Sujet Précédent Sujet Suivant

Comportement étrange PC

Fermé
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014 - 24 avril 2012 à 02:45
 Utilisateur anonyme - 27 avril 2012 à 16:24
Bonjour,

J'ai un portable IBM thinkpad R60. Depuis un petit bout de temps, il réagit étrangement: je clique avec la souris pour fermer une fenêtre, aucun effet, je dois cliquer plusieurs fois avant de voir une action se produire. J'ai passé Malwarebyte anti-malware et j'ai trouvé un Trojan Bho (que j'ai supprimé). Mais depuis, toujours cette étrangeté dans l'ordi.

J'ai bitdefender total security 2011 mais lorsque je veux faire une analyste complète ou détaillée, il déclenche une erreur.

Maintenant, je fais une analyse détaillée avec Malwarebyte et je passe aussi Vundofix.

Que puis-je faire d'autre?



A voir également:

28 réponses

  • 1
  • 2
Réponse 1 / 28
Utilisateur anonyme
Modifié par g3n-h@ckm@n le 24/04/2012 à 19:42
re

n'utilise pas combofix sans mon approbation merci

surtout que avec 17 années d'experience on desinstalle pas internet explorer

https://forums.commentcamarche.net/forum/affich-12350952-internet-explorer-9#40

windows update et windows live messenger se servent de son protocole
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
6
cobolz Messages postés 9 Date d'inscription mercredi 20 février 2008 Statut Membre Dernière intervention 14 mai 2019
24 avril 2012 à 21:09
j'ai pas dit de-installer j'ai dit "réinitialiser" outil option avancé réinitialiser
0
Utilisateur anonyme
24 avril 2012 à 21:11
arrrête tu t'enfonces :

Pourtant avec le 7 il avait un navigateur gagnant il on opter pour la meme merde que le 8.

Des ce soir je 'enleve de mes ordinateurs et conseillle a mes clients de faire de meme.
0
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
24 avril 2012 à 21:12
Laisse tomber gen il n'en vaut pas la peine
0
Utilisateur anonyme
24 avril 2012 à 21:43
^^
0
SlyK Messages postés 854 Date d'inscription vendredi 11 mars 2011 Statut Contributeur sécurité Dernière intervention 6 octobre 2014 147
Modifié par SlyK le 24/04/2012 à 22:34
@cobolz Cette personne possède des Adwares/Spywares/PUP, l'outil pour les supprimés est AdwCleaner et non ComboFix !

Nous connaissons le créateur de ComboFix, et nous connaissons les infections qu'il traite, au lieu de donner à quelqu'un un outil à utiliser sans aucun fondement vérifie son infection.

Renommer la DLL de la toolbar ? Utilité ? Elle sera supprimé à l'aide d'AdwCleaner.

Chaque outil à une utilité, dans ce cas là, ComboFix et pour le moment inutile :)

---------------------------

Ce n'est pas son forum, mais c'est un des principaux helpers qui aide les gens ici, toi en revanche tu es nouveau ici, et sur tes premiers messages, tu donnes des indications fausses.
Ce qui nous fait tout de suite, une mauvaise impression sur toi.

--------------------------

Nettoyer le registre est inutile !
-- Nettoyeur et Défragmenteur : ça sert à rien !

-------------------------

Accepte les remarques que tu as tord sur ce sujet.
Informe toi mieux sur les outils, tu peux même faire une formation pour apprendre à désinfecter un utilisateur pour savoir quoi faire dans quel cas.


A bon entendeur.
0
Réponse 2 / 28
Utilisateur anonyme
Modifié par g3n-h@ckm@n le 24/04/2012 à 03:22
salut vundofix ne sera pas utile il est plus tenu à jour depuis deux ans
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
2
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
24 avril 2012 à 13:04
Ok alors j'ai passé malwarebyte anti-malware et il n'a trouvé qu'une chose: PUP.Toolbar.repacked que j'ai enlevé.

Que puis-je faire maintenant???? j'ai voulu télécharger hijackthis et c'est suite à cela qu'il a trouvé le pup.toolbar.repacked....

Pourriez-vous m'aider? Auparavant, il avait trouvé un trojan.bho mais j'ai supprimé avec malwarebyte. Je me demande s'il ne me reste pas une trace quelque part.
0
SlyK Messages postés 854 Date d'inscription vendredi 11 mars 2011 Statut Contributeur sécurité Dernière intervention 6 octobre 2014 147
24 avril 2012 à 23:27
Cette demande s'adresse à toi :)
0
Réponse 3 / 28
Utilisateur anonyme
24 avril 2012 à 13:05
et oui tu as du le telecharger sur 01net......
0
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
24 avril 2012 à 23:28
Oui, je suis allée sur 01net.... Le message de combofix ne doit pas s'adresser à moi, je ne connais pas du tout ce que c'est.

Pour en revenir à mon inquiétude, que dois-je faire maintenant g3n-h@ckm@n??? Est-ce que la demande du rapport ADWcleaner s'adresse à moi ou si c'est une demande faite à quelqu'un d'autre???

J'aimerais bien savoir si mon ordi porte encore des marques d'infection....

Encore merci de votre aide.
0
SlyK Messages postés 854 Date d'inscription vendredi 11 mars 2011 Statut Contributeur sécurité Dernière intervention 6 octobre 2014 147
Modifié par SlyK le 24/04/2012 à 23:32
La demande de AdwCleaner de g3n-h@chm@n s'adresse à toi.

Il postera la suite après.
0
Réponse 4 / 28
Utilisateur anonyme
24 avril 2012 à 20:31
bien !!

merci :)

Télécharge et enregistre ADWcleaner sur ton bureau :

ADWCleaner (Merci à Xplode)

Lance le,

clique sur suppression et poste son rapport.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 28
Utilisateur anonyme
25 avril 2012 à 00:06
oui gijane , fais adwcleaner et reponds avec le bouton vert stp merci :)
0
Réponse 6 / 28
gijane
25 avril 2012 à 01:24
Voici le rapport suite au ''supprimer'' de Adwcleaner

# AdwCleaner v1.604 - Logfile created 04/24/2012 at 19:16:34
# Updated 23/04/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : R60 - T60-4E1B29DCC68
# Running from : C:\Documents and Settings\R60\My Documents\Téléchargements\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\Softonic

***** [Registre - GUID] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v12.0 (fr)

Profile name : default
File : C:\Documents and Settings\R60\Application Data\Mozilla\Firefox\Profiles\jh3wnt66.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [834 octets] - [24/04/2012 19:16:34]

########## EOF - C:\AdwCleaner[S1].txt - [961 octets] ##########
0
Réponse 7 / 28
Utilisateur anonyme
25 avril 2012 à 01:35
▶ Télécharge Reload_TDSSKiller

▶ Lance le

choisis : lancer le nettoyage

l'outil va automatiquement télécharger la derniere version puis

TDSSKiller va s'ouvrir , clique sur "Start Scan"

Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas

une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau

▶ Copie/Colle son contenu dans ta prochaine réponse.
0
Réponse 8 / 28
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
25 avril 2012 à 23:57
J'ai bien exécuté le tdsskiller mais il ne semble rien avoir trouvé.

Voici le rapport:

17:53:24.0953 3580 TDSS rootkit removing tool 2.7.32.0 Apr 23 2012 19:12:34
17:53:27.0875 3580 ============================================================
17:53:27.0875 3580 Current date / time: 2012/04/25 17:53:27.0875
17:53:27.0875 3580 SystemInfo:
17:53:27.0875 3580
17:53:27.0875 3580 OS Version: 5.1.2600 ServicePack: 3.0
17:53:27.0875 3580 Product type: Workstation
17:53:27.0890 3580 ComputerName: T60-4E1B29DCC68
17:53:27.0890 3580 UserName: R60
17:53:27.0890 3580 Windows directory: C:\WINDOWS
17:53:27.0890 3580 System windows directory: C:\WINDOWS
17:53:27.0890 3580 Processor architecture: Intel x86
17:53:27.0890 3580 Number of processors: 2
17:53:27.0890 3580 Page size: 0x1000
17:53:27.0890 3580 Boot type: Normal boot
17:53:27.0890 3580 ============================================================
17:53:28.0640 3580 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
17:53:28.0640 3580 ============================================================
17:53:28.0640 3580 \Device\Harddisk0\DR0:
17:53:28.0640 3580 MBR partitions:
17:53:28.0640 3580 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A186D1
17:53:28.0640 3580 ============================================================
17:53:28.0671 3580 C: <-> \Device\Harddisk0\DR0\Partition0
17:53:28.0671 3580 ============================================================
17:53:28.0671 3580 Initialize success
17:53:28.0671 3580 ============================================================
17:53:29.0859 2976 ============================================================
17:53:29.0859 2976 Scan started
17:53:29.0859 2976 Mode: Manual;
17:53:29.0859 2976 ============================================================
17:53:30.0062 2976 Scan interrupted by user!
17:53:30.0062 2976 Scan interrupted by user!
17:53:30.0062 2976 Scan interrupted by user!
17:53:30.0062 2976 ============================================================
17:53:30.0062 2976 Scan finished
17:53:30.0062 2976 ============================================================
17:53:30.0078 2936 Detected object count: 0
17:53:30.0078 2936 Actual detected object count: 0
17:53:35.0187 3980 ============================================================
17:53:35.0187 3980 Scan started
17:53:35.0187 3980 Mode: Manual;
17:53:35.0187 3980 ============================================================
17:53:36.0359 3980 Abiosdsk - ok
17:53:36.0375 3980 abp480n5 - ok
17:53:36.0640 3980 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:53:36.0656 3980 ACPI - ok
17:53:36.0703 3980 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:53:36.0718 3980 ACPIEC - ok
17:53:37.0484 3980 AcrSch2Svc (83e17694d7c715c26f2c3e023b4fc157) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
17:53:37.0484 3980 AcrSch2Svc - ok
17:53:37.0625 3980 ADIHdAudAddService (beee84a79710f705864685b05f1bb172) C:\WINDOWS\system32\drivers\ADIHdAud.sys
17:53:37.0640 3980 ADIHdAudAddService - ok
17:53:37.0875 3980 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:53:37.0890 3980 AdobeFlashPlayerUpdateSvc - ok
17:53:37.0890 3980 adpu160m - ok
17:53:38.0000 3980 AEAudioService (358063ab6c1c4173b735525cdfa65f94) C:\WINDOWS\system32\drivers\AEAudio.sys
17:53:38.0015 3980 AEAudioService - ok
17:53:38.0218 3980 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:53:38.0281 3980 aec - ok
17:53:38.0500 3980 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:53:38.0500 3980 AegisP - ok
17:53:38.0953 3980 afcdp (f132d0bfde7c5ea1ab42325c5694a969) C:\WINDOWS\system32\DRIVERS\afcdp.sys
17:53:38.0984 3980 afcdp - ok
17:53:41.0421 3980 afcdpsrv (986a134b1a1770599b7af9354cbb066f) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
17:53:41.0734 3980 afcdpsrv - ok
17:53:43.0296 3980 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
17:53:43.0296 3980 AFD - ok
17:53:43.0312 3980 Aha154x - ok
17:53:43.0312 3980 aic78u2 - ok
17:53:43.0312 3980 aic78xx - ok
17:53:43.0359 3980 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
17:53:43.0359 3980 Alerter - ok
17:53:43.0421 3980 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
17:53:43.0421 3980 ALG - ok
17:53:43.0437 3980 AliIde - ok
17:53:43.0437 3980 amsint - ok
17:53:43.0843 3980 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
17:53:43.0843 3980 AppMgmt - ok
17:53:43.0843 3980 asc - ok
17:53:43.0859 3980 asc3350p - ok
17:53:43.0859 3980 asc3550 - ok
17:53:44.0125 3980 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:53:44.0125 3980 aspnet_state - ok
17:53:44.0156 3980 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:53:44.0156 3980 AsyncMac - ok
17:53:44.0203 3980 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:53:44.0203 3980 atapi - ok
17:53:44.0203 3980 Atdisk - ok
17:53:44.0218 3980 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:53:44.0218 3980 Atmarpc - ok
17:53:44.0265 3980 atmeltpm (dbf0d7e2df33b469eb55406fea759350) C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
17:53:44.0265 3980 atmeltpm - ok
17:53:44.0359 3980 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
17:53:44.0375 3980 AudioSrv - ok
17:53:44.0406 3980 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:53:44.0406 3980 audstub - ok
17:53:45.0093 3980 avc3 (c6cf76384dfc739b0be55abb79ad4dc0) C:\WINDOWS\system32\drivers\avc3.sys
17:53:45.0250 3980 avc3 - ok
17:53:46.0375 3980 avckf (b758a219e95c085405b1e356a8267610) C:\WINDOWS\system32\drivers\avckf.sys
17:53:46.0500 3980 avckf - ok
17:53:46.0703 3980 b57w2k (66dd574749c38153c6067ebba929befc) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
17:53:46.0734 3980 b57w2k - ok
17:53:46.0968 3980 BDFM (54dbdd2ddb11776f1ebb85ccaba718bf) C:\WINDOWS\system32\DRIVERS\bdfm.sys
17:53:46.0984 3980 BDFM - ok
17:53:47.0281 3980 Bdfndisf (3b3ad83054c650cf7cdeb0d5ecbd54e1) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfndisf.sys
17:53:47.0281 3980 Bdfndisf - ok
17:53:47.0390 3980 bdfsfltr (4c44d82e372a87b3cb439a7f14cfef03) C:\WINDOWS\system32\DRIVERS\bdfsfltr.sys
17:53:47.0484 3980 bdfsfltr - ok
17:53:47.0718 3980 Bdftdif (c23a8547d5ea6d0c3589961bfb7ff6d3) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys
17:53:47.0734 3980 Bdftdif - ok
17:53:47.0781 3980 BdRawPr (d077f523538c9fb83b3c3fae13861579) C:\WINDOWS\system32\DRIVERS\bdrawpr.sys
17:53:47.0781 3980 BdRawPr - ok
17:53:48.0031 3980 bdselfpr (b6c3cb5978d91eabf405709fb0f0dbe9) C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys
17:53:48.0046 3980 bdselfpr - ok
17:53:48.0187 3980 Bdvedisk (375cd0b9f433465ec6f50d4df44e9448) C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
17:53:48.0187 3980 Bdvedisk - ok
17:53:48.0250 3980 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:53:48.0250 3980 Beep - ok
17:53:48.0921 3980 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
17:53:48.0984 3980 BITS - ok
17:53:49.0093 3980 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
17:53:49.0140 3980 Browser - ok
17:53:49.0140 3980 BTWUSB - ok
17:53:49.0203 3980 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:53:49.0203 3980 cbidf2k - ok
17:53:49.0281 3980 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
17:53:49.0296 3980 CCDECODE - ok
17:53:49.0296 3980 cd20xrnt - ok
17:53:49.0328 3980 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:53:49.0328 3980 Cdaudio - ok
17:53:49.0406 3980 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:53:49.0406 3980 Cdfs - ok
17:53:49.0531 3980 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:53:49.0562 3980 Cdrom - ok
17:53:49.0578 3980 Changer - ok
17:53:49.0656 3980 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
17:53:49.0656 3980 CiSvc - ok
17:53:49.0734 3980 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
17:53:49.0750 3980 ClipSrv - ok
17:53:50.0109 3980 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:53:50.0125 3980 clr_optimization_v2.0.50727_32 - ok
17:53:50.0609 3980 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:53:50.0625 3980 clr_optimization_v4.0.30319_32 - ok
17:53:50.0656 3980 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:53:50.0656 3980 CmBatt - ok
17:53:50.0671 3980 CmdIde - ok
17:53:50.0703 3980 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:53:50.0703 3980 Compbatt - ok
17:53:50.0781 3980 CompFilter (c8df7d2e5a97082e0ca87ca07caf4619) C:\WINDOWS\system32\DRIVERS\lvbusflt.sys
17:53:50.0781 3980 CompFilter - ok
17:53:50.0796 3980 COMSysApp - ok
17:53:50.0796 3980 Cpqarray - ok
17:53:52.0000 3980 CrossLoopService (e811aa921c33005b310826b8562161ac) C:\Documents and Settings\R60\Local Settings\Application Data\CrossLoop\CrossLoopService.exe
17:53:52.0046 3980 CrossLoopService - ok
17:53:52.0046 3980 Crypkey License - ok
17:53:52.0203 3980 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
17:53:52.0203 3980 CryptSvc - ok
17:53:52.0218 3980 dac2w2k - ok
17:53:52.0218 3980 dac960nt - ok
17:53:52.0625 3980 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
17:53:52.0656 3980 DcomLaunch - ok
17:53:52.0921 3980 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
17:53:52.0921 3980 Dhcp - ok
17:53:53.0015 3980 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:53:53.0062 3980 Disk - ok
17:53:53.0062 3980 dmadmin - ok
17:53:53.0937 3980 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
17:53:54.0015 3980 dmboot - ok
17:53:54.0187 3980 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
17:53:54.0218 3980 dmio - ok
17:53:54.0234 3980 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:53:54.0234 3980 dmload - ok
17:53:54.0265 3980 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
17:53:54.0328 3980 dmserver - ok
17:53:54.0437 3980 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:53:54.0468 3980 DMusic - ok
17:53:54.0609 3980 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
17:53:54.0640 3980 Dnscache - ok
17:53:54.0765 3980 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
17:53:54.0781 3980 Dot3svc - ok
17:53:54.0781 3980 dpti2o - ok
17:53:54.0828 3980 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:53:54.0828 3980 drmkaud - ok
17:53:55.0296 3980 e1express (4f2fe1ec1cdb3f2aacbe0d35897372a5) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
17:53:55.0312 3980 e1express - ok
17:53:55.0421 3980 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
17:53:55.0421 3980 EapHost - ok
17:53:55.0734 3980 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
17:53:55.0750 3980 ERSvc - ok
17:53:55.0968 3980 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
17:53:56.0000 3980 Eventlog - ok
17:53:56.0250 3980 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
17:53:56.0312 3980 EventSystem - ok
17:53:57.0156 3980 EvtEng (344aa81113481e615e366bc1c36dfe0c) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
17:53:57.0312 3980 EvtEng - ok
17:53:57.0421 3980 Fabs - ok
17:53:58.0000 3980 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:53:58.0062 3980 Fastfat - ok
17:53:58.0234 3980 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
17:53:58.0250 3980 FastUserSwitchingCompatibility - ok
17:53:58.0328 3980 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
17:53:58.0328 3980 Fdc - ok
17:53:58.0359 3980 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
17:53:58.0375 3980 Fips - ok
17:54:00.0578 3980 FirebirdServerMAGIXInstance (fff1130f7c9fa01d093a1edfc5cce8fc) C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
17:54:01.0281 3980 FirebirdServerMAGIXInstance - ok
17:54:02.0531 3980 FLEXnet Licensing Service (bb0667b0171b632b97ea759515476f07) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:54:02.0781 3980 FLEXnet Licensing Service - ok
17:54:03.0859 3980 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
17:54:03.0859 3980 Flpydisk - ok
17:54:04.0093 3980 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:54:04.0093 3980 FltMgr - ok
17:54:04.0390 3980 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:54:04.0390 3980 FontCache3.0.0.0 - ok
17:54:04.0421 3980 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:54:04.0421 3980 Fs_Rec - ok
17:54:04.0671 3980 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:54:04.0734 3980 Ftdisk - ok
17:54:05.0078 3980 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:54:05.0093 3980 Gpc - ok
17:54:05.0125 3980 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:54:05.0125 3980 HDAudBus - ok
17:54:05.0281 3980 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:54:05.0328 3980 helpsvc - ok
17:54:05.0375 3980 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
17:54:05.0390 3980 HidServ - ok
17:54:05.0406 3980 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:54:05.0406 3980 HidUsb - ok
17:54:05.0453 3980 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
17:54:05.0453 3980 hkmsvc - ok
17:54:05.0453 3980 hpn - ok
17:54:05.0500 3980 HSFHWAZL (0aaef566e6782957252fa79f566fbc0b) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
17:54:05.0515 3980 HSFHWAZL - ok
17:54:05.0781 3980 HSF_DPV (e472e0cb4e716cc34c0e045f2c196221) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
17:54:06.0015 3980 HSF_DPV - ok
17:54:06.0328 3980 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:54:06.0359 3980 HTTP - ok
17:54:06.0406 3980 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
17:54:06.0406 3980 HTTPFilter - ok
17:54:06.0421 3980 i2omgmt - ok
17:54:06.0421 3980 i2omp - ok
17:54:06.0609 3980 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:54:06.0640 3980 i8042prt - ok
17:54:10.0156 3980 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:54:11.0296 3980 ialm - ok
17:54:13.0359 3980 iastor (abfebc5f846c71afebd7f8f6ba740c03) C:\WINDOWS\system32\Drivers\iaStor.sys
17:54:13.0375 3980 iastor - ok
17:54:13.0453 3980 IBMPMDRV (ff2dbf3b183516eec87dad241ec50e7a) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
17:54:13.0453 3980 IBMPMDRV - ok
17:54:13.0484 3980 IBMPMSVC (41328443d34c1e4d680d9d2766b94354) C:\WINDOWS\system32\ibmpmsvc.exe
17:54:13.0484 3980 IBMPMSVC - ok
17:54:13.0625 3980 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:54:13.0625 3980 IDriverT - ok
17:54:14.0015 3980 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:54:14.0234 3980 idsvc - ok
17:54:14.0281 3980 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:54:14.0281 3980 Imapi - ok
17:54:14.0531 3980 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
17:54:14.0593 3980 ImapiService - ok
17:54:14.0609 3980 ini910u - ok
17:54:14.0609 3980 IntelIde - ok
17:54:14.0718 3980 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:54:14.0718 3980 intelppm - ok
17:54:14.0734 3980 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:54:14.0750 3980 Ip6Fw - ok
17:54:14.0796 3980 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:54:14.0796 3980 IpFilterDriver - ok
17:54:14.0843 3980 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:54:14.0843 3980 IpInIp - ok
17:54:15.0000 3980 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:54:15.0031 3980 IpNat - ok
17:54:15.0125 3980 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:54:15.0125 3980 IPSec - ok
17:54:15.0312 3980 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
17:54:15.0312 3980 irda - ok
17:54:15.0343 3980 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:54:15.0343 3980 IRENUM - ok
17:54:15.0453 3980 Irmon (49cc4533ce897cb2e93c1e84a818fde5) C:\WINDOWS\System32\irmon.dll
17:54:15.0453 3980 Irmon - ok
17:54:15.0593 3980 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:54:15.0593 3980 isapnp - ok
17:54:16.0328 3980 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe
17:54:16.0359 3980 JavaQuickStarterService - ok
17:54:16.0406 3980 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:54:16.0406 3980 Kbdclass - ok
17:54:16.0625 3980 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:54:16.0703 3980 kmixer - ok
17:54:16.0828 3980 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:54:16.0875 3980 KSecDD - ok
17:54:16.0984 3980 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
17:54:17.0062 3980 lanmanserver - ok
17:54:17.0281 3980 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
17:54:17.0312 3980 lanmanworkstation - ok
17:54:17.0312 3980 lbrtfdc - ok
17:54:17.0390 3980 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
17:54:17.0406 3980 LmHosts - ok
17:54:18.0046 3980 LVRS (c4fd8055f421a8e6f49259a0bf59c40d) C:\WINDOWS\system32\DRIVERS\lvrs.sys
17:54:18.0156 3980 LVRS - ok
17:54:27.0500 3980 LVUVC (bab6dba71defbc9d147afc15cdc9563f) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
17:54:28.0906 3980 LVUVC - ok
17:54:29.0984 3980 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\WINDOWS\system32\drivers\mbam.sys
17:54:29.0984 3980 MBAMProtector - ok
17:54:30.0890 3980 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:54:31.0000 3980 MBAMService - ok
17:54:31.0046 3980 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
17:54:31.0046 3980 mdmxsdk - ok
17:54:31.0156 3980 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
17:54:31.0203 3980 Messenger - ok
17:54:31.0234 3980 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:54:31.0250 3980 mnmdd - ok
17:54:31.0375 3980 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
17:54:31.0421 3980 mnmsrvc - ok
17:54:31.0515 3980 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
17:54:31.0562 3980 Modem - ok
17:54:31.0656 3980 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:54:31.0671 3980 Mouclass - ok
17:54:31.0812 3980 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:54:31.0812 3980 mouhid - ok
17:54:31.0921 3980 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:54:31.0921 3980 MountMgr - ok
17:54:32.0187 3980 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:54:32.0187 3980 MozillaMaintenance - ok
17:54:32.0203 3980 mraid35x - ok
17:54:32.0453 3980 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:54:32.0500 3980 MRxDAV - ok
17:54:32.0953 3980 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:54:33.0000 3980 MRxSmb - ok
17:54:33.0078 3980 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
17:54:33.0203 3980 MSDTC - ok
17:54:33.0375 3980 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:54:33.0375 3980 Msfs - ok
17:54:33.0390 3980 MSIServer - ok
17:54:33.0421 3980 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:54:33.0437 3980 MSKSSRV - ok
17:54:33.0468 3980 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:54:33.0468 3980 MSPCLOCK - ok
17:54:33.0484 3980 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:54:33.0484 3980 MSPQM - ok
17:54:33.0546 3980 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:54:33.0546 3980 mssmbios - ok
17:54:33.0578 3980 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
17:54:33.0578 3980 MSTEE - ok
17:54:33.0906 3980 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:54:33.0921 3980 Mup - ok
17:54:34.0203 3980 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
17:54:34.0218 3980 NABTSFEC - ok
17:54:34.0750 3980 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
17:54:34.0781 3980 napagent - ok
17:54:34.0953 3980 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:54:35.0000 3980 NDIS - ok
17:54:35.0031 3980 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
17:54:35.0031 3980 NdisIP - ok
17:54:35.0093 3980 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:54:35.0093 3980 NdisTapi - ok
17:54:35.0171 3980 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:54:35.0171 3980 Ndisuio - ok
17:54:35.0250 3980 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:54:35.0250 3980 NdisWan - ok
17:54:35.0328 3980 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:54:35.0343 3980 NDProxy - ok
17:54:35.0453 3980 Net Driver HPZ12 (51c6d8bfbd4ea5b62a1ba7f4469250d3) C:\WINDOWS\system32\HPZinw12.dll
17:54:35.0468 3980 Net Driver HPZ12 - ok
17:54:35.0562 3980 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:54:35.0593 3980 NetBIOS - ok
17:54:35.0812 3980 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:54:35.0843 3980 NetBT - ok
17:54:36.0062 3980 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
17:54:36.0109 3980 NetDDE - ok
17:54:36.0125 3980 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
17:54:36.0125 3980 NetDDEdsdm - ok
17:54:36.0171 3980 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:54:36.0171 3980 Netlogon - ok
17:54:36.0390 3980 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
17:54:36.0437 3980 Netman - ok
17:54:37.0046 3980 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
17:54:37.0078 3980 NetTcpPortSharing - ok
17:54:39.0937 3980 NETw4x32 (01f8a43ff0b77df0e115a7ed4bd76d68) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
17:54:40.0437 3980 NETw4x32 - ok
17:54:41.0015 3980 NetworkX (5ef7dd401771693245d46f4b0b69fe2b) C:\WINDOWS\system32\ckldrv.sys
17:54:41.0062 3980 NetworkX - ok
17:54:41.0515 3980 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
17:54:41.0593 3980 Nla - ok
17:54:41.0781 3980 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:54:41.0812 3980 Npfs - ok
17:54:41.0859 3980 NSCIRDA (2adc0ca9945c65284b3d19bc18765974) C:\WINDOWS\system32\DRIVERS\nscirda.sys
17:54:41.0906 3980 NSCIRDA - ok
17:54:42.0484 3980 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:54:43.0062 3980 Ntfs - ok
17:54:43.0093 3980 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:54:43.0109 3980 NtLmSsp - ok
17:54:44.0000 3980 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
17:54:44.0093 3980 NtmsSvc - ok
17:54:44.0140 3980 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:54:44.0140 3980 Null - ok
17:54:44.0187 3980 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:54:44.0187 3980 NwlnkFlt - ok
17:54:44.0234 3980 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:54:44.0234 3980 NwlnkFwd - ok
17:54:45.0625 3980 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:54:45.0765 3980 odserv - ok
17:54:46.0328 3980 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:54:46.0359 3980 ose - ok
17:54:46.0546 3980 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
17:54:46.0609 3980 Parport - ok
17:54:46.0640 3980 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:54:46.0640 3980 PartMgr - ok
17:54:46.0703 3980 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
17:54:46.0703 3980 ParVdm - ok
17:54:46.0812 3980 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
17:54:46.0812 3980 PCI - ok
17:54:46.0812 3980 PCIDump - ok
17:54:46.0828 3980 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
17:54:46.0828 3980 PCIIde - ok
17:54:47.0062 3980 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:54:47.0078 3980 Pcmcia - ok
17:54:47.0078 3980 PDCOMP - ok
17:54:47.0093 3980 PDFRAME - ok
17:54:47.0093 3980 PDRELI - ok
17:54:47.0109 3980 PDRFRAME - ok
17:54:47.0109 3980 perc2 - ok
17:54:47.0125 3980 perc2hib - ok
17:54:47.0328 3980 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
17:54:47.0343 3980 PlugPlay - ok
17:54:47.0437 3980 Pml Driver HPZ12 (79834aa2fbf9fe81eebb229024f6f7fc) C:\WINDOWS\system32\HPZipm12.dll
17:54:47.0453 3980 Pml Driver HPZ12 - ok
17:54:47.0546 3980 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:54:47.0546 3980 PolicyAgent - ok
17:54:47.0921 3980 Power Manager DBC Service (b66dda74ede3f40aabdaf86a4df4f413) C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
17:54:47.0953 3980 Power Manager DBC Service - ok
17:54:48.0062 3980 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:54:48.0078 3980 PptpMiniport - ok
17:54:48.0156 3980 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
17:54:48.0171 3980 PQNTDrv - ok
17:54:48.0171 3980 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:54:48.0171 3980 ProtectedStorage - ok
17:54:48.0234 3980 psadd (651d3abc1d82d61b6cfb40cb947b3db3) C:\WINDOWS\system32\DRIVERS\psadd.sys
17:54:48.0281 3980 psadd - ok
17:54:48.0390 3980 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:54:48.0421 3980 PSched - ok
17:54:48.0500 3980 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys
17:54:48.0500 3980 PSI - ok
17:54:48.0546 3980 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:54:48.0546 3980 Ptilink - ok
17:54:48.0562 3980 ql1080 - ok
17:54:48.0562 3980 Ql10wnt - ok
17:54:48.0578 3980 ql12160 - ok
17:54:48.0578 3980 ql1240 - ok
17:54:48.0593 3980 ql1280 - ok
17:54:48.0609 3980 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:54:48.0609 3980 RasAcd - ok
17:54:48.0796 3980 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
17:54:48.0812 3980 RasAuto - ok
17:54:48.0859 3980 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
17:54:48.0875 3980 Rasirda - ok
17:54:48.0921 3980 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:54:48.0921 3980 Rasl2tp - ok
17:54:49.0093 3980 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
17:54:49.0109 3980 RasMan - ok
17:54:49.0187 3980 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:54:49.0203 3980 RasPppoe - ok
17:54:49.0234 3980 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:54:49.0234 3980 Raspti - ok
17:54:49.0484 3980 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:54:49.0515 3980 Rdbss - ok
17:54:49.0546 3980 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:54:49.0546 3980 RDPCDD - ok
17:54:49.0859 3980 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:54:49.0890 3980 rdpdr - ok
17:54:50.0328 3980 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
17:54:50.0343 3980 RDPWD - ok
17:54:50.0609 3980 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
17:54:50.0625 3980 RDSessMgr - ok
17:54:50.0718 3980 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:54:50.0734 3980 redbook - ok
17:54:51.0500 3980 RegSrvc (89cbf999fc5fcaf3c8b2c79b0594434f) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
17:54:51.0578 3980 RegSrvc - ok
17:54:51.0687 3980 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
17:54:51.0703 3980 RemoteAccess - ok
17:54:51.0875 3980 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
17:54:51.0906 3980 RemoteRegistry - ok
17:54:52.0078 3980 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
17:54:52.0093 3980 RpcLocator - ok
17:54:52.0296 3980 rpcnet (3297445bb9fd3e8363e7559010ed2ae7) C:\WINDOWS\system32\rpcnet.exe
17:54:52.0328 3980 rpcnet - ok
17:54:53.0218 3980 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
17:54:53.0234 3980 RpcSs - ok
17:54:53.0453 3980 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
17:54:53.0484 3980 RSVP - ok
17:54:54.0921 3980 S24EventMonitor (e118cf6bc4949d4a389026f15a9f3c95) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
17:54:55.0109 3980 S24EventMonitor - ok
17:54:55.0359 3980 s24trans (f275ee6061e444caa7137aefb2c27a03) C:\WINDOWS\system32\DRIVERS\s24trans.sys
17:54:55.0359 3980 s24trans - ok
17:54:55.0421 3980 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:54:55.0421 3980 SamSs - ok
17:54:55.0687 3980 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
17:54:55.0765 3980 SCardSvr - ok
17:54:56.0328 3980 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
17:54:56.0390 3980 Schedule - ok
17:54:56.0500 3980 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:54:56.0500 3980 Secdrv - ok
17:54:56.0546 3980 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
17:54:56.0546 3980 seclogon - ok
17:54:58.0703 3980 Secunia PSI Agent (1ce8490e8919ef5c72275952c202e749) C:\Program Files\Secunia\PSI\PSIA.exe
17:54:58.0859 3980 Secunia PSI Agent - ok
17:54:59.0312 3980 Secunia Update Agent (9337c7c45392a32cac5e59ddac0d0342) C:\Program Files\Secunia\PSI\sua.exe
17:54:59.0531 3980 Secunia Update Agent - ok
17:54:59.0625 3980 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
17:54:59.0671 3980 SENS - ok
17:54:59.0921 3980 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
17:54:59.0921 3980 Serial - ok
17:54:59.0968 3980 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:54:59.0968 3980 Sfloppy - ok
17:55:00.0687 3980 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
17:55:00.0703 3980 SharedAccess - ok
17:55:01.0000 3980 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
17:55:01.0000 3980 ShellHWDetection - ok
17:55:01.0406 3980 Shockprf (1310c5e81966e86b2ced7ae8ce3d74f1) C:\WINDOWS\system32\DRIVERS\Apsx86.sys
17:55:01.0453 3980 Shockprf - ok
17:55:01.0468 3980 Simbad - ok
17:55:01.0640 3980 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
17:55:01.0640 3980 SLIP - ok
17:55:02.0031 3980 snapman (ffd9b64db2cd7b74b766c3a8452a5816) C:\WINDOWS\system32\DRIVERS\snapman.sys
17:55:02.0062 3980 snapman - ok
17:55:02.0406 3980 Sony SCSI Helper Service (3bb48f7e33c2b76184ddf233000c09cd) C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
17:55:02.0687 3980 Sony SCSI Helper Service - ok
17:55:02.0828 3980 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
17:55:02.0828 3980 SONYPVU1 - ok
17:55:02.0843 3980 Sparrow - ok
17:55:02.0875 3980 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:55:03.0484 3980 splitter - ok
17:55:03.0640 3980 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
17:55:03.0640 3980 Spooler - ok
17:55:03.0765 3980 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
17:55:03.0765 3980 sr - ok
17:55:04.0109 3980 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
17:55:04.0140 3980 srservice - ok
17:55:05.0031 3980 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:55:05.0093 3980 Srv - ok
17:55:05.0296 3980 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
17:55:05.0328 3980 SSDPSRV - ok
17:55:06.0312 3980 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
17:55:06.0390 3980 stisvc - ok
17:55:06.0484 3980 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
17:55:06.0484 3980 streamip - ok
17:55:06.0671 3980 SUService (b384a999c5326ba7bc940347a26fc0b9) C:\Program Files\Lenovo\System Update\SUService.exe
17:55:06.0671 3980 SUService - ok
17:55:06.0796 3980 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:55:06.0843 3980 swenum - ok
17:55:07.0031 3980 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:55:07.0093 3980 swmidi - ok
17:55:07.0250 3980 swmx01 (e04b2937dcddab8fe1ea413284ccabce) C:\WINDOWS\system32\DRIVERS\swmx01.sys
17:55:07.0281 3980 swmx01 - ok
17:55:07.0515 3980 SWNC5E01 (6afe9a256c21fb32f9047cde1f6f426a) C:\WINDOWS\system32\DRIVERS\SWNC5E01.sys
17:55:07.0562 3980 SWNC5E01 - ok
17:55:07.0562 3980 SwPrv - ok
17:55:07.0578 3980 symc810 - ok
17:55:07.0578 3980 symc8xx - ok
17:55:07.0593 3980 sym_hi - ok
17:55:07.0593 3980 sym_u3 - ok
17:55:08.0062 3980 SynTP (820d28f30ac01ce86860a35dcc7bfaab) C:\WINDOWS\system32\DRIVERS\SynTP.sys
17:55:08.0062 3980 SynTP - ok
17:55:08.0125 3980 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:55:08.0140 3980 sysaudio - ok
17:55:08.0312 3980 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
17:55:08.0343 3980 SysmonLog - ok
17:55:08.0671 3980 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
17:55:08.0734 3980 TapiSrv - ok
17:55:09.0328 3980 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:55:09.0359 3980 Tcpip - ok
17:55:09.0515 3980 TcUsb (72b9e77565da5fa564581976e000d29b) C:\WINDOWS\system32\Drivers\tcusb.sys
17:55:09.0546 3980 TcUsb - ok
17:55:09.0656 3980 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:55:09.0656 3980 TDPIPE - ok
17:55:11.0593 3980 tdrpman251 (3630f5b8181554deecfe2e4252bc4c4c) C:\WINDOWS\system32\DRIVERS\tdrpm251.sys
17:55:11.0781 3980 tdrpman251 - ok
17:55:11.0875 3980 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:55:11.0875 3980 TDTCP - ok
17:55:11.0968 3980 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:55:12.0046 3980 TermDD - ok
17:55:12.0640 3980 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
17:55:12.0687 3980 TermService - ok
17:55:13.0062 3980 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
17:55:13.0062 3980 Themes - ok
17:55:14.0265 3980 ThinkVantage Registry Monitor Service (9626746a9b120d2ed537dd8d76278405) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
17:55:14.0359 3980 ThinkVantage Registry Monitor Service - ok
17:55:15.0015 3980 timounter (c820bfc70feb25ec877c49e81cd477c1) C:\WINDOWS\system32\DRIVERS\timntr.sys
17:55:15.0140 3980 timounter - ok
17:55:15.0312 3980 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
17:55:15.0343 3980 TlntSvr - ok
17:55:15.0359 3980 TosIde - ok
17:55:15.0421 3980 TPDIGIMN (d7a29e343632e2fc5f7ebfc886f12675) C:\WINDOWS\system32\DRIVERS\ApsHM86.sys
17:55:15.0421 3980 TPDIGIMN - ok
17:55:15.0484 3980 TPHDEXLGSVC (51b679f627a43a25ef9444ad23bbff9a) C:\WINDOWS\system32\TPHDEXLG.exe
17:55:15.0500 3980 TPHDEXLGSVC - ok
17:55:15.0546 3980 TPHKDRV (8aef2188630f5ecd79ad9abba630630b) C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys
17:55:15.0546 3980 TPHKDRV - ok
17:55:15.0625 3980 TpKmpSVC (dfb268ff0a6dcb9280015ff527f892ff) C:\WINDOWS\system32\TpKmpSVC.exe
17:55:15.0671 3980 TpKmpSVC - ok
17:55:15.0703 3980 TPPWRIF (44672de6cea9569c21c4b7a8d2560750) C:\WINDOWS\system32\drivers\Tppwrif.sys
17:55:15.0703 3980 TPPWRIF - ok
17:55:15.0890 3980 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
17:55:15.0953 3980 TrkWks - ok
17:55:16.0484 3980 Trufos (29c497fc09c655b7bafcfafb6e76b8eb) C:\WINDOWS\system32\DRIVERS\Trufos.sys
17:55:16.0500 3980 Trufos - ok
17:55:17.0984 3980 TVT Scheduler (e9ea448f1174be4052416b62263ea4ee) C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
17:55:18.0218 3980 TVT Scheduler - ok
17:55:19.0156 3980 TwoTrack (17687545f77a648af7f9f1064eb61191) C:\WINDOWS\system32\DRIVERS\TwoTrack.sys
17:55:19.0156 3980 TwoTrack - ok
17:55:19.0406 3980 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:55:19.0437 3980 Udfs - ok
17:55:19.0437 3980 ultra - ok
17:55:20.0250 3980 UMVPFSrv (5b27bac376642259825a6131879d760b) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:55:20.0375 3980 UMVPFSrv - ok
17:55:20.0375 3980 UnlockerDriver5 - ok
17:55:20.0593 3980 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:55:20.0656 3980 Update - ok
17:55:21.0578 3980 Update Server (97af0bfac3ab8343e37e19c551e7d9fa) C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
17:55:21.0578 3980 Update Server - ok
17:55:22.0000 3980 Updatesrv - ok
17:55:22.0984 3980 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
17:55:23.0812 3980 upnphost - ok
17:55:23.0890 3980 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
17:55:23.0890 3980 UPS - ok
17:55:24.0062 3980 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
17:55:24.0140 3980 usbaudio - ok
17:55:24.0250 3980 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:55:24.0250 3980 usbccgp - ok
17:55:24.0328 3980 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:55:24.0328 3980 usbehci - ok
17:55:24.0484 3980 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:55:24.0531 3980 usbhub - ok
17:55:24.0640 3980 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:55:24.0671 3980 usbprint - ok
17:55:24.0750 3980 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:55:24.0750 3980 usbscan - ok
17:55:24.0906 3980 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:55:24.0953 3980 USBSTOR - ok
17:55:25.0031 3980 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:55:25.0031 3980 usbuhci - ok
17:55:25.0312 3980 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
17:55:25.0390 3980 usbvideo - ok
17:55:30.0125 3980 uvnc_service (52bcdda1f4668d077efff78594fa296e) C:\Documents and Settings\R60\Local Settings\Application Data\CrossLoop\winvnc.exe
17:55:30.0562 3980 uvnc_service - ok
17:55:32.0031 3980 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:55:32.0031 3980 VgaSave - ok
17:55:32.0031 3980 ViaIde - ok
17:55:32.0125 3980 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
17:55:32.0140 3980 VolSnap - ok
17:55:32.0687 3980 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
17:55:32.0703 3980 VSS - ok
17:55:32.0828 3980 VSSERV - ok
17:55:33.0000 3980 VX6000 (61fc38a2e136a2e5944e7ca286abaaae) C:\WINDOWS\system32\DRIVERS\VX6000Xp.sys
17:55:33.0125 3980 VX6000 - ok
17:55:34.0296 3980 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
17:55:34.0468 3980 W32Time - ok
17:55:35.0140 3980 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:55:35.0171 3980 Wanarp - ok
17:55:35.0171 3980 WDICA - ok
17:55:35.0218 3980 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:55:35.0218 3980 wdmaud - ok
17:55:35.0265 3980 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
17:55:35.0281 3980 WebClient - ok
17:55:35.0375 3980 winachsf (0e666ac2766f2fd860cc03f405a2ace1) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
17:55:35.0406 3980 winachsf - ok
17:55:35.0500 3980 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
17:55:35.0515 3980 winmgmt - ok
17:55:35.0562 3980 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
17:55:35.0578 3980 WmdmPmSN - ok
17:55:35.0640 3980 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
17:55:35.0671 3980 Wmi - ok
17:55:35.0750 3980 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:55:35.0750 3980 WmiApSrv - ok
17:55:35.0937 3980 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
17:55:35.0984 3980 WMPNetworkSvc - ok
17:55:36.0031 3980 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
17:55:36.0031 3980 WpdUsb - ok
17:55:36.0312 3980 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:55:36.0437 3980 WPFFontCache_v0400 - ok
17:55:36.0515 3980 WsAudioDevice_383 (85ece26f326c2d07ba77a60343468272) C:\WINDOWS\system32\drivers\WsAudioDevice_383.sys
17:55:36.0515 3980 WsAudioDevice_383 - ok
17:55:36.0640 3980 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
17:55:36.0656 3980 wscsvc - ok
17:55:36.0703 3980 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
17:55:36.0703 3980 WSTCODEC - ok
17:55:36.0750 3980 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
17:55:36.0765 3980 wuauserv - ok
17:55:36.0796 3980 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:55:36.0796 3980 WudfPf - ok
17:55:36.0828 3980 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:55:36.0843 3980 WudfRd - ok
17:55:36.0875 3980 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
17:55:36.0875 3980 WudfSvc - ok
17:55:36.0953 3980 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
17:55:36.0984 3980 WZCSVC - ok
17:55:37.0031 3980 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
17:55:37.0031 3980 xmlprov - ok
17:55:37.0078 3980 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
17:55:37.0281 3980 \Device\Harddisk0\DR0 - ok
17:55:37.0281 3980 Boot (0x1200) (a572e05af80696ddc367a7af2e7b2693) \Device\Harddisk0\DR0\Partition0
17:55:37.0281 3980 \Device\Harddisk0\DR0\Partition0 - ok
17:55:37.0281 3980 ============================================================
17:55:37.0281 3980 Scan finished
17:55:37.0281 3980 ============================================================
17:55:37.0312 3636 Detected object count: 0
17:55:37.0312 3636 Actual detected object count: 0
0
Réponse 9 / 28
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
26 avril 2012 à 01:10
Je viens de refaire l'analyse pour être certaine. Il n'a toujours rien trouvé

Voici le rapport:

19:05:34.0312 1400 TDSS rootkit removing tool 2.7.32.0 Apr 23 2012 19:12:34
19:05:37.0250 1400 ============================================================
19:05:37.0250 1400 Current date / time: 2012/04/25 19:05:37.0250
19:05:37.0250 1400 SystemInfo:
19:05:37.0250 1400
19:05:37.0250 1400 OS Version: 5.1.2600 ServicePack: 3.0
19:05:37.0250 1400 Product type: Workstation
19:05:37.0250 1400 ComputerName: T60-4E1B29DCC68
19:05:37.0250 1400 UserName: R60
19:05:37.0250 1400 Windows directory: C:\WINDOWS
19:05:37.0250 1400 System windows directory: C:\WINDOWS
19:05:37.0250 1400 Processor architecture: Intel x86
19:05:37.0250 1400 Number of processors: 2
19:05:37.0250 1400 Page size: 0x1000
19:05:37.0250 1400 Boot type: Normal boot
19:05:37.0250 1400 ============================================================
19:05:38.0562 1400 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
19:05:38.0562 1400 ============================================================
19:05:38.0562 1400 \Device\Harddisk0\DR0:
19:05:38.0562 1400 MBR partitions:
19:05:38.0562 1400 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A186D1
19:05:38.0562 1400 ============================================================
19:05:38.0593 1400 C: <-> \Device\Harddisk0\DR0\Partition0
19:05:38.0593 1400 ============================================================
19:05:38.0593 1400 Initialize success
19:05:38.0593 1400 ============================================================
19:05:40.0281 2976 ============================================================
19:05:40.0281 2976 Scan started
19:05:40.0281 2976 Mode: Manual;
19:05:40.0281 2976 ============================================================
19:05:42.0828 2976 Abiosdsk - ok
19:05:42.0828 2976 abp480n5 - ok
19:05:43.0718 2976 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:05:43.0859 2976 ACPI - ok
19:05:43.0890 2976 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:05:43.0890 2976 ACPIEC - ok
19:05:44.0609 2976 AcrSch2Svc (83e17694d7c715c26f2c3e023b4fc157) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
19:05:44.0625 2976 AcrSch2Svc - ok
19:05:44.0687 2976 ADIHdAudAddService (beee84a79710f705864685b05f1bb172) C:\WINDOWS\system32\drivers\ADIHdAud.sys
19:05:44.0703 2976 ADIHdAudAddService - ok
19:05:44.0765 2976 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:05:44.0796 2976 AdobeFlashPlayerUpdateSvc - ok
19:05:44.0796 2976 adpu160m - ok
19:05:44.0812 2976 AEAudioService (358063ab6c1c4173b735525cdfa65f94) C:\WINDOWS\system32\drivers\AEAudio.sys
19:05:44.0812 2976 AEAudioService - ok
19:05:44.0843 2976 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:05:44.0859 2976 aec - ok
19:05:44.0890 2976 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
19:05:44.0906 2976 AegisP - ok
19:05:44.0937 2976 afcdp (f132d0bfde7c5ea1ab42325c5694a969) C:\WINDOWS\system32\DRIVERS\afcdp.sys
19:05:44.0953 2976 afcdp - ok
19:05:45.0187 2976 afcdpsrv (986a134b1a1770599b7af9354cbb066f) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
19:05:45.0281 2976 afcdpsrv - ok
19:05:45.0406 2976 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:05:45.0421 2976 AFD - ok
19:05:45.0421 2976 Aha154x - ok
19:05:45.0421 2976 aic78u2 - ok
19:05:45.0437 2976 aic78xx - ok
19:05:45.0468 2976 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
19:05:45.0468 2976 Alerter - ok
19:05:45.0500 2976 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
19:05:45.0500 2976 ALG - ok
19:05:45.0500 2976 AliIde - ok
19:05:45.0500 2976 amsint - ok
19:05:45.0546 2976 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
19:05:45.0562 2976 AppMgmt - ok
19:05:45.0562 2976 asc - ok
19:05:45.0562 2976 asc3350p - ok
19:05:45.0562 2976 asc3550 - ok
19:05:45.0703 2976 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:05:45.0718 2976 aspnet_state - ok
19:05:45.0734 2976 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:05:45.0750 2976 AsyncMac - ok
19:05:45.0781 2976 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:05:45.0781 2976 atapi - ok
19:05:45.0796 2976 Atdisk - ok
19:05:45.0796 2976 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:05:45.0796 2976 Atmarpc - ok
19:05:45.0843 2976 atmeltpm (dbf0d7e2df33b469eb55406fea759350) C:\WINDOWS\system32\DRIVERS\atmeltpm.sys
19:05:45.0843 2976 atmeltpm - ok
19:05:45.0890 2976 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
19:05:45.0890 2976 AudioSrv - ok
19:05:45.0921 2976 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:05:45.0937 2976 audstub - ok
19:05:46.0046 2976 avc3 (c6cf76384dfc739b0be55abb79ad4dc0) C:\WINDOWS\system32\drivers\avc3.sys
19:05:46.0078 2976 avc3 - ok
19:05:46.0203 2976 avckf (b758a219e95c085405b1e356a8267610) C:\WINDOWS\system32\drivers\avckf.sys
19:05:46.0296 2976 avckf - ok
19:05:46.0343 2976 b57w2k (66dd574749c38153c6067ebba929befc) C:\WINDOWS\system32\DRIVERS\b57xp32.sys
19:05:46.0359 2976 b57w2k - ok
19:05:46.0390 2976 BDFM (54dbdd2ddb11776f1ebb85ccaba718bf) C:\WINDOWS\system32\DRIVERS\bdfm.sys
19:05:46.0390 2976 BDFM - ok
19:05:46.0515 2976 Bdfndisf (3b3ad83054c650cf7cdeb0d5ecbd54e1) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfndisf.sys
19:05:46.0515 2976 Bdfndisf - ok
19:05:46.0546 2976 bdfsfltr (4c44d82e372a87b3cb439a7f14cfef03) C:\WINDOWS\system32\DRIVERS\bdfsfltr.sys
19:05:46.0562 2976 bdfsfltr - ok
19:05:46.0625 2976 Bdftdif (c23a8547d5ea6d0c3589961bfb7ff6d3) C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdftdif.sys
19:05:46.0625 2976 Bdftdif - ok
19:05:46.0656 2976 BdRawPr (d077f523538c9fb83b3c3fae13861579) C:\WINDOWS\system32\DRIVERS\bdrawpr.sys
19:05:46.0656 2976 BdRawPr - ok
19:05:46.0765 2976 bdselfpr (b6c3cb5978d91eabf405709fb0f0dbe9) C:\Program Files\BitDefender\BitDefender 2011\bdselfpr.sys
19:05:46.0765 2976 bdselfpr - ok
19:05:46.0796 2976 Bdvedisk (375cd0b9f433465ec6f50d4df44e9448) C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
19:05:46.0812 2976 Bdvedisk - ok
19:05:46.0843 2976 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:05:46.0843 2976 Beep - ok
19:05:46.0906 2976 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
19:05:46.0937 2976 BITS - ok
19:05:46.0984 2976 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
19:05:46.0984 2976 Browser - ok
19:05:46.0984 2976 BTWUSB - ok
19:05:47.0031 2976 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:05:47.0031 2976 cbidf2k - ok
19:05:47.0078 2976 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:05:47.0078 2976 CCDECODE - ok
19:05:47.0078 2976 cd20xrnt - ok
19:05:47.0109 2976 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:05:47.0109 2976 Cdaudio - ok
19:05:47.0156 2976 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:05:47.0156 2976 Cdfs - ok
19:05:47.0171 2976 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:05:47.0171 2976 Cdrom - ok
19:05:47.0171 2976 Changer - ok
19:05:47.0218 2976 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
19:05:47.0218 2976 CiSvc - ok
19:05:47.0265 2976 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
19:05:47.0265 2976 ClipSrv - ok
19:05:47.0343 2976 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:05:47.0343 2976 clr_optimization_v2.0.50727_32 - ok
19:05:47.0421 2976 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:05:47.0437 2976 clr_optimization_v4.0.30319_32 - ok
19:05:47.0468 2976 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:05:47.0468 2976 CmBatt - ok
19:05:47.0468 2976 CmdIde - ok
19:05:47.0484 2976 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:05:47.0484 2976 Compbatt - ok
19:05:47.0515 2976 CompFilter (c8df7d2e5a97082e0ca87ca07caf4619) C:\WINDOWS\system32\DRIVERS\lvbusflt.sys
19:05:47.0515 2976 CompFilter - ok
19:05:47.0515 2976 COMSysApp - ok
19:05:47.0531 2976 Cpqarray - ok
19:05:47.0656 2976 CrossLoopService (e811aa921c33005b310826b8562161ac) C:\Documents and Settings\R60\Local Settings\Application Data\CrossLoop\CrossLoopService.exe
19:05:47.0703 2976 CrossLoopService - ok
19:05:47.0703 2976 Crypkey License - ok
19:05:47.0781 2976 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
19:05:47.0781 2976 CryptSvc - ok
19:05:47.0781 2976 dac2w2k - ok
19:05:47.0796 2976 dac960nt - ok
19:05:47.0859 2976 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:05:47.0875 2976 DcomLaunch - ok
19:05:47.0921 2976 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
19:05:47.0921 2976 Dhcp - ok
19:05:47.0953 2976 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:05:47.0953 2976 Disk - ok
19:05:47.0953 2976 dmadmin - ok
19:05:48.0218 2976 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:05:48.0250 2976 dmboot - ok
19:05:48.0265 2976 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
19:05:48.0281 2976 dmio - ok
19:05:48.0296 2976 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:05:48.0296 2976 dmload - ok
19:05:48.0328 2976 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
19:05:48.0328 2976 dmserver - ok
19:05:48.0359 2976 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:05:48.0375 2976 DMusic - ok
19:05:48.0406 2976 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
19:05:48.0421 2976 Dnscache - ok
19:05:48.0468 2976 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
19:05:48.0500 2976 Dot3svc - ok
19:05:48.0500 2976 dpti2o - ok
19:05:48.0515 2976 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:05:48.0515 2976 drmkaud - ok
19:05:48.0578 2976 e1express (4f2fe1ec1cdb3f2aacbe0d35897372a5) C:\WINDOWS\system32\DRIVERS\e1e5132.sys
19:05:48.0593 2976 e1express - ok
19:05:48.0625 2976 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
19:05:48.0625 2976 EapHost - ok
19:05:48.0671 2976 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
19:05:48.0671 2976 ERSvc - ok
19:05:48.0718 2976 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:05:48.0734 2976 Eventlog - ok
19:05:48.0796 2976 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
19:05:48.0828 2976 EventSystem - ok
19:05:49.0046 2976 EvtEng (344aa81113481e615e366bc1c36dfe0c) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
19:05:49.0078 2976 EvtEng - ok
19:05:49.0140 2976 Fabs - ok
19:05:49.0203 2976 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:05:49.0218 2976 Fastfat - ok
19:05:49.0265 2976 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:05:49.0265 2976 FastUserSwitchingCompatibility - ok
19:05:49.0281 2976 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
19:05:49.0281 2976 Fdc - ok
19:05:49.0296 2976 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:05:49.0296 2976 Fips - ok
19:05:49.0640 2976 FirebirdServerMAGIXInstance (fff1130f7c9fa01d093a1edfc5cce8fc) C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
19:05:49.0875 2976 FirebirdServerMAGIXInstance - ok
19:05:50.0031 2976 FLEXnet Licensing Service (bb0667b0171b632b97ea759515476f07) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:05:50.0125 2976 FLEXnet Licensing Service - ok
19:05:50.0265 2976 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
19:05:50.0265 2976 Flpydisk - ok
19:05:50.0281 2976 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
19:05:50.0281 2976 FltMgr - ok
19:05:50.0390 2976 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:05:50.0406 2976 FontCache3.0.0.0 - ok
19:05:50.0421 2976 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:05:50.0421 2976 Fs_Rec - ok
19:05:50.0437 2976 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:05:50.0453 2976 Ftdisk - ok
19:05:50.0484 2976 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:05:50.0484 2976 Gpc - ok
19:05:50.0500 2976 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:05:50.0515 2976 HDAudBus - ok
19:05:50.0609 2976 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:05:50.0609 2976 helpsvc - ok
19:05:50.0625 2976 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
19:05:50.0640 2976 HidServ - ok
19:05:50.0656 2976 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:05:50.0656 2976 HidUsb - ok
19:05:50.0703 2976 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
19:05:50.0703 2976 hkmsvc - ok
19:05:50.0703 2976 hpn - ok
19:05:50.0750 2976 HSFHWAZL (0aaef566e6782957252fa79f566fbc0b) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
19:05:50.0765 2976 HSFHWAZL - ok
19:05:50.0906 2976 HSF_DPV (e472e0cb4e716cc34c0e045f2c196221) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
19:05:50.0953 2976 HSF_DPV - ok
19:05:51.0000 2976 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:05:51.0031 2976 HTTP - ok
19:05:51.0062 2976 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
19:05:51.0062 2976 HTTPFilter - ok
19:05:51.0078 2976 i2omgmt - ok
19:05:51.0078 2976 i2omp - ok
19:05:51.0093 2976 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:05:51.0093 2976 i8042prt - ok
19:05:51.0500 2976 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:05:51.0703 2976 ialm - ok
19:05:51.0890 2976 iastor (abfebc5f846c71afebd7f8f6ba740c03) C:\WINDOWS\system32\Drivers\iaStor.sys
19:05:51.0890 2976 iastor - ok
19:05:51.0937 2976 IBMPMDRV (ff2dbf3b183516eec87dad241ec50e7a) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
19:05:51.0937 2976 IBMPMDRV - ok
19:05:51.0953 2976 IBMPMSVC (41328443d34c1e4d680d9d2766b94354) C:\WINDOWS\system32\ibmpmsvc.exe
19:05:51.0953 2976 IBMPMSVC - ok
19:05:52.0093 2976 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
19:05:52.0093 2976 IDriverT - ok
19:05:52.0343 2976 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:05:52.0484 2976 idsvc - ok
19:05:52.0515 2976 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:05:52.0515 2976 Imapi - ok
19:05:52.0578 2976 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
19:05:52.0593 2976 ImapiService - ok
19:05:52.0593 2976 ini910u - ok
19:05:52.0593 2976 IntelIde - ok
19:05:52.0703 2976 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:05:52.0703 2976 intelppm - ok
19:05:52.0718 2976 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
19:05:52.0734 2976 Ip6Fw - ok
19:05:52.0750 2976 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:05:52.0750 2976 IpFilterDriver - ok
19:05:52.0750 2976 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:05:52.0765 2976 IpInIp - ok
19:05:52.0796 2976 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:05:52.0796 2976 IpNat - ok
19:05:52.0812 2976 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:05:52.0812 2976 IPSec - ok
19:05:52.0875 2976 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
19:05:52.0875 2976 irda - ok
19:05:52.0906 2976 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:05:52.0906 2976 IRENUM - ok
19:05:52.0937 2976 Irmon (49cc4533ce897cb2e93c1e84a818fde5) C:\WINDOWS\System32\irmon.dll
19:05:52.0937 2976 Irmon - ok
19:05:52.0968 2976 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:05:52.0984 2976 isapnp - ok
19:05:53.0093 2976 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe
19:05:53.0109 2976 JavaQuickStarterService - ok
19:05:53.0125 2976 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:05:53.0125 2976 Kbdclass - ok
19:05:53.0171 2976 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:05:53.0171 2976 kmixer - ok
19:05:53.0203 2976 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:05:53.0218 2976 KSecDD - ok
19:05:53.0250 2976 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
19:05:53.0265 2976 lanmanserver - ok
19:05:53.0312 2976 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
19:05:53.0328 2976 lanmanworkstation - ok
19:05:53.0328 2976 lbrtfdc - ok
19:05:53.0375 2976 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
19:05:53.0375 2976 LmHosts - ok
19:05:53.0421 2976 LVRS (c4fd8055f421a8e6f49259a0bf59c40d) C:\WINDOWS\system32\DRIVERS\lvrs.sys
19:05:53.0437 2976 LVRS - ok
19:05:53.0796 2976 LVUVC (bab6dba71defbc9d147afc15cdc9563f) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
19:05:53.0937 2976 LVUVC - ok
19:05:54.0078 2976 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\WINDOWS\system32\drivers\mbam.sys
19:05:54.0078 2976 MBAMProtector - ok
19:05:54.0203 2976 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:05:54.0250 2976 MBAMService - ok
19:05:54.0296 2976 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
19:05:54.0296 2976 mdmxsdk - ok
19:05:54.0328 2976 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
19:05:54.0328 2976 Messenger - ok
19:05:54.0359 2976 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:05:54.0359 2976 mnmdd - ok
19:05:54.0406 2976 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
19:05:54.0406 2976 mnmsrvc - ok
19:05:54.0437 2976 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:05:54.0453 2976 Modem - ok
19:05:54.0468 2976 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:05:54.0468 2976 Mouclass - ok
19:05:54.0515 2976 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:05:54.0515 2976 mouhid - ok
19:05:54.0531 2976 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:05:54.0531 2976 MountMgr - ok
19:05:54.0578 2976 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:05:54.0578 2976 MozillaMaintenance - ok
19:05:54.0578 2976 mraid35x - ok
19:05:54.0609 2976 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:05:54.0609 2976 MRxDAV - ok
19:05:54.0687 2976 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:05:54.0703 2976 MRxSmb - ok
19:05:54.0750 2976 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
19:05:54.0750 2976 MSDTC - ok
19:05:54.0765 2976 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:05:54.0765 2976 Msfs - ok
19:05:54.0781 2976 MSIServer - ok
19:05:54.0812 2976 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:05:54.0828 2976 MSKSSRV - ok
19:05:54.0843 2976 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:05:54.0843 2976 MSPCLOCK - ok
19:05:54.0843 2976 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:05:54.0843 2976 MSPQM - ok
19:05:54.0875 2976 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:05:54.0875 2976 mssmbios - ok
19:05:54.0906 2976 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:05:54.0921 2976 MSTEE - ok
19:05:54.0953 2976 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:05:54.0968 2976 Mup - ok
19:05:55.0000 2976 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:05:55.0000 2976 NABTSFEC - ok
19:05:55.0062 2976 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
19:05:55.0078 2976 napagent - ok
19:05:55.0109 2976 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:05:55.0125 2976 NDIS - ok
19:05:55.0125 2976 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:05:55.0125 2976 NdisIP - ok
19:05:55.0171 2976 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:05:55.0171 2976 NdisTapi - ok
19:05:55.0218 2976 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:05:55.0218 2976 Ndisuio - ok
19:05:55.0234 2976 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:05:55.0234 2976 NdisWan - ok
19:05:55.0265 2976 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:05:55.0265 2976 NDProxy - ok
19:05:55.0312 2976 Net Driver HPZ12 (51c6d8bfbd4ea5b62a1ba7f4469250d3) C:\WINDOWS\system32\HPZinw12.dll
19:05:55.0312 2976 Net Driver HPZ12 - ok
19:05:55.0343 2976 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:05:55.0359 2976 NetBIOS - ok
19:05:55.0375 2976 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:05:55.0375 2976 NetBT - ok
19:05:55.0421 2976 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:05:55.0421 2976 NetDDE - ok
19:05:55.0421 2976 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:05:55.0437 2976 NetDDEdsdm - ok
19:05:55.0468 2976 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:05:55.0468 2976 Netlogon - ok
19:05:55.0500 2976 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
19:05:55.0515 2976 Netman - ok
19:05:55.0640 2976 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:05:55.0640 2976 NetTcpPortSharing - ok
19:05:55.0812 2976 NETw4x32 (01f8a43ff0b77df0e115a7ed4bd76d68) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
19:05:55.0906 2976 NETw4x32 - ok
19:05:56.0046 2976 NetworkX (5ef7dd401771693245d46f4b0b69fe2b) C:\WINDOWS\system32\ckldrv.sys
19:05:56.0062 2976 NetworkX - ok
19:05:56.0109 2976 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
19:05:56.0125 2976 Nla - ok
19:05:56.0171 2976 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:05:56.0187 2976 Npfs - ok
19:05:56.0203 2976 NSCIRDA (2adc0ca9945c65284b3d19bc18765974) C:\WINDOWS\system32\DRIVERS\nscirda.sys
19:05:56.0203 2976 NSCIRDA - ok
19:05:56.0281 2976 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:05:56.0296 2976 Ntfs - ok
19:05:56.0328 2976 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:05:56.0343 2976 NtLmSsp - ok
19:05:56.0406 2976 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
19:05:56.0421 2976 NtmsSvc - ok
19:05:56.0453 2976 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:05:56.0453 2976 Null - ok
19:05:56.0484 2976 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:05:56.0500 2976 NwlnkFlt - ok
19:05:56.0500 2976 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:05:56.0500 2976 NwlnkFwd - ok
19:05:56.0828 2976 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:05:56.0843 2976 odserv - ok
19:05:56.0921 2976 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:05:56.0921 2976 ose - ok
19:05:56.0968 2976 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
19:05:56.0968 2976 Parport - ok
19:05:56.0984 2976 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:05:57.0000 2976 PartMgr - ok
19:05:57.0046 2976 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:05:57.0046 2976 ParVdm - ok
19:05:57.0078 2976 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:05:57.0093 2976 PCI - ok
19:05:57.0093 2976 PCIDump - ok
19:05:57.0093 2976 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
19:05:57.0093 2976 PCIIde - ok
19:05:57.0109 2976 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
19:05:57.0125 2976 Pcmcia - ok
19:05:57.0125 2976 PDCOMP - ok
19:05:57.0125 2976 PDFRAME - ok
19:05:57.0125 2976 PDRELI - ok
19:05:57.0140 2976 PDRFRAME - ok
19:05:57.0140 2976 perc2 - ok
19:05:57.0140 2976 perc2hib - ok
19:05:57.0218 2976 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:05:57.0234 2976 PlugPlay - ok
19:05:57.0265 2976 Pml Driver HPZ12 (79834aa2fbf9fe81eebb229024f6f7fc) C:\WINDOWS\system32\HPZipm12.dll
19:05:57.0281 2976 Pml Driver HPZ12 - ok
19:05:57.0296 2976 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:05:57.0312 2976 PolicyAgent - ok
19:05:57.0390 2976 Power Manager DBC Service (b66dda74ede3f40aabdaf86a4df4f413) C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
19:05:57.0406 2976 Power Manager DBC Service - ok
19:05:57.0437 2976 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:05:57.0437 2976 PptpMiniport - ok
19:05:57.0484 2976 PQNTDrv (4228630829c0e521c43d882a00533374) C:\WINDOWS\system32\drivers\PQNTDrv.sys
19:05:57.0484 2976 PQNTDrv - ok
19:05:57.0484 2976 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:05:57.0500 2976 ProtectedStorage - ok
19:05:57.0531 2976 psadd (651d3abc1d82d61b6cfb40cb947b3db3) C:\WINDOWS\system32\DRIVERS\psadd.sys
19:05:57.0531 2976 psadd - ok
19:05:57.0546 2976 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:05:57.0546 2976 PSched - ok
19:05:57.0593 2976 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys
19:05:57.0593 2976 PSI - ok
19:05:57.0609 2976 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:05:57.0625 2976 Ptilink - ok
19:05:57.0625 2976 ql1080 - ok
19:05:57.0625 2976 Ql10wnt - ok
19:05:57.0625 2976 ql12160 - ok
19:05:57.0640 2976 ql1240 - ok
19:05:57.0640 2976 ql1280 - ok
19:05:57.0656 2976 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:05:57.0671 2976 RasAcd - ok
19:05:57.0703 2976 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
19:05:57.0718 2976 RasAuto - ok
19:05:57.0734 2976 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
19:05:57.0750 2976 Rasirda - ok
19:05:57.0750 2976 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:05:57.0750 2976 Rasl2tp - ok
19:05:57.0781 2976 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
19:05:57.0781 2976 RasMan - ok
19:05:57.0796 2976 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:05:57.0796 2976 RasPppoe - ok
19:05:57.0796 2976 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:05:57.0812 2976 Raspti - ok
19:05:57.0843 2976 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:05:58.0109 2976 Rdbss - ok
19:05:58.0156 2976 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:05:58.0203 2976 RDPCDD - ok
19:05:58.0265 2976 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:05:58.0296 2976 rdpdr - ok
19:05:58.0359 2976 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
19:05:58.0359 2976 RDPWD - ok
19:05:58.0421 2976 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
19:05:58.0421 2976 RDSessMgr - ok
19:05:58.0453 2976 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:05:58.0453 2976 redbook - ok
19:05:58.0625 2976 RegSrvc (89cbf999fc5fcaf3c8b2c79b0594434f) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
19:05:58.0765 2976 RegSrvc - ok
19:05:58.0812 2976 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
19:05:58.0812 2976 RemoteAccess - ok
19:05:58.0843 2976 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
19:05:58.0859 2976 RemoteRegistry - ok
19:05:58.0906 2976 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
19:05:58.0906 2976 RpcLocator - ok
19:05:58.0937 2976 rpcnet (3297445bb9fd3e8363e7559010ed2ae7) C:\WINDOWS\system32\rpcnet.exe
19:05:58.0937 2976 rpcnet - ok
19:05:59.0015 2976 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:05:59.0015 2976 RpcSs - ok
19:05:59.0078 2976 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
19:05:59.0078 2976 RSVP - ok
19:05:59.0218 2976 S24EventMonitor (e118cf6bc4949d4a389026f15a9f3c95) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
19:05:59.0281 2976 S24EventMonitor - ok
19:05:59.0312 2976 s24trans (f275ee6061e444caa7137aefb2c27a03) C:\WINDOWS\system32\DRIVERS\s24trans.sys
19:05:59.0328 2976 s24trans - ok
19:05:59.0359 2976 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:05:59.0359 2976 SamSs - ok
19:05:59.0406 2976 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
19:05:59.0421 2976 SCardSvr - ok
19:05:59.0468 2976 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
19:05:59.0484 2976 Schedule - ok
19:05:59.0500 2976 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:05:59.0515 2976 Secdrv - ok
19:05:59.0531 2976 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:05:59.0531 2976 seclogon - ok
19:05:59.0750 2976 Secunia PSI Agent (1ce8490e8919ef5c72275952c202e749) C:\Program Files\Secunia\PSI\PSIA.exe
19:05:59.0812 2976 Secunia PSI Agent - ok
19:05:59.0875 2976 Secunia Update Agent (9337c7c45392a32cac5e59ddac0d0342) C:\Program Files\Secunia\PSI\sua.exe
19:05:59.0890 2976 Secunia Update Agent - ok
19:05:59.0953 2976 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:05:59.0953 2976 SENS - ok
19:06:00.0031 2976 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
19:06:00.0031 2976 Serial - ok
19:06:00.0062 2976 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:06:00.0078 2976 Sfloppy - ok
19:06:00.0109 2976 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:06:00.0125 2976 SharedAccess - ok
19:06:00.0156 2976 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:06:00.0171 2976 ShellHWDetection - ok
19:06:00.0218 2976 Shockprf (1310c5e81966e86b2ced7ae8ce3d74f1) C:\WINDOWS\system32\DRIVERS\Apsx86.sys
19:06:00.0218 2976 Shockprf - ok
19:06:00.0218 2976 Simbad - ok
19:06:00.0265 2976 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:06:00.0265 2976 SLIP - ok
19:06:00.0328 2976 snapman (ffd9b64db2cd7b74b766c3a8452a5816) C:\WINDOWS\system32\DRIVERS\snapman.sys
19:06:00.0343 2976 snapman - ok
19:06:00.0437 2976 Sony SCSI Helper Service (3bb48f7e33c2b76184ddf233000c09cd) C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe
19:06:00.0453 2976 Sony SCSI Helper Service - ok
19:06:00.0500 2976 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
19:06:00.0500 2976 SONYPVU1 - ok
19:06:00.0515 2976 Sparrow - ok
19:06:00.0562 2976 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:06:00.0562 2976 splitter - ok
19:06:00.0609 2976 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:06:00.0609 2976 Spooler - ok
19:06:00.0640 2976 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:06:00.0640 2976 sr - ok
19:06:00.0687 2976 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
19:06:00.0703 2976 srservice - ok
19:06:00.0812 2976 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:06:00.0843 2976 Srv - ok
19:06:00.0859 2976 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:06:00.0859 2976 SSDPSRV - ok
19:06:00.0890 2976 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:06:00.0921 2976 stisvc - ok
19:06:00.0953 2976 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:06:00.0953 2976 streamip - ok
19:06:01.0015 2976 SUService (b384a999c5326ba7bc940347a26fc0b9) C:\Program Files\Lenovo\System Update\SUService.exe
19:06:01.0015 2976 SUService - ok
19:06:01.0046 2976 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:06:01.0062 2976 swenum - ok
19:06:01.0093 2976 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:06:01.0109 2976 swmidi - ok
19:06:01.0156 2976 swmx01 (e04b2937dcddab8fe1ea413284ccabce) C:\WINDOWS\system32\DRIVERS\swmx01.sys
19:06:01.0156 2976 swmx01 - ok
19:06:01.0187 2976 SWNC5E01 (6afe9a256c21fb32f9047cde1f6f426a) C:\WINDOWS\system32\DRIVERS\SWNC5E01.sys
19:06:01.0187 2976 SWNC5E01 - ok
19:06:01.0203 2976 SwPrv - ok
19:06:01.0203 2976 symc810 - ok
19:06:01.0203 2976 symc8xx - ok
19:06:01.0218 2976 sym_hi - ok
19:06:01.0218 2976 sym_u3 - ok
19:06:01.0265 2976 SynTP (820d28f30ac01ce86860a35dcc7bfaab) C:\WINDOWS\system32\DRIVERS\SynTP.sys
19:06:01.0265 2976 SynTP - ok
19:06:01.0312 2976 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:06:01.0328 2976 sysaudio - ok
19:06:01.0359 2976 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:06:01.0375 2976 SysmonLog - ok
19:06:01.0406 2976 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:06:01.0437 2976 TapiSrv - ok
19:06:01.0500 2976 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:06:01.0515 2976 Tcpip - ok
19:06:01.0562 2976 TcUsb (72b9e77565da5fa564581976e000d29b) C:\WINDOWS\system32\Drivers\tcusb.sys
19:06:01.0562 2976 TcUsb - ok
19:06:01.0609 2976 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:06:01.0625 2976 TDPIPE - ok
19:06:01.0718 2976 tdrpman251 (3630f5b8181554deecfe2e4252bc4c4c) C:\WINDOWS\system32\DRIVERS\tdrpm251.sys
19:06:01.0781 2976 tdrpman251 - ok
19:06:01.0796 2976 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:06:01.0796 2976 TDTCP - ok
19:06:01.0828 2976 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:06:01.0843 2976 TermDD - ok
19:06:01.0859 2976 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:06:01.0890 2976 TermService - ok
19:06:01.0921 2976 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:06:01.0921 2976 Themes - ok
19:06:02.0062 2976 ThinkVantage Registry Monitor Service (9626746a9b120d2ed537dd8d76278405) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
19:06:02.0109 2976 ThinkVantage Registry Monitor Service - ok
19:06:02.0187 2976 timounter (c820bfc70feb25ec877c49e81cd477c1) C:\WINDOWS\system32\DRIVERS\timntr.sys
19:06:02.0234 2976 timounter - ok
19:06:02.0265 2976 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
19:06:02.0281 2976 TlntSvr - ok
19:06:02.0281 2976 TosIde - ok
19:06:02.0296 2976 TPDIGIMN (d7a29e343632e2fc5f7ebfc886f12675) C:\WINDOWS\system32\DRIVERS\ApsHM86.sys
19:06:02.0296 2976 TPDIGIMN - ok
19:06:02.0328 2976 TPHDEXLGSVC (51b679f627a43a25ef9444ad23bbff9a) C:\WINDOWS\system32\TPHDEXLG.exe
19:06:02.0343 2976 TPHDEXLGSVC - ok
19:06:02.0359 2976 TPHKDRV (8aef2188630f5ecd79ad9abba630630b) C:\WINDOWS\system32\DRIVERS\TPHKDRV.sys
19:06:02.0359 2976 TPHKDRV - ok
19:06:02.0406 2976 TpKmpSVC (dfb268ff0a6dcb9280015ff527f892ff) C:\WINDOWS\system32\TpKmpSVC.exe
19:06:02.0406 2976 TpKmpSVC - ok
19:06:02.0421 2976 TPPWRIF (44672de6cea9569c21c4b7a8d2560750) C:\WINDOWS\system32\drivers\Tppwrif.sys
19:06:02.0421 2976 TPPWRIF - ok
19:06:02.0468 2976 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:06:02.0484 2976 TrkWks - ok
19:06:02.0531 2976 Trufos (29c497fc09c655b7bafcfafb6e76b8eb) C:\WINDOWS\system32\DRIVERS\Trufos.sys
19:06:02.0546 2976 Trufos - ok
19:06:02.0750 2976 TVT Scheduler (e9ea448f1174be4052416b62263ea4ee) C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
19:06:02.0781 2976 TVT Scheduler - ok
19:06:03.0109 2976 TwoTrack (17687545f77a648af7f9f1064eb61191) C:\WINDOWS\system32\DRIVERS\TwoTrack.sys
19:06:03.0125 2976 TwoTrack - ok
19:06:03.0125 2976 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:06:03.0140 2976 Udfs - ok
19:06:03.0140 2976 ultra - ok
19:06:03.0234 2976 UMVPFSrv (5b27bac376642259825a6131879d760b) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
19:06:03.0250 2976 UMVPFSrv - ok
19:06:03.0250 2976 UnlockerDriver5 - ok
19:06:03.0281 2976 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:06:03.0312 2976 Update - ok
19:06:03.0453 2976 Update Server (97af0bfac3ab8343e37e19c551e7d9fa) C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe
19:06:03.0453 2976 Update Server - ok
19:06:03.0515 2976 Updatesrv - ok
19:06:03.0578 2976 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:06:03.0593 2976 upnphost - ok
19:06:03.0625 2976 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:06:03.0625 2976 UPS - ok
19:06:03.0671 2976 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
19:06:03.0671 2976 usbaudio - ok
19:06:03.0687 2976 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:06:03.0703 2976 usbccgp - ok
19:06:03.0750 2976 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:06:03.0750 2976 usbehci - ok
19:06:03.0765 2976 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:06:03.0765 2976 usbhub - ok
19:06:03.0812 2976 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:06:03.0828 2976 usbprint - ok
19:06:03.0859 2976 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:06:03.0859 2976 usbscan - ok
19:06:03.0906 2976 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:06:03.0921 2976 USBSTOR - ok
19:06:03.0937 2976 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:06:03.0953 2976 usbuhci - ok
19:06:03.0984 2976 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
19:06:04.0015 2976 usbvideo - ok
19:06:04.0234 2976 uvnc_service (52bcdda1f4668d077efff78594fa296e) C:\Documents and Settings\R60\Local Settings\Application Data\CrossLoop\winvnc.exe
19:06:04.0343 2976 uvnc_service - ok
19:06:04.0468 2976 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:06:04.0468 2976 VgaSave - ok
19:06:04.0468 2976 ViaIde - ok
19:06:04.0484 2976 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:06:04.0484 2976 VolSnap - ok
19:06:04.0531 2976 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:06:04.0546 2976 VSS - ok
19:06:04.0640 2976 VSSERV - ok
19:06:04.0843 2976 VX6000 (61fc38a2e136a2e5944e7ca286abaaae) C:\WINDOWS\system32\DRIVERS\VX6000Xp.sys
19:06:04.0937 2976 VX6000 - ok
19:06:05.0046 2976 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:06:05.0062 2976 W32Time - ok
19:06:05.0109 2976 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:06:05.0109 2976 Wanarp - ok
19:06:05.0109 2976 WDICA - ok
19:06:05.0156 2976 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:06:05.0156 2976 wdmaud - ok
19:06:05.0171 2976 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:06:05.0187 2976 WebClient - ok
19:06:05.0265 2976 winachsf (0e666ac2766f2fd860cc03f405a2ace1) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
19:06:05.0312 2976 winachsf - ok
19:06:05.0406 2976 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:06:05.0406 2976 winmgmt - ok
19:06:05.0453 2976 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
19:06:05.0453 2976 WmdmPmSN - ok
19:06:05.0531 2976 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
19:06:05.0578 2976 Wmi - ok
19:06:05.0625 2976 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:06:05.0640 2976 WmiApSrv - ok
19:06:05.0812 2976 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:06:05.0875 2976 WMPNetworkSvc - ok
19:06:05.0906 2976 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:06:05.0906 2976 WpdUsb - ok
19:06:06.0187 2976 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:06:06.0343 2976 WPFFontCache_v0400 - ok
19:06:06.0406 2976 WsAudioDevice_383 (85ece26f326c2d07ba77a60343468272) C:\WINDOWS\system32\drivers\WsAudioDevice_383.sys
19:06:06.0406 2976 WsAudioDevice_383 - ok
19:06:06.0437 2976 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
19:06:06.0453 2976 wscsvc - ok
19:06:06.0593 2976 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:06:06.0593 2976 WSTCODEC - ok
19:06:06.0625 2976 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:06:06.0625 2976 wuauserv - ok
19:06:06.0687 2976 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:06:06.0703 2976 WudfPf - ok
19:06:06.0734 2976 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:06:06.0734 2976 WudfRd - ok
19:06:06.0765 2976 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:06:06.0765 2976 WudfSvc - ok
19:06:06.0843 2976 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:06:06.0906 2976 WZCSVC - ok
19:06:06.0953 2976 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:06:06.0968 2976 xmlprov - ok
19:06:06.0984 2976 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:06:07.0375 2976 \Device\Harddisk0\DR0 - ok
19:06:07.0375 2976 Boot (0x1200) (a572e05af80696ddc367a7af2e7b2693) \Device\Harddisk0\DR0\Partition0
19:06:07.0375 2976 \Device\Harddisk0\DR0\Partition0 - ok
19:06:07.0375 2976 ============================================================
19:06:07.0375 2976 Scan finished
19:06:07.0375 2976 ============================================================
19:06:07.0375 0896 Detected object count: 0
19:06:07.0375 0896 Actual detected object count: 0
0
Réponse 10 / 28
Utilisateur anonyme
26 avril 2012 à 01:27
fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.


▶ Télécharge ici :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0
Réponse 11 / 28
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
26 avril 2012 à 08:20
Tel que demandé, j'ai respecté scrupuleusement vos consignes. J'ai lancé Malwarebyte et je suis allée me coucher... PS: j'utilise Malwarebytes depuis plusieurs années donc j'ai la version Pro et je fais la mise à jour régulièrement.

Voici le rapport:

Malwarebytes Anti-Malware (PRO) 1.61.0.1400
www.malwarebytes.org

Version de la base de données: v2012.04.25.09

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
R60 :: T60-4E1B29DCC68 [administrateur]

Protection: Désactivé

2012-04-25 19:34:49
mbam-log-2012-04-25 (19-34-49).txt

Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 489393
Temps écoulé: 4 heure(s), 34 minute(s), 54 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 0
(Aucun élément nuisible détecté)

(fin)
0
Réponse 12 / 28
Utilisateur anonyme
26 avril 2012 à 11:44
re

ouaip de la bombe ce logiciel ^^

encore des soucis ?
0
Réponse 13 / 28
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
26 avril 2012 à 13:02
Disons qu'il y a des petits trucs étranges: je dois cliquer plusieurs fois avant de fermer une fenêtre. Ou je jette un message et il en place deux dans le supprimer... bon, je vais surveiller...

Merci pour l'aide, je reviens si jamais ça s'aggrave. En fin de semaine dernière, malwarebytes-anti-malware avait détecté un trojan.BHO mais j'ai bien supprimé. J'espère qu'il ne reste aucune trace.

Encore merci g3n-h@ckm@n et je vous souhaite une excellente journée!
0
Réponse 14 / 28
Utilisateur anonyme
26 avril 2012 à 13:10
Ou je jette un message et il en place deux dans le supprimer...

precise ca je comprends pas bien

.....

tu aurais pas utilisé le clavier virtuel et laissé la touche ctrl enfoncée sur celui-ci ?
0
Réponse 15 / 28
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
26 avril 2012 à 23:53
Effectivement, en me relisant, c'est pas évident de comprendre.

J'ai outlook express. Lorsque je sélectionne un message pour l'envoyer dans la corbeille, il supprime le message qui est directement sous celui que je veux supprimer.

Je n'utilise jamais le clavier virtuel...

Alors pour résumer, selon l'analyse avec les divers outils, mon système semble ''clean''... oufff je suis rassurée.
0
Réponse 16 / 28
Utilisateur anonyme
27 avril 2012 à 00:44
▶ Téléchargez UsbFix (créé par El Desaparecido) sur votre Bureau.

▶ Si votre antivirus affiche une alerte, ignorez-la et désactivez l'antivirus temporairement.
Branchez toutes vos sources de données externes à votre PC (clé USB, disque dur externe, etc...) sans les ouvrir.
▶ Double cliquez sur UsbFix.exe.

▶ Cliquez sur Suppression.
▶ Laissez travailler l'outil.

▶ À la fin du scan, un rapport va s'afficher, postez-le dans votre prochaine réponse sur le forum.

▶ Le rapport est aussi sauvegardé à la racine du disque système ( C:\UsbFix.txt ).
Tutoriel vidéo




0
Réponse 17 / 28
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
27 avril 2012 à 01:51
Je n'ai qu'une clé vide mais je l'ai quand-même branché sur le PC.

Je n'ai pas de HDD externe.

Voici le rapport:

############################## | UsbFix V 7.087 | [Deletion]

User: R60 (Administrator) # T60-4E1B29DCC68
Updated 05/04/2012 by El Desaparecido
Started at 19:32:16 | 26/04/2012

Website: https://www.sosvirus.net/
Suspicious file ? : http://eldesaparecido.com/upload.html
Contact: contact@eldesaparecido.com

PC: LENOVO (945796U) (X86-based PC) # Notebook
CPU: Intel(R) Core(TM) Duo CPU T2400 @ 1.83GHz (1828)
RAM -> [ Total : 1014 | Free : 477 ]
BIOS: Phoenix FirstBIOS(tm) Notebook Pro Version 2.0 for ThinkPad
BOOT: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [ (!) Disabled ]
WU: Windows Update Service [ Enabled ]
FW: Windows FireWall Service [ Enabled ]

C:\ (%systemdrive%) -> Fixed drive # 149 Gb (104 Mb free - 70%) [] # NTFS
D:\ -> CD-ROM
E:\ -> Removable drive # 15 Gb (15 Mb free - 100%) [KINGSTON] # FAT32

################## | Active Processes |

C:\WINDOWS\System32\smss.exe (1480)
C:\WINDOWS\system32\winlogon.exe (1552)
C:\WINDOWS\system32\services.exe (1596)
C:\WINDOWS\system32\lsass.exe (1608)
C:\WINDOWS\system32\ibmpmsvc.exe (1760)
C:\WINDOWS\system32\svchost.exe (1788)
C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe (1908)
C:\WINDOWS\System32\svchost.exe (1964)
C:\WINDOWS\system32\svchost.exe (420)
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe (536)
C:\WINDOWS\system32\spoolsv.exe (1232)
C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (1276)
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (1372)
C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (1384)
C:\Documents and Settings\R60\Local Settings\Application Data\CrossLoop\CrossLoopService.exe (1448)
C:\WINDOWS\system32\crypserv.exe (1508)
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (328)
C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (388)
C:\Program Files\Java\jre6\bin\jqs.exe (516)
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (672)
C:\WINDOWS\System32\svchost.exe (848)
C:\WINDOWS\System32\svchost.exe (940)
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (992)
C:\WINDOWS\system32\rpcnet.exe (1024)
C:\Program Files\Secunia\PSI\PSIA.exe (1056)
C:\WINDOWS\system32\svchost.exe (1164)
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe (2092)
C:\WINDOWS\System32\TPHDEXLG.exe (2224)
C:\WINDOWS\system32\TpKmpSVC.exe (2308)
C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe (2484)
C:\WINDOWS\Explorer.EXE (2532)
C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe (2752)
C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE (2924)
C:\Program Files\Lenovo\System Update\SUService.exe (2992)
C:\WINDOWS\system32\wuauclt.exe (3316)
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe (2140)
C:\WINDOWS\system32\TpShocks.exe (2184)
C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe (2264)
C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe (2320)
C:\WINDOWS\system32\rundll32.exe (2340)
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (2852)
C:\WINDOWS\system32\hkcmd.exe (3184)
C:\WINDOWS\system32\igfxpers.exe (1184)
C:\WINDOWS\system32\igfxsrvc.exe (3424)
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (3448)
C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (3488)
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe (3604)
C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe (3724)
C:\Program Files\Common Files\Java\Java Update\jusched.exe (3784)
C:\Program Files\Lenovo\Zoom\TpScrex.exe (3800)
C:\WINDOWS\system32\ctfmon.exe (3816)
C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe (2404)
C:\WINDOWS\System32\svchost.exe (3508)
C:\Program Files\Mozilla Firefox\firefox.exe (2644)
C:\Program Files\Secunia\PSI\sua.exe (2868)
C:\Program Files\Mozilla Firefox\plugin-container.exe (3416)
C:\UsbFix\Go.exe (1896)

################## | Stopped processes |

Stopped! C:\WINDOWS\system32\ibmpmsvc.exe (1760)
Stopped! C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe (1908)
Stopped! C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe (536)
Stopped! C:\WINDOWS\system32\spoolsv.exe (1232)
Stopped! C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (1276)
Stopped! C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (1372)
Stopped! C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (1384)
Stopped! C:\Documents and Settings\R60\Local Settings\Application Data\CrossLoop\CrossLoopService.exe (1448)
Stopped! C:\WINDOWS\system32\crypserv.exe (1508)
Stopped! C:\Program Files\Intel\Wireless\Bin\EvtEng.exe (328)
Stopped! C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (388)
Stopped! C:\Program Files\Java\jre6\bin\jqs.exe (516)
Stopped! C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (672)
Stopped! C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe (992)
Stopped! C:\WINDOWS\system32\rpcnet.exe (1024)
Stopped! C:\Program Files\Secunia\PSI\PSIA.exe (1056)
Stopped! C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe (2092)
Stopped! C:\WINDOWS\System32\TPHDEXLG.exe (2224)
Stopped! C:\WINDOWS\system32\TpKmpSVC.exe (2308)
Stopped! C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe (2484)
Stopped! C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe (2752)
Stopped! C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE (2924)
Stopped! C:\Program Files\Lenovo\System Update\SUService.exe (2992)
Stopped! C:\WINDOWS\system32\wuauclt.exe (3316)
Stopped! C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe (2140)
Stopped! C:\WINDOWS\system32\TpShocks.exe (2184)
Stopped! C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe (2264)
Stopped! C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe (2320)
Stopped! C:\WINDOWS\system32\rundll32.exe (2340)
Stopped! C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (2852)
Stopped! C:\WINDOWS\system32\hkcmd.exe (3184)
Stopped! C:\WINDOWS\system32\igfxpers.exe (1184)
Stopped! C:\WINDOWS\system32\igfxsrvc.exe (3424)
Stopped! C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (3448)
Stopped! C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (3488)
Stopped! C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe (3604)
Stopped! C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe (3724)
Stopped! C:\Program Files\Common Files\Java\Java Update\jusched.exe (3784)
Stopped! C:\Program Files\Lenovo\Zoom\TpScrex.exe (3800)
Stopped! C:\WINDOWS\system32\ctfmon.exe (3816)
Stopped! C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe (2404)
Stopped! C:\Program Files\Mozilla Firefox\firefox.exe (2644)
Stopped! C:\Program Files\Secunia\PSI\sua.exe (2868)
Stopped! C:\Program Files\Mozilla Firefox\plugin-container.exe (3416)
Stopped! C:\Program Files\BitDefender\BitDefender 2011\downloader.exe (3876)

################## | Files # Infected Folders |

Deleted ! C:\Documents and Settings\R60\Application Data\mirc722.exe
Deleted ! C:\Recycler\S-1-5-21-1275210071-1993962763-725345543-1004

(!) Temporary files deleted.

################## | Registry |

Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr
Deleted ! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoRecentDocsHistory

################## | Mountpoints2 |

Deleted ! HKCU\.\.\.\.\Explorer\MountPoints2\{3bab6002-e2e8-11df-8a06-001b771c1b0e}

################## | Listing |

[05/12/2011 - 08:10:24 | D ] C:\2f981bfcf85e4a27c09da67c39e99881
[11/04/2012 - 19:35:27 | D ] C:\49e12692dab61730d5c1
[26/11/2008 - 13:44:54 | N | 0] C:\AUTOEXEC.BAT
[26/04/2012 - 19:26:18 | N | 537846] C:\bdlog.txt
[16/10/2011 - 17:11:02 | N | 211] C:\boot.ini
[18/09/2009 - 12:45:38 | D ] C:\c1eef27f92c9d2c3d8cd
[01/04/2012 - 22:48:58 | D ] C:\Config.Msi
[26/11/2008 - 13:44:54 | N | 0] C:\CONFIG.SYS
[06/07/2011 - 12:08:43 | N | 921624] C:\DC6810xp-001.raw
[27/11/2011 - 10:59:54 | D ] C:\Documents and Settings
[21/04/2012 - 14:03:38 | D ] C:\Downloads
[27/11/2008 - 19:05:52 | D ] C:\DRIVERS
[19/06/2011 - 19:10:35 | N | 0] C:\FileRecovery.log
[26/11/2008 - 13:44:54 | N | 0] C:\IO.SYS
[14/01/2012 - 23:35:52 | D ] C:\LexmarkX1100
[10/03/2012 - 21:24:59 | D ] C:\Log
[26/04/2012 - 07:04:40 | N | 43115] C:\Log.txt
[16/10/2011 - 15:17:37 | D ] C:\Lxk1100
[15/10/2011 - 19:41:56 | N | 90549] C:\MP4debug.log
[26/11/2008 - 13:44:54 | N | 0] C:\MSDOS.SYS
[01/10/2009 - 20:15:29 | RHD ] C:\MSOCache
[28/02/2006 - 08:00:00 | N | 47564] C:\NTDETECT.COM
[26/11/2008 - 14:08:54 | N | 250048] C:\ntldr
[26/04/2012 - 19:27:06 | ASH | 2145386496] C:\pagefile.sys
[25/04/2012 - 07:10:32 | D ] C:\Program Files
[26/04/2012 - 19:40:51 | SHD ] C:\RECYCLER
[15/09/2010 - 19:59:56 | D ] C:\spoolerlogs
[23/10/2011 - 19:09:42 | SHD ] C:\System Volume Information
[26/04/2012 - 19:40:51 | D ] C:\UsbFix
[26/04/2012 - 19:44:16 | A | 7357] C:\UsbFix.txt
[23/04/2012 - 20:24:12 | D ] C:\VundoFix Backups
[26/04/2012 - 06:43:55 | D ] C:\WINDOWS
[26/11/2010 - 10:56:54 | D ] C:\WinSetupFromUSB

################## | Vaccin |

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

################## | Upload |

Please send the file: C:\UsbFix_Upload_Me_T60-4E1B29DCC68.zip
http://eldesaparecido.com/upload.php
Thank you for your contribution.

################## | E.O.F |
0
Réponse 18 / 28
Utilisateur anonyme
27 avril 2012 à 01:54
toujours des soucis ?
0
Réponse 19 / 28
gijane Messages postés 31 Date d'inscription mardi 6 mars 2007 Statut Membre Dernière intervention 29 juin 2014
Modifié par gijane le 27/04/2012 à 02:06
Pour l'instant, ça va bien... je viens de tester outlook... ça fonctionne bien...

Doux bonheur!!!

Mais d'où provenait le problème?
0
Réponse 20 / 28
Utilisateur anonyme
27 avril 2012 à 02:09
ben on a desinfecté lol ^^

======

d'ou exactement je sais pas mais en tout cas on peut faire le menage :)

^^

https://gen-hackman.kanak.fr/
0