core.job
- c:\users\ARTHUR\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-20 14:42]
.
2013-03-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2041737202-3628114287-3878302838-1005UA.job
- c:\users\ARTHUR\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-04-20 14:42]
.
2013-05-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-17 19:44]
.
2013-03-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-08-17 19:44]
.
2013-02-14 c:\windows\Tasks\HPCeeScheduleForMAISON$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
2013-03-09 c:\windows\Tasks\HPCeeScheduleForPhilippe.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-09-15 611896]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-09-27 489472]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: &Envoyer à OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Wow6432Node-HKCU-Run-KiesPDLR - c:\users\Philippe\Desktop\Kies\External\FirmwareUpdate\KiesPDLR.exe
Wow6432Node-HKCU-Run-uTorrent - c:\program files (x86)\uTorrent\uTorrent.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
WebBrowser-{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - (no file)
AddRemove-Adobe AIR - c:\program files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe
AddRemove-InstallShield_{F535B2CF-C9BB-4162-B03A-02D6971F32CC} - c:\progra~2\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe
AddRemove-{D40EB009-0499-459c-A8AF-C9C110766215} - c:\program files (x86)\Common Files\LogiShrd\Installer\{D40EB009-0499-459c-A8AF-C9C110766215}\setup.exe
AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
AddRemove-JokeR Launcher v3 - c:\program files (x86)\Dofus\Uninstal.exe
AddRemove-MyFreeCodec - c:\users\Philippe\Desktop\Kies\1.0b beta\uninstall.exe
AddRemove-Snifix Launcher - c:\program files (x86)\Dofus\Uninstal.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2013-05-21 17:59:59
ComboFix-quarantined-files.txt 2013-05-21 15:59
.
Avant-CF: 1 242 641 072 128 octets libres
Après-CF: 1 242 683 203 584 octets libres
.
- - End Of File - - A2AE83D171D650B7D9B7A6BE4F167C77
0
Réponse 29 / 83
Utilisateur anonyme
21 mai 2013 à 18:09
redémarre ton pc avant qu'on entreprend autres démarches :D

donne moi des nouvelles :d


0
Réponse 30 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 18:22
PC redemarré ok

Avast tjs arreté. " avast à été arreté ou est instable" ?
outlook : toujours " preparation installation" > " erreur irrécupérable lors de l'installation".
0
Réponse 31 / 83
Utilisateur anonyme
21 mai 2013 à 18:26
pour avast, désinstalle le, puis réinstalle le pour voir !


pour Outlook, tu as quelle version ?

0
Réponse 32 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 19:11
impossible de ré installer AVAST :
" windows installer : the feature you are trying to use is on a network ressource that is unavailable" meme probleme que pour outlook??
ma version outlook = 2010
0
Réponse 33 / 83
Utilisateur anonyme
21 mai 2013 à 19:35
passe ceci pour remettre l'association des fichiers !

https://toolslib.net
0
Réponse 34 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 20:04
Avast OK
outlook tjs KO
pour infos au cas ou, lorsque j'éteins mon PC, il y a souvent des mises à jour qui doivent se faire, or j'ai l'impression qu'elles ne se font pas??
0
Réponse 35 / 83
Utilisateur anonyme
21 mai 2013 à 20:59
tu as un truc qui fonctionne correctement sur ce pc ? :mdr:


essaie de remettre Outlook depuis ce lien :

http://www.microsoft.com/fr-fr/download/details.aspx?id=118


0
Réponse 36 / 83
Utilisateur anonyme
21 mai 2013 à 21:17
pour les mises a jours il faut pas qu'il fasse le fameux C:\Windows\SoftwareDistribution en C:\Windows\SoftwareDistribution.old??????
0
Réponse 37 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 21:36
bon, il ne faut pas craquer!!!!!
alors voilà, à partir du lien ci dessus j'ai essayé de telecharger:
"Outlook 2010 : Menu interactif du guide pour le menu ruban"

la reponse est comme d'habitude: windows installer : the feature you are trying .....

puis :
the patcch " C:/7af097dccded75bd0d2/silverlight.msi" canot found. verify that you have acces to this location and try again. Or try to find the installation package " silverlight.msi in afolder from which you can install the product microsoft silverlight


voilà voilà.
parce que en plus d'etre nul en informatique je ne maitrise pas du tout l'anglais!!!!
y a des jours avec et des jours sans ;-)))
0
Réponse 38 / 83
Utilisateur anonyme
21 mai 2013 à 22:09
bon, le centre de téléchargement de Windows est surement endommagé !

passe ceci :


https://toolslib.net


puis installe ceci qui est manquant :

http://www.microsoft.com/SILVERLIGHT/


0
Réponse 39 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 22:26
ben désolé mais lors de l'installation de sylverlight j'ai le meme message :

the patcch " C:/7af097dccded75bd0d2/silverlight.msi" canot found. verify that you have acces to this location and try again. Or try to find the installation package " silverlight.msi in afolder from which you can install the product microsoft silverlight
0
Réponse 40 / 83
phil.cath Messages postés 42 Date d'inscription lundi 20 mai 2013 Statut Membre Dernière intervention 26 mai 2013
21 mai 2013 à 22:33
en fait, j'ai l'impression que j'ai perdu l'ensemble de pack office 2010!!! je n'ai plus ni PPT, ni word, ni Xls et donc ni outlook!!!!
0