Fullzx14r

Membres

Afficher le profil Afficher son activité

Compteur de contenus
421
Inscription
le 8 mai 2009
Dernière visite
le 2 mai 2024
Jours gagnés
1

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par Fullzx14r

[résolu] Suspicion virale sur PC en W7 32bits

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Malwarebytes Anti-Malware (Essai) 1.65.1.1000 www.malwarebytes.org Version de la base de données: v2012.12.12.14 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 Bruno QUESNEL :: FUJITSUPC1 [administrateur] Protection: Désactivé 13/12/2012 01:12:05 mbam-log-2012-12-13 (01-12-05).txt Type d'examen: Examen complet (C:\|D:\|M:\|N:\|) Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM Options d'examen désactivées: P2P Elément(s) analysé(s): 771352 Temps écoulé: 3 heure(s), 13 minute(s), 47 seconde(s) Processus mémoire détecté(s): 0 (Aucun élément nuisible détecté) Module(s) mémoire détecté(s): 0 (Aucun élément nuisible détecté) Clé(s) du Registre détectée(s): 0 (Aucun élément nuisible détecté) Valeur(s) du Registre détectée(s): 0 (Aucun élément nuisible détecté) Elément(s) de données du Registre détecté(s): 0 (Aucun élément nuisible détecté) Dossier(s) détecté(s): 0 (Aucun élément nuisible détecté) Fichier(s) détecté(s): 10 C:\Users\Bruno QUESNEL\Downloads\PaintShop Pro X4\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. C:\Users\Bruno QUESNEL\Downloads\VideoStudio Pro X5\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. C:\Users\Bruno QUESNEL\Downloads\VideoStudio Pro X5\keygen.exe (RiskWare.Tool.HCK) -> Mis en quarantaine et supprimé avec succès. C:\Users\Bruno QUESNEL\Downloads\Ghost 15\KEYGEN\keygen.exe (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès. M:\FILMS\2 - A voir\Adobe.Photoshop.CS6.Extended.13.0.1.Europe\BONUS\adobe.cs6.all.products.activator.(x32.y.x64)_up01.exe (PUP.Hacktool.Patcher) -> Mis en quarantaine et supprimé avec succès. M:\FILMS\2 - A voir\Adobe.Photoshop.CS6.Extended.13.0.1.Europe\Serials + Keygen X-Force\xf-mccs6\xf-mccs6.exe (PUP.RiskwareTool.CK) -> Mis en quarantaine et supprimé avec succès. M:\save PC_BQ SERAPID\Save le 20 aout 2012\Users\Public\VideoStudio Pro X5\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. M:\save PC_BQ SERAPID\Save le 20 aout 2012\Users\Public\VideoStudio Pro X5\keygen.exe (RiskWare.Tool.HCK) -> Mis en quarantaine et supprimé avec succès. M:\Seagate Backup\BRUNOQUESNEL-PC\C\Users\Public\VideoStudio Pro X5\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. M:\Seagate Backup\BRUNOQUESNEL-PC\C\Users\Public\VideoStudio Pro X5\keygen.exe (RiskWare.Tool.HCK) -> Mis en quarantaine et supprimé avec succès. (fin) Voila le dernier rapport : Malwarebytes Anti-Malware (Essai) 1.65.1.1000 www.malwarebytes.org Version de la base de données: v2012.12.12.14 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 Bruno QUESNEL :: FUJITSUPC1 [administrateur] Protection: Désactivé 13/12/2012 01:12:05 mbam-log-2012-12-13 (01-12-05).txt Type d'examen: Examen complet (C:\|D:\|M:\|N:\|) Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM Options d'examen désactivées: P2P Elément(s) analysé(s): 771352 Temps écoulé: 3 heure(s), 13 minute(s), 47 seconde(s) Processus mémoire détecté(s): 0 (Aucun élément nuisible détecté) Module(s) mémoire détecté(s): 0 (Aucun élément nuisible détecté) Clé(s) du Registre détectée(s): 0 (Aucun élément nuisible détecté) Valeur(s) du Registre détectée(s): 0 (Aucun élément nuisible détecté) Elément(s) de données du Registre détecté(s): 0 (Aucun élément nuisible détecté) Dossier(s) détecté(s): 0 (Aucun élément nuisible détecté) Fichier(s) détecté(s): 10 C:\Users\Bruno QUESNEL\Downloads\PaintShop Pro X4\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. C:\Users\Bruno QUESNEL\Downloads\VideoStudio Pro X5\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. C:\Users\Bruno QUESNEL\Downloads\VideoStudio Pro X5\keygen.exe (RiskWare.Tool.HCK) -> Mis en quarantaine et supprimé avec succès. C:\Users\Bruno QUESNEL\Downloads\Ghost 15\KEYGEN\keygen.exe (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès. M:\FILMS\2 - A voir\Adobe.Photoshop.CS6.Extended.13.0.1.Europe\BONUS\adobe.cs6.all.products.activator.(x32.y.x64)_up01.exe (PUP.Hacktool.Patcher) -> Mis en quarantaine et supprimé avec succès. M:\FILMS\2 - A voir\Adobe.Photoshop.CS6.Extended.13.0.1.Europe\Serials + Keygen X-Force\xf-mccs6\xf-mccs6.exe (PUP.RiskwareTool.CK) -> Mis en quarantaine et supprimé avec succès. M:\save PC_BQ SERAPID\Save le 20 aout 2012\Users\Public\VideoStudio Pro X5\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. M:\save PC_BQ SERAPID\Save le 20 aout 2012\Users\Public\VideoStudio Pro X5\keygen.exe (RiskWare.Tool.HCK) -> Mis en quarantaine et supprimé avec succès. M:\Seagate Backup\BRUNOQUESNEL-PC\C\Users\Public\VideoStudio Pro X5\CORE10k.EXE (Dont.Steal.Our.Software) -> Mis en quarantaine et supprimé avec succès. M:\Seagate Backup\BRUNOQUESNEL-PC\C\Users\Public\VideoStudio Pro X5\keygen.exe (RiskWare.Tool.HCK) -> Mis en quarantaine et supprimé avec succès. (fin)
- le 13 décembre 2012
- 12 réponses
[résolu] Suspicion virale sur PC en W7 32bits

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

# AdwCleaner v2.100 - Rapport créé le 13/12/2012 à 00:44:09 # Mis à jour le 09/12/2012 par Xplode # Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits) # Nom d'utilisateur : Bruno QUESNEL - FUJITSUPC1 # Mode de démarrage : Normal # Exécuté depuis : C:\Users\Bruno QUESNEL\Downloads\Outil Zebulon\Adwcleaner\AdwCleaner.exe # Option [suppression] ***** [services] ***** ***** [Fichiers / Dossiers] ***** ***** [Registre] ***** Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASAPI32 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASMANCS ***** [Navigateurs] ***** -\\ Internet Explorer v9.0.8112.16457 [OK] Le registre ne contient aucune entrée illégitime. ************************* AdwCleaner[R1].txt - [850 octets] - [17/11/2012 10:07:49] AdwCleaner[R2].txt - [921 octets] - [09/12/2012 11:36:02] AdwCleaner[R3].txt - [1143 octets] - [13/12/2012 00:41:02] AdwCleaner[s1].txt - [913 octets] - [17/11/2012 10:08:29] AdwCleaner[s2].txt - [983 octets] - [09/12/2012 11:36:29] AdwCleaner[s3].txt - [1079 octets] - [13/12/2012 00:44:09] ########## EOF - C:\AdwCleaner[s3].txt - [1139 octets] ##########
- le 12 décembre 2012
- 12 réponses
[résolu] Suspicion virale sur PC en W7 32bits

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

RogueKiller V8.4.0 [Dec 12 2012] par Tigzy mail : tigzyRK<at>gmail<dot>com Remontees : RogueKiller - Geeks to Go Forums Site Web : RogueKiller Blog : tigzy-RK Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Demarrage : Mode normal Utilisateur : Bruno QUESNEL [Droits d'admin] Mode : HOSTS RAZ -- Date : 13/12/2012 00:26:22 ¤¤¤ Processus malicieux : 0 ¤¤¤ ¤¤¤ Entrees de registre : 0 ¤¤¤ ¤¤¤ Driver : [CHARGE] ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 0.0.0.0 sams.nikonimaging.com ¤¤¤ Nouveau fichier HOSTS: ¤¤¤ Termine : << RKreport[3]_H_13122012_002622.txt >> RKreport[1]_S_13122012_002254.txt ; RKreport[2]_D_13122012_002402.txt ; RKreport[3]_H_13122012_002622.txt RogueKiller V8.4.0 [Dec 12 2012] par Tigzy mail : tigzyRK<at>gmail<dot>com Remontees : RogueKiller - Geeks to Go Forums Site Web : RogueKiller Blog : tigzy-RK Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Demarrage : Mode normal Utilisateur : Bruno QUESNEL [Droits d'admin] Mode : Raccourcis RAZ -- Date : 13/12/2012 00:32:46 ¤¤¤ Processus malicieux : 0 ¤¤¤ ¤¤¤ Driver : [CHARGE] ¤¤¤ ¤¤¤ Attributs de fichiers restaures: ¤¤¤ Bureau: Success 2 / Fail 0 Lancement rapide: Success 1 / Fail 0 Programmes: Success 24 / Fail 0 Menu demarrer: Success 0 / Fail 0 Dossier utilisateur: Success 158 / Fail 0 Mes documents: Success 8 / Fail 8 Mes favoris: Success 4 / Fail 0 Mes images: Success 3 / Fail 0 Ma musique: Success 2 / Fail 0 Mes videos: Success 0 / Fail 0 Disques locaux: Success 2265 / Fail 0 Sauvegarde: [NOT FOUND] Lecteurs: [C:] \Device\HarddiskVolume2 -- 0x3 --> Restored [D:] \Device\HarddiskVolume3 -- 0x3 --> Restored [E:] \Device\HarddiskVolume6 -- 0x2 --> Restored [F:] \Device\HarddiskVolume7 -- 0x2 --> Restored [G:] \Device\CdRom0 -- 0x5 --> Skipped [H:] \Device\HarddiskVolume8 -- 0x2 --> Restored [i:] \Device\HarddiskVolume9 -- 0x2 --> Restored [J:] \Device\CdRom1 -- 0x5 --> Skipped [L:] \Device\HarddiskVolume10 -- 0x2 --> Restored [M:] \Device\HarddiskVolume5 -- 0x3 --> Restored [N:] \Device\HarddiskVolume4 -- 0x3 --> Restored Termine : << RKreport[5]_SC_13122012_003246.txt >> RKreport[1]_S_13122012_002254.txt ; RKreport[2]_D_13122012_002402.txt ; RKreport[3]_H_13122012_002622.txt ; RKreport[4]_PR_13122012_002757.txt ; RKreport[5]_SC_13122012_003246.txt RogueKiller V8.4.0 [Dec 12 2012] par Tigzy mail : tigzyRK<at>gmail<dot>com Remontees : RogueKiller - Geeks to Go Forums Site Web : RogueKiller Blog : tigzy-RK Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Demarrage : Mode normal Utilisateur : Bruno QUESNEL [Droits d'admin] Mode : DNS RAZ -- Date : 13/12/2012 00:34:56 ¤¤¤ Processus malicieux : 0 ¤¤¤ ¤¤¤ Entrees de registre : 0 ¤¤¤ ¤¤¤ Driver : [CHARGE] ¤¤¤ Termine : << RKreport[6]_DN_13122012_003456.txt >> RKreport[1]_S_13122012_002254.txt ; RKreport[2]_D_13122012_002402.txt ; RKreport[3]_H_13122012_002622.txt ; RKreport[4]_PR_13122012_002757.txt ; RKreport[5]_SC_13122012_003246.txt ; RKreport[6]_DN_13122012_003456.txt Fin pour rogue killer # AdwCleaner v2.100 - Rapport créé le 13/12/2012 à 00:41:02 # Mis à jour le 09/12/2012 par Xplode # Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits) # Nom d'utilisateur : Bruno QUESNEL - FUJITSUPC1 # Mode de démarrage : Normal # Exécuté depuis : C:\Users\Bruno QUESNEL\Downloads\Outil Zebulon\Adwcleaner\AdwCleaner.exe # Option [Recherche] ***** [services] ***** ***** [Fichiers / Dossiers] ***** ***** [Registre] ***** Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASAPI32 Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_installer_RASMANCS ***** [Navigateurs] ***** -\\ Internet Explorer v9.0.8112.16457 [OK] Le registre ne contient aucune entrée illégitime. ************************* AdwCleaner[R1].txt - [850 octets] - [17/11/2012 10:07:49] AdwCleaner[R2].txt - [921 octets] - [09/12/2012 11:36:02] AdwCleaner[R3].txt - [897 octets] - [13/12/2012 00:41:02] AdwCleaner[s1].txt - [913 octets] - [17/11/2012 10:08:29] AdwCleaner[s2].txt - [983 octets] - [09/12/2012 11:36:29] ########## EOF - C:\AdwCleaner[R3].txt - [1074 octets] ##########
- le 12 décembre 2012
- 12 réponses
[résolu] Suspicion virale sur PC en W7 32bits

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Bonjour, Une fois encore un peu en décalage horaire. Le rapport Rogue Killer ci dessous en espérant que c'est bien là qu'il fallait le mettre : RogueKiller V8.4.0 [Dec 12 2012] par Tigzy mail : tigzyRK<at>gmail<dot>com Remontees : RogueKiller - Geeks to Go Forums Site Web : RogueKiller Blog : tigzy-RK Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Demarrage : Mode normal Utilisateur : Bruno QUESNEL [Droits d'admin] Mode : Suppression -- Date : 13/12/2012 00:24:02 ¤¤¤ Processus malicieux : 0 ¤¤¤ ¤¤¤ Entrees de registre : 2 ¤¤¤ [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REMPLACÉ (0) [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REMPLACÉ (0) ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver : [CHARGE] ¤¤¤ SSDT[84] : NtCreateSection @ 0x8306E06D -> HOOKED (Unknown @ 0x93E5375E) SSDT[86] : NtCreateSymbolicLinkObject @ 0x8304C911 -> HOOKED (Unknown @ 0x93E53736) SSDT[155] : NtLoadDriver @ 0x83010C20 -> HOOKED (Unknown @ 0x93E5373B) SSDT[194] : NtOpenSection @ 0x830B48BB -> HOOKED (Unknown @ 0x93E53731) SSDT[299] : NtRequestWaitReplyPort @ 0x83088A63 -> HOOKED (Unknown @ 0x93E53768) SSDT[316] : NtSetContextThread @ 0x83128745 -> HOOKED (Unknown @ 0x93E53763) SSDT[347] : NtSetSecurityObject @ 0x8304C742 -> HOOKED (Unknown @ 0x93E5376D) SSDT[350] : NtSetSystemInformation @ 0x8309929A -> HOOKED (Unknown @ 0x93E53740) SSDT[368] : NtSystemDebugControl @ 0x830D06BC -> HOOKED (Unknown @ 0x93E53772) SSDT[370] : NtTerminateProcess @ 0x830A5BFB -> HOOKED (Unknown @ 0x93E536FF) SSDT[399] : NtWriteVirtualMemory @ 0x830AA958 -> HOOKED (Unknown @ 0x93E536FA) S_SSDT[585] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0x93E53786) S_SSDT[588] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0x93E5378B) ¤¤¤ Fichier HOSTS: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 0.0.0.0 sams.nikonimaging.com ¤¤¤ MBR Verif: ¤¤¤ +++++ PhysicalDrive0: WDC WD5001AALS-00LWTA0 ATA Device +++++ --- User --- [MBR] 26fd0863b6f9e3ea75805dbb3f0e43f7 [bSP] 005eff6389b4814e684ccd6b980b99b3 : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 476838 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: WDC WD3200AAJS-00YZCA0 ATA Device +++++ --- User --- [MBR] ba6164ef8467c1c839a6485a715d770e [bSP] c5d28389dc3126c298fec6933a5ee2a5 : Windows XP MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 305243 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive2: Seagate FreeAgent USB Device +++++ --- User --- [MBR] ec914ad0bfc05bddc7ddb75cc4c112e7 [bSP] 917dc0ded2e4fc059a97014e620dd14c : Windows XP MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo User = LL1 ... OK! Error reading LL2 MBR! +++++ PhysicalDrive3: Seagate FreeAgent USB Device +++++ --- User --- [MBR] c3e4c0e42a1775caa4a7baa57d65e177 [bSP] 903e816bed8507cd4f01e2d7187fc7dd : Windows XP MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 1430796 Mo User = LL1 ... OK! Error reading LL2 MBR! Termine : << RKreport[2]_D_13122012_002402.txt >> RKreport[1]_S_13122012_002254.txt ; RKreport[2]_D_13122012_002402.txt Fichier hoste non modifié car bloqué par antivirus. Rapport : RogueKiller V8.4.0 [Dec 12 2012] par Tigzy mail : tigzyRK<at>gmail<dot>com Remontees : RogueKiller - Geeks to Go Forums Site Web : RogueKiller Blog : tigzy-RK Systeme d'exploitation : Windows 7 (6.1.7601 Service Pack 1) 32 bits version Demarrage : Mode normal Utilisateur : Bruno QUESNEL [Droits d'admin] Mode : HOSTS RAZ -- Date : 13/12/2012 00:26:22 ¤¤¤ Processus malicieux : 0 ¤¤¤ ¤¤¤ Entrees de registre : 0 ¤¤¤ ¤¤¤ Driver : [CHARGE] ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts 0.0.0.0 sams.nikonimaging.com ¤¤¤ Nouveau fichier HOSTS: ¤¤¤ Termine : << RKreport[3]_H_13122012_002622.txt >> RKreport[1]_S_13122012_002254.txt ; RKreport[2]_D_13122012_002402.txt ; RKreport[3]_H_13122012_002622.txt A suivre dans autre message
- le 12 décembre 2012
- 12 réponses
[résolu] Suspicion virale sur PC en W7 32bits

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Merci Pear pour votre retour que je ne viens que de voir. Il ne s'agit pas d'un pb de carte graphique car cela fonctionne après redémarrage puis après un temps revient avec des mico coupures. Mais bon j'ai fait la manip demandée et vous pourrez surement mieux voir s'il y a autre chose. Voici le rapport en question et merci pour le support pjjoint.malekal.com - Submit a file
- le 12 décembre 2012
- 12 réponses
[résolu] Suspicion virale sur PC en W7 32bits

Fullzx14r a posté un sujet dans Analyses et éradication malwares

Bonjour je me trouve avec un PC qui présente des écrans noirs lorsque que l'on clique la souris. Ensuite après une micro seconde la page désirée s'affiche. Je suspecte un virus car j'ai des processus bizarre et inconnus dans le gestionnaire de tâches. Avant de faire un bétise j'attends une aide d'un spécialiste si quelqu'un veux bien prendre en compte ce soucis Amitiés aux équipes Zebulon BQ
- le 12 décembre 2012
- 12 réponses
PC réinstallé mais lent sous IE [2]

Fullzx14r a posté un sujet dans Analyses et éradication malwares

--- 26 octobre à 16h51 --- J'ai fait ce qui m'avait été demandé dans un post précédent. Le rapport qui a été généré par TDSS KILLER est le suivant : Lien CJoint.com BJAq1zyGeXS J'attends les prochaine instruction de celui qui voudra bien reprendre le sujet et désolé pour mon erreur précédente Cordialement Bruno --- 26 octobre à 17h05 --- Notpa --- Rappel du message précédent bloqué : 1er message (début): Fullzx14r · 23 octobre 2012 - 10:03 Bonjour, j'ai réinstallé le PC après le plantage d'un disque dur qui présentait un défaut de secteurs. Tout allait bien avec beacoup de MAJ jusqu'à l'installation de Office 2010 avec mes codes achat. Lors de l'activation Microsoft m'a refusé celle-ci prétextant qu'il était déjà installé. Effectivement sur l'autre disque. J'ai fait un appel tél sur un serveur Microsoft mais qui n'a pas abouti pour les même raisons.J'ai donc cherché à activer mon Offi... dernier message (début) : Fullzx14r · Aujourd'hui, 15:39 Bonjour et merci d'avoir pris en compte ma demande d'assistance. Pour ce qui est de la remarque d'entête de message je dirais que l'homme est parfois stupide et que je ne deroge pas à la règle. Qu'importe, j'ai régularisé auprès de Microsoft après avoir eu un contact téléphonique. Voici le rapport demandé. Il y a eu un fichier de skippé. 15:28:28.0307 2672 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47 15:28:29.0924 2672 ===================================... Ceci pour éclaircir un tant soit peu ce sujet. Notpa --- 26 octobre à 17h06 --- Fullzx14r --- Bonjour Notpa et merci pour la récupération de ma réponse au précédent intervenant. Y a-tg-il quelque chose à faire sur mon PC après le TSS... rapport joint ? --- 26 octobre à 17h15 --- Notpa --- Ça, ça concerne les collègues de l'équipe Sécurité dont je ne fais pas partie. Attends s'il te plait qu'un helpeur Sécurité te prenne en main. Je supprime (archivage) l'autre sujet "Mon sujet est maintenant bloqué ? J'ai du faire une erreur." devenu inutile. Cordialement Notpa --- 26 octobre à 17h16 --- Fullzx14r --- OK merci je patiente. -édit- Dans cette section, il ne faut pas multiplier les messages dans ton sujet avant d'avoir été pris en charge : au vu de la présence d'une « réponse », les helpers ne s'y intéresseront pas, croyant le problème pris en mains par l'un des leurs. Utilise plutôt le bouton « Modifier » situé en bas à droite de ton premier message… --- 29 octobre à 9h58 --- Je suis sans nouvelle depuis le 26/10 sur mon message de base. La première action qui avait été demandée a été faite et je ne sais s'il convient d'aller plus loin. le lien du message origine est le suivant : PC réinstallé mais lent sous IE [2] - Forums Zebulon.fr -édit- Tu vas dérouter – voire rebuter – les helpers, en multipliant les sujets. Il te suffisait d'ajouter un petit "up" dans le sujet d'origine ou – mieux – de poster un petit rappel dans le sujet « On m'a oublié ! », épinglé en tête de la section et prévu à cet effet… --- 2 novembre à 12h44 --- Il semble qu'on m'ait oublié. Ou alors je viens encore d'écrire au mauvais endroit ! -édit- Tu sembles avoir des difficultés à comprendre le fonctionnement de cette section…
- le 6 novembre 2012
- 1 réponse
On m'a oublié !

Fullzx14r a répondu à un(e) sujet de Gof dans Analyses et éradication malwares

Il semble qu'on m'a oublié. Je suis désolé j'ai eu du mal a comprendre où il fallait poster et comment. le message origine était celui-ci : PC réinstallé mais lent sous IE [2] - Forums Zebulon.fr
- le 2 novembre 2012
- 641 réponses
*** Sujet bloqué *** - PC réinstallé mais lent sous IE

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Bonjour et merci d'avoir pris en compte ma demande d'assistance. Pour ce qui est de la remarque d'entête de message je dirais que l'homme est parfois stupide et que je ne deroge pas à la règle. Qu'importe, j'ai régularisé auprès de Microsoft après avoir eu un contact téléphonique. Voici le rapport demandé. Il y a eu un fichier de skippé. 15:28:28.0307 2672 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47 15:28:29.0924 2672 ============================================================ 15:28:29.0924 2672 Current date / time: 2012/10/26 15:28:29.0924 15:28:29.0924 2672 SystemInfo: 15:28:29.0924 2672 15:28:29.0924 2672 OS Version: 6.1.7601 ServicePack: 1.0 15:28:29.0924 2672 Product type: Workstation 15:28:29.0926 2672 ComputerName: BQUESNEL-PC2 15:28:29.0926 2672 UserName: BRUNO QUESNEL 15:28:29.0926 2672 Windows directory: C:\Windows 15:28:29.0926 2672 System windows directory: C:\Windows 15:28:29.0926 2672 Processor architecture: Intel x86 15:28:29.0926 2672 Number of processors: 1 15:28:29.0926 2672 Page size: 0x1000 15:28:29.0926 2672 Boot type: Normal boot 15:28:29.0926 2672 ============================================================ 15:28:34.0829 2672 BG loaded 15:28:37.0159 2672 Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x8F68, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000050 15:28:37.0213 2672 ============================================================ 15:28:37.0213 2672 \Device\Harddisk0\DR0: 15:28:37.0213 2672 MBR partitions: 15:28:37.0213 2672 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 15:28:37.0213 2672 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x94CF800 15:28:37.0213 2672 ============================================================ 15:28:37.0272 2672 C: <-> \Device\Harddisk0\DR0\Partition2 15:28:37.0272 2672 ============================================================ 15:28:37.0272 2672 Initialize success 15:28:37.0272 2672 ============================================================ 15:31:12.0482 3888 ============================================================ 15:31:12.0482 3888 Scan started 15:31:12.0482 3888 Mode: Manual; SigCheck; TDLFS; 15:31:12.0482 3888 ============================================================ 15:31:13.0322 3888 ================ Scan system memory ======================== 15:31:13.0322 3888 System memory - ok 15:31:13.0322 3888 ================ Scan services ============================= 15:31:13.0501 3888 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 15:31:13.0666 3888 1394ohci - ok 15:31:13.0755 3888 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys 15:31:13.0781 3888 ACPI - ok 15:31:13.0832 3888 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 15:31:13.0908 3888 AcpiPmi - ok 15:31:14.0009 3888 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 15:31:14.0039 3888 AdobeARMservice - ok 15:31:14.0169 3888 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe 15:31:14.0214 3888 AdobeFlashPlayerUpdateSvc - ok 15:31:14.0318 3888 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 15:31:14.0447 3888 adp94xx - ok 15:31:14.0490 3888 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 15:31:14.0550 3888 adpahci - ok 15:31:14.0607 3888 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 15:31:14.0642 3888 adpu320 - ok 15:31:14.0802 3888 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 15:31:14.0890 3888 AeLookupSvc - ok 15:31:15.0001 3888 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys 15:31:15.0121 3888 AFD - ok 15:31:15.0183 3888 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys 15:31:15.0222 3888 agp440 - ok 15:31:15.0320 3888 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys 15:31:15.0363 3888 aic78xx - ok 15:31:15.0427 3888 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe 15:31:15.0519 3888 ALG - ok 15:31:15.0556 3888 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys 15:31:15.0583 3888 aliide - ok 15:31:15.0617 3888 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys 15:31:15.0648 3888 amdagp - ok 15:31:15.0675 3888 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys 15:31:15.0705 3888 amdide - ok 15:31:15.0761 3888 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 15:31:15.0855 3888 AmdK8 - ok 15:31:15.0880 3888 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 15:31:15.0935 3888 AmdPPM - ok 15:31:16.0001 3888 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys 15:31:16.0033 3888 amdsata - ok 15:31:16.0072 3888 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 15:31:16.0111 3888 amdsbs - ok 15:31:16.0138 3888 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys 15:31:16.0169 3888 amdxata - ok 15:31:16.0261 3888 [ 72E9C15FD33CB7EB750A256C2D2D3119 ] AntiVirMailService C:\Program Files\Avira\AntiVir Desktop\avmailc.exe 15:31:16.0320 3888 AntiVirMailService - ok 15:31:16.0367 3888 [ FF3D87A9667A66FD32C1352389CC17F9 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe 15:31:16.0396 3888 AntiVirSchedulerService - ok 15:31:16.0453 3888 [ 18EC9EF58DBCE6BAEAC6DD7E9D29666F ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe 15:31:16.0486 3888 AntiVirService - ok 15:31:16.0521 3888 [ 53BE128ED9D198F5D32F903C13802237 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE 15:31:16.0576 3888 AntiVirWebService - ok 15:31:16.0625 3888 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys 15:31:16.0785 3888 AppID - ok 15:31:16.0824 3888 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll 15:31:16.0884 3888 AppIDSvc - ok 15:31:16.0951 3888 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll 15:31:17.0015 3888 Appinfo - ok 15:31:17.0076 3888 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll 15:31:17.0148 3888 AppMgmt - ok 15:31:17.0205 3888 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys 15:31:17.0238 3888 arc - ok 15:31:17.0267 3888 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 15:31:17.0300 3888 arcsas - ok 15:31:17.0330 3888 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 15:31:17.0474 3888 AsyncMac - ok 15:31:17.0539 3888 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys 15:31:17.0566 3888 atapi - ok 15:31:17.0738 3888 [ 712D8A95E45B070114C5309ADA7358FF ] atikmdag C:\Windows\system32\drivers\atikmdag.sys 15:31:18.0052 3888 atikmdag - ok 15:31:18.0121 3888 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 15:31:18.0199 3888 AudioEndpointBuilder - ok 15:31:18.0240 3888 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll 15:31:18.0291 3888 Audiosrv - ok 15:31:18.0332 3888 [ D5541F0AFB767E85FC412FC609D96A74 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys 15:31:18.0390 3888 avgntflt - ok 15:31:18.0437 3888 [ 7D967A682D4694DF7FA57D63A2DB01FE ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys 15:31:18.0496 3888 avipbb - ok 15:31:18.0529 3888 [ 53E56450DA16A1A7F0D002F511113F67 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys 15:31:18.0619 3888 avkmgr - ok 15:31:18.0677 3888 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll 15:31:18.0792 3888 AxInstSV - ok 15:31:18.0851 3888 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys 15:31:19.0017 3888 b06bdrv - ok 15:31:19.0064 3888 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys 15:31:19.0169 3888 b57nd60x - ok 15:31:19.0275 3888 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll 15:31:19.0386 3888 BDESVC - ok 15:31:19.0419 3888 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys 15:31:19.0505 3888 Beep - ok 15:31:19.0593 3888 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll 15:31:19.0679 3888 BFE - ok 15:31:19.0792 3888 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll 15:31:20.0003 3888 BITS - ok 15:31:20.0052 3888 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 15:31:20.0232 3888 blbdrive - ok 15:31:20.0275 3888 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 15:31:20.0501 3888 bowser - ok 15:31:20.0548 3888 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 15:31:20.0724 3888 BrFiltLo - ok 15:31:21.0275 3888 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 15:31:21.0527 3888 BrFiltUp - ok 15:31:21.0576 3888 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll 15:31:21.0740 3888 Browser - ok 15:31:21.0843 3888 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys 15:31:22.0134 3888 Brserid - ok 15:31:22.0154 3888 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 15:31:22.0232 3888 BrSerWdm - ok 15:31:22.0267 3888 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 15:31:22.0363 3888 BrUsbMdm - ok 15:31:22.0380 3888 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 15:31:22.0476 3888 BrUsbSer - ok 15:31:22.0513 3888 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 15:31:22.0568 3888 BTHMODEM - ok 15:31:22.0642 3888 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll 15:31:22.0816 3888 bthserv - ok 15:31:22.0876 3888 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 15:31:23.0070 3888 cdfs - ok 15:31:23.0210 3888 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys 15:31:23.0320 3888 cdrom - ok 15:31:23.0455 3888 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll 15:31:23.0550 3888 CertPropSvc - ok 15:31:23.0617 3888 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys 15:31:23.0714 3888 circlass - ok 15:31:23.0853 3888 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys 15:31:23.0929 3888 CLFS - ok 15:31:24.0269 3888 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 15:31:24.0316 3888 clr_optimization_v2.0.50727_32 - ok 15:31:24.0505 3888 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 15:31:24.0664 3888 clr_optimization_v4.0.30319_32 - ok 15:31:24.0687 3888 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 15:31:24.0775 3888 CmBatt - ok 15:31:24.0839 3888 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys 15:31:24.0882 3888 cmdide - ok 15:31:25.0363 3888 [ 2F2B02C025538CDD2E2D7155B3150602 ] cmuda3 C:\Windows\system32\drivers\cmudax3.sys 15:31:25.0544 3888 cmuda3 ( UnsignedFile.Multi.Generic ) - warning 15:31:25.0544 3888 cmuda3 - detected UnsignedFile.Multi.Generic (1) 15:31:25.0628 3888 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys 15:31:25.0742 3888 CNG - ok 15:31:25.0810 3888 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 15:31:25.0841 3888 Compbatt - ok 15:31:25.0896 3888 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 15:31:25.0990 3888 CompositeBus - ok 15:31:26.0042 3888 COMSysApp - ok 15:31:26.0074 3888 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 15:31:26.0105 3888 crcdisk - ok 15:31:26.0187 3888 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll 15:31:26.0265 3888 CryptSvc - ok 15:31:26.0363 3888 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys 15:31:26.0500 3888 CSC - ok 15:31:26.0562 3888 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll 15:31:26.0650 3888 CscService - ok 15:31:26.0775 3888 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll 15:31:26.0824 3888 DcomLaunch - ok 15:31:26.0894 3888 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll 15:31:26.0992 3888 defragsvc - ok 15:31:27.0074 3888 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 15:31:27.0148 3888 DfsC - ok 15:31:27.0326 3888 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll 15:31:27.0429 3888 Dhcp - ok 15:31:27.0494 3888 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys 15:31:27.0570 3888 discache - ok 15:31:27.0625 3888 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys 15:31:27.0671 3888 Disk - ok 15:31:27.0740 3888 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll 15:31:27.0867 3888 Dnscache - ok 15:31:27.0933 3888 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll 15:31:28.0025 3888 dot3svc - ok 15:31:28.0076 3888 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll 15:31:28.0144 3888 DPS - ok 15:31:28.0208 3888 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 15:31:28.0291 3888 drmkaud - ok 15:31:28.0373 3888 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 15:31:28.0615 3888 DXGKrnl - ok 15:31:28.0695 3888 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll 15:31:28.0794 3888 EapHost - ok 15:31:29.0812 3888 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys 15:31:30.0029 3888 ebdrv - ok 15:31:30.0093 3888 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe 15:31:30.0201 3888 EFS - ok 15:31:30.0529 3888 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 15:31:30.0667 3888 ehRecvr - ok 15:31:30.0708 3888 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe 15:31:30.0812 3888 ehSched - ok 15:31:30.0949 3888 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 15:31:31.0039 3888 elxstor - ok 15:31:31.0070 3888 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys 15:31:31.0152 3888 ErrDev - ok 15:31:31.0287 3888 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll 15:31:31.0367 3888 EventSystem - ok 15:31:31.0408 3888 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys 15:31:31.0533 3888 exfat - ok 15:31:31.0558 3888 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys 15:31:31.0654 3888 fastfat - ok 15:31:31.0755 3888 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe 15:31:31.0845 3888 Fax - ok 15:31:31.0896 3888 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys 15:31:31.0958 3888 fdc - ok 15:31:31.0992 3888 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll 15:31:32.0054 3888 fdPHost - ok 15:31:32.0093 3888 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll 15:31:32.0158 3888 FDResPub - ok 15:31:32.0199 3888 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 15:31:32.0242 3888 FileInfo - ok 15:31:32.0269 3888 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 15:31:32.0357 3888 Filetrace - ok 15:31:32.0388 3888 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 15:31:32.0439 3888 flpydisk - ok 15:31:32.0482 3888 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 15:31:32.0539 3888 FltMgr - ok 15:31:32.0785 3888 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll 15:31:32.0886 3888 FontCache - ok 15:31:32.0986 3888 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 15:31:33.0019 3888 FontCache3.0.0.0 - ok 15:31:33.0070 3888 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 15:31:33.0126 3888 FsDepends - ok 15:31:33.0171 3888 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 15:31:33.0222 3888 Fs_Rec - ok 15:31:33.0283 3888 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 15:31:33.0345 3888 fvevol - ok 15:31:33.0416 3888 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 15:31:33.0462 3888 gagp30kx - ok 15:31:33.0580 3888 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll 15:31:33.0695 3888 gpsvc - ok 15:31:33.0748 3888 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 15:31:33.0904 3888 hcw85cir - ok 15:31:33.0941 3888 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 15:31:34.0023 3888 HDAudBus - ok 15:31:34.0093 3888 [ FFE7C3DE2068DA6992AD52059B95C8EE ] HerculesWiFi C:\Windows\system32\\HerculesWiFiService.exe 15:31:34.0152 3888 HerculesWiFi - ok 15:31:34.0193 3888 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 15:31:34.0259 3888 HidBatt - ok 15:31:34.0296 3888 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 15:31:34.0371 3888 HidBth - ok 15:31:34.0412 3888 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 15:31:34.0468 3888 HidIr - ok 15:31:34.0519 3888 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll 15:31:34.0601 3888 hidserv - ok 15:31:34.0685 3888 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys 15:31:34.0740 3888 HidUsb - ok 15:31:34.0785 3888 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll 15:31:34.0876 3888 hkmsvc - ok 15:31:35.0005 3888 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 15:31:35.0078 3888 HomeGroupListener - ok 15:31:35.0126 3888 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 15:31:35.0183 3888 HomeGroupProvider - ok 15:31:35.0248 3888 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 15:31:35.0294 3888 HpSAMD - ok 15:31:35.0375 3888 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys 15:31:35.0503 3888 HTTP - ok 15:31:35.0568 3888 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 15:31:35.0611 3888 hwpolicy - ok 15:31:35.0714 3888 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys 15:31:35.0769 3888 i8042prt - ok 15:31:35.0906 3888 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 15:31:35.0982 3888 iaStorV - ok 15:31:36.0087 3888 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 15:31:36.0208 3888 idsvc - ok 15:31:36.0304 3888 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 15:31:36.0367 3888 iirsp - ok 15:31:36.0562 3888 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll 15:31:36.0671 3888 IKEEXT - ok 15:31:36.0734 3888 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys 15:31:36.0787 3888 intelide - ok 15:31:36.0871 3888 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 15:31:36.0921 3888 intelppm - ok 15:31:36.0970 3888 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 15:31:37.0052 3888 IPBusEnum - ok 15:31:37.0085 3888 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:31:37.0167 3888 IpFilterDriver - ok 15:31:37.0460 3888 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 15:31:37.0568 3888 iphlpsvc - ok 15:31:37.0613 3888 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 15:31:37.0666 3888 IPMIDRV - ok 15:31:37.0712 3888 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys 15:31:37.0794 3888 IPNAT - ok 15:31:37.0865 3888 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys 15:31:37.0994 3888 IRENUM - ok 15:31:38.0037 3888 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys 15:31:38.0083 3888 isapnp - ok 15:31:38.0162 3888 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 15:31:38.0246 3888 iScsiPrt - ok 15:31:38.0298 3888 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys 15:31:38.0361 3888 kbdclass - ok 15:31:38.0421 3888 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 15:31:38.0482 3888 kbdhid - ok 15:31:38.0523 3888 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe 15:31:38.0546 3888 KeyIso - ok 15:31:38.0597 3888 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 15:31:38.0646 3888 KSecDD - ok 15:31:38.0687 3888 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 15:31:38.0748 3888 KSecPkg - ok 15:31:38.0957 3888 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll 15:31:39.0101 3888 KtmRm - ok 15:31:39.0152 3888 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll 15:31:39.0232 3888 LanmanServer - ok 15:31:39.0300 3888 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 15:31:39.0355 3888 LanmanWorkstation - ok 15:31:39.0435 3888 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 15:31:39.0515 3888 lltdio - ok 15:31:39.0578 3888 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll 15:31:39.0679 3888 lltdsvc - ok 15:31:39.0718 3888 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll 15:31:39.0804 3888 lmhosts - ok 15:31:39.0865 3888 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 15:31:39.0916 3888 LSI_FC - ok 15:31:39.0939 3888 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 15:31:39.0984 3888 LSI_SAS - ok 15:31:40.0007 3888 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 15:31:40.0064 3888 LSI_SAS2 - ok 15:31:40.0099 3888 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 15:31:40.0150 3888 LSI_SCSI - ok 15:31:40.0173 3888 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys 15:31:40.0248 3888 luafv - ok 15:31:40.0320 3888 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 15:31:40.0371 3888 Mcx2Svc - ok 15:31:40.0404 3888 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 15:31:40.0468 3888 megasas - ok 15:31:40.0623 3888 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 15:31:40.0712 3888 MegaSR - ok 15:31:40.0757 3888 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll 15:31:40.0835 3888 MMCSS - ok 15:31:40.0867 3888 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys 15:31:40.0927 3888 Modem - ok 15:31:40.0974 3888 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 15:31:41.0021 3888 monitor - ok 15:31:41.0087 3888 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys 15:31:41.0126 3888 mouclass - ok 15:31:41.0156 3888 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 15:31:41.0203 3888 mouhid - ok 15:31:41.0296 3888 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 15:31:41.0369 3888 mountmgr - ok 15:31:41.0447 3888 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys 15:31:41.0527 3888 mpio - ok 15:31:41.0564 3888 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 15:31:41.0666 3888 mpsdrv - ok 15:31:41.0761 3888 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll 15:31:42.0001 3888 MpsSvc - ok 15:31:42.0050 3888 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 15:31:42.0125 3888 MRxDAV - ok 15:31:42.0177 3888 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 15:31:42.0261 3888 mrxsmb - ok 15:31:42.0302 3888 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:31:42.0396 3888 mrxsmb10 - ok 15:31:42.0451 3888 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:31:42.0521 3888 mrxsmb20 - ok 15:31:42.0562 3888 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys 15:31:42.0593 3888 msahci - ok 15:31:42.0640 3888 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys 15:31:42.0695 3888 msdsm - ok 15:31:42.0748 3888 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe 15:31:42.0841 3888 MSDTC - ok 15:31:42.0906 3888 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys 15:31:43.0003 3888 Msfs - ok 15:31:43.0037 3888 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 15:31:43.0111 3888 mshidkmdf - ok 15:31:43.0169 3888 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 15:31:43.0228 3888 msisadrv - ok 15:31:43.0332 3888 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 15:31:43.0427 3888 MSiSCSI - ok 15:31:43.0447 3888 msiserver - ok 15:31:43.0486 3888 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 15:31:43.0564 3888 MSKSSRV - ok 15:31:43.0613 3888 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 15:31:43.0681 3888 MSPCLOCK - ok 15:31:43.0705 3888 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 15:31:43.0806 3888 MSPQM - ok 15:31:43.0861 3888 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 15:31:43.0937 3888 MsRPC - ok 15:31:43.0982 3888 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 15:31:44.0005 3888 mssmbios - ok 15:31:44.0042 3888 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 15:31:44.0121 3888 MSTEE - ok 15:31:44.0140 3888 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 15:31:44.0197 3888 MTConfig - ok 15:31:44.0236 3888 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys 15:31:44.0287 3888 Mup - ok 15:31:44.0462 3888 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll 15:31:44.0507 3888 napagent - ok 15:31:44.0576 3888 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 15:31:44.0695 3888 NativeWifiP - ok 15:31:44.0777 3888 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys 15:31:44.0851 3888 NDIS - ok 15:31:44.0917 3888 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 15:31:44.0990 3888 NdisCap - ok 15:31:45.0027 3888 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 15:31:45.0085 3888 NdisTapi - ok 15:31:45.0142 3888 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 15:31:45.0220 3888 Ndisuio - ok 15:31:45.0296 3888 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 15:31:45.0394 3888 NdisWan - ok 15:31:45.0441 3888 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 15:31:45.0523 3888 NDProxy - ok 15:31:45.0587 3888 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 15:31:45.0669 3888 NetBIOS - ok 15:31:45.0716 3888 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 15:31:45.0818 3888 NetBT - ok 15:31:45.0855 3888 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe 15:31:45.0896 3888 Netlogon - ok 15:31:46.0113 3888 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll 15:31:46.0171 3888 Netman - ok 15:31:46.0232 3888 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll 15:31:46.0308 3888 netprofm - ok 15:31:46.0376 3888 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 15:31:46.0476 3888 NetTcpPortSharing - ok 15:31:46.0519 3888 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 15:31:46.0550 3888 nfrd960 - ok 15:31:46.0611 3888 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll 15:31:46.0824 3888 NlaSvc - ok 15:31:46.0847 3888 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys 15:31:46.0925 3888 Npfs - ok 15:31:46.0970 3888 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll 15:31:47.0041 3888 nsi - ok 15:31:47.0082 3888 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 15:31:47.0166 3888 nsiproxy - ok 15:31:47.0273 3888 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 15:31:47.0583 3888 Ntfs - ok 15:31:47.0625 3888 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys 15:31:47.0708 3888 Null - ok 15:31:47.0777 3888 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys 15:31:47.0841 3888 nvraid - ok 15:31:47.0933 3888 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys 15:31:48.0031 3888 nvstor - ok 15:31:48.0130 3888 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 15:31:48.0203 3888 nv_agp - ok 15:31:48.0263 3888 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 15:31:48.0363 3888 ohci1394 - ok 15:31:48.0531 3888 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:31:48.0695 3888 ose - ok 15:31:49.0869 3888 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 15:31:50.0849 3888 osppsvc - ok 15:31:51.0044 3888 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 15:31:51.0140 3888 p2pimsvc - ok 15:31:51.0195 3888 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll 15:31:51.0259 3888 p2psvc - ok 15:31:51.0318 3888 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys 15:31:51.0371 3888 Parport - ok 15:31:51.0412 3888 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys 15:31:51.0445 3888 partmgr - ok 15:31:51.0488 3888 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys 15:31:51.0525 3888 Parvdm - ok 15:31:51.0562 3888 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll 15:31:51.0634 3888 PcaSvc - ok 15:31:51.0685 3888 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys 15:31:51.0738 3888 pci - ok 15:31:51.0763 3888 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys 15:31:51.0798 3888 pciide - ok 15:31:51.0882 3888 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 15:31:51.0943 3888 pcmcia - ok 15:31:51.0978 3888 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys 15:31:52.0027 3888 pcw - ok 15:31:52.0082 3888 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys 15:31:52.0250 3888 PEAUTH - ok 15:31:52.0400 3888 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 15:31:52.0544 3888 PeerDistSvc - ok 15:31:52.0808 3888 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll 15:31:53.0025 3888 pla - ok 15:31:53.0078 3888 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll 15:31:53.0242 3888 PlugPlay - ok 15:31:53.0281 3888 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 15:31:53.0337 3888 PNRPAutoReg - ok 15:31:53.0498 3888 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 15:31:53.0531 3888 PNRPsvc - ok 15:31:53.0574 3888 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 15:31:53.0679 3888 PolicyAgent - ok 15:31:53.0785 3888 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll 15:31:53.0863 3888 Power - ok 15:31:53.0916 3888 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 15:31:54.0019 3888 PptpMiniport - ok 15:31:54.0048 3888 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys 15:31:54.0175 3888 Processor - ok 15:31:54.0257 3888 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll 15:31:54.0376 3888 ProfSvc - ok 15:31:54.0417 3888 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe 15:31:54.0513 3888 ProtectedStorage - ok 15:31:54.0566 3888 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys 15:31:54.0681 3888 Psched - ok 15:31:54.0955 3888 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 15:31:55.0253 3888 ql2300 - ok 15:31:55.0320 3888 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 15:31:55.0375 3888 ql40xx - ok 15:31:55.0519 3888 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll 15:31:55.0666 3888 QWAVE - ok 15:31:55.0703 3888 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 15:31:55.0845 3888 QWAVEdrv - ok 15:31:55.0878 3888 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 15:31:56.0046 3888 RasAcd - ok 15:31:56.0121 3888 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 15:31:56.0300 3888 RasAgileVpn - ok 15:31:56.0351 3888 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll 15:31:56.0474 3888 RasAuto - ok 15:31:56.0501 3888 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 15:31:56.0625 3888 Rasl2tp - ok 15:31:56.0701 3888 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll 15:31:56.0910 3888 RasMan - ok 15:31:56.0945 3888 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 15:31:57.0041 3888 RasPppoe - ok 15:31:57.0115 3888 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 15:31:57.0310 3888 RasSstp - ok 15:31:57.0398 3888 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 15:31:57.0574 3888 rdbss - ok 15:31:57.0662 3888 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 15:31:57.0753 3888 rdpbus - ok 15:31:57.0812 3888 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 15:31:57.0912 3888 RDPCDD - ok 15:31:58.0013 3888 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 15:31:58.0253 3888 RDPDR - ok 15:31:58.0306 3888 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 15:31:58.0400 3888 RDPENCDD - ok 15:31:58.0460 3888 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 15:31:58.0644 3888 RDPREFMP - ok 15:31:58.0830 3888 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 15:31:58.0994 3888 RdpVideoMiniport - ok 15:31:59.0179 3888 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 15:31:59.0332 3888 RDPWD - ok 15:31:59.0458 3888 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 15:31:59.0593 3888 rdyboost - ok 15:31:59.0673 3888 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll 15:31:59.0873 3888 RemoteAccess - ok 15:32:00.0064 3888 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll 15:32:00.0263 3888 RemoteRegistry - ok 15:32:00.0312 3888 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 15:32:00.0476 3888 RpcEptMapper - ok 15:32:00.0523 3888 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe 15:32:00.0685 3888 RpcLocator - ok 15:32:00.0728 3888 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll 15:32:00.0839 3888 RpcSs - ok 15:32:00.0892 3888 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 15:32:01.0017 3888 rspndr - ok 15:32:01.0101 3888 [ 030129520D4C75CBA170E0F0C6040C68 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys 15:32:01.0175 3888 RTL8192su - ok 15:32:01.0230 3888 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys 15:32:01.0310 3888 s3cap - ok 15:32:01.0357 3888 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe 15:32:01.0398 3888 SamSs - ok 15:32:01.0455 3888 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 15:32:01.0498 3888 sbp2port - ok 15:32:01.0550 3888 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll 15:32:01.0644 3888 SCardSvr - ok 15:32:01.0685 3888 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 15:32:01.0740 3888 scfilter - ok 15:32:01.0814 3888 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll 15:32:01.0957 3888 Schedule - ok 15:32:01.0994 3888 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll 15:32:02.0033 3888 SCPolicySvc - ok 15:32:02.0085 3888 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll 15:32:02.0191 3888 SDRSVC - ok 15:32:02.0257 3888 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys 15:32:02.0324 3888 secdrv - ok 15:32:02.0363 3888 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll 15:32:02.0437 3888 seclogon - ok 15:32:02.0476 3888 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll 15:32:02.0558 3888 SENS - ok 15:32:02.0617 3888 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll 15:32:02.0712 3888 SensrSvc - ok 15:32:02.0746 3888 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 15:32:02.0808 3888 Serenum - ok 15:32:02.0845 3888 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys 15:32:02.0894 3888 Serial - ok 15:32:02.0931 3888 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 15:32:02.0994 3888 sermouse - ok 15:32:03.0070 3888 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll 15:32:03.0160 3888 SessionEnv - ok 15:32:03.0195 3888 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 15:32:03.0255 3888 sffdisk - ok 15:32:03.0275 3888 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 15:32:03.0347 3888 sffp_mmc - ok 15:32:03.0369 3888 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 15:32:03.0441 3888 sffp_sd - ok 15:32:03.0488 3888 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 15:32:03.0546 3888 sfloppy - ok 15:32:03.0599 3888 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll 15:32:03.0712 3888 SharedAccess - ok 15:32:03.0775 3888 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 15:32:03.0847 3888 ShellHWDetection - ok 15:32:03.0878 3888 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys 15:32:03.0937 3888 sisagp - ok 15:32:03.0986 3888 [ 6F0C643C7F49F2091B01D014EAE72E1A ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSGB6.sys 15:32:04.0046 3888 SiSGbeLH - ok 15:32:04.0082 3888 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 15:32:04.0103 3888 SiSRaid2 - ok 15:32:04.0132 3888 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 15:32:04.0181 3888 SiSRaid4 - ok 15:32:04.0228 3888 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys 15:32:04.0277 3888 Smb - ok 15:32:04.0349 3888 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 15:32:04.0375 3888 SNMPTRAP - ok 15:32:04.0414 3888 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys 15:32:04.0445 3888 spldr - ok 15:32:04.0501 3888 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe 15:32:04.0591 3888 Spooler - ok 15:32:04.0732 3888 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe 15:32:04.0910 3888 sppsvc - ok 15:32:04.0966 3888 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll 15:32:05.0041 3888 sppuinotify - ok 15:32:05.0099 3888 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys 15:32:05.0199 3888 srv - ok 15:32:05.0228 3888 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 15:32:05.0316 3888 srv2 - ok 15:32:05.0371 3888 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 15:32:05.0453 3888 srvnet - ok 15:32:05.0505 3888 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 15:32:05.0560 3888 SSDPSRV - ok 15:32:05.0601 3888 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys 15:32:05.0644 3888 ssmdrv - ok 15:32:05.0681 3888 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll 15:32:05.0746 3888 SstpSvc - ok 15:32:05.0796 3888 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 15:32:05.0828 3888 stexstor - ok 15:32:05.0876 3888 [ EDB05BD63148796F23EA78506404A538 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys 15:32:05.0923 3888 StillCam - ok 15:32:05.0998 3888 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll 15:32:06.0162 3888 StiSvc - ok 15:32:06.0205 3888 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys 15:32:06.0257 3888 storflt - ok 15:32:06.0339 3888 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys 15:32:06.0441 3888 storvsc - ok 15:32:06.0541 3888 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys 15:32:06.0603 3888 swenum - ok 15:32:06.0736 3888 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll 15:32:06.0896 3888 swprv - ok 15:32:06.0978 3888 Synth3dVsc - ok 15:32:07.0300 3888 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll 15:32:07.0533 3888 SysMain - ok 15:32:07.0718 3888 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll 15:32:07.0847 3888 TabletInputService - ok 15:32:08.0078 3888 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll 15:32:08.0281 3888 TapiSrv - ok 15:32:08.0376 3888 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll 15:32:08.0439 3888 TBS - ok 15:32:08.0613 3888 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys 15:32:08.0767 3888 Tcpip - ok 15:32:08.0845 3888 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 15:32:08.0890 3888 TCPIP6 - ok 15:32:08.0943 3888 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 15:32:09.0009 3888 tcpipreg - ok 15:32:09.0080 3888 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 15:32:09.0160 3888 TDPIPE - ok 15:32:09.0183 3888 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 15:32:09.0251 3888 TDTCP - ok 15:32:09.0294 3888 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 15:32:09.0371 3888 tdx - ok 15:32:09.0406 3888 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys 15:32:09.0447 3888 TermDD - ok 15:32:09.0500 3888 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll 15:32:09.0646 3888 TermService - ok 15:32:09.0683 3888 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll 15:32:09.0740 3888 Themes - ok 15:32:09.0775 3888 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll 15:32:09.0826 3888 THREADORDER - ok 15:32:09.0882 3888 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll 15:32:09.0957 3888 TrkWks - ok 15:32:10.0033 3888 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 15:32:10.0097 3888 TrustedInstaller - ok 15:32:10.0156 3888 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 15:32:10.0240 3888 tssecsrv - ok 15:32:10.0294 3888 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 15:32:10.0384 3888 TsUsbFlt - ok 15:32:10.0404 3888 tsusbhub - ok 15:32:10.0474 3888 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 15:32:10.0533 3888 tunnel - ok 15:32:10.0566 3888 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 15:32:10.0621 3888 uagp35 - ok 15:32:10.0667 3888 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys 15:32:10.0769 3888 udfs - ok 15:32:10.0830 3888 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe 15:32:10.0910 3888 UI0Detect - ok 15:32:10.0955 3888 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 15:32:11.0003 3888 uliagpkx - ok 15:32:11.0060 3888 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys 15:32:11.0115 3888 umbus - ok 15:32:11.0152 3888 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 15:32:11.0195 3888 UmPass - ok 15:32:11.0238 3888 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll 15:32:11.0324 3888 UmRdpService - ok 15:32:11.0386 3888 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll 15:32:11.0472 3888 upnphost - ok 15:32:11.0525 3888 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\drivers\usbccgp.sys 15:32:11.0570 3888 usbccgp - ok 15:32:11.0615 3888 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys 15:32:11.0660 3888 usbcir - ok 15:32:11.0701 3888 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 15:32:11.0732 3888 usbehci - ok 15:32:11.0777 3888 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 15:32:11.0843 3888 usbhub - ok 15:32:11.0884 3888 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 15:32:11.0931 3888 usbohci - ok 15:32:11.0978 3888 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 15:32:12.0023 3888 usbprint - ok 15:32:12.0060 3888 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS 15:32:12.0142 3888 USBSTOR - ok 15:32:12.0179 3888 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 15:32:12.0228 3888 usbuhci - ok 15:32:12.0267 3888 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll 15:32:12.0330 3888 UxSms - ok 15:32:12.0367 3888 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe 15:32:12.0416 3888 VaultSvc - ok 15:32:12.0458 3888 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 15:32:12.0488 3888 vdrvroot - ok 15:32:12.0546 3888 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe 15:32:12.0646 3888 vds - ok 15:32:12.0677 3888 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 15:32:12.0736 3888 vga - ok 15:32:12.0777 3888 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys 15:32:12.0857 3888 VgaSave - ok 15:32:12.0898 3888 VGPU - ok 15:32:12.0951 3888 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 15:32:13.0009 3888 vhdmp - ok 15:32:13.0044 3888 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys 15:32:13.0087 3888 viaagp - ok 15:32:13.0126 3888 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys 15:32:13.0185 3888 ViaC7 - ok 15:32:13.0234 3888 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys 15:32:13.0271 3888 viaide - ok 15:32:13.0324 3888 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys 15:32:13.0378 3888 vmbus - ok 15:32:13.0421 3888 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 15:32:13.0472 3888 VMBusHID - ok 15:32:13.0509 3888 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys 15:32:13.0556 3888 volmgr - ok 15:32:13.0599 3888 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 15:32:13.0630 3888 volmgrx - ok 15:32:13.0671 3888 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys 15:32:13.0767 3888 volsnap - ok 15:32:13.0812 3888 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 15:32:13.0861 3888 vsmraid - ok 15:32:13.0945 3888 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe 15:32:14.0080 3888 VSS - ok 15:32:14.0150 3888 [ 682FCF7D2EB5158CD30408E976562408 ] VSTHWBS2 C:\Windows\system32\DRIVERS\VSTBS23.SYS 15:32:14.0230 3888 VSTHWBS2 - ok 15:32:14.0296 3888 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] VST_DPV C:\Windows\system32\DRIVERS\VSTDPV3.SYS 15:32:14.0390 3888 VST_DPV - ok 15:32:14.0431 3888 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 15:32:14.0484 3888 vwifibus - ok 15:32:14.0546 3888 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 15:32:14.0611 3888 vwififlt - ok 15:32:14.0662 3888 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll 15:32:14.0777 3888 W32Time - ok 15:32:14.0810 3888 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 15:32:14.0869 3888 WacomPen - ok 15:32:14.0923 3888 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 15:32:15.0009 3888 WANARP - ok 15:32:15.0027 3888 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 15:32:15.0068 3888 Wanarpv6 - ok 15:32:15.0148 3888 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 15:32:15.0298 3888 WatAdminSvc - ok 15:32:15.0369 3888 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe 15:32:15.0500 3888 wbengine - ok 15:32:15.0541 3888 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 15:32:15.0701 3888 WbioSrvc - ok 15:32:15.0976 3888 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll 15:32:16.0173 3888 wcncsvc - ok 15:32:16.0226 3888 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 15:32:16.0417 3888 WcsPlugInService - ok 15:32:16.0462 3888 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys 15:32:16.0539 3888 Wd - ok 15:32:16.0689 3888 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 15:32:16.0820 3888 Wdf01000 - ok 15:32:16.0945 3888 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll 15:32:17.0138 3888 WdiServiceHost - ok 15:32:17.0156 3888 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll 15:32:17.0242 3888 WdiSystemHost - ok 15:32:17.0312 3888 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll 15:32:17.0531 3888 WebClient - ok 15:32:17.0568 3888 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll 15:32:17.0722 3888 Wecsvc - ok 15:32:17.0847 3888 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll 15:32:17.0898 3888 wercplsupport - ok 15:32:17.0974 3888 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll 15:32:18.0208 3888 WerSvc - ok 15:32:18.0285 3888 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 15:32:18.0388 3888 WfpLwf - ok 15:32:18.0462 3888 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys 15:32:18.0550 3888 WIMMount - ok 15:32:18.0931 3888 [ BC0C7EA89194C299F051C24119000E17 ] winachsf C:\Windows\system32\DRIVERS\VSTCNXT3.SYS 15:32:19.0185 3888 winachsf - ok 15:32:19.0482 3888 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 15:32:19.0728 3888 WinDefend - ok 15:32:19.0759 3888 WinHttpAutoProxySvc - ok 15:32:19.0845 3888 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 15:32:20.0029 3888 Winmgmt - ok 15:32:20.0775 3888 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll 15:32:21.0384 3888 WinRM - ok 15:32:21.0843 3888 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll 15:32:22.0121 3888 Wlansvc - ok 15:32:22.0185 3888 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 15:32:22.0335 3888 WmiAcpi - ok 15:32:22.0451 3888 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 15:32:22.0630 3888 wmiApSrv - ok 15:32:23.0027 3888 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 15:32:23.0175 3888 WMPNetworkSvc - ok 15:32:23.0220 3888 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll 15:32:23.0337 3888 WPCSvc - ok 15:32:23.0388 3888 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 15:32:23.0570 3888 WPDBusEnum - ok 15:32:23.0673 3888 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 15:32:23.0830 3888 ws2ifsl - ok 15:32:23.0867 3888 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll 15:32:23.0992 3888 wscsvc - ok 15:32:24.0041 3888 [ 553F6CCD7C58EB98D4A8FBDAF283D7A9 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys 15:32:24.0082 3888 WSDPrintDevice - ok 15:32:24.0107 3888 WSearch - ok 15:32:25.0021 3888 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll 15:32:25.0111 3888 wuauserv - ok 15:32:25.0242 3888 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 15:32:25.0357 3888 WudfPf - ok 15:32:25.0414 3888 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 15:32:25.0580 3888 WUDFRd - ok 15:32:25.0677 3888 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 15:32:25.0884 3888 wudfsvc - ok 15:32:26.0097 3888 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll 15:32:26.0269 3888 WwanSvc - ok 15:32:26.0324 3888 ================ Scan global =============================== 15:32:26.0373 3888 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll 15:32:26.0619 3888 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll 15:32:26.0791 3888 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll 15:32:26.0859 3888 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll 15:32:27.0025 3888 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe 15:32:27.0080 3888 [Global] - ok 15:32:27.0087 3888 ================ Scan MBR ================================== 15:32:27.0113 3888 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 15:32:30.0066 3888 \Device\Harddisk0\DR0 - ok 15:32:30.0082 3888 ================ Scan VBR ================================== 15:32:30.0123 3888 [ 11C628C4E126553A6BCAE15015E67311 ] \Device\Harddisk0\DR0\Partition1 15:32:30.0158 3888 \Device\Harddisk0\DR0\Partition1 - ok 15:32:30.0187 3888 [ EAA131BCCFEB0D6CCA6C16621954DFDD ] \Device\Harddisk0\DR0\Partition2 15:32:30.0189 3888 \Device\Harddisk0\DR0\Partition2 - ok 15:32:30.0197 3888 ================ Scan active images ======================== 15:32:30.0207 3888 [ B7EFEF22FF426EC4158A177CB3B558D3 ] C:\Windows\System32\drivers\crashdmp.sys 15:32:30.0207 3888 C:\Windows\System32\drivers\crashdmp.sys - ok 15:32:30.0222 3888 [ D0F0D7A97C90FE72A79732812E65F822 ] C:\Windows\System32\drivers\Diskdump.sys 15:32:30.0222 3888 C:\Windows\System32\drivers\Diskdump.sys - ok 15:32:30.0238 3888 [ 62A63EF2F3053B461CB327E4D69AAA74 ] C:\Windows\System32\drivers\dumpfve.sys 15:32:30.0238 3888 C:\Windows\System32\drivers\dumpfve.sys - ok 15:32:30.0253 3888 [ A9F0486851BECB6DDA1D89D381E71055 ] C:\Windows\System32\drivers\sisraid2.sys 15:32:30.0253 3888 C:\Windows\System32\drivers\sisraid2.sys - ok 15:32:30.0269 3888 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] C:\Windows\System32\drivers\cdrom.sys 15:32:30.0269 3888 C:\Windows\System32\drivers\cdrom.sys - ok 15:32:30.0285 3888 [ 505506526A9D467307B3C393DEDAF858 ] C:\Windows\System32\drivers\beep.sys 15:32:30.0285 3888 C:\Windows\System32\drivers\beep.sys - ok 15:32:30.0302 3888 [ F9756A98D69098DCA8945D62858A812C ] C:\Windows\System32\drivers\null.sys 15:32:30.0302 3888 C:\Windows\System32\drivers\null.sys - ok 15:32:30.0318 3888 [ 8E38096AD5C8570A6F1570A61E251561 ] C:\Windows\System32\drivers\vga.sys 15:32:30.0318 3888 C:\Windows\System32\drivers\vga.sys - ok 15:32:30.0343 3888 [ 15C126D1B55814B9E5CAB10A9C1F4C67 ] C:\Windows\System32\drivers\videoprt.sys 15:32:30.0343 3888 C:\Windows\System32\drivers\videoprt.sys - ok 15:32:30.0359 3888 [ CB45A417C8EF7BA6BAC67EDCDDED8700 ] C:\Windows\System32\drivers\watchdog.sys 15:32:30.0359 3888 C:\Windows\System32\drivers\watchdog.sys - ok 15:32:30.0375 3888 [ 23DAE03F29D253AE74C44F99E515F9A1 ] C:\Windows\System32\drivers\RDPCDD.sys 15:32:30.0375 3888 C:\Windows\System32\drivers\RDPCDD.sys - ok 15:32:30.0392 3888 [ 5A53CA1598DD4156D44196D200C94B8A ] C:\Windows\System32\drivers\RDPENCDD.sys 15:32:30.0392 3888 C:\Windows\System32\drivers\RDPENCDD.sys - ok 15:32:30.0410 3888 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] C:\Windows\System32\drivers\msfs.sys 15:32:30.0410 3888 C:\Windows\System32\drivers\msfs.sys - ok 15:32:30.0425 3888 [ 1DB262A9F8C087E8153D89BEF3D2235F ] C:\Windows\System32\drivers\npfs.sys 15:32:30.0425 3888 C:\Windows\System32\drivers\npfs.sys - ok 15:32:30.0441 3888 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] C:\Windows\System32\drivers\RDPREFMP.sys 15:32:30.0441 3888 C:\Windows\System32\drivers\RDPREFMP.sys - ok 15:32:30.0458 3888 [ 2F885864D5BC8A16C86BEE595969A48A ] C:\Windows\System32\drivers\tdi.sys 15:32:30.0458 3888 C:\Windows\System32\drivers\tdi.sys - ok 15:32:30.0474 3888 [ B459575348C20E8121D6039DA063C704 ] C:\Windows\System32\drivers\tdx.sys 15:32:30.0474 3888 C:\Windows\System32\drivers\tdx.sys - ok 15:32:30.0490 3888 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] C:\Windows\System32\drivers\afd.sys 15:32:30.0490 3888 C:\Windows\System32\drivers\afd.sys - ok 15:32:30.0507 3888 [ 280122DDCF04B378EDD1AD54D71C1E54 ] C:\Windows\System32\drivers\netbt.sys 15:32:30.0507 3888 C:\Windows\System32\drivers\netbt.sys - ok 15:32:30.0523 3888 [ 8B9A943F3B53861F2BFAF6C186168F79 ] C:\Windows\System32\drivers\wfplwf.sys 15:32:30.0523 3888 C:\Windows\System32\drivers\wfplwf.sys - ok 15:32:30.0539 3888 [ 6DB3276587B853BF886B69528FDB048C ] C:\Windows\System32\drivers\ws2ifsl.sys 15:32:30.0539 3888 C:\Windows\System32\drivers\ws2ifsl.sys - ok 15:32:30.0554 3888 [ 6270CCAE2A86DE6D146529FE55B3246A ] C:\Windows\System32\drivers\pacer.sys 15:32:30.0554 3888 C:\Windows\System32\drivers\pacer.sys - ok 15:32:30.0570 3888 [ 7090D3436EEB4E7DA3373090A23448F7 ] C:\Windows\System32\drivers\vwififlt.sys 15:32:30.0570 3888 C:\Windows\System32\drivers\vwififlt.sys - ok 15:32:30.0585 3888 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] C:\Windows\System32\drivers\netbios.sys 15:32:30.0585 3888 C:\Windows\System32\drivers\netbios.sys - ok 15:32:30.0611 3888 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] C:\Windows\System32\drivers\serial.sys 15:32:30.0611 3888 C:\Windows\System32\drivers\serial.sys - ok 15:32:30.0628 3888 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] C:\Windows\System32\drivers\termdd.sys 15:32:30.0628 3888 C:\Windows\System32\drivers\termdd.sys - ok 15:32:30.0646 3888 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] C:\Windows\System32\drivers\wanarp.sys 15:32:30.0646 3888 C:\Windows\System32\drivers\wanarp.sys - ok 15:32:30.0662 3888 [ D528BC58A489409BA40334EBF96A311B ] C:\Windows\System32\drivers\rdbss.sys 15:32:30.0662 3888 C:\Windows\System32\drivers\rdbss.sys - ok 15:32:30.0677 3888 [ A36EE93698802CD899F98BFD553D8185 ] C:\Windows\System32\drivers\ssmdrv.sys 15:32:30.0677 3888 C:\Windows\System32\drivers\ssmdrv.sys - ok 15:32:30.0695 3888 [ FC6B9FF600CC585EA38B12589BD4E246 ] C:\Windows\System32\drivers\mssmbios.sys 15:32:30.0695 3888 C:\Windows\System32\drivers\mssmbios.sys - ok 15:32:30.0710 3888 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] C:\Windows\System32\drivers\nsiproxy.sys 15:32:30.0710 3888 C:\Windows\System32\drivers\nsiproxy.sys - ok 15:32:30.0726 3888 [ 1A050B0274BFB3890703D490F330C0DA ] C:\Windows\System32\drivers\discache.sys 15:32:30.0726 3888 C:\Windows\System32\drivers\discache.sys - ok 15:32:30.0744 3888 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] C:\Windows\System32\drivers\csc.sys 15:32:30.0744 3888 C:\Windows\System32\drivers\csc.sys - ok 15:32:30.0759 3888 [ 2287078ED48FCFC477B05B20CF38F36F ] C:\Windows\System32\drivers\blbdrive.sys 15:32:30.0759 3888 C:\Windows\System32\drivers\blbdrive.sys - ok 15:32:30.0775 3888 [ F024449C97EC1E464AAFFDA18593DB88 ] C:\Windows\System32\drivers\dfsc.sys 15:32:30.0775 3888 C:\Windows\System32\drivers\dfsc.sys - ok 15:32:30.0791 3888 [ 53E56450DA16A1A7F0D002F511113F67 ] C:\Windows\System32\drivers\avkmgr.sys 15:32:30.0791 3888 C:\Windows\System32\drivers\avkmgr.sys - ok 15:32:30.0808 3888 [ 7D967A682D4694DF7FA57D63A2DB01FE ] C:\Windows\System32\drivers\avipbb.sys 15:32:30.0808 3888 C:\Windows\System32\drivers\avipbb.sys - ok 15:32:30.0824 3888 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] C:\Windows\System32\drivers\intelppm.sys 15:32:30.0824 3888 C:\Windows\System32\drivers\intelppm.sys - ok 15:32:30.0841 3888 [ B2FA25D9B17A68BB93D58B0556E8C90D ] C:\Windows\System32\drivers\tunnel.sys 15:32:30.0841 3888 C:\Windows\System32\drivers\tunnel.sys - ok 15:32:30.0863 3888 [ 712D8A95E45B070114C5309ADA7358FF ] C:\Windows\System32\drivers\atikmdag.sys 15:32:30.0863 3888 C:\Windows\System32\drivers\atikmdag.sys - ok 15:32:30.0880 3888 [ 16742790895960690237A5143CEDEC8B ] C:\Windows\System32\smss.exe 15:32:30.0880 3888 C:\Windows\System32\smss.exe - ok 15:32:30.0898 3888 [ C30A91ADE8C9CB91E4281EC83C4500C6 ] C:\Windows\System32\ntdll.dll 15:32:30.0900 3888 C:\Windows\System32\ntdll.dll - ok 15:32:30.0917 3888 [ 23F5D28378A160352BA8F817BD8C71CB ] C:\Windows\System32\drivers\dxgkrnl.sys 15:32:30.0917 3888 C:\Windows\System32\drivers\dxgkrnl.sys - ok 15:32:30.0931 3888 [ D458D1C7F1D49869000668E3C3BB0D4D ] C:\Windows\System32\drivers\dxgmms1.sys 15:32:30.0931 3888 C:\Windows\System32\drivers\dxgmms1.sys - ok 15:32:30.0947 3888 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] C:\Windows\System32\drivers\i8042prt.sys 15:32:30.0947 3888 C:\Windows\System32\drivers\i8042prt.sys - ok 15:32:30.0962 3888 [ ADEF52CA1AEAE82B50DF86B56413107E ] C:\Windows\System32\drivers\kbdclass.sys 15:32:30.0962 3888 C:\Windows\System32\drivers\kbdclass.sys - ok 15:32:30.0978 3888 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] C:\Windows\System32\drivers\mouclass.sys 15:32:30.0978 3888 C:\Windows\System32\drivers\mouclass.sys - ok 15:32:30.0996 3888 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] C:\Windows\System32\drivers\serenum.sys 15:32:30.0996 3888 C:\Windows\System32\drivers\serenum.sys - ok 15:32:31.0011 3888 [ E817A017F82DF2A1F8CFDBDA29388B29 ] C:\Windows\System32\drivers\fdc.sys 15:32:31.0011 3888 C:\Windows\System32\drivers\fdc.sys - ok 15:32:31.0027 3888 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] C:\Windows\System32\drivers\parport.sys 15:32:31.0029 3888 C:\Windows\System32\drivers\parport.sys - ok 15:32:31.0044 3888 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] C:\Windows\System32\drivers\usbohci.sys 15:32:31.0044 3888 C:\Windows\System32\drivers\usbohci.sys - ok 15:32:31.0060 3888 [ 3AA940AA9AC3055FE32FF2D3D20CCD28 ] C:\Windows\System32\drivers\usbport.sys 15:32:31.0060 3888 C:\Windows\System32\drivers\usbport.sys - ok 15:32:31.0076 3888 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] C:\Windows\System32\drivers\usbehci.sys 15:32:31.0076 3888 C:\Windows\System32\drivers\usbehci.sys - ok 15:32:31.0093 3888 [ 6F0C643C7F49F2091B01D014EAE72E1A ] C:\Windows\System32\drivers\SiSGB6.sys 15:32:31.0093 3888 C:\Windows\System32\drivers\SiSGB6.sys - ok 15:32:31.0123 3888 [ 5DCEF0C32BE0F33277326586FA503689 ] C:\Windows\System32\drivers\ks.sys 15:32:31.0123 3888 C:\Windows\System32\drivers\ks.sys - ok 15:32:31.0138 3888 [ 682FCF7D2EB5158CD30408E976562408 ] C:\Windows\System32\drivers\VSTBS23.SYS 15:32:31.0138 3888 C:\Windows\System32\drivers\VSTBS23.SYS - ok 15:32:31.0154 3888 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] C:\Windows\System32\drivers\VSTDPV3.SYS 15:32:31.0154 3888 C:\Windows\System32\drivers\VSTDPV3.SYS - ok 15:32:31.0169 3888 [ BC0C7EA89194C299F051C24119000E17 ] C:\Windows\System32\drivers\VSTCNXT3.SYS 15:32:31.0169 3888 C:\Windows\System32\drivers\VSTCNXT3.SYS - ok 15:32:31.0185 3888 [ F001861E5700EE84E2D4E52C712F4964 ] C:\Windows\System32\drivers\modem.sys 15:32:31.0185 3888 C:\Windows\System32\drivers\modem.sys - ok 15:32:31.0203 3888 [ 27F9288AF019E6DACA281EDE51FF5928 ] C:\Windows\System32\drivers\drmk.sys 15:32:31.0203 3888 C:\Windows\System32\drivers\drmk.sys - ok 15:32:31.0218 3888 [ 2F2B02C025538CDD2E2D7155B3150602 ] C:\Windows\System32\drivers\cmudax3.sys 15:32:31.0218 3888 C:\Windows\System32\drivers\cmudax3.sys - ok 15:32:31.0234 3888 [ D72708C9F49500C13D7D067E169B7715 ] C:\Windows\System32\drivers\portcls.sys 15:32:31.0234 3888 C:\Windows\System32\drivers\portcls.sys - ok 15:32:31.0248 3888 [ F88A52EB62019D6A62FDD9E08034DBD8 ] C:\Windows\System32\autochk.exe 15:32:31.0251 3888 C:\Windows\System32\autochk.exe - ok 15:32:31.0263 3888 [ 57EC4AEF73660166074D8F7F31C0D4FD ] C:\Windows\System32\drivers\agilevpn.sys 15:32:31.0265 3888 C:\Windows\System32\drivers\agilevpn.sys - ok 15:32:31.0281 3888 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] C:\Windows\System32\drivers\CompositeBus.sys 15:32:31.0281 3888 C:\Windows\System32\drivers\CompositeBus.sys - ok 15:32:31.0296 3888 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] C:\Windows\System32\drivers\ndistapi.sys 15:32:31.0296 3888 C:\Windows\System32\drivers\ndistapi.sys - ok 15:32:31.0314 3888 [ D9F91EAFEC2815365CBE6D167E4E332A ] C:\Windows\System32\drivers\rasl2tp.sys 15:32:31.0314 3888 C:\Windows\System32\drivers\rasl2tp.sys - ok 15:32:31.0330 3888 [ 38FBE267E7E6983311179230FACB1017 ] C:\Windows\System32\drivers\ndiswan.sys 15:32:31.0330 3888 C:\Windows\System32\drivers\ndiswan.sys - ok 15:32:31.0351 3888 [ 0FE8B15916307A6AC12BFB6A63E45507 ] C:\Windows\System32\drivers\raspppoe.sys 15:32:31.0351 3888 C:\Windows\System32\drivers\raspppoe.sys - ok 15:32:31.0365 3888 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] C:\Windows\System32\drivers\raspptp.sys 15:32:31.0367 3888 C:\Windows\System32\drivers\raspptp.sys - ok 15:32:31.0390 3888 [ 44101F495A83EA6401D886E7FD70096B ] C:\Windows\System32\drivers\rassstp.sys 15:32:31.0392 3888 C:\Windows\System32\drivers\rassstp.sys - ok 15:32:31.0408 3888 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] C:\Windows\System32\drivers\rdpbus.sys 15:32:31.0408 3888 C:\Windows\System32\drivers\rdpbus.sys - ok 15:32:31.0425 3888 [ EDB05BD63148796F23EA78506404A538 ] C:\Windows\System32\drivers\serscan.sys 15:32:31.0425 3888 C:\Windows\System32\drivers\serscan.sys - ok 15:32:31.0441 3888 [ E58C78A848ADD9610A4DB6D214AF5224 ] C:\Windows\System32\drivers\swenum.sys 15:32:31.0441 3888 C:\Windows\System32\drivers\swenum.sys - ok 15:32:31.0457 3888 [ D295BED4B898F0FD999FCFA9B32B071B ] C:\Windows\System32\drivers\umbus.sys 15:32:31.0457 3888 C:\Windows\System32\drivers\umbus.sys - ok 15:32:31.0472 3888 [ FF5688D309347F2720911D8796912834 ] C:\Windows\System32\clbcatq.dll 15:32:31.0472 3888 C:\Windows\System32\clbcatq.dll - ok 15:32:31.0488 3888 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\System32\ole32.dll 15:32:31.0488 3888 C:\Windows\System32\ole32.dll - ok 15:32:31.0507 3888 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\System32\ws2_32.dll 15:32:31.0507 3888 C:\Windows\System32\ws2_32.dll - ok 15:32:31.0523 3888 [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE ] C:\Windows\System32\lpk.dll 15:32:31.0523 3888 C:\Windows\System32\lpk.dll - ok 15:32:31.0539 3888 [ 5553611E2F9EA6F613079177F1233068 ] C:\Windows\System32\wininet.dll 15:32:31.0539 3888 C:\Windows\System32\wininet.dll - ok 15:32:31.0554 3888 [ 4A8E2F20809CC161107FAA94F6CF2685 ] C:\Windows\System32\imm32.dll 15:32:31.0554 3888 C:\Windows\System32\imm32.dll - ok 15:32:31.0570 3888 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\System32\comdlg32.dll 15:32:31.0570 3888 C:\Windows\System32\comdlg32.dll - ok 15:32:31.0589 3888 [ E87F5393F7D8CE2FACC4DFF703531392 ] C:\Windows\System32\gdi32.dll 15:32:31.0589 3888 C:\Windows\System32\gdi32.dll - ok 15:32:31.0605 3888 [ 9FAC0F6D5F3D922DB294E30CD3F62369 ] C:\Windows\System32\urlmon.dll 15:32:31.0605 3888 C:\Windows\System32\urlmon.dll - ok 15:32:31.0623 3888 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\System32\setupapi.dll 15:32:31.0623 3888 C:\Windows\System32\setupapi.dll - ok 15:32:31.0644 3888 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\System32\usp10.dll 15:32:31.0644 3888 C:\Windows\System32\usp10.dll - ok 15:32:31.0660 3888 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\System32\Wldap32.dll 15:32:31.0660 3888 C:\Windows\System32\Wldap32.dll - ok 15:32:31.0675 3888 [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 ] C:\Windows\System32\user32.dll 15:32:31.0675 3888 C:\Windows\System32\user32.dll - ok 15:32:31.0691 3888 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] C:\Windows\System32\drivers\usbhub.sys 15:32:31.0691 3888 C:\Windows\System32\drivers\usbhub.sys - ok 15:32:31.0708 3888 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\System32\imagehlp.dll 15:32:31.0708 3888 C:\Windows\System32\imagehlp.dll - ok 15:32:31.0724 3888 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\System32\shlwapi.dll 15:32:31.0724 3888 C:\Windows\System32\shlwapi.dll - ok 15:32:31.0742 3888 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\System32\msctf.dll 15:32:31.0742 3888 C:\Windows\System32\msctf.dll - ok 15:32:31.0757 3888 [ EB8A00E8E9931A7EC04F920B09D880D8 ] C:\Windows\System32\iertutil.dll 15:32:31.0757 3888 C:\Windows\System32\iertutil.dll - ok 15:32:31.0773 3888 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\System32\normaliz.dll 15:32:31.0773 3888 C:\Windows\System32\normaliz.dll - ok 15:32:31.0789 3888 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\System32\nsi.dll 15:32:31.0789 3888 C:\Windows\System32\nsi.dll - ok 15:32:31.0804 3888 [ 6400774E903729ADD0A62A24A334EE56 ] C:\Windows\System32\rpcrt4.dll 15:32:31.0804 3888 C:\Windows\System32\rpcrt4.dll - ok 15:32:31.0824 3888 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\System32\oleaut32.dll 15:32:31.0824 3888 C:\Windows\System32\oleaut32.dll - ok 15:32:31.0839 3888 [ 6F93A0F455963DC8A9A16BB682C8D589 ] C:\Windows\System32\kernel32.dll 15:32:31.0839 3888 C:\Windows\System32\kernel32.dll - ok 15:32:31.0855 3888 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\System32\sechost.dll 15:32:31.0855 3888 C:\Windows\System32\sechost.dll - ok 15:32:31.0871 3888 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\System32\advapi32.dll 15:32:31.0871 3888 C:\Windows\System32\advapi32.dll - ok 15:32:31.0886 3888 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\System32\msvcrt.dll 15:32:31.0886 3888 C:\Windows\System32\msvcrt.dll - ok 15:32:31.0910 3888 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\System32\psapi.dll 15:32:31.0910 3888 C:\Windows\System32\psapi.dll - ok 15:32:31.0925 3888 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\System32\shell32.dll 15:32:31.0925 3888 C:\Windows\System32\shell32.dll - ok 15:32:31.0941 3888 [ 070C5B9D3006602A07757179D9B56F5D ] C:\Windows\System32\difxapi.dll 15:32:31.0941 3888 C:\Windows\System32\difxapi.dll - ok 15:32:31.0957 3888 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\System32\crypt32.dll 15:32:31.0957 3888 C:\Windows\System32\crypt32.dll - ok 15:32:31.0972 3888 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] C:\Windows\System32\drivers\ndproxy.sys 15:32:31.0972 3888 C:\Windows\System32\drivers\ndproxy.sys - ok 15:32:31.0990 3888 [ 3FFAEA12666E565FF51BF2FCA674F543 ] C:\Windows\System32\cfgmgr32.dll 15:32:31.0990 3888 C:\Windows\System32\cfgmgr32.dll - ok 15:32:32.0013 3888 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\System32\comctl32.dll 15:32:32.0013 3888 C:\Windows\System32\comctl32.dll - ok 15:32:32.0029 3888 [ CC4ED8BEA78B0DCA6F217E014C3291A7 ] C:\Windows\System32\devobj.dll 15:32:32.0029 3888 C:\Windows\System32\devobj.dll - ok 15:32:32.0044 3888 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\System32\wintrust.dll 15:32:32.0044 3888 C:\Windows\System32\wintrust.dll - ok 15:32:32.0062 3888 [ CE90695129BD27591C47F7A4AB526789 ] C:\Windows\System32\KernelBase.dll 15:32:32.0062 3888 C:\Windows\System32\KernelBase.dll - ok 15:32:32.0080 3888 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\System32\msasn1.dll 15:32:32.0080 3888 C:\Windows\System32\msasn1.dll - ok 15:32:32.0095 3888 [ 5FCD3320AAE71506B43F9E12E4E72172 ] C:\Windows\System32\drivers\dxapi.sys 15:32:32.0095 3888 C:\Windows\System32\drivers\dxapi.sys - ok 15:32:32.0111 3888 [ A36F22FB7A78A0591DA3A6E0783825E7 ] C:\Windows\System32\win32k.sys 15:32:32.0111 3888 C:\Windows\System32\win32k.sys - ok 15:32:32.0128 3888 [ 342271F6142E7C70805B8A81E1BA5F5C ] C:\Windows\System32\csrss.exe 15:32:32.0128 3888 C:\Windows\System32\csrss.exe - ok 15:32:32.0144 3888 [ 6C062EA09313872D2235027EF7A4554E ] C:\Windows\System32\csrsrv.dll 15:32:32.0144 3888 C:\Windows\System32\csrsrv.dll - ok 15:32:32.0167 3888 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\System32\basesrv.dll 15:32:32.0167 3888 C:\Windows\System32\basesrv.dll - ok 15:32:32.0181 3888 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\System32\winsrv.dll 15:32:32.0181 3888 C:\Windows\System32\winsrv.dll - ok 15:32:32.0201 3888 [ 030129520D4C75CBA170E0F0C6040C68 ] C:\Windows\System32\drivers\RTL8192su.sys 15:32:32.0201 3888 C:\Windows\System32\drivers\RTL8192su.sys - ok 15:32:32.0214 3888 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] C:\Windows\System32\drivers\vwifibus.sys 15:32:32.0214 3888 C:\Windows\System32\drivers\vwifibus.sys - ok 15:32:32.0230 3888 [ 79D10964DE86B292320E9DFE02282A23 ] C:\Windows\System32\drivers\monitor.sys 15:32:32.0230 3888 C:\Windows\System32\drivers\monitor.sys - ok 15:32:32.0246 3888 [ 5787196F32D043572EC6565C0EF1B8E0 ] C:\Windows\System32\drivers\usbd.sys 15:32:32.0246 3888 C:\Windows\System32\drivers\usbd.sys - ok 15:32:32.0261 3888 [ F991AB9CC6B908DB552166768176896A ] C:\Windows\System32\drivers\USBSTOR.SYS 15:32:32.0261 3888 C:\Windows\System32\drivers\USBSTOR.SYS - ok 15:32:32.0277 3888 [ 7C76B61A5E1EF5D1FA554CF134100F18 ] C:\Windows\System32\tsddd.dll 15:32:32.0277 3888 C:\Windows\System32\tsddd.dll - ok 15:32:32.0292 3888 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\System32\sxssrv.dll 15:32:32.0294 3888 C:\Windows\System32\sxssrv.dll - ok 15:32:32.0312 3888 [ B5C5DCAD3899512020D135600129D665 ] C:\Windows\System32\wininit.exe 15:32:32.0312 3888 C:\Windows\System32\wininit.exe - ok 15:32:32.0330 3888 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\System32\profapi.dll 15:32:32.0330 3888 C:\Windows\System32\profapi.dll - ok 15:32:32.0347 3888 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\System32\RpcRtRemote.dll 15:32:32.0347 3888 C:\Windows\System32\RpcRtRemote.dll - ok 15:32:32.0363 3888 [ 44496D13ECA356728E1CD71A5473DA4D ] C:\Windows\System32\KBDFR.DLL 15:32:32.0363 3888 C:\Windows\System32\KBDFR.DLL - ok 15:32:32.0378 3888 [ 357B990A4249D7F7485B230C0CC8825A ] C:\Windows\System32\KBDUS.DLL 15:32:32.0378 3888 C:\Windows\System32\KBDUS.DLL - ok 15:32:32.0394 3888 [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\Windows\System32\WlS0WndH.dll 15:32:32.0394 3888 C:\Windows\System32\WlS0WndH.dll - ok 15:32:32.0412 3888 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\System32\sxs.dll 15:32:32.0412 3888 C:\Windows\System32\sxs.dll - ok 15:32:32.0437 3888 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\System32\cryptbase.dll 15:32:32.0437 3888 C:\Windows\System32\cryptbase.dll - ok 15:32:32.0453 3888 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\System32\apphelp.dll 15:32:32.0453 3888 C:\Windows\System32\apphelp.dll - ok 15:32:32.0468 3888 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\System32\services.exe 15:32:32.0468 3888 C:\Windows\System32\services.exe - ok 15:32:32.0482 3888 [ 81951F51E318AECC2D68559E47485CC4 ] C:\Windows\System32\lsass.exe 15:32:32.0482 3888 C:\Windows\System32\lsass.exe - ok 15:32:32.0498 3888 [ 8AEA9A37C1A3565A204D37C5E72AB791 ] C:\Windows\System32\lsm.exe 15:32:32.0500 3888 C:\Windows\System32\lsm.exe - ok 15:32:32.0513 3888 [ CAEF9CD6C10B1017E2C298D849CD31DB ] C:\Windows\System32\cdd.dll 15:32:32.0513 3888 C:\Windows\System32\cdd.dll - ok 15:32:32.0529 3888 [ 6D13E1406F50C66E2A95D97F22C47560 ] C:\Windows\System32\winlogon.exe 15:32:32.0531 3888 C:\Windows\System32\winlogon.exe - ok 15:32:32.0546 3888 [ 4A054C853031616D161A84BECF281F47 ] C:\Windows\System32\sspicli.dll 15:32:32.0546 3888 C:\Windows\System32\sspicli.dll - ok 15:32:32.0564 3888 [ 3369D021265E369D57317D61FA86DD79 ] C:\Windows\System32\scext.dll 15:32:32.0564 3888 C:\Windows\System32\scext.dll - ok 15:32:32.0582 3888 [ 69678722290C78D5D7198C60B5A4E3E8 ] C:\Windows\System32\secur32.dll 15:32:32.0582 3888 C:\Windows\System32\secur32.dll - ok 15:32:32.0597 3888 [ 250AA41DE690561AF1282D598914564C ] C:\Windows\System32\scesrv.dll 15:32:32.0601 3888 C:\Windows\System32\scesrv.dll - ok 15:32:32.0615 3888 [ E361AE3010EA4B3123DAB5BDAE21798F ] C:\Windows\System32\sspisrv.dll 15:32:32.0615 3888 C:\Windows\System32\sspisrv.dll - ok 15:32:32.0630 3888 [ C95CA687D32DDAB1C91E1122E80D5E16 ] C:\Windows\System32\lsasrv.dll 15:32:32.0630 3888 C:\Windows\System32\lsasrv.dll - ok 15:32:32.0646 3888 [ BA51FFE170C5B3AE8EC4F5BD2581A29E ] C:\Windows\System32\sysntfy.dll 15:32:32.0646 3888 C:\Windows\System32\sysntfy.dll - ok 15:32:32.0662 3888 [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\System32\wmsgapi.dll 15:32:32.0662 3888 C:\Windows\System32\wmsgapi.dll - ok 15:32:32.0685 3888 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\System32\winsta.dll 15:32:32.0687 3888 C:\Windows\System32\winsta.dll - ok 15:32:32.0703 3888 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\System32\srvcli.dll 15:32:32.0703 3888 C:\Windows\System32\srvcli.dll - ok 15:32:32.0718 3888 [ 245F4691314F42D4D1BC06442F0B2086 ] C:\Windows\System32\samsrv.dll 15:32:32.0718 3888 C:\Windows\System32\samsrv.dll - ok 15:32:32.0736 3888 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] C:\Windows\System32\aelupsvc.dll 15:32:32.0736 3888 C:\Windows\System32\aelupsvc.dll - ok 15:32:32.0753 3888 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\System32\cryptdll.dll 15:32:32.0753 3888 C:\Windows\System32\cryptdll.dll - ok 15:32:32.0769 3888 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\System32\wevtapi.dll 15:32:32.0769 3888 C:\Windows\System32\wevtapi.dll - ok 15:32:32.0785 3888 [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\System32\cngaudit.dll 15:32:32.0785 3888 C:\Windows\System32\cngaudit.dll - ok 15:32:32.0802 3888 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\System32\authz.dll 15:32:32.0802 3888 C:\Windows\System32\authz.dll - ok 15:32:32.0818 3888 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\System32\ncrypt.dll 15:32:32.0818 3888 C:\Windows\System32\ncrypt.dll - ok 15:32:32.0832 3888 [ FC7650224790CAE75A5E9231961FDEC5 ] C:\Windows\System32\bcrypt.dll 15:32:32.0832 3888 C:\Windows\System32\bcrypt.dll - ok 15:32:32.0847 3888 [ 18A54E132947CD98FEA9ACCC57F98F13 ] C:\Windows\System32\alg.exe 15:32:32.0847 3888 C:\Windows\System32\alg.exe - ok 15:32:32.0863 3888 [ C90878913DF3DC504790282043DB5F4C ] C:\Windows\System32\msprivs.dll 15:32:32.0863 3888 C:\Windows\System32\msprivs.dll - ok 15:32:32.0878 3888 [ E343CABBD8D600ABAF3F11625D33B3D0 ] C:\Windows\System32\netjoin.dll 15:32:32.0878 3888 C:\Windows\System32\netjoin.dll - ok 15:32:32.0894 3888 [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\System32\negoexts.dll 15:32:32.0894 3888 C:\Windows\System32\negoexts.dll - ok 15:32:32.0912 3888 [ BDA0B954A30498B5A7EDC6204CBA07ED ] C:\Windows\System32\kerberos.dll 15:32:32.0912 3888 C:\Windows\System32\kerberos.dll - ok 15:32:32.0927 3888 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\System32\cryptsp.dll 15:32:32.0927 3888 C:\Windows\System32\cryptsp.dll - ok 15:32:32.0951 3888 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\System32\mswsock.dll 15:32:32.0953 3888 C:\Windows\System32\mswsock.dll - ok 15:32:32.0966 3888 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\System32\wship6.dll 15:32:32.0968 3888 C:\Windows\System32\wship6.dll - ok 15:32:32.0980 3888 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\System32\msv1_0.dll 15:32:32.0980 3888 C:\Windows\System32\msv1_0.dll - ok 15:32:33.0003 3888 [ C1809B9907ADEDAF16F50C894100883B ] C:\Windows\System32\netlogon.dll 15:32:33.0003 3888 C:\Windows\System32\netlogon.dll - ok 15:32:33.0017 3888 [ 62A9C86CB6085E20DB4823E4E97826F5 ] C:\Windows\System32\appidsvc.dll 15:32:33.0019 3888 C:\Windows\System32\appidsvc.dll - ok 15:32:33.0035 3888 [ FB1959012294D6AD43E5304DF65E3C26 ] C:\Windows\System32\appinfo.dll 15:32:33.0035 3888 C:\Windows\System32\appinfo.dll - ok 15:32:33.0046 3888 [ A45D184DF6A8803DA13A0B329517A64A ] C:\Windows\System32\appmgmts.dll 15:32:33.0046 3888 C:\Windows\System32\appmgmts.dll - ok 15:32:33.0062 3888 [ 761A3A4038C1FD4F5795427907C28484 ] C:\Windows\System32\rascfg.dll 15:32:33.0064 3888 C:\Windows\System32\rascfg.dll - ok 15:32:33.0080 3888 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] C:\Windows\System32\audiosrv.dll 15:32:33.0080 3888 C:\Windows\System32\audiosrv.dll - ok 15:32:33.0095 3888 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\System32\dnsapi.dll 15:32:33.0095 3888 C:\Windows\System32\dnsapi.dll - ok 15:32:33.0113 3888 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\System32\logoncli.dll 15:32:33.0113 3888 C:\Windows\System32\logoncli.dll - ok 15:32:33.0130 3888 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\System32\schannel.dll 15:32:33.0130 3888 C:\Windows\System32\schannel.dll - ok 15:32:33.0146 3888 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] C:\Windows\System32\AxInstSv.dll 15:32:33.0146 3888 C:\Windows\System32\AxInstSv.dll - ok 15:32:33.0162 3888 [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\System32\wdigest.dll 15:32:33.0162 3888 C:\Windows\System32\wdigest.dll - ok 15:32:33.0177 3888 [ EE1E9C3BB8228AE423DD38DB69128E71 ] C:\Windows\System32\bdesvc.dll 15:32:33.0177 3888 C:\Windows\System32\bdesvc.dll - ok 15:32:33.0203 3888 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\System32\rsaenh.dll 15:32:33.0203 3888 C:\Windows\System32\rsaenh.dll - ok 15:32:33.0220 3888 [ D29E45078CF4020CE0AAC82EC652D1EA ] C:\Windows\System32\TSpkg.dll 15:32:33.0220 3888 C:\Windows\System32\TSpkg.dll - ok 15:32:33.0236 3888 [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\System32\pku2u.dll 15:32:33.0236 3888 C:\Windows\System32\pku2u.dll - ok 15:32:33.0251 3888 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\System32\bcryptprimitives.dll 15:32:33.0251 3888 C:\Windows\System32\bcryptprimitives.dll - ok 15:32:33.0267 3888 [ 91F434FF6606ED9BDC6A05D651B69553 ] C:\Windows\System32\efslsaext.dll 15:32:33.0267 3888 C:\Windows\System32\efslsaext.dll - ok 15:32:33.0281 3888 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\System32\credssp.dll 15:32:33.0281 3888 C:\Windows\System32\credssp.dll - ok 15:32:33.0296 3888 [ 1E2BAC209D184BB851E1A187D8A29136 ] C:\Windows\System32\BFE.DLL 15:32:33.0296 3888 C:\Windows\System32\BFE.DLL - ok 15:32:33.0314 3888 [ 8124944EC89D6A1815E4E53F5B96AAF4 ] C:\Windows\System32\scecli.dll 15:32:33.0314 3888 C:\Windows\System32\scecli.dll - ok 15:32:33.0335 3888 [ E585445D5021971FAE10393F0F1C3961 ] C:\Windows\System32\qmgr.dll 15:32:33.0337 3888 C:\Windows\System32\qmgr.dll - ok 15:32:33.0353 3888 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] C:\Windows\System32\browser.dll 15:32:33.0353 3888 C:\Windows\System32\browser.dll - ok 15:32:33.0369 3888 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] C:\Windows\System32\bthserv.dll 15:32:33.0369 3888 C:\Windows\System32\bthserv.dll - ok 15:32:33.0384 3888 [ 319C6B309773D063541D01DF8AC6F55F ] C:\Windows\System32\certprop.dll 15:32:33.0384 3888 C:\Windows\System32\certprop.dll - ok 15:32:33.0402 3888 [ 635181E0E9BBF16871BF5380D71DB02D ] C:\Windows\System32\clfs.sys 15:32:33.0402 3888 C:\Windows\System32\clfs.sys - ok 15:32:33.0417 3888 [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\System32\comres.dll 15:32:33.0417 3888 C:\Windows\System32\comres.dll - ok 15:32:33.0433 3888 [ 96C0E38905CFD788313BE8E11DAE3F2F ] C:\Windows\System32\cryptsvc.dll 15:32:33.0433 3888 C:\Windows\System32\cryptsvc.dll - ok 15:32:33.0447 3888 [ 15F93B37F6801943360D9EB42485D5D3 ] C:\Windows\System32\cscsvc.dll 15:32:33.0447 3888 C:\Windows\System32\cscsvc.dll - ok 15:32:33.0470 3888 [ 370E6FB6F6FF1B3DAC7F1182AC493BB6 ] C:\Windows\System32\oleres.dll 15:32:33.0472 3888 C:\Windows\System32\oleres.dll - ok 15:32:33.0490 3888 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] C:\Windows\System32\defragsvc.dll 15:32:33.0490 3888 C:\Windows\System32\defragsvc.dll - ok 15:32:33.0509 3888 [ E9E01EB683C132F7FA27CD607B8A2B63 ] C:\Windows\System32\dhcpcore.dll 15:32:33.0509 3888 C:\Windows\System32\dhcpcore.dll - ok 15:32:33.0525 3888 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] C:\Windows\System32\dot3svc.dll 15:32:33.0525 3888 C:\Windows\System32\dot3svc.dll - ok 15:32:33.0541 3888 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] C:\Windows\System32\dps.dll 15:32:33.0541 3888 C:\Windows\System32\dps.dll - ok 15:32:33.0556 3888 [ 8600142FA91C1B96367D3300AD0F3F3A ] C:\Windows\System32\eapsvc.dll 15:32:33.0556 3888 C:\Windows\System32\eapsvc.dll - ok 15:32:33.0572 3888 [ 00A99DA54C14969A899ED316D16E9A9E ] C:\Windows\System32\efssvc.dll 15:32:33.0572 3888 C:\Windows\System32\efssvc.dll - ok 15:32:33.0587 3888 [ A8C362018EFC87BEB013EE28F29C0863 ] C:\Windows\ehome\ehrecvr.exe 15:32:33.0587 3888 C:\Windows\ehome\ehrecvr.exe - ok 15:32:33.0605 3888 [ D389BFF34F80CAEDE417BF9D1507996A ] C:\Windows\ehome\ehsched.exe 15:32:33.0605 3888 C:\Windows\ehome\ehsched.exe - ok 15:32:33.0621 3888 [ 241E015DD809CFB23242F890B1FC575B ] C:\Windows\System32\wevtsvc.dll 15:32:33.0621 3888 C:\Windows\System32\wevtsvc.dll - ok 15:32:33.0636 3888 [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\System32\FXSRESM.dll 15:32:33.0636 3888 C:\Windows\System32\FXSRESM.dll - ok 15:32:33.0652 3888 [ F3222C893BD2F5821A0179E5C71E88FB ] C:\Windows\System32\fdPHost.dll 15:32:33.0652 3888 C:\Windows\System32\fdPHost.dll - ok 15:32:33.0667 3888 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] C:\Windows\System32\FDResPub.dll 15:32:33.0667 3888 C:\Windows\System32\FDResPub.dll - ok 15:32:33.0681 3888 [ 6CF00369C97F3CF563BE99BE983D13D8 ] C:\Windows\System32\drivers\fileinfo.sys 15:32:33.0683 3888 C:\Windows\System32\drivers\fileinfo.sys - ok 15:32:33.0701 3888 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] C:\Windows\System32\drivers\filetrace.sys 15:32:33.0701 3888 C:\Windows\System32\drivers\filetrace.sys - ok 15:32:33.0726 3888 [ 7520EC808E0C35E0EE6F841294316653 ] C:\Windows\System32\drivers\fltMgr.sys 15:32:33.0726 3888 C:\Windows\System32\drivers\fltMgr.sys - ok 15:32:33.0744 3888 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] C:\Windows\System32\FntCache.dll 15:32:33.0744 3888 C:\Windows\System32\FntCache.dll - ok 15:32:33.0757 3888 [ 6A08F1C87BBF6197F5DAD95CF41E5175 ] C:\Windows\System32\PresentationHost.exe 15:32:33.0759 3888 C:\Windows\System32\PresentationHost.exe - ok 15:32:33.0773 3888 [ 1A16B57943853E598CFF37FE2B8CBF1D ] C:\Windows\System32\drivers\fsdepends.sys 15:32:33.0775 3888 C:\Windows\System32\drivers\fsdepends.sys - ok 15:32:33.0791 3888 [ 8A73E79089B282100B9393B644CB853B ] C:\Windows\System32\drivers\fvevol.sys 15:32:33.0791 3888 C:\Windows\System32\drivers\fvevol.sys - ok 15:32:33.0806 3888 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\System32\gpapi.dll 15:32:33.0806 3888 C:\Windows\System32\gpapi.dll - ok 15:32:33.0824 3888 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\System32\hidserv.dll 15:32:33.0824 3888 C:\Windows\System32\hidserv.dll - ok 15:32:33.0839 3888 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] C:\Windows\System32\KMSVC.DLL 15:32:33.0839 3888 C:\Windows\System32\KMSVC.DLL - ok 15:32:33.0855 3888 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] C:\Windows\System32\ListSvc.dll 15:32:33.0855 3888 C:\Windows\System32\ListSvc.dll - ok 15:32:33.0871 3888 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] C:\Windows\System32\provsvc.dll 15:32:33.0871 3888 C:\Windows\System32\provsvc.dll - ok 15:32:33.0886 3888 [ 871917B07A141BFF43D76D8844D48106 ] C:\Windows\System32\drivers\http.sys 15:32:33.0886 3888 C:\Windows\System32\drivers\http.sys - ok 15:32:33.0904 3888 [ 0C4E035C7F105F1299258C90886C64C5 ] C:\Windows\System32\drivers\hwpolicy.sys 15:32:33.0904 3888 C:\Windows\System32\drivers\hwpolicy.sys - ok 15:32:33.0919 3888 [ 68F94A45AB26C06221B6BF5C491436D8 ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll 15:32:33.0921 3888 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok 15:32:33.0937 3888 [ F95622F161474511B8D80D6B093AA610 ] C:\Windows\System32\IKEEXT.DLL 15:32:33.0937 3888 C:\Windows\System32\IKEEXT.DLL - ok 15:32:33.0955 3888 [ ACB364B9075A45C0736E5C47BE5CAE19 ] C:\Windows\System32\IPBusEnum.dll 15:32:33.0955 3888 C:\Windows\System32\IPBusEnum.dll - ok 15:32:33.0970 3888 [ 4D65A07B795D6674312F879D09AA7663 ] C:\Windows\System32\iphlpsvc.dll 15:32:33.0970 3888 C:\Windows\System32\iphlpsvc.dll - ok 15:32:33.0994 3888 [ 42996CFF20A3084A56017B7902307E9F ] C:\Windows\System32\drivers\irenum.sys 15:32:33.0994 3888 C:\Windows\System32\drivers\irenum.sys - ok 15:32:34.0011 3888 [ AF75DBA674E55221B7A055B0A4345F16 ] C:\Windows\System32\keyiso.dll 15:32:34.0011 3888 C:\Windows\System32\keyiso.dll - ok 15:32:34.0027 3888 [ D64AF876D53ECA3668BB97B51B4E70AB ] C:\Windows\System32\srvsvc.dll 15:32:34.0027 3888 C:\Windows\System32\srvsvc.dll - ok 15:32:34.0042 3888 [ 58405E4F68BA8E4057C6E914F326ABA2 ] C:\Windows\System32\wkssvc.dll 15:32:34.0042 3888 C:\Windows\System32\wkssvc.dll - ok 15:32:34.0058 3888 [ 276678C13E3F01E9EC32ED7E56B4FEA0 ] C:\Windows\System32\lltdres.dll 15:32:34.0058 3888 C:\Windows\System32\lltdres.dll - ok 15:32:34.0074 3888 [ 55CA01BA19D0006C8F2639B6C045E08B ] C:\Windows\System32\lmhsvc.dll 15:32:34.0074 3888 C:\Windows\System32\lmhsvc.dll - ok 15:32:34.0089 3888 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] C:\Windows\System32\drivers\luafv.sys 15:32:34.0089 3888 C:\Windows\System32\drivers\luafv.sys - ok 15:32:34.0107 3888 [ F7807FFF85E636D53A0C2C2CD8BCDC5F ] C:\Windows\ehome\ehres.dll 15:32:34.0107 3888 C:\Windows\ehome\ehres.dll - ok 15:32:34.0123 3888 [ 146B6F43A673379A3C670E86D89BE5EA ] C:\Windows\System32\mmcss.dll 15:32:34.0123 3888 C:\Windows\System32\mmcss.dll - ok 15:32:34.0142 3888 [ FC8771F45ECCCFD89684E38842539B9B ] C:\Windows\System32\drivers\mountmgr.sys 15:32:34.0142 3888 C:\Windows\System32\drivers\mountmgr.sys - ok 15:32:34.0158 3888 [ 3F50200237961034FACE602373838980 ] C:\Windows\System32\FirewallAPI.dll 15:32:34.0158 3888 C:\Windows\System32\FirewallAPI.dll - ok 15:32:34.0173 3888 [ A9D880F97530D5B8FEE278923349929D ] C:\Windows\System32\WebClnt.dll 15:32:34.0173 3888 C:\Windows\System32\WebClnt.dll - ok 15:32:34.0193 3888 [ 3E1E5767043C5AF9367F0056295E9F84 ] C:\Windows\System32\drivers\mshidkmdf.sys 15:32:34.0193 3888 C:\Windows\System32\drivers\mshidkmdf.sys - ok 15:32:34.0208 3888 [ BB5B4BA716D145B2ADF241052EDAB983 ] C:\Windows\System32\iscsidsc.dll 15:32:34.0208 3888 C:\Windows\System32\iscsidsc.dll - ok 15:32:34.0226 3888 [ 1F59B386F652A0484A3CC0B680B1132B ] C:\Windows\System32\msimsg.dll 15:32:34.0226 3888 C:\Windows\System32\msimsg.dll - ok 15:32:34.0248 3888 [ 159FAD02F64E6381758C990F753BCC80 ] C:\Windows\System32\drivers\mup.sys 15:32:34.0248 3888 C:\Windows\System32\drivers\mup.sys - ok 15:32:34.0263 3888 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] C:\Windows\System32\QAGENTRT.DLL 15:32:34.0263 3888 C:\Windows\System32\QAGENTRT.DLL - ok 15:32:34.0279 3888 [ 8C9C922D71F1CD4DEF73F186416B7896 ] C:\Windows\System32\drivers\ndis.sys 15:32:34.0279 3888 C:\Windows\System32\drivers\ndis.sys - ok 15:32:34.0296 3888 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] C:\Windows\System32\netman.dll 15:32:34.0296 3888 C:\Windows\System32\netman.dll - ok 15:32:34.0312 3888 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\System32\netprofm.dll 15:32:34.0312 3888 C:\Windows\System32\netprofm.dll - ok 15:32:34.0328 3888 [ 912084381D30D8B89EC4E293053F4710 ] C:\Windows\System32\nlasvc.dll 15:32:34.0328 3888 C:\Windows\System32\nlasvc.dll - ok 15:32:34.0345 3888 [ BA387E955E890C8A88306D9B8D06BF17 ] C:\Windows\System32\nsisvc.dll 15:32:34.0345 3888 C:\Windows\System32\nsisvc.dll - ok 15:32:34.0361 3888 [ 82A8521DDC60710C3D3D3E7325209BEC ] C:\Windows\System32\pnrpsvc.dll 15:32:34.0361 3888 C:\Windows\System32\pnrpsvc.dll - ok 15:32:34.0376 3888 [ 59C3DDD501E39E006DAC31BF55150D91 ] C:\Windows\System32\p2psvc.dll 15:32:34.0376 3888 C:\Windows\System32\p2psvc.dll - ok 15:32:34.0394 3888 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] C:\Windows\System32\drivers\partmgr.sys 15:32:34.0394 3888 C:\Windows\System32\drivers\partmgr.sys - ok 15:32:34.0410 3888 [ 358AB7956D3160000726574083DFC8A6 ] C:\Windows\System32\pcasvc.dll 15:32:34.0410 3888 C:\Windows\System32\pcasvc.dll - ok 15:32:34.0425 3888 [ AF4D64D2A57B9772CF3801950B8058A6 ] C:\Windows\System32\PeerDistSvc.dll 15:32:34.0425 3888 C:\Windows\System32\PeerDistSvc.dll - ok 15:32:34.0443 3888 [ 414BBA67A3DED1D28437EB66AEB8A720 ] C:\Windows\System32\pla.dll 15:32:34.0443 3888 C:\Windows\System32\pla.dll - ok 15:32:34.0460 3888 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] C:\Windows\System32\umpnpmgr.dll 15:32:34.0460 3888 C:\Windows\System32\umpnpmgr.dll - ok 15:32:34.0474 3888 [ 63FF8572611249931EB16BB8EED6AFC8 ] C:\Windows\System32\pnrpauto.dll 15:32:34.0474 3888 C:\Windows\System32\pnrpauto.dll - ok 15:32:34.0490 3888 [ 0E6DCD164732580CC1E57276252F49CF ] C:\Windows\System32\polstore.dll 15:32:34.0492 3888 C:\Windows\System32\polstore.dll - ok 15:32:34.0517 3888 [ F87D30E72E03D579A5199CCB3831D6EA ] C:\Windows\System32\umpo.dll 15:32:34.0517 3888 C:\Windows\System32\umpo.dll - ok 15:32:34.0531 3888 [ CADEFAC453040E370A1BDFF3973BE00D ] C:\Windows\System32\profsvc.dll 15:32:34.0531 3888 C:\Windows\System32\profsvc.dll - ok 15:32:34.0546 3888 [ 274992D0945889A6B56D0E1BD4288A6E ] C:\Windows\System32\psbase.dll 15:32:34.0546 3888 C:\Windows\System32\psbase.dll - ok 15:32:34.0562 3888 [ 31AC809E7707EB580B2BDB760390765A ] C:\Windows\System32\qwave.dll 15:32:34.0562 3888 C:\Windows\System32\qwave.dll - ok 15:32:34.0578 3888 [ 584078CA1B95CA72DF2A27C336F9719D ] C:\Windows\System32\drivers\qwavedrv.sys 15:32:34.0578 3888 C:\Windows\System32\drivers\qwavedrv.sys - ok 15:32:34.0595 3888 [ A60F1839849C0C00739787FD5EC03F13 ] C:\Windows\System32\rasauto.dll 15:32:34.0595 3888 C:\Windows\System32\rasauto.dll - ok 15:32:34.0611 3888 [ CB9E04DC05EACF5B9A36CA276D475006 ] C:\Windows\System32\rasmans.dll 15:32:34.0611 3888 C:\Windows\System32\rasmans.dll - ok 15:32:34.0626 3888 [ D318F23BE45D5E3A107469EB64815B50 ] C:\Windows\System32\sstpsvc.dll 15:32:34.0626 3888 C:\Windows\System32\sstpsvc.dll - ok 15:32:34.0642 3888 [ 7B5E1419717FAC363A31CC302895217A ] C:\Windows\System32\mprdim.dll 15:32:34.0644 3888 C:\Windows\System32\mprdim.dll - ok 15:32:34.0660 3888 [ CB9A8683F4EF2BF99E123D79950D7935 ] C:\Windows\System32\regsvc.dll 15:32:34.0660 3888 C:\Windows\System32\regsvc.dll - ok 15:32:34.0675 3888 [ 78D072F35BC45D9E4E1B61895C152234 ] C:\Windows\System32\RpcEpMap.dll 15:32:34.0675 3888 C:\Windows\System32\RpcEpMap.dll - ok 15:32:34.0693 3888 [ 94D36C0E44677DD26981D2BFEEF2A29D ] C:\Windows\System32\Locator.exe 15:32:34.0693 3888 C:\Windows\System32\Locator.exe - ok 15:32:34.0708 3888 [ 8FC518FFE9519C2631D37515A68009C4 ] C:\Windows\System32\SCardSvr.dll 15:32:34.0708 3888 C:\Windows\System32\SCardSvr.dll - ok 15:32:34.0726 3888 [ 0693B5EC673E34DC147E195779A4DCF6 ] C:\Windows\System32\drivers\scfilter.sys 15:32:34.0726 3888 C:\Windows\System32\drivers\scfilter.sys - ok 15:32:34.0742 3888 [ A04BB13F8A72F8B6E8B4071723E4E336 ] C:\Windows\System32\schedsvc.dll 15:32:34.0742 3888 C:\Windows\System32\schedsvc.dll - ok 15:32:34.0767 3888 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] C:\Windows\System32\sdrsvc.dll 15:32:34.0767 3888 C:\Windows\System32\sdrsvc.dll - ok 15:32:34.0781 3888 [ A59B3A4442C52060CC7A85293AA3546F ] C:\Windows\System32\seclogon.dll 15:32:34.0781 3888 C:\Windows\System32\seclogon.dll - ok 15:32:34.0796 3888 [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\System32\Sens.dll 15:32:34.0796 3888 C:\Windows\System32\Sens.dll - ok 15:32:34.0814 3888 [ 50087FE1EE447009C9CC2997B90DE53F ] C:\Windows\System32\sensrsvc.dll 15:32:34.0814 3888 C:\Windows\System32\sensrsvc.dll - ok 15:32:34.0830 3888 [ 4AE380F39A0032EAB7DD953030B26D28 ] C:\Windows\System32\SessEnv.dll 15:32:34.0830 3888 C:\Windows\System32\SessEnv.dll - ok 15:32:34.0845 3888 [ D1A079A0DE2EA524513B6930C24527A2 ] C:\Windows\System32\ipnathlp.dll 15:32:34.0845 3888 C:\Windows\System32\ipnathlp.dll - ok 15:32:34.0861 3888 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\System32\shsvcs.dll 15:32:34.0861 3888 C:\Windows\System32\shsvcs.dll - ok 15:32:34.0876 3888 [ CAFC0B884E5590B5E80D84F592388B3D ] C:\Windows\System32\tcpipcfg.dll 15:32:34.0876 3888 C:\Windows\System32\tcpipcfg.dll - ok 15:32:34.0896 3888 [ 6A984831644ECA1A33FFEAE4126F4F37 ] C:\Windows\System32\snmptrap.exe 15:32:34.0896 3888 C:\Windows\System32\snmptrap.exe - ok 15:32:34.0912 3888 [ 9AEA093B8F9C37CF45538382CABA2475 ] C:\Windows\System32\spoolsv.exe 15:32:34.0912 3888 C:\Windows\System32\spoolsv.exe - ok 15:32:34.0927 3888 [ CF87A1DE791347E75B98885214CED2B8 ] C:\Windows\System32\sppsvc.exe 15:32:34.0927 3888 C:\Windows\System32\sppsvc.exe - ok 15:32:34.0943 3888 [ B0180B20B065D89232A78A40FE56EAA6 ] C:\Windows\System32\sppuinotify.dll 15:32:34.0943 3888 C:\Windows\System32\sppuinotify.dll - ok 15:32:34.0958 3888 [ D887C9FD02AC9FA880F6E5027A43E118 ] C:\Windows\System32\ssdpsrv.dll 15:32:34.0958 3888 C:\Windows\System32\ssdpsrv.dll - ok 15:32:34.0974 3888 [ E1FB3706030FB4578A0D72C2FC3689E4 ] C:\Windows\System32\wiaservc.dll 15:32:34.0974 3888 C:\Windows\System32\wiaservc.dll - ok 15:32:34.0990 3888 [ B0AC902EFD7E46708014625ECEB25741 ] C:\Windows\System32\vmstorfltres.dll 15:32:34.0990 3888 C:\Windows\System32\vmstorfltres.dll - ok 15:32:35.0007 3888 [ A28BD92DF340E57B024BA433165D34D7 ] C:\Windows\System32\swprv.dll 15:32:35.0007 3888 C:\Windows\System32\swprv.dll - ok 15:32:35.0029 3888 [ 36650D618CA34C9D357DFD3D89B2C56F ] C:\Windows\System32\sysmain.dll 15:32:35.0031 3888 C:\Windows\System32\sysmain.dll - ok 15:32:35.0046 3888 [ 763FECDC3D30C815FE72DD57936C6CD1 ] C:\Windows\System32\TabSvc.dll 15:32:35.0046 3888 C:\Windows\System32\TabSvc.dll - ok 15:32:35.0062 3888 [ 613BF4820361543956909043A265C6AC ] C:\Windows\System32\tapisrv.dll 15:32:35.0062 3888 C:\Windows\System32\tapisrv.dll - ok 15:32:35.0078 3888 [ B799D9FDB26111737F58288D8DC172D9 ] C:\Windows\System32\tbssvc.dll 15:32:35.0078 3888 C:\Windows\System32\tbssvc.dll - ok 15:32:35.0097 3888 [ 382C804C92811BE57829D8E550A900E2 ] C:\Windows\System32\termsrv.dll 15:32:35.0097 3888 C:\Windows\System32\termsrv.dll - ok 15:32:35.0117 3888 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] C:\Windows\System32\themeservice.dll 15:32:35.0117 3888 C:\Windows\System32\themeservice.dll - ok 15:32:35.0130 3888 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] C:\Windows\System32\trkwks.dll 15:32:35.0134 3888 C:\Windows\System32\trkwks.dll - ok 15:32:35.0150 3888 [ 2C49B175AEE1D4364B91B531417FE583 ] C:\Windows\servicing\TrustedInstaller.exe 15:32:35.0150 3888 C:\Windows\servicing\TrustedInstaller.exe - ok 15:32:35.0164 3888 [ 254BB140EEE3C59D6114C1A86B636877 ] C:\Windows\System32\drivers\tssecsrv.sys 15:32:35.0164 3888 C:\Windows\System32\drivers\tssecsrv.sys - ok 15:32:35.0179 3888 [ 8344FD4FCE927880AA1AA7681D4927E5 ] C:\Windows\System32\UI0Detect.exe 15:32:35.0179 3888 C:\Windows\System32\UI0Detect.exe - ok 15:32:35.0197 3888 [ 409994A8EACEEE4E328749C0353527A0 ] C:\Windows\System32\umrdp.dll 15:32:35.0197 3888 C:\Windows\System32\umrdp.dll - ok 15:32:35.0212 3888 [ 833FBB672460EFCE8011D262175FAD33 ] C:\Windows\System32\upnphost.dll 15:32:35.0212 3888 C:\Windows\System32\upnphost.dll - ok 15:32:35.0228 3888 [ 505BF4D1CADEB8D4F8BCD08D944DE25D ] C:\Windows\System32\dwm.exe 15:32:35.0228 3888 C:\Windows\System32\dwm.exe - ok 15:32:35.0244 3888 [ 6FEC7B9A76B41D9AC67615A3040017F5 ] C:\Windows\System32\vaultsvc.dll 15:32:35.0246 3888 C:\Windows\System32\vaultsvc.dll - ok 15:32:35.0259 3888 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] C:\Windows\System32\vds.exe 15:32:35.0261 3888 C:\Windows\System32\vds.exe - ok 15:32:35.0285 3888 [ 6FD5074B8CD05450F3F040993C6C2F1D ] C:\Windows\System32\vmbusres.dll 15:32:35.0285 3888 C:\Windows\System32\vmbusres.dll - ok 15:32:35.0302 3888 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] C:\Windows\System32\drivers\volmgrx.sys 15:32:35.0302 3888 C:\Windows\System32\drivers\volmgrx.sys - ok 15:32:35.0318 3888 [ 209A3B1901B83AEB8527ED211CCE9E4C ] C:\Windows\System32\VSSVC.exe 15:32:35.0318 3888 C:\Windows\System32\VSSVC.exe - ok 15:32:35.0333 3888 [ 55187FD710E27D5095D10A472C8BAF1C ] C:\Windows\System32\w32time.dll 15:32:35.0333 3888 C:\Windows\System32\w32time.dll - ok 15:32:35.0351 3888 [ 6F3705B2E59AC26FDA582BF5826F9D21 ] C:\Windows\System32\Wat\WatUX.exe 15:32:35.0351 3888 C:\Windows\System32\Wat\WatUX.exe - ok 15:32:35.0369 3888 [ 691E3285E53DCA558E1A84667F13E15A ] C:\Windows\System32\wbengine.exe 15:32:35.0369 3888 C:\Windows\System32\wbengine.exe - ok 15:32:35.0384 3888 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] C:\Windows\System32\wbiosrvc.dll 15:32:35.0384 3888 C:\Windows\System32\wbiosrvc.dll - ok 15:32:35.0402 3888 [ 34EEE0DFAADB4F691D6D5308A51315DC ] C:\Windows\System32\wcncsvc.dll 15:32:35.0402 3888 C:\Windows\System32\wcncsvc.dll - ok 15:32:35.0417 3888 [ 5D930B6357A6D2AF4D7653BDABBF352F ] C:\Windows\System32\WcsPlugInService.dll 15:32:35.0417 3888 C:\Windows\System32\WcsPlugInService.dll - ok 15:32:35.0433 3888 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\System32\wdi.dll 15:32:35.0433 3888 C:\Windows\System32\wdi.dll - ok 15:32:35.0447 3888 [ 760F0AFE937A77CFF27153206534F275 ] C:\Windows\System32\wecsvc.dll 15:32:35.0447 3888 C:\Windows\System32\wecsvc.dll - ok 15:32:35.0462 3888 [ AC804569BB2364FB6017370258A4091B ] C:\Windows\System32\wercplsupport.dll 15:32:35.0462 3888 C:\Windows\System32\wercplsupport.dll - ok 15:32:35.0478 3888 [ 08E420D873E4FD85241EE2421B02C4A4 ] C:\Windows\System32\wersvc.dll 15:32:35.0478 3888 C:\Windows\System32\wersvc.dll - ok 15:32:35.0496 3888 [ EFD4E29FED530564BE4C3076C806FB65 ] C:\Program Files\Windows Defender\MsMpRes.dll 15:32:35.0496 3888 C:\Program Files\Windows Defender\MsMpRes.dll - ok 15:32:35.0513 3888 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\System32\winhttp.dll 15:32:35.0513 3888 C:\Windows\System32\winhttp.dll - ok 15:32:35.0529 3888 [ F62E510B6AD4C21EB9FE8668ED251826 ] C:\Windows\System32\wbem\WMIsvc.dll 15:32:35.0529 3888 C:\Windows\System32\wbem\WMIsvc.dll - ok 15:32:35.0554 3888 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] C:\Windows\System32\WsmSvc.dll 15:32:35.0554 3888 C:\Windows\System32\WsmSvc.dll - ok 15:32:35.0570 3888 [ 16935C98FF639D185086A3529B1F2067 ] C:\Windows\System32\wlansvc.dll 15:32:35.0570 3888 C:\Windows\System32\wlansvc.dll - ok 15:32:35.0585 3888 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] C:\Windows\System32\wbem\WmiApSrv.exe 15:32:35.0585 3888 C:\Windows\System32\wbem\WmiApSrv.exe - ok 15:32:35.0605 3888 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] C:\Program Files\Windows Media Player\wmpnetwk.exe 15:32:35.0605 3888 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok 15:32:35.0623 3888 [ A2F0EC770A92F2B3F9DE6D518E11409C ] C:\Windows\System32\wpcsvc.dll 15:32:35.0623 3888 C:\Windows\System32\wpcsvc.dll - ok 15:32:35.0638 3888 [ AA53356D60AF47EACC85BC617A4F3F66 ] C:\Windows\System32\wpdbusenum.dll 15:32:35.0638 3888 C:\Windows\System32\wpdbusenum.dll - ok 15:32:35.0654 3888 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] C:\Windows\System32\wscsvc.dll 15:32:35.0654 3888 C:\Windows\System32\wscsvc.dll - ok 15:32:35.0669 3888 [ 236F286E103FD44BD85FDD93097FD5DD ] C:\Windows\System32\SearchIndexer.exe 15:32:35.0669 3888 C:\Windows\System32\SearchIndexer.exe - ok 15:32:35.0685 3888 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll 15:32:35.0685 3888 C:\Windows\System32\wuaueng.dll - ok 15:32:35.0703 3888 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] C:\Windows\System32\WUDFSvc.dll 15:32:35.0703 3888 C:\Windows\System32\WUDFSvc.dll - ok 15:32:35.0718 3888 [ FF2D745B560F7C71B31F30F4D49F73D2 ] C:\Windows\System32\wwansvc.dll 15:32:35.0718 3888 C:\Windows\System32\wwansvc.dll - ok 15:32:35.0740 3888 [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\System32\ubpm.dll 15:32:35.0740 3888 C:\Windows\System32\ubpm.dll - ok 15:32:35.0755 3888 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\System32\svchost.exe 15:32:35.0755 3888 C:\Windows\System32\svchost.exe - ok 15:32:35.0771 3888 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\System32\SPInf.dll 15:32:35.0771 3888 C:\Windows\System32\SPInf.dll - ok 15:32:35.0787 3888 [ FD07F21E0A19C27ED4E1EEC2B07452B3 ] C:\Windows\System32\devrtl.dll 15:32:35.0787 3888 C:\Windows\System32\devrtl.dll - ok 15:32:35.0810 3888 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\System32\userenv.dll 15:32:35.0810 3888 C:\Windows\System32\userenv.dll - ok 15:32:35.0826 3888 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\System32\pcwum.dll 15:32:35.0826 3888 C:\Windows\System32\pcwum.dll - ok 15:32:35.0841 3888 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\System32\powrprof.dll 15:32:35.0841 3888 C:\Windows\System32\powrprof.dll - ok 15:32:35.0859 3888 [ D5541F0AFB767E85FC412FC609D96A74 ] C:\Windows\System32\drivers\avgntflt.sys 15:32:35.0859 3888 C:\Windows\System32\drivers\avgntflt.sys - ok 15:32:35.0875 3888 [ E714A1C0354636837E20CCBF00888EE7 ] C:\Windows\System32\drivers\WUDFPf.sys 15:32:35.0875 3888 C:\Windows\System32\drivers\WUDFPf.sys - ok 15:32:35.0890 3888 [ 7660F01D3B38ACA1747E397D21D790AF ] C:\Windows\System32\rpcss.dll 15:32:35.0890 3888 C:\Windows\System32\rpcss.dll - ok 15:32:35.0908 3888 [ 47E2CF43BF6A86D59DB1483D13222DDE ] C:\Program Files\Avira\AntiVir Desktop\avsda.dll 15:32:35.0908 3888 C:\Program Files\Avira\AntiVir Desktop\avsda.dll - ok 15:32:35.0923 3888 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\System32\IPHLPAPI.DLL 15:32:35.0923 3888 C:\Windows\System32\IPHLPAPI.DLL - ok 15:32:35.0939 3888 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\System32\winnsi.dll 15:32:35.0939 3888 C:\Windows\System32\winnsi.dll - ok 15:32:35.0955 3888 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\System32\WSHTCPIP.DLL 15:32:35.0955 3888 C:\Windows\System32\WSHTCPIP.DLL - ok 15:32:35.0970 3888 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\System32\wshqos.dll 15:32:35.0970 3888 C:\Windows\System32\wshqos.dll - ok 15:32:35.0986 3888 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\System32\version.dll 15:32:35.0986 3888 C:\Windows\System32\version.dll - ok 15:32:36.0003 3888 [ 3EF0D8AB08385AAB5802E773511A2E6A ] C:\Windows\System32\LogonUI.exe 15:32:36.0003 3888 C:\Windows\System32\LogonUI.exe - ok 15:32:36.0019 3888 [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\Windows\System32\authui.dll 15:32:36.0019 3888 C:\Windows\System32\authui.dll - ok 15:32:36.0035 3888 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\System32\cryptui.dll 15:32:36.0035 3888 C:\Windows\System32\cryptui.dll - ok 15:32:36.0052 3888 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll 15:32:36.0052 3888 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok 15:32:36.0074 3888 [ F14A9B1778376D0B1788E402AC1F831A ] C:\Windows\System32\shacct.dll 15:32:36.0074 3888 C:\Windows\System32\shacct.dll - ok 15:32:36.0091 3888 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\System32\samlib.dll 15:32:36.0091 3888 C:\Windows\System32\samlib.dll - ok 15:32:36.0109 3888 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\System32\propsys.dll 15:32:36.0109 3888 C:\Windows\System32\propsys.dll - ok 15:32:36.0125 3888 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\System32\MMDevAPI.dll 15:32:36.0125 3888 C:\Windows\System32\MMDevAPI.dll - ok 15:32:36.0140 3888 [ 63BFDF555DA2075A77D677829C3CCCD0 ] C:\Windows\System32\uxtheme.dll 15:32:36.0140 3888 C:\Windows\System32\uxtheme.dll - ok 15:32:36.0156 3888 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll 15:32:36.0156 3888 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok 15:32:36.0173 3888 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\System32\dui70.dll 15:32:36.0173 3888 C:\Windows\System32\dui70.dll - ok 15:32:36.0189 3888 [ AC8C80DC4F1A6E60C9A762C1799F0B39 ] C:\Windows\System32\adtschema.dll 15:32:36.0189 3888 C:\Windows\System32\adtschema.dll - ok 15:32:36.0207 3888 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\System32\avrt.dll 15:32:36.0207 3888 C:\Windows\System32\avrt.dll - ok 15:32:36.0222 3888 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\System32\duser.dll 15:32:36.0222 3888 C:\Windows\System32\duser.dll - ok 15:32:36.0238 3888 [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\Windows\System32\SndVolSSO.dll 15:32:36.0238 3888 C:\Windows\System32\SndVolSSO.dll - ok 15:32:36.0253 3888 [ 8B0B4C5927A333A05513791758350DC4 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll 15:32:36.0253 3888 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok 15:32:36.0291 3888 [ 9FBCFD7E88A7ACE0E94456504895DD7F ] C:\Windows\System32\WUDFPlatform.dll 15:32:36.0291 3888 C:\Windows\System32\WUDFPlatform.dll - ok 15:32:36.0306 3888 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\System32\hid.dll 15:32:36.0306 3888 C:\Windows\System32\hid.dll - ok 15:32:36.0335 3888 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\System32\dwmapi.dll 15:32:36.0335 3888 C:\Windows\System32\dwmapi.dll - ok 15:32:36.0351 3888 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\System32\xmllite.dll 15:32:36.0351 3888 C:\Windows\System32\xmllite.dll - ok 15:32:36.0367 3888 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\System32\WindowsCodecs.dll 15:32:36.0367 3888 C:\Windows\System32\WindowsCodecs.dll - ok 15:32:36.0382 3888 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\System32\winbrand.dll 15:32:36.0382 3888 C:\Windows\System32\winbrand.dll - ok 15:32:36.0400 3888 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\System32\wtsapi32.dll 15:32:36.0400 3888 C:\Windows\System32\wtsapi32.dll - ok 15:32:36.0414 3888 [ 65BF13016A3C22775F3E17591AE5268A ] C:\Windows\System32\VaultCredProvider.dll 15:32:36.0414 3888 C:\Windows\System32\VaultCredProvider.dll - ok 15:32:36.0429 3888 [ 05BF975CA428E04B462FB90841B37C95 ] C:\Windows\System32\SmartcardCredentialProvider.dll 15:32:36.0429 3888 C:\Windows\System32\SmartcardCredentialProvider.dll - ok 15:32:36.0447 3888 [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\System32\BioCredProv.dll 15:32:36.0447 3888 C:\Windows\System32\BioCredProv.dll - ok 15:32:36.0462 3888 [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\System32\winbio.dll 15:32:36.0462 3888 C:\Windows\System32\winbio.dll - ok 15:32:36.0478 3888 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\System32\credui.dll 15:32:36.0478 3888 C:\Windows\System32\credui.dll - ok 15:32:36.0494 3888 [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\System32\vaultcli.dll 15:32:36.0494 3888 C:\Windows\System32\vaultcli.dll - ok 15:32:36.0511 3888 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\System32\netapi32.dll 15:32:36.0511 3888 C:\Windows\System32\netapi32.dll - ok 15:32:36.0527 3888 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\System32\netutils.dll 15:32:36.0527 3888 C:\Windows\System32\netutils.dll - ok 15:32:36.0542 3888 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\System32\wkscli.dll 15:32:36.0542 3888 C:\Windows\System32\wkscli.dll - ok 15:32:36.0558 3888 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\System32\samcli.dll 15:32:36.0558 3888 C:\Windows\System32\samcli.dll - ok 15:32:36.0574 3888 [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\System32\certCredProvider.dll 15:32:36.0574 3888 C:\Windows\System32\certCredProvider.dll - ok 15:32:36.0603 3888 [ D93A937A2A9D2CBC06B3A615A197011F ] C:\Windows\System32\PSHED.DLL 15:32:36.0603 3888 C:\Windows\System32\PSHED.DLL - ok 15:32:36.0619 3888 [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\System32\rasplap.dll 15:32:36.0619 3888 C:\Windows\System32\rasplap.dll - ok 15:32:36.0632 3888 [ 9835584E999D25004E1EE8E5F3E3B881 ] C:\Windows\System32\MPSSVC.dll 15:32:36.0634 3888 C:\Windows\System32\MPSSVC.dll - ok 15:32:36.0646 3888 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\System32\rasapi32.dll 15:32:36.0646 3888 C:\Windows\System32\rasapi32.dll - ok 15:32:36.0662 3888 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\System32\rasman.dll 15:32:36.0662 3888 C:\Windows\System32\rasman.dll - ok 15:32:36.0677 3888 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\System32\rtutils.dll 15:32:36.0679 3888 C:\Windows\System32\rtutils.dll - ok 15:32:36.0695 3888 [ 1319CD4619E96B156911CA3897563EBC ] C:\Windows\System32\ci.dll 15:32:36.0695 3888 C:\Windows\System32\ci.dll - ok 15:32:36.0710 3888 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\System32\oleacc.dll 15:32:36.0710 3888 C:\Windows\System32\oleacc.dll - ok 15:32:36.0726 3888 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\System32\UIAutomationCore.dll 15:32:36.0738 3888 C:\Windows\System32\UIAutomationCore.dll - ok 15:32:36.0753 3888 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\System32\msimg32.dll 15:32:36.0753 3888 C:\Windows\System32\msimg32.dll - ok 15:32:36.0769 3888 [ F68194F74350D4A2ADE98961E33F884C ] C:\Windows\System32\audiodg.exe 15:32:36.0769 3888 C:\Windows\System32\audiodg.exe - ok 15:32:36.0785 3888 [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll 15:32:36.0785 3888 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok 15:32:36.0802 3888 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\System32\ntmarta.dll 15:32:36.0802 3888 C:\Windows\System32\ntmarta.dll - ok 15:32:36.0820 3888 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\System32\winmm.dll 15:32:36.0820 3888 C:\Windows\System32\winmm.dll - ok 15:32:36.0835 3888 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\System32\wdmaud.drv 15:32:36.0835 3888 C:\Windows\System32\wdmaud.drv - ok 15:32:36.0857 3888 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\System32\ksuser.dll 15:32:36.0857 3888 C:\Windows\System32\ksuser.dll - ok 15:32:36.0873 3888 [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\System32\PeerDist.dll 15:32:36.0873 3888 C:\Windows\System32\PeerDist.dll - ok 15:32:36.0888 3888 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\System32\taskschd.dll 15:32:36.0888 3888 C:\Windows\System32\taskschd.dll - ok 15:32:36.0906 3888 [ E897EAF5ED6BA41E081060C9B447A673 ] C:\Windows\System32\gpsvc.dll 15:32:36.0906 3888 C:\Windows\System32\gpsvc.dll - ok 15:32:36.0921 3888 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\System32\AudioSes.dll 15:32:36.0921 3888 C:\Windows\System32\AudioSes.dll - ok 15:32:36.0937 3888 [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\System32\nlaapi.dll 15:32:36.0937 3888 C:\Windows\System32\nlaapi.dll - ok 15:32:36.0953 3888 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\System32\atl.dll 15:32:36.0953 3888 C:\Windows\System32\atl.dll - ok 15:32:36.0968 3888 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\System32\mstask.dll 15:32:36.0968 3888 C:\Windows\System32\mstask.dll - ok 15:32:36.0984 3888 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\System32\dsrole.dll 15:32:36.0984 3888 C:\Windows\System32\dsrole.dll - ok 15:32:37.0000 3888 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\System32\slc.dll 15:32:37.0000 3888 C:\Windows\System32\slc.dll - ok 15:32:37.0017 3888 [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\System32\UXInit.dll 15:32:37.0017 3888 C:\Windows\System32\UXInit.dll - ok 15:32:37.0029 3888 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\System32\es.dll 15:32:37.0029 3888 C:\Windows\System32\es.dll - ok 15:32:37.0046 3888 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\System32\msacm32.drv 15:32:37.0046 3888 C:\Windows\System32\msacm32.drv - ok 15:32:37.0062 3888 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\System32\msacm32.dll 15:32:37.0064 3888 C:\Windows\System32\msacm32.dll - ok 15:32:37.0080 3888 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\System32\midimap.dll 15:32:37.0080 3888 C:\Windows\System32\midimap.dll - ok 15:32:37.0109 3888 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\System32\imageres.dll 15:32:37.0109 3888 C:\Windows\System32\imageres.dll - ok 15:32:37.0125 3888 [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\System32\AudioEng.dll 15:32:37.0125 3888 C:\Windows\System32\AudioEng.dll - ok 15:32:37.0140 3888 [ 081E6E1C91AEC36758902A9F727CD23C ] C:\Windows\System32\uxsms.dll 15:32:37.0140 3888 C:\Windows\System32\uxsms.dll - ok 15:32:37.0156 3888 [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\Windows\System32\AUDIOKSE.dll 15:32:37.0156 3888 C:\Windows\System32\AUDIOKSE.dll - ok 15:32:37.0171 3888 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] C:\Windows\System32\drivers\lltdio.sys 15:32:37.0171 3888 C:\Windows\System32\drivers\lltdio.sys - ok 15:32:37.0187 3888 [ 26384429FCD85D83746F63E798AB1480 ] C:\Windows\System32\drivers\nwifi.sys 15:32:37.0187 3888 C:\Windows\System32\drivers\nwifi.sys - ok 15:32:37.0205 3888 [ D8A65DAFB3EB41CBB622745676FCD072 ] C:\Windows\System32\drivers\ndisuio.sys 15:32:37.0205 3888 C:\Windows\System32\drivers\ndisuio.sys - ok 15:32:37.0220 3888 [ 032B0D36AD92B582D869879F5AF5B928 ] C:\Windows\System32\drivers\rspndr.sys 15:32:37.0220 3888 C:\Windows\System32\drivers\rspndr.sys - ok 15:32:37.0236 3888 [ D2A937964199F647B1C3BC435712E5D9 ] C:\Windows\System32\nrpsrv.dll 15:32:37.0236 3888 C:\Windows\System32\nrpsrv.dll - ok 15:32:37.0251 3888 [ 990A58A0B01720E419B55EFC5FF387F8 ] C:\Windows\System32\dhcpcore6.dll 15:32:37.0251 3888 C:\Windows\System32\dhcpcore6.dll - ok 15:32:37.0267 3888 [ 33EF4861F19A0736B11314AAD9AE28D0 ] C:\Windows\System32\dnsrslvr.dll 15:32:37.0267 3888 C:\Windows\System32\dnsrslvr.dll - ok 15:32:37.0283 3888 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\System32\FWPUCLNT.DLL 15:32:37.0283 3888 C:\Windows\System32\FWPUCLNT.DLL - ok 15:32:37.0302 3888 [ 100103C6535C66265267F5EEA5F5846E ] C:\Windows\System32\dnsext.dll 15:32:37.0302 3888 C:\Windows\System32\dnsext.dll - ok 15:32:37.0320 3888 [ 9A892B3439884C62B04718F0303A49E9 ] C:\Windows\System32\eapphost.dll 15:32:37.0320 3888 C:\Windows\System32\eapphost.dll - ok 15:32:37.0337 3888 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\System32\dhcpcsvc.dll 15:32:37.0337 3888 C:\Windows\System32\dhcpcsvc.dll - ok 15:32:37.0353 3888 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\System32\dhcpcsvc6.dll 15:32:37.0353 3888 C:\Windows\System32\dhcpcsvc6.dll - ok 15:32:37.0376 3888 [ 6944501ED659F2C835F8DD16182C9330 ] C:\Windows\System32\rastls.dll 15:32:37.0376 3888 C:\Windows\System32\rastls.dll - ok 15:32:37.0392 3888 [ 207CF171B1C6B8AE50C1FBF87363EEBC ] C:\Windows\System32\raschap.dll 15:32:37.0392 3888 C:\Windows\System32\raschap.dll - ok 15:32:37.0408 3888 [ D33E95C0A2754061233B58DC41F8094C ] C:\Windows\System32\umb.dll 15:32:37.0408 3888 C:\Windows\System32\umb.dll - ok 15:32:37.0425 3888 [ 3C9035085141162416A0DD34DBF3F3C1 ] C:\Windows\System32\wlanmsm.dll 15:32:37.0425 3888 C:\Windows\System32\wlanmsm.dll - ok 15:32:37.0441 3888 [ 20C06A50DFC097E134BC6FA8444CA9BC ] C:\Windows\System32\wlansec.dll 15:32:37.0441 3888 C:\Windows\System32\wlansec.dll - ok 15:32:37.0455 3888 [ F748F53FE09D21D8ECBB6421E6792024 ] C:\Windows\System32\onex.dll 15:32:37.0457 3888 C:\Windows\System32\onex.dll - ok 15:32:37.0472 3888 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\System32\eappprxy.dll 15:32:37.0472 3888 C:\Windows\System32\eappprxy.dll - ok 15:32:37.0488 3888 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\System32\eappcfg.dll 15:32:37.0488 3888 C:\Windows\System32\eappcfg.dll - ok 15:32:37.0507 3888 [ 749F9795F01C35EEBE100A87D82B9681 ] C:\Windows\System32\wlgpclnt.dll 15:32:37.0507 3888 C:\Windows\System32\wlgpclnt.dll - ok 15:32:37.0525 3888 [ C1585EAA67C37A05BF6F93726FAFC069 ] C:\Windows\System32\l2gpstore.dll 15:32:37.0525 3888 C:\Windows\System32\l2gpstore.dll - ok 15:32:37.0541 3888 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\System32\wlanutil.dll 15:32:37.0541 3888 C:\Windows\System32\wlanutil.dll - ok 15:32:37.0556 3888 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\System32\WinSCard.dll 15:32:37.0556 3888 C:\Windows\System32\WinSCard.dll - ok 15:32:37.0572 3888 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\System32\msxml6.dll 15:32:37.0572 3888 C:\Windows\System32\msxml6.dll - ok 15:32:37.0589 3888 [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\System32\netcfgx.dll 15:32:37.0589 3888 C:\Windows\System32\netcfgx.dll - ok 15:32:37.0607 3888 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\System32\ktmw32.dll 15:32:37.0607 3888 C:\Windows\System32\ktmw32.dll - ok 15:32:37.0628 3888 [ 1C3E8371377E988B683797A132EFFE1B ] C:\Windows\System32\taskcomp.dll 15:32:37.0628 3888 C:\Windows\System32\taskcomp.dll - ok 15:32:37.0646 3888 [ E6D90DC604F407B3B5E0FD285E46B2A0 ] C:\Windows\System32\fveapi.dll 15:32:37.0646 3888 C:\Windows\System32\fveapi.dll - ok 15:32:37.0660 3888 [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\System32\tbs.dll 15:32:37.0660 3888 C:\Windows\System32\tbs.dll - ok 15:32:37.0675 3888 [ C87F28A34B3840F4B40011D170B1A159 ] C:\Windows\System32\fvecerts.dll 15:32:37.0677 3888 C:\Windows\System32\fvecerts.dll - ok 15:32:37.0693 3888 [ FF3D87A9667A66FD32C1352389CC17F9 ] C:\Program Files\Avira\AntiVir Desktop\sched.exe 15:32:37.0693 3888 C:\Program Files\Avira\AntiVir Desktop\sched.exe - ok 15:32:37.0710 3888 [ BC83108B18756547013ED443B8CDB31B ] C:\Windows\System32\msvcp100.dll 15:32:37.0710 3888 C:\Windows\System32\msvcp100.dll - ok 15:32:37.0726 3888 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Windows\System32\msvcr100.dll 15:32:37.0726 3888 C:\Windows\System32\msvcr100.dll - ok 15:32:37.0744 3888 [ F52A926B08314FD145FD3F5C263569DA ] C:\Program Files\Avira\AntiVir Desktop\grdcore.dll 15:32:37.0744 3888 C:\Program Files\Avira\AntiVir Desktop\grdcore.dll - ok 15:32:37.0759 3888 [ 0EB12429B8418D5C709B0FBA09FFE287 ] C:\Program Files\Avira\AntiVir Desktop\scewxmlw.dll 15:32:37.0759 3888 C:\Program Files\Avira\AntiVir Desktop\scewxmlw.dll - ok 15:32:37.0777 3888 [ 6EE5D1B48E8BCC2279C4261B6A60D4AC ] C:\Program Files\Avira\AntiVir Desktop\cfglib.dll 15:32:37.0777 3888 C:\Program Files\Avira\AntiVir Desktop\cfglib.dll - ok 15:32:37.0794 3888 [ E2D56AE1D40E3725084054CD8E9CFBB1 ] C:\Windows\System32\wiarpc.dll 15:32:37.0794 3888 C:\Windows\System32\wiarpc.dll - ok 15:32:37.0812 3888 [ F9656698026D843E4B8F32DDE3D91B2C ] C:\Program Files\Avira\AntiVir Desktop\gpipc.dll 15:32:37.0812 3888 C:\Program Files\Avira\AntiVir Desktop\gpipc.dll - ok 15:32:37.0828 3888 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\System32\mpr.dll 15:32:37.0828 3888 C:\Windows\System32\mpr.dll - ok 15:32:37.0843 3888 [ 0463551C62A2A4CE1887E849A924988A ] C:\Program Files\Avira\AntiVir Desktop\gpgen.dll 15:32:37.0843 3888 C:\Program Files\Avira\AntiVir Desktop\gpgen.dll - ok 15:32:37.0859 3888 [ 3760317B1CE7832A9012049E61189943 ] C:\Program Files\Avira\AntiVir Desktop\gpschd.dll 15:32:37.0859 3888 C:\Program Files\Avira\AntiVir Desktop\gpschd.dll - ok 15:32:37.0875 3888 [ 35A68DE843B18B7CE24F7E566286EF52 ] C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll 15:32:37.0875 3888 C:\Program Files\Avira\AntiVir Desktop\avevtlog.dll - ok 15:32:37.0900 3888 [ A3C1B31F6A95923C4B93D82568CE4636 ] C:\Program Files\Avira\AntiVir Desktop\schedr.dll 15:32:37.0900 3888 C:\Program Files\Avira\AntiVir Desktop\schedr.dll - ok 15:32:37.0916 3888 [ 72A47B0CC2D6A88E858E48140C4ADAFE ] C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 15:32:37.0917 3888 C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll - ok 15:32:37.0933 3888 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] C:\Windows\System32\drivers\bowser.sys 15:32:37.0933 3888 C:\Windows\System32\drivers\bowser.sys - ok 15:32:37.0947 3888 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] C:\Windows\System32\drivers\mpsdrv.sys 15:32:37.0947 3888 C:\Windows\System32\drivers\mpsdrv.sys - ok 15:32:37.0962 3888 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] C:\Windows\System32\drivers\mrxsmb.sys 15:32:37.0962 3888 C:\Windows\System32\drivers\mrxsmb.sys - ok 15:32:37.0990 3888 [ 6D17A4791ACA19328C685D256349FEFC ] C:\Windows\System32\drivers\mrxsmb10.sys 15:32:37.0992 3888 C:\Windows\System32\drivers\mrxsmb10.sys - ok 15:32:38.0011 3888 [ B81F204D146000BE76651A50670A5E9E ] C:\Windows\System32\drivers\mrxsmb20.sys 15:32:38.0011 3888 C:\Windows\System32\drivers\mrxsmb20.sys - ok 15:32:38.0037 3888 [ 8E79090CB0987CA102E845341E052537 ] C:\Windows\System32\vdmdbg.dll 15:32:38.0037 3888 C:\Windows\System32\vdmdbg.dll - ok 15:32:38.0054 3888 [ EB0A59F29C19B86479D36B35983DAADC ] C:\Windows\System32\drivers\parvdm.sys 15:32:38.0054 3888 C:\Windows\System32\drivers\parvdm.sys - ok 15:32:38.0076 3888 [ B1EA9681502EE57F87DB71D726288A5B ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 15:32:38.0076 3888 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok 15:32:38.0099 3888 [ B3892E6DA8E2C8CE4B0A9D3EB9A185E5 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll 15:32:38.0099 3888 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll - ok 15:32:38.0117 3888 [ 019C372B1A9DA73A22D0D35A4D40F5C9 ] C:\Windows\System32\wfapigp.dll 15:32:38.0117 3888 C:\Windows\System32\wfapigp.dll - ok 15:32:38.0134 3888 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\System32\mscms.dll 15:32:38.0134 3888 C:\Windows\System32\mscms.dll - ok 15:32:38.0158 3888 [ 18EC9EF58DBCE6BAEAC6DD7E9D29666F ] C:\Program Files\Avira\AntiVir Desktop\avguard.exe 15:32:38.0158 3888 C:\Program Files\Avira\AntiVir Desktop\avguard.exe - ok 15:32:38.0175 3888 [ A2F17346CC5C502D4E29EF986BD17D34 ] C:\Windows\System32\PeerDistSh.dll 15:32:38.0175 3888 C:\Windows\System32\PeerDistSh.dll - ok 15:32:38.0193 3888 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\System32\cryptnet.dll 15:32:38.0193 3888 C:\Windows\System32\cryptnet.dll - ok 15:32:38.0210 3888 [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\System32\vssapi.dll 15:32:38.0210 3888 C:\Windows\System32\vssapi.dll - ok 15:32:38.0226 3888 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\System32\vsstrace.dll 15:32:38.0226 3888 C:\Windows\System32\vsstrace.dll - ok 15:32:38.0244 3888 [ BA818B7B57EA99165B63B839E63A3F18 ] C:\Program Files\Avira\AntiVir Desktop\gpgrd.dll 15:32:38.0244 3888 C:\Program Files\Avira\AntiVir Desktop\gpgrd.dll - ok 15:32:38.0261 3888 [ 6D891FF06470C9491B5DADEEF5197660 ] C:\Program Files\Avira\AntiVir Desktop\gpavgio.dll 15:32:38.0261 3888 C:\Program Files\Avira\AntiVir Desktop\gpavgio.dll - ok 15:32:38.0277 3888 [ BBC614401D2F8074399732CA42D6470F ] C:\Program Files\Avira\AntiVir Desktop\gpgui.dll 15:32:38.0277 3888 C:\Program Files\Avira\AntiVir Desktop\gpgui.dll - ok 15:32:38.0300 3888 [ 8718BC45B3F08D53AAFBADC301978BB8 ] C:\Program Files\Avira\AntiVir Desktop\gplegacy.dll 15:32:38.0300 3888 C:\Program Files\Avira\AntiVir Desktop\gplegacy.dll - ok 15:32:38.0316 3888 [ FFE7C3DE2068DA6992AD52059B95C8EE ] C:\Windows\System32\HerculesWiFiService.exe 15:32:38.0318 3888 C:\Windows\System32\HerculesWiFiService.exe - ok 15:32:38.0335 3888 [ BD35C49737BE7CD9BEF008D5AC2F4E06 ] C:\Program Files\Avira\AntiVir Desktop\gpgavid.dll 15:32:38.0335 3888 C:\Program Files\Avira\AntiVir Desktop\gpgavid.dll - ok 15:32:38.0353 3888 [ 8F9F50F3810672AC36503B72A0B1808A ] C:\Program Files\Avira\AntiVir Desktop\libdb44.dll 15:32:38.0353 3888 C:\Program Files\Avira\AntiVir Desktop\libdb44.dll - ok 15:32:38.0371 3888 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\System32\mscoree.dll 15:32:38.0371 3888 C:\Windows\System32\mscoree.dll - ok 15:32:38.0386 3888 [ AC442BA0D618CD48F149AAE0B3D39939 ] C:\Program Files\Avira\AntiVir Desktop\gpgenrep.dll 15:32:38.0388 3888 C:\Program Files\Avira\AntiVir Desktop\gpgenrep.dll - ok 15:32:38.0412 3888 [ F8DBF67256552315CC376C1858CEC6D7 ] C:\Program Files\Avira\AntiVir Desktop\onlcfg.dll 15:32:38.0412 3888 C:\Program Files\Avira\AntiVir Desktop\onlcfg.dll - ok 15:32:38.0429 3888 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll 15:32:38.0429 3888 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok 15:32:38.0449 3888 [ 1BA354401E0639373D3077D04A3B24E3 ] C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll 15:32:38.0449 3888 C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll - ok 15:32:38.0466 3888 [ 4552F8F61A7975C2359D19673483604D ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll 15:32:38.0466 3888 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok 15:32:38.0482 3888 [ AB474A7D36052DB606319779CB020D65 ] C:\Program Files\Avira\AntiVir Desktop\avipc.dll 15:32:38.0482 3888 C:\Program Files\Avira\AntiVir Desktop\avipc.dll - ok 15:32:38.0527 3888 [ 82F759A63E7C15F5C13F2C5A74A5A360 ] C:\Program Files\Avira\AntiVir Desktop\avgio.dll 15:32:38.0527 3888 C:\Program Files\Avira\AntiVir Desktop\avgio.dll - ok 15:32:38.0544 3888 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\System32\fltLib.dll 15:32:38.0544 3888 C:\Windows\System32\fltLib.dll - ok 15:32:38.0562 3888 [ 7EC9566152EAEA4762C13BDFB035339E ] C:\Program Files\Avira\AntiVir Desktop\avpref.dll 15:32:38.0562 3888 C:\Program Files\Avira\AntiVir Desktop\avpref.dll - ok 15:32:38.0583 3888 [ 786019C7CFEC0F16A0FB3C5367D7EA31 ] C:\Program Files\Avira\AntiVir Desktop\aecore.dll 15:32:38.0583 3888 C:\Program Files\Avira\AntiVir Desktop\aecore.dll - ok 15:32:38.0607 3888 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll 15:32:38.0607 3888 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok 15:32:38.0623 3888 [ E75A782A8C218D03A0AF54325132BC70 ] C:\Program Files\Avira\AntiVir Desktop\aevdf.dll 15:32:38.0623 3888 C:\Program Files\Avira\AntiVir Desktop\aevdf.dll - ok 15:32:38.0640 3888 [ 6661319F5AF0E978E339546C8F1F9599 ] C:\Program Files\Avira\AntiVir Desktop\aescript.dll 15:32:38.0640 3888 C:\Program Files\Avira\AntiVir Desktop\aescript.dll - ok 15:32:38.0658 3888 [ C4A8EE0AE033F01515240B1F5476410A ] C:\Program Files\Avira\AntiVir Desktop\aescn.dll 15:32:38.0658 3888 C:\Program Files\Avira\AntiVir Desktop\aescn.dll - ok 15:32:38.0685 3888 [ C2335D714EFAFFFB4C7A3C164F2024B1 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll 15:32:38.0685 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll - ok 15:32:38.0705 3888 [ 64605B72B605DEDE66D38E3D7094E73B ] C:\Program Files\Avira\AntiVir Desktop\aesbx.dll 15:32:38.0705 3888 C:\Program Files\Avira\AntiVir Desktop\aesbx.dll - ok 15:32:38.0720 3888 [ CF28139A8AECBF3BEC26CA1A16FD69CF ] C:\Program Files\Avira\AntiVir Desktop\aerdl.dll 15:32:38.0720 3888 C:\Program Files\Avira\AntiVir Desktop\aerdl.dll - ok 15:32:38.0740 3888 [ 9C4A76ED4C34A741AB7EA0B1B0E5194F ] C:\Program Files\Avira\AntiVir Desktop\aepack.dll 15:32:38.0740 3888 C:\Program Files\Avira\AntiVir Desktop\aepack.dll - ok 15:32:38.0755 3888 [ 56A0F81C7513B9CA4ED975E42F4EDB0D ] C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll 15:32:38.0755 3888 C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll - ok 15:32:38.0773 3888 [ 3AFBE1D7BE3F69EB80CDE26977D5658B ] C:\Program Files\Avira\AntiVir Desktop\aeheur.dll 15:32:38.0773 3888 C:\Program Files\Avira\AntiVir Desktop\aeheur.dll - ok 15:32:38.0789 3888 [ 900ACDAD5D357BB26A571DCA1FD6AD36 ] C:\Program Files\Avira\AntiVir Desktop\aehelp.dll 15:32:38.0789 3888 C:\Program Files\Avira\AntiVir Desktop\aehelp.dll - ok 15:32:38.0806 3888 [ C5B89E31D9DC26EFCA474AD7062AFC4F ] C:\Program Files\Avira\AntiVir Desktop\aegen.dll 15:32:38.0806 3888 C:\Program Files\Avira\AntiVir Desktop\aegen.dll - ok 15:32:38.0824 3888 [ F3F3915EB5F81B9D0252953D56C0399F ] C:\Program Files\Avira\AntiVir Desktop\aeexp.dll 15:32:38.0824 3888 C:\Program Files\Avira\AntiVir Desktop\aeexp.dll - ok 15:32:38.0841 3888 [ CD7B65E600B8EBC91B292C1AC9EC1215 ] C:\Program Files\Avira\AntiVir Desktop\aeemu.dll 15:32:38.0841 3888 C:\Program Files\Avira\AntiVir Desktop\aeemu.dll - ok 15:32:38.0859 3888 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll 15:32:38.0859 3888 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok 15:32:38.0873 3888 [ BD6FB71BC7EA198275968D3C0B05F6CF ] C:\Program Files\Avira\AntiVir Desktop\aebb.dll 15:32:38.0875 3888 C:\Program Files\Avira\AntiVir Desktop\aebb.dll - ok 15:32:38.0890 3888 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll 15:32:38.0890 3888 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok 15:32:38.0908 3888 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\System32\riched20.dll 15:32:38.0908 3888 C:\Windows\System32\riched20.dll - ok 15:32:38.0923 3888 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\System32\SensApi.dll 15:32:38.0923 3888 C:\Windows\System32\SensApi.dll - ok 15:32:38.0945 3888 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll 15:32:38.0945 3888 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok 15:32:38.0962 3888 [ 1D109ED0D660654EA7FF1574558031C4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll 15:32:38.0962 3888 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcm80.dll - ok 15:32:38.0978 3888 [ 26A68554F95A344B62E5771AF598E0E8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll 15:32:38.0978 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll - ok 15:32:38.0996 3888 [ 17FADECB631FF8DBE735BA33409885C2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\69ca4a43ba14b66689715ad62aed70e6\System.ServiceProcess.ni.dll 15:32:38.0996 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\69ca4a43ba14b66689715ad62aed70e6\System.ServiceProcess.ni.dll - ok 15:32:39.0015 3888 [ 9E0104BA49F4E6973749A02BF41344ED ] C:\Windows\System32\drivers\PEAuth.sys 15:32:39.0015 3888 C:\Windows\System32\drivers\PEAuth.sys - ok 15:32:39.0029 3888 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys 15:32:39.0029 3888 C:\Windows\System32\drivers\secdrv.sys - ok 15:32:39.0044 3888 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] C:\Windows\System32\drivers\srvnet.sys 15:32:39.0044 3888 C:\Windows\System32\drivers\srvnet.sys - ok 15:32:39.0062 3888 [ 75EA62927355189876081EF863064982 ] C:\Windows\System32\ncsi.dll 15:32:39.0062 3888 C:\Windows\System32\ncsi.dll - ok 15:32:39.0076 3888 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\System32\webio.dll 15:32:39.0083 3888 C:\Windows\System32\webio.dll - ok 15:32:39.0099 3888 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\System32\ssdpapi.dll 15:32:39.0099 3888 C:\Windows\System32\ssdpapi.dll - ok 15:32:39.0117 3888 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll 15:32:39.0117 3888 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok 15:32:39.0132 3888 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\System32\dllhost.exe 15:32:39.0132 3888 C:\Windows\System32\dllhost.exe - ok 15:32:39.0150 3888 [ BAA657EB282BDE804C8C7F7338772ED4 ] C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.ServiceProcess.Resources.dll 15:32:39.0150 3888 C:\Windows\assembly\GAC_MSIL\System.ServiceProcess.resources\2.0.0.0_fr_b03f5f7f11d50a3a\System.ServiceProcess.Resources.dll - ok 15:32:39.0164 3888 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\System32\wiatrace.dll 15:32:39.0166 3888 C:\Windows\System32\wiatrace.dll - ok 15:32:39.0179 3888 [ CCA24162E055C3714CE5A88B100C64ED ] C:\Windows\System32\drivers\tcpipreg.sys 15:32:39.0179 3888 C:\Windows\System32\drivers\tcpipreg.sys - ok 15:32:39.0205 3888 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\System32\wbemcomn.dll 15:32:39.0205 3888 C:\Windows\System32\wbemcomn.dll - ok 15:32:39.0220 3888 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] C:\Windows\System32\drivers\srv2.sys 15:32:39.0220 3888 C:\Windows\System32\drivers\srv2.sys - ok 15:32:39.0236 3888 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] C:\Windows\System32\drivers\srv.sys 15:32:39.0236 3888 C:\Windows\System32\drivers\srv.sys - ok 15:32:39.0251 3888 [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\System32\sqmapi.dll 15:32:39.0251 3888 C:\Windows\System32\sqmapi.dll - ok 15:32:39.0267 3888 [ A399514D3B28C9A3453A486BBAAFF1C7 ] C:\Windows\System32\wdscore.dll 15:32:39.0267 3888 C:\Windows\System32\wdscore.dll - ok 15:32:39.0283 3888 [ 881D9F2D6E04E1C323050CF1574870F7 ] C:\Windows\System32\wbem\WinMgmtR.dll 15:32:39.0283 3888 C:\Windows\System32\wbem\WinMgmtR.dll - ok 15:32:39.0300 3888 [ 701C9EB15E1E23D22F7C7184C0506673 ] C:\Windows\System32\wbem\WmiDcPrv.dll 15:32:39.0300 3888 C:\Windows\System32\wbem\WmiDcPrv.dll - ok 15:32:39.0318 3888 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\System32\wbem\fastprox.dll 15:32:39.0318 3888 C:\Windows\System32\wbem\fastprox.dll - ok 15:32:39.0335 3888 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\System32\ntdsapi.dll 15:32:39.0335 3888 C:\Windows\System32\ntdsapi.dll - ok 15:32:39.0353 3888 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\System32\wbem\wbemprox.dll 15:32:39.0353 3888 C:\Windows\System32\wbem\wbemprox.dll - ok 15:32:39.0369 3888 [ AAF7BEB63E2CC499834B608A85A55E4E ] C:\Windows\System32\wsdchngr.dll 15:32:39.0369 3888 C:\Windows\System32\wsdchngr.dll - ok 15:32:39.0384 3888 [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\System32\fundisc.dll 15:32:39.0384 3888 C:\Windows\System32\fundisc.dll - ok 15:32:39.0402 3888 [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\System32\fdPnp.dll 15:32:39.0402 3888 C:\Windows\System32\fdPnp.dll - ok 15:32:39.0417 3888 [ 45D9F6CD2469CDB6A640DD4BD2B01471 ] C:\Windows\System32\nci.dll 15:32:39.0417 3888 C:\Windows\System32\nci.dll - ok 15:32:39.0433 3888 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\System32\netmsg.dll 15:32:39.0433 3888 C:\Windows\System32\netmsg.dll - ok 15:32:39.0449 3888 [ 585EB475E7AF55C9065256E8FFB751A1 ] C:\Windows\System32\wbem\wbemcore.dll 15:32:39.0449 3888 C:\Windows\System32\wbem\wbemcore.dll - ok 15:32:39.0472 3888 [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\System32\wbem\esscli.dll 15:32:39.0472 3888 C:\Windows\System32\wbem\esscli.dll - ok 15:32:39.0488 3888 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\System32\wbem\wbemsvc.dll 15:32:39.0488 3888 C:\Windows\System32\wbem\wbemsvc.dll - ok 15:32:39.0509 3888 [ 89E783711AF91AF09E1EF30EF3107446 ] C:\Windows\System32\sscore.dll 15:32:39.0509 3888 C:\Windows\System32\sscore.dll - ok 15:32:39.0525 3888 [ AE9898D5600A232CD8AE3298692162E5 ] C:\Windows\System32\clusapi.dll 15:32:39.0525 3888 C:\Windows\System32\clusapi.dll - ok 15:32:39.0541 3888 [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\System32\IDStore.dll 15:32:39.0541 3888 C:\Windows\System32\IDStore.dll - ok 15:32:39.0560 3888 [ 976925AA4B3E3023078B002ECAA076C0 ] C:\Windows\System32\HPWia2_OJ6700.dll 15:32:39.0560 3888 C:\Windows\System32\HPWia2_OJ6700.dll - ok 15:32:39.0576 3888 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\System32\wbem\wmiutils.dll 15:32:39.0576 3888 C:\Windows\System32\wbem\wmiutils.dll - ok 15:32:39.0593 3888 [ 371E3B05894549113D07CD3081ED55EF ] C:\Windows\System32\wbem\repdrvfs.dll 15:32:39.0593 3888 C:\Windows\System32\wbem\repdrvfs.dll - ok 15:32:39.0611 3888 [ 2AF094C822BD6094F14A8E85FB51D52A ] C:\Windows\System32\resutils.dll 15:32:39.0611 3888 C:\Windows\System32\resutils.dll - ok 15:32:39.0626 3888 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\System32\hnetcfg.dll 15:32:39.0626 3888 C:\Windows\System32\hnetcfg.dll - ok 15:32:39.0642 3888 [ 3CDE2911462FEC80064A409C07710C06 ] C:\Windows\System32\wbem\WmiPrvSD.dll 15:32:39.0642 3888 C:\Windows\System32\wbem\WmiPrvSD.dll - ok 15:32:39.0658 3888 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\System32\ncobjapi.dll 15:32:39.0658 3888 C:\Windows\System32\ncobjapi.dll - ok 15:32:39.0673 3888 [ B350509B6C9296529BC464C60FEEAEF1 ] C:\Windows\System32\wbem\wbemess.dll 15:32:39.0673 3888 C:\Windows\System32\wbem\wbemess.dll - ok 15:32:39.0689 3888 [ 681651CF3992631C6A953E200651E607 ] C:\Windows\System32\HPScanTRDrv_OJ6700.dll 15:32:39.0689 3888 C:\Windows\System32\HPScanTRDrv_OJ6700.dll - ok 15:32:39.0707 3888 [ 7FA8BA5A780E4757964AC9D4238302B9 ] C:\Windows\System32\taskhost.exe 15:32:39.0707 3888 C:\Windows\System32\taskhost.exe - ok 15:32:39.0761 3888 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\System32\rasadhlp.dll 15:32:39.0761 3888 C:\Windows\System32\rasadhlp.dll - ok 15:32:39.0777 3888 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\System32\winspool.drv 15:32:39.0779 3888 C:\Windows\System32\winspool.drv - ok 15:32:39.0800 3888 [ 7319102526BD11B45FD66335CF90CA12 ] C:\Windows\System32\HotStartUserAgent.dll 15:32:39.0800 3888 C:\Windows\System32\HotStartUserAgent.dll - ok 15:32:39.0816 3888 [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\Windows\System32\userinit.exe 15:32:39.0816 3888 C:\Windows\System32\userinit.exe - ok 15:32:39.0830 3888 [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\System32\MsCtfMonitor.dll 15:32:39.0832 3888 C:\Windows\System32\MsCtfMonitor.dll - ok 15:32:39.0845 3888 [ 56CEED370508F69A1BA04939BD1BADDA ] C:\Windows\System32\msutb.dll 15:32:39.0845 3888 C:\Windows\System32\msutb.dll - ok 15:32:39.0861 3888 [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\System32\PlaySndSrv.dll 15:32:39.0861 3888 C:\Windows\System32\PlaySndSrv.dll - ok 15:32:39.0876 3888 [ 754AFC50022C95DA7C86B7020DB78136 ] C:\Windows\System32\dwmredir.dll 15:32:39.0876 3888 C:\Windows\System32\dwmredir.dll - ok 15:32:39.0892 3888 [ 497E59D9F01C6F247E72222A61835119 ] C:\Windows\System32\dwmcore.dll 15:32:39.0892 3888 C:\Windows\System32\dwmcore.dll - ok 15:32:39.0910 3888 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\System32\d3d10_1.dll 15:32:39.0910 3888 C:\Windows\System32\d3d10_1.dll - ok 15:32:39.0925 3888 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\System32\d3d10_1core.dll 15:32:39.0925 3888 C:\Windows\System32\d3d10_1core.dll - ok 15:32:39.0941 3888 [ 8B88EBBB05A0E56B7DCC708498C02B3E ] C:\Windows\explorer.exe 15:32:39.0941 3888 C:\Windows\explorer.exe - ok 15:32:39.0957 3888 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\System32\dxgi.dll 15:32:39.0957 3888 C:\Windows\System32\dxgi.dll - ok 15:32:39.0980 3888 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\System32\ExplorerFrame.dll 15:32:39.0980 3888 C:\Windows\System32\ExplorerFrame.dll - ok 15:32:39.0998 3888 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\System32\EhStorShell.dll 15:32:39.0998 3888 C:\Windows\System32\EhStorShell.dll - ok 15:32:40.0011 3888 [ 3EC541C196DE18ED9A0D0AC82A694D4C ] C:\Windows\System32\cscui.dll 15:32:40.0011 3888 C:\Windows\System32\cscui.dll - ok 15:32:40.0029 3888 [ 57A51217581614DE07F30E34D6BB4993 ] C:\Windows\System32\cscdll.dll 15:32:40.0029 3888 C:\Windows\System32\cscdll.dll - ok 15:32:40.0042 3888 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\System32\cscapi.dll 15:32:40.0044 3888 C:\Windows\System32\cscapi.dll - ok 15:32:40.0060 3888 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\System32\ntshrui.dll 15:32:40.0060 3888 C:\Windows\System32\ntshrui.dll - ok 15:32:40.0078 3888 [ 54AF46DC37E63E1E85EB619033953309 ] C:\Windows\System32\d3d10level9.dll 15:32:40.0078 3888 C:\Windows\System32\d3d10level9.dll - ok 15:32:40.0095 3888 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\System32\IconCodecService.dll 15:32:40.0095 3888 C:\Windows\System32\IconCodecService.dll - ok 15:32:40.0111 3888 [ 125B138C7EB5F32E28C0F6883A062FAB ] C:\Windows\System32\atiumdag.dll 15:32:40.0111 3888 C:\Windows\System32\atiumdag.dll - ok 15:32:40.0126 3888 [ 40852510DA2B804EC539731D9EB5335F ] C:\Windows\System32\atiumdva.dll 15:32:40.0126 3888 C:\Windows\System32\atiumdva.dll - ok 15:32:40.0142 3888 [ 74AF6AA2E8B3180AADAE5FE8813CB1CD ] C:\Windows\System32\localspl.dll 15:32:40.0142 3888 C:\Windows\System32\localspl.dll - ok 15:32:40.0158 3888 [ 2100560AF3F7F2948F2676E44DFB4ECF ] C:\Windows\System32\uDWM.dll 15:32:40.0158 3888 C:\Windows\System32\uDWM.dll - ok 15:32:40.0173 3888 [ 629181C26A78EB66B0B4E774E5AC2882 ] C:\Windows\System32\spoolss.dll 15:32:40.0173 3888 C:\Windows\System32\spoolss.dll - ok 15:32:40.0189 3888 [ 03CF941D031F30272D3063E5A4D686F5 ] C:\Windows\System32\PrintIsolationProxy.dll 15:32:40.0189 3888 C:\Windows\System32\PrintIsolationProxy.dll - ok 15:32:40.0207 3888 [ 95DC29097475216A3B5F9DC34370B5F8 ] C:\Windows\System32\hpinksts5C12LM.dll 15:32:40.0207 3888 C:\Windows\System32\hpinksts5C12LM.dll - ok 15:32:40.0222 3888 [ 2A845AA98E7F0BFD4B4D943DFB97599A ] C:\Windows\System32\HPDiscoPM5C12.dll 15:32:40.0222 3888 C:\Windows\System32\HPDiscoPM5C12.dll - ok 15:32:40.0246 3888 [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\Windows\System32\wsnmp32.dll 15:32:40.0246 3888 C:\Windows\System32\wsnmp32.dll - ok 15:32:40.0261 3888 [ 126F8331BD023178C7F0EF2F5EDE16B3 ] C:\Windows\System32\FXSMON.dll 15:32:40.0261 3888 C:\Windows\System32\FXSMON.dll - ok 15:32:40.0277 3888 [ B390C1D825C7687493BEDE237C6C2F25 ] C:\Windows\System32\tcpmon.dll 15:32:40.0277 3888 C:\Windows\System32\tcpmon.dll - ok 15:32:40.0294 3888 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\System32\snmpapi.dll 15:32:40.0294 3888 C:\Windows\System32\snmpapi.dll - ok 15:32:40.0312 3888 [ 923CDD30092DB73EC4A0EBCDDD16C686 ] C:\Windows\System32\usbmon.dll 15:32:40.0312 3888 C:\Windows\System32\usbmon.dll - ok 15:32:40.0328 3888 [ A8EB761DE499242BECF153B2B34F020E ] C:\Windows\System32\WSDMon.dll 15:32:40.0328 3888 C:\Windows\System32\WSDMon.dll - ok 15:32:40.0347 3888 [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\Windows\System32\WSDApi.dll 15:32:40.0349 3888 C:\Windows\System32\WSDApi.dll - ok 15:32:40.0361 3888 [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\System32\webservices.dll 15:32:40.0363 3888 C:\Windows\System32\webservices.dll - ok 15:32:40.0378 3888 [ CD72C6406BA561BED6D42CB145E55307 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll 15:32:40.0378 3888 C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok 15:32:40.0394 3888 [ BE3953C7DAE4ECC89134CF64A903F8ED ] C:\Windows\System32\win32spl.dll 15:32:40.0394 3888 C:\Windows\System32\win32spl.dll - ok 15:32:40.0412 3888 [ D27DDE7E0444C7F1819F958469EB7D93 ] C:\Windows\System32\inetpp.dll 15:32:40.0412 3888 C:\Windows\System32\inetpp.dll - ok 15:32:40.0427 3888 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\System32\NapiNSP.dll 15:32:40.0427 3888 C:\Windows\System32\NapiNSP.dll - ok 15:32:40.0443 3888 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\System32\pnrpnsp.dll 15:32:40.0443 3888 C:\Windows\System32\pnrpnsp.dll - ok 15:32:40.0458 3888 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\System32\winrnr.dll 15:32:40.0458 3888 C:\Windows\System32\winrnr.dll - ok 15:32:40.0474 3888 [ 44F5C1CF70AC8F7239F3B3667E58697A ] C:\Windows\System32\CertPolEng.dll 15:32:40.0474 3888 C:\Windows\System32\CertPolEng.dll - ok 15:32:40.0501 3888 [ 89F5770AD1E9D9CEF93D00303135EC33 ] C:\Windows\System32\ntprint.dll 15:32:40.0501 3888 C:\Windows\System32\ntprint.dll - ok 15:32:40.0517 3888 [ 95B35B7926779B08C46C8E882FCDA769 ] C:\Windows\System32\spool\drivers\w32x86\3\cnyg0401.dll 15:32:40.0517 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyg0401.dll - ok 15:32:40.0533 3888 [ A72089A4AF86BE55D48485E855E908ED ] C:\Program Files\Avira\AntiVir Desktop\avwinll.dll 15:32:40.0535 3888 C:\Program Files\Avira\AntiVir Desktop\avwinll.dll - ok 15:32:40.0548 3888 [ 89D968D0040750EF8EA4F29AD8B5D5DB ] C:\Windows\System32\spool\drivers\w32x86\3\cnyu0405.dll 15:32:40.0550 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyu0405.dll - ok 15:32:40.0568 3888 [ 0A18CEBA41E07DF0A980973DBEBC623C ] C:\Windows\System32\spool\drivers\w32x86\3\cnyl04c1.dll 15:32:40.0568 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyl04c1.dll - ok 15:32:40.0585 3888 [ A1562E05B625B2FD2120A1EF0C1020FA ] C:\Windows\System32\spool\drivers\w32x86\3\cnyl04e1.dll 15:32:40.0587 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyl04e1.dll - ok 15:32:40.0607 3888 [ 7AAC8F73CA621B8B86CB09FEB391058E ] C:\Windows\System32\spool\drivers\w32x86\3\cnyl04f1.dll 15:32:40.0607 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyl04f1.dll - ok 15:32:40.0623 3888 [ 6B19FDB35C0EF30D52B1FA2981214938 ] C:\Windows\System32\spool\drivers\w32x86\3\cnyl04g1.dll 15:32:40.0623 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyl04g1.dll - ok 15:32:40.0638 3888 [ 6F1E8FA33E353492853EC4E0455C5C82 ] C:\Windows\System32\spool\drivers\w32x86\3\cnyl04i1.dll 15:32:40.0638 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyl04i1.dll - ok 15:32:40.0654 3888 [ 0A32E5C564729735CA4C44C7F7429C07 ] C:\Windows\System32\spool\drivers\w32x86\3\cnyl04j1.dll 15:32:40.0656 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyl04j1.dll - ok 15:32:40.0671 3888 [ FCC5DD97ED93389B1EA03F5AB375A361 ] C:\Windows\System32\spool\drivers\w32x86\3\cnyl04s1.dll 15:32:40.0671 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyl04s1.dll - ok 15:32:40.0687 3888 [ 4D743703E2C50315174DC720E34EE944 ] C:\Windows\System32\spool\drivers\w32x86\3\cnyw3.dll 15:32:40.0689 3888 C:\Windows\System32\spool\drivers\w32x86\3\cnyw3.dll - ok 15:32:40.0705 3888 [ 8F8818080F9629ED63CCAE8FB0412B1F ] C:\Program Files\Avira\AntiVir Desktop\avesvc.dll 15:32:40.0705 3888 C:\Program Files\Avira\AntiVir Desktop\avesvc.dll - ok 15:32:40.0722 3888 [ 470ACFD9BBDDC0B84EF4A32518A48F36 ] C:\Program Files\Avira\AntiVir Desktop\avesvcr.dll 15:32:40.0722 3888 C:\Program Files\Avira\AntiVir Desktop\avesvcr.dll - ok 15:32:40.0750 3888 [ B2F61552A609650A5B5107ED778D331D ] C:\Program Files\Avira\AntiVir Desktop\webcat.dll 15:32:40.0750 3888 C:\Program Files\Avira\AntiVir Desktop\webcat.dll - ok 15:32:40.0771 3888 [ B70F3D25A49B07067A6CDDE7F17C3D94 ] C:\Program Files\Avira\AntiVir Desktop\webcatrc.dll 15:32:40.0771 3888 C:\Program Files\Avira\AntiVir Desktop\webcatrc.dll - ok 15:32:40.0791 3888 [ 499539848C7CFAA92E01EB8D85B378C0 ] C:\Program Files\Avira\AntiVir Desktop\webprot.dll 15:32:40.0791 3888 C:\Program Files\Avira\AntiVir Desktop\webprot.dll - ok 15:32:40.0808 3888 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\System32\msxml3.dll 15:32:40.0808 3888 C:\Windows\System32\msxml3.dll - ok 15:32:40.0824 3888 [ C0BB29A12F80D45AD7F15D36E194EF28 ] C:\Program Files\Avira\AntiVir Desktop\avbb.dll 15:32:40.0824 3888 C:\Program Files\Avira\AntiVir Desktop\avbb.dll - ok 15:32:40.0839 3888 [ FFA26BD6D7CA2A320FC4B9491F545231 ] C:\Program Files\Avira\AntiVir Desktop\avshadow.exe 15:32:40.0839 3888 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe - ok 15:32:40.0855 3888 [ 47005361FF2A479A0554F352266BAED3 ] C:\Windows\System32\conhost.exe 15:32:40.0855 3888 C:\Windows\System32\conhost.exe - ok 15:32:40.0871 3888 [ 3754883925EA66A2ECF47747BA91B7F6 ] C:\Program Files\Avira\AntiVir Desktop\avreg.dll 15:32:40.0871 3888 C:\Program Files\Avira\AntiVir Desktop\avreg.dll - ok 15:32:40.0888 3888 [ 72E9C15FD33CB7EB750A256C2D2D3119 ] C:\Program Files\Avira\AntiVir Desktop\avmailc.exe 15:32:40.0888 3888 C:\Program Files\Avira\AntiVir Desktop\avmailc.exe - ok 15:32:40.0906 3888 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\System32\wsock32.dll 15:32:40.0906 3888 C:\Windows\System32\wsock32.dll - ok 15:32:40.0921 3888 [ EA00081A598B366441E7F07426C69B33 ] C:\Program Files\Avira\AntiVir Desktop\antispam.dll 15:32:40.0921 3888 C:\Program Files\Avira\AntiVir Desktop\antispam.dll - ok 15:32:40.0939 3888 [ 11459F81322F3393B9E4C94B17CEAFAF ] C:\Program Files\Avira\AntiVir Desktop\pcre.dll 15:32:40.0939 3888 C:\Program Files\Avira\AntiVir Desktop\pcre.dll - ok 15:32:40.0955 3888 [ 53BE128ED9D198F5D32F903C13802237 ] C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe 15:32:40.0955 3888 C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe - ok 15:32:40.0970 3888 [ 5DE0B954B2A36B37BB4E5FE9180B77A2 ] C:\Program Files\Avira\AntiVir Desktop\libxml2.dll 15:32:40.0970 3888 C:\Program Files\Avira\AntiVir Desktop\libxml2.dll - ok 15:32:40.0988 3888 [ B731D7AB373C5DB1E2909A9ECACC3F1C ] C:\Program Files\Avira\AntiVir Desktop\libiconv2.dll 15:32:40.0988 3888 C:\Program Files\Avira\AntiVir Desktop\libiconv2.dll - ok 15:32:41.0005 3888 [ 5F2575CF10DC25B30AEC0A0171022B6F ] C:\Program Files\Avira\AntiVir Desktop\cares.dll 15:32:41.0005 3888 C:\Program Files\Avira\AntiVir Desktop\cares.dll - ok 15:32:41.0029 3888 [ 55ED4AAB90E92D82B4C376458E8E8383 ] C:\Program Files\Avira\AntiVir Desktop\msgclient.dll 15:32:41.0029 3888 C:\Program Files\Avira\AntiVir Desktop\msgclient.dll - ok 15:32:41.0048 3888 [ D05AE156A837520D1B8F6B51D0FBF7A6 ] C:\Program Files\Avira\AntiVir Desktop\asata.dll 15:32:41.0048 3888 C:\Program Files\Avira\AntiVir Desktop\asata.dll - ok 15:32:41.0064 3888 [ B27B1528AC7A254ECCC2AC0D34305EDE ] C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll 15:32:41.0064 3888 C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll - ok 15:32:41.0080 3888 [ AB0214447B8F5E30DAC2B7D334016CEA ] C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll 15:32:41.0080 3888 C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll - ok 15:32:41.0101 3888 [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\System32\browcli.dll 15:32:41.0101 3888 C:\Windows\System32\browcli.dll - ok 15:32:41.0117 3888 [ 521B748A7F9923302CA18B7E6AA2EEAE ] C:\Windows\System32\activeds.dll 15:32:41.0117 3888 C:\Windows\System32\activeds.dll - ok 15:32:41.0132 3888 [ 51F5CC1E7DA3D9C664C2D0D61F315E06 ] C:\Windows\System32\adsldpc.dll 15:32:41.0132 3888 C:\Windows\System32\adsldpc.dll - ok 15:32:41.0148 3888 [ A3A12DEE4F891C6050AF7DF7BB7C7C76 ] C:\Program Files\Avira\AntiVir Desktop\avwebgrc.dll 15:32:41.0148 3888 C:\Program Files\Avira\AntiVir Desktop\avwebgrc.dll - ok 15:32:41.0162 3888 [ 092D714A8085D3A62CAA62F204B8BB48 ] C:\Program Files\Avira\AntiVir Desktop\mgrs.dll 15:32:41.0162 3888 C:\Program Files\Avira\AntiVir Desktop\mgrs.dll - ok 15:32:41.0177 3888 [ 6CB2CD521E480A480BBBA5CC3C7E90B1 ] C:\Program Files\Avira\AntiVir Desktop\avmailcr.dll 15:32:41.0177 3888 C:\Program Files\Avira\AntiVir Desktop\avmailcr.dll - ok 15:32:41.0195 3888 [ F7FE730CE31B54145DEE1F1482BCCDD7 ] C:\Windows\System32\ndiscapCfg.dll 15:32:41.0195 3888 C:\Windows\System32\ndiscapCfg.dll - ok 15:32:41.0210 3888 [ ECF036299AA554B5E0455262857B39D0 ] C:\Windows\System32\diagperf.dll 15:32:41.0212 3888 C:\Windows\System32\diagperf.dll - ok 15:32:41.0228 3888 [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\System32\PortableDeviceApi.dll 15:32:41.0228 3888 C:\Windows\System32\PortableDeviceApi.dll - ok 15:32:41.0244 3888 [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\Windows\System32\mprapi.dll 15:32:41.0244 3888 C:\Windows\System32\mprapi.dll - ok 15:32:41.0259 3888 [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\System32\Apphlpdm.dll 15:32:41.0259 3888 C:\Windows\System32\Apphlpdm.dll - ok 15:32:41.0275 3888 [ 7E82616BEE76BF5EAA5B30F681414E21 ] C:\Windows\System32\perftrack.dll 15:32:41.0275 3888 C:\Windows\System32\perftrack.dll - ok 15:32:41.0304 3888 [ 9A7B54D57594233EEB17892BAD309970 ] C:\Windows\System32\mprmsg.dll 15:32:41.0304 3888 C:\Windows\System32\mprmsg.dll - ok 15:32:41.0320 3888 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\System32\wer.dll 15:32:41.0320 3888 C:\Windows\System32\wer.dll - ok 15:32:41.0335 3888 [ F8E882C10AF4C29E378D1E28D4817CB1 ] C:\Windows\System32\pnpts.dll 15:32:41.0335 3888 C:\Windows\System32\pnpts.dll - ok 15:32:41.0353 3888 [ F0016853FA3F38F55FD868FF74C0359B ] C:\Windows\System32\wdiasqmmodule.dll 15:32:41.0353 3888 C:\Windows\System32\wdiasqmmodule.dll - ok 15:32:41.0369 3888 [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\System32\radardt.dll 15:32:41.0369 3888 C:\Windows\System32\radardt.dll - ok 15:32:41.0384 3888 [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\System32\PortableDeviceConnectApi.dll 15:32:41.0384 3888 C:\Windows\System32\PortableDeviceConnectApi.dll - ok 15:32:41.0402 3888 [ 8B794AE6D5C7D42092804BC39A2EB8F6 ] C:\Windows\System32\aepic.dll 15:32:41.0402 3888 C:\Windows\System32\aepic.dll - ok 15:32:41.0419 3888 [ 1023EE888C9B47178C5293ED5336AB69 ] C:\Windows\System32\drivers\WUDFRd.sys 15:32:41.0419 3888 C:\Windows\System32\drivers\WUDFRd.sys - ok 15:32:41.0435 3888 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\System32\sfc.dll 15:32:41.0435 3888 C:\Windows\System32\sfc.dll - ok 15:32:41.0451 3888 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\System32\sfc_os.dll 15:32:41.0451 3888 C:\Windows\System32\sfc_os.dll - ok 15:32:41.0466 3888 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\System32\npmproxy.dll 15:32:41.0466 3888 C:\Windows\System32\npmproxy.dll - ok 15:32:41.0482 3888 [ 311A281F5199EC39711017530DC06B64 ] C:\Windows\System32\WUDFHost.exe 15:32:41.0482 3888 C:\Windows\System32\WUDFHost.exe - ok 15:32:41.0498 3888 [ 8549E6ABF8B270CC10C31B480239E116 ] C:\Windows\System32\WUDFx.dll 15:32:41.0498 3888 C:\Windows\System32\WUDFx.dll - ok 15:32:41.0523 3888 [ 7ABBDC3B08950992D218FA1E52D52A96 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll 15:32:41.0523 3888 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok 15:32:41.0539 3888 [ 0F416E23DD2EB4DEBE70608020CFD283 ] C:\Windows\System32\WMVCORE.DLL 15:32:41.0539 3888 C:\Windows\System32\WMVCORE.DLL - ok 15:32:41.0562 3888 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\System32\WMASF.DLL 15:32:41.0562 3888 C:\Windows\System32\WMASF.DLL - ok 15:32:41.0578 3888 [ 78DE417B7921DACA072059E6BF410FC7 ] C:\Windows\System32\wshnetbs.dll 15:32:41.0578 3888 C:\Windows\System32\wshnetbs.dll - ok 15:32:41.0593 3888 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\System32\runonce.exe 15:32:41.0593 3888 C:\Windows\System32\runonce.exe - ok 15:32:41.0611 3888 [ 81490FDAE27F0082E5CC2DC78DCA96FA ] C:\Windows\System32\PortableDeviceClassExtension.dll 15:32:41.0611 3888 C:\Windows\System32\PortableDeviceClassExtension.dll - ok 15:32:41.0626 3888 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\System32\PortableDeviceTypes.dll 15:32:41.0626 3888 C:\Windows\System32\PortableDeviceTypes.dll - ok 15:32:41.0642 3888 [ 9E6AF823733C70E207D9FB6731A63B3D ] C:\Windows\System32\wlaninst.dll 15:32:41.0642 3888 C:\Windows\System32\wlaninst.dll - ok 15:32:41.0660 3888 [ 5B6EF0861BB5AC0EC347548E85C24A1D ] C:\Windows\System32\wwaninst.dll 15:32:41.0660 3888 C:\Windows\System32\wwaninst.dll - ok 15:32:41.0675 3888 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\System32\cmd.exe 15:32:41.0675 3888 C:\Windows\System32\cmd.exe - ok 15:32:41.0691 3888 [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\System32\dimsjob.dll 15:32:41.0691 3888 C:\Windows\System32\dimsjob.dll - ok 15:32:41.0707 3888 [ 0BA3F31E2B4D8D99DF8DD19E81155374 ] C:\Windows\System32\ieframe.dll 15:32:41.0707 3888 C:\Windows\System32\ieframe.dll - ok 15:32:41.0722 3888 [ 4B9E4CE667DF26ADA061AA81E9AA841D ] C:\Windows\System32\spfileq.dll 15:32:41.0722 3888 C:\Windows\System32\spfileq.dll - ok 15:32:41.0740 3888 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\System32\shdocvw.dll 15:32:41.0740 3888 C:\Windows\System32\shdocvw.dll - ok 15:32:41.0757 3888 [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\System32\pautoenr.dll 15:32:41.0757 3888 C:\Windows\System32\pautoenr.dll - ok 15:32:41.0773 3888 [ D2033210D4DA9E9CE7670DFF45D7101B ] C:\Users\BRUNO QUESNEL\AppData\Local\Temp\251E9F85-D332-459E-9F43-738DE81B4681.exe 15:32:41.0773 3888 C:\Users\BRUNO QUESNEL\AppData\Local\Temp\251E9F85-D332-459E-9F43-738DE81B4681.exe - ok 15:32:41.0789 3888 [ 61B1ED5F429EFAC7E2036769870AB93E ] C:\Windows\System32\certcli.dll 15:32:41.0789 3888 C:\Windows\System32\certcli.dll - ok 15:32:41.0816 3888 [ 29BC473072568C072EC8B176498DE996 ] C:\Windows\System32\CertEnroll.dll 15:32:41.0816 3888 C:\Windows\System32\CertEnroll.dll - ok 15:32:41.0832 3888 [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\System32\wmploc.DLL 15:32:41.0832 3888 C:\Windows\System32\wmploc.DLL - ok 15:32:41.0845 3888 [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\System32\aeevts.dll 15:32:41.0845 3888 C:\Windows\System32\aeevts.dll - ok 15:32:41.0861 3888 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe 15:32:41.0861 3888 C:\Windows\System32\ie4uinit.exe - ok 15:32:41.0876 3888 [ F89977D7CC37C9ECCDBDAF24CF743F26 ] C:\Program Files\Avira\AntiVir Desktop\checkt.exe 15:32:41.0876 3888 C:\Program Files\Avira\AntiVir Desktop\checkt.exe - ok 15:32:41.0892 3888 [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll 15:32:41.0892 3888 C:\Windows\System32\iedkcs32.dll - ok 15:32:41.0910 3888 [ 5992A9DF57FD5E6960FDCC2DB69867F7 ] C:\Windows\System32\themeui.dll 15:32:41.0910 3888 C:\Windows\System32\themeui.dll - ok 15:32:41.0925 3888 [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\Windows\System32\esent.dll 15:32:41.0925 3888 C:\Windows\System32\esent.dll - ok 15:32:41.0941 3888 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\01311151.sys 15:32:41.0941 3888 C:\Windows\System32\drivers\01311151.sys - ok 15:32:41.0957 3888 [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\Windows\System32\timedate.cpl 15:32:41.0957 3888 C:\Windows\System32\timedate.cpl - ok 15:32:41.0974 3888 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\System32\actxprxy.dll 15:32:41.0974 3888 C:\Windows\System32\actxprxy.dll - ok 15:32:41.0992 3888 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\System32\linkinfo.dll 15:32:41.0992 3888 C:\Windows\System32\linkinfo.dll - ok 15:32:42.0009 3888 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\System32\msiltcfg.dll 15:32:42.0009 3888 C:\Windows\System32\msiltcfg.dll - ok 15:32:42.0025 3888 [ 22CC6CDBA678790046693654C3B212E4 ] C:\Program Files\Internet Explorer\iexplore.exe 15:32:42.0025 3888 C:\Program Files\Internet Explorer\iexplore.exe - ok 15:32:42.0041 3888 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\System32\msi.dll 15:32:42.0041 3888 C:\Windows\System32\msi.dll - ok 15:32:42.0056 3888 [ E9FEE7B0D843D565A89ED7791DCE3642 ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\outicon.exe 15:32:42.0056 3888 C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\outicon.exe - ok 15:32:42.0082 3888 [ 45C0DF404182850C21749AF7763C095F ] C:\Windows\System32\accessibilitycpl.dll 15:32:42.0082 3888 C:\Windows\System32\accessibilitycpl.dll - ok 15:32:42.0099 3888 [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\System32\msftedit.dll 15:32:42.0099 3888 C:\Windows\System32\msftedit.dll - ok 15:32:42.0115 3888 [ 285C594C4913FA9DC7BB6BA3AD6F101A ] C:\Windows\System32\wucltux.dll 15:32:42.0117 3888 C:\Windows\System32\wucltux.dll - ok 15:32:42.0132 3888 [ A80C173AC5C75706BB74AE4D78F2A53D ] C:\Program Files\Windows Media Player\wmplayer.exe 15:32:42.0132 3888 C:\Program Files\Windows Media Player\wmplayer.exe - ok 15:32:42.0146 3888 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll 15:32:42.0146 3888 C:\Windows\System32\msls31.dll - ok 15:32:42.0162 3888 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll 15:32:42.0162 3888 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok 15:32:42.0177 3888 [ 2A39F32E0067CBF221611FE1FA8C6D8F ] C:\Windows\System32\DeviceCenter.dll 15:32:42.0177 3888 C:\Windows\System32\DeviceCenter.dll - ok 15:32:42.0193 3888 [ DCCA4B04AF87E52EF9EAA2190E06CBAC ] C:\Program Files\Windows Sidebar\sidebar.exe 15:32:42.0193 3888 C:\Program Files\Windows Sidebar\sidebar.exe - ok 15:32:42.0210 3888 [ FE821F6FA60E9DF9FDEE69A23488BBAB ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe 15:32:42.0210 3888 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok 15:32:42.0228 3888 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\System32\rundll32.exe 15:32:42.0228 3888 C:\Windows\System32\rundll32.exe - ok 15:32:42.0246 3888 [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\System32\networkexplorer.dll 15:32:42.0246 3888 C:\Windows\System32\networkexplorer.dll - ok 15:32:42.0261 3888 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\System32\drprov.dll 15:32:42.0261 3888 C:\Windows\System32\drprov.dll - ok 15:32:42.0277 3888 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\System32\ntlanman.dll 15:32:42.0277 3888 C:\Windows\System32\ntlanman.dll - ok 15:32:42.0294 3888 [ BBAD1EA1F64E5106EA60F736719DCF50 ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 15:32:42.0294 3888 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe - ok 15:32:42.0310 3888 [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Windows\System32\mfc100u.dll 15:32:42.0310 3888 C:\Windows\System32\mfc100u.dll - ok 15:32:42.0337 3888 [ BB21453C6707A7B5DD9F727ED375F284 ] C:\Windows\System32\mfc100fra.dll 15:32:42.0337 3888 C:\Windows\System32\mfc100fra.dll - ok 15:32:42.0355 3888 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\System32\davclnt.dll 15:32:42.0355 3888 C:\Windows\System32\davclnt.dll - ok 15:32:42.0371 3888 [ 5A8EBF167F36A7C0D6E9BDD027D55EEB ] C:\Program Files\DVD Maker\DVDMaker.exe 15:32:42.0371 3888 C:\Program Files\DVD Maker\DVDMaker.exe - ok 15:32:42.0386 3888 [ 1D590F69F89F89DD4513C444AF716D91 ] C:\Program Files\Avira\AntiVir Desktop\rcimage.dll 15:32:42.0386 3888 C:\Program Files\Avira\AntiVir Desktop\rcimage.dll - ok 15:32:42.0404 3888 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\System32\davhlpr.dll 15:32:42.0404 3888 C:\Windows\System32\davhlpr.dll - ok 15:32:42.0419 3888 [ 893B63A26637E4B51F6C0EE12E56546A ] C:\Program Files\Avira\AntiVir Desktop\ccguard.dll 15:32:42.0419 3888 C:\Program Files\Avira\AntiVir Desktop\ccguard.dll - ok 15:32:42.0435 3888 [ 907D5C47855B16CDC0D13FF26A9B98BF ] C:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll 15:32:42.0435 3888 C:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll - ok 15:32:42.0451 3888 [ 9CD13D0B1111CCAD54E7C7DF7ED62B78 ] C:\Program Files\Avira\AntiVir Desktop\ccgrdw.dll 15:32:42.0453 3888 C:\Program Files\Avira\AntiVir Desktop\ccgrdw.dll - ok 15:32:42.0468 3888 [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\System32\thumbcache.dll 15:32:42.0468 3888 C:\Windows\System32\thumbcache.dll - ok 15:32:42.0488 3888 [ 092229D4E12E6B8DC212A9204DEBF0D9 ] C:\Program Files\Avira\AntiVir Desktop\ccmguard.dll 15:32:42.0488 3888 C:\Program Files\Avira\AntiVir Desktop\ccmguard.dll - ok 15:32:42.0503 3888 [ DC39CF7092E6546AA0EB33EF0EF50CF3 ] C:\Program Files\Avira\AntiVir Desktop\ccmgrdrc.dll 15:32:42.0503 3888 C:\Program Files\Avira\AntiVir Desktop\ccmgrdrc.dll - ok 15:32:42.0519 3888 [ 9B7F12BE10175C3E99D91D8C929471EF ] C:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll 15:32:42.0521 3888 C:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll - ok 15:32:42.0537 3888 [ 3FA68FE5A2D633A523DC616A1310D021 ] C:\Program Files\Avira\AntiVir Desktop\ccwgrdrc.dll 15:32:42.0537 3888 C:\Program Files\Avira\AntiVir Desktop\ccwgrdrc.dll - ok 15:32:42.0552 3888 [ 6F3512FA1CB51F2310D1AAA3CB63B444 ] C:\Program Files\Avira\AntiVir Desktop\ccwgrdw.dll 15:32:42.0552 3888 C:\Program Files\Avira\AntiVir Desktop\ccwgrdw.dll - ok 15:32:42.0568 3888 [ 806D6D6D569EE0725572127B8698BE97 ] C:\Program Files\Avira\AntiVir Desktop\ccfwgnt.dll 15:32:42.0568 3888 C:\Program Files\Avira\AntiVir Desktop\ccfwgnt.dll - ok 15:32:42.0585 3888 [ B68BD547D8A3AFFB9D4E1572CC0CD5C2 ] C:\Program Files\Avira\AntiVir Desktop\ccfwitf.dll 15:32:42.0585 3888 C:\Program Files\Avira\AntiVir Desktop\ccfwitf.dll - ok 15:32:42.0609 3888 [ 35AC4B63CBB9FB6B4472913E9948B517 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe 15:32:42.0609 3888 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok 15:32:42.0626 3888 [ D2F52CF699F27159ADE3309BB5156286 ] C:\Program Files\Avira\AntiVir Desktop\ccfwrc.dll 15:32:42.0626 3888 C:\Program Files\Avira\AntiVir Desktop\ccfwrc.dll - ok 15:32:42.0642 3888 [ EFA4205C5AE1B1672AE873C30405497A ] C:\Program Files\Avira\AntiVir Desktop\ccgen.dll 15:32:42.0642 3888 C:\Program Files\Avira\AntiVir Desktop\ccgen.dll - ok 15:32:42.0658 3888 [ 49DF840369263BB43CC0349070E21724 ] C:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll 15:32:42.0658 3888 C:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll - ok 15:32:42.0673 3888 [ 7C8FD228C4560865305FA95A8CC87CB0 ] C:\Program Files\Avira\AntiVir Desktop\ccupdate.dll 15:32:42.0673 3888 C:\Program Files\Avira\AntiVir Desktop\ccupdate.dll - ok 15:32:42.0689 3888 [ CD7C018E6163332602D58BFC6E041CFD ] C:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll 15:32:42.0689 3888 C:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll - ok 15:32:42.0707 3888 [ 50498D1CBADBD572E2D7FE6617F22249 ] C:\Program Files\Avira\AntiVir Desktop\cclic.dll 15:32:42.0707 3888 C:\Program Files\Avira\AntiVir Desktop\cclic.dll - ok 15:32:42.0726 3888 [ F24746D6CD42CC8CFEC8E292AE541135 ] C:\Program Files\Avira\AntiVir Desktop\cclicrc.dll 15:32:42.0726 3888 C:\Program Files\Avira\AntiVir Desktop\cclicrc.dll - ok 15:32:42.0744 3888 [ AC6C44E0546582DB299E6ABE44B3A933 ] C:\Program Files\Avira\AntiVir Desktop\ccmsg.dll 15:32:42.0744 3888 C:\Program Files\Avira\AntiVir Desktop\ccmsg.dll - ok 15:32:42.0759 3888 [ 3999662F99F3809ED82442B3A3817DED ] C:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll 15:32:42.0759 3888 C:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll - ok 15:32:42.0775 3888 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll 15:32:42.0775 3888 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok 15:32:42.0791 3888 [ 59B7280D73906B43B13B273A1F9CC3DD ] C:\Windows\System32\xpsrchvw.exe 15:32:42.0792 3888 C:\Windows\System32\xpsrchvw.exe - ok 15:32:42.0808 3888 [ ECA7A18C6901CE246D899B649CEA68F5 ] C:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll 15:32:42.0808 3888 C:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll - ok 15:32:42.0826 3888 [ 8C22C6088057A00EAE7D963600F26EEB ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll 15:32:42.0826 3888 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok 15:32:42.0841 3888 [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\Windows\System32\stobject.dll 15:32:42.0841 3888 C:\Windows\System32\stobject.dll - ok 15:32:42.0871 3888 [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\Windows\System32\batmeter.dll 15:32:42.0871 3888 C:\Windows\System32\batmeter.dll - ok 15:32:42.0888 3888 [ 916A2C4EB028604783FD5EA169236C1D ] C:\Program Files\QuickTime\QTTask.exe 15:32:42.0888 3888 C:\Program Files\QuickTime\QTTask.exe - ok 15:32:42.0906 3888 [ 2DEDC3AFE3C49B5DAE717D0A9BEBF298 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll 15:32:42.0906 3888 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok 15:32:42.0923 3888 [ BA4E1A60BD20CA7978C76D79F19E37F0 ] C:\Windows\System32\DisplaySwitch.exe 15:32:42.0923 3888 C:\Windows\System32\DisplaySwitch.exe - ok 15:32:42.0939 3888 [ F9F2E450BF37A98DC658404611AA97C7 ] C:\Program Files\Hercules\WiFiStationN\WiFiN.exe 15:32:42.0939 3888 C:\Program Files\Hercules\WiFiStationN\WiFiN.exe - ok 15:32:42.0955 3888 [ 7B554081A0A80B14F1E5D06441DBAF58 ] C:\Program Files\Common Files\microsoft shared\ink\mip.exe 15:32:42.0955 3888 C:\Program Files\Common Files\microsoft shared\ink\mip.exe - ok 15:32:42.0972 3888 [ 67B539D844F804EBAC7A1E3828FDE709 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll 15:32:42.0974 3888 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok 15:32:42.0990 3888 [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll 15:32:42.0990 3888 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok 15:32:43.0007 3888 [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll 15:32:43.0007 3888 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok 15:32:43.0023 3888 [ B5FFA9977015ED3E1B2C3FF266A1BEB9 ] C:\Windows\System32\mblctr.exe 15:32:43.0023 3888 C:\Windows\System32\mblctr.exe - ok 15:32:43.0039 3888 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\System32\prnfldr.dll 15:32:43.0041 3888 C:\Windows\System32\prnfldr.dll - ok 15:32:43.0056 3888 [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll 15:32:43.0056 3888 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok 15:32:43.0072 3888 [ 368B2BEE3F88BFB883D2C74A258DE6F6 ] C:\Windows\AppPatch\AcLayers.dll 15:32:43.0072 3888 C:\Windows\AppPatch\AcLayers.dll - ok 15:32:43.0087 3888 [ CAD302210D29DB7885B07A40DF4DF016 ] C:\Windows\system\CMICNFG3.cpl 15:32:43.0089 3888 C:\Windows\system\CMICNFG3.cpl - ok 15:32:43.0115 3888 [ 6B9BEFC3B8D8A9B4598F9507133FBB0D ] C:\Windows\System32\NetProjW.dll 15:32:43.0115 3888 C:\Windows\System32\NetProjW.dll - ok 15:32:43.0130 3888 [ CA0C67BA7AEBA6AED5DDB852E6EEA811 ] C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe 15:32:43.0130 3888 C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok 15:32:43.0144 3888 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\System32\dsound.dll 15:32:43.0144 3888 C:\Windows\System32\dsound.dll - ok 15:32:43.0162 3888 [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll 15:32:43.0162 3888 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok 15:32:43.0177 3888 [ 68B4A549D0B56A4DD9A488751037CF09 ] C:\Windows\System32\mstsc.exe 15:32:43.0177 3888 C:\Windows\System32\mstsc.exe - ok 15:32:43.0193 3888 [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe 15:32:43.0193 3888 C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe - ok 15:32:43.0214 3888 [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll 15:32:43.0214 3888 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok 15:32:43.0232 3888 [ 3FF0FA0A81910617739644A06D06D016 ] C:\Windows\System32\fdProxy.dll 15:32:43.0232 3888 C:\Windows\System32\fdProxy.dll - ok 15:32:43.0246 3888 [ 32BE4A1FAFCCD5CA9AB0CE772C43D5E2 ] C:\Windows\System32\SnippingTool.exe 15:32:43.0246 3888 C:\Windows\System32\SnippingTool.exe - ok 15:32:43.0261 3888 [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll 15:32:43.0261 3888 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok 15:32:43.0279 3888 [ 2A40F6AD59D3E598ECDAA6CAB90360A4 ] C:\Windows\System32\SoundRecorder.exe 15:32:43.0279 3888 C:\Windows\System32\SoundRecorder.exe - ok 15:32:43.0298 3888 [ D2033210D4DA9E9CE7670DFF45D7101B ] C:\Users\BRUNO QUESNEL\Desktop\TDSSKiller.exe 15:32:43.0298 3888 C:\Users\BRUNO QUESNEL\Desktop\TDSSKiller.exe - ok 15:32:43.0312 3888 [ ADDB05C93272A62606599B24730BD645 ] C:\Windows\System32\DXP.dll 15:32:43.0312 3888 C:\Windows\System32\DXP.dll - ok 15:32:43.0335 3888 [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\System32\Syncreg.dll 15:32:43.0335 3888 C:\Windows\System32\Syncreg.dll - ok 15:32:43.0353 3888 [ 4ABBD0FEB53ECCD3B5C8A9D9FB1A79F6 ] C:\Windows\System32\SNTSearch.dll 15:32:43.0353 3888 C:\Windows\System32\SNTSearch.dll - ok 15:32:43.0375 3888 [ 0552A8684BF7566F744D5B19FF6AEC6B ] C:\Windows\System32\bitsperf.dll 15:32:43.0375 3888 C:\Windows\System32\bitsperf.dll - ok 15:32:43.0390 3888 [ F8F03D206F7D5811D630349A23E9B9B9 ] C:\Windows\ehome\ehSSO.dll 15:32:43.0392 3888 C:\Windows\ehome\ehSSO.dll - ok 15:32:43.0408 3888 [ F45ED8C4F9AF862CD9992849B5203C11 ] C:\Windows\System32\bitsigd.dll 15:32:43.0408 3888 C:\Windows\System32\bitsigd.dll - ok 15:32:43.0423 3888 [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\Windows\System32\upnp.dll 15:32:43.0423 3888 C:\Windows\System32\upnp.dll - ok 15:32:43.0441 3888 [ 2EB5E061E52D50E43F77FF16DEBEF497 ] C:\Program Files\HP\HP Officejet 6700\Bin\HP Officejet 6700.exe 15:32:43.0441 3888 C:\Program Files\HP\HP Officejet 6700\Bin\HP Officejet 6700.exe - ok 15:32:43.0458 3888 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\System32\netshell.dll 15:32:43.0458 3888 C:\Windows\System32\netshell.dll - ok 15:32:43.0474 3888 [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\System32\AltTab.dll 15:32:43.0476 3888 C:\Windows\System32\AltTab.dll - ok 15:32:43.0492 3888 [ 735263DA17BF5BAF9CCD483843BF9D5A ] C:\Windows\System32\WPDShServiceObj.dll 15:32:43.0492 3888 C:\Windows\System32\WPDShServiceObj.dll - ok 15:32:43.0511 3888 [ 2DDEA2C345DA5BC589EFD398F220DB0E ] C:\Windows\System32\SyncCenter.dll 15:32:43.0511 3888 C:\Windows\System32\SyncCenter.dll - ok 15:32:43.0527 3888 [ 3D6F22551D422F97AACB0BB927E4C846 ] C:\Windows\System32\pnidui.dll 15:32:43.0527 3888 C:\Windows\System32\pnidui.dll - ok 15:32:43.0542 3888 [ BD626EF05967D14C772B8096292731A3 ] C:\Windows\System32\QUTIL.DLL 15:32:43.0542 3888 C:\Windows\System32\QUTIL.DLL - ok 15:32:43.0558 3888 [ 468D6989581E6AEA75DE74D4B3722CC3 ] C:\Windows\System32\OobeFldr.dll 15:32:43.0558 3888 C:\Windows\System32\OobeFldr.dll - ok 15:32:43.0574 3888 [ CF4274CEEA9F7791FB7FC40A066BC2C7 ] C:\Windows\System32\cscobj.dll 15:32:43.0574 3888 C:\Windows\System32\cscobj.dll - ok 15:32:43.0593 3888 [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll 15:32:43.0593 3888 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok 15:32:43.0609 3888 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\System32\qmgrprxy.dll 15:32:43.0609 3888 C:\Windows\System32\qmgrprxy.dll - ok 15:32:43.0634 3888 [ BE54E44F60F121782B84E5B1BFADF315 ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl 15:32:43.0634 3888 C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok 15:32:43.0650 3888 [ 9A39A2A5F443A756C568C6ED5748AFE4 ] C:\Windows\System32\ActionCenter.dll 15:32:43.0652 3888 C:\Windows\System32\ActionCenter.dll - ok 15:32:43.0667 3888 [ 674B0C0F6A448EB185CAAB9C51D44032 ] C:\Windows\System32\srchadmin.dll 15:32:43.0667 3888 C:\Windows\System32\srchadmin.dll - ok 15:32:43.0681 3888 [ FB036244DBD2FADC225AD8650886B641 ] C:\Windows\System32\dfrgui.exe 15:32:43.0681 3888 C:\Windows\System32\dfrgui.exe - ok 15:32:43.0703 3888 [ 8A6B867FC26B9850D446D2D86E5DB071 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll 15:32:43.0703 3888 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok 15:32:43.0718 3888 [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\System32\rasdlg.dll 15:32:43.0718 3888 C:\Windows\System32\rasdlg.dll - ok 15:32:43.0736 3888 [ C2D6A4475B87651D5909E364439FDA52 ] C:\Windows\System32\FXSST.dll 15:32:43.0736 3888 C:\Windows\System32\FXSST.dll - ok 15:32:43.0751 3888 [ 01D585C95A0E752EFFB11EA899B0E387 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll 15:32:43.0751 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll - ok 15:32:43.0767 3888 [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\System32\FXSAPI.dll 15:32:43.0767 3888 C:\Windows\System32\FXSAPI.dll - ok 15:32:43.0783 3888 [ 04B88428A872390D235BE52D38A9D4EF ] C:\Windows\System32\dot3api.dll 15:32:43.0783 3888 C:\Windows\System32\dot3api.dll - ok 15:32:43.0800 3888 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\System32\dssenh.dll 15:32:43.0800 3888 C:\Windows\System32\dssenh.dll - ok 15:32:43.0816 3888 [ 57E8C7791AB2596AFB8EE1273C2DF1F8 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll 15:32:43.0816 3888 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok 15:32:43.0832 3888 [ 967EA5B213E9984CBE270205DF37755B ] C:\Windows\System32\FXSSVC.exe 15:32:43.0832 3888 C:\Windows\System32\FXSSVC.exe - ok 15:32:43.0847 3888 [ 8CD1DEE212E52B9C22E66DBA44991D32 ] C:\Windows\System32\httpapi.dll 15:32:43.0847 3888 C:\Windows\System32\httpapi.dll - ok 15:32:43.0861 3888 [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\System32\wlanhlp.dll 15:32:43.0861 3888 C:\Windows\System32\wlanhlp.dll - ok 15:32:43.0876 3888 [ 8BCF1DCE05F4494C8891F33EEA450D0A ] C:\Windows\System32\wdc.dll 15:32:43.0876 3888 C:\Windows\System32\wdc.dll - ok 15:32:43.0902 3888 [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll 15:32:43.0904 3888 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok 15:32:43.0919 3888 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\System32\wlanapi.dll 15:32:43.0919 3888 C:\Windows\System32\wlanapi.dll - ok 15:32:43.0939 3888 [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 15:32:43.0939 3888 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok 15:32:43.0955 3888 [ 5F2122888583347C9B81724CF169EFC6 ] C:\Windows\System32\msinfo32.exe 15:32:43.0955 3888 C:\Windows\System32\msinfo32.exe - ok 15:32:43.0970 3888 [ 78079EB83665E1AC18AC9C5E273845BF ] C:\Windows\System32\rstrui.exe 15:32:43.0970 3888 C:\Windows\System32\rstrui.exe - ok 15:32:43.0986 3888 [ B72F77DA5A69F5626696182E17B503BA ] C:\Windows\System32\miguiresource.dll 15:32:43.0986 3888 C:\Windows\System32\miguiresource.dll - ok 15:32:44.0003 3888 [ C3C8D359D1FCB72941F75F8A302BFBDE ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 15:32:44.0003 3888 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok 15:32:44.0021 3888 [ 53683A331F8A1BB20ADD0330F1DE6388 ] C:\Program Files\Windows Media Player\wmpnscfg.exe 15:32:44.0021 3888 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok 15:32:44.0037 3888 [ 777F34146CD4126A2B8D6F2342F57536 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll 15:32:44.0037 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll - ok 15:32:44.0052 3888 [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\System32\WWanAPI.dll 15:32:44.0052 3888 C:\Windows\System32\WWanAPI.dll - ok 15:32:44.0068 3888 [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\System32\wwapi.dll 15:32:44.0068 3888 C:\Windows\System32\wwapi.dll - ok 15:32:44.0083 3888 [ 2FF112EF1984C2AD73684F0B290DBFA3 ] C:\Windows\System32\migwiz\wet.dll 15:32:44.0083 3888 C:\Windows\System32\migwiz\wet.dll - ok 15:32:44.0099 3888 [ 02530B0B7E048DD5AC8D52DAEACAEB2B ] C:\Windows\System32\QAGENT.DLL 15:32:44.0099 3888 C:\Windows\System32\QAGENT.DLL - ok 15:32:44.0117 3888 [ 5BCB0EB1A8EC016C03375E5C87344400 ] C:\Program Files\Common Files\microsoft shared\ink\ShapeCollector.exe 15:32:44.0117 3888 C:\Program Files\Common Files\microsoft shared\ink\ShapeCollector.exe - ok 15:32:44.0132 3888 [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\System32\bthprops.cpl 15:32:44.0132 3888 C:\Windows\System32\bthprops.cpl - ok 15:32:44.0156 3888 [ 8F8AB20AA863EA95A421B9D54C74F20C ] C:\Program Files\Windows Media Player\wmpnssci.dll 15:32:44.0156 3888 C:\Program Files\Windows Media Player\wmpnssci.dll - ok 15:32:44.0173 3888 [ 5AF22331F2CA24D7688DE5C374519BA3 ] C:\Program Files\Windows Journal\Journal.exe 15:32:44.0173 3888 C:\Program Files\Windows Journal\Journal.exe - ok 15:32:44.0191 3888 [ 92F44E405DB16AC55D97E3BFE3B132FA ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe 15:32:44.0191 3888 C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok 15:32:44.0207 3888 [ 0BBDB0F5A25A2FE0502F44CA7D04AB61 ] C:\Windows\System32\mycomput.dll 15:32:44.0207 3888 C:\Windows\System32\mycomput.dll - ok 15:32:44.0222 3888 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\System32\odbcint.dll 15:32:44.0222 3888 C:\Windows\System32\odbcint.dll - ok 15:32:44.0238 3888 [ F945ADCEF203E6104AEC8EC9C337CFD0 ] C:\Windows\System32\iscsicpl.dll 15:32:44.0238 3888 C:\Windows\System32\iscsicpl.dll - ok 15:32:44.0253 3888 [ 02E185944CFA58DAD47D409E5655FB28 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll 15:32:44.0255 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll - ok 15:32:44.0271 3888 [ 4D05BDE56A7116B744B04192173A0122 ] C:\Windows\System32\MdSched.exe 15:32:44.0271 3888 C:\Windows\System32\MdSched.exe - ok 15:32:44.0287 3888 [ 2BCF9DD935DAE5A34BACE0F76DD0B581 ] C:\Windows\System32\pmcsnap.dll 15:32:44.0287 3888 C:\Windows\System32\pmcsnap.dll - ok 15:32:44.0304 3888 [ CA75367CE419922291A11227E32FBA0C ] C:\Windows\System32\wsecedit.dll 15:32:44.0304 3888 C:\Windows\System32\wsecedit.dll - ok 15:32:44.0320 3888 [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\System32\tquery.dll 15:32:44.0320 3888 C:\Windows\System32\tquery.dll - ok 15:32:44.0335 3888 [ 0241CB16136B9A4939CA0395768AE286 ] C:\Windows\System32\mssrch.dll 15:32:44.0335 3888 C:\Windows\System32\mssrch.dll - ok 15:32:44.0353 3888 [ A3E23DD82AA7963D9F7D184BEEEE5448 ] C:\Windows\System32\filemgmt.dll 15:32:44.0353 3888 C:\Windows\System32\filemgmt.dll - ok 15:32:44.0369 3888 [ A00075951E38A73FE2F9D8384311710A ] C:\Windows\System32\msconfig.exe 15:32:44.0369 3888 C:\Windows\System32\msconfig.exe - ok 15:32:44.0384 3888 [ 81241E7723D5675AF6E27A7F0E7F3324 ] C:\Windows\System32\AuthFWGP.dll 15:32:44.0384 3888 C:\Windows\System32\AuthFWGP.dll - ok 15:32:44.0402 3888 [ 19BC13711AC403FEB830522E4831701B ] C:\Windows\System32\gameux.dll 15:32:44.0402 3888 C:\Windows\System32\gameux.dll - ok 15:32:44.0427 3888 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll 15:32:44.0427 3888 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok 15:32:44.0443 3888 [ E24BB41C4EFC309A14709FC127A3B847 ] C:\Windows\System32\sdcpl.dll 15:32:44.0443 3888 C:\Windows\System32\sdcpl.dll - ok 15:32:44.0458 3888 [ 7635B6502882E4B1713F049FD8FD2EA4 ] C:\Windows\System32\recdisc.exe 15:32:44.0460 3888 C:\Windows\System32\recdisc.exe - ok 15:32:44.0476 3888 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll 15:32:44.0476 3888 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok 15:32:44.0492 3888 [ 4AC5B4A0B8D22185C09EE5584BF1CFB5 ] C:\Windows\System32\msra.exe 15:32:44.0492 3888 C:\Windows\System32\msra.exe - ok 15:32:44.0509 3888 [ 800D4CCE486A66CB0DF125C348A33180 ] C:\Program Files\Hercules\WiFiStationN\en\WiFiN.resources.dll 15:32:44.0509 3888 C:\Program Files\Hercules\WiFiStationN\en\WiFiN.resources.dll - ok 15:32:44.0525 3888 [ 4C0F22D6705374A7888B619144B11238 ] C:\Program Files\Hercules\WiFiStationN\WiFiCore.dll 15:32:44.0525 3888 C:\Program Files\Hercules\WiFiStationN\WiFiCore.dll - ok 15:32:44.0541 3888 [ 3B919CBDDE7AE3376ED296839846C3DD ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll 15:32:44.0541 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll - ok 15:32:44.0558 3888 [ BD23077CBAD092A5EA5F77ED874F32A2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll 15:32:44.0558 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll - ok 15:32:44.0574 3888 [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\System32\UIAnimation.dll 15:32:44.0574 3888 C:\Windows\System32\UIAnimation.dll - ok 15:32:44.0591 3888 [ F148865E4AC4F715E322EA06E6E21D84 ] C:\Windows\System32\wbem\NCProv.dll 15:32:44.0591 3888 C:\Windows\System32\wbem\NCProv.dll - ok 15:32:44.0607 3888 [ 3CB5F3FC7BB645D628D09FBB839F7AF7 ] C:\Program Files\Hercules\WiFiStationN\WiFiBox.exe 15:32:44.0609 3888 C:\Program Files\Hercules\WiFiStationN\WiFiBox.exe - ok 15:32:44.0625 3888 [ 40E60C0C6E4B9F4D9B8AF2EDE7A6A2E3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll 15:32:44.0625 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll - ok 15:32:44.0640 3888 [ 2291D1FABC087E43D4122CACE1CA30F9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll 15:32:44.0640 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll - ok 15:32:44.0658 3888 [ 056FEC0448136AC359EBBA085BC3A5C4 ] C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.Resources.dll 15:32:44.0658 3888 C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.Resources.dll - ok 15:32:44.0685 3888 [ 10307046E19C8EC964C792A798B32BB3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll 15:32:44.0687 3888 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll - ok 15:32:44.0705 3888 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\System32\WindowsCodecsExt.dll 15:32:44.0705 3888 C:\Windows\System32\WindowsCodecsExt.dll - ok 15:32:44.0720 3888 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\System32\icm32.dll 15:32:44.0720 3888 C:\Windows\System32\icm32.dll - ok 15:32:44.0769 3888 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\System32\d3d9.dll 15:32:44.0769 3888 C:\Windows\System32\d3d9.dll - ok 15:32:44.0785 3888 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\System32\d3d8thk.dll 15:32:44.0785 3888 C:\Windows\System32\d3d8thk.dll - ok 15:32:44.0802 3888 [ DFE74BCF4C4C799176438F6582AB25F7 ] C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_fr_31bf3856ad364e35\PresentationFramework.resources.dll 15:32:44.0802 3888 C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_fr_31bf3856ad364e35\PresentationFramework.resources.dll - ok 15:32:44.0818 3888 [ 1D588BED623E300F3DC2412B1D18A10D ] C:\Program Files\Hercules\WiFiStationN\WiFiConnect.dll 15:32:44.0818 3888 C:\Program Files\Hercules\WiFiStationN\WiFiConnect.dll - ok 15:32:44.0835 3888 [ B28E41D6D8FC969D8F9B9B548AA75743 ] C:\Program Files\Hercules\WiFiStationN\RtlLib.dll 15:32:44.0835 3888 C:\Program Files\Hercules\WiFiStationN\RtlLib.dll - ok 15:32:44.0851 3888 [ D9A63F1728D9109EE6533EE9AE644C04 ] C:\Program Files\Hercules\WiFiStationN\RtlIhvOid.dll 15:32:44.0851 3888 C:\Program Files\Hercules\WiFiStationN\RtlIhvOid.dll - ok 15:32:44.0867 3888 [ A882CD13F68656CFD657E6639D3D3E17 ] C:\Windows\System32\wlanui.dll 15:32:44.0867 3888 C:\Windows\System32\wlanui.dll - ok 15:32:44.0882 3888 [ 7C02774740B2EA1F5237808B1A363D34 ] C:\Program Files\Hercules\WiFiStationN\IpLib.dll 15:32:44.0882 3888 C:\Program Files\Hercules\WiFiStationN\IpLib.dll - ok 15:32:44.0900 3888 [ 5E4FF36923C37C80B537DCE6CAA755F9 ] C:\Program Files\Internet Explorer\ieproxy.dll 15:32:44.0900 3888 C:\Program Files\Internet Explorer\ieproxy.dll - ok 15:32:44.0916 3888 [ D5405DD640E870B1DD4F5B4BD08865BB ] C:\Program Files\Hercules\WiFiStationN\libeay32.dll 15:32:44.0916 3888 C:\Program Files\Hercules\WiFiStationN\libeay32.dll - ok 15:32:44.0939 3888 [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\System32\msidle.dll 15:32:44.0939 3888 C:\Windows\System32\msidle.dll - ok 15:32:44.0957 3888 [ CC0713B192BF47A124168957ACD75CC1 ] C:\Windows\System32\ieui.dll 15:32:44.0957 3888 C:\Windows\System32\ieui.dll - ok 15:32:44.0970 3888 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\System32\mssprxy.dll 15:32:44.0972 3888 C:\Windows\System32\mssprxy.dll - ok 15:32:44.0988 3888 [ 2DAD4B6B659F7E5DFBCB6D2C634FA6F3 ] C:\Program Files\Internet Explorer\IEShims.dll 15:32:44.0988 3888 C:\Program Files\Internet Explorer\IEShims.dll - ok 15:32:45.0003 3888 [ 4BA9EFCDA842C6A6692AFDA6E2BEF70A ] C:\Program Files\Internet Explorer\sqmapi.dll 15:32:45.0003 3888 C:\Program Files\Internet Explorer\sqmapi.dll - ok 15:32:45.0021 3888 [ BB197F54A8F69EEA8356B7F70E6D3A20 ] C:\Windows\System32\mshtml.dll 15:32:45.0021 3888 C:\Windows\System32\mshtml.dll - ok 15:32:45.0037 3888 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\System32\d2d1.dll 15:32:45.0037 3888 C:\Windows\System32\d2d1.dll - ok 15:32:45.0052 3888 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\System32\DWrite.dll 15:32:45.0052 3888 C:\Windows\System32\DWrite.dll - ok 15:32:45.0076 3888 [ 5CF15474FFDB5005E54958DF6EDD97AB ] C:\Windows\System32\wmdrmdev.dll 15:32:45.0076 3888 C:\Windows\System32\wmdrmdev.dll - ok 15:32:45.0093 3888 [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\Windows\System32\drmv2clt.dll 15:32:45.0093 3888 C:\Windows\System32\drmv2clt.dll - ok 15:32:45.0113 3888 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\System32\mfplat.dll 15:32:45.0113 3888 C:\Windows\System32\mfplat.dll - ok 15:32:45.0126 3888 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\System32\mlang.dll 15:32:45.0126 3888 C:\Windows\System32\mlang.dll - ok 15:32:45.0142 3888 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll 15:32:45.0142 3888 C:\Windows\System32\webcheck.dll - ok 15:32:45.0160 3888 [ 2D11BC8B460957E62E4420373A0D8BDA ] C:\Windows\System32\imapi2.dll 15:32:45.0160 3888 C:\Windows\System32\imapi2.dll - ok 15:32:45.0177 3888 [ E1AC89F6C5252057E6062843E36A6701 ] C:\Windows\System32\SearchProtocolHost.exe 15:32:45.0177 3888 C:\Windows\System32\SearchProtocolHost.exe - ok 15:32:45.0203 3888 [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\System32\wmp.dll 15:32:45.0205 3888 C:\Windows\System32\wmp.dll - ok 15:32:45.0220 3888 [ EA2B00551F3E7B3D5F7FB730A55F8246 ] C:\Windows\System32\blackbox.dll 15:32:45.0220 3888 C:\Windows\System32\blackbox.dll - ok 15:32:45.0236 3888 [ C7952D0A4C43A965A1741916BB134751 ] C:\Windows\System32\hgcpl.dll 15:32:45.0236 3888 C:\Windows\System32\hgcpl.dll - ok 15:32:45.0251 3888 [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\System32\msshooks.dll 15:32:45.0251 3888 C:\Windows\System32\msshooks.dll - ok 15:32:45.0267 3888 [ A6CD6B3F71E13E2E45B727FB8A47EA87 ] C:\Windows\System32\SearchFilterHost.exe 15:32:45.0267 3888 C:\Windows\System32\SearchFilterHost.exe - ok 15:32:45.0283 3888 [ DE6F4B7E62FDE776F3DE8E5FB5A05C48 ] C:\Windows\System32\fdWSD.dll 15:32:45.0283 3888 C:\Windows\System32\fdWSD.dll - ok 15:32:45.0300 3888 [ 674611721264013DB169EC12AFC9C3B6 ] C:\Windows\System32\fdSSDP.dll 15:32:45.0300 3888 C:\Windows\System32\fdSSDP.dll - ok 15:32:45.0316 3888 [ 08DF1B8C9C0754A7069E80A986373F52 ] C:\Windows\System32\P2P.dll 15:32:45.0316 3888 C:\Windows\System32\P2P.dll - ok 15:32:45.0333 3888 [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\System32\ieapfltr.dll 15:32:45.0333 3888 C:\Windows\System32\ieapfltr.dll - ok 15:32:45.0351 3888 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\System32\p2pcollab.dll 15:32:45.0351 3888 C:\Windows\System32\p2pcollab.dll - ok 15:32:45.0367 3888 [ 9DC23ACF360AEA7DF55AD7A8D3FBF4E6 ] C:\Windows\System32\IdListen.dll 15:32:45.0367 3888 C:\Windows\System32\IdListen.dll - ok 15:32:45.0382 3888 [ 394373142655ACCF49D64AAD466C86FF ] C:\Windows\System32\jscript9.dll 15:32:45.0382 3888 C:\Windows\System32\jscript9.dll - ok 15:32:45.0400 3888 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\System32\msimtf.dll 15:32:45.0400 3888 C:\Windows\System32\msimtf.dll - ok 15:32:45.0417 3888 [ F059EB4C9C256F62F196EAA439E28F74 ] C:\Windows\System32\hgprint.dll 15:32:45.0417 3888 C:\Windows\System32\hgprint.dll - ok 15:32:45.0433 3888 [ 6581B52E133CC6D00661C58968C7E212 ] C:\Windows\System32\SearchFolder.dll 15:32:45.0435 3888 C:\Windows\System32\SearchFolder.dll - ok 15:32:45.0451 3888 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\System32\d3d10warp.dll 15:32:45.0451 3888 C:\Windows\System32\d3d10warp.dll - ok 15:32:45.0472 3888 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\System32\dxtrans.dll 15:32:45.0472 3888 C:\Windows\System32\dxtrans.dll - ok 15:32:45.0488 3888 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\System32\ddrawex.dll 15:32:45.0488 3888 C:\Windows\System32\ddrawex.dll - ok 15:32:45.0507 3888 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\System32\ddraw.dll 15:32:45.0507 3888 C:\Windows\System32\ddraw.dll - ok 15:32:45.0523 3888 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\System32\dciman32.dll 15:32:45.0523 3888 C:\Windows\System32\dciman32.dll - ok 15:32:45.0539 3888 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\System32\dxtmsft.dll 15:32:45.0539 3888 C:\Windows\System32\dxtmsft.dll - ok 15:32:45.0554 3888 [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\Windows\System32\wmpps.dll 15:32:45.0554 3888 C:\Windows\System32\wmpps.dll - ok 15:32:45.0570 3888 [ 7B97346CE563B74BBCC120FC83E5A6D9 ] C:\Windows\System32\wmpmde.dll 15:32:45.0570 3888 C:\Windows\System32\wmpmde.dll - ok 15:32:45.0587 3888 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\System32\d3d10.dll 15:32:45.0587 3888 C:\Windows\System32\d3d10.dll - ok 15:32:45.0605 3888 [ 547F78746F20901C770E8653B242217C ] C:\Windows\System32\d3d10core.dll 15:32:45.0605 3888 C:\Windows\System32\d3d10core.dll - ok 15:32:45.0621 3888 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\System32\WinSATAPI.dll 15:32:45.0621 3888 C:\Windows\System32\WinSATAPI.dll - ok 15:32:45.0636 3888 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL 15:32:45.0636 3888 C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok 15:32:45.0652 3888 [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2 ] C:\Windows\System32\fveui.dll 15:32:45.0652 3888 C:\Windows\System32\fveui.dll - ok 15:32:45.0669 3888 [ 1372E8E8FD066002131E3D509275E697 ] C:\Windows\System32\P2PGraph.dll 15:32:45.0669 3888 C:\Windows\System32\P2PGraph.dll - ok 15:32:45.0685 3888 [ CBBD4D79EEC3EF5A4ADAE9697944C6B9 ] C:\Windows\System32\MSMPEG2ENC.DLL 15:32:45.0685 3888 C:\Windows\System32\MSMPEG2ENC.DLL - ok 15:32:45.0703 3888 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\System32\devenum.dll 15:32:45.0703 3888 C:\Windows\System32\devenum.dll - ok 15:32:45.0726 3888 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\System32\msdmo.dll 15:32:45.0726 3888 C:\Windows\System32\msdmo.dll - ok 15:32:45.0742 3888 [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\System32\wbem\WmiPrvSE.exe 15:32:45.0742 3888 C:\Windows\System32\wbem\WmiPrvSE.exe - ok 15:32:45.0757 3888 [ C6B0509AA89F656247694E2D6ABF7255 ] C:\Windows\System32\wbem\wmiprov.dll 15:32:45.0757 3888 C:\Windows\System32\wbem\wmiprov.dll - ok 15:32:45.0773 3888 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\System32\msisip.dll 15:32:45.0773 3888 C:\Windows\System32\msisip.dll - ok 15:32:45.0791 3888 [ 230EA9ABBC3432CDE388F4891E76E867 ] C:\Windows\System32\udhisapi.dll 15:32:45.0791 3888 C:\Windows\System32\udhisapi.dll - ok 15:32:45.0806 3888 [ AA3B91B70E79BCE70AD3B190789B9574 ] C:\Windows\System32\drttransport.dll 15:32:45.0808 3888 C:\Windows\System32\drttransport.dll - ok 15:32:45.0824 3888 [ EE29FCC244C8033E2F748D863DCBF378 ] C:\Windows\System32\drt.dll 15:32:45.0824 3888 C:\Windows\System32\drt.dll - ok 15:32:45.0839 3888 [ 8B1E277F554228A84126402BBBDC32F4 ] C:\Windows\System32\Macromed\Flash\Flash32_11_4_402_287.ocx 15:32:45.0839 3888 C:\Windows\System32\Macromed\Flash\Flash32_11_4_402_287.ocx - ok 15:32:45.0855 3888 [ 8709C95E4EC55378D5BF27F02B0ED5A5 ] C:\Windows\System32\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe 15:32:45.0855 3888 C:\Windows\System32\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe - ok 15:32:45.0871 3888 [ 6B158BB71FB844B0F8AEC97885956A17 ] C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe 15:32:45.0871 3888 C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe - ok 15:32:45.0886 3888 [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\System32\oleaccrc.dll 15:32:45.0886 3888 C:\Windows\System32\oleaccrc.dll - ok 15:32:45.0906 3888 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\System32\dbghelp.dll 15:32:45.0906 3888 C:\Windows\System32\dbghelp.dll - ok 15:32:45.0923 3888 [ 3C78C05F434E26C01A41D702A30951B9 ] C:\Windows\System32\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.dll 15:32:45.0923 3888 C:\Windows\System32\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.dll - ok 15:32:45.0939 3888 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 15:32:45.0939 3888 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok 15:32:45.0955 3888 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll 15:32:45.0955 3888 C:\Windows\System32\msvcr100_clr0400.dll - ok 15:32:45.0970 3888 [ D16D818E9930A6E5B4F6476DD0998D1A ] C:\Windows\System32\drivers\spsys.sys 15:32:45.0970 3888 C:\Windows\System32\drivers\spsys.sys - ok 15:32:45.0994 3888 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\System32\cabinet.dll 15:32:45.0994 3888 C:\Windows\System32\cabinet.dll - ok 15:32:46.0009 3888 [ 387A8A473ECC5BA02CF453277C1F3274 ] C:\Windows\System32\mspatcha.dll 15:32:46.0009 3888 C:\Windows\System32\mspatcha.dll - ok 15:32:46.0027 3888 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll 15:32:46.0027 3888 C:\Windows\System32\wuapi.dll - ok 15:32:46.0041 3888 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll 15:32:46.0041 3888 C:\Windows\System32\wups.dll - ok 15:32:46.0056 3888 [ 3A11396EAC2414012155AB14E5C1E332 ] C:\Windows\System32\sppwinob.dll 15:32:46.0056 3888 C:\Windows\System32\sppwinob.dll - ok 15:32:46.0072 3888 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll 15:32:46.0074 3888 C:\Windows\System32\wups2.dll - ok 15:32:46.0087 3888 [ 6ECAA2AC6B80D2D92A9922235B72A101 ] C:\Program Files\Avira\AntiVir Desktop\avwsc.exe 15:32:46.0087 3888 C:\Program Files\Avira\AntiVir Desktop\avwsc.exe - ok 15:32:46.0105 3888 [ 5613496A0484B3594891056013C80509 ] C:\Program Files\Avira\AntiVir Desktop\ccfw.dll 15:32:46.0105 3888 C:\Program Files\Avira\AntiVir Desktop\ccfw.dll - ok 15:32:46.0121 3888 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\System32\wscisvif.dll 15:32:46.0123 3888 C:\Windows\System32\wscisvif.dll - ok 15:32:46.0138 3888 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\System32\wscapi.dll 15:32:46.0140 3888 C:\Windows\System32\wscapi.dll - ok 15:32:46.0156 3888 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\System32\wscproxystub.dll 15:32:46.0156 3888 C:\Windows\System32\wscproxystub.dll - ok 15:32:46.0171 3888 [ 421D9645B72CD341ECDBB0FCE06C97DE ] C:\Windows\System32\sppobjs.dll 15:32:46.0171 3888 C:\Windows\System32\sppobjs.dll - ok 15:32:46.0187 3888 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] C:\Windows\System32\drivers\asyncmac.sys 15:32:46.0187 3888 C:\Windows\System32\drivers\asyncmac.sys - ok 15:32:46.0205 3888 [ 8B57A1AD493653BB57F281FE75DD175B ] C:\Windows\System32\NaturalLanguage6.dll 15:32:46.0205 3888 C:\Windows\System32\NaturalLanguage6.dll - ok 15:32:46.0220 3888 [ 61B33014F2D2A4F9553F6EF64FB82E31 ] C:\Windows\System32\NlsData000c.dll 15:32:46.0220 3888 C:\Windows\System32\NlsData000c.dll - ok 15:32:46.0244 3888 [ AC7D0114246661B1E29A0939039157C5 ] C:\Windows\System32\NlsLexicons000c.dll 15:32:46.0244 3888 C:\Windows\System32\NlsLexicons000c.dll - ok 15:32:46.0259 3888 [ 6A1E8DEB746912DF47CF651E138401D7 ] C:\Windows\System32\StructuredQuery.dll 15:32:46.0259 3888 C:\Windows\System32\StructuredQuery.dll - ok 15:32:46.0275 3888 [ 236360CE5E4C3F063AC110533747C0A8 ] C:\Windows\System32\Wpc.dll 15:32:46.0275 3888 C:\Windows\System32\Wpc.dll - ok 15:32:46.0291 3888 [ F175E53C7C3B25A9029A131FB578B155 ] C:\Windows\System32\wscinterop.dll 15:32:46.0291 3888 C:\Windows\System32\wscinterop.dll - ok 15:32:46.0308 3888 [ 7FD5532C142DB6C9CC47AA4DCF71FDEC ] C:\Windows\System32\wscui.cpl 15:32:46.0308 3888 C:\Windows\System32\wscui.cpl - ok 15:32:46.0324 3888 [ 1869BD251211FB6275067372A45682D6 ] C:\Windows\System32\werconcpl.dll 15:32:46.0324 3888 C:\Windows\System32\werconcpl.dll - ok 15:32:46.0341 3888 [ D0481FB85BEEDD30A0884BE327880F80 ] C:\Windows\System32\framedynos.dll 15:32:46.0341 3888 C:\Windows\System32\framedynos.dll - ok 15:32:46.0357 3888 [ 57CE9D8350B1DD76EEC596C423C3C0BC ] C:\Windows\System32\hcproviders.dll 15:32:46.0357 3888 C:\Windows\System32\hcproviders.dll - ok 15:32:46.0375 3888 [ CB67C2B94302DC94BC15ED6553A5C1C7 ] C:\Windows\System32\wbem\cimwin32.dll 15:32:46.0375 3888 C:\Windows\System32\wbem\cimwin32.dll - ok 15:32:46.0392 3888 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\System32\security.dll 15:32:46.0392 3888 C:\Windows\System32\security.dll - ok 15:32:46.0410 3888 [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\System32\schedcli.dll 15:32:46.0410 3888 C:\Windows\System32\schedcli.dll - ok 15:32:46.0425 3888 [ 43BE3B9CA431F88E049928DC45C4365C ] C:\Windows\System32\wbem\wmipcima.dll 15:32:46.0425 3888 C:\Windows\System32\wbem\wmipcima.dll - ok 15:32:46.0441 3888 [ 907281ED4AD35D41B29FFDC211EBAD80 ] C:\Windows\System32\wmi.dll 15:32:46.0441 3888 C:\Windows\System32\wmi.dll - ok 15:32:46.0457 3888 [ 19F75D71E4256F5113D64CE2BB66B838 ] C:\Windows\System32\slwga.dll 15:32:46.0457 3888 C:\Windows\System32\slwga.dll - ok 15:32:46.0472 3888 [ 8E4B58E12B3FA65ED1462846906E0B59 ] C:\Windows\System32\sppc.dll 15:32:46.0472 3888 C:\Windows\System32\sppc.dll - ok 15:32:46.0482 3888 ============================================================ 15:32:46.0482 3888 Scan finished 15:32:46.0482 3888 ============================================================ 15:32:46.0517 3724 Detected object count: 1 15:32:46.0517 3724 Actual detected object count: 1 15:33:34.0662 3724 cmuda3 ( UnsignedFile.Multi.Generic ) - skipped by user 15:33:34.0662 3724 cmuda3 ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:34:34.0419 2648 Deinitialize success J'attends vos instruction si quelque chose à faire de plus Cordialement Bruno
- le 26 octobre 2012
- 2 réponses
[Résolu] Disque dur cassé

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Hardware

Je ne sais comment cloturer ce sujet. La cause venait d'un disque dur endommagé qui a été diagnostiqué avec un outil seatools de seagate. J'ai changé le disque. Terminé
- le 23 octobre 2012
- 1 réponse
*** Sujet bloqué *** - PC réinstallé mais lent sous IE

Fullzx14r a posté un sujet dans Analyses et éradication malwares

Bonjour, j'ai réinstallé le PC après le plantage d'un disque dur qui présentait un défaut de secteurs. Tout allait bien avec beacoup de MAJ jusqu'à l'installation de Office 2010 avec mes codes achat. Lors de l'activation Microsoft m'a refusé celle-ci prétextant qu'il était déjà installé. Effectivement sur l'autre disque. J'ai fait un appel tél sur un serveur Microsoft mais qui n'a pas abouti pour les même raisons.J'ai donc cherché à activer mon Office sur le net avec un keygen. Erreur Depuis le PC rame sous IE et ne semble plus bien accepter les tâches multiples. Si quelqu'un veux bien me guider pour voir si je n'ai pas chopé un virus car j'ai téléchargé un programme qui m'a donné un TR/Dropper.gen qui a été stoppé par Avira internet Secutity 2012. Il a peut être quand même fait des dégats. Depuis j'ai rappelé Microsoft et fait activer mon Office par téléphone. Ca c'est bon maintenant. Mais la navigation est toujours lente Merci pour un retour de spécialiste. J'attends vos instructions Bruno
- le 23 octobre 2012
- 2 réponses
[Résolu] Disque dur cassé

Fullzx14r a posté un sujet dans Hardware

Bonjour Je pense que l'un de mes PC a un problème et je n'arrive pas à l'identifier. Le démarrage de W7 est lent. IE est parfois lent. J'ai l'impression d'avoir des frezzes en permanence. Bizarre. Peut être un malware ?
- le 20 octobre 2012
- 1 réponse
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Merci à Pear pour son aide. Je pense que le sujet peut être classé comme terminé End
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Voila c'est fait rapport ci dessous # DelFix v9.0 - Rapport créé le 03/10/2012 à 16:08:25 # Mis à jour le 23/09/12 par Xplode # Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits) # Nom d'utilisateur : Bruno QUESNEL - FUJITSUPC1 (Administrateur) # Exécuté depuis : C:\Users\Bruno QUESNEL\Desktop\Outil Zebulon\Delfix\delfix.exe # Option [suppression] ~~~~~~ Dossiers(s) ~~~~~~ Supprimé : C:\ZHP Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP Supprimé : C:\Program Files\ZHPDiag Supprimé : C:\Program Files\Trend Micro\Hijackthis ~~~~~~ Fichier(s) ~~~~~~ Supprimé : C:\AdwCleaner[R1].txt Supprimé : C:\AdwCleaner[R2].txt Supprimé : C:\AdwCleaner[s1].txt Supprimé : C:\PhysicalDisk0_MBR.bin Supprimé : C:\Users\Bruno QUESNEL\Downloads\hijackthis_hijackthis_2.0.4_anglais_17891.msi ~~~~~~ Registre ~~~~~~ Clé Supprimée : HKLM\SOFTWARE\AdwCleaner Clé Supprimée : HKLM\SOFTWARE\TrendMicro\Hijackthis Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZHPDiag_is1 ~~~~~~ Autres ~~~~~~ -> Prefetch Vidé ************************* DelFix[R1].txt - [1181 octets] - [03/10/2012 16:07:24] DelFix[s1].txt - [1148 octets] - [03/10/2012 16:08:25] ########## EOF - C:\DelFix[s1].txt - [1272 octets] ##########
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

N'y aurait-il pas une erreur sur le lien indiqué. Celui-ci me ramène à la page de chargement de ADWcleaner !
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Un nouveau diag ZHP peut-il e^tre utile pour le controle et quelles sont les autres utilité des deux autres icones du logiciel ZHP Fix et MBR Check
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Je ne suis pas un spécialiste des problèmes comme vous sans doute. Donc je ne sais pas apprécier si mon PC présente encore d'autres problèmes. D'autres recherches sont-elles possibles pour voir s'il n'y a pas autre chose à voir ? Dans tous les cas merci de cette aide appréciée.
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Voici maintenant le log de la suppreession excécutée par ADWCleaner. J'attends la suite de vos instructions et encore merci # AdwCleaner v2.003 - Rapport créé le 03/10/2012 à 15:34:06 # Mis à jour le 23/09/2012 par Xplode # Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits) # Nom d'utilisateur : Bruno QUESNEL - FUJITSUPC1 # Mode de démarrage : Normal # Exécuté depuis : C:\Users\Bruno QUESNEL\Desktop\Outil Zebulon\Adwcleaner\adwcleaner.exe # Option [suppression] ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Supprimé : C:\ProgramData\Babylon Dossier Supprimé : C:\ProgramData\boost_interprocess Dossier Supprimé : C:\Users\Bruno QUESNEL\AppData\Local\Babylon Dossier Supprimé : C:\Users\Bruno QUESNEL\AppData\LocalLow\Toolbar4 Dossier Supprimé : C:\Users\Bruno QUESNEL\AppData\Roaming\Babylon Dossier Supprimé : C:\Users\Bruno QUESNEL\AppData\Roaming\pdfforge Dossier Supprimé : C:\Users\BRUNOQ~1\AppData\Local\Temp\Iminent Fichier Supprimé : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml ***** [Registre] ***** Clé Supprimée : HKCU\Software\IM Clé Supprimée : HKCU\Software\Iminent Clé Supprimée : HKCU\Software\ImInstaller Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E} Clé Supprimée : HKCU\Software\Softonic Clé Supprimée : HKCU\Software\SweetIm Clé Supprimée : HKLM\Software\Babylon Clé Supprimée : HKLM\Software\BabylonToolbar Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF} Clé Supprimée : HKLM\Software\Iminent Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP Clé Supprimée : HKLM\Software\SweetIm Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] ***** [Navigateurs] ***** -\\ Internet Explorer v9.0.8112.16421 Restauré : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope] Restauré : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope] Restauré : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope] ************************* AdwCleaner[R1].txt - [7088 octets] - [03/10/2012 15:28:09] AdwCleaner[R2].txt - [7148 octets] - [03/10/2012 15:31:20] AdwCleaner[s1].txt - [7056 octets] - [03/10/2012 15:34:06] ########## EOF - C:\AdwCleaner[s1].txt - [7116 octets] ##########
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Excusez moi Pear je n'avais pas lancé Adwcleaner en tant qu'administrateur. Voici le rapport coorect avec cette option et je vous envoie la suite avec l'option suppression. Désolé pour l'erreur. # AdwCleaner v2.003 - Rapport créé le 03/10/2012 à 15:31:20 # Mis à jour le 23/09/2012 par Xplode # Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits) # Nom d'utilisateur : Bruno QUESNEL - FUJITSUPC1 # Mode de démarrage : Normal # Exécuté depuis : C:\Users\Bruno QUESNEL\Desktop\Outil Zebulon\Adwcleaner\adwcleaner.exe # Option [Recherche] ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Présent : C:\ProgramData\Babylon Dossier Présent : C:\ProgramData\boost_interprocess Dossier Présent : C:\Users\Bruno QUESNEL\AppData\Local\Babylon Dossier Présent : C:\Users\Bruno QUESNEL\AppData\LocalLow\Toolbar4 Dossier Présent : C:\Users\Bruno QUESNEL\AppData\Roaming\Babylon Dossier Présent : C:\Users\Bruno QUESNEL\AppData\Roaming\pdfforge Dossier Présent : C:\Users\BRUNOQ~1\AppData\Local\Temp\Iminent Fichier Présent : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml ***** [Registre] ***** Clé Présente : HKCU\Software\IM Clé Présente : HKCU\Software\Iminent Clé Présente : HKCU\Software\ImInstaller Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E} Clé Présente : HKCU\Software\Softonic Clé Présente : HKCU\Software\SweetIm Clé Présente : HKLM\Software\Babylon Clé Présente : HKLM\Software\BabylonToolbar Clé Présente : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Clé Présente : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759} Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF} Clé Présente : HKLM\Software\Iminent Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08} Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP Clé Présente : HKLM\Software\SweetIm Clé Présente : HKU\S-1-5-21-1313761182-3003511097-2797167022-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Clé Présente : HKU\S-1-5-21-1313761182-3003511097-2797167022-1001\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E} Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] ***** [Navigateurs] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Le registre ne contient aucune entrée illégitime. ************************* AdwCleaner[R1].txt - [7088 octets] - [03/10/2012 15:28:09] AdwCleaner[R2].txt - [7019 octets] - [03/10/2012 15:31:20] ########## EOF - C:\AdwCleaner[R2].txt - [7079 octets] ##########
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Ci dessous le rapport de RECHERCHE de ADWCleaner : # AdwCleaner v2.003 - Rapport créé le 03/10/2012 à 15:28:09 # Mis à jour le 23/09/2012 par Xplode # Système d'exploitation : Windows 7 Ultimate Service Pack 1 (32 bits) # Nom d'utilisateur : Bruno QUESNEL - FUJITSUPC1 # Mode de démarrage : Normal # Exécuté depuis : C:\Users\Bruno QUESNEL\Desktop\Outil Zebulon\Adwcleaner\adwcleaner.exe # Option [Recherche] ***** [services] ***** ***** [Fichiers / Dossiers] ***** Dossier Présent : C:\ProgramData\Babylon Dossier Présent : C:\ProgramData\boost_interprocess Dossier Présent : C:\Users\Bruno QUESNEL\AppData\Local\Babylon Dossier Présent : C:\Users\Bruno QUESNEL\AppData\LocalLow\Toolbar4 Dossier Présent : C:\Users\Bruno QUESNEL\AppData\Roaming\Babylon Dossier Présent : C:\Users\Bruno QUESNEL\AppData\Roaming\pdfforge Dossier Présent : C:\Users\BRUNOQ~1\AppData\Local\Temp\Iminent Fichier Présent : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml ***** [Registre] ***** Clé Présente : HKCU\Software\IM Clé Présente : HKCU\Software\Iminent Clé Présente : HKCU\Software\ImInstaller Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E} Clé Présente : HKCU\Software\Softonic Clé Présente : HKCU\Software\SweetIm Clé Présente : HKLM\Software\Babylon Clé Présente : HKLM\Software\BabylonToolbar Clé Présente : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Clé Présente : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} Clé Présente : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759} Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF} Clé Présente : HKLM\Software\Iminent Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08} Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32 Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP Clé Présente : HKLM\Software\SweetIm Clé Présente : HKU\S-1-5-21-1313761182-3003511097-2797167022-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Clé Présente : HKU\S-1-5-21-1313761182-3003511097-2797167022-1001\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E} Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] ***** [Navigateurs] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Le registre ne contient aucune entrée illégitime. ************************* AdwCleaner[R1].txt - [6959 octets] - [03/10/2012 15:28:09] ########## EOF - C:\AdwCleaner[R1].txt - [7019 octets] ##########
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Bonjour Pear, Me voici de retour. J'ai effectué votre procédure et le rapport d'analyse se trouve à l'adresse suivante. url=http://pjjoint.malekal.com/files.php?id=ZHPDiag_20121003_q14d7r9g13c13 J'attends vos instructions pour savoir s'il est nécessaire de faire une action sur ma machine. Cordialement Bruno
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Merci beaucoup pour la prise en compte de mon message. J'excécute après déjeuner la procédure indiquée et revient vers vous avec les résultats. Cordialement
- le 3 octobre 2012
- 16 réponses
[Résolu] Log HijackThis bizarre

Fullzx14r a posté un sujet dans Analyses et éradication malwares

Tout d'abord bonjour à tous ceux capables de me donner un coup de main face à un problème que je ne connais pas. Mon ordinateur sur lequel j'ai effectué un test log Hijacthis hier soir me signale un nombre important de services NT code O23 comme méchants !!! Ce serait des svchost.exe à problèmes ? Pour être franc le PC fonctionne. Doit-on erradiquer ces services NT et comment ou y a-t-il un problème viral sur le PC ? Une analyse de mon antivirus AVIRA 2012 ne montre rien d'anormal Merci pour un conseil ou aide. Cordialement Voici le log d'hier soir Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:59:52, on 02/10/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16450) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\SOUNDMAN.EXE C:\Program Files\Norton Ghost\Agent\VProTray.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Microsoft Device Center\itype.exe C:\Program Files\Microsoft Device Center\ipoint.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe C:\Program Files\Spamihilator\spamihilator.exe C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\system32\taskhost.exe C:\Program Files\Serveur Media\twonkymediaserverconfig.exe C:\Program Files\Nuance\PDF Professional 7\pdfpro7hook.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Windows\system32\conhost.exe C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exe C:\Windows\system32\conhost.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_4_402_265_ActiveX.exe C:\Windows\system32\taskmgr.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Hotmail.fr, Messenger, Skype, Actualité, Sport, People, Femmes - MSN France R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN Hotmail.fr, Messenger, Skype, Actualité, Sport, People, Femmes - MSN France R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\Program Files\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - C:\Program Files\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: DocuCom PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - C:\Program Files\Nuance\PDF Professional 7\Bin\ZeonIEFavClient.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [Norton Ghost 15.0] "C:\Program Files\Norton Ghost\Agent\VProTray.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [intelliType Pro] "C:\Program Files\Microsoft Device Center\itype.exe" O4 - HKLM\..\Run: [intelliPoint] "C:\Program Files\Microsoft Device Center\ipoint.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [sony PC Companion] "C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe" /Background O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [HP Officejet 6700 (NET)] "C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe" -deviceID "CN2492H2CW05RQ:NW" -scfn "HP Officejet 6700 (NET)" -AutoStart 1 O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU') O4 - Startup: Serviio.lnk = C:\Program Files\Serviio\bin\ServiioConsole.exe O4 - Startup: Spamihilator.lnk = C:\Program Files\Spamihilator\spamihilator.exe O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Ouvrir avec Nuance PDF Converter 7 - res://C:\Program Files\Nuance\PDF Professional 7\cnvres_fre.dll /100 O8 - Extra context menu item: Ouvrir avec PDF Professional 7 - res://C:\Program Files\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - http://webtv.guidetv.orange.fr/resources/OCS_9418.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe O23 - Service: AMD FUEL Service - Unknown owner - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe O23 - Service: Avira Protection e-mail (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe O23 - Service: Avira Planificateur (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Protection temps réel (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Avira Protection Web (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: @appmgmts.dll,-3250 (AppMgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\cscsvc.dll,-200 (CscService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Seagate Service (FreeAgentGoNext Service) - Seagate Technology LLC - C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe O23 - Service: GenericMount Helper Service - Symantec - C:\Program Files\Norton Ghost\Shared\Drivers\GenericMountHelper.exe O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: This service enables products that use the Nalpeiron Licensing System. (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\nlssrv32.exe O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: PDFProFiltSrv - Nuance Communications, Inc. - C:\Program Files\Nuance\PDF Professional 7\PDFProFiltSrv.exe O23 - Service: @%SystemRoot%\system32\peerdistsvc.dll,-9000 (PeerDistSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%windir%\WindowsMobile\rapimgr.dll,-104 (RapiMgr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: Serveur Média - PacketVideo - C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe O23 - Service: Serviio - Unknown owner - C:\Program Files\Serviio\bin\ServiioService.exe O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: SymSnapService - Symantec - C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%windir%\WindowsMobile\wcescomm.dll,-40079 (WcesComm) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe -- End of file - 27627 bytes
- le 3 octobre 2012
- 16 réponses
Infection BDC/Momibot.89088.B

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Pour l'instant je n'ai pas encore fait ce que tu m'as demandé car je n'étais pas présent. Par contre j'en avais un peu marre de voir mon PC infecté depuis plusieurs semaine sans arriver à le remettre en état. J'ai donc fait une vérif pour voir s'il pouvait fonctionner en W7. Et c'est le cas sans aucune modif nécessaire. J'ai donc été acheter un HD neuf pour le monter en master 1 et rebooter le PC en W7 avant de partir 2 jours. Le disque contaminé est maintenant en position Sata 2. Je ne boote plus dessus pour l'instant. Je veux tester tous mes programmes sous W7. Pour l'instant c'est OK. Si c'est valable au bout d'une semaine je reformaterais le disque XP. Pour l'instant il est en l'état ou tu le connais. De toute façon en inversant le disque de démarrage je peux booter sur l'un ou l'autre. Je m'atais donné cette possibilité au cas où l'installation de W7 n'aurait pas fonctionnée. Si tu as un conseil sur une chose que j'aurais pu faire et qui pourrait mettre en péril le HD W7 n'hésite aps à me le dire. Dans tous els cas je reviendrais vers toi pour dire ce que j'ai fait et si le sujet peut-être cloturé. A bientôt pour la suite
- le 16 mai 2010
- 36 réponses
Infection BDC/Momibot.89088.B

Fullzx14r a répondu à un(e) sujet de Fullzx14r dans Analyses et éradication malwares

Re bonjour Gof Merci pour avoir compilé mes deux messages. Nous poursuivons donc l'analyse du PC par un combofix dont le rapport suit. Au passage au redémarrage mon antivirus a signalé un trojan qui est le suivant : Le fichier c:\windows\temp\logishrd\LVprclnj01.dll est infecté par le cheval de troie TR/Trash Gen Il a été mis en quarantaine par mon action avant la fin de combofix car il revenait sans cesse à l'écran. J'espère ne pas avoir fait une erreur en agissant ainsi. J'attends tes commentaires avisés. Merci pour le coup de main. ComboFix 10-05-13.02 - QUESNEL Bruno 13/05/2010 23:09:34.1.2 - x86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.3071.2290 [GMT 2:00] Lancé depuis: c:\documents and settings\QUESNEL Bruno\Bureau\ComboFix.exe AV: AntiVir Desktop *On-access scanning disabled* (Updated) {11638345-E4FC-4BEE-BB73-EC754659C5F6} . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\inf\vvt.pnf c:\windows\system32\3962614842.dat c:\windows\TEMP\logishrd\LVPrcInj01.dll M:\Autorun.inf N:\Autorun.inf . ((((((((((((((((((((((((((((( Fichiers créés du 2010-04-13 au 2010-05-13 )))))))))))))))))))))))))))))))))))) . 2010-05-13 14:43 . 2010-05-13 14:43 -------- d-----w- c:\program files\7-Zip 2010-05-12 20:52 . 2010-05-12 20:52 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Leadertech 2010-05-12 20:37 . 2010-05-12 20:37 36352 ----a-w- c:\windows\system32\drivers\DISK.SYS 2010-05-11 21:18 . 2010-05-12 20:37 -------- d-----w- c:\windows\system32\MpEngineStore 2010-05-08 07:33 . 2010-05-08 07:33 -------- d-----w- c:\program files\Fichiers communs\DivX Shared 2010-05-08 07:33 . 2010-05-08 07:34 -------- d-----w- c:\program files\DivX 2010-05-02 17:08 . 2010-05-02 17:09 -------- dc-h--w- c:\windows\ie8 2010-05-02 16:56 . 2010-05-02 16:56 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\ElevatedDiagnostics 2010-05-02 08:47 . 2010-05-02 08:47 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Malwarebytes 2010-05-02 08:47 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-05-02 08:47 . 2010-05-02 08:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2010-05-02 08:47 . 2010-05-02 08:47 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-05-02 08:47 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-05-02 08:35 . 2010-05-02 08:35 -------- d-----w- C:\_OTL 2010-05-01 15:56 . 2010-05-01 15:56 -------- d-----w- c:\program files\CCleaner 2010-05-01 15:55 . 2010-05-01 15:55 -------- d-----w- c:\program files\rnsafe 2010-05-01 15:35 . 2010-05-01 15:35 54920 ----a-w- c:\windows\system32\drivers\pxrts.sys 2010-05-01 15:35 . 2010-05-01 15:35 30320 ----a-w- c:\windows\system32\drivers\pxscan.sys 2010-05-01 15:35 . 2010-05-01 15:35 24400 ----a-w- c:\windows\system32\drivers\pxkbf.sys 2010-05-01 13:04 . 2010-05-01 13:04 -------- d-sh--w- c:\documents and settings\Administrateur\PrivacIE 2010-05-01 13:04 . 2010-05-01 13:04 -------- d-sh--w- c:\documents and settings\Administrateur\IECompatCache 2010-05-01 11:01 . 2010-05-01 11:01 -------- d-----w- c:\documents and settings\Administrateur\Application Data\Windows Search 2010-05-01 09:07 . 2010-05-01 18:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2010-05-01 09:07 . 2010-05-01 09:11 -------- d-----w- c:\program files\Spybot - Search & Destroy 2010-05-01 08:49 . 2010-05-01 08:49 0 ----a-w- c:\windows\nsreg.dat 2010-05-01 08:49 . 2010-05-01 08:49 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Local Settings\Application Data\Mozilla 2010-05-01 08:02 . 2010-05-01 08:02 -------- d-----w- c:\program files\iTunesExport.UI-1.4 2010-05-01 07:47 . 2010-05-01 07:47 -------- d-----w- c:\program files\iPod 2010-05-01 07:47 . 2010-05-01 07:47 -------- d-----w- c:\program files\iTunes 2010-05-01 07:43 . 2010-05-01 07:43 -------- d-----w- c:\program files\Bonjour 2010-04-30 17:50 . 2010-04-30 17:50 -------- d-----w- c:\program files\Trend Micro 2010-04-30 17:47 . 2010-04-30 17:47 -------- d-----w- c:\documents and settings\All Users\Application Data\Office Genuine Advantage 2010-04-30 16:39 . 2010-05-13 21:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Serveur Média 2010-04-30 16:39 . 2010-05-13 21:17 -------- d-----w- c:\program files\Serveur Media 2010-04-30 15:56 . 2010-04-30 15:57 -------- d-----w- c:\documents and settings\All Users\Application Data\f-secure 2010-04-30 15:30 . 2009-08-24 10:22 65536 ----a-w- c:\windows\system32\Autodial2000.dll 2010-04-30 15:29 . 2009-08-24 10:22 94208 ----a-w- c:\windows\system32\w32n50.dll 2010-04-30 15:29 . 2009-08-24 10:22 34688 ----a-w- c:\windows\system32\pcampr5.sys 2010-04-30 15:29 . 2010-04-30 15:51 -------- d-----w- c:\program files\Orange 2010-04-30 15:28 . 2010-04-30 17:24 -------- d-----w- c:\program files\Fichiers communs\France Telecom 2010-04-29 21:22 . 2010-05-13 21:18 -------- d-----w- c:\windows\system32\CatRoot2 2010-04-29 21:13 . 2010-05-12 20:51 -------- d-----w- c:\documents and settings\All Users\Application Data\LogiShrd 2010-04-29 21:12 . 2009-02-18 22:26 301656 ----a-w- c:\windows\system32\BtCoreIf.dll 2010-04-29 21:12 . 2010-05-12 20:52 -------- d-----w- c:\program files\Fichiers communs\Logishrd 2010-04-29 07:22 . 2010-04-29 07:22 -------- d-----r- c:\documents and settings\NetworkService\Favoris 2010-04-27 05:40 . 2003-07-16 12:27 43264 ------w- c:\windows\system32\drivers\ser2pl.sys 2010-04-27 05:40 . 2010-04-27 05:40 -------- d-----w- c:\program files\AlerteGPS 2010-04-23 20:12 . 2010-04-23 20:12 -------- d-----w- c:\program files\uTorrent 2010-04-23 20:11 . 2010-04-26 20:46 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\uTorrent 2010-04-21 21:47 . 2010-04-29 07:53 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\HP 2010-04-21 21:14 . 2010-04-21 21:14 -------- d-----w- c:\windows\system32\config\systemprofile\Application Data\Application Updater 2010-04-21 21:13 . 2001-10-28 14:42 116224 ----a-w- c:\windows\system32\pdfcmnnt.dll 2010-04-21 21:13 . 1998-07-12 23:08 119568 ----a-w- c:\windows\system32\VB6FR.DLL 2010-04-21 21:13 . 1998-07-12 23:08 59904 ----a-w- c:\windows\system32\MSCC2FR.DLL 2010-04-21 21:13 . 1998-07-12 23:08 141312 ----a-w- c:\windows\system32\MSCMCFR.DLL 2010-04-21 21:13 . 1998-07-05 22:00 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL 2010-04-21 21:13 . 2010-04-21 21:14 -------- d-----w- c:\program files\PDFCreator 2010-04-20 21:10 . 2010-05-02 10:04 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Adobe 2010-04-20 20:56 . 2010-04-20 20:56 -------- d-----w- c:\documents and settings\Default User\Local Settings\Application Data\Adobe 2010-04-20 20:54 . 2010-04-20 21:05 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS 2010-04-20 07:19 . 2010-04-20 07:19 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple 2010-04-19 10:14 . 2010-04-19 10:14 -------- d-----w- c:\windows\Sun 2010-04-18 01:04 . 2010-04-18 01:04 -------- d-----w- c:\windows\system32\XPSViewer 2010-04-18 01:04 . 2010-04-18 01:04 -------- d-----w- c:\program files\MSBuild 2010-04-18 01:04 . 2010-04-18 01:04 -------- d-----w- c:\program files\Reference Assemblies 2010-04-18 01:03 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll 2010-04-18 01:03 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2010-04-18 01:03 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2010-04-18 01:03 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll 2010-04-18 01:03 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2010-04-18 01:03 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll 2010-04-18 01:03 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll 2010-04-18 01:03 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2010-04-18 01:03 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe 2010-04-16 23:10 . 2010-05-13 12:23 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\dvdcss 2010-04-16 23:10 . 2010-05-13 12:24 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\vlc 2010-04-16 23:09 . 2010-04-16 23:09 -------- d-----w- c:\program files\VideoLAN 2010-04-16 22:50 . 2010-04-16 22:50 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2 2010-04-16 22:41 . 2010-05-08 07:34 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX 2010-04-15 21:00 . 2010-04-15 21:01 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Nero 2010-04-15 20:47 . 2010-04-15 20:47 -------- d-----r- c:\documents and settings\LocalService\Favoris 2010-04-15 20:35 . 2010-04-15 20:38 -------- d-----w- c:\program files\Nero 2010-04-15 20:35 . 2010-04-15 20:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Nero 2010-04-15 20:35 . 2010-04-15 20:39 -------- d-----w- c:\program files\Fichiers communs\Nero 2010-04-15 20:11 . 2010-04-15 20:12 -------- d-----w- c:\program files\jv16 PowerTools 2009 2010-04-15 19:53 . 2010-04-15 19:53 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Megaupload 2010-04-15 19:52 . 2010-04-15 19:52 -------- d-----w- c:\program files\Megaupload 2010-04-15 18:55 . 2010-02-25 10:42 30536 ----a-w- c:\windows\system32\TURegOpt.exe 2010-04-15 18:55 . 2010-02-25 10:34 30024 ----a-w- c:\windows\system32\uxtuneup.dll 2010-04-15 18:55 . 2010-04-15 18:55 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\TuneUp Software 2010-04-15 18:55 . 2010-05-13 09:13 -------- d-----w- c:\program files\TuneUp Utilities 2010 2010-04-15 18:55 . 2010-04-15 18:55 -------- d-----w- c:\documents and settings\All Users\Application Data\TuneUp Software 2010-04-15 18:55 . 2010-04-15 18:55 -------- d-sh--w- c:\documents and settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} 2010-04-15 18:45 . 2010-04-15 18:45 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Local Settings\Application Data\TomTom 2010-04-15 18:45 . 2010-04-15 18:45 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\TomTom 2010-04-15 18:44 . 2010-04-15 18:44 -------- d-----w- c:\program files\TomTom International B.V 2010-04-15 18:43 . 2010-04-15 18:43 -------- d-----w- c:\program files\TomTom HOME 2 2010-04-15 18:27 . 2010-05-13 16:29 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Tracing 2010-04-15 18:26 . 2010-04-15 18:26 -------- d-----w- c:\program files\Microsoft 2010-04-15 18:26 . 2010-04-15 18:26 -------- d-----w- c:\program files\Windows Live SkyDrive 2010-04-15 18:26 . 2010-05-01 18:15 -------- d-----w- c:\program files\Windows Live 2010-04-15 18:24 . 2010-04-15 18:24 -------- d-----w- c:\program files\Fichiers communs\Windows Live 2010-04-15 18:07 . 2010-05-01 07:43 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Apple Computer 2010-04-15 18:07 . 2009-05-18 11:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys 2010-04-15 18:07 . 2008-04-17 10:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll 2010-04-15 18:06 . 2010-04-15 18:07 -------- d-----w- c:\documents and settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521} 2010-04-15 18:05 . 2010-04-15 18:06 -------- d-----w- c:\program files\QuickTime 2010-04-15 18:05 . 2010-04-15 18:06 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer 2010-04-15 18:05 . 2010-04-15 18:05 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Local Settings\Application Data\Apple 2010-04-15 18:05 . 2010-04-15 18:05 -------- d-----w- c:\program files\Apple Software Update 2010-04-15 18:04 . 2010-05-01 07:47 -------- d-----w- c:\program files\Fichiers communs\Apple 2010-04-15 18:04 . 2010-04-15 18:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple 2010-04-15 18:04 . 2010-04-15 18:07 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Local Settings\Application Data\Apple Computer 2010-04-15 18:03 . 2010-04-15 18:03 -------- d-----w- c:\program files\Western Digital Corporation 2010-04-14 22:58 . 2010-04-14 22:58 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache 2010-04-14 22:45 . 2010-04-14 22:45 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Panasonic 2010-04-14 22:39 . 2010-04-14 22:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Spamihilator 2010-04-14 22:39 . 2010-05-13 21:04 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Spamihilator 2010-04-14 22:38 . 2010-04-14 22:39 -------- d-----w- c:\program files\Spamihilator 2010-04-14 22:25 . 2010-04-15 18:03 -------- d-----w- c:\program files\Quittance Express 2 2010-04-14 22:01 . 2010-04-14 22:01 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Avira 2010-04-14 21:51 . 2010-04-14 21:51 -------- d-----w- c:\windows\system32\LogFiles 2010-04-14 21:50 . 2010-04-14 21:44 96104 ----a-w- c:\windows\system32\drivers\avipbb.sys 2010-04-14 21:50 . 2010-04-14 21:44 97608 ----a-w- c:\windows\system32\drivers\avfwot.sys 2010-04-14 21:50 . 2010-04-14 21:44 69632 ----a-w- c:\windows\system32\drivers\avfwim.sys . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2010-05-13 16:31 . 2010-04-30 16:39 2347 ----a-w- c:\documents and settings\All Users\Application Data\Serveur Média\db\auto_update\install\auto_update.bat 2010-05-13 08:55 . 2010-04-14 18:26 -------- d-----w- c:\program files\Logitech 2010-05-08 07:50 . 2010-05-08 07:34 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\DivX 2010-05-08 07:33 . 2010-05-08 07:33 54073 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Qt4.5\Uninstaller.exe 2010-05-08 07:33 . 2010-05-08 07:33 56969 ----a-w- c:\documents and settings\All Users\Application Data\DivX\ASPEncoder\Uninstaller.exe 2010-05-08 07:33 . 2010-05-08 07:34 754984 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\Resource.dll 2010-05-08 07:33 . 2010-05-08 07:33 144696 ----a-w- c:\documents and settings\All Users\Application Data\DivX\RunAsUser\RUNASUSERPROCESS.exe 2010-05-02 16:30 . 2010-04-14 18:07 71168 ----a-w- c:\documents and settings\QUESNEL Bruno\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2010-05-02 13:21 . 2008-11-24 11:37 1315936 ----a-w- c:\windows\system32\drivers\3xHybrid.sys 2010-05-02 13:21 . 2010-04-14 18:09 9824 ----a-w- c:\windows\system32\34CoInstaller.dll 2010-05-02 13:21 . 2008-11-24 11:37 105056 ----a-w- c:\windows\system32\NXPMV32.dll 2010-05-01 07:41 . 2010-05-01 07:41 73000 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.1.1.12\SetupAdmin.exe 2010-04-29 21:12 . 2010-04-14 18:26 -------- d-----w- c:\program files\Fichiers communs\Logitech 2010-04-29 21:12 . 2010-04-14 18:15 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-04-29 21:12 . 2010-04-29 21:12 10134 ----a-r- c:\documents and settings\QUESNEL Bruno\Application Data\Microsoft\Installer\{3101CB58-3482-4D21-AF1A-7057FC935355}\ARPPRODUCTICON.exe 2010-04-27 22:51 . 2010-05-08 07:34 1180952 ----a-w- c:\documents and settings\All Users\Application Data\DivX\Setup\DivXSetup.exe 2010-04-18 20:46 . 2004-08-05 12:00 94490 ----a-w- c:\windows\system32\perfc00C.dat 2010-04-18 20:46 . 2004-08-05 12:00 535914 ----a-w- c:\windows\system32\perfh00C.dat 2010-04-14 19:50 . 2010-04-14 17:31 76507 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-04-14 19:29 . 2010-04-14 19:29 -------- d-----w- c:\program files\MSXML 4.0 2010-04-14 19:05 . 2010-04-14 19:05 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\Logitech 2010-04-14 19:03 . 2010-04-14 19:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Logitech 2010-04-14 18:53 . 2010-04-14 18:53 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\CyberLink 2010-04-14 18:52 . 2010-04-14 18:52 -------- d-----w- c:\documents and settings\All Users\Application Data\CyberLink 2010-04-14 18:51 . 2010-04-14 18:50 -------- d-----w- c:\program files\CyberLink 2010-04-14 18:48 . 2010-04-14 18:47 -------- d-----w- c:\program files\Canon 2010-04-14 18:45 . 2010-04-14 18:14 -------- d-----w- c:\program files\Fichiers communs\InstallShield 2010-04-14 18:43 . 2010-04-14 18:43 136 ----a-w- c:\documents and settings\QUESNEL Bruno\Local Settings\Application Data\fusioncache.dat 2010-04-14 18:41 . 2010-04-14 18:30 110025 ----a-w- c:\windows\hpoins08.dat 2010-04-14 18:39 . 2010-04-14 18:39 -------- d-----w- c:\documents and settings\All Users\Application Data\HP 2010-04-14 18:38 . 2010-04-14 18:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Sonic 2010-04-14 18:36 . 2010-04-14 18:36 -------- d-----w- c:\program files\Hewlett-Packard 2010-04-14 18:36 . 2010-04-14 18:31 -------- d-----w- c:\program files\HP 2010-04-14 18:35 . 2010-04-14 18:35 -------- d-----w- c:\program files\Fichiers communs\Hewlett-Packard 2010-04-14 18:26 . 2010-04-14 18:26 118784 ------r- c:\windows\bwUnin-7.2.0.137-8876480SL.exe 2010-04-14 18:22 . 2010-04-14 18:22 -------- d-----w- c:\program files\Panasonic 2010-04-14 18:22 . 2010-04-14 18:22 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\InstallShield 2010-04-14 18:20 . 2010-04-14 18:20 -------- d-----w- c:\documents and settings\QUESNEL Bruno\Application Data\ATI 2010-04-14 18:20 . 2010-04-14 18:20 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI 2010-04-14 18:20 . 2010-04-14 18:20 0 ----a-w- c:\windows\ativpsrm.bin 2010-04-14 18:19 . 2010-04-14 18:16 -------- d-----w- c:\program files\Fichiers communs\ATI Technologies 2010-04-14 18:19 . 2010-04-14 18:15 -------- d-----w- c:\program files\ATI Technologies 2010-04-14 18:16 . 2010-04-14 18:16 9158 ----a-r- c:\documents and settings\QUESNEL Bruno\Application Data\Microsoft\Installer\{89DE67AD-08B8-4699-A55D-CA5C0AF82BF3}\ARPPRODUCTICON.exe 2010-04-14 17:33 . 2010-04-14 17:33 -------- d-----w- c:\program files\microsoft frontpage 2010-04-14 17:33 . 2010-04-14 17:33 -------- d-----w- c:\program files\Java 2010-04-14 17:33 . 2010-04-14 17:33 -------- d-----w- c:\program files\Fichiers communs\Java 2010-04-14 17:31 . 2010-04-14 17:31 -------- d-----w- c:\program files\Services en ligne 2010-04-14 17:29 . 2010-04-14 17:29 21892 ----a-w- c:\windows\system32\emptyregdb.dat 2010-04-08 11:20 . 2010-04-08 11:20 91424 ----a-w- c:\windows\system32\dnssd.dll 2010-04-08 11:20 . 2010-04-08 11:20 107808 ----a-w- c:\windows\system32\dns-sd.exe 2010-03-31 01:58 . 2010-05-08 07:34 9200 ------w- c:\windows\system32\drivers\cdralw2k.sys 2010-03-31 01:58 . 2010-05-08 07:34 9072 ------w- c:\windows\system32\drivers\cdr4_xp.sys 2010-03-31 01:58 . 2010-05-08 07:34 44944 ------w- c:\windows\system32\drivers\PxHelp20.sys 2010-03-31 01:58 . 2010-05-08 07:34 133616 ------w- c:\windows\system32\pxafs.dll 2010-03-31 01:58 . 2010-05-08 07:34 125424 ------w- c:\windows\system32\pxinsi64.exe 2010-03-31 01:58 . 2010-05-08 07:34 123888 ------w- c:\windows\system32\pxcpyi64.exe 2010-03-10 06:16 . 2004-08-05 12:00 420352 ----a-w- c:\windows\system32\vbscript.dll 2010-03-08 17:59 . 2010-03-08 17:59 94208 ----a-w- c:\windows\system32\dpl100.dll 2010-02-25 06:17 . 2004-09-29 18:49 916480 ----a-w- c:\windows\system32\wininet.dll 2010-02-24 13:11 . 2004-10-28 01:14 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2010-02-19 19:27 . 2010-02-19 19:27 720384 ----a-w- c:\windows\system32\DivX.dll 2010-02-19 19:27 . 2010-02-19 19:27 856064 ----a-w- c:\windows\system32\divx_xx0c.dll 2010-02-19 19:27 . 2010-02-19 19:27 856064 ----a-w- c:\windows\system32\divx_xx07.dll 2010-02-19 19:27 . 2010-02-19 19:27 847872 ----a-w- c:\windows\system32\divx_xx0a.dll 2010-02-19 19:27 . 2010-02-19 19:27 843776 ----a-w- c:\windows\system32\divx_xx16.dll 2010-02-19 19:27 . 2010-02-19 19:27 839680 ----a-w- c:\windows\system32\divx_xx11.dll 2010-02-16 19:06 . 2004-08-05 12:00 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe 2010-02-16 19:06 . 2004-08-04 00:49 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] 2009-11-03 19:12 556432 ----a-w- c:\progra~1\MICROS~2\Office14\URLREDIR.DLL [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" [2005-10-24 90112] "LVCOMSX"="c:\windows\system32\LVCOMSX.EXE" [2005-12-09 225280] "RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2005-04-15 45056] "MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2009-05-01 185640] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-04-14 209153] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-12-18 76304] "Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-12-18 76304] "LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-10-14 2793304] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-17 421888] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] c:\documents and settings\QUESNEL Bruno\Menu D‚marrer\Programmes\D‚marrage\ Spamihilator.lnk - c:\program files\Spamihilator\spamihilator.exe [2010-4-15 1512448] c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Agent Serveur M‚dia.lnk - c:\program files\Serveur Media\twonkymediaserverconfig.exe [2010-2-19 235152] APC UPS Status.lnk - c:\program files\APC\APC PowerChute Personal Edition\Display.exe [2010-4-14 221247] Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-4-29 809488] PHOTOfunSTUDIO -viewer-.lnk - c:\program files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe [2010-4-14 40960] [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2009-02-18 22:30 72208 ----a-w- c:\program files\Fichiers communs\Logitech\Bluetooth\LBTWLgn.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "CTFMON.EXE"=c:\windows\system32\ctfmon.exe "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" "MSMSGS"="c:\program files\Messenger\Msmsgs.exe" /background [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun "PCMService"="c:\program files\CyberLink\PowerCinema\PCMService.exe" "QuickTime Task"="c:\program files\QuickTime\qttask.exe" -atboottime "SunJavaUpdateSched"=c:\program files\Java\jre1.5.0\bin\jusched.exe "HP Software Update"=c:\program files\HP\HP Software Update\HPWuSchd2.exe "Adobe ARM"="c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe" "ORAHSSSessionManager"="c:\program files\Orange\Connexion Internet Orange\SessionManager\SessionManager.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"= "c:\\Program Files\\CyberLink\\PowerCinema\\PowerCinema.exe"= "c:\\Program Files\\CyberLink\\PowerCinema\\PCMService.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "c:\\Program Files\\Spamihilator\\spamihilator.exe"= "c:\\Program Files\\Spamihilator\\cdcc.exe"= "c:\\Program Files\\Spamihilator\\dccproc.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Messenger\\Msmsgs.exe"= "c:\\Program Files\\Serveur Media\\twonkymediaserverwatchdog.exe"= "c:\\Program Files\\Serveur Media\\twonkymediaserver.exe"= "c:\\Program Files\\Serveur Media\\bgtrans.exe"= "c:\\Program Files\\Orange\\Connexion Internet Orange\\Connectivity\\ConnectivityManager.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= R2 AntiVirMailService;Avira AntiVir MailGuard;c:\program files\Avira\AntiVir Desktop\avmailc.exe [14/04/2010 23:50 194817] R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [14/04/2010 23:50 108289] R2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\Avira\AntiVir Desktop\avwebgrd.exe [14/04/2010 23:50 434945] R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [01/05/2009 14:35 181544] R2 Serveur Média;Serveur Média;c:\program files\Serveur Media\twonkymediaserverwatchdog.exe -serviceversion 0 --> c:\program files\Serveur Media\twonkymediaserverwatchdog.exe -serviceversion 0 [?] R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [13/11/2009 13:31 92008] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [25/02/2010 12:38 1047880] R3 3xHybrid;CTX SAA713x PCI Card;c:\windows\system32\drivers\3xHybrid.sys [24/11/2008 13:37 1315936] R3 SIS163u;SiS163 usb Wireless LAN Adapter Driver;c:\windows\system32\drivers\sis163u.sys [14/04/2010 20:09 215040] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14/10/2009 07:24 10064] S1 aihgedwt;aihgedwt;\??\c:\windows\system32\drivers\aihgedwt.sys --> c:\windows\system32\drivers\aihgedwt.sys [?] S1 MpKsle7929dbf;MpKsle7929dbf;\??\c:\windows\system32\MpEngineStore\MpKsle7929dbf.sys --> c:\windows\system32\MpEngineStore\MpKsle7929dbf.sys [?] S3 osppsvc;Office Software Protection Platform;c:\program files\Fichiers communs\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [26/09/2009 04:28 4639136] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contenu du dossier 'Tâches planifiées' 2010-05-11 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50] 2010-05-13 c:\windows\Tasks\User_Feed_Synchronization-{BB427F4F-FF2D-4F7B-B290-BFDD178CB118}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 02:31] . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.com/ig?hl=fr IE: &Envoyer à OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: Convertir les liens sélectionnés en fichier Adobe PDF - c:\program files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Liens de téléchargement avec Mega Manager... - c:\program files\Megaupload\Mega Manager\mm_file.htm LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll Trusted Zone: microsoft.com\update Trusted Zone: microsoft.com\windowsupdate Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\Fichiers communs\Microsoft Shared\OFFICE14\MSOXMLMF.DLL DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} - hxxp://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-05-13 23:18 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'winlogon.exe'(392) c:\windows\system32\Ati2evxx.dll c:\program files\fichiers communs\logitech\bluetooth\LBTWlgn.dll c:\program files\fichiers communs\logitech\bluetooth\LBTServ.dll - - - - - - - > 'lsass.exe'(624) c:\program files\Avira\AntiVir Desktop\avsda.dll - - - - - - - > 'explorer.exe'(2052) c:\program files\Logitech\SetPoint\lgscroll.dll c:\program files\Windows Desktop Search\deskbar.dll c:\program files\Windows Desktop Search\fr-fr\dbres.dll.mui c:\program files\Windows Desktop Search\dbres.dll c:\program files\Windows Desktop Search\wordwheel.dll c:\program files\Windows Desktop Search\fr-fr\msnlExtRes.dll.mui c:\program files\Windows Desktop Search\msnlExtRes.dll c:\windows\system32\eappprxy.dll c:\windows\system32\webcheck.dll . ------------------------ Autres processus actifs ------------------------ . c:\windows\system32\Ati2evxx.exe c:\windows\system32\Ati2evxx.exe c:\program files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe c:\program files\Avira\AntiVir Desktop\avguard.exe c:\program files\APC\APC PowerChute Personal Edition\mainserv.exe c:\program files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe c:\program files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe c:\progra~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe c:\program files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe c:\program files\Seagate\SeagateManager\Sync\MaxSync.exe c:\windows\system32\HPZipm12.exe c:\program files\Serveur Media\twonkymediaserverwatchdog.exe c:\program files\Serveur Media\TwonkyMediaServer.exe c:\program files\Serveur Media\bgtrans.exe c:\windows\system32\wdfmgr.exe c:\windows\system32\SearchIndexer.exe c:\program files\Serveur Media\rmm.exe c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe c:\windows\SOUNDMAN.EXE c:\program files\APC\APC PowerChute Personal Edition\apcsystray.exe c:\program files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe c:\program files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE . ************************************************************************** . Heure de fin: 2010-05-13 23:23:10 - La machine a redémarré ComboFix-quarantined-files.txt 2010-05-13 21:23 Avant-CF: 79 304 679 424 octets libres Après-CF: 79 399 432 192 octets libres WindowsXP-KB310994-SP2-Home-BootDisk-FRA.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP dition familiale" /noexecute=optin /fastdetect /usepmtimer - - End Of File - - 014E26D2ED1E87F4863BF8329E2CC96E
- le 13 mai 2010
- 36 réponses

Connexion

Fullzx14r

Compteur de contenus

Inscription

Dernière visite

Jours gagnés

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par Fullzx14r

[résolu] Suspicion virale sur PC en W7 32bits

[résolu] Suspicion virale sur PC en W7 32bits

[résolu] Suspicion virale sur PC en W7 32bits

[résolu] Suspicion virale sur PC en W7 32bits

[résolu] Suspicion virale sur PC en W7 32bits

[résolu] Suspicion virale sur PC en W7 32bits

PC réinstallé mais lent sous IE [2]

On m'a oublié !

* Sujet bloqué * - PC réinstallé mais lent sous IE

[Résolu] Disque dur cassé

* Sujet bloqué * - PC réinstallé mais lent sous IE

[Résolu] Disque dur cassé

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

[Résolu] Log HijackThis bizarre

Infection BDC/Momibot.89088.B

Infection BDC/Momibot.89088.B

Zebulon

Outils en ligne

Naviguer