Virus "son" indésirable
Résolu/Fermé
Mangaka
-
12 juil. 2013 à 10:42
billmaxime Messages postés 49969 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 14 mai 2024 - 12 juil. 2013 à 23:25
billmaxime Messages postés 49969 Date d'inscription dimanche 20 novembre 2011 Statut Contributeur Dernière intervention 14 mai 2024 - 12 juil. 2013 à 23:25
A voir également:
- Virus "son" indésirable
- Svchost.exe virus - Guide
- Mail indésirable - Guide
- Appel indésirable suspecté - Guide
- Youtu.be virus - Guide
- Faux message virus iphone - Forum iPhone
28 réponses
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 13:47
12 juil. 2013 à 13:47
salut
tu es victime d'une infection assez grave (O access)
fais ceci s'il te plaît
Télécharge roguekiller sur ton bureau
Le lien https://www.luanagames.com/index.fr.html
Le tuto http://tigzyrk.blogspot.be/2012/10/fr-roguekiller-tutoriel-officiel.html
Quitte tous tes programmes en cours
Lance roguekiller (utilisateurs vista-w7-w8 exécuter en tant qu'administrateur- clic droit)
Laisse faire le prescan
Clique sur scan
Le rapport s'affichera sur ton bureau et dans C:\ RKReport[#].txt
Poste le rapport via 1 copier/coller
@+
tu es victime d'une infection assez grave (O access)
fais ceci s'il te plaît
Télécharge roguekiller sur ton bureau
Le lien https://www.luanagames.com/index.fr.html
Le tuto http://tigzyrk.blogspot.be/2012/10/fr-roguekiller-tutoriel-officiel.html
Quitte tous tes programmes en cours
Lance roguekiller (utilisateurs vista-w7-w8 exécuter en tant qu'administrateur- clic droit)
Laisse faire le prescan
Clique sur scan
Le rapport s'affichera sur ton bureau et dans C:\ RKReport[#].txt
Poste le rapport via 1 copier/coller
@+
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 14:17
12 juil. 2013 à 14:17
re
tu as bien redémarrer le pc?
si ce n'est pas fait, fait le puis refais 1 scan complet (tous les disques avec MBAM )
ps: mets le a jour avant de lancer le scan (3ème bouton)
supprime bien tout ce qu'il va trouver et poste le rapport via 1 copier/coller
@+
tu as bien redémarrer le pc?
si ce n'est pas fait, fait le puis refais 1 scan complet (tous les disques avec MBAM )
ps: mets le a jour avant de lancer le scan (3ème bouton)
supprime bien tout ce qu'il va trouver et poste le rapport via 1 copier/coller
@+
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 16:59
12 juil. 2013 à 16:59
re
le rapport est propre, fais ceci s'il te plaît
télécharge zhpdiag sur ton bureau (outil de diagnostic)
le lien https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
le tuto http://www.security-helpzone.com/forum/Thread-ZHPDiag-Generer-un-rapport
utilisateurs vista-w7-w8 exécuter en tant qu'administrateur (clic droit)
pour lancer le scan clique sur la loupe avec le + (2ème bouton en haut a gauche)
le rapport s'affichera sur ton bureau et dans C:\zhpdiag.txt
poste le rapport via ce lien https://www.cjoint.com/
@+
le rapport est propre, fais ceci s'il te plaît
télécharge zhpdiag sur ton bureau (outil de diagnostic)
le lien https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
le tuto http://www.security-helpzone.com/forum/Thread-ZHPDiag-Generer-un-rapport
utilisateurs vista-w7-w8 exécuter en tant qu'administrateur (clic droit)
pour lancer le scan clique sur la loupe avec le + (2ème bouton en haut a gauche)
le rapport s'affichera sur ton bureau et dans C:\zhpdiag.txt
poste le rapport via ce lien https://www.cjoint.com/
@+
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 22:36
12 juil. 2013 à 22:36
salut Albert,
On s'est fait un bon barbecue, et je digère lentement devant un bon Tavel.
Merci de ton intervention pour la "citation" de Mangaka.
Bonne continuation.
@ Mangaka,
l'infection ZA (O access) a tendance a "mettre une claque" a certains services.
si tu vois que des problèmes persistent dans les jours qui viennent, repasse par le topic.
en attendant, vu que tout va bien, fais ceci s'il te plaît
télécharge delfix sur ton bureau
le lien http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/9-delfix
exécute le en tant qu'administrateur (clic droit)
vérifie que toutes les cases soient cochées:5
clique sur exécuter
le rapport s'affichera sur ton bureau et dans C:\delfix.txt
poste le rapport via 1 copier/coller
@+
On s'est fait un bon barbecue, et je digère lentement devant un bon Tavel.
Merci de ton intervention pour la "citation" de Mangaka.
Bonne continuation.
@ Mangaka,
l'infection ZA (O access) a tendance a "mettre une claque" a certains services.
si tu vois que des problèmes persistent dans les jours qui viennent, repasse par le topic.
en attendant, vu que tout va bien, fais ceci s'il te plaît
télécharge delfix sur ton bureau
le lien http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/9-delfix
exécute le en tant qu'administrateur (clic droit)
vérifie que toutes les cases soient cochées:5
clique sur exécuter
le rapport s'affichera sur ton bureau et dans C:\delfix.txt
poste le rapport via 1 copier/coller
@+
Hummm un bon barbeuk de quoi faire rever de ce temps :)
- Alors autant pour moi je croyait que c'etait terminer ^^ xD
Voila le rapport:
# DelFix v10.3 - Rapport créé le 12/07/2013 à 23:09:34
# Mis à jour le 08/06/2013 par Xplode
# Nom d'utilisateur : jimmy2 - JIMSEBA-PC
# Système d'exploitation : Windows 7 Ultimate Service Pack 1 (64 bits)
~ Activation de l'UAC ... OK
~ Suppression des outils de désinfection ...
Supprimé : C:\ZHP
Supprimé : C:\TDSSKiller_Quarantine
Supprimé : C:\Program Files (x86)\ZHPDiag
Supprimé : C:\AdwCleaner[R1].txt
Supprimé : C:\AdwCleaner[R2].txt
Supprimé : C:\AdwCleaner[S1].txt
Supprimé : C:\AdwCleaner[S2].txt
Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\TDSSKiller.2.8.16.0_12.07.2013_18.58.11_log.txt
Supprimé : C:\TDSSKiller.2.8.16.0_12.07.2013_19.00.04_log.txt
Supprimé : C:\TDSSKiller.2.8.16.0_12.07.2013_19.06.01_log.txt
Supprimé : C:\Users\jimmy2\Desktop\adwcleaner.exe
Supprimé : C:\Users\jimmy2\Desktop\RogueKiller.exe
Supprimé : C:\Users\jimmy2\Desktop\tdsskiller.exe
Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk
Supprimée : HKLM\SOFTWARE\AdwCleaner
Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
~ Sauvegarde de la base de registre ... OK
~ Purge de la restauration système ...
Supprimé : RP #72 [P | 07/12/2013 18:57:10]
Nouveau point de restauration créé !
~ Réinitialisation des paramètres système ... OK
########## - EOF - ##########
- Alors autant pour moi je croyait que c'etait terminer ^^ xD
Voila le rapport:
# DelFix v10.3 - Rapport créé le 12/07/2013 à 23:09:34
# Mis à jour le 08/06/2013 par Xplode
# Nom d'utilisateur : jimmy2 - JIMSEBA-PC
# Système d'exploitation : Windows 7 Ultimate Service Pack 1 (64 bits)
~ Activation de l'UAC ... OK
~ Suppression des outils de désinfection ...
Supprimé : C:\ZHP
Supprimé : C:\TDSSKiller_Quarantine
Supprimé : C:\Program Files (x86)\ZHPDiag
Supprimé : C:\AdwCleaner[R1].txt
Supprimé : C:\AdwCleaner[R2].txt
Supprimé : C:\AdwCleaner[S1].txt
Supprimé : C:\AdwCleaner[S2].txt
Supprimé : C:\PhysicalDisk0_MBR.bin
Supprimé : C:\TDSSKiller.2.8.16.0_12.07.2013_18.58.11_log.txt
Supprimé : C:\TDSSKiller.2.8.16.0_12.07.2013_19.00.04_log.txt
Supprimé : C:\TDSSKiller.2.8.16.0_12.07.2013_19.06.01_log.txt
Supprimé : C:\Users\jimmy2\Desktop\adwcleaner.exe
Supprimé : C:\Users\jimmy2\Desktop\RogueKiller.exe
Supprimé : C:\Users\jimmy2\Desktop\tdsskiller.exe
Supprimé : C:\Users\Public\Desktop\ZHPDiag.lnk
Supprimé : C:\Users\Public\Desktop\ZHPFix.lnk
Supprimée : HKLM\SOFTWARE\AdwCleaner
Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1
~ Sauvegarde de la base de registre ... OK
~ Purge de la restauration système ...
Supprimé : RP #72 [P | 07/12/2013 18:57:10]
Nouveau point de restauration créé !
~ Réinitialisation des paramètres système ... OK
########## - EOF - ##########
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Salut, deja merci pour ta reponse :)
Mais j'ai fait comme tu m'as dis et j'ai redemarré le pc
mais j'ai tjr le meme virus qui ce mets et encore ce son qui sort de
je ne sais ou :/
Mais j'ai fait comme tu m'as dis et j'ai redemarré le pc
mais j'ai tjr le meme virus qui ce mets et encore ce son qui sort de
je ne sais ou :/
Max_New
Messages postés
170
Date d'inscription
lundi 24 juin 2013
Statut
Membre
Dernière intervention
25 juillet 2013
24
12 juil. 2013 à 12:37
12 juil. 2013 à 12:37
Télécharge AdwCleaner, lance-le et clique sur suppression. Ne t'inquiète pas il ne touche pas à tes données ni a tes fichiers système. Il devrait te massacrer ton virus ^ ^
RogueKiller V8.6.2 [Jul 5 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.adlice.com/forum/
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : jimmy2 [Droits d'admin]
Mode : Recherche -- Date : 07/12/2013 14:04:07
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 3 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\RunOnce : Malwarebytes Anti-Malware (cleanup) (rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [x][7][x]) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
¤¤¤ Tâches planifiées : 1 ¤¤¤
[V2][SUSP PATH] RVLKL : C:\ProgramData\rvlkl\rvlkl.exe - /b [x] -> TROUVÉ
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][Fichier] @ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\@ [-] --> TROUVÉ
[ZeroAccess][Repertoire] U : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U [-] --> TROUVÉ
[ZeroAccess][Repertoire] L : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L [-] --> TROUVÉ
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_32\Desktop.ini [-] --> TROUVÉ
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_64\Desktop.ini [-] --> TROUVÉ
[ZeroAccess][Jonction] fr-FR : C:\Program Files\Windows Defender\fr-FR >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpAsDesc.dll : C:\Program Files\Windows Defender\MpAsDesc.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpClient.dll : C:\Program Files\Windows Defender\MpClient.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpCmdRun.exe : C:\Program Files\Windows Defender\MpCmdRun.exe >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpCommu.dll : C:\Program Files\Windows Defender\MpCommu.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpEvMsg.dll : C:\Program Files\Windows Defender\MpEvMsg.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpOAV.dll : C:\Program Files\Windows Defender\MpOAV.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpRTP.dll : C:\Program Files\Windows Defender\MpRTP.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpSvc.dll : C:\Program Files\Windows Defender\MpSvc.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MSASCui.exe : C:\Program Files\Windows Defender\MSASCui.exe >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MsMpCom.dll : C:\Program Files\Windows Defender\MsMpCom.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MsMpLics.dll : C:\Program Files\Windows Defender\MsMpLics.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MsMpRes.dll : C:\Program Files\Windows Defender\MsMpRes.dll >> \systemroot\system32\config [-] --> TROUVÉ
¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ZeroAccess ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: Hitachi HCC545025B9A300 ATA Device +++++
--- User ---
[MBR] 2f00e13d6c14e66c10ae724066d713e8
[BSP] d5f7eb607062493e1ebc55304abfcba4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 238473 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[0]_S_07122013_140407.txt >>
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.adlice.com/forum/
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : jimmy2 [Droits d'admin]
Mode : Recherche -- Date : 07/12/2013 14:04:07
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 3 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\RunOnce : Malwarebytes Anti-Malware (cleanup) (rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [x][7][x]) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
¤¤¤ Tâches planifiées : 1 ¤¤¤
[V2][SUSP PATH] RVLKL : C:\ProgramData\rvlkl\rvlkl.exe - /b [x] -> TROUVÉ
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][Fichier] @ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\@ [-] --> TROUVÉ
[ZeroAccess][Repertoire] U : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U [-] --> TROUVÉ
[ZeroAccess][Repertoire] L : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L [-] --> TROUVÉ
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_32\Desktop.ini [-] --> TROUVÉ
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_64\Desktop.ini [-] --> TROUVÉ
[ZeroAccess][Jonction] fr-FR : C:\Program Files\Windows Defender\fr-FR >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpAsDesc.dll : C:\Program Files\Windows Defender\MpAsDesc.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpClient.dll : C:\Program Files\Windows Defender\MpClient.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpCmdRun.exe : C:\Program Files\Windows Defender\MpCmdRun.exe >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpCommu.dll : C:\Program Files\Windows Defender\MpCommu.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpEvMsg.dll : C:\Program Files\Windows Defender\MpEvMsg.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpOAV.dll : C:\Program Files\Windows Defender\MpOAV.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpRTP.dll : C:\Program Files\Windows Defender\MpRTP.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MpSvc.dll : C:\Program Files\Windows Defender\MpSvc.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MSASCui.exe : C:\Program Files\Windows Defender\MSASCui.exe >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MsMpCom.dll : C:\Program Files\Windows Defender\MsMpCom.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MsMpLics.dll : C:\Program Files\Windows Defender\MsMpLics.dll >> \systemroot\system32\config [-] --> TROUVÉ
[ZeroAccess][Jonction] MsMpRes.dll : C:\Program Files\Windows Defender\MsMpRes.dll >> \systemroot\system32\config [-] --> TROUVÉ
¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ZeroAccess ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: Hitachi HCC545025B9A300 ATA Device +++++
--- User ---
[MBR] 2f00e13d6c14e66c10ae724066d713e8
[BSP] d5f7eb607062493e1ebc55304abfcba4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 238473 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[0]_S_07122013_140407.txt >>
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 14:08
12 juil. 2013 à 14:08
re
relance roguekiller et clique sur suppression et poste le rapport
regrade l'image
merci
@+
relance roguekiller et clique sur suppression et poste le rapport
regrade l'image
merci
@+
RogueKiller V8.6.2 [Jul 5 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.adlice.com/forum/
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : jimmy2 [Droits d'admin]
Mode : Suppression -- Date : 07/12/2013 14:08:02
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 3 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\RunOnce : Malwarebytes Anti-Malware (cleanup) (rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [x][7][x]) -> SUPPRIMÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0)
¤¤¤ Tâches planifiées : 1 ¤¤¤
[V2][SUSP PATH] RVLKL : C:\ProgramData\rvlkl\rvlkl.exe - /b [x] -> SUPPRIMÉ
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][Fichier] @ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\@ [-] --> SUPPRIMÉ AU REBOOT
[ZeroAccess][Repertoire] U : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U [-] --> SUPPRIMÉ
[ZeroAccess][Repertoire] L : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_32\Desktop.ini [-] --> SUPPRIMÉ AU REBOOT
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_64\Desktop.ini [-] --> SUPPRIMÉ AU REBOOT
[ZeroAccess][Jonction] fr-FR : C:\Program Files\Windows Defender\fr-FR >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpAsDesc.dll : C:\Program Files\Windows Defender\MpAsDesc.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpClient.dll : C:\Program Files\Windows Defender\MpClient.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpCmdRun.exe : C:\Program Files\Windows Defender\MpCmdRun.exe >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpCommu.dll : C:\Program Files\Windows Defender\MpCommu.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpEvMsg.dll : C:\Program Files\Windows Defender\MpEvMsg.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpOAV.dll : C:\Program Files\Windows Defender\MpOAV.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpRTP.dll : C:\Program Files\Windows Defender\MpRTP.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpSvc.dll : C:\Program Files\Windows Defender\MpSvc.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MSASCui.exe : C:\Program Files\Windows Defender\MSASCui.exe >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MsMpCom.dll : C:\Program Files\Windows Defender\MsMpCom.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MsMpLics.dll : C:\Program Files\Windows Defender\MsMpLics.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MsMpRes.dll : C:\Program Files\Windows Defender\MsMpRes.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Fichier] 00000004.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\00000004.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 00000008.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\00000008.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 000000cb.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\000000cb.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 80000000.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\80000000.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 80000032.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\80000032.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 80000064.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\80000064.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 00000004.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\00000004.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 201d3dde : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\201d3dde [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 6715e287 : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\6715e287 [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 76603ac3 : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\76603ac3 [-] --> SUPPRIMÉ
¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ZeroAccess ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: Hitachi HCC545025B9A300 ATA Device +++++
--- User ---
[MBR] 2f00e13d6c14e66c10ae724066d713e8
[BSP] d5f7eb607062493e1ebc55304abfcba4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 238473 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[0]_D_07122013_140802.txt >>
RKreport[0]_S_07122013_140407.txt
mail : tigzyRK<at>gmail<dot>com
Remontees : http://www.adlice.com/forum/
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Demarrage : Mode normal
Utilisateur : jimmy2 [Droits d'admin]
Mode : Suppression -- Date : 07/12/2013 14:08:02
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 3 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\[...]\RunOnce : Malwarebytes Anti-Malware (cleanup) (rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [x][7][x]) -> SUPPRIMÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0)
¤¤¤ Tâches planifiées : 1 ¤¤¤
[V2][SUSP PATH] RVLKL : C:\ProgramData\rvlkl\rvlkl.exe - /b [x] -> SUPPRIMÉ
¤¤¤ Entrées Startup : 0 ¤¤¤
¤¤¤ Navigateurs web : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
[ZeroAccess][Fichier] @ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\@ [-] --> SUPPRIMÉ AU REBOOT
[ZeroAccess][Repertoire] U : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U [-] --> SUPPRIMÉ
[ZeroAccess][Repertoire] L : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_32\Desktop.ini [-] --> SUPPRIMÉ AU REBOOT
[ZeroAccess][Fichier] Desktop.ini : C:\Windows\assembly\GAC_64\Desktop.ini [-] --> SUPPRIMÉ AU REBOOT
[ZeroAccess][Jonction] fr-FR : C:\Program Files\Windows Defender\fr-FR >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpAsDesc.dll : C:\Program Files\Windows Defender\MpAsDesc.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpClient.dll : C:\Program Files\Windows Defender\MpClient.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpCmdRun.exe : C:\Program Files\Windows Defender\MpCmdRun.exe >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpCommu.dll : C:\Program Files\Windows Defender\MpCommu.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpEvMsg.dll : C:\Program Files\Windows Defender\MpEvMsg.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpOAV.dll : C:\Program Files\Windows Defender\MpOAV.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpRTP.dll : C:\Program Files\Windows Defender\MpRTP.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MpSvc.dll : C:\Program Files\Windows Defender\MpSvc.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MSASCui.exe : C:\Program Files\Windows Defender\MSASCui.exe >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MsMpCom.dll : C:\Program Files\Windows Defender\MsMpCom.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MsMpLics.dll : C:\Program Files\Windows Defender\MsMpLics.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Jonction] MsMpRes.dll : C:\Program Files\Windows Defender\MsMpRes.dll >> \systemroot\system32\config [-] --> Jonction SUPPRIMÉ
[ZeroAccess][Fichier] 00000004.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\00000004.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 00000008.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\00000008.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 000000cb.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\000000cb.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 80000000.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\80000000.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 80000032.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\80000032.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 80000064.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\U\80000064.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 00000004.@ : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\00000004.@ [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 201d3dde : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\201d3dde [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 6715e287 : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\6715e287 [-] --> SUPPRIMÉ
[ZeroAccess][Fichier] 76603ac3 : C:\Windows\Installer\{d5df9b67-c13e-329d-950e-d0edae1e7879}\L\76603ac3 [-] --> SUPPRIMÉ
¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤
¤¤¤ Ruches Externes: ¤¤¤
¤¤¤ Infection : ZeroAccess ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: Hitachi HCC545025B9A300 ATA Device +++++
--- User ---
[MBR] 2f00e13d6c14e66c10ae724066d713e8
[BSP] d5f7eb607062493e1ebc55304abfcba4 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 238473 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Termine : << RKreport[0]_D_07122013_140802.txt >>
RKreport[0]_S_07122013_140407.txt
dac j'ai redemmaré et je suis entrain de faire le scan complet je post le rapport des que c'est fini
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Version de la base de données: v2013.07.11.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
jimmy2 :: JIMSEBA-PC [administrateur]
12/07/2013 14:25:48
mbam-log-2013-07-12 (14-25-48).txt
Type d'examen: Examen complet (C:\|D:\|E:\|F:\|G:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 430338
Temps écoulé: 47 minute(s),
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)
Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)
Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)
(fin)
www.malwarebytes.org
Version de la base de données: v2013.07.11.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
jimmy2 :: JIMSEBA-PC [administrateur]
12/07/2013 14:25:48
mbam-log-2013-07-12 (14-25-48).txt
Type d'examen: Examen complet (C:\|D:\|E:\|F:\|G:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 430338
Temps écoulé: 47 minute(s),
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)
Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)
Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)
(fin)
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
Modifié par billmaxime le 12/07/2013 à 18:48
Modifié par billmaxime le 12/07/2013 à 18:48
re
fais ceci s'il te plaît (lis bien avant de te lancer dans la manipulation)
Télécharge TDSSKiller sur ton bureau :
https://support.kaspersky.com/downloads/utils/tdsskiller.exe
le tuto https://forum.security-x.fr/tutoriels-317/tutoriel-tdsskiller-nouvelle-version/
* Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant qu'administrateur " )
* Clique sur [Start Scan] pour démarrer l'analyse.
* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]
* Un rapport s'ouvrira au redémarrage du PC.
* Copie/Colle son contenu dans ta prochaine réponse.
Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.
note :
Conserve l'action proposée par défaut par l'outil :
- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" ou Sptd ou ForgedFile.Multi.Generic : laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas:D
@+
le taux de radiation est plus élevé au pôle emploi qu'à Tchernobyl
fais ceci s'il te plaît (lis bien avant de te lancer dans la manipulation)
Télécharge TDSSKiller sur ton bureau :
https://support.kaspersky.com/downloads/utils/tdsskiller.exe
le tuto https://forum.security-x.fr/tutoriels-317/tutoriel-tdsskiller-nouvelle-version/
* Lance le ( Utilisateurs de vista/Seven -> Clic droit puis " Exécuter en tant qu'administrateur " )
* Clique sur [Start Scan] pour démarrer l'analyse.
* Si des élements sont trouvés, cliques sur [Continue] puis sur [Reboot Now]
* Un rapport s'ouvrira au redémarrage du PC.
* Copie/Colle son contenu dans ta prochaine réponse.
Note : Le rapport se trouve également sous C:\TDSSKiller.N°deversion_Date_Heure_log.txt.
note :
Conserve l'action proposée par défaut par l'outil :
- Si TDSS.tdl2 : l'option Delete sera cochée.
- Si TDSS.tdl3 ou TDSS.tdl4 : assure toi que Cure soit bien cochée.
- Si "Suspicious object" ou Sptd ou ForgedFile.Multi.Generic : laisse l'option cochée sur Skip
- Si Rootkit.Win32.ZAccess.* est détecté règle sur cure en haut , et delete en bas:D
@+
le taux de radiation est plus élevé au pôle emploi qu'à Tchernobyl
Le 1er:
18:58:11.0282 0932 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:58:11.0723 0932 ============================================================
18:58:11.0723 0932 Current date / time: 2013/07/12 18:58:11.0723
18:58:11.0723 0932 SystemInfo:
18:58:11.0723 0932
18:58:11.0723 0932 OS Version: 6.1.7601 ServicePack: 1.0
18:58:11.0723 0932 Product type: Workstation
18:58:11.0723 0932 ComputerName: JIMSEBA-PC
18:58:11.0724 0932 UserName: jimmy2
18:58:11.0724 0932 Windows directory: C:\Windows
18:58:11.0724 0932 System windows directory: C:\Windows
18:58:11.0724 0932 Running under WOW64
18:58:11.0724 0932 Processor architecture: Intel x64
18:58:11.0724 0932 Number of processors: 2
18:58:11.0724 0932 Page size: 0x1000
18:58:11.0724 0932 Boot type: Normal boot
18:58:11.0724 0932 ============================================================
18:58:12.0770 0932 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:58:12.0780 0932 ============================================================
18:58:12.0780 0932 \Device\Harddisk0\DR0:
18:58:12.0780 0932 MBR partitions:
18:58:12.0780 0932 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
18:58:12.0780 0932 ============================================================
18:58:12.0800 0932 C: <-> \Device\Harddisk0\DR0\Partition1
18:58:12.0800 0932 ============================================================
18:58:12.0800 0932 Initialize success
18:58:12.0800 0932 ============================================================
18:58:31.0961 3680 Deinitialize success
Le 2ieme:
19:00:04.0516 2540 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:00:04.0953 2540 ============================================================
19:00:04.0953 2540 Current date / time: 2013/07/12 19:00:04.0953
19:00:04.0953 2540 SystemInfo:
19:00:04.0953 2540
19:00:04.0953 2540 OS Version: 6.1.7601 ServicePack: 1.0
19:00:04.0953 2540 Product type: Workstation
19:00:04.0953 2540 ComputerName: JIMSEBA-PC
19:00:04.0953 2540 UserName: jimmy2
19:00:04.0953 2540 Windows directory: C:\Windows
19:00:04.0953 2540 System windows directory: C:\Windows
19:00:04.0953 2540 Running under WOW64
19:00:04.0953 2540 Processor architecture: Intel x64
19:00:04.0953 2540 Number of processors: 2
19:00:04.0953 2540 Page size: 0x1000
19:00:04.0953 2540 Boot type: Normal boot
19:00:04.0953 2540 ============================================================
19:00:06.0940 2540 BG loaded
19:00:07.0190 2540 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:00:07.0200 2540 ============================================================
19:00:07.0200 2540 \Device\Harddisk0\DR0:
19:00:07.0200 2540 MBR partitions:
19:00:07.0200 2540 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
19:00:07.0200 2540 ============================================================
19:00:07.0220 2540 C: <-> \Device\Harddisk0\DR0\Partition1
19:00:07.0220 2540 ============================================================
19:00:07.0220 2540 Initialize success
19:00:07.0220 2540 ============================================================
19:00:42.0035 3448 ============================================================
19:00:42.0035 3448 Scan started
19:00:42.0035 3448 Mode: Manual; SigCheck; TDLFS;
19:00:42.0035 3448 ============================================================
19:00:46.0130 3448 ================ Scan system memory ========================
19:00:46.0130 3448 System memory - ok
19:00:46.0131 3448 ================ Scan services =============================
19:00:46.0326 3448 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:00:46.0453 3448 1394ohci - ok
19:00:46.0491 3448 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:00:46.0505 3448 ACPI - ok
19:00:46.0566 3448 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:00:46.0648 3448 AcpiPmi - ok
19:00:46.0810 3448 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:00:46.0826 3448 AdobeARMservice - ok
19:00:47.0079 3448 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:00:47.0109 3448 AdobeFlashPlayerUpdateSvc - ok
19:00:47.0169 3448 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:00:47.0210 3448 adp94xx - ok
19:00:47.0284 3448 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:00:47.0326 3448 adpahci - ok
19:00:47.0343 3448 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:00:47.0355 3448 adpu320 - ok
19:00:47.0419 3448 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:00:47.0647 3448 AeLookupSvc - ok
19:00:47.0721 3448 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:00:47.0796 3448 AFD - ok
19:00:47.0846 3448 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:00:47.0878 3448 agp440 - ok
19:00:47.0922 3448 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:00:48.0068 3448 ALG - ok
19:00:48.0114 3448 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:00:48.0150 3448 aliide - ok
19:00:48.0176 3448 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:00:48.0186 3448 amdide - ok
19:00:48.0239 3448 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:00:48.0293 3448 AmdK8 - ok
19:00:48.0298 3448 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:00:48.0358 3448 AmdPPM - ok
19:00:48.0422 3448 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:00:48.0449 3448 amdsata - ok
19:00:48.0486 3448 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:00:48.0505 3448 amdsbs - ok
19:00:48.0523 3448 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:00:48.0534 3448 amdxata - ok
19:00:48.0586 3448 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:00:48.0718 3448 AppID - ok
19:00:48.0798 3448 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:00:48.0868 3448 AppIDSvc - ok
19:00:48.0931 3448 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
19:00:49.0014 3448 Appinfo - ok
19:00:49.0060 3448 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
19:00:49.0129 3448 AppMgmt - ok
19:00:49.0165 3448 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:00:49.0194 3448 arc - ok
19:00:49.0211 3448 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:00:49.0241 3448 arcsas - ok
19:00:49.0267 3448 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:00:49.0340 3448 AsyncMac - ok
19:00:49.0386 3448 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:00:49.0401 3448 atapi - ok
19:00:49.0424 3448 athur - ok
19:00:49.0501 3448 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:00:49.0574 3448 AudioEndpointBuilder - ok
19:00:49.0607 3448 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:00:49.0635 3448 AudioSrv - ok
19:00:49.0709 3448 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:00:49.0807 3448 AxInstSV - ok
19:00:49.0860 3448 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:00:49.0927 3448 b06bdrv - ok
19:00:49.0974 3448 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:00:50.0023 3448 b57nd60a - ok
19:00:50.0073 3448 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:00:50.0124 3448 BDESVC - ok
19:00:50.0146 3448 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:00:50.0217 3448 Beep - ok
19:00:50.0262 3448 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:00:50.0307 3448 blbdrive - ok
19:00:50.0372 3448 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:00:50.0427 3448 bowser - ok
19:00:50.0442 3448 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:00:50.0515 3448 BrFiltLo - ok
19:00:50.0534 3448 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:00:50.0551 3448 BrFiltUp - ok
19:00:50.0601 3448 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:00:50.0661 3448 Browser - ok
19:00:50.0687 3448 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:00:50.0750 3448 Brserid - ok
19:00:50.0756 3448 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:00:50.0789 3448 BrSerWdm - ok
19:00:50.0812 3448 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:00:50.0849 3448 BrUsbMdm - ok
19:00:50.0854 3448 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:00:50.0874 3448 BrUsbSer - ok
19:00:50.0880 3448 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:00:50.0913 3448 BTHMODEM - ok
19:00:50.0960 3448 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:00:51.0027 3448 bthserv - ok
19:00:51.0115 3448 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:00:51.0214 3448 cdfs - ok
19:00:51.0264 3448 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:00:51.0296 3448 cdrom - ok
19:00:51.0349 3448 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:00:51.0424 3448 CertPropSvc - ok
19:00:51.0463 3448 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:00:51.0507 3448 circlass - ok
19:00:51.0550 3448 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:00:51.0564 3448 CLFS - ok
19:00:51.0649 3448 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:00:51.0666 3448 clr_optimization_v2.0.50727_32 - ok
19:00:51.0721 3448 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:00:51.0736 3448 clr_optimization_v2.0.50727_64 - ok
19:00:51.0829 3448 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:00:51.0846 3448 clr_optimization_v4.0.30319_32 - ok
19:00:51.0874 3448 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:00:51.0889 3448 clr_optimization_v4.0.30319_64 - ok
19:00:51.0923 3448 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:00:51.0960 3448 CmBatt - ok
19:00:51.0989 3448 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:00:52.0018 3448 cmdide - ok
19:00:52.0067 3448 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:00:52.0102 3448 CNG - ok
19:00:52.0150 3448 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:00:52.0165 3448 Compbatt - ok
19:00:52.0192 3448 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:00:52.0223 3448 CompositeBus - ok
19:00:52.0238 3448 COMSysApp - ok
19:00:52.0260 3448 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:00:52.0273 3448 crcdisk - ok
19:00:52.0350 3448 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:00:52.0397 3448 CryptSvc - ok
19:00:52.0440 3448 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
19:00:52.0503 3448 CSC - ok
19:00:52.0581 3448 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
19:00:52.0617 3448 CscService - ok
19:00:52.0682 3448 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:00:52.0744 3448 DcomLaunch - ok
19:00:52.0788 3448 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:00:52.0856 3448 defragsvc - ok
19:00:52.0918 3448 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:00:52.0977 3448 DfsC - ok
19:00:53.0034 3448 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:00:53.0102 3448 Dhcp - ok
19:00:53.0148 3448 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:00:53.0199 3448 discache - ok
19:00:53.0247 3448 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:00:53.0263 3448 Disk - ok
19:00:53.0318 3448 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:00:53.0375 3448 Dnscache - ok
19:00:53.0445 3448 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:00:53.0508 3448 dot3svc - ok
19:00:53.0567 3448 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:00:53.0627 3448 DPS - ok
19:00:53.0900 3448 [ 582C08E418121232BD199F4B92A63D9B ] DragonUpdater C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
19:00:53.0945 3448 DragonUpdater - ok
19:00:54.0024 3448 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:00:54.0168 3448 drmkaud - ok
19:00:54.0295 3448 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:00:54.0317 3448 dtsoftbus01 - ok
19:00:54.0486 3448 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:00:54.0513 3448 DXGKrnl - ok
19:00:54.0559 3448 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
19:00:54.0612 3448 e1yexpress - ok
19:00:54.0664 3448 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:00:54.0723 3448 EapHost - ok
19:00:55.0144 3448 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:00:55.0300 3448 ebdrv - ok
19:00:55.0325 3448 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:00:55.0373 3448 EFS - ok
19:00:55.0491 3448 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:00:55.0569 3448 ehRecvr - ok
19:00:55.0604 3448 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:00:55.0630 3448 ehSched - ok
19:00:55.0679 3448 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:00:55.0707 3448 elxstor - ok
19:00:55.0746 3448 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:00:55.0774 3448 ErrDev - ok
19:00:55.0834 3448 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:00:55.0895 3448 EventSystem - ok
19:00:55.0932 3448 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:00:55.0961 3448 exfat - ok
19:00:55.0996 3448 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:00:56.0047 3448 fastfat - ok
19:00:56.0116 3448 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:00:56.0167 3448 Fax - ok
19:00:56.0181 3448 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:00:56.0232 3448 fdc - ok
19:00:56.0275 3448 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:00:56.0338 3448 fdPHost - ok
19:00:56.0365 3448 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:00:56.0426 3448 FDResPub - ok
19:00:56.0477 3448 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:00:56.0487 3448 FileInfo - ok
19:00:56.0494 3448 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:00:56.0520 3448 Filetrace - ok
19:00:56.0539 3448 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:00:56.0566 3448 flpydisk - ok
19:00:56.0599 3448 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:00:56.0615 3448 FltMgr - ok
19:00:56.0782 3448 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
19:00:56.0847 3448 FontCache - ok
19:00:56.0903 3448 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:00:56.0914 3448 FontCache3.0.0.0 - ok
19:00:56.0941 3448 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:00:56.0955 3448 FsDepends - ok
19:00:56.0989 3448 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:00:57.0002 3448 Fs_Rec - ok
19:00:57.0046 3448 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:00:57.0085 3448 fvevol - ok
19:00:57.0121 3448 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:00:57.0144 3448 gagp30kx - ok
19:00:57.0212 3448 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:00:57.0271 3448 gpsvc - ok
19:00:57.0317 3448 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:00:57.0367 3448 hcw85cir - ok
19:00:57.0426 3448 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:00:57.0471 3448 HdAudAddService - ok
19:00:57.0500 3448 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:00:57.0550 3448 HDAudBus - ok
19:00:57.0576 3448 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:00:57.0602 3448 HidBatt - ok
19:00:57.0608 3448 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:00:57.0645 3448 HidBth - ok
19:00:57.0650 3448 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:00:57.0673 3448 HidIr - ok
19:00:57.0705 3448 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:00:57.0768 3448 hidserv - ok
19:00:57.0829 3448 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:00:57.0842 3448 HidUsb - ok
19:00:57.0892 3448 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:00:57.0967 3448 hkmsvc - ok
19:00:58.0010 3448 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:00:58.0055 3448 HomeGroupListener - ok
19:00:58.0110 3448 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:00:58.0148 3448 HomeGroupProvider - ok
19:00:58.0207 3448 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:00:58.0223 3448 HpSAMD - ok
19:00:58.0288 3448 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:00:58.0358 3448 HTTP - ok
19:00:58.0391 3448 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:00:58.0401 3448 hwpolicy - ok
19:00:58.0458 3448 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:00:58.0479 3448 i8042prt - ok
19:00:58.0517 3448 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:00:58.0535 3448 iaStorV - ok
19:00:58.0659 3448 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:00:58.0706 3448 idsvc - ok
19:00:58.0743 3448 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:00:58.0753 3448 iirsp - ok
19:00:58.0857 3448 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:00:58.0891 3448 IKEEXT - ok
19:00:58.0913 3448 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:00:58.0932 3448 intelide - ok
19:00:58.0969 3448 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:00:59.0006 3448 intelppm - ok
19:00:59.0069 3448 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:00:59.0136 3448 IPBusEnum - ok
19:00:59.0166 3448 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:00:59.0221 3448 IpFilterDriver - ok
19:00:59.0258 3448 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:00:59.0284 3448 IPMIDRV - ok
19:00:59.0329 3448 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:00:59.0395 3448 IPNAT - ok
19:00:59.0440 3448 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:00:59.0967 3448 IRENUM - ok
19:00:59.0986 3448 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:00:59.0997 3448 isapnp - ok
19:01:00.0153 3448 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:01:00.0245 3448 iScsiPrt - ok
19:01:00.0330 3448 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:01:00.0346 3448 kbdclass - ok
19:01:00.0397 3448 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:01:00.0413 3448 kbdhid - ok
19:01:00.0426 3448 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:01:00.0439 3448 KeyIso - ok
19:01:00.0488 3448 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:01:00.0504 3448 KSecDD - ok
19:01:00.0540 3448 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:01:00.0556 3448 KSecPkg - ok
19:01:00.0587 3448 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:01:00.0634 3448 ksthunk - ok
19:01:00.0677 3448 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:01:00.0749 3448 KtmRm - ok
19:01:00.0805 3448 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:01:00.0882 3448 LanmanServer - ok
19:01:00.0897 3448 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:01:00.0956 3448 LanmanWorkstation - ok
19:01:01.0010 3448 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:01:01.0070 3448 lltdio - ok
19:01:01.0119 3448 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:01:01.0193 3448 lltdsvc - ok
19:01:01.0202 3448 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:01:01.0227 3448 lmhosts - ok
19:01:01.0286 3448 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:01:01.0303 3448 LSI_FC - ok
19:01:01.0327 3448 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:01:01.0337 3448 LSI_SAS - ok
19:01:01.0347 3448 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:01:01.0357 3448 LSI_SAS2 - ok
19:01:01.0376 3448 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:01:01.0386 3448 LSI_SCSI - ok
19:01:01.0411 3448 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:01:01.0452 3448 luafv - ok
19:01:01.0507 3448 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:01:01.0520 3448 MBAMProtector - ok
19:01:01.0581 3448 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:01:01.0600 3448 MBAMScheduler - ok
19:01:01.0626 3448 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:01:01.0639 3448 MBAMService - ok
19:01:01.0688 3448 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:01:01.0733 3448 Mcx2Svc - ok
19:01:01.0758 3448 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:01:01.0788 3448 megasas - ok
19:01:01.0835 3448 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:01:01.0856 3448 MegaSR - ok
19:01:01.0919 3448 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:01:01.0982 3448 MMCSS - ok
19:01:02.0004 3448 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:01:02.0041 3448 Modem - ok
19:01:02.0066 3448 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:01:02.0112 3448 monitor - ok
19:01:02.0167 3448 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:01:02.0182 3448 mouclass - ok
19:01:02.0219 3448 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:01:02.0236 3448 mouhid - ok
19:01:02.0272 3448 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:01:02.0309 3448 mountmgr - ok
19:01:02.0368 3448 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:01:02.0384 3448 MozillaMaintenance - ok
19:01:02.0415 3448 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:01:02.0427 3448 mpio - ok
19:01:02.0472 3448 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:01:02.0502 3448 mpsdrv - ok
19:01:02.0568 3448 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:01:02.0607 3448 MRxDAV - ok
19:01:02.0662 3448 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:01:02.0718 3448 mrxsmb - ok
19:01:02.0806 3448 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:01:02.0836 3448 mrxsmb10 - ok
19:01:02.0861 3448 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:01:02.0870 3448 mrxsmb20 - ok
19:01:02.0920 3448 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:01:02.0935 3448 msahci - ok
19:01:02.0965 3448 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:01:02.0993 3448 msdsm - ok
19:01:03.0015 3448 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:01:03.0038 3448 MSDTC - ok
19:01:03.0074 3448 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:01:03.0100 3448 Msfs - ok
19:01:03.0129 3448 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:01:03.0196 3448 mshidkmdf - ok
19:01:03.0231 3448 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:01:03.0244 3448 msisadrv - ok
19:01:03.0287 3448 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:01:03.0353 3448 MSiSCSI - ok
19:01:03.0357 3448 msiserver - ok
19:01:03.0402 3448 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:01:03.0459 3448 MSKSSRV - ok
19:01:03.0488 3448 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:01:03.0517 3448 MSPCLOCK - ok
19:01:03.0522 3448 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:01:03.0566 3448 MSPQM - ok
19:01:03.0632 3448 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:01:03.0646 3448 MsRPC - ok
19:01:03.0694 3448 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:01:03.0703 3448 mssmbios - ok
19:01:03.0737 3448 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:01:03.0798 3448 MSTEE - ok
19:01:03.0815 3448 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:01:03.0860 3448 MTConfig - ok
19:01:03.0890 3448 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:01:03.0906 3448 Mup - ok
19:01:04.0016 3448 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:01:04.0092 3448 napagent - ok
19:01:04.0146 3448 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:01:04.0189 3448 NativeWifiP - ok
19:01:04.0279 3448 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:01:04.0311 3448 NDIS - ok
19:01:04.0352 3448 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:01:04.0412 3448 NdisCap - ok
19:01:04.0446 3448 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:01:04.0484 3448 NdisTapi - ok
19:01:04.0535 3448 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:01:04.0590 3448 Ndisuio - ok
19:01:04.0653 3448 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:01:04.0716 3448 NdisWan - ok
19:01:04.0762 3448 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:01:04.0800 3448 NDProxy - ok
19:01:04.0847 3448 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:01:04.0916 3448 NetBIOS - ok
19:01:04.0959 3448 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:01:05.0023 3448 NetBT - ok
19:01:05.0048 3448 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:01:05.0056 3448 Netlogon - ok
19:01:05.0103 3448 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:01:05.0161 3448 Netman - ok
19:01:05.0190 3448 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:01:05.0242 3448 netprofm - ok
19:01:05.0278 3448 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:01:05.0286 3448 NetTcpPortSharing - ok
19:01:05.0317 3448 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:01:05.0326 3448 nfrd960 - ok
19:01:05.0408 3448 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:01:05.0452 3448 NlaSvc - ok
19:01:05.0474 3448 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:01:05.0499 3448 Npfs - ok
19:01:05.0552 3448 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:01:05.0616 3448 nsi - ok
19:01:05.0645 3448 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:01:05.0703 3448 nsiproxy - ok
19:01:05.0905 3448 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:01:05.0975 3448 Ntfs - ok
19:01:06.0017 3448 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:01:06.0062 3448 Null - ok
19:01:06.0551 3448 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:01:06.0681 3448 nvlddmkm - ok
19:01:06.0705 3448 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:01:06.0716 3448 nvraid - ok
19:01:06.0783 3448 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:01:06.0801 3448 nvstor - ok
19:01:06.0862 3448 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:01:06.0926 3448 nvsvc - ok
19:01:07.0235 3448 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:01:07.0321 3448 nvUpdatusService - ok
19:01:07.0393 3448 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:01:07.0420 3448 nv_agp - ok
19:01:07.0455 3448 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:01:07.0466 3448 ohci1394 - ok
19:01:07.0523 3448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:01:07.0592 3448 p2pimsvc - ok
19:01:07.0624 3448 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:01:07.0646 3448 p2psvc - ok
19:01:07.0677 3448 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:01:07.0723 3448 Parport - ok
19:01:08.0090 3448 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:01:08.0107 3448 partmgr - ok
19:01:08.0298 3448 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:01:08.0362 3448 PcaSvc - ok
19:01:08.0427 3448 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:01:08.0466 3448 pci - ok
19:01:08.0511 3448 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:01:08.0528 3448 pciide - ok
19:01:08.0705 3448 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:01:08.0742 3448 pcmcia - ok
19:01:08.0763 3448 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:01:08.0771 3448 pcw - ok
19:01:08.0799 3448 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:01:08.0846 3448 PEAUTH - ok
19:01:08.0902 3448 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:01:08.0964 3448 PeerDistSvc - ok
19:01:09.0052 3448 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:01:09.0085 3448 PerfHost - ok
19:01:09.0145 3448 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:01:09.0207 3448 pla - ok
19:01:09.0297 3448 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:01:09.0353 3448 PlugPlay - ok
19:01:09.0386 3448 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:01:09.0421 3448 PNRPAutoReg - ok
19:01:09.0466 3448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:01:09.0487 3448 PNRPsvc - ok
19:01:09.0588 3448 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:01:09.0646 3448 PolicyAgent - ok
19:01:09.0679 3448 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:01:09.0737 3448 Power - ok
19:01:09.0786 3448 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:01:09.0840 3448 PptpMiniport - ok
19:01:09.0880 3448 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:01:09.0921 3448 Processor - ok
19:01:09.0969 3448 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
19:01:10.0042 3448 ProfSvc - ok
19:01:10.0059 3448 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:01:10.0067 3448 ProtectedStorage - ok
19:01:10.0141 3448 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:01:10.0200 3448 Psched - ok
19:01:10.0366 3448 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:01:10.0413 3448 ql2300 - ok
19:01:10.0473 3448 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:01:10.0491 3448 ql40xx - ok
19:01:10.0592 3448 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:01:10.0632 3448 QWAVE - ok
19:01:10.0646 3448 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:01:10.0675 3448 QWAVEdrv - ok
19:01:10.0701 3448 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:01:10.0749 3448 RasAcd - ok
19:01:10.0789 3448 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:01:10.0815 3448 RasAgileVpn - ok
19:01:10.0837 3448 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:01:10.0876 3448 RasAuto - ok
19:01:10.0904 3448 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:01:10.0952 3448 Rasl2tp - ok
19:01:10.0991 3448 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:01:11.0044 3448 RasMan - ok
19:01:11.0085 3448 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:01:11.0134 3448 RasPppoe - ok
19:01:11.0151 3448 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:01:11.0177 3448 RasSstp - ok
19:01:11.0233 3448 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:01:11.0308 3448 rdbss - ok
19:01:11.0350 3448 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:01:11.0381 3448 rdpbus - ok
19:01:11.0398 3448 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:01:11.0450 3448 RDPCDD - ok
19:01:11.0513 3448 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:01:11.0564 3448 RDPDR - ok
19:01:11.0592 3448 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:01:11.0655 3448 RDPENCDD - ok
19:01:11.0669 3448 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:01:11.0694 3448 RDPREFMP - ok
19:01:11.0750 3448 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:01:11.0801 3448 RdpVideoMiniport - ok
19:01:11.0822 3448 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:01:11.0861 3448 RDPWD - ok
19:01:11.0905 3448 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:01:11.0937 3448 rdyboost - ok
19:01:11.0975 3448 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:01:12.0036 3448 RemoteAccess - ok
19:01:12.0099 3448 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:01:12.0155 3448 RemoteRegistry - ok
19:01:12.0181 3448 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:01:12.0242 3448 RpcEptMapper - ok
19:01:12.0277 3448 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:01:12.0286 3448 RpcLocator - ok
19:01:12.0303 3448 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:01:12.0331 3448 RpcSs - ok
19:01:12.0368 3448 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:01:12.0420 3448 rspndr - ok
19:01:12.0510 3448 [ CB2AB70EBE8F432E1B525EFE127B9323 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
19:01:12.0534 3448 RTL8192su - ok
19:01:12.0566 3448 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:01:12.0613 3448 s3cap - ok
19:01:12.0636 3448 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:01:12.0645 3448 SamSs - ok
19:01:12.0674 3448 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:01:12.0707 3448 sbp2port - ok
19:01:12.0766 3448 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:01:12.0808 3448 SCardSvr - ok
19:01:12.0840 3448 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:01:12.0900 3448 scfilter - ok
19:01:12.0942 3448 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:01:12.0990 3448 Schedule - ok
19:01:13.0016 3448 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:01:13.0041 3448 SCPolicySvc - ok
19:01:13.0094 3448 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:01:13.0156 3448 SDRSVC - ok
19:01:13.0197 3448 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:01:13.0254 3448 secdrv - ok
19:01:13.0280 3448 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:01:13.0339 3448 seclogon - ok
19:01:13.0393 3448 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:01:13.0463 3448 SENS - ok
19:01:13.0485 3448 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:01:13.0533 3448 SensrSvc - ok
19:01:13.0561 3448 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:01:13.0592 3448 Serenum - ok
19:01:13.0632 3448 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:01:13.0667 3448 Serial - ok
19:01:13.0707 3448 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:01:13.0732 3448 sermouse - ok
19:01:13.0776 3448 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:01:13.0852 3448 SessionEnv - ok
19:01:13.0886 3448 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:01:13.0917 3448 sffdisk - ok
19:01:13.0943 3448 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:01:13.0986 3448 sffp_mmc - ok
19:01:14.0008 3448 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:01:14.0054 3448 sffp_sd - ok
19:01:14.0132 3448 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:01:14.0170 3448 sfloppy - ok
19:01:14.0222 3448 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:01:14.0286 3448 ShellHWDetection - ok
19:01:14.0320 3448 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:01:14.0335 3448 SiSRaid2 - ok
19:01:14.0358 3448 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:01:14.0381 3448 SiSRaid4 - ok
19:01:14.0471 3448 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:01:14.0484 3448 SkypeUpdate - ok
19:01:14.0504 3448 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:01:14.0572 3448 Smb - ok
19:01:14.0620 3448 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:01:14.0655 3448 SNMPTRAP - ok
19:01:14.0679 3448 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:01:14.0694 3448 spldr - ok
19:01:14.0811 3448 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
19:01:14.0852 3448 Spooler - ok
19:01:15.0234 3448 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:01:15.0375 3448 sppsvc - ok
19:01:15.0434 3448 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:01:15.0510 3448 sppuinotify - ok
19:01:15.0547 3448 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:01:15.0601 3448 srv - ok
19:01:15.0634 3448 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:01:15.0669 3448 srv2 - ok
19:01:15.0697 3448 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:01:15.0708 3448 srvnet - ok
19:01:15.0764 3448 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:01:15.0846 3448 SSDPSRV - ok
19:01:15.0869 3448 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:01:15.0895 3448 SstpSvc - ok
19:01:15.0970 3448 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:01:15.0989 3448 Stereo Service - ok
19:01:16.0036 3448 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:01:16.0064 3448 stexstor - ok
19:01:16.0138 3448 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:01:16.0175 3448 stisvc - ok
19:01:16.0208 3448 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:01:16.0237 3448 storflt - ok
19:01:16.0260 3448 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:01:16.0270 3448 storvsc - ok
19:01:16.0285 3448 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:01:16.0294 3448 swenum - ok
19:01:16.0371 3448 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:01:16.0424 3448 swprv - ok
19:01:16.0446 3448 Synth3dVsc - ok
19:01:16.0666 3448 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:01:16.0738 3448 SysMain - ok
19:01:16.0790 3448 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:01:16.0812 3448 TabletInputService - ok
19:01:16.0879 3448 [ 83C57F165F0216E5CE40D7E4E00DC76D ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
19:01:16.0893 3448 taphss6 - ok
19:01:16.0979 3448 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:01:17.0058 3448 TapiSrv - ok
19:01:17.0096 3448 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:01:17.0135 3448 TBS - ok
19:01:17.0251 3448 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:01:17.0336 3448 Tcpip - ok
19:01:17.0356 3448 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:01:17.0386 3448 TCPIP6 - ok
19:01:17.0434 3448 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:01:17.0516 3448 tcpipreg - ok
19:01:17.0552 3448 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:01:17.0598 3448 TDPIPE - ok
19:01:17.0626 3448 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:01:17.0660 3448 TDTCP - ok
19:01:17.0690 3448 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:01:17.0755 3448 tdx - ok
19:01:17.0943 3448 [ 402794A75A899E296AB3EDEC4ECCB9A8 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
19:01:17.0995 3448 TeamViewer8 - ok
19:01:18.0035 3448 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:01:18.0043 3448 TermDD - ok
19:01:18.0093 3448 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:01:18.0143 3448 TermService - ok
19:01:18.0180 3448 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:01:18.0195 3448 Themes - ok
19:01:18.0219 3448 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:01:18.0245 3448 THREADORDER - ok
19:01:18.0321 3448 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:01:18.0363 3448 TrkWks - ok
19:01:18.0529 3448 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:01:18.0611 3448 TrustedInstaller - ok
19:01:18.0753 3448 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:01:18.0831 3448 tssecsrv - ok
19:01:18.0958 3448 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:01:19.0030 3448 TsUsbFlt - ok
19:01:19.0096 3448 tsusbhub - ok
19:01:19.0206 3448 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:01:19.0321 3448 tunnel - ok
19:01:19.0438 3448 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:01:19.0520 3448 uagp35 - ok
19:01:19.0639 3448 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:01:20.0131 3448 udfs - ok
19:01:20.0196 3448 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:01:20.0211 3448 UI0Detect - ok
19:01:20.0262 3448 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:01:20.0285 3448 uliagpkx - ok
19:01:20.0319 3448 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:01:20.0329 3448 umbus - ok
19:01:20.0361 3448 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:01:20.0422 3448 UmPass - ok
19:01:20.0499 3448 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
19:01:20.0558 3448 UmRdpService - ok
19:01:20.0597 3448 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:01:20.0641 3448 upnphost - ok
19:01:20.0696 3448 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:01:20.0726 3448 usbccgp - ok
19:01:20.0761 3448 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:01:20.0774 3448 usbcir - ok
19:01:20.0796 3448 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:01:20.0825 3448 usbehci - ok
19:01:20.0855 3448 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\drivers\usbhub.sys
19:01:20.0898 3448 usbhub - ok
19:01:20.0930 3448 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:01:20.0938 3448 usbohci - ok
19:01:20.0975 3448 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:01:21.0001 3448 usbprint - ok
19:01:21.0027 3448 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:01:21.0056 3448 USBSTOR - ok
19:01:21.0083 3448 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:01:21.0098 3448 usbuhci - ok
19:01:21.0142 3448 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:01:21.0206 3448 UxSms - ok
19:01:21.0237 3448 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:01:21.0245 3448 VaultSvc - ok
19:01:21.0283 3448 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:01:21.0291 3448 vdrvroot - ok
19:01:21.0336 3448 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:01:21.0395 3448 vds - ok
19:01:21.0430 3448 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:01:21.0441 3448 vga - ok
19:01:21.0469 3448 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:01:21.0529 3448 VgaSave - ok
19:01:21.0569 3448 VGPU - ok
19:01:21.0610 3448 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:01:21.0627 3448 vhdmp - ok
19:01:21.0657 3448 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:01:21.0671 3448 viaide - ok
19:01:21.0689 3448 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:01:21.0700 3448 vmbus - ok
19:01:21.0721 3448 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:01:21.0756 3448 VMBusHID - ok
19:01:21.0782 3448 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:01:21.0799 3448 volmgr - ok
19:01:21.0830 3448 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:01:21.0845 3448 volmgrx - ok
19:01:21.0881 3448 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:01:21.0895 3448 volsnap - ok
19:01:21.0948 3448 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:01:21.0959 3448 vsmraid - ok
19:01:22.0023 3448 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:01:22.0083 3448 VSS - ok
19:01:22.0101 3448 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:01:22.0124 3448 vwifibus - ok
19:01:22.0157 3448 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:01:22.0184 3448 vwififlt - ok
19:01:22.0231 3448 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:01:22.0243 3448 vwifimp - ok
19:01:22.0274 3448 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:01:22.0320 3448 W32Time - ok
19:01:22.0337 3448 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:01:22.0360 3448 WacomPen - ok
19:01:22.0410 3448 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:01:22.0449 3448 WANARP - ok
19:01:22.0463 3448 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:01:22.0488 3448 Wanarpv6 - ok
19:01:22.0558 3448 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:01:22.0584 3448 WatAdminSvc - ok
19:01:22.0635 3448 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:01:22.0693 3448 wbengine - ok
19:01:22.0732 3448 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:01:22.0746 3448 WbioSrvc - ok
19:01:22.0785 3448 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:01:22.0821 3448 wcncsvc - ok
19:01:22.0847 3448 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:01:22.0871 3448 WcsPlugInService - ok
19:01:22.0897 3448 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:01:22.0905 3448 Wd - ok
19:01:22.0934 3448 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:01:22.0953 3448 Wdf01000 - ok
19:01:22.0972 3448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:01:23.0021 3448 WdiServiceHost - ok
19:01:23.0024 3448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:01:23.0038 3448 WdiSystemHost - ok
19:01:23.0089 3448 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:01:23.0122 3448 WebClient - ok
19:01:23.0161 3448 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:01:23.0201 3448 Wecsvc - ok
19:01:23.0227 3448 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:01:23.0265 3448 wercplsupport - ok
19:01:23.0309 3448 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:01:23.0351 3448 WerSvc - ok
19:01:23.0386 3448 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:01:23.0412 3448 WfpLwf - ok
19:01:23.0439 3448 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:01:23.0448 3448 WIMMount - ok
19:01:23.0461 3448 WinHttpAutoProxySvc - ok
19:01:23.0515 3448 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:01:23.0557 3448 Winmgmt - ok
19:01:23.0614 3448 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:01:23.0666 3448 WinRM - ok
19:01:23.0729 3448 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:01:23.0749 3448 WinUsb - ok
19:01:23.0804 3448 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:01:23.0834 3448 Wlansvc - ok
19:01:23.0960 3448 [ C71EE856C4F5B52E2D094F494CEE4936 ] WlanWpsSvc C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe
19:01:23.0966 3448 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - warning
19:01:23.0966 3448 WlanWpsSvc - detected UnsignedFile.Multi.Generic (1)
19:01:24.0010 3448 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:01:24.0038 3448 WmiAcpi - ok
19:01:24.0078 3448 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\
18:58:11.0282 0932 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:58:11.0723 0932 ============================================================
18:58:11.0723 0932 Current date / time: 2013/07/12 18:58:11.0723
18:58:11.0723 0932 SystemInfo:
18:58:11.0723 0932
18:58:11.0723 0932 OS Version: 6.1.7601 ServicePack: 1.0
18:58:11.0723 0932 Product type: Workstation
18:58:11.0723 0932 ComputerName: JIMSEBA-PC
18:58:11.0724 0932 UserName: jimmy2
18:58:11.0724 0932 Windows directory: C:\Windows
18:58:11.0724 0932 System windows directory: C:\Windows
18:58:11.0724 0932 Running under WOW64
18:58:11.0724 0932 Processor architecture: Intel x64
18:58:11.0724 0932 Number of processors: 2
18:58:11.0724 0932 Page size: 0x1000
18:58:11.0724 0932 Boot type: Normal boot
18:58:11.0724 0932 ============================================================
18:58:12.0770 0932 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:58:12.0780 0932 ============================================================
18:58:12.0780 0932 \Device\Harddisk0\DR0:
18:58:12.0780 0932 MBR partitions:
18:58:12.0780 0932 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
18:58:12.0780 0932 ============================================================
18:58:12.0800 0932 C: <-> \Device\Harddisk0\DR0\Partition1
18:58:12.0800 0932 ============================================================
18:58:12.0800 0932 Initialize success
18:58:12.0800 0932 ============================================================
18:58:31.0961 3680 Deinitialize success
Le 2ieme:
19:00:04.0516 2540 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:00:04.0953 2540 ============================================================
19:00:04.0953 2540 Current date / time: 2013/07/12 19:00:04.0953
19:00:04.0953 2540 SystemInfo:
19:00:04.0953 2540
19:00:04.0953 2540 OS Version: 6.1.7601 ServicePack: 1.0
19:00:04.0953 2540 Product type: Workstation
19:00:04.0953 2540 ComputerName: JIMSEBA-PC
19:00:04.0953 2540 UserName: jimmy2
19:00:04.0953 2540 Windows directory: C:\Windows
19:00:04.0953 2540 System windows directory: C:\Windows
19:00:04.0953 2540 Running under WOW64
19:00:04.0953 2540 Processor architecture: Intel x64
19:00:04.0953 2540 Number of processors: 2
19:00:04.0953 2540 Page size: 0x1000
19:00:04.0953 2540 Boot type: Normal boot
19:00:04.0953 2540 ============================================================
19:00:06.0940 2540 BG loaded
19:00:07.0190 2540 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:00:07.0200 2540 ============================================================
19:00:07.0200 2540 \Device\Harddisk0\DR0:
19:00:07.0200 2540 MBR partitions:
19:00:07.0200 2540 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
19:00:07.0200 2540 ============================================================
19:00:07.0220 2540 C: <-> \Device\Harddisk0\DR0\Partition1
19:00:07.0220 2540 ============================================================
19:00:07.0220 2540 Initialize success
19:00:07.0220 2540 ============================================================
19:00:42.0035 3448 ============================================================
19:00:42.0035 3448 Scan started
19:00:42.0035 3448 Mode: Manual; SigCheck; TDLFS;
19:00:42.0035 3448 ============================================================
19:00:46.0130 3448 ================ Scan system memory ========================
19:00:46.0130 3448 System memory - ok
19:00:46.0131 3448 ================ Scan services =============================
19:00:46.0326 3448 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:00:46.0453 3448 1394ohci - ok
19:00:46.0491 3448 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:00:46.0505 3448 ACPI - ok
19:00:46.0566 3448 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:00:46.0648 3448 AcpiPmi - ok
19:00:46.0810 3448 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:00:46.0826 3448 AdobeARMservice - ok
19:00:47.0079 3448 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:00:47.0109 3448 AdobeFlashPlayerUpdateSvc - ok
19:00:47.0169 3448 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:00:47.0210 3448 adp94xx - ok
19:00:47.0284 3448 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:00:47.0326 3448 adpahci - ok
19:00:47.0343 3448 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:00:47.0355 3448 adpu320 - ok
19:00:47.0419 3448 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:00:47.0647 3448 AeLookupSvc - ok
19:00:47.0721 3448 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:00:47.0796 3448 AFD - ok
19:00:47.0846 3448 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:00:47.0878 3448 agp440 - ok
19:00:47.0922 3448 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:00:48.0068 3448 ALG - ok
19:00:48.0114 3448 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:00:48.0150 3448 aliide - ok
19:00:48.0176 3448 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:00:48.0186 3448 amdide - ok
19:00:48.0239 3448 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:00:48.0293 3448 AmdK8 - ok
19:00:48.0298 3448 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:00:48.0358 3448 AmdPPM - ok
19:00:48.0422 3448 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:00:48.0449 3448 amdsata - ok
19:00:48.0486 3448 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:00:48.0505 3448 amdsbs - ok
19:00:48.0523 3448 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:00:48.0534 3448 amdxata - ok
19:00:48.0586 3448 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:00:48.0718 3448 AppID - ok
19:00:48.0798 3448 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:00:48.0868 3448 AppIDSvc - ok
19:00:48.0931 3448 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
19:00:49.0014 3448 Appinfo - ok
19:00:49.0060 3448 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
19:00:49.0129 3448 AppMgmt - ok
19:00:49.0165 3448 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:00:49.0194 3448 arc - ok
19:00:49.0211 3448 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:00:49.0241 3448 arcsas - ok
19:00:49.0267 3448 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:00:49.0340 3448 AsyncMac - ok
19:00:49.0386 3448 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:00:49.0401 3448 atapi - ok
19:00:49.0424 3448 athur - ok
19:00:49.0501 3448 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:00:49.0574 3448 AudioEndpointBuilder - ok
19:00:49.0607 3448 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:00:49.0635 3448 AudioSrv - ok
19:00:49.0709 3448 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:00:49.0807 3448 AxInstSV - ok
19:00:49.0860 3448 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:00:49.0927 3448 b06bdrv - ok
19:00:49.0974 3448 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:00:50.0023 3448 b57nd60a - ok
19:00:50.0073 3448 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:00:50.0124 3448 BDESVC - ok
19:00:50.0146 3448 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:00:50.0217 3448 Beep - ok
19:00:50.0262 3448 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:00:50.0307 3448 blbdrive - ok
19:00:50.0372 3448 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:00:50.0427 3448 bowser - ok
19:00:50.0442 3448 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:00:50.0515 3448 BrFiltLo - ok
19:00:50.0534 3448 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:00:50.0551 3448 BrFiltUp - ok
19:00:50.0601 3448 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:00:50.0661 3448 Browser - ok
19:00:50.0687 3448 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:00:50.0750 3448 Brserid - ok
19:00:50.0756 3448 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:00:50.0789 3448 BrSerWdm - ok
19:00:50.0812 3448 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:00:50.0849 3448 BrUsbMdm - ok
19:00:50.0854 3448 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:00:50.0874 3448 BrUsbSer - ok
19:00:50.0880 3448 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:00:50.0913 3448 BTHMODEM - ok
19:00:50.0960 3448 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:00:51.0027 3448 bthserv - ok
19:00:51.0115 3448 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:00:51.0214 3448 cdfs - ok
19:00:51.0264 3448 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:00:51.0296 3448 cdrom - ok
19:00:51.0349 3448 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:00:51.0424 3448 CertPropSvc - ok
19:00:51.0463 3448 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:00:51.0507 3448 circlass - ok
19:00:51.0550 3448 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:00:51.0564 3448 CLFS - ok
19:00:51.0649 3448 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:00:51.0666 3448 clr_optimization_v2.0.50727_32 - ok
19:00:51.0721 3448 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:00:51.0736 3448 clr_optimization_v2.0.50727_64 - ok
19:00:51.0829 3448 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:00:51.0846 3448 clr_optimization_v4.0.30319_32 - ok
19:00:51.0874 3448 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:00:51.0889 3448 clr_optimization_v4.0.30319_64 - ok
19:00:51.0923 3448 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:00:51.0960 3448 CmBatt - ok
19:00:51.0989 3448 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:00:52.0018 3448 cmdide - ok
19:00:52.0067 3448 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:00:52.0102 3448 CNG - ok
19:00:52.0150 3448 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:00:52.0165 3448 Compbatt - ok
19:00:52.0192 3448 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:00:52.0223 3448 CompositeBus - ok
19:00:52.0238 3448 COMSysApp - ok
19:00:52.0260 3448 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:00:52.0273 3448 crcdisk - ok
19:00:52.0350 3448 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:00:52.0397 3448 CryptSvc - ok
19:00:52.0440 3448 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
19:00:52.0503 3448 CSC - ok
19:00:52.0581 3448 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
19:00:52.0617 3448 CscService - ok
19:00:52.0682 3448 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:00:52.0744 3448 DcomLaunch - ok
19:00:52.0788 3448 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:00:52.0856 3448 defragsvc - ok
19:00:52.0918 3448 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:00:52.0977 3448 DfsC - ok
19:00:53.0034 3448 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:00:53.0102 3448 Dhcp - ok
19:00:53.0148 3448 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:00:53.0199 3448 discache - ok
19:00:53.0247 3448 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:00:53.0263 3448 Disk - ok
19:00:53.0318 3448 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:00:53.0375 3448 Dnscache - ok
19:00:53.0445 3448 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:00:53.0508 3448 dot3svc - ok
19:00:53.0567 3448 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:00:53.0627 3448 DPS - ok
19:00:53.0900 3448 [ 582C08E418121232BD199F4B92A63D9B ] DragonUpdater C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
19:00:53.0945 3448 DragonUpdater - ok
19:00:54.0024 3448 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:00:54.0168 3448 drmkaud - ok
19:00:54.0295 3448 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:00:54.0317 3448 dtsoftbus01 - ok
19:00:54.0486 3448 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:00:54.0513 3448 DXGKrnl - ok
19:00:54.0559 3448 [ 50AD8FC1DC800FF36087994C8F7FDFF2 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys
19:00:54.0612 3448 e1yexpress - ok
19:00:54.0664 3448 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:00:54.0723 3448 EapHost - ok
19:00:55.0144 3448 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:00:55.0300 3448 ebdrv - ok
19:00:55.0325 3448 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:00:55.0373 3448 EFS - ok
19:00:55.0491 3448 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:00:55.0569 3448 ehRecvr - ok
19:00:55.0604 3448 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:00:55.0630 3448 ehSched - ok
19:00:55.0679 3448 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:00:55.0707 3448 elxstor - ok
19:00:55.0746 3448 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:00:55.0774 3448 ErrDev - ok
19:00:55.0834 3448 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:00:55.0895 3448 EventSystem - ok
19:00:55.0932 3448 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:00:55.0961 3448 exfat - ok
19:00:55.0996 3448 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:00:56.0047 3448 fastfat - ok
19:00:56.0116 3448 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:00:56.0167 3448 Fax - ok
19:00:56.0181 3448 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:00:56.0232 3448 fdc - ok
19:00:56.0275 3448 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:00:56.0338 3448 fdPHost - ok
19:00:56.0365 3448 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:00:56.0426 3448 FDResPub - ok
19:00:56.0477 3448 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:00:56.0487 3448 FileInfo - ok
19:00:56.0494 3448 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:00:56.0520 3448 Filetrace - ok
19:00:56.0539 3448 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:00:56.0566 3448 flpydisk - ok
19:00:56.0599 3448 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:00:56.0615 3448 FltMgr - ok
19:00:56.0782 3448 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
19:00:56.0847 3448 FontCache - ok
19:00:56.0903 3448 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:00:56.0914 3448 FontCache3.0.0.0 - ok
19:00:56.0941 3448 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:00:56.0955 3448 FsDepends - ok
19:00:56.0989 3448 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:00:57.0002 3448 Fs_Rec - ok
19:00:57.0046 3448 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:00:57.0085 3448 fvevol - ok
19:00:57.0121 3448 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:00:57.0144 3448 gagp30kx - ok
19:00:57.0212 3448 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:00:57.0271 3448 gpsvc - ok
19:00:57.0317 3448 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:00:57.0367 3448 hcw85cir - ok
19:00:57.0426 3448 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:00:57.0471 3448 HdAudAddService - ok
19:00:57.0500 3448 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:00:57.0550 3448 HDAudBus - ok
19:00:57.0576 3448 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:00:57.0602 3448 HidBatt - ok
19:00:57.0608 3448 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:00:57.0645 3448 HidBth - ok
19:00:57.0650 3448 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:00:57.0673 3448 HidIr - ok
19:00:57.0705 3448 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:00:57.0768 3448 hidserv - ok
19:00:57.0829 3448 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:00:57.0842 3448 HidUsb - ok
19:00:57.0892 3448 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:00:57.0967 3448 hkmsvc - ok
19:00:58.0010 3448 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:00:58.0055 3448 HomeGroupListener - ok
19:00:58.0110 3448 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:00:58.0148 3448 HomeGroupProvider - ok
19:00:58.0207 3448 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:00:58.0223 3448 HpSAMD - ok
19:00:58.0288 3448 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:00:58.0358 3448 HTTP - ok
19:00:58.0391 3448 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:00:58.0401 3448 hwpolicy - ok
19:00:58.0458 3448 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:00:58.0479 3448 i8042prt - ok
19:00:58.0517 3448 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:00:58.0535 3448 iaStorV - ok
19:00:58.0659 3448 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:00:58.0706 3448 idsvc - ok
19:00:58.0743 3448 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:00:58.0753 3448 iirsp - ok
19:00:58.0857 3448 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:00:58.0891 3448 IKEEXT - ok
19:00:58.0913 3448 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:00:58.0932 3448 intelide - ok
19:00:58.0969 3448 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:00:59.0006 3448 intelppm - ok
19:00:59.0069 3448 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:00:59.0136 3448 IPBusEnum - ok
19:00:59.0166 3448 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:00:59.0221 3448 IpFilterDriver - ok
19:00:59.0258 3448 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:00:59.0284 3448 IPMIDRV - ok
19:00:59.0329 3448 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:00:59.0395 3448 IPNAT - ok
19:00:59.0440 3448 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:00:59.0967 3448 IRENUM - ok
19:00:59.0986 3448 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:00:59.0997 3448 isapnp - ok
19:01:00.0153 3448 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:01:00.0245 3448 iScsiPrt - ok
19:01:00.0330 3448 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:01:00.0346 3448 kbdclass - ok
19:01:00.0397 3448 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:01:00.0413 3448 kbdhid - ok
19:01:00.0426 3448 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:01:00.0439 3448 KeyIso - ok
19:01:00.0488 3448 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:01:00.0504 3448 KSecDD - ok
19:01:00.0540 3448 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:01:00.0556 3448 KSecPkg - ok
19:01:00.0587 3448 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:01:00.0634 3448 ksthunk - ok
19:01:00.0677 3448 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:01:00.0749 3448 KtmRm - ok
19:01:00.0805 3448 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:01:00.0882 3448 LanmanServer - ok
19:01:00.0897 3448 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:01:00.0956 3448 LanmanWorkstation - ok
19:01:01.0010 3448 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:01:01.0070 3448 lltdio - ok
19:01:01.0119 3448 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:01:01.0193 3448 lltdsvc - ok
19:01:01.0202 3448 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:01:01.0227 3448 lmhosts - ok
19:01:01.0286 3448 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:01:01.0303 3448 LSI_FC - ok
19:01:01.0327 3448 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:01:01.0337 3448 LSI_SAS - ok
19:01:01.0347 3448 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:01:01.0357 3448 LSI_SAS2 - ok
19:01:01.0376 3448 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:01:01.0386 3448 LSI_SCSI - ok
19:01:01.0411 3448 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:01:01.0452 3448 luafv - ok
19:01:01.0507 3448 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:01:01.0520 3448 MBAMProtector - ok
19:01:01.0581 3448 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:01:01.0600 3448 MBAMScheduler - ok
19:01:01.0626 3448 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:01:01.0639 3448 MBAMService - ok
19:01:01.0688 3448 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:01:01.0733 3448 Mcx2Svc - ok
19:01:01.0758 3448 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:01:01.0788 3448 megasas - ok
19:01:01.0835 3448 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:01:01.0856 3448 MegaSR - ok
19:01:01.0919 3448 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:01:01.0982 3448 MMCSS - ok
19:01:02.0004 3448 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:01:02.0041 3448 Modem - ok
19:01:02.0066 3448 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:01:02.0112 3448 monitor - ok
19:01:02.0167 3448 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:01:02.0182 3448 mouclass - ok
19:01:02.0219 3448 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:01:02.0236 3448 mouhid - ok
19:01:02.0272 3448 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:01:02.0309 3448 mountmgr - ok
19:01:02.0368 3448 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:01:02.0384 3448 MozillaMaintenance - ok
19:01:02.0415 3448 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:01:02.0427 3448 mpio - ok
19:01:02.0472 3448 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:01:02.0502 3448 mpsdrv - ok
19:01:02.0568 3448 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:01:02.0607 3448 MRxDAV - ok
19:01:02.0662 3448 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:01:02.0718 3448 mrxsmb - ok
19:01:02.0806 3448 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:01:02.0836 3448 mrxsmb10 - ok
19:01:02.0861 3448 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:01:02.0870 3448 mrxsmb20 - ok
19:01:02.0920 3448 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:01:02.0935 3448 msahci - ok
19:01:02.0965 3448 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:01:02.0993 3448 msdsm - ok
19:01:03.0015 3448 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:01:03.0038 3448 MSDTC - ok
19:01:03.0074 3448 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:01:03.0100 3448 Msfs - ok
19:01:03.0129 3448 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:01:03.0196 3448 mshidkmdf - ok
19:01:03.0231 3448 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:01:03.0244 3448 msisadrv - ok
19:01:03.0287 3448 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:01:03.0353 3448 MSiSCSI - ok
19:01:03.0357 3448 msiserver - ok
19:01:03.0402 3448 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:01:03.0459 3448 MSKSSRV - ok
19:01:03.0488 3448 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:01:03.0517 3448 MSPCLOCK - ok
19:01:03.0522 3448 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:01:03.0566 3448 MSPQM - ok
19:01:03.0632 3448 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:01:03.0646 3448 MsRPC - ok
19:01:03.0694 3448 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:01:03.0703 3448 mssmbios - ok
19:01:03.0737 3448 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:01:03.0798 3448 MSTEE - ok
19:01:03.0815 3448 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:01:03.0860 3448 MTConfig - ok
19:01:03.0890 3448 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:01:03.0906 3448 Mup - ok
19:01:04.0016 3448 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:01:04.0092 3448 napagent - ok
19:01:04.0146 3448 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:01:04.0189 3448 NativeWifiP - ok
19:01:04.0279 3448 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:01:04.0311 3448 NDIS - ok
19:01:04.0352 3448 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:01:04.0412 3448 NdisCap - ok
19:01:04.0446 3448 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:01:04.0484 3448 NdisTapi - ok
19:01:04.0535 3448 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:01:04.0590 3448 Ndisuio - ok
19:01:04.0653 3448 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:01:04.0716 3448 NdisWan - ok
19:01:04.0762 3448 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:01:04.0800 3448 NDProxy - ok
19:01:04.0847 3448 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:01:04.0916 3448 NetBIOS - ok
19:01:04.0959 3448 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:01:05.0023 3448 NetBT - ok
19:01:05.0048 3448 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:01:05.0056 3448 Netlogon - ok
19:01:05.0103 3448 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:01:05.0161 3448 Netman - ok
19:01:05.0190 3448 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:01:05.0242 3448 netprofm - ok
19:01:05.0278 3448 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:01:05.0286 3448 NetTcpPortSharing - ok
19:01:05.0317 3448 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:01:05.0326 3448 nfrd960 - ok
19:01:05.0408 3448 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:01:05.0452 3448 NlaSvc - ok
19:01:05.0474 3448 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:01:05.0499 3448 Npfs - ok
19:01:05.0552 3448 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:01:05.0616 3448 nsi - ok
19:01:05.0645 3448 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:01:05.0703 3448 nsiproxy - ok
19:01:05.0905 3448 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:01:05.0975 3448 Ntfs - ok
19:01:06.0017 3448 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:01:06.0062 3448 Null - ok
19:01:06.0551 3448 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:01:06.0681 3448 nvlddmkm - ok
19:01:06.0705 3448 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:01:06.0716 3448 nvraid - ok
19:01:06.0783 3448 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:01:06.0801 3448 nvstor - ok
19:01:06.0862 3448 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:01:06.0926 3448 nvsvc - ok
19:01:07.0235 3448 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:01:07.0321 3448 nvUpdatusService - ok
19:01:07.0393 3448 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:01:07.0420 3448 nv_agp - ok
19:01:07.0455 3448 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:01:07.0466 3448 ohci1394 - ok
19:01:07.0523 3448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:01:07.0592 3448 p2pimsvc - ok
19:01:07.0624 3448 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:01:07.0646 3448 p2psvc - ok
19:01:07.0677 3448 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:01:07.0723 3448 Parport - ok
19:01:08.0090 3448 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:01:08.0107 3448 partmgr - ok
19:01:08.0298 3448 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:01:08.0362 3448 PcaSvc - ok
19:01:08.0427 3448 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:01:08.0466 3448 pci - ok
19:01:08.0511 3448 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:01:08.0528 3448 pciide - ok
19:01:08.0705 3448 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:01:08.0742 3448 pcmcia - ok
19:01:08.0763 3448 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:01:08.0771 3448 pcw - ok
19:01:08.0799 3448 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:01:08.0846 3448 PEAUTH - ok
19:01:08.0902 3448 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:01:08.0964 3448 PeerDistSvc - ok
19:01:09.0052 3448 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:01:09.0085 3448 PerfHost - ok
19:01:09.0145 3448 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:01:09.0207 3448 pla - ok
19:01:09.0297 3448 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:01:09.0353 3448 PlugPlay - ok
19:01:09.0386 3448 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:01:09.0421 3448 PNRPAutoReg - ok
19:01:09.0466 3448 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:01:09.0487 3448 PNRPsvc - ok
19:01:09.0588 3448 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:01:09.0646 3448 PolicyAgent - ok
19:01:09.0679 3448 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:01:09.0737 3448 Power - ok
19:01:09.0786 3448 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:01:09.0840 3448 PptpMiniport - ok
19:01:09.0880 3448 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:01:09.0921 3448 Processor - ok
19:01:09.0969 3448 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
19:01:10.0042 3448 ProfSvc - ok
19:01:10.0059 3448 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:01:10.0067 3448 ProtectedStorage - ok
19:01:10.0141 3448 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:01:10.0200 3448 Psched - ok
19:01:10.0366 3448 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:01:10.0413 3448 ql2300 - ok
19:01:10.0473 3448 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:01:10.0491 3448 ql40xx - ok
19:01:10.0592 3448 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:01:10.0632 3448 QWAVE - ok
19:01:10.0646 3448 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:01:10.0675 3448 QWAVEdrv - ok
19:01:10.0701 3448 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:01:10.0749 3448 RasAcd - ok
19:01:10.0789 3448 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:01:10.0815 3448 RasAgileVpn - ok
19:01:10.0837 3448 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:01:10.0876 3448 RasAuto - ok
19:01:10.0904 3448 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:01:10.0952 3448 Rasl2tp - ok
19:01:10.0991 3448 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:01:11.0044 3448 RasMan - ok
19:01:11.0085 3448 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:01:11.0134 3448 RasPppoe - ok
19:01:11.0151 3448 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:01:11.0177 3448 RasSstp - ok
19:01:11.0233 3448 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:01:11.0308 3448 rdbss - ok
19:01:11.0350 3448 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:01:11.0381 3448 rdpbus - ok
19:01:11.0398 3448 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:01:11.0450 3448 RDPCDD - ok
19:01:11.0513 3448 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:01:11.0564 3448 RDPDR - ok
19:01:11.0592 3448 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:01:11.0655 3448 RDPENCDD - ok
19:01:11.0669 3448 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:01:11.0694 3448 RDPREFMP - ok
19:01:11.0750 3448 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:01:11.0801 3448 RdpVideoMiniport - ok
19:01:11.0822 3448 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:01:11.0861 3448 RDPWD - ok
19:01:11.0905 3448 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:01:11.0937 3448 rdyboost - ok
19:01:11.0975 3448 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:01:12.0036 3448 RemoteAccess - ok
19:01:12.0099 3448 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:01:12.0155 3448 RemoteRegistry - ok
19:01:12.0181 3448 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:01:12.0242 3448 RpcEptMapper - ok
19:01:12.0277 3448 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:01:12.0286 3448 RpcLocator - ok
19:01:12.0303 3448 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:01:12.0331 3448 RpcSs - ok
19:01:12.0368 3448 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:01:12.0420 3448 rspndr - ok
19:01:12.0510 3448 [ CB2AB70EBE8F432E1B525EFE127B9323 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
19:01:12.0534 3448 RTL8192su - ok
19:01:12.0566 3448 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:01:12.0613 3448 s3cap - ok
19:01:12.0636 3448 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:01:12.0645 3448 SamSs - ok
19:01:12.0674 3448 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:01:12.0707 3448 sbp2port - ok
19:01:12.0766 3448 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:01:12.0808 3448 SCardSvr - ok
19:01:12.0840 3448 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:01:12.0900 3448 scfilter - ok
19:01:12.0942 3448 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:01:12.0990 3448 Schedule - ok
19:01:13.0016 3448 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:01:13.0041 3448 SCPolicySvc - ok
19:01:13.0094 3448 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:01:13.0156 3448 SDRSVC - ok
19:01:13.0197 3448 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:01:13.0254 3448 secdrv - ok
19:01:13.0280 3448 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:01:13.0339 3448 seclogon - ok
19:01:13.0393 3448 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:01:13.0463 3448 SENS - ok
19:01:13.0485 3448 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:01:13.0533 3448 SensrSvc - ok
19:01:13.0561 3448 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:01:13.0592 3448 Serenum - ok
19:01:13.0632 3448 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:01:13.0667 3448 Serial - ok
19:01:13.0707 3448 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:01:13.0732 3448 sermouse - ok
19:01:13.0776 3448 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:01:13.0852 3448 SessionEnv - ok
19:01:13.0886 3448 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:01:13.0917 3448 sffdisk - ok
19:01:13.0943 3448 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:01:13.0986 3448 sffp_mmc - ok
19:01:14.0008 3448 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:01:14.0054 3448 sffp_sd - ok
19:01:14.0132 3448 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:01:14.0170 3448 sfloppy - ok
19:01:14.0222 3448 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:01:14.0286 3448 ShellHWDetection - ok
19:01:14.0320 3448 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:01:14.0335 3448 SiSRaid2 - ok
19:01:14.0358 3448 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:01:14.0381 3448 SiSRaid4 - ok
19:01:14.0471 3448 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:01:14.0484 3448 SkypeUpdate - ok
19:01:14.0504 3448 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:01:14.0572 3448 Smb - ok
19:01:14.0620 3448 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:01:14.0655 3448 SNMPTRAP - ok
19:01:14.0679 3448 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:01:14.0694 3448 spldr - ok
19:01:14.0811 3448 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
19:01:14.0852 3448 Spooler - ok
19:01:15.0234 3448 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:01:15.0375 3448 sppsvc - ok
19:01:15.0434 3448 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:01:15.0510 3448 sppuinotify - ok
19:01:15.0547 3448 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:01:15.0601 3448 srv - ok
19:01:15.0634 3448 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:01:15.0669 3448 srv2 - ok
19:01:15.0697 3448 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:01:15.0708 3448 srvnet - ok
19:01:15.0764 3448 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:01:15.0846 3448 SSDPSRV - ok
19:01:15.0869 3448 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:01:15.0895 3448 SstpSvc - ok
19:01:15.0970 3448 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:01:15.0989 3448 Stereo Service - ok
19:01:16.0036 3448 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:01:16.0064 3448 stexstor - ok
19:01:16.0138 3448 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:01:16.0175 3448 stisvc - ok
19:01:16.0208 3448 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:01:16.0237 3448 storflt - ok
19:01:16.0260 3448 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:01:16.0270 3448 storvsc - ok
19:01:16.0285 3448 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:01:16.0294 3448 swenum - ok
19:01:16.0371 3448 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:01:16.0424 3448 swprv - ok
19:01:16.0446 3448 Synth3dVsc - ok
19:01:16.0666 3448 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:01:16.0738 3448 SysMain - ok
19:01:16.0790 3448 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:01:16.0812 3448 TabletInputService - ok
19:01:16.0879 3448 [ 83C57F165F0216E5CE40D7E4E00DC76D ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
19:01:16.0893 3448 taphss6 - ok
19:01:16.0979 3448 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:01:17.0058 3448 TapiSrv - ok
19:01:17.0096 3448 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:01:17.0135 3448 TBS - ok
19:01:17.0251 3448 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:01:17.0336 3448 Tcpip - ok
19:01:17.0356 3448 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:01:17.0386 3448 TCPIP6 - ok
19:01:17.0434 3448 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:01:17.0516 3448 tcpipreg - ok
19:01:17.0552 3448 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:01:17.0598 3448 TDPIPE - ok
19:01:17.0626 3448 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:01:17.0660 3448 TDTCP - ok
19:01:17.0690 3448 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:01:17.0755 3448 tdx - ok
19:01:17.0943 3448 [ 402794A75A899E296AB3EDEC4ECCB9A8 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
19:01:17.0995 3448 TeamViewer8 - ok
19:01:18.0035 3448 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:01:18.0043 3448 TermDD - ok
19:01:18.0093 3448 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:01:18.0143 3448 TermService - ok
19:01:18.0180 3448 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:01:18.0195 3448 Themes - ok
19:01:18.0219 3448 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:01:18.0245 3448 THREADORDER - ok
19:01:18.0321 3448 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:01:18.0363 3448 TrkWks - ok
19:01:18.0529 3448 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:01:18.0611 3448 TrustedInstaller - ok
19:01:18.0753 3448 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:01:18.0831 3448 tssecsrv - ok
19:01:18.0958 3448 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:01:19.0030 3448 TsUsbFlt - ok
19:01:19.0096 3448 tsusbhub - ok
19:01:19.0206 3448 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:01:19.0321 3448 tunnel - ok
19:01:19.0438 3448 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:01:19.0520 3448 uagp35 - ok
19:01:19.0639 3448 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:01:20.0131 3448 udfs - ok
19:01:20.0196 3448 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:01:20.0211 3448 UI0Detect - ok
19:01:20.0262 3448 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:01:20.0285 3448 uliagpkx - ok
19:01:20.0319 3448 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:01:20.0329 3448 umbus - ok
19:01:20.0361 3448 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:01:20.0422 3448 UmPass - ok
19:01:20.0499 3448 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
19:01:20.0558 3448 UmRdpService - ok
19:01:20.0597 3448 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:01:20.0641 3448 upnphost - ok
19:01:20.0696 3448 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:01:20.0726 3448 usbccgp - ok
19:01:20.0761 3448 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:01:20.0774 3448 usbcir - ok
19:01:20.0796 3448 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:01:20.0825 3448 usbehci - ok
19:01:20.0855 3448 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\drivers\usbhub.sys
19:01:20.0898 3448 usbhub - ok
19:01:20.0930 3448 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:01:20.0938 3448 usbohci - ok
19:01:20.0975 3448 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:01:21.0001 3448 usbprint - ok
19:01:21.0027 3448 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:01:21.0056 3448 USBSTOR - ok
19:01:21.0083 3448 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:01:21.0098 3448 usbuhci - ok
19:01:21.0142 3448 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:01:21.0206 3448 UxSms - ok
19:01:21.0237 3448 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:01:21.0245 3448 VaultSvc - ok
19:01:21.0283 3448 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:01:21.0291 3448 vdrvroot - ok
19:01:21.0336 3448 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:01:21.0395 3448 vds - ok
19:01:21.0430 3448 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:01:21.0441 3448 vga - ok
19:01:21.0469 3448 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:01:21.0529 3448 VgaSave - ok
19:01:21.0569 3448 VGPU - ok
19:01:21.0610 3448 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:01:21.0627 3448 vhdmp - ok
19:01:21.0657 3448 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:01:21.0671 3448 viaide - ok
19:01:21.0689 3448 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:01:21.0700 3448 vmbus - ok
19:01:21.0721 3448 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:01:21.0756 3448 VMBusHID - ok
19:01:21.0782 3448 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:01:21.0799 3448 volmgr - ok
19:01:21.0830 3448 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:01:21.0845 3448 volmgrx - ok
19:01:21.0881 3448 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:01:21.0895 3448 volsnap - ok
19:01:21.0948 3448 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:01:21.0959 3448 vsmraid - ok
19:01:22.0023 3448 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:01:22.0083 3448 VSS - ok
19:01:22.0101 3448 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:01:22.0124 3448 vwifibus - ok
19:01:22.0157 3448 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:01:22.0184 3448 vwififlt - ok
19:01:22.0231 3448 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:01:22.0243 3448 vwifimp - ok
19:01:22.0274 3448 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:01:22.0320 3448 W32Time - ok
19:01:22.0337 3448 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:01:22.0360 3448 WacomPen - ok
19:01:22.0410 3448 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:01:22.0449 3448 WANARP - ok
19:01:22.0463 3448 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:01:22.0488 3448 Wanarpv6 - ok
19:01:22.0558 3448 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:01:22.0584 3448 WatAdminSvc - ok
19:01:22.0635 3448 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:01:22.0693 3448 wbengine - ok
19:01:22.0732 3448 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:01:22.0746 3448 WbioSrvc - ok
19:01:22.0785 3448 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:01:22.0821 3448 wcncsvc - ok
19:01:22.0847 3448 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:01:22.0871 3448 WcsPlugInService - ok
19:01:22.0897 3448 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:01:22.0905 3448 Wd - ok
19:01:22.0934 3448 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:01:22.0953 3448 Wdf01000 - ok
19:01:22.0972 3448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:01:23.0021 3448 WdiServiceHost - ok
19:01:23.0024 3448 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:01:23.0038 3448 WdiSystemHost - ok
19:01:23.0089 3448 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:01:23.0122 3448 WebClient - ok
19:01:23.0161 3448 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:01:23.0201 3448 Wecsvc - ok
19:01:23.0227 3448 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:01:23.0265 3448 wercplsupport - ok
19:01:23.0309 3448 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:01:23.0351 3448 WerSvc - ok
19:01:23.0386 3448 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:01:23.0412 3448 WfpLwf - ok
19:01:23.0439 3448 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:01:23.0448 3448 WIMMount - ok
19:01:23.0461 3448 WinHttpAutoProxySvc - ok
19:01:23.0515 3448 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:01:23.0557 3448 Winmgmt - ok
19:01:23.0614 3448 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:01:23.0666 3448 WinRM - ok
19:01:23.0729 3448 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:01:23.0749 3448 WinUsb - ok
19:01:23.0804 3448 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:01:23.0834 3448 Wlansvc - ok
19:01:23.0960 3448 [ C71EE856C4F5B52E2D094F494CEE4936 ] WlanWpsSvc C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe
19:01:23.0966 3448 WlanWpsSvc ( UnsignedFile.Multi.Generic ) - warning
19:01:23.0966 3448 WlanWpsSvc - detected UnsignedFile.Multi.Generic (1)
19:01:24.0010 3448 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:01:24.0038 3448 WmiAcpi - ok
19:01:24.0078 3448 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 19:34
12 juil. 2013 à 19:34
re
le rapport n'est pas complet, tu peux me le poster via ce lien si trop long pour le site
http://pjjoint.malekal.com/
merci
@+
le rapport n'est pas complet, tu peux me le poster via ce lien si trop long pour le site
http://pjjoint.malekal.com/
merci
@+
1er: http://pjjoint.malekal.com/files.php?id=20130712_v11g11e8o7o14
2ieme: http://pjjoint.malekal.com/files.php?id=20130712_d12o11b75g14
3ieme: http://pjjoint.malekal.com/files.php?id=20130712_n12g8l6t14k15
2ieme: http://pjjoint.malekal.com/files.php?id=20130712_d12o11b75g14
3ieme: http://pjjoint.malekal.com/files.php?id=20130712_n12g8l6t14k15
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
Modifié par billmaxime le 12/07/2013 à 19:51
Modifié par billmaxime le 12/07/2013 à 19:51
re
c'est bien, TDSSKILLER l'a trouver
C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
refais moi 1 zhpdiag en cliquant sur la loupe avec le + et poste le rapport via ce lien
https://www.cjoint.com/
merci
@+
le taux de radiation est plus élevé au pôle emploi qu'à Tchernobyl
c'est bien, TDSSKILLER l'a trouver
C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.a ) - User select action: Cure
refais moi 1 zhpdiag en cliquant sur la loupe avec le + et poste le rapport via ce lien
https://www.cjoint.com/
merci
@+
le taux de radiation est plus élevé au pôle emploi qu'à Tchernobyl
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 20:11
12 juil. 2013 à 20:11
re
tu as redémarré le pc?
@+
tu as redémarré le pc?
@+
Non je ne l'avait pas redemarré la je les fait et j'ai refait un scan avec zhpdiag
Voila: http://cjoint.com/?CGmuwr26ffK
Voila: http://cjoint.com/?CGmuwr26ffK
billmaxime
Messages postés
49969
Date d'inscription
dimanche 20 novembre 2011
Statut
Contributeur
Dernière intervention
14 mai 2024
5 953
12 juil. 2013 à 20:42
12 juil. 2013 à 20:42
re
ok, fait ceci maintenant
lance zhpfix en tant qu'administrateur (clic droit)
copie tout le texte en gras ci-dessous
clique sur le 2ème bouton en haut a gauche (coller le presse papier)
clic sur GO en bas de page et confirme par oui pour lancer le nettoyage des données
le rapport s'affichera sur ton bureau et dans C:\zhpfix.txt
poste le rapport via ce lien https://www.cjoint.com/
le texte a copier
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[MD5.00000000000000000000000000000000] [APT] [Express FilesUpdate] (...) -- C:\Program Files (x86)\ExpressFiles\EFUpdater.exe (.not file.) [0] =>Adware.ExpressFiles
[MD5.00000000000000000000000000000000] [APT] [{5CBA2D43-9AE2-49E6-9CEB-D10C7EE4EDB7}] (...) -- C:\Users\jimmy2\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe (.not file.) [0]
O45 - LFCP:[MD5.2E954F17A46D6310CFD7987D33749FD7] - 11/07/2013 - 11:23:02 ---A- - C:\Windows\Prefetch\YONTOODESKTOP.EXE-272AE5E1.pf =>Adware.Yontoo
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssSrv] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
SysRestore
FirewallRAZ
EmptyCLSID
EmptyTemp
EmptyFlash
@+
ok, fait ceci maintenant
lance zhpfix en tant qu'administrateur (clic droit)
copie tout le texte en gras ci-dessous
clique sur le 2ème bouton en haut a gauche (coller le presse papier)
clic sur GO en bas de page et confirme par oui pour lancer le nettoyage des données
le rapport s'affichera sur ton bureau et dans C:\zhpfix.txt
poste le rapport via ce lien https://www.cjoint.com/
le texte a copier
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[MD5.00000000000000000000000000000000] [APT] [Express FilesUpdate] (...) -- C:\Program Files (x86)\ExpressFiles\EFUpdater.exe (.not file.) [0] =>Adware.ExpressFiles
[MD5.00000000000000000000000000000000] [APT] [{5CBA2D43-9AE2-49E6-9CEB-D10C7EE4EDB7}] (...) -- C:\Users\jimmy2\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe (.not file.) [0]
O45 - LFCP:[MD5.2E954F17A46D6310CFD7987D33749FD7] - 11/07/2013 - 11:23:02 ---A- - C:\Windows\Prefetch\YONTOODESKTOP.EXE-272AE5E1.pf =>Adware.Yontoo
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssSrv] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent
SysRestore
FirewallRAZ
EmptyCLSID
EmptyTemp
EmptyFlash
@+
