[Résolu] TR/Atraps.Gen2

[nath09]

Je n'ai pas de point antérieur au problème et quand je Tape%systemroot%\system32\restore\rstrui.exe il m'écrit le chemin d'accès est introuvable

[pear]

Commencez au point 2.pour tenter une restauration à une date antérieure au problème.

 

Cela suppose que vous ayez fait des points de restauration auparavant, comme c'est conseillé.

 

Si ça coince , et que la condition précédente est remplie, vous le ferez en Invite de commande.

 

Attention:

Choisissez votre compte usuel, pas le compte Administrateur ou autre.

 

Si , par contre , vous avez négligé de créer des points de restauration(que Windows fait automatiquement si vous n'avez pas désactivé cette fonction), passez à Tdss Killer.

[nath09]

Je n'en ai qu'un c'est celui de combofix hier

 

donc je passe à la suite

[nath09]

18:55:52.0672 0892 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16

18:55:52.0873 0892 ============================================================

18:55:52.0873 0892 Current date / time: 2012/06/07 18:55:52.0873

18:55:52.0873 0892 SystemInfo:

18:55:52.0873 0892

18:55:52.0873 0892 OS Version: 6.1.7601 ServicePack: 1.0

18:55:52.0873 0892 Product type: Workstation

18:55:52.0873 0892 ComputerName: NATHALIE-VAIO

18:55:52.0874 0892 UserName: Nathalie

18:55:52.0874 0892 Windows directory: C:\Windows

18:55:52.0874 0892 System windows directory: C:\Windows

18:55:52.0874 0892 Running under WOW64

18:55:52.0874 0892 Processor architecture: Intel x64

18:55:52.0874 0892 Number of processors: 2

18:55:52.0874 0892 Page size: 0x1000

18:55:52.0874 0892 Boot type: Safe boot with network

18:55:52.0874 0892 ============================================================

18:55:53.0623 0892 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

18:55:53.0628 0892 ============================================================

18:55:53.0628 0892 \Device\Harddisk0\DR0:

18:55:53.0628 0892 MBR partitions:

18:55:53.0628 0892 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x12BE800, BlocksNum 0x32000

18:55:53.0628 0892 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x12F0800, BlocksNum 0x2413DAB0

18:55:53.0628 0892 ============================================================

18:55:53.0646 0892 C: <-> \Device\Harddisk0\DR0\Partition1

18:55:53.0646 0892 ============================================================

18:55:53.0646 0892 Initialize success

18:55:53.0646 0892 ============================================================

18:55:55.0093 1428 ============================================================

18:55:55.0093 1428 Scan started

18:55:55.0093 1428 Mode: Manual;

18:55:55.0093 1428 ============================================================

18:55:55.0898 1428 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys

18:55:55.0900 1428 1394ohci - ok

18:55:56.0033 1428 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

18:55:56.0036 1428 ACDaemon - ok

18:55:56.0140 1428 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys

18:55:56.0145 1428 ACPI - ok

18:55:56.0190 1428 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys

18:55:56.0191 1428 AcpiPmi - ok

18:55:56.0250 1428 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

18:55:56.0285 1428 adp94xx - ok

18:55:56.0334 1428 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

18:55:56.0340 1428 adpahci - ok

18:55:56.0384 1428 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

18:55:56.0403 1428 adpu320 - ok

18:55:56.0464 1428 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll

18:55:56.0466 1428 AeLookupSvc - ok

18:55:56.0573 1428 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys

18:55:56.0597 1428 AFD - ok

18:55:56.0634 1428 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys

18:55:56.0635 1428 agp440 - ok

18:55:56.0658 1428 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe

18:55:56.0660 1428 ALG - ok

18:55:56.0677 1428 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys

18:55:56.0678 1428 aliide - ok

18:55:56.0717 1428 AMD External Events Utility (322a2c5d390109a4e50679ab58dea870) C:\Windows\system32\atiesrxx.exe

18:55:56.0719 1428 AMD External Events Utility - ok

18:55:56.0754 1428 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys

18:55:56.0755 1428 amdide - ok

18:55:56.0791 1428 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

18:55:56.0793 1428 AmdK8 - ok

18:55:56.0806 1428 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

18:55:56.0808 1428 AmdPPM - ok

18:55:56.0871 1428 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys

18:55:56.0873 1428 amdsata - ok

18:55:56.0920 1428 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

18:55:56.0935 1428 amdsbs - ok

18:55:56.0968 1428 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys

18:55:56.0969 1428 amdxata - ok

18:55:57.0062 1428 AntiVirSchedulerService (a5bcbaf0477c4869b67e0195aea4a9cd) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

18:55:57.0064 1428 AntiVirSchedulerService - ok

18:55:57.0090 1428 AntiVirService (3cce4afa4aacdb28e01a148394212186) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

18:55:57.0093 1428 AntiVirService - ok

18:55:57.0160 1428 ApfiltrService (56bd886820c4aedf493cfcdf1ccfb004) C:\Windows\system32\DRIVERS\Apfiltr.sys

18:55:57.0162 1428 ApfiltrService - ok

18:55:57.0223 1428 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys

18:55:57.0225 1428 AppID - ok

18:55:57.0249 1428 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll

18:55:57.0250 1428 AppIDSvc - ok

18:55:57.0291 1428 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll

18:55:57.0293 1428 Appinfo - ok

18:55:57.0421 1428 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

18:55:57.0423 1428 Apple Mobile Device - ok

18:55:57.0478 1428 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

18:55:57.0480 1428 arc - ok

18:55:57.0502 1428 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

18:55:57.0504 1428 arcsas - ok

18:55:57.0535 1428 ArcSoftKsUFilter (c130bc4a51b1382b2be8e44579ec4c0a) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys

18:55:57.0535 1428 ArcSoftKsUFilter - ok

18:55:57.0559 1428 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

18:55:57.0560 1428 AsyncMac - ok

18:55:57.0603 1428 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys

18:55:57.0604 1428 atapi - ok

18:55:57.0703 1428 athr (5d4529ac4156e16bedb01441ae0cf984) C:\Windows\system32\DRIVERS\athrx.sys

18:55:57.0745 1428 athr - ok

18:55:58.0217 1428 atikmdag (de0ede41bc530f1759c6fffcb8c7a0cf) C:\Windows\system32\DRIVERS\atikmdag.sys

18:55:58.0348 1428 atikmdag - ok

18:55:58.0497 1428 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

18:55:58.0511 1428 AudioEndpointBuilder - ok

18:55:58.0519 1428 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll

18:55:58.0523 1428 AudioSrv - ok

18:55:58.0596 1428 avgntflt (b1224e6b086cd6548315b04ab575a23e) C:\Windows\system32\DRIVERS\avgntflt.sys

18:55:58.0597 1428 avgntflt - ok

18:55:58.0625 1428 avipbb (ed45f12cfa62b83765c9c1496758cc87) C:\Windows\system32\DRIVERS\avipbb.sys

18:55:58.0626 1428 avipbb - ok

18:55:58.0666 1428 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll

18:55:58.0668 1428 AxInstSV - ok

18:55:58.0711 1428 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

18:55:58.0735 1428 b06bdrv - ok

18:55:58.0765 1428 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

18:55:58.0775 1428 b57nd60a - ok

18:55:58.0822 1428 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll

18:55:58.0825 1428 BDESVC - ok

18:55:58.0853 1428 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

18:55:58.0853 1428 Beep - ok

18:55:58.0942 1428 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll

18:55:58.0957 1428 BFE - ok

18:55:59.0046 1428 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll

18:55:59.0062 1428 BITS - ok

18:55:59.0131 1428 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

18:55:59.0132 1428 blbdrive - ok

18:55:59.0249 1428 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe

18:55:59.0253 1428 Bonjour Service - ok

18:55:59.0333 1428 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys

18:55:59.0334 1428 bowser - ok

18:55:59.0352 1428 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

18:55:59.0353 1428 BrFiltLo - ok

18:55:59.0357 1428 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

18:55:59.0358 1428 BrFiltUp - ok

18:55:59.0392 1428 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys

18:55:59.0393 1428 BridgeMP - ok

18:55:59.0436 1428 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll

18:55:59.0437 1428 Browser - ok

18:55:59.0462 1428 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

18:55:59.0496 1428 Brserid - ok

18:55:59.0527 1428 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

18:55:59.0528 1428 BrSerWdm - ok

18:55:59.0543 1428 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

18:55:59.0544 1428 BrUsbMdm - ok

18:55:59.0555 1428 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

18:55:59.0556 1428 BrUsbSer - ok

18:55:59.0606 1428 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys

18:55:59.0607 1428 BthEnum - ok

18:55:59.0624 1428 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

18:55:59.0626 1428 BTHMODEM - ok

18:55:59.0662 1428 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys

18:55:59.0664 1428 BthPan - ok

18:55:59.0723 1428 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys

18:55:59.0758 1428 BTHPORT - ok

18:55:59.0797 1428 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll

18:55:59.0799 1428 bthserv - ok

18:55:59.0819 1428 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys

18:55:59.0821 1428 BTHUSB - ok

18:55:59.0866 1428 btwaudio (6bcfdc2b5b7f66d484486d4bd4b39a6b) C:\Windows\system32\drivers\btwaudio.sys

18:55:59.0868 1428 btwaudio - ok

18:55:59.0898 1428 btwavdt (82dc8b7c626e526681c1bebed2bc3ff9) C:\Windows\system32\DRIVERS\btwavdt.sys

18:55:59.0901 1428 btwavdt - ok

18:56:00.0004 1428 btwdins (d65aa164acd0f6706dbcfbbcc9731584) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

18:56:00.0012 1428 btwdins - ok

18:56:00.0050 1428 btwl2cap (6149301dc3f81d6f9667a3fbac410975) C:\Windows\system32\DRIVERS\btwl2cap.sys

18:56:00.0051 1428 btwl2cap - ok

18:56:00.0069 1428 btwrchid (28e105ad3b79f440bf94780f507bf66a) C:\Windows\system32\DRIVERS\btwrchid.sys

18:56:00.0071 1428 btwrchid - ok

18:56:00.0073 1428 catchme - ok

18:56:00.0111 1428 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

18:56:00.0113 1428 cdfs - ok

18:56:00.0161 1428 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys

18:56:00.0163 1428 cdrom - ok

18:56:00.0199 1428 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

18:56:00.0200 1428 CertPropSvc - ok

18:56:00.0216 1428 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

18:56:00.0218 1428 circlass - ok

18:56:00.0264 1428 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

18:56:00.0271 1428 CLFS - ok

18:56:00.0322 1428 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

18:56:00.0324 1428 clr_optimization_v2.0.50727_32 - ok

18:56:00.0380 1428 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

18:56:00.0383 1428 clr_optimization_v2.0.50727_64 - ok

18:56:00.0473 1428 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

18:56:00.0516 1428 clr_optimization_v4.0.30319_32 - ok

18:56:00.0557 1428 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

18:56:00.0573 1428 clr_optimization_v4.0.30319_64 - ok

18:56:00.0580 1428 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

18:56:00.0580 1428 CmBatt - ok

18:56:00.0611 1428 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys

18:56:00.0612 1428 cmdide - ok

18:56:00.0666 1428 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys

18:56:00.0681 1428 CNG - ok

18:56:00.0721 1428 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

18:56:00.0722 1428 Compbatt - ok

18:56:00.0761 1428 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys

18:56:00.0762 1428 CompositeBus - ok

18:56:00.0765 1428 COMSysApp - ok

18:56:00.0787 1428 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

18:56:00.0788 1428 crcdisk - ok

18:56:00.0843 1428 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll

18:56:00.0859 1428 CryptSvc - ok

18:56:00.0933 1428 CrystalSysInfo - ok

18:56:00.0998 1428 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

18:56:01.0007 1428 DcomLaunch - ok

18:56:01.0064 1428 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll

18:56:01.0107 1428 defragsvc - ok

18:56:01.0172 1428 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys

18:56:01.0173 1428 DfsC - ok

18:56:01.0231 1428 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll

18:56:01.0240 1428 Dhcp - ok

18:56:01.0269 1428 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

18:56:01.0270 1428 discache - ok

18:56:01.0284 1428 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

18:56:01.0286 1428 Disk - ok

18:56:01.0335 1428 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll

18:56:01.0349 1428 Dnscache - ok

18:56:01.0404 1428 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll

18:56:01.0427 1428 dot3svc - ok

18:56:01.0482 1428 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll

18:56:01.0485 1428 DPS - ok

18:56:01.0547 1428 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

18:56:01.0549 1428 drmkaud - ok

18:56:01.0611 1428 dtsoftbus01 (46571ed73ae84469dca53081d33cf3c8) C:\Windows\system32\DRIVERS\dtsoftbus01.sys

18:56:01.0614 1428 dtsoftbus01 - ok

18:56:01.0720 1428 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys

18:56:01.0729 1428 DXGKrnl - ok

18:56:01.0781 1428 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll

18:56:01.0782 1428 EapHost - ok

18:56:01.0967 1428 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

18:56:02.0029 1428 ebdrv - ok

18:56:02.0158 1428 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe

18:56:02.0160 1428 EFS - ok

18:56:02.0246 1428 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe

18:56:02.0260 1428 ehRecvr - ok

18:56:02.0302 1428 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe

18:56:02.0305 1428 ehSched - ok

18:56:02.0383 1428 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

18:56:02.0406 1428 elxstor - ok

18:56:02.0448 1428 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys

18:56:02.0449 1428 ErrDev - ok

18:56:02.0514 1428 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll

18:56:02.0531 1428 EventSystem - ok

18:56:02.0558 1428 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

18:56:02.0563 1428 exfat - ok

18:56:02.0611 1428 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

18:56:02.0625 1428 fastfat - ok

18:56:02.0696 1428 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe

18:56:02.0710 1428 Fax - ok

18:56:02.0734 1428 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

18:56:02.0735 1428 fdc - ok

18:56:02.0754 1428 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll

18:56:02.0755 1428 fdPHost - ok

18:56:02.0773 1428 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll

18:56:02.0774 1428 FDResPub - ok

18:56:02.0805 1428 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

18:56:02.0807 1428 FileInfo - ok

18:56:02.0831 1428 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

18:56:02.0832 1428 Filetrace - ok

18:56:02.0847 1428 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

18:56:02.0848 1428 flpydisk - ok

18:56:02.0896 1428 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys

18:56:02.0917 1428 FltMgr - ok

18:56:03.0030 1428 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll

18:56:03.0053 1428 FontCache - ok

18:56:03.0164 1428 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

18:56:03.0166 1428 FontCache3.0.0.0 - ok

18:56:03.0214 1428 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

18:56:03.0215 1428 FsDepends - ok

18:56:03.0255 1428 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys

18:56:03.0256 1428 Fs_Rec - ok

18:56:03.0305 1428 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys

18:56:03.0318 1428 fvevol - ok

18:56:03.0361 1428 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

18:56:03.0363 1428 gagp30kx - ok

18:56:03.0418 1428 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

18:56:03.0419 1428 GEARAspiWDM - ok

18:56:03.0504 1428 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll

18:56:03.0525 1428 gpsvc - ok

18:56:03.0571 1428 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

18:56:03.0573 1428 hcw85cir - ok

18:56:03.0639 1428 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys

18:56:03.0680 1428 HdAudAddService - ok

18:56:03.0708 1428 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys

18:56:03.0709 1428 HDAudBus - ok

18:56:03.0726 1428 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

18:56:03.0728 1428 HidBatt - ok

18:56:03.0756 1428 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

18:56:03.0758 1428 HidBth - ok

18:56:03.0770 1428 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

18:56:03.0771 1428 HidIr - ok

18:56:03.0804 1428 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll

18:56:03.0805 1428 hidserv - ok

18:56:03.0813 1428 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys

18:56:03.0813 1428 HidUsb - ok

18:56:03.0856 1428 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll

18:56:03.0859 1428 hkmsvc - ok

18:56:03.0926 1428 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll

18:56:03.0939 1428 HomeGroupListener - ok

18:56:03.0979 1428 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll

18:56:03.0993 1428 HomeGroupProvider - ok

18:56:04.0012 1428 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys

18:56:04.0014 1428 HpSAMD - ok

18:56:04.0086 1428 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys

18:56:04.0092 1428 HTTP - ok

18:56:04.0119 1428 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys

18:56:04.0120 1428 hwpolicy - ok

18:56:04.0167 1428 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys

18:56:04.0168 1428 i8042prt - ok

18:56:04.0237 1428 IAANTMON (7548066df68a8a1a56b043359f915f37) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

18:56:04.0241 1428 IAANTMON - ok

18:56:04.0288 1428 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys

18:56:04.0291 1428 iaStor - ok

18:56:04.0351 1428 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys

18:56:04.0365 1428 iaStorV - ok

18:56:04.0430 1428 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

18:56:04.0432 1428 IDriverT - ok

18:56:04.0548 1428 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

18:56:04.0565 1428 idsvc - ok

18:56:04.0974 1428 igfx (dfeaf0a1d98d397035012c8e28d1520f) C:\Windows\system32\DRIVERS\igdkmd64.sys

18:56:05.0120 1428 igfx - ok

18:56:05.0242 1428 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

18:56:05.0244 1428 iirsp - ok

18:56:05.0340 1428 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll

18:56:05.0371 1428 IKEEXT - ok

18:56:05.0504 1428 IntcAzAudAddService (b16fc828ce7a76a8f1ce682e6ead2627) C:\Windows\system32\drivers\RTKVHD64.sys

18:56:05.0545 1428 IntcAzAudAddService - ok

18:56:05.0685 1428 IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\Windows\system32\drivers\IntcHdmi.sys

18:56:05.0688 1428 IntcHdmiAddService - ok

18:56:05.0727 1428 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys

18:56:05.0728 1428 intelide - ok

18:56:05.0750 1428 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

18:56:05.0751 1428 intelppm - ok

18:56:05.0777 1428 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll

18:56:05.0780 1428 IPBusEnum - ok

18:56:05.0831 1428 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys

18:56:05.0833 1428 IpFilterDriver - ok

18:56:05.0909 1428 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll

18:56:05.0920 1428 iphlpsvc - ok

18:56:05.0968 1428 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys

18:56:05.0970 1428 IPMIDRV - ok

18:56:05.0994 1428 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

18:56:05.0996 1428 IPNAT - ok

18:56:06.0125 1428 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe

18:56:06.0140 1428 iPod Service - ok

18:56:06.0160 1428 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

18:56:06.0161 1428 IRENUM - ok

18:56:06.0178 1428 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys

18:56:06.0179 1428 isapnp - ok

18:56:06.0231 1428 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys

18:56:06.0242 1428 iScsiPrt - ok

18:56:06.0293 1428 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

18:56:06.0294 1428 kbdclass - ok

18:56:06.0340 1428 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys

18:56:06.0341 1428 kbdhid - ok

18:56:06.0383 1428 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

18:56:06.0384 1428 KeyIso - ok

18:56:06.0400 1428 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys

18:56:06.0402 1428 KSecDD - ok

18:56:06.0435 1428 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys

18:56:06.0438 1428 KSecPkg - ok

18:56:06.0449 1428 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

18:56:06.0450 1428 ksthunk - ok

18:56:06.0498 1428 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll

18:56:06.0540 1428 KtmRm - ok

18:56:06.0584 1428 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll

18:56:06.0619 1428 LanmanServer - ok

18:56:06.0657 1428 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll

18:56:06.0661 1428 LanmanWorkstation - ok

18:56:06.0694 1428 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

18:56:06.0695 1428 lltdio - ok

18:56:06.0736 1428 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll

18:56:06.0746 1428 lltdsvc - ok

18:56:06.0762 1428 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll

18:56:06.0763 1428 lmhosts - ok

18:56:06.0784 1428 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

18:56:06.0786 1428 LSI_FC - ok

18:56:06.0810 1428 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

18:56:06.0812 1428 LSI_SAS - ok

18:56:06.0826 1428 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

18:56:06.0828 1428 LSI_SAS2 - ok

18:56:06.0852 1428 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

18:56:06.0854 1428 LSI_SCSI - ok

18:56:06.0890 1428 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

18:56:06.0892 1428 luafv - ok

18:56:07.0006 1428 McAfee SiteAdvisor Service (be8c524313db75fa26fb2b0c0aaff88e) C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe

18:56:07.0007 1428 McAfee SiteAdvisor Service - ok

18:56:07.0085 1428 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe

18:56:07.0097 1428 McComponentHostService - ok

18:56:07.0135 1428 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll

18:56:07.0138 1428 Mcx2Svc - ok

18:56:07.0161 1428 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

18:56:07.0163 1428 megasas - ok

18:56:07.0196 1428 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

18:56:07.0208 1428 MegaSR - ok

18:56:07.0280 1428 Microsoft SharePoint Workspace Audit Service - ok

18:56:07.0304 1428 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

18:56:07.0306 1428 MMCSS - ok

18:56:07.0323 1428 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

18:56:07.0325 1428 Modem - ok

18:56:07.0348 1428 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

18:56:07.0349 1428 monitor - ok

18:56:07.0438 1428 MotioninJoyXFilter (5fec1ff5bb9a1fa5c9cf4544d19d6d5d) C:\Windows\system32\DRIVERS\MijXfilt.sys

18:56:07.0441 1428 MotioninJoyXFilter - ok

18:56:07.0493 1428 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

18:56:07.0493 1428 mouclass - ok

18:56:07.0507 1428 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

18:56:07.0508 1428 mouhid - ok

18:56:07.0565 1428 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys

18:56:07.0568 1428 mountmgr - ok

18:56:07.0640 1428 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

18:56:07.0643 1428 MozillaMaintenance - ok

18:56:07.0689 1428 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys

18:56:07.0694 1428 mpio - ok

18:56:07.0714 1428 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

18:56:07.0716 1428 mpsdrv - ok

18:56:07.0778 1428 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys

18:56:07.0782 1428 MRxDAV - ok

18:56:07.0840 1428 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys

18:56:07.0842 1428 mrxsmb - ok

18:56:07.0883 1428 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys

18:56:07.0886 1428 mrxsmb10 - ok

18:56:07.0902 1428 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

18:56:07.0903 1428 mrxsmb20 - ok

18:56:07.0944 1428 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys

18:56:07.0945 1428 msahci - ok

18:56:07.0991 1428 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys

18:56:07.0994 1428 msdsm - ok

18:56:08.0043 1428 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe

18:56:08.0046 1428 MSDTC - ok

18:56:08.0094 1428 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

18:56:08.0094 1428 Msfs - ok

18:56:08.0115 1428 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

18:56:08.0116 1428 mshidkmdf - ok

18:56:08.0154 1428 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys

18:56:08.0155 1428 msisadrv - ok

18:56:08.0197 1428 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll

18:56:08.0213 1428 MSiSCSI - ok

18:56:08.0217 1428 msiserver - ok

18:56:08.0231 1428 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

18:56:08.0233 1428 MSKSSRV - ok

18:56:08.0236 1428 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

18:56:08.0238 1428 MSPCLOCK - ok

18:56:08.0251 1428 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

18:56:08.0252 1428 MSPQM - ok

18:56:08.0310 1428 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys

18:56:08.0317 1428 MsRPC - ok

18:56:08.0334 1428 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys

18:56:08.0334 1428 mssmbios - ok

18:56:08.0344 1428 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

18:56:08.0345 1428 MSTEE - ok

18:56:08.0350 1428 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

18:56:08.0353 1428 MTConfig - ok

18:56:08.0380 1428 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

18:56:08.0381 1428 Mup - ok

18:56:08.0443 1428 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll

18:56:08.0457 1428 napagent - ok

18:56:08.0485 1428 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

18:56:08.0487 1428 NativeWifiP - ok

18:56:08.0591 1428 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys

18:56:08.0605 1428 NDIS - ok

18:56:08.0647 1428 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

18:56:08.0648 1428 NdisCap - ok

18:56:08.0660 1428 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

18:56:08.0661 1428 NdisTapi - ok

18:56:08.0702 1428 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys

18:56:08.0703 1428 Ndisuio - ok

18:56:08.0743 1428 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys

18:56:08.0745 1428 NdisWan - ok

18:56:08.0788 1428 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys

18:56:08.0789 1428 NDProxy - ok

18:56:08.0803 1428 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

18:56:08.0804 1428 NetBIOS - ok

18:56:08.0848 1428 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys

18:56:08.0851 1428 NetBT - ok

18:56:08.0907 1428 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

18:56:08.0909 1428 Netlogon - ok

18:56:08.0952 1428 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll

18:56:08.0960 1428 Netman - ok

18:56:09.0009 1428 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll

18:56:09.0017 1428 netprofm - ok

18:56:09.0082 1428 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

18:56:09.0085 1428 NetTcpPortSharing - ok

18:56:09.0347 1428 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys

18:56:09.0449 1428 netw5v64 - ok

18:56:09.0552 1428 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

18:56:09.0554 1428 nfrd960 - ok

18:56:09.0597 1428 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll

18:56:09.0607 1428 NlaSvc - ok

18:56:09.0622 1428 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

18:56:09.0623 1428 Npfs - ok

18:56:09.0655 1428 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll

18:56:09.0656 1428 nsi - ok

18:56:09.0671 1428 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

18:56:09.0672 1428 nsiproxy - ok

18:56:09.0795 1428 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys

18:56:09.0819 1428 Ntfs - ok

18:56:09.0921 1428 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

18:56:09.0921 1428 Null - ok

18:56:09.0956 1428 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys

18:56:09.0972 1428 nvraid - ok

18:56:10.0010 1428 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys

18:56:10.0027 1428 nvstor - ok

18:56:10.0048 1428 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys

18:56:10.0050 1428 nv_agp - ok

18:56:10.0093 1428 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys

18:56:10.0095 1428 ohci1394 - ok

18:56:10.0172 1428 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

18:56:10.0175 1428 ose - ok

18:56:10.0534 1428 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

18:56:10.0656 1428 osppsvc - ok

18:56:10.0762 1428 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

18:56:10.0772 1428 p2pimsvc - ok

18:56:10.0817 1428 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll

18:56:10.0833 1428 p2psvc - ok

18:56:10.0873 1428 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

18:56:10.0875 1428 Parport - ok

18:56:10.0916 1428 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys

18:56:10.0918 1428 partmgr - ok

18:56:10.0945 1428 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll

18:56:10.0959 1428 PcaSvc - ok

18:56:11.0005 1428 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys

18:56:11.0020 1428 pci - ok

18:56:11.0038 1428 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys

18:56:11.0039 1428 pciide - ok

18:56:11.0060 1428 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

18:56:11.0073 1428 pcmcia - ok

18:56:11.0095 1428 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

18:56:11.0096 1428 pcw - ok

18:56:11.0144 1428 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

18:56:11.0149 1428 PEAUTH - ok

18:56:11.0219 1428 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe

18:56:11.0299 1428 PerfHost - ok

18:56:11.0449 1428 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll

18:56:11.0483 1428 pla - ok

18:56:11.0541 1428 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll

18:56:11.0558 1428 PlugPlay - ok

18:56:11.0592 1428 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll

18:56:11.0594 1428 PNRPAutoReg - ok

18:56:11.0619 1428 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll

18:56:11.0622 1428 PNRPsvc - ok

18:56:11.0678 1428 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll

18:56:11.0692 1428 PolicyAgent - ok

18:56:11.0724 1428 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll

18:56:11.0740 1428 Power - ok

18:56:11.0809 1428 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys

18:56:11.0810 1428 PptpMiniport - ok

18:56:11.0841 1428 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

18:56:11.0843 1428 Processor - ok

18:56:11.0889 1428 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll

18:56:11.0902 1428 ProfSvc - ok

18:56:11.0943 1428 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

18:56:11.0944 1428 ProtectedStorage - ok

18:56:11.0989 1428 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys

18:56:11.0990 1428 Psched - ok

18:56:12.0030 1428 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys

18:56:12.0031 1428 PxHlpa64 - ok

18:56:12.0131 1428 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

18:56:12.0160 1428 ql2300 - ok

18:56:12.0275 1428 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

18:56:12.0277 1428 ql40xx - ok

18:56:12.0310 1428 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll

18:56:12.0322 1428 QWAVE - ok

18:56:12.0339 1428 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

18:56:12.0341 1428 QWAVEdrv - ok

18:56:12.0348 1428 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

18:56:12.0349 1428 RasAcd - ok

18:56:12.0381 1428 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

18:56:12.0382 1428 RasAgileVpn - ok

18:56:12.0405 1428 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll

18:56:12.0408 1428 RasAuto - ok

18:56:12.0451 1428 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys

18:56:12.0452 1428 Rasl2tp - ok

18:56:12.0497 1428 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll

18:56:12.0506 1428 RasMan - ok

18:56:12.0531 1428 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

18:56:12.0532 1428 RasPppoe - ok

18:56:12.0565 1428 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

18:56:12.0566 1428 RasSstp - ok

18:56:12.0616 1428 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys

18:56:12.0619 1428 rdbss - ok

18:56:12.0635 1428 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

18:56:12.0636 1428 rdpbus - ok

18:56:12.0645 1428 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

18:56:12.0646 1428 RDPCDD - ok

18:56:12.0661 1428 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

18:56:12.0662 1428 RDPENCDD - ok

18:56:12.0668 1428 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

18:56:12.0669 1428 RDPREFMP - ok

18:56:12.0712 1428 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys

18:56:12.0727 1428 RDPWD - ok

18:56:12.0771 1428 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys

18:56:12.0784 1428 rdyboost - ok

18:56:12.0811 1428 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll

18:56:12.0814 1428 RemoteAccess - ok

18:56:12.0842 1428 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll

18:56:12.0858 1428 RemoteRegistry - ok

18:56:12.0896 1428 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys

18:56:12.0913 1428 RFCOMM - ok

18:56:12.0955 1428 rimsptsk (258aadb43e3f3468b5cf8cb0f84872c2) C:\Windows\system32\DRIVERS\rimssn64.sys

18:56:12.0956 1428 rimsptsk - ok

18:56:12.0967 1428 risdptsk (71e182a0de1cecb3f912960716345405) C:\Windows\system32\DRIVERS\risdsn64.sys

18:56:12.0968 1428 risdptsk - ok

18:56:13.0030 1428 Roxio UPnP Renderer 10 (d02e5a46f77c182ca1964080bcd586f7) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe

18:56:13.0040 1428 Roxio UPnP Renderer 10 - ok

18:56:13.0073 1428 Roxio Upnp Server 10 (e5809597278802d09273ee07b5fc56e1) C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe

18:56:13.0076 1428 Roxio Upnp Server 10 - ok

18:56:13.0105 1428 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll

18:56:13.0106 1428 RpcEptMapper - ok

18:56:13.0131 1428 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe

18:56:13.0133 1428 RpcLocator - ok

18:56:13.0195 1428 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll

18:56:13.0200 1428 RpcSs - ok

18:56:13.0252 1428 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

18:56:13.0253 1428 rspndr - ok

18:56:13.0299 1428 RTHDMIAzAudService (34f05c417f038ffa3bef69b798d7d7dd) C:\Windows\system32\drivers\RtHDMIVX.sys

18:56:13.0301 1428 RTHDMIAzAudService - ok

18:56:13.0371 1428 RtkAudioService (01e6a1e53e39a0b1e2b6ae62bf52e8ec) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

18:56:13.0373 1428 RtkAudioService - ok

18:56:13.0410 1428 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

18:56:13.0411 1428 SamSs - ok

18:56:13.0458 1428 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys

18:56:13.0461 1428 sbp2port - ok

18:56:13.0499 1428 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll

18:56:13.0514 1428 SCardSvr - ok

18:56:13.0555 1428 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys

18:56:13.0556 1428 scfilter - ok

18:56:13.0656 1428 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll

18:56:13.0681 1428 Schedule - ok

18:56:13.0730 1428 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll

18:56:13.0731 1428 SCPolicySvc - ok

18:56:13.0789 1428 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys

18:56:13.0791 1428 sdbus - ok

18:56:13.0836 1428 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll

18:56:13.0850 1428 SDRSVC - ok

18:56:13.0898 1428 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

18:56:13.0899 1428 secdrv - ok

18:56:13.0948 1428 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll

18:56:13.0950 1428 seclogon - ok

18:56:13.0987 1428 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll

18:56:13.0989 1428 SENS - ok

18:56:14.0016 1428 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll

18:56:14.0019 1428 SensrSvc - ok

18:56:14.0033 1428 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

18:56:14.0034 1428 Serenum - ok

18:56:14.0043 1428 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

18:56:14.0045 1428 Serial - ok

18:56:14.0077 1428 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

18:56:14.0078 1428 sermouse - ok

18:56:14.0133 1428 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll

18:56:14.0137 1428 SessionEnv - ok

18:56:14.0159 1428 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\DRIVERS\SFEP.sys

18:56:14.0160 1428 SFEP - ok

18:56:14.0201 1428 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys

18:56:14.0203 1428 sffdisk - ok

18:56:14.0220 1428 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys

18:56:14.0221 1428 sffp_mmc - ok

18:56:14.0236 1428 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys

18:56:14.0237 1428 sffp_sd - ok

18:56:14.0250 1428 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

18:56:14.0251 1428 sfloppy - ok

18:56:14.0314 1428 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll

18:56:14.0322 1428 ShellHWDetection - ok

18:56:14.0328 1428 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

18:56:14.0330 1428 SiSRaid2 - ok

18:56:14.0337 1428 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

18:56:14.0339 1428 SiSRaid4 - ok

18:56:14.0360 1428 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

18:56:14.0362 1428 Smb - ok

18:56:14.0390 1428 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe

18:56:14.0392 1428 SNMPTRAP - ok

18:56:14.0463 1428 SOHCImp (98886c88a1cb13d61672ae2c638b7e1c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe

18:56:14.0467 1428 SOHCImp - ok

18:56:14.0487 1428 SOHDBSvr (442a13f395546f4564c377296d43b564) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe

18:56:14.0488 1428 SOHDBSvr - ok

18:56:14.0528 1428 SOHDms (556681be668d71dc162391a45422b52c) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe

18:56:14.0542 1428 SOHDms - ok

18:56:14.0572 1428 SOHDs (72b46103e4111439109acf5882627c24) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe

18:56:14.0574 1428 SOHDs - ok

18:56:14.0594 1428 SOHPlMgr (725b6e9cd1959271ac993dc035e1606d) C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe

18:56:14.0597 1428 SOHPlMgr - ok

18:56:14.0621 1428 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

18:56:14.0622 1428 spldr - ok

18:56:14.0687 1428 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe

18:56:14.0693 1428 Spooler - ok

18:56:14.0931 1428 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe

18:56:14.0989 1428 sppsvc - ok

18:56:15.0111 1428 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll

18:56:15.0114 1428 sppuinotify - ok

18:56:15.0171 1428 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys

18:56:15.0175 1428 srv - ok

18:56:15.0233 1428 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys

18:56:15.0237 1428 srv2 - ok

18:56:15.0299 1428 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS

18:56:15.0321 1428 SrvHsfHDA - ok

18:56:15.0394 1428 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS

18:56:15.0428 1428 SrvHsfV92 - ok

18:56:15.0572 1428 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS

18:56:15.0583 1428 SrvHsfWinac - ok

18:56:15.0619 1428 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys

18:56:15.0620 1428 srvnet - ok

18:56:15.0666 1428 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll

18:56:15.0680 1428 SSDPSRV - ok

18:56:15.0691 1428 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll

18:56:15.0694 1428 SstpSvc - ok

18:56:15.0722 1428 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

18:56:15.0724 1428 stexstor - ok

18:56:15.0783 1428 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll

18:56:15.0793 1428 stisvc - ok

18:56:15.0835 1428 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys

18:56:15.0836 1428 swenum - ok

18:56:15.0874 1428 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll

18:56:15.0888 1428 swprv - ok

18:56:16.0021 1428 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll

18:56:16.0053 1428 SysMain - ok

18:56:16.0156 1428 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll

18:56:16.0159 1428 TabletInputService - ok

18:56:16.0216 1428 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll

18:56:16.0225 1428 TapiSrv - ok

18:56:16.0248 1428 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll

18:56:16.0250 1428 TBS - ok

18:56:16.0391 1428 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys

18:56:16.0459 1428 Tcpip - ok

18:56:16.0610 1428 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys

18:56:16.0621 1428 TCPIP6 - ok

18:56:16.0724 1428 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys

18:56:16.0725 1428 tcpipreg - ok

18:56:16.0752 1428 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

18:56:16.0754 1428 TDPIPE - ok

18:56:16.0790 1428 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys

18:56:16.0791 1428 TDTCP - ok

18:56:16.0829 1428 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys

18:56:16.0830 1428 tdx - ok

18:56:16.0869 1428 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys

18:56:16.0870 1428 TermDD - ok

18:56:16.0957 1428 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll

18:56:16.0974 1428 TermService - ok

18:56:17.0007 1428 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll

18:56:17.0009 1428 Themes - ok

18:56:17.0044 1428 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll

18:56:17.0045 1428 THREADORDER - ok

18:56:17.0063 1428 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll

18:56:17.0066 1428 TrkWks - ok

18:56:17.0132 1428 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe

18:56:17.0147 1428 TrustedInstaller - ok

18:56:17.0185 1428 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys

18:56:17.0186 1428 tssecsrv - ok

18:56:17.0233 1428 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys

18:56:17.0235 1428 TsUsbFlt - ok

18:56:17.0304 1428 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys

18:56:17.0306 1428 tunnel - ok

18:56:17.0327 1428 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

18:56:17.0329 1428 uagp35 - ok

18:56:17.0395 1428 uCamMonitor (63f6d08c54d5b3c1b12a6172032055c7) C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe

18:56:17.0397 1428 uCamMonitor - ok

18:56:17.0455 1428 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys

18:56:17.0464 1428 udfs - ok

18:56:17.0489 1428 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe

18:56:17.0492 1428 UI0Detect - ok

18:56:17.0532 1428 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys

18:56:17.0534 1428 uliagpkx - ok

18:56:17.0575 1428 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys

18:56:17.0576 1428 umbus - ok

18:56:17.0589 1428 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

18:56:17.0590 1428 UmPass - ok

18:56:17.0618 1428 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll

18:56:17.0626 1428 upnphost - ok

18:56:17.0674 1428 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys

18:56:17.0676 1428 USBAAPL64 - ok

18:56:17.0701 1428 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys

18:56:17.0702 1428 usbccgp - ok

18:56:17.0747 1428 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys

18:56:17.0749 1428 usbcir - ok

18:56:17.0772 1428 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys

18:56:17.0773 1428 usbehci - ok

18:56:17.0807 1428 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys

18:56:17.0810 1428 usbhub - ok

18:56:17.0819 1428 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys

18:56:17.0820 1428 usbohci - ok

18:56:17.0853 1428 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

18:56:17.0854 1428 usbprint - ok

18:56:17.0869 1428 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS

18:56:17.0871 1428 USBSTOR - ok

18:56:17.0884 1428 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys

18:56:17.0885 1428 usbuhci - ok

18:56:17.0914 1428 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys

18:56:17.0916 1428 usbvideo - ok

18:56:17.0941 1428 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll

18:56:17.0943 1428 UxSms - ok

18:56:18.0025 1428 VAIO Entertainment TV Device Arbitration Service (4e7135d6d0127067e4cfee12259f895d) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe

18:56:18.0028 1428 VAIO Entertainment TV Device Arbitration Service - ok

18:56:18.0075 1428 VAIO Event Service (d4197cf0c8567046fd4af28ff47af528) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe

18:56:18.0077 1428 VAIO Event Service - ok

18:56:18.0184 1428 VAIO Power Management (2d6605c1f0bbd0f71a4cb3a5b1e07240) C:\Program Files\Sony\VAIO Power Management\SPMService.exe

18:56:18.0188 1428 VAIO Power Management - ok

18:56:18.0224 1428 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe

18:56:18.0225 1428 VaultSvc - ok

18:56:18.0277 1428 VCFw (06fe5beddadb158d84e6de33cbe19f3e) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe

18:56:18.0283 1428 VCFw - ok

18:56:18.0351 1428 VcmIAlzMgr (34063c0b842e73662067f9b03947c55c) C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

18:56:18.0387 1428 VcmIAlzMgr - ok

18:56:18.0435 1428 VcmINSMgr (a8f5d1651a324abc6c308891a1252ee3) C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe

18:56:18.0443 1428 VcmINSMgr - ok

18:56:18.0488 1428 VcmXmlIfHelper (db544b487f360128dc1c383e0a6fcc2f) C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe

18:56:18.0491 1428 VcmXmlIfHelper - ok

18:56:18.0499 1428 Vcsw - ok

18:56:18.0626 1428 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys

18:56:18.0626 1428 vdrvroot - ok

18:56:18.0683 1428 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe

18:56:18.0695 1428 vds - ok

18:56:18.0744 1428 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

18:56:18.0745 1428 vga - ok

18:56:18.0757 1428 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

18:56:18.0758 1428 VgaSave - ok

18:56:18.0800 1428 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys

18:56:18.0814 1428 vhdmp - ok

18:56:18.0843 1428 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys

18:56:18.0844 1428 viaide - ok

18:56:18.0880 1428 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys

18:56:18.0882 1428 volmgr - ok

18:56:18.0930 1428 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys

18:56:18.0938 1428 volmgrx - ok

18:56:18.0969 1428 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys

18:56:18.0979 1428 volsnap - ok

18:56:19.0010 1428 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

18:56:19.0013 1428 vsmraid - ok

18:56:19.0108 1428 VSNService (e9638e51373d527e22438b80126b64f9) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe

18:56:19.0112 1428 VSNService - ok

18:56:19.0239 1428 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe

18:56:19.0266 1428 VSS - ok

18:56:19.0425 1428 VUAgent (2be941d459316a9da023028332726163) C:\Program Files\Sony\VAIO Update 5\VUAgent.exe

18:56:19.0443 1428 VUAgent - ok

18:56:19.0551 1428 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

18:56:19.0552 1428 vwifibus - ok

18:56:19.0568 1428 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

18:56:19.0569 1428 vwififlt - ok

18:56:19.0658 1428 VzCdbSvc (d8bef4ac1eac809dbdbd441d6cff6c4c) C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

18:56:19.0661 1428 VzCdbSvc - ok

18:56:19.0701 1428 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll

18:56:19.0719 1428 W32Time - ok

18:56:19.0737 1428 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

18:56:19.0739 1428 WacomPen - ok

18:56:19.0774 1428 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

18:56:19.0775 1428 WANARP - ok

18:56:19.0779 1428 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

18:56:19.0780 1428 Wanarpv6 - ok

18:56:19.0883 1428 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe

18:56:19.0910 1428 WatAdminSvc - ok

18:56:20.0020 1428 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe

18:56:20.0049 1428 wbengine - ok

18:56:20.0155 1428 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll

18:56:20.0169 1428 WbioSrvc - ok

18:56:20.0222 1428 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll

18:56:20.0251 1428 wcncsvc - ok

18:56:20.0270 1428 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll

18:56:20.0272 1428 WcsPlugInService - ok

18:56:20.0310 1428 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

18:56:20.0311 1428 Wd - ok

18:56:20.0363 1428 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

18:56:20.0400 1428 Wdf01000 - ok

18:56:20.0433 1428 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

18:56:20.0435 1428 WdiServiceHost - ok

18:56:20.0438 1428 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll

18:56:20.0441 1428 WdiSystemHost - ok

18:56:20.0508 1428 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll

18:56:20.0554 1428 WebClient - ok

18:56:20.0581 1428 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll

18:56:20.0594 1428 Wecsvc - ok

18:56:20.0606 1428 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll

18:56:20.0610 1428 wercplsupport - ok

18:56:20.0632 1428 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll

18:56:20.0635 1428 WerSvc - ok

18:56:20.0654 1428 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

18:56:20.0655 1428 WfpLwf - ok

18:56:20.0670 1428 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

18:56:20.0672 1428 WIMMount - ok

18:56:20.0702 1428 WinDefend - ok

18:56:20.0723 1428 WinHttpAutoProxySvc - ok

18:56:20.0783 1428 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll

18:56:20.0795 1428 Winmgmt - ok

18:56:20.0935 1428 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll

18:56:20.0967 1428 WinRM - ok

18:56:21.0111 1428 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys

18:56:21.0112 1428 WinUsb - ok

18:56:21.0185 1428 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll

18:56:21.0201 1428 Wlansvc - ok

18:56:21.0242 1428 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys

18:56:21.0243 1428 WmiAcpi - ok

18:56:21.0330 1428 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe

18:56:21.0344 1428 wmiApSrv - ok

18:56:21.0395 1428 WMPNetworkSvc - ok

18:56:21.0421 1428 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll

18:56:21.0424 1428 WPCSvc - ok

18:56:21.0460 1428 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll

18:56:21.0462 1428 WPDBusEnum - ok

18:56:21.0492 1428 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

18:56:21.0493 1428 ws2ifsl - ok

18:56:21.0524 1428 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll

18:56:21.0528 1428 wscsvc - ok

18:56:21.0531 1428 WSearch - ok

18:56:21.0689 1428 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll

18:56:21.0725 1428 wuauserv - ok

18:56:21.0849 1428 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys

18:56:21.0851 1428 WudfPf - ok

18:56:21.0887 1428 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys

18:56:21.0889 1428 WUDFRd - ok

18:56:21.0921 1428 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll

18:56:21.0923 1428 wudfsvc - ok

18:56:21.0962 1428 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll

18:56:21.0974 1428 WwanSvc - ok

18:56:22.0026 1428 xusb21 (9176c0822faa649e45121875be32f5d2) C:\Windows\system32\DRIVERS\xusb21.sys

18:56:22.0028 1428 xusb21 - ok

18:56:22.0086 1428 yukonw7 (6affd75c6807b3dd3ab018e27b88ef95) C:\Windows\system32\DRIVERS\yk62x64.sys

18:56:22.0090 1428 yukonw7 - ok

18:56:22.0108 1428 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

18:56:22.0310 1428 \Device\Harddisk0\DR0 - ok

18:56:22.0313 1428 Boot (0x1200) (c77d7fe9efbc6adee3cccf116d69b371) \Device\Harddisk0\DR0\Partition0

18:56:22.0314 1428 \Device\Harddisk0\DR0\Partition0 - ok

18:56:22.0330 1428 Boot (0x1200) (d7130ba4a0ff1384d535a300e1d1bfbd) \Device\Harddisk0\DR0\Partition1

18:56:22.0331 1428 \Device\Harddisk0\DR0\Partition1 - ok

18:56:22.0332 1428 ============================================================

18:56:22.0332 1428 Scan finished

18:56:22.0332 1428 ============================================================

18:56:22.0343 0932 Detected object count: 0

18:56:22.0343 0932 Actual detected object count: 0

 

 

 

 

 

RogueKiller V7.5.4 [07/06/2012] par Tigzy

mail: tigzyRK<at>gmail<dot>com

Remontees: http://www.sur-la-toile.com/discussion-193725-1-BRogueKillerD-Remontees.html

Blog: http://tigzyrk.blogspot.com

 

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Demarrage : Mode sans echec avec prise en charge reseau

Utilisateur: Nathalie [Droits d'admin]

Mode: Recherche -- Date: 07/06/2012 18:58:43

 

¤¤¤ Processus malicieux: 0 ¤¤¤

 

¤¤¤ Entrees de registre: 3 ¤¤¤

[] HKCR\[...]\InprocServer32 : () -> ACCESS DENIED

[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

 

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

 

¤¤¤ Driver: [NON CHARGE] ¤¤¤

 

¤¤¤ Infection : ¤¤¤

 

¤¤¤ Fichier HOSTS: ¤¤¤

127.0.0.1 localhost

 

 

¤¤¤ MBR Verif: ¤¤¤

 

+++++ PhysicalDrive0: WDC WD3200BEVS-26VAT0 +++++

--- User ---

[MBR] f2e0e12a5d18ccce66a96a1c8b440df5

[bSP] b92a5ee43c7cc068152c20d50fe6ba0f : Windows 7 MBR Code

Partition table:

0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 9596 Mo

1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 19654656 | Size: 100 Mo

2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 19859456 | Size: 295547 Mo

User = LL1 ... OK!

User = LL2 ... OK!

 

Termine : << RKreport[1].txt >>

RKreport[1].txt

Modifié le 7 juin 2012 par nath09

[nath09]

faut il que je décoche les 2 lignes du registre ?

[pear]

Non,

 

Poursuivez la procédure Rogue Killer.

Tdss n'a rien trouvé: c'est embêtant!

[nath09]

RogueKiller V7.5.4 [07/06/2012] par Tigzy

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/54)

Blog: tigzy-RK

 

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Demarrage : Mode sans echec avec prise en charge reseau

Utilisateur: Nathalie [Droits d'admin]

Mode: Suppression -- Date: 07/06/2012 19:17:12

 

¤¤¤ Processus malicieux: 0 ¤¤¤

 

¤¤¤ Entrees de registre: 3 ¤¤¤

[] HKCR\[...]\InprocServer32 : () -> ACCESS DENIED

[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)

[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

 

¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤

 

¤¤¤ Driver: [NON CHARGE] ¤¤¤

 

¤¤¤ Infection : ¤¤¤

 

¤¤¤ Fichier HOSTS: ¤¤¤

127.0.0.1 localhost

 

 

¤¤¤ MBR Verif: ¤¤¤

 

+++++ PhysicalDrive0: WDC WD3200BEVS-26VAT0 +++++

--- User ---

[MBR] f2e0e12a5d18ccce66a96a1c8b440df5

[bSP] b92a5ee43c7cc068152c20d50fe6ba0f : Windows 7 MBR Code

Partition table:

0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 9596 Mo

1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 19654656 | Size: 100 Mo

2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 19859456 | Size: 295547 Mo

User = LL1 ... OK!

User = LL2 ... OK!

 

Termine : << RKreport[2].txt >>

RKreport[1].txt ; RKreport[2].txt

 

 

 

RogueKiller V7.5.4 [07/06/2012] par Tigzy

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/54)

Blog: tigzy-RK

 

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Demarrage : Mode sans echec avec prise en charge reseau

Utilisateur: Nathalie [Droits d'admin]

Mode: HOSTS RAZ -- Date: 07/06/2012 19:18:07

 

¤¤¤ Processus malicieux: 0 ¤¤¤

 

¤¤¤ Driver: [NON CHARGE] ¤¤¤

 

¤¤¤ Fichier HOSTS: ¤¤¤

127.0.0.1 localhost

 

 

¤¤¤ Nouveau fichier HOSTS: ¤¤¤

127.0.0.1 localhost

 

Termine : << RKreport[3].txt >>

RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

 

 

 

RogueKiller V7.5.4 [07/06/2012] par Tigzy

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/54)

Blog: tigzy-RK

 

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Demarrage : Mode sans echec avec prise en charge reseau

Utilisateur: Nathalie [Droits d'admin]

Mode: Proxy RAZ -- Date: 07/06/2012 19:18:21

 

¤¤¤ Processus malicieux: 0 ¤¤¤

 

¤¤¤ Driver: [NON CHARGE] ¤¤¤

 

¤¤¤ Entrees de registre: 0 ¤¤¤

 

Termine : << RKreport[4].txt >>

RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt

 

 

 

RogueKiller V7.5.4 [07/06/2012] par Tigzy

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/54)

Blog: tigzy-RK

 

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Demarrage : Mode sans echec avec prise en charge reseau

Utilisateur: Nathalie [Droits d'admin]

Mode: DNS RAZ -- Date: 07/06/2012 19:18:43

 

¤¤¤ Processus malicieux: 0 ¤¤¤

 

¤¤¤ Driver: [NON CHARGE] ¤¤¤

 

¤¤¤ Entrees de registre: 0 ¤¤¤

 

Termine : << RKreport[5].txt >>

RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt

 

 

 

RogueKiller V7.5.4 [07/06/2012] par Tigzy

mail: tigzyRK<at>gmail<dot>com

Remontees: [RogueKiller] Remontées (1/54)

Blog: tigzy-RK

 

Systeme d'exploitation: Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Demarrage : Mode sans echec avec prise en charge reseau

Utilisateur: Nathalie [Droits d'admin]

Mode: Raccourcis RAZ -- Date: 07/06/2012 19:23:17

 

¤¤¤ Processus malicieux: 0 ¤¤¤

 

¤¤¤ Driver: [NON CHARGE] ¤¤¤

 

¤¤¤ Attributs de fichiers restaures: ¤¤¤

Bureau: Success 1 / Fail 0

Lancement rapide: Success 1 / Fail 0

Programmes: Success 8 / Fail 0

Menu demarrer: Success 1 / Fail 0

Dossier utilisateur: Success 433 / Fail 0

Mes documents: Success 0 / Fail 0

Mes favoris: Success 0 / Fail 0

Mes images: Success 0 / Fail 0

Ma musique: Success 94 / Fail 0

Mes videos: Success 0 / Fail 0

Disques locaux: Success 207 / Fail 0

Sauvegarde: [NOT FOUND]

 

Lecteurs:

[C:] \Device\HarddiskVolume3 -- 0x3 --> Restored

[D:] \Device\HarddiskVolume4 -- 0x2 --> Restored

[E:] \Device\HarddiskVolume5 -- 0x2 --> Restored

[F:] \Device\CdRom0 -- 0x5 --> Skipped

[G:] \Device\CdRom1 -- 0x5 --> Skipped

 

¤¤¤ Infection : ¤¤¤

 

Termine : << RKreport[6].txt >>

RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt ;

RKreport[6].txt

[pear]

On fait chou blanc partout!

 

Télécharger sur le bureauOTM by OldTimer .

Double-clic sur OTM.exe pour le lancer.

Sous Vista,Clic droit sur le fichier ->Choisir Exécuter en tant qu' Administrateur

Dans le cadre gauche, "Paste Instructions...."

Copiez /Collez les lignes ci dessous) en vert:

 

:Files

C:\Windows\Installer\{df85ce06-d140-1bc6-5fb3-3829fd5db137}\U\800000cb.@

C:\Windows\Installer\{df85ce06-d140-1bc6-5fb3-3829fd5db137}\U\80000000.@

C:\Windows\Installer\{df85ce06-d140-1bc6-5fb3-3829fd5db137}\U\00000001.@

 

:Commands

[purity]

[emptytemp]

[Reboot]

Revenez dans OTM,

Clic droit sur la fenêtre "Paste Instructions for Items to be Moved" sous la barre jaune et choisir Coller(Paste).

Click le bouton rouge Moveit!

Fermez OTM

Votre Pc va redémarrer.

Rendez vous dans le dossier C:\_OTM\MovedFiles ,

ouvrez le dernier fichier .log

Copiez/collez en le contenu dans votre prochaine réponse

[nath09]

All processes killed

========== FILES ==========

C:\Windows\Installer\{df85ce06-d140-1bc6-5fb3-3829fd5db137}\U\800000cb.@ moved successfully.

C:\Windows\Installer\{df85ce06-d140-1bc6-5fb3-3829fd5db137}\U\80000000.@ moved successfully.

C:\Windows\Installer\{df85ce06-d140-1bc6-5fb3-3829fd5db137}\U\00000001.@ moved successfully.

========== COMMANDS ==========

 

[EMPTYTEMP]

 

User: All Users

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 67 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

 

User: Nathalie

->Temp folder emptied: 1789952 bytes

->Temporary Internet Files folder emptied: 70034108 bytes

->Java cache emptied: 0 bytes

->FireFox cache emptied: 117272184 bytes

->Flash cache emptied: 14099 bytes

 

User: Public

->Temp folder emptied: 0 bytes

 

User: Thibaud

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Java cache emptied: 1 bytes

->FireFox cache emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: Thibaud.Nathalie-VAIO

->Temp folder emptied: 339204 bytes

->Temporary Internet Files folder emptied: 2009352 bytes

->Java cache emptied: 11724 bytes

->FireFox cache emptied: 1104935922 bytes

->Flash cache emptied: 483697 bytes

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 3526 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 38963264 bytes

RecycleBin emptied: 0 bytes

 

Total Files Cleaned = 1 274,00 mb

 

 

OTM by OldTimer - Version 3.1.19.0 log created on 06072012_194820

 

Files moved on Reboot...

C:\Users\Nathalie\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

C:\Users\Nathalie\AppData\Local\Mozilla\Firefox\Profiles\4sugmv29.default\Cache\_CACHE_001_ moved successfully.

C:\Users\Nathalie\AppData\Local\Mozilla\Firefox\Profiles\4sugmv29.default\Cache\_CACHE_002_ moved successfully.

C:\Users\Nathalie\AppData\Local\Mozilla\Firefox\Profiles\4sugmv29.default\Cache\_CACHE_003_ moved successfully.

C:\Users\Nathalie\AppData\Local\Mozilla\Firefox\Profiles\4sugmv29.default\Cache\_CACHE_MAP_ moved successfully.

C:\Users\Nathalie\AppData\Local\Mozilla\Firefox\Profiles\4sugmv29.default\urlclassifier3.sqlite moved successfully.

 

Registry entries deleted on Reboot...

[pear]

J'espère que ce sera bon, cette fois.

 

Tenez nous au courant, svp.