Sujet Précédent Sujet Suivant

TR/ATRAPS.Gen et TR/ATRAPS.Gen2 sur mon PC

Résolu/Fermé
A_mi_r - 3 août 2012 à 23:10
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 - 4 août 2012 à 21:33
Bonjour,

Depuis qq minutes, mon PC est infecté par les trojans TR/ATRAPS.Gen et TR/ATRAPS.Gen2. Avec Avira, impossible de les supprimer ou de les mettre en quarantaine. Donc j'ai lancé Malwarebytes, il les a trouvé et j'ai supprimé.
Je souhaite savoir si mon pc est complétement désinfecté?

Merci d'avance:)


Je vous joint mon rapport de Hijack:

En lien : http://cjoint.com/?3HdxjQZvXBO


et en direct :

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q306&bd=pavilion&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Bing Bar Helper - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - C:\Program Files\Microsoft\BingBar\7.1.361.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [TVPService] "C:\Program Files\HP\TVPlay\TVPService.exe"
O4 - HKLM\..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.fr/fr.special-uninstallation-feedback-appf?lic=OQBBAFYARgBSAEUARQAtAFYAMgBHADMASwAtADgANwBXAFUAVQAtADIAVABWAEgAQQAtAFgANgBEAEYAOAAtAEwANgBQAEEATgA"&"inst=NwA3AC0ANAAxADMANAA1ADUAOAA3ADgALQBCAEEAUgA5AEcAKwAxAC0ARgBMACsAOQAtAEYAOQBNADYAKwAxAC0AWABPADMANgArADEALQBGADkATQA3AEMAKwA1AA"&"prod=90"&"ver=9.0.894
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [HP Photosmart 6510 series (NET)] "C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN18I3110M05QB:NW" -scfn "HP Photosmart 6510 series (NET)" -AutoStart 1
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O9 - Extra 'Tools' menuitem: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1274179363988
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Media Library Service(HP TVPlay) - Cyberlink - C:\Program Files\HP\TVPlay\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Hotspot Shield Service (hshld) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe
O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files\Hotspot Shield\bin\hsswd.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: CyberLink Background Capture Service (CBCS HP TVPlay) (TVPCapSvc) - Unknown owner - C:\Program Files\HP\TVPlay\Kernel\TV\TVPCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS HP TVPlay) (TVPSched) - Unknown owner - C:\Program Files\HP\TVPlay\Kernel\TV\TVPSched.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
A voir également:

16 réponses

Réponse 1 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
3 août 2012 à 23:18
hello

décidement c'est à la mode en ce moment

Attention, avant de commencer, lit attentivement la procédure, et imprime la

Aide à l'utilisation
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix



Télécharge ComboFix de sUBs que tu renommes ton prénom.exe sur ton Bureau :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

/!\ Déconnecte-toi du net et <gras>DESACTIVES TOUTES LES DEFENSES, antivirus et antispyware y compris /!\

---> Double-clique sur ComboFix.exe
Un "pop-up" va apparaître qui dit que ComboFix est utilisé à vos risques et avec aucune garantie... Clique sur oui pour accepter

SURTOUT INSTALLES LA CONSOLE DE RECUPERATION
(si il te propose de l'installer remets internet)

---> Mets-le en langue française F
Tape sur la touche 1 (Yes) pour démarrer le scan.

Ne touche à rien(souris, clavier) tant que le scan n'est pas terminé, car tu risques de planter ton PC

En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire.

Une fois le scan achevé, un rapport va s'afficher : Poste son contenu

/!\ Réactive la protection en temps réel de ton antivirus et de ton antispyware avant de te reconnecter à Internet. /!\

Note : Le rapport se trouve également là : C:\ComboFix.txt



0
Utilisateur anonyme
3 août 2012 à 23:28
:(
0
Réponse 2 / 16
A_mi_r Messages postés 4 Date d'inscription vendredi 3 août 2012 Statut Membre Dernière intervention 4 août 2012
3 août 2012 à 23:53
bonsoir Merci pour ton aide,

je viens de faire ce que tu as dit:

voici le rapport:

lien : https://www.cjoint.com/?3HdxZssbdoM

ou

ComboFix 12-07-31.06 - Amir 03/08/2012 23:38:28.1.2 - x86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.2046.1191 [GMT 2:00]
Lancé depuis: c:\documents and settings\Amir Hamraz.PC835617709412\Bureau\amir.exe.exe
AV: AntiVir Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Amir Hamraz.PC835617709412\Local Settings\Application Data\{8c4329e3-a20b-163a-4fff-4f1e3e67179f}
c:\documents and settings\Amir Hamraz.PC835617709412\Local Settings\Application Data\{8c4329e3-a20b-163a-4fff-4f1e3e67179f}\@
c:\documents and settings\Amir Hamraz.PC835617709412\Local Settings\Application Data\{8c4329e3-a20b-163a-4fff-4f1e3e67179f}\n
c:\windows\Installer\{8c4329e3-a20b-163a-4fff-4f1e3e67179f}
c:\windows\Installer\{8c4329e3-a20b-163a-4fff-4f1e3e67179f}\@
c:\windows\system32\SET260.tmp
c:\windows\system32\SET265.tmp
c:\windows\system32\SET26C.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-07-03 au 2012-08-03 ))))))))))))))))))))))))))))))))))))
.
.
2012-08-03 21:05 . 2012-08-03 21:05 388096 ----a-r- c:\documents and settings\Amir Hamraz.PC835617709412\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-08-03 21:05 . 2012-08-03 21:05 -------- d-----w- C:\Trend Micro
2012-07-05 20:44 . 2012-07-20 12:40 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-07-05 20:44 . 2012-07-20 12:40 113120 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice.exe
2012-07-05 20:44 . 2012-07-20 12:40 157608 ----a-w- c:\program files\Mozilla Firefox\maintenanceservice_installer.exe
2012-07-05 20:44 . 2012-07-05 20:44 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2012-07-05 20:44 . 2012-07-05 20:44 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-01 21:54 . 2012-04-02 06:57 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-01 21:54 . 2011-05-24 08:01 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-03 11:46 . 2010-05-20 08:50 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-13 13:55 . 2004-08-05 21:00 1866240 ----a-w- c:\windows\system32\win32k.sys
2012-06-05 15:50 . 2008-04-14 02:33 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:50 . 2004-08-05 21:00 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2004-08-05 21:00 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2010-05-18 10:43 16408 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2004-08-05 21:00 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2004-08-05 21:00 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2004-08-05 21:00 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2010-05-18 10:43 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2004-08-05 21:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2004-08-05 21:00 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2004-08-05 21:00 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2010-05-18 10:43 19480 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2010-05-18 10:43 16408 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2004-08-05 21:00 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2010-05-18 10:43 25112 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2004-08-05 21:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:18 . 2010-06-22 06:48 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2010-06-22 06:48 214256 ----a-w- c:\windows\system32\muweb.dll
2012-06-02 13:18 . 2010-06-22 06:48 18672 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-05-31 13:22 . 2004-08-05 21:00 606208 ----a-w- c:\windows\system32\crypt32.dll
2012-05-16 15:06 . 2004-08-05 21:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-05-11 14:40 . 2004-08-05 21:00 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-05-11 14:40 . 2004-08-05 21:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-05-11 11:38 . 2004-08-05 21:00 385024 ----a-w- c:\windows\system32\html.iec
2012-07-20 12:40 . 2012-01-08 17:48 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]
2012-02-10 09:28 1307928 ----a-w- c:\program files\Microsoft\BingBar\7.1.361.0\BingExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-01-24 39408]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2012-01-23 247728]
"HP Photosmart 6510 series (NET)"="c:\program files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe" [2011-05-25 1801064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2006-02-14 454656]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-04-15 7561216]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-04-15 86016]
"nwiz"="nwiz.exe" [2006-04-15 1519616]
"High Definition Audio Property Page Shortcut"="CHDAudPropShortcut.exe" [2006-04-18 61952]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-03-04 761948]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2006-04-11 102400]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-03-07 131072]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2006-02-22 40960]
"RecGuard"="c:\windows\SMINST\RecGuard.exe" [2005-10-11 1187840]
"TVPService"="c:\program files\HP\TVPlay\TVPService.exe" [2006-07-19 135168]
"Babylon Client"="c:\program files\Babylon\Babylon-Pro\Babylon.exe" [2009-06-07 4025744]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-02-04 281768]
"APSDaemon"="c:\program files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2011-10-24 421888]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2011-03-24 49208]
"SunJavaUpdateSched"="c:\program files\Fichiers communs\Java\Java Update\jusched.exe" [2012-01-18 254696]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]
"Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.fr/fr.special-uninstallation-feedback-appf?lic=OQBBAFYARgBSAEUARQAtAFYAMgBHADMASwAtADgANwBXAFUAVQAtADIAVABWAEgAQQAtAFgANgBEAEYAOAAtAEwANgBQAEEATgA&inst=NwA3AC0ANAAxADMANAA1ADUAOAA3ADgALQBCAEEAUgA5AEcAKwAxAC0ARgBMACsAOQAtAEYAOQBNADYAKwAxAC0AWABPADMANgArADEALQBGADkATQA3AEMAKwA1AA&prod=90&ver=9.0.894" [?]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\
Démarrage rapide de HP Photosmart Premier.lnk - c:\program files\Hp\Digital Imaging\bin\hpqthb08.exe [2005-9-24 73728]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"wuauserv"=2 (0x2)
.
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [11/04/2011 20:17 218688]
R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [29/03/2011 21:09 136360]
R2 CyberLink Media Library Service(HP TVPlay);CyberLink Media Library Service(HP TVPlay);c:\program files\Hp\TVPlay\Kernel\CLML_NTService\CLMLServer.exe [22/05/2010 21:15 1073152]
R2 hshld;Hotspot Shield Service;c:\program files\Hotspot Shield\bin\openvpnas.exe [11/04/2012 01:59 542552]
R2 HssWd;Hotspot Shield Monitoring Service;c:\program files\Hotspot Shield\bin\hsswd.exe -product HSS --> c:\program files\Hotspot Shield\bin\hsswd.exe -product HSS [?]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [23/01/2012 06:43 92592]
R2 TVPCapSvc;CyberLink Background Capture Service (CBCS HP TVPlay);c:\program files\Hp\TVPlay\Kernel\TV\TVPCapSvc.exe [22/05/2010 21:15 258147]
R2 TVPSched;CyberLink Task Scheduler (CTS HP TVPlay);c:\program files\Hp\TVPlay\Kernel\TV\TVPSched.exe [22/05/2010 21:15 114785]
R3 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\7.1.361.0\SeaPort.EXE [10/02/2012 11:28 240408]
S2 BBSvc;BingBar Service;c:\program files\Microsoft\BingBar\7.1.361.0\BBSvc.EXE [10/02/2012 11:28 193816]
S2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [24/01/2010 03:46 135664]
S3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [24/01/2010 03:46 135664]
S3 MODBDA2;DiBcom MOD3000 TV receiver;c:\windows\system32\drivers\modbda2.sys [04/06/2005 01:56 33024]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [05/07/2012 22:44 113120]
.
Contenu du dossier 'Tâches planifiées'
.
2012-05-07 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 15:57]
.
2012-05-28 c:\windows\Tasks\At1.job
- c:\program files\Hp\HP Photosmart 6510 series\Bin\HPCustPartic.exe [2011-05-25 16:13]
.
2012-08-03 c:\windows\Tasks\At2.job
- c:\program files\Hp\HP Photosmart 6510 series\Bin\HPCustPartic.exe [2011-05-25 16:13]
.
2012-07-31 c:\windows\Tasks\At3.job
- c:\program files\Hp\HP Photosmart 6510 series\Bin\HPCustPartic.exe [2011-05-25 16:13]
.
2012-08-02 c:\windows\Tasks\At4.job
- c:\program files\Hp\HP Photosmart 6510 series\Bin\HPCustPartic.exe [2011-05-25 16:13]
.
2012-08-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-24 01:46]
.
2012-08-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-24 01:46]
.
2012-08-03 c:\windows\Tasks\HP Photo Creations Messager.job
- c:\documents and settings\All Users\Application Data\HP Photo Creations\MessageCheck.exe [2011-02-15 10:11]
.
.
------- Examen supplémentaire -------
.
mStart Page = hxxp://fr.yahoo.com
uInternet Settings,ProxyOverride = *.local
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
FF - ProfilePath - c:\documents and settings\Amir Hamraz.PC835617709412\Application Data\Mozilla\Firefox\Profiles\b5i70j7t.default\
FF - prefs.js: browser.search.defaulturl - hxxp://fr.search.yahoo.com/search?fr=ffsp1&p=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://fr.yahoo.com
FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?fr=ffds1&p=
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
.
- - - - ORPHELINS SUPPRIMES - - - -
.
WebBrowser-{EFEED92A-A33D-4873-BA8F-32BAA631E54D} - (no file)
AddRemove-HijackThis - c:\documents and settings\Amir Hamraz.PC835617709412\Bureau\HijackThis.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-03 23:45
Windows 5.1.2600 Service Pack 3 NTFS
.
Recherche de processus cachés ...
.
Recherche d'éléments en démarrage automatique cachés ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe?????? ???@???????????????@? ????d??????(?@???????@
.
Recherche de fichiers cachés ...
.
.
c:\docume~1\AMIRHA~1.PC8\LOCALS~1\Temp\catchme.dll 53248 bytes executable
.
Scan terminé avec succès
Fichiers cachés: 1
.
**************************************************************************
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600
.
CreateFile("\\.\PHYSICALDRIVE0"): Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
device: opened successfully
user: error reading MBR
kernel: MBR read successfully
user != kernel MBR !!!
.
**************************************************************************
.
Heure de fin: 2012-08-03 23:48:16
0
Réponse 3 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
4 août 2012 à 00:52
Télécharge Reload_TDSSKiller sur le bureau
https://forum.malekal.com/viewtopic.php?t=28637&start=

Lance le

choisis : lancer le nettoyage

TDSSKiller va s'ouvrir , clique sur "Start Scan"

Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas

une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer

sinon , ferme tdssKiller et le rapport s'affichera sur le bureau


Copie/Colle son contenu dans ta prochaine réponse.
0
Réponse 4 / 16
A_mi_r Messages postés 4 Date d'inscription vendredi 3 août 2012 Statut Membre Dernière intervention 4 août 2012
4 août 2012 à 01:32
merci pour ton aide,

j'ai lancé et voici le rapport :



01:24:29.0765 2220 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
01:24:29.0843 2220 ============================================================
01:24:29.0843 2220 Current date / time: 2012/08/04 01:24:29.0843
01:24:29.0843 2220 SystemInfo:
01:24:29.0843 2220
01:24:29.0843 2220 OS Version: 5.1.2600 ServicePack: 3.0
01:24:29.0843 2220 Product type: Workstation
01:24:29.0843 2220 ComputerName: PC835617709412
01:24:29.0843 2220 UserName: Amir Hamraz
01:24:29.0843 2220 Windows directory: C:\WINDOWS
01:24:29.0843 2220 System windows directory: C:\WINDOWS
01:24:29.0843 2220 Processor architecture: Intel x86
01:24:29.0843 2220 Number of processors: 2
01:24:29.0843 2220 Page size: 0x1000
01:24:29.0843 2220 Boot type: Normal boot
01:24:29.0843 2220 ============================================================
01:24:30.0203 2220 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
01:24:30.0203 2220 ============================================================
01:24:30.0203 2220 \Device\Harddisk0\DR0:
01:24:30.0203 2220 MBR partitions:
01:24:30.0203 2220 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xCF0794A
01:24:30.0203 2220 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0xCF0B84A, BlocksNum 0xE862B4
01:24:30.0203 2220 ============================================================
01:24:30.0250 2220 C: <-> \Device\Harddisk0\DR0\Partition0
01:24:30.0265 2220 D: <-> \Device\Harddisk0\DR0\Partition1
01:24:30.0265 2220 ============================================================
01:24:30.0265 2220 Initialize success
01:24:30.0265 2220 ============================================================
01:24:48.0203 3148 ============================================================
01:24:48.0203 3148 Scan started
01:24:48.0203 3148 Mode: Manual;
01:24:48.0203 3148 ============================================================
01:24:48.0750 3148 Abiosdsk - ok
01:24:48.0765 3148 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
01:24:48.0765 3148 abp480n5 - ok
01:24:48.0812 3148 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
01:24:48.0828 3148 ACPI - ok
01:24:48.0843 3148 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
01:24:48.0843 3148 ACPIEC - ok
01:24:48.0890 3148 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
01:24:48.0890 3148 adpu160m - ok
01:24:48.0921 3148 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
01:24:48.0937 3148 aec - ok
01:24:48.0953 3148 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
01:24:48.0968 3148 AFD - ok
01:24:49.0000 3148 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
01:24:49.0000 3148 agp440 - ok
01:24:49.0015 3148 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
01:24:49.0015 3148 agpCPQ - ok
01:24:49.0046 3148 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
01:24:49.0046 3148 Aha154x - ok
01:24:49.0062 3148 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
01:24:49.0062 3148 aic78u2 - ok
01:24:49.0093 3148 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
01:24:49.0093 3148 aic78xx - ok
01:24:49.0156 3148 Alerter (758fdc60d41716ef889d849989b4b1cd) C:\WINDOWS\system32\alrsvc.dll
01:24:49.0156 3148 Alerter - ok
01:24:49.0187 3148 ALG (5e9a6658a2a69ae7eb195113b7a2e7a9) C:\WINDOWS\System32\alg.exe
01:24:49.0187 3148 ALG - ok
01:24:49.0203 3148 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
01:24:49.0203 3148 AliIde - ok
01:24:49.0218 3148 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
01:24:49.0218 3148 alim1541 - ok
01:24:49.0250 3148 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
01:24:49.0250 3148 amdagp - ok
01:24:49.0281 3148 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
01:24:49.0281 3148 amsint - ok
01:24:49.0421 3148 AntiVirSchedulerService (a5bcbaf0477c4869b67e0195aea4a9cd) C:\Program Files\Avira\AntiVir Desktop\sched.exe
01:24:49.0421 3148 AntiVirSchedulerService - ok
01:24:49.0484 3148 AntiVirService (3cce4afa4aacdb28e01a148394212186) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
01:24:49.0500 3148 AntiVirService - ok
01:24:49.0609 3148 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:24:49.0609 3148 Apple Mobile Device - ok
01:24:49.0625 3148 AppMgmt - ok
01:24:49.0656 3148 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
01:24:49.0656 3148 Arp1394 - ok
01:24:49.0687 3148 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
01:24:49.0687 3148 asc - ok
01:24:49.0703 3148 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
01:24:49.0703 3148 asc3350p - ok
01:24:49.0718 3148 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
01:24:49.0718 3148 asc3550 - ok
01:24:49.0875 3148 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
01:24:49.0875 3148 aspnet_state - ok
01:24:49.0890 3148 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
01:24:49.0890 3148 AsyncMac - ok
01:24:49.0937 3148 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
01:24:49.0937 3148 atapi - ok
01:24:49.0937 3148 Atdisk - ok
01:24:49.0968 3148 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
01:24:49.0968 3148 Atmarpc - ok
01:24:50.0015 3148 AudioSrv (b4005aef7873144634765b570dac466e) C:\WINDOWS\System32\audiosrv.dll
01:24:50.0015 3148 AudioSrv - ok
01:24:50.0062 3148 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
01:24:50.0062 3148 audstub - ok
01:24:50.0109 3148 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
01:24:50.0109 3148 avgio - ok
01:24:50.0125 3148 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
01:24:50.0125 3148 avgntflt - ok
01:24:50.0156 3148 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
01:24:50.0156 3148 avipbb - ok
01:24:50.0234 3148 BBSvc (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files\Microsoft\BingBar\7.1.361.0\BBSvc.exe
01:24:50.0234 3148 BBSvc - ok
01:24:50.0265 3148 BBUpdate (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files\Microsoft\BingBar\7.1.361.0\SeaPort.exe
01:24:50.0265 3148 BBUpdate - ok
01:24:50.0281 3148 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
01:24:50.0281 3148 Beep - ok
01:24:50.0343 3148 BITS (baa0b6e647c1ad593e9bae5cc31bcffb) C:\WINDOWS\system32\qmgr.dll
01:24:50.0343 3148 BITS - ok
01:24:50.0421 3148 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
01:24:50.0421 3148 Bonjour Service - ok
01:24:50.0453 3148 Browser (06b54a7b1ef7cb16bfd0e208d343fa71) C:\WINDOWS\System32\browser.dll
01:24:50.0453 3148 Browser - ok
01:24:50.0484 3148 BTWUSB (7024e11dab9410b31a37547575249dd7) C:\WINDOWS\system32\Drivers\btwusb.sys
01:24:50.0484 3148 BTWUSB - ok
01:24:50.0625 3148 catchme - ok
01:24:50.0640 3148 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
01:24:50.0640 3148 cbidf - ok
01:24:50.0656 3148 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
01:24:50.0656 3148 cbidf2k - ok
01:24:50.0718 3148 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
01:24:50.0718 3148 CCDECODE - ok
01:24:50.0734 3148 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
01:24:50.0734 3148 cd20xrnt - ok
01:24:50.0765 3148 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
01:24:50.0765 3148 Cdaudio - ok
01:24:50.0828 3148 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
01:24:50.0828 3148 Cdfs - ok
01:24:50.0843 3148 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
01:24:50.0843 3148 Cdrom - ok
01:24:50.0859 3148 Changer - ok
01:24:50.0906 3148 CiSvc (793ef38a5fd086c3c8e48a8a861562ed) C:\WINDOWS\system32\cisvc.exe
01:24:50.0906 3148 CiSvc - ok
01:24:50.0937 3148 ClipSrv (8b30cbb0c07d49b2658fb190946b0e7e) C:\WINDOWS\system32\clipsrv.exe
01:24:50.0937 3148 ClipSrv - ok
01:24:51.0062 3148 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:24:51.0062 3148 clr_optimization_v2.0.50727_32 - ok
01:24:51.0078 3148 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
01:24:51.0078 3148 CmBatt - ok
01:24:51.0125 3148 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
01:24:51.0125 3148 CmdIde - ok
01:24:51.0156 3148 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
01:24:51.0156 3148 Compbatt - ok
01:24:51.0156 3148 COMSysApp - ok
01:24:51.0203 3148 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
01:24:51.0203 3148 Cpqarray - ok
01:24:51.0250 3148 CryptSvc (7a6d0b71035e123fdda2156a25578ad3) C:\WINDOWS\System32\cryptsvc.dll
01:24:51.0250 3148 CryptSvc - ok
01:24:51.0453 3148 CyberLink Media Library Service(HP TVPlay) (a00d216e45e4fc4b2f60982b1d172154) C:\Program Files\HP\TVPlay\Kernel\CLML_NTService\CLMLServer.exe
01:24:51.0468 3148 CyberLink Media Library Service(HP TVPlay) - ok
01:24:51.0500 3148 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
01:24:51.0515 3148 dac2w2k - ok
01:24:51.0515 3148 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
01:24:51.0515 3148 dac960nt - ok
01:24:51.0578 3148 DcomLaunch (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\system32\rpcss.dll
01:24:51.0593 3148 DcomLaunch - ok
01:24:51.0640 3148 Dhcp (318f535dc05551d96deeb90b6d6904de) C:\WINDOWS\System32\dhcpcsvc.dll
01:24:51.0640 3148 Dhcp - ok
01:24:51.0671 3148 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
01:24:51.0671 3148 Disk - ok
01:24:51.0687 3148 dmadmin - ok
01:24:51.0781 3148 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
01:24:51.0796 3148 dmboot - ok
01:24:51.0828 3148 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
01:24:51.0843 3148 dmio - ok
01:24:51.0859 3148 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
01:24:51.0859 3148 dmload - ok
01:24:51.0906 3148 dmserver (6797c23d6b79935482d7f0e8ca5e5b67) C:\WINDOWS\System32\dmserver.dll
01:24:51.0906 3148 dmserver - ok
01:24:51.0937 3148 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
01:24:51.0937 3148 DMusic - ok
01:24:51.0968 3148 Dnscache (1a1e59377fb6cacd711cc5073c4a7d79) C:\WINDOWS\System32\dnsrslvr.dll
01:24:51.0968 3148 Dnscache - ok
01:24:52.0015 3148 Dot3svc (3fcf86f03d0302443c21ce6e5bbf7a25) C:\WINDOWS\System32\dot3svc.dll
01:24:52.0015 3148 Dot3svc - ok
01:24:52.0031 3148 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
01:24:52.0031 3148 dpti2o - ok
01:24:52.0062 3148 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
01:24:52.0062 3148 drmkaud - ok
01:24:52.0140 3148 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
01:24:52.0140 3148 dtsoftbus01 - ok
01:24:52.0171 3148 E100B (ac9cf17ee2ae003c98eb4f5336c38058) C:\WINDOWS\system32\DRIVERS\e100b325.sys
01:24:52.0187 3148 E100B - ok
01:24:52.0187 3148 eabfiltr (b5cb3084046146fd2587d8c9b219feb4) C:\WINDOWS\system32\DRIVERS\eabfiltr.sys
01:24:52.0187 3148 eabfiltr - ok
01:24:52.0218 3148 eabusb (231f4547ae1e4b3e60eca66c3a96d218) C:\WINDOWS\system32\DRIVERS\eabusb.sys
01:24:52.0218 3148 eabusb - ok
01:24:52.0234 3148 EapHost (8b5fc9087d2cab110bc2ed5cc5e7b8ac) C:\WINDOWS\System32\eapsvc.dll
01:24:52.0250 3148 EapHost - ok
01:24:52.0281 3148 ERSvc (94f948cb12c4d35483f1e815deb16c7b) C:\WINDOWS\System32\ersvc.dll
01:24:52.0281 3148 ERSvc - ok
01:24:52.0312 3148 Eventlog (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
01:24:52.0328 3148 Eventlog - ok
01:24:52.0390 3148 EventSystem (ec16ae9b37eacf871629227a3f3913fd) C:\WINDOWS\system32\es.dll
01:24:52.0390 3148 EventSystem - ok
01:24:52.0421 3148 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
01:24:52.0421 3148 Fastfat - ok
01:24:52.0453 3148 FastUserSwitchingCompatibility (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
01:24:52.0453 3148 FastUserSwitchingCompatibility - ok
01:24:52.0468 3148 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
01:24:52.0468 3148 Fdc - ok
01:24:52.0484 3148 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys
01:24:52.0484 3148 Fips - ok
01:24:52.0500 3148 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
01:24:52.0500 3148 Flpydisk - ok
01:24:52.0546 3148 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
01:24:52.0546 3148 FltMgr - ok
01:24:52.0687 3148 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
01:24:52.0687 3148 FontCache3.0.0.0 - ok
01:24:52.0718 3148 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
01:24:52.0718 3148 Fs_Rec - ok
01:24:52.0734 3148 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
01:24:52.0734 3148 Ftdisk - ok
01:24:52.0781 3148 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
01:24:52.0781 3148 GEARAspiWDM - ok
01:24:52.0812 3148 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
01:24:52.0812 3148 Gpc - ok
01:24:52.0968 3148 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
01:24:52.0968 3148 gupdate - ok
01:24:52.0968 3148 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
01:24:52.0968 3148 gupdatem - ok
01:24:53.0031 3148 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
01:24:53.0031 3148 gusvc - ok
01:24:53.0062 3148 HBtnKey (4d4d97671c63c3af869b3518e6054204) C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
01:24:53.0062 3148 HBtnKey - ok
01:24:53.0109 3148 HdAudAddService (34af2366ae5ba06626b023c81369039e) C:\WINDOWS\system32\drivers\CHDAud.sys
01:24:53.0125 3148 HdAudAddService - ok
01:24:53.0171 3148 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
01:24:53.0171 3148 HDAudBus - ok
01:24:53.0234 3148 helpsvc (1247f83b705af0e796330442f7967cf8) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
01:24:53.0234 3148 helpsvc - ok
01:24:53.0250 3148 HidServ - ok
01:24:53.0281 3148 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
01:24:53.0281 3148 HidUsb - ok
01:24:53.0343 3148 hkmsvc (17b3c3d40cdba40c2e331d28be4de27f) C:\WINDOWS\System32\kmsvc.dll
01:24:53.0343 3148 hkmsvc - ok
01:24:53.0375 3148 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
01:24:53.0375 3148 hpn - ok
01:24:53.0453 3148 hpqwmiex (2c565b24c56577e824436427df01b4e2) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
01:24:53.0453 3148 hpqwmiex - ok
01:24:53.0468 3148 HSFHWAZL (89e256c5f5346be265d9f86ac8625d4f) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
01:24:53.0484 3148 HSFHWAZL - ok
01:24:53.0531 3148 HSF_DPV (0e44af3828111d4c3e73c33ac95226d8) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
01:24:53.0546 3148 HSF_DPV - ok
01:24:53.0656 3148 hshld (b7cfe93627e7796624004687125a729f) C:\Program Files\Hotspot Shield\bin\openvpnas.exe
01:24:53.0656 3148 hshld - ok
01:24:53.0843 3148 HssDrv (4f28652ec514fa1ba473bc1a695a5c98) C:\WINDOWS\system32\DRIVERS\HssDrv.sys
01:24:53.0843 3148 HssDrv - ok
01:24:53.0937 3148 HssSrv (2cfea9c337b699aca38487e8a7438f35) C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
01:24:53.0953 3148 HssSrv - ok
01:24:53.0968 3148 HssTrayService (b3c6eeeff5c5ea3235b7d84317c1fb3f) C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
01:24:53.0984 3148 HssTrayService - ok
01:24:53.0984 3148 HssWd - ok
01:24:54.0031 3148 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
01:24:54.0031 3148 HTTP - ok
01:24:54.0078 3148 HTTPFilter (bd31cface38d1800abdb43f4260af0d5) C:\WINDOWS\System32\w3ssl.dll
01:24:54.0078 3148 HTTPFilter - ok
01:24:54.0125 3148 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
01:24:54.0125 3148 i2omgmt - ok
01:24:54.0156 3148 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
01:24:54.0156 3148 i2omp - ok
01:24:54.0187 3148 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
01:24:54.0203 3148 i8042prt - ok
01:24:54.0296 3148 iaStor (309c4d86d989fb1fcf64bd30dc81c51b) C:\WINDOWS\system32\DRIVERS\iaStor.sys
01:24:54.0312 3148 iaStor - ok
01:24:54.0468 3148 IDriverT (6f95324909b502e2651442c1548ab12f) c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
01:24:54.0468 3148 IDriverT - ok
01:24:54.0609 3148 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
01:24:54.0625 3148 idsvc - ok
01:24:54.0765 3148 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
01:24:54.0765 3148 Imapi - ok
01:24:54.0796 3148 ImapiService (c4221678bbaa55239c23632875759961) C:\WINDOWS\system32\imapi.exe
01:24:54.0812 3148 ImapiService - ok
01:24:54.0843 3148 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
01:24:54.0859 3148 ini910u - ok
01:24:54.0875 3148 IntelIde (4b6da2f0a4095857a9e3f3697399d575) C:\WINDOWS\system32\DRIVERS\intelide.sys
01:24:54.0875 3148 IntelIde - ok
01:24:54.0906 3148 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys
01:24:54.0906 3148 intelppm - ok
01:24:54.0937 3148 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
01:24:54.0937 3148 Ip6Fw - ok
01:24:54.0968 3148 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
01:24:54.0968 3148 IpFilterDriver - ok
01:24:54.0984 3148 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
01:24:54.0984 3148 IpInIp - ok
01:24:55.0015 3148 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
01:24:55.0031 3148 IpNat - ok
01:24:55.0156 3148 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
01:24:55.0171 3148 iPod Service - ok
01:24:55.0203 3148 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
01:24:55.0203 3148 IPSec - ok
01:24:55.0218 3148 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
01:24:55.0234 3148 IRENUM - ok
01:24:55.0265 3148 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys
01:24:55.0265 3148 isapnp - ok
01:24:55.0390 3148 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe
01:24:55.0390 3148 JavaQuickStarterService - ok
01:24:55.0406 3148 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
01:24:55.0406 3148 Kbdclass - ok
01:24:55.0421 3148 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
01:24:55.0421 3148 kbdhid - ok
01:24:55.0437 3148 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
01:24:55.0437 3148 kmixer - ok
01:24:55.0468 3148 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
01:24:55.0468 3148 KSecDD - ok
01:24:55.0515 3148 lanmanserver (1db8078a32e03ac8f5eb5e6dcac2aa34) C:\WINDOWS\System32\srvsvc.dll
01:24:55.0515 3148 lanmanserver - ok
01:24:55.0562 3148 lanmanworkstation (ad54ead46d92f413be189aabc1c59490) C:\WINDOWS\System32\wkssvc.dll
01:24:55.0562 3148 lanmanworkstation - ok
01:24:55.0578 3148 lbrtfdc - ok
01:24:55.0718 3148 LightScribeService (ab8134127f786c9603817b5318dceeaa) C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
01:24:55.0718 3148 LightScribeService - ok
01:24:55.0734 3148 LmHosts (0f357c079ac529a844ab5b18e4eef881) C:\WINDOWS\System32\lmhsvc.dll
01:24:55.0734 3148 LmHosts - ok
01:24:55.0796 3148 mdmxsdk (74f4372af97a587ecec527ec34955712) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
01:24:55.0796 3148 mdmxsdk - ok
01:24:55.0828 3148 Messenger (e67a66a3781c1a483f0f8992664cbe0d) C:\WINDOWS\System32\msgsvc.dll
01:24:55.0828 3148 Messenger - ok
01:24:55.0875 3148 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
01:24:55.0875 3148 mnmdd - ok
01:24:55.0921 3148 mnmsrvc (d3a2870cd96cda7bcff3dc54f64087ad) C:\WINDOWS\system32\mnmsrvc.exe
01:24:55.0921 3148 mnmsrvc - ok
01:24:55.0984 3148 MODBDA2 (63b8728c12f584b3aed8d679a9ad1a1a) C:\WINDOWS\system32\Drivers\modbda2.sys
01:24:55.0984 3148 MODBDA2 - ok
01:24:56.0046 3148 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys
01:24:56.0046 3148 Modem - ok
01:24:56.0046 3148 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys
01:24:56.0062 3148 Mouclass - ok
01:24:56.0093 3148 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys
01:24:56.0093 3148 mouhid - ok
01:24:56.0140 3148 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
01:24:56.0140 3148 MountMgr - ok
01:24:56.0250 3148 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
01:24:56.0250 3148 MozillaMaintenance - ok
01:24:56.0281 3148 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys
01:24:56.0296 3148 MPE - ok
01:24:56.0312 3148 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
01:24:56.0312 3148 mraid35x - ok
01:24:56.0343 3148 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
01:24:56.0343 3148 MRxDAV - ok
01:24:56.0406 3148 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
01:24:56.0406 3148 MRxSmb - ok
01:24:56.0437 3148 MSDTC (8648d670ae0d95c95e7bbb5b80661796) C:\WINDOWS\system32\msdtc.exe
01:24:56.0437 3148 MSDTC - ok
01:24:56.0484 3148 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
01:24:56.0484 3148 Msfs - ok
01:24:56.0484 3148 MSIServer - ok
01:24:56.0515 3148 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
01:24:56.0515 3148 MSKSSRV - ok
01:24:56.0562 3148 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
01:24:56.0562 3148 MSPCLOCK - ok
01:24:56.0578 3148 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
01:24:56.0578 3148 MSPQM - ok
01:24:56.0625 3148 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
01:24:56.0625 3148 mssmbios - ok
01:24:56.0671 3148 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
01:24:56.0671 3148 MSTEE - ok
01:24:56.0703 3148 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
01:24:56.0703 3148 Mup - ok
01:24:56.0750 3148 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
01:24:56.0750 3148 NABTSFEC - ok
01:24:56.0812 3148 napagent (69e4fbbabaeee1bff422e091da3171da) C:\WINDOWS\System32\qagentrt.dll
01:24:56.0812 3148 napagent - ok
01:24:56.0843 3148 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
01:24:56.0843 3148 NDIS - ok
01:24:56.0875 3148 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
01:24:56.0875 3148 NdisIP - ok
01:24:56.0921 3148 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
01:24:56.0937 3148 NdisTapi - ok
01:24:56.0953 3148 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
01:24:56.0953 3148 Ndisuio - ok
01:24:56.0968 3148 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
01:24:56.0984 3148 NdisWan - ok
01:24:57.0031 3148 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
01:24:57.0031 3148 NDProxy - ok
01:24:57.0046 3148 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
01:24:57.0046 3148 NetBIOS - ok
01:24:57.0078 3148 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
01:24:57.0078 3148 NetBT - ok
01:24:57.0125 3148 NetDDE (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
01:24:57.0140 3148 NetDDE - ok
01:24:57.0140 3148 NetDDEdsdm (5c9b1d83755b36237b70f95df3d46a52) C:\WINDOWS\system32\netdde.exe
01:24:57.0140 3148 NetDDEdsdm - ok
01:24:57.0171 3148 Netlogon (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
01:24:57.0187 3148 Netlogon - ok
01:24:57.0203 3148 Netman (be0cb143fa427d93440ded18db8c918b) C:\WINDOWS\System32\netman.dll
01:24:57.0203 3148 Netman - ok
01:24:57.0296 3148 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:24:57.0296 3148 NetTcpPortSharing - ok
01:24:57.0562 3148 NETw5x32 (05743fffc2bc88cc8e426321bc6a762e) C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
01:24:57.0609 3148 NETw5x32 - ok
01:24:57.0812 3148 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
01:24:57.0812 3148 NIC1394 - ok
01:24:57.0843 3148 Nla (6f5f546a92c7b6ae45db1d6910781eb0) C:\WINDOWS\System32\mswsock.dll
01:24:57.0859 3148 Nla - ok
01:24:57.0937 3148 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\CDBurnerXP\NMSAccessU.exe
01:24:57.0937 3148 NMSAccess - ok
01:24:57.0953 3148 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
01:24:57.0953 3148 Npfs - ok
01:24:58.0000 3148 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
01:24:58.0015 3148 Ntfs - ok
01:24:58.0046 3148 NtLmSsp (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
01:24:58.0046 3148 NtLmSsp - ok
01:24:58.0109 3148 NtmsSvc (037d92b3a7853a183fcab77fb1d13d6c) C:\WINDOWS\system32\ntmssvc.dll
01:24:58.0125 3148 NtmsSvc - ok
01:24:58.0171 3148 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
01:24:58.0171 3148 Null - ok
01:24:58.0484 3148 nv (88d8f8d4c3243e0bb0ed57496868e52e) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
01:24:58.0515 3148 nv - ok
01:24:58.0687 3148 NVSvc (874634f02950f4dfd2c5368d1a6d1be5) C:\WINDOWS\system32\nvsvc32.exe
01:24:58.0687 3148 NVSvc - ok
01:24:58.0781 3148 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
01:24:58.0781 3148 NwlnkFlt - ok
01:24:58.0781 3148 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
01:24:58.0796 3148 NwlnkFwd - ok
01:24:59.0062 3148 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE
01:24:59.0062 3148 odserv - ok
01:24:59.0125 3148 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
01:24:59.0125 3148 ohci1394 - ok
01:24:59.0187 3148 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE
01:24:59.0203 3148 ose - ok
01:24:59.0234 3148 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\drivers\Parport.sys
01:24:59.0234 3148 Parport - ok
01:24:59.0265 3148 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
01:24:59.0265 3148 PartMgr - ok
01:24:59.0296 3148 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys
01:24:59.0296 3148 ParVdm - ok
01:24:59.0328 3148 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys
01:24:59.0328 3148 PCI - ok
01:24:59.0328 3148 PCIDump - ok
01:24:59.0343 3148 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys
01:24:59.0359 3148 PCIIde - ok
01:24:59.0359 3148 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
01:24:59.0375 3148 Pcmcia - ok
01:24:59.0375 3148 PDCOMP - ok
01:24:59.0375 3148 PDFRAME - ok
01:24:59.0390 3148 PDRELI - ok
01:24:59.0390 3148 PDRFRAME - ok
01:24:59.0421 3148 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
01:24:59.0421 3148 perc2 - ok
01:24:59.0421 3148 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
01:24:59.0421 3148 perc2hib - ok
01:24:59.0484 3148 PlugPlay (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
01:24:59.0500 3148 PlugPlay - ok
01:24:59.0515 3148 PolicyAgent (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
01:24:59.0515 3148 PolicyAgent - ok
01:24:59.0531 3148 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
01:24:59.0546 3148 PptpMiniport - ok
01:24:59.0546 3148 ProtectedStorage (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
01:24:59.0546 3148 ProtectedStorage - ok
01:24:59.0562 3148 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
01:24:59.0562 3148 PSched - ok
01:24:59.0578 3148 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
01:24:59.0578 3148 Ptilink - ok
01:24:59.0593 3148 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
01:24:59.0609 3148 PxHelp20 - ok
01:24:59.0640 3148 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
01:24:59.0640 3148 ql1080 - ok
01:24:59.0656 3148 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
01:24:59.0656 3148 Ql10wnt - ok
01:24:59.0671 3148 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
01:24:59.0671 3148 ql12160 - ok
01:24:59.0687 3148 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
01:24:59.0687 3148 ql1240 - ok
01:24:59.0703 3148 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
01:24:59.0703 3148 ql1280 - ok
01:24:59.0734 3148 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
01:24:59.0734 3148 RasAcd - ok
01:24:59.0781 3148 RasAuto (78da9ccdac683ef5aa87d1c919f6d221) C:\WINDOWS\System32\rasauto.dll
01:24:59.0781 3148 RasAuto - ok
01:24:59.0812 3148 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
01:24:59.0812 3148 Rasl2tp - ok
01:24:59.0859 3148 RasMan (0a48df90b4784f9b90a2671af992c914) C:\WINDOWS\System32\rasmans.dll
01:24:59.0859 3148 RasMan - ok
01:24:59.0875 3148 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
01:24:59.0875 3148 RasPppoe - ok
01:24:59.0875 3148 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
01:24:59.0875 3148 Raspti - ok
01:24:59.0906 3148 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
01:24:59.0921 3148 Rdbss - ok
01:24:59.0921 3148 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
01:24:59.0921 3148 RDPCDD - ok
01:24:59.0968 3148 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
01:24:59.0968 3148 rdpdr - ok
01:25:00.0015 3148 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
01:25:00.0015 3148 RDPWD - ok
01:25:00.0078 3148 RDSessMgr (9f63d9c5b238ed1c375d417eff3d5be7) C:\WINDOWS\system32\sessmgr.exe
01:25:00.0078 3148 RDSessMgr - ok
01:25:00.0125 3148 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys
01:25:00.0125 3148 redbook - ok
01:25:00.0171 3148 RemoteAccess (7da370c31673c99497bd07068ee6e354) C:\WINDOWS\System32\mprdim.dll
01:25:00.0171 3148 RemoteAccess - ok
01:25:00.0218 3148 RpcLocator (499c59a2584f6d4ea41e944da571d993) C:\WINDOWS\system32\locator.exe
01:25:00.0234 3148 RpcLocator - ok
01:25:00.0281 3148 RpcSs (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\System32\rpcss.dll
01:25:00.0296 3148 RpcSs - ok
01:25:00.0343 3148 RSVP (414964844f4793acb868d057e8ed997e) C:\WINDOWS\system32\rsvp.exe
01:25:00.0359 3148 RSVP - ok
01:25:00.0390 3148 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
01:25:00.0390 3148 rtl8139 - ok
01:25:00.0421 3148 SamSs (91e6024d6d4dcdecdb36c43ecf9bbecb) C:\WINDOWS\system32\lsass.exe
01:25:00.0437 3148 SamSs - ok
01:25:00.0468 3148 SCardSvr (67949cc8a865296c1333c96a4e1a2d66) C:\WINDOWS\System32\SCardSvr.exe
01:25:00.0468 3148 SCardSvr - ok
01:25:00.0515 3148 Schedule (55f5c5c1be1a78e285033e432ba01597) C:\WINDOWS\system32\schedsvc.dll
01:25:00.0531 3148 Schedule - ok
01:25:00.0562 3148 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
01:25:00.0562 3148 sdbus - ok
01:25:00.0609 3148 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
01:25:00.0609 3148 Secdrv - ok
01:25:00.0640 3148 seclogon (5ac311c0af2af5ec221670bb8dc479d3) C:\WINDOWS\System32\seclogon.dll
01:25:00.0640 3148 seclogon - ok
01:25:00.0671 3148 SENS (3531366f38f453d08fe72e7b32dfe786) C:\WINDOWS\system32\sens.dll
01:25:00.0671 3148 SENS - ok
01:25:00.0687 3148 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\drivers\Serial.sys
01:25:00.0687 3148 Serial - ok
01:25:00.0750 3148 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
01:25:00.0765 3148 Sfloppy - ok
01:25:00.0812 3148 SharedAccess (f4ce708a7d17a625de6c0fd746d50e88) C:\WINDOWS\System32\ipnathlp.dll
01:25:00.0812 3148 SharedAccess - ok
01:25:00.0859 3148 ShellHWDetection (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
01:25:00.0859 3148 ShellHWDetection - ok
01:25:00.0859 3148 Simbad - ok
01:25:00.0906 3148 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
01:25:00.0906 3148 sisagp - ok
01:25:00.0953 3148 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
01:25:00.0953 3148 SLIP - ok
01:25:01.0000 3148 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
01:25:01.0000 3148 Sparrow - ok
01:25:01.0031 3148 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
01:25:01.0046 3148 splitter - ok
01:25:01.0062 3148 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
01:25:01.0078 3148 Spooler - ok
01:25:01.0093 3148 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys
01:25:01.0093 3148 sr - ok
01:25:01.0125 3148 srservice (6ed29124a1c83bd0cf6b26bd01ca6f6f) C:\WINDOWS\system32\srsvc.dll
01:25:01.0140 3148 srservice - ok
01:25:01.0187 3148 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
01:25:01.0187 3148 Srv - ok
01:25:01.0203 3148 SSDPSRV (ea9e0db8684cef2fd3badd671df5a112) C:\WINDOWS\System32\ssdpsrv.dll
01:25:01.0203 3148 SSDPSRV - ok
01:25:01.0234 3148 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
01:25:01.0234 3148 ssmdrv - ok
01:25:01.0296 3148 StarOpen (f92254b0bcfcd10caac7bccc7cb7f467) C:\WINDOWS\system32\drivers\StarOpen.sys
01:25:01.0296 3148 StarOpen - ok
01:25:01.0343 3148 StillCam (3f669c9fc6411bdbc0155544aa876e46) C:\WINDOWS\system32\DRIVERS\serscan.sys
01:25:01.0343 3148 StillCam - ok
01:25:01.0375 3148 stisvc (d76b0e8a4ecad1adcc75fd14a7acc54c) C:\WINDOWS\system32\wiaservc.dll
01:25:01.0390 3148 stisvc - ok
01:25:01.0421 3148 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
01:25:01.0421 3148 streamip - ok
01:25:01.0468 3148 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
01:25:01.0468 3148 swenum - ok
01:25:01.0468 3148 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
01:25:01.0484 3148 swmidi - ok
01:25:01.0484 3148 SwPrv - ok
01:25:01.0531 3148 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
01:25:01.0531 3148 symc810 - ok
01:25:01.0546 3148 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
01:25:01.0562 3148 symc8xx - ok
01:25:01.0578 3148 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
01:25:01.0578 3148 sym_hi - ok
01:25:01.0593 3148 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
01:25:01.0593 3148 sym_u3 - ok
01:25:01.0640 3148 SynTP (c9a1785cc0d7a040dd0fdbfeaa8be135) C:\WINDOWS\system32\DRIVERS\SynTP.sys
01:25:01.0656 3148 SynTP - ok
01:25:01.0656 3148 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
01:25:01.0656 3148 sysaudio - ok
01:25:01.0703 3148 SysmonLog (0899061318a6b1d9596aabfc77f45e44) C:\WINDOWS\system32\smlogsvc.exe
01:25:01.0718 3148 SysmonLog - ok
01:25:01.0765 3148 tap0901 (c516b5cffb7c307fcb7df87d7d7fa200) C:\WINDOWS\system32\DRIVERS\tap0901.sys
01:25:01.0765 3148 tap0901 - ok
01:25:01.0812 3148 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\WINDOWS\system32\DRIVERS\taphss.sys
01:25:01.0812 3148 taphss - ok
01:25:01.0843 3148 TapiSrv (8e5231171ad6595ff002e848cc54fcd7) C:\WINDOWS\System32\tapisrv.dll
01:25:01.0843 3148 TapiSrv - ok
01:25:01.0937 3148 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
01:25:01.0937 3148 Tcpip - ok
01:25:01.0984 3148 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
01:25:01.0984 3148 TDPIPE - ok
01:25:02.0000 3148 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
01:25:02.0000 3148 TDTCP - ok
01:25:02.0046 3148 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
01:25:02.0046 3148 TermDD - ok
01:25:02.0078 3148 TermService (710bc85a8c22626ee094439e3ea0d38c) C:\WINDOWS\System32\termsrv.dll
01:25:02.0078 3148 TermService - ok
01:25:02.0109 3148 Themes (1b8542f338cdd86929a084a455837158) C:\WINDOWS\System32\shsvcs.dll
01:25:02.0125 3148 Themes - ok
01:25:02.0171 3148 tifm21 (9179e07503630d6fb2e4162ff0196191) C:\WINDOWS\system32\drivers\tifm21.sys
01:25:02.0171 3148 tifm21 - ok
01:25:02.0312 3148 TomTomHOMEService (3199a477f0f06eede41bd55179f8eb05) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
01:25:02.0312 3148 TomTomHOMEService - ok
01:25:02.0343 3148 TosIde (b411668322c3bf4e690888706b999679) C:\WINDOWS\system32\DRIVERS\toside.sys
01:25:02.0343 3148 TosIde - ok
01:25:02.0375 3148 TrkWks (e1a84a5067627407a53c2c4f8d8a1d2e) C:\WINDOWS\system32\trkwks.dll
01:25:02.0375 3148 TrkWks - ok
01:25:02.0531 3148 TVPCapSvc (2af8f0195b048ce25c2661f9e042c7d6) C:\Program Files\HP\TVPlay\Kernel\TV\TVPCapSvc.exe
01:25:02.0546 3148 TVPCapSvc - ok
01:25:02.0562 3148 TVPSched (08d369b4abe0691603fa183c0ad8fcd8) C:\Program Files\HP\TVPlay\Kernel\TV\TVPSched.exe
01:25:02.0562 3148 TVPSched - ok
01:25:02.0593 3148 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
01:25:02.0593 3148 Udfs - ok
01:25:02.0640 3148 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
01:25:02.0640 3148 ultra - ok
01:25:02.0718 3148 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
01:25:02.0718 3148 Update - ok
01:25:02.0765 3148 upnphost (bd8166a495b02308f364b36249475f22) C:\WINDOWS\System32\upnphost.dll
01:25:02.0781 3148 upnphost - ok
01:25:02.0796 3148 UPS (1edc93d7bd731b5ca6248ae245099b60) C:\WINDOWS\System32\ups.exe
01:25:02.0796 3148 UPS - ok
01:25:02.0828 3148 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\WINDOWS\system32\Drivers\usbaapl.sys
01:25:02.0828 3148 USBAAPL - ok
01:25:02.0859 3148 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
01:25:02.0859 3148 usbehci - ok
01:25:02.0875 3148 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
01:25:02.0875 3148 usbhub - ok
01:25:02.0906 3148 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
01:25:02.0906 3148 usbscan - ok
01:25:02.0953 3148 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
01:25:02.0953 3148 USBSTOR - ok
01:25:03.0000 3148 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
01:25:03.0000 3148 usbuhci - ok
01:25:03.0015 3148 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
01:25:03.0015 3148 VgaSave - ok
01:25:03.0046 3148 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
01:25:03.0046 3148 viaagp - ok
01:25:03.0078 3148 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
01:25:03.0078 3148 ViaIde - ok
01:25:03.0093 3148 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys
01:25:03.0093 3148 VolSnap - ok
01:25:03.0156 3148 VSS (5a4da252b2c0550ab83d129c02cf6c19) C:\WINDOWS\System32\vssvc.exe
01:25:03.0156 3148 VSS - ok
01:25:03.0203 3148 W32Time (c1f726ee0b043b074a68992bc4aef8fd) C:\WINDOWS\system32\w32time.dll
01:25:03.0203 3148 W32Time - ok
01:25:03.0343 3148 w39n51 (4e7b07653f4f9937cf62ad2869fba520) C:\WINDOWS\system32\DRIVERS\w39n51.sys
01:25:03.0375 3148 w39n51 - ok
01:25:03.0593 3148 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
01:25:03.0593 3148 Wanarp - ok
01:25:03.0609 3148 WDICA - ok
01:25:03.0625 3148 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
01:25:03.0625 3148 wdmaud - ok
01:25:03.0640 3148 WebClient (714670e64fbe6d28d99871ed9a52a334) C:\WINDOWS\System32\webclnt.dll
01:25:03.0656 3148 WebClient - ok
01:25:03.0703 3148 winachsf (214bc3ad84907ad6ad655ac5465f449a) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
01:25:03.0718 3148 winachsf - ok
01:25:03.0781 3148 winmgmt (5e9deae9980ff34bcd6dde2e9e2bf911) C:\WINDOWS\system32\wbem\WMIsvc.dll
01:25:03.0781 3148 winmgmt - ok
01:25:03.0828 3148 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
01:25:03.0828 3148 WmdmPmSN - ok
01:25:03.0875 3148 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
01:25:03.0875 3148 WmiAcpi - ok
01:25:03.0921 3148 WmiApSrv (4e8e8a58f56b25d0795f484e5eb7f898) C:\WINDOWS\system32\wbem\wmiapsrv.exe
01:25:03.0921 3148 WmiApSrv - ok
01:25:04.0093 3148 WMPNetworkSvc (c9bea742ce225cc993c9465fddae4656) C:\Program Files\Windows Media Player\WMPNetwk.exe
01:25:04.0109 3148 WMPNetworkSvc - ok
01:25:04.0140 3148 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
01:25:04.0140 3148 WpdUsb - ok
01:25:04.0171 3148 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
01:25:04.0171 3148 WS2IFSL - ok
01:25:04.0218 3148 wscsvc (c1fd85db4a80a98d60ecb7a828e77fe0) C:\WINDOWS\system32\wscsvc.dll
01:25:04.0218 3148 wscsvc - ok
01:25:04.0265 3148 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
01:25:04.0265 3148 WSTCODEC - ok
01:25:04.0296 3148 wuauserv (75d6c5c3d2c93b1f9931e5dfb693ae2a) C:\WINDOWS\system32\wuauserv.dll
01:25:04.0296 3148 wuauserv - ok
01:25:04.0328 3148 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
01:25:04.0328 3148 WudfPf - ok
01:25:04.0359 3148 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
01:25:04.0375 3148 WudfRd - ok
01:25:04.0390 3148 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
01:25:04.0406 3148 WudfSvc - ok
01:25:04.0453 3148 WZCSVC (c336e54ee0c291a02f004667db1e66cb) C:\WINDOWS\System32\wzcsvc.dll
01:25:04.0468 3148 WZCSVC - ok
01:25:04.0515 3148 xmlprov (f92a87fdda0c11c8604fbc2b864fa726) C:\WINDOWS\System32\xmlprov.dll
01:25:04.0515 3148 xmlprov - ok
01:25:04.0562 3148 MBR (0x1B8) (5ae5a393505cffd37fe98c4a7922908d) \Device\Harddisk0\DR0
01:25:04.0609 3148 \Device\Harddisk0\DR0 - ok
01:25:04.0625 3148 Boot (0x1200) (1ccde9eaa052d83d232ced46e1cd5884) \Device\Harddisk0\DR0\Partition0
01:25:04.0625 3148 \Device\Harddisk0\DR0\Partition0 - ok
01:25:04.0625 3148 Boot (0x1200) (ec3c59e376ddf37d3d9788386a6967c3) \Device\Harddisk0\DR0\Partition1
01:25:04.0625 3148 \Device\Harddisk0\DR0\Partition1 - ok
01:25:04.0625 3148 ============================================================
01:25:04.0625 3148 Scan finished
01:25:04.0625 3148 ============================================================
01:25:04.0656 3716 Detected object count: 0
01:25:04.0656 3716 Actual detected object count: 0
01:26:48.0156 2024 ============================================================
01:26:48.0156 2024 Scan started
01:26:48.0156 2024 Mode: Manual; SigCheck; TDLFS;
01:26:48.0156 2024 ============================================================
01:26:48.0359 2024 Abiosdsk - ok
01:26:48.0390 2024 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
01:26:48.0890 2024 abp480n5 - ok
01:26:48.0953 2024 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
01:26:49.0078 2024 ACPI - ok
01:26:49.0140 2024 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
01:26:49.0281 2024 ACPIEC - ok
01:26:49.0296 2024 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
01:26:49.0437 2024 adpu160m - ok
01:26:49.0468 2024 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
01:26:49.0625 2024 aec - ok
01:26:49.0656 2024 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
01:26:49.0703 2024 AFD - ok
01:26:49.0750 2024 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
01:26:49.0906 2024 agp440 - ok
01:26:49.0953 2024 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
01:26:50.0093 2024 agpCPQ - ok
01:26:50.0125 2024 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
01:26:50.0234 2024 Aha154x - ok
01:26:50.0281 2024 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
01:26:50.0468 2024 aic78u2 - ok
01:26:50.0468 2024 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
01:26:50.0640 2024 aic78xx - ok
01:26:50.0671 2024 Alerter (758fdc60d41716ef889d849989b4b1cd) C:\WINDOWS\system32\alrsvc.dll
01:26:50.0812 2024 Alerter - ok
01:26:50.0828 2024 ALG (5e9a6658a2a69ae7eb195113b7a2e7a9) C:\WINDOWS\System32\alg.exe
01:26:50.0968 2024 ALG - ok
01:26:51.0031 2024 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
01:26:51.0171 2024 AliIde - ok
01:26:51.0203 2024 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
01:26:51.0343 2024 alim1541 - ok
01:26:51.0343 2024 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
01:26:51.0468 2024 amdagp - ok
01:26:51.0484 2024 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
01:26:51.0562 2024 amsint - ok
01:26:51.0718 2024 AntiVirSchedulerService (a5bcbaf0477c4869b67e0195aea4a9cd) C:\Program Files\Avira\AntiVir Desktop\sched.exe
01:26:51.0734 2024 AntiVirSchedulerService - ok
01:26:51.0796 2024 AntiVirService (3cce4afa4aacdb28e01a148394212186) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
01:26:51.0812 2024 AntiVirService - ok
01:26:51.0953 2024 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:26:51.0968 2024 Apple Mobile Device - ok
01:26:51.0968 2024 AppMgmt - ok
01:26:52.0015 2024 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
01:26:52.0234 2024 Arp1394 - ok
01:26:52.0265 2024 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
01:26:52.0421 2024 asc - ok
01:26:52.0437 2024 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
01:26:52.0500 2024 asc3350p - ok
01:26:52.0515 2024 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
01:26:52.0671 2024 asc3550 - ok
01:26:52.0812 2024 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
01:26:52.0828 2024 aspnet_state - ok
01:26:52.0875 2024 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
01:26:53.0000 2024 AsyncMac - ok
01:26:53.0015 2024 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
01:26:53.0156 2024 atapi - ok
01:26:53.0156 2024 Atdisk - ok
01:26:53.0187 2024 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
01:26:53.0343 2024 Atmarpc - ok
01:26:53.0390 2024 AudioSrv (b4005aef7873144634765b570dac466e) C:\WINDOWS\System32\audiosrv.dll
01:26:53.0562 2024 AudioSrv - ok
01:26:53.0593 2024 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
01:26:53.0750 2024 audstub - ok
01:26:53.0796 2024 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
01:26:53.0812 2024 avgio - ok
01:26:53.0828 2024 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
01:26:53.0921 2024 avgntflt - ok
01:26:53.0953 2024 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys
01:26:53.0968 2024 avipbb - ok
01:26:54.0046 2024 BBSvc (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files\Microsoft\BingBar\7.1.361.0\BBSvc.exe
01:26:54.0062 2024 BBSvc - ok
01:26:54.0093 2024 BBUpdate (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files\Microsoft\BingBar\7.1.361.0\SeaPort.exe
01:26:54.0125 2024 BBUpdate - ok
01:26:54.0171 2024 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
01:26:54.0328 2024 Beep - ok
01:26:54.0359 2024 BITS (baa0b6e647c1ad593e9bae5cc31bcffb) C:\WINDOWS\system32\qmgr.dll
01:26:54.0531 2024 BITS - ok
01:26:54.0609 2024 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
01:26:54.0640 2024 Bonjour Service - ok
01:26:54.0703 2024 Browser (06b54a7b1ef7cb16bfd0e208d343fa71) C:\WINDOWS\System32\browser.dll
01:26:54.0859 2024 Browser - ok
01:26:54.0906 2024 BTWUSB (7024e11dab9410b31a37547575249dd7) C:\WINDOWS\system32\Drivers\btwusb.sys
01:26:54.0921 2024 BTWUSB ( UnsignedFile.Multi.Generic ) - warning
01:26:54.0921 2024 BTWUSB - detected UnsignedFile.Multi.Generic (1)
01:26:55.0031 2024 catchme - ok
01:26:55.0062 2024 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
01:26:55.0312 2024 cbidf - ok
01:26:55.0312 2024 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
01:26:55.0453 2024 cbidf2k - ok
01:26:55.0500 2024 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
01:26:55.0656 2024 CCDECODE - ok
01:26:55.0671 2024 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
01:26:55.0750 2024 cd20xrnt - ok
01:26:55.0765 2024 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
01:26:55.0921 2024 Cdaudio - ok
01:26:55.0953 2024 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
01:26:56.0078 2024 Cdfs - ok
01:26:56.0109 2024 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
01:26:56.0234 2024 Cdrom - ok
01:26:56.0234 2024 Changer - ok
01:26:56.0281 2024 CiSvc (793ef38a5fd086c3c8e48a8a861562ed) C:\WINDOWS\system32\cisvc.exe
01:26:56.0406 2024 CiSvc - ok
01:26:56.0468 2024 ClipSrv (8b30cbb0c07d49b2658fb190946b0e7e) C:\WINDOWS\system32\clipsrv.exe
01:26:56.0593 2024 ClipSrv - ok
01:26:56.0703 2024 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:26:56.0718 2024 clr_optimization_v2.0.50727_32 - ok
01:26:56.0750 2024 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
01:26:56.0875 2024 CmBatt - ok
01:26:56.0921 2024 CmdIde (e3726ad522d0bdae090671048c991ab3) C:\WINDOWS\system32\DRIVERS\cmdide.sys
01:26:57.0109 2024 CmdIde - ok
01:26:57.0125 2024 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
01:26:57.0265 2024 Compbatt - ok
01:26:57.0265 2024 COMSysApp - ok
01:26:57.0296 2024 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
01:26:57.0453 2024 Cpqarray - ok
01:26:57.0484 2024 CryptSvc (7a6d0b71035e123fdda2156a25578ad3) C:\WINDOWS\System32\cryptsvc.dll
01:26:57.0609 2024 CryptSvc - ok
01:26:57.0796 2024 CyberLink Media Library Service(HP TVPlay) (a00d216e45e4fc4b2f60982b1d172154) C:\Program Files\HP\TVPlay\Kernel\CLML_NTService\CLMLServer.exe
01:26:57.0843 2024 CyberLink Media Library Service(HP TVPlay) ( UnsignedFile.Multi.Generic ) - warning
01:26:57.0843 2024 CyberLink Media Library Service(HP TVPlay) - detected UnsignedFile.Multi.Generic (1)
01:26:57.0906 2024 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
01:26:58.0062 2024 dac2w2k - ok
01:26:58.0093 2024 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
01:26:58.0296 2024 dac960nt - ok
01:26:58.0359 2024 DcomLaunch (0203b1aad358f206cb0a3c1f93cce17a) C:\WINDOWS\system32\rpcss.dll
01:26:58.0390 2024 DcomLaunch - ok
01:26:58.0453 2024 Dhcp (318f535dc05551d96deeb90b6d6904de) C:\WINDOWS\System32\dhcpcsvc.dll
01:26:58.0578 2024 Dhcp - ok
01:26:58.0609 2024 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
01:26:58.0734 2024 Disk - ok
01:26:58.0734 2024 dmadmin - ok
01:26:58.0796 2024 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys
01:26:58.0984 2024 dmboot - ok
01:26:59.0000 2024 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys
01:26:59.0140 2024 dmio - ok
01:26:59.0187 2024 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
01:26:59.0359 2024 dmload - ok
01:26:59.0406 2024 dmserver (6797c23d6b79935482d7f0e8ca5e5b67) C:\WINDOWS\System32\dmserver.dll
01:26:59.0546 2024 dmserver - ok
01:26:59.0578 2024 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
01:26:59.0734 2024 DMusic - ok
01:26:59.0765 2024 Dnscache (1a1e59377fb6cacd711cc5073c4a7d79) C:\WINDOWS\System32\dnsrslvr.dll
01:26:59.0812 2024 Dnscache - ok
01:26:59.0843 2024 Dot3svc (3fcf86f03d0302443c21ce6e5bbf7a25) C:\WINDOWS\System32\dot3svc.dll
01:27:00.0015 2024 Dot3svc - ok
01:27:00.0046 2024 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
01:27:00.0234 2024 dpti2o - ok
01:27:00.0265 2024 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
01:27:00.0437 2024 drmkaud - ok
01:27:00.0500 2024 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
01:27:00.0515 2024 dtsoftbus01 - ok
01:27:00.0562 2024 E100B (ac9cf17ee2ae003c98eb4f5336c38058) C:\WINDOWS\system32\DRIVERS\e100b325.sys
01:27:00.0578 2024 E100B - ok
01:27:00.0578 2024 eabfiltr (b5cb3084046146fd2587d8c9b219feb4) C:\WINDOWS\system32\DRIVERS\eabfiltr.sys
01:27:00.0609 2024 eabfiltr - ok
01:27:00.0640 2024 eabusb (231f4547ae1e4b3e60eca66c3a96d218) C:\WINDOWS\system32\DRIVERS\eabusb.sys
01:27:00.0671 2024 eabusb - ok
01:27:00.0703 2024 EapHost (8b5fc9087d2cab110bc2ed5cc5e7b8ac) C:\WINDOWS\System32\eapsvc.dll
01:27:00.0859 2024 EapHost - ok
01:27:00.0890 2024 ERSvc (94f948cb12c4d35483f1e815deb16c7b) C:\WINDOWS\System32\ersvc.dll
01:27:01.0031 2024 ERSvc - ok
01:27:01.0062 2024 Eventlog (c3fb1d70cb88722267949694ba51759e) C:\WINDOWS\system32\services.exe
01:27:01.0093 2024
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 16
A_mi_r Messages postés 4 Date d'inscription vendredi 3 août 2012 Statut Membre Dernière intervention 4 août 2012
4 août 2012 à 01:32
!
0
Réponse 6 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
4 août 2012 à 01:37
peux tu heberger le rapport de tdsskiller

as tu fais plusieurs fois combofix ?
0
Réponse 7 / 16
A_mi_r Messages postés 4 Date d'inscription vendredi 3 août 2012 Statut Membre Dernière intervention 4 août 2012
4 août 2012 à 01:42
voici le lien:

https://www.cjoint.com/?3HebO2HRTeA


no, j'ai lancé qu'une fois Combofix, mais avant javais lancé Malwarebytes Anti.

il y a un pb?
0
Réponse 8 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
4 août 2012 à 01:51
hummm

j'attendais autre chose

Télécharge ZHPDiag ( de Nicolas coolman ).
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html


(outil de diagnostic)

Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut ( N'oublie pas de cocher " Créer une icône sur le bureau " )

Lance ZHPDiag en double cliquant sur l'icône présente sur ton bureau (Clique droit -> Executer en tant qu'admin ( vista/Seven )

Clique sur la loupe en haut à gauche, puis laisse l'outil scanner.

Une fois le scan terminé, clique sur l'icône en forme de disquette et enregistre le fichier sur ton bureau.

Rend toi sur http://pjjoint.malekal.com/

Clique sur "Parcourir "

Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau

Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message




0
Réponse 9 / 16
A_mi_r
4 août 2012 à 02:05
voici le lien :

http://pjjoint.malekal.com/files.php?id=ZHPDiag_20120804_q6k5t11p12e6
0
Réponse 10 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
4 août 2012 à 02:10
ok

des toolbars en pagailles

1)

Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.

http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner

Lance le, clique sur SUPPRESSION puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.

Note : Le rapport est également sauvegardé sous C:\AdwCleane.txt

................

2)

refais un nouveau rapport ZHPdiag stp

Rend toi sur http://pjjoint.malekal.com/

Clique sur "Parcourir "

Sélectionne le rapport ZHPdiag.txt qui se trouve sur ton bureau

Clique ensuite sur "Envoyer le fichier " et copie/colle le lien dans ton prochain message

0
Réponse 11 / 16
A_mi_r
4 août 2012 à 02:24
voici le lien pour Adwcleaner:

http://cjoint.com/?3HecwAM9DJJ

et le lien pour le nouveau ZHPdiag.txt:

http://pjjoint.malekal.com/files.php?id=ZHPDiag_20120804_z1113v11g1210
0
Réponse 12 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
4 août 2012 à 02:29
ok

1)
Copie tout le texte présent en gras ci-dessous (tu le selectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )


O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At1.job => Infection Rogue (Rogue.HDDDoctor)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At2.job => Infection Diverse (P2P.Worm)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At3.job => Infection Diverse (P2P.Worm)
O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\At4.job => Infection Diverse (P2P.Worm)
O43 - CFD: 05/06/2011 - 00:27:00 - [3,581] ----D C:\Documents and Settings\Amir Hamraz.PC835617709412\Application Data\Babylon => Infection BT (Toolbar.Babylon)
O43 - CFD: 07/03/2011 - 10:24:43 - [0] ----D C:\Documents and Settings\Amir Hamraz.PC835617709412\Local Settings\Application Data\Babylon => Infection BT (Toolbar.Babylon)
C:\Documents and Settings\Amir Hamraz.PC835617709412\Application Data\Babylon => Infection BT (Toolbar.Babylon)
C:\Documents and Settings\Amir Hamraz.PC835617709412\Local Settings\Application Data\Babylon => Infection BT (Toolbar.Babylon)
O3 - Toolbar: Yahoo! Toolbar - [HKLM]{EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll => Yahoo®Toolbar
O23 - Service: Hotspot Shield Routing Service (HssSrv) . (.AnchorFree Inc. - Pas de description.) - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
O42 - Logiciel: Hotspot Shield 2.53 - (.AnchorFree.) [HKLM] -- HotspotShield => Toolbar.Conduit
[HKCU\Software\HotspotShield] => AnchorFree
O43 - CFD: 16/04/2012 - 23:06:32 - [15,377] ----D C:\Program Files\Hotspot Shield => Toolbar.Conduit
[HKLM\SYSTEM\CurrentControlSet\Services\HssSrv] => Toolbar.Agent
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\HssSrv] => Toolbar.Agent
[HKCU\Software\HotspotShield] => AnchorFree
[HKLM\Software\HotspotShield] => AnchorFree
C:\Program Files\Hotspot Shield => Toolbar.Conduit
SR - | Auto 15/11/2011 363336 | (HssSrv) . (.AnchorFree Inc..) - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
SysRestore
EMPTYTEMP
EMPTYFLASH

Puis Lance ZHPFix depuis le raccourci du bureau . (Clique droit -> Executer en tant qu'admin pour Vista ou Seven)

* Une fois l'outil ZHPFix ouvert ,

- Clique sur l'icone représentant la lettre H (« coller les lignes Helper »)
- Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
- Clique sur le bouton « GO » pour lancer le nettoyage,
- Copie/colle la totalité du rapport dans ta prochaine réponse



le rapport se trouve dans le dossier de zhpdiag dans program files sous le nom de ZHPFixReport

..................

2)

Redemarre le pc et dis moi si tu as encore des soucis

0
Réponse 13 / 16
A_mi_r
4 août 2012 à 02:41
voici le lien pour le rapport:


http://cjoint.com/?3HecMVKRUdU

j'ai plus de souci avec le pc, ça marche bien

merci c'est super sympa de ta part:)

bonne nuit
0
Réponse 14 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
4 août 2012 à 02:52
pour terminer on fait le ménage

tout est ecrit là :
https://gen-hackman.kanak.fr/

(merci à mon ami g3n-h@ckm@n)
0
Réponse 15 / 16
A_mi_r
4 août 2012 à 17:11
Merci bcp...:)
0
Réponse 16 / 16
moment de grace Messages postés 29042 Date d'inscription samedi 6 décembre 2008 Statut Contributeur sécurité Dernière intervention 18 juillet 2013 2 272
4 août 2012 à 21:33
sourire
0