Centre de sécurité bloqué

[Sookie]

Bonjour à tous.

Je viens de subir une attaque de trojan, je l'ai supprimé avec windows defender et mon antivirus (avira antivir). Mais maintenant, le centre de sécurité est inactif et bloqué, j'ai des alertes périodiques de mon antivirus pour suprimer toujours le même fichier et mon ordi lance l'installation de adobe flash player tout seul... Sans parler des problèmes de navigation internet avec firefox qui m'envoie sur des pages non désirées.

J'ai déjà essayé de remettre le centre de sécurité sur automatique dans outils d'administration mais il n'apparait même pas dans la liste!

Bref je suis dans la panade!! Quelqu'un pour m'aider please?

[nardino]

Bonsoir,
Peux-tu faire ceci :

Malwarebytes Anti-Malware de RubbeR DuckY

Double-clique sur le fichier mbam-setup-1.60.exe (sous Vista et 7 autorise les modifications)
A la fin de l'installation, veille à ce que les options suivantes soient cochées
-Mettre à jour Malwarebytes' Anti-Malware
-Exécuter Malwarebytes' Anti-Malware
Clique sur Terminer
Une fenêtre Mise à jour de Malwarebytes' Anti-Malware va s'ouvrir avec une barre de progression.
Puis une autre annonçant le succès de la mise à jour de la base de données. Clique sur OK.
Le programme s'ouvre sur l'onglet Recherche.
Coche Exécuter un examen rapide, clique sur le bouton

A la fin du scan, sélectionne tout et clique sur Supprimer la sélection

Poste le rapport qui s'ouvre après cette suppression.
Redémarre le pc si cela est demandé
Tu peux retrouver le rapport dans l'onglet Rapports/Logs avec la date et l'heure d'exécution.

ZHPDiag de Nicolas Coolman sur ton bureau.


Clique sur le fichier ZHPDiag2.exe pour installer l'outil et suis la routine.
Coche Installer une icône sur le bureau quand cela te sera proposé.

Lance l'icône ZHPDiag affichée sur le bureau

Dans l'interface, fais les trois opérations comme dans l'image ci-dessous :

Dans l'interface, fais les trois opérations comme dans l'image ci-dessous :
1 : Clique sur l'icône Tournevis
2 : Clique sur le bouton radio Tous
3 : Clique sur L'icône Loupe pour lancer le scan



Laisse faire le scan jusqu'à ce que la barre de progression en bas soit à 100%. Ce message aura disparu.



Tu refermes ZHPDiag en cliquant sur la croix rouge en haut à droite.
Un fichier ZHPDiag.txt sera enregistré sur le bureau.

Tu l'héberges sur Cjoint en cochant 4 jours dans la ligne Et pour quelle durée ?
Tu me communiques le lien obtenu dans ta réponse.
Explications pour Cjoint

Deux tutos si nécessaire.
ZHPDiag
Cjoint

Si besoin est, nous ferons appel à d'autres outils.

@+

[Sookie]

Merci pour ta réponse

Voici la lien CiJoint pour ZHPDiag: http://cjoint.com/?3Dps1bVKohT

Et pour Marlwarebytes :

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Version de la base de données: v2012.04.15.05

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19222
acer :: PC-DE-ACER [administrateur]

15/04/2012 18:03:16
mbam-log-2012-04-15 (18-03-16).txt

Type d'examen: Examen rapide
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 242673
Temps écoulé: 16 minute(s), 38 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (Hijack.Homepage) -> Mauvais: (http://www.missim.org/) Bon: (http://www.Google.com/) -> Mis en quarantaine et réparé avec succès

Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)

Fichier(s) détecté(s): 1
C:\Users\acer\Local Settings\Temporary Internet Files\Content.IE5\YVOYNWK4\readme[1].exe (Rootkit.0Access) -> Mis en quarantaine et supprimé avec succès.

(fin)

[nardino]

Bonsoir,
AdwCleaner de Xplode sur ton bureau

Lance l'outil en cliquant sur adwcleaner.exe.
Sous Vista et Windows 7 par un clic droit sur l'icône et Exécuter en tant qu'administrateur dans le menu contextuel
Clique sur le bouton Suppression



Poste le rapport qui s'ouvre en fin de nettoyage après avoir redémarré l'ordinateur.
Il sera enregistré sous C:\AdwCleaner[S1].txt

(Si tu as choisis Recherche le rapport sera C:\AdwCleaner[R1].txt
Chaque nouvelle utilisation de l'outil implémentera la numérotation des rapports [S2] [S3] [R2] [R3], etc.
R= Recherche, S=Suppression.)


@+

[Sookie]

Voici le rapport:

# AdwCleaner v1.600 - Rapport créé le 16/04/2012 à 00:51:07
# Mis à jour le 15/04/2012 par Xplode
# Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Nom d'utilisateur : acer - PC-DE-ACER
# Exécuté depuis : C:\Users\acer\Downloads\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Users\acer\AppData\Local\Babylon
Dossier Supprimé : C:\Users\acer\AppData\Local\OpenCandy
Dossier Supprimé : C:\Users\acer\AppData\LocalLow\BabylonToolbar
Dossier Supprimé : C:\Users\acer\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\acer\AppData\Roaming\Media Finder
Dossier Supprimé : C:\Users\acer\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\@themediafinder.com
Dossier Supprimé : C:\Users\acer\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Dossier Supprimé : C:\Users\acer\AppData\Roaming\OfferBox
Dossier Supprimé : C:\Users\acer\AppData\Roaming\OpenCandy
Dossier Supprimé : C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\stumm43g.default\extensions\ffxtlbr@babylon.com
Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Finder
Dossier Supprimé : C:\Program Files\BabylonToolbar
Fichier Supprimé : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml

***** [H. Navipromo] *****


***** [Registre] *****

Clé Supprimée : HKCU\Software\BabylonToolbar
Clé Supprimée : HKCU\Software\MediaFinder
Clé Supprimée : HKCU\Software\Offerbox
Clé Supprimée : HKLM\SOFTWARE\Babylon
Clé Supprimée : HKLM\SOFTWARE\BabylonToolbar
Clé Supprimée : HKLM\SOFTWARE\Classes\b
Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escortIEPane
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Clé Supprimée : HKLM\SOFTWARE\Classes\MF
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Media Finder]

***** [Registre - GUID] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{98889811-442D-49DD-99D7-DC866BE87DBC}]

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.6001.19222

Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?babsrc=HP_ss&affID=101067&mntrId=4474f0cf0000000000000016ea526e72 --> hxxp://www.google.fr
Remplacé : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?babsrc=NT_ss&affID=101067&mntrId=4474f0cf0000000000000016ea526e72 --> hxxp://www.google.fr

-\\ Mozilla Firefox v11.0 (fr)

## Fichier : C:\Users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\stumm43g.default\prefs.js

Supprimée : user_pref("extensions.illimitux.ilx_pref_pt_veoh", true);

*************************

AdwCleaner[S1].txt - [7205 octets] - [16/04/2012 00:51:07]

########## EOF - C:\AdwCleaner[S1].txt - [7333 octets] ##########

[nardino]

Bonjour,
Combofix

IMPORTANT
Enregistre ComboFix.exe sur le Bureau
Désactive les applications antivirus et anti-malware résidentes, en général via un clic droit sur l'icône de la Zone de notification, sinon elles risquent d'interférer avec l'outil.
Fais un double clic sur l'icône et suis les invites.
Sous XP accepte l'installation de la console de récupération.

Surtout ne lance aucune application pendant le scan et après le redémarrage parfois nécessaire et provoqué par l'outil.
Lorsque l'outil aura terminé, il affichera un rapport.
Attends l'affichage du rapport.(Il sera enregistré sous C:\Combofix.txt)
Copie le contenu dans ta prochaine réponse.

Avertissement aux lecteurs.
Combofix n'est pas un outil anodin ni sans risques pour le système d'exploitation.
Il est conseillé de l'utiliser sous le contrôle d'un assistant.

@+

[Sookie]

Bonsoir

J'ai installé Combofix, l'ai exécuter mais je n'ai pas pu générer de rapport.

Il m'a mit:

Votre PC est infécté par Rootkit.ZeroAcess. Il s'est inséré dans la pile tcp/ip.

Puis: Un Rootkit a été détécté

Enfin: ComboFix a détécté la présence d'une activité de Rootkit et à besoin de faire redémarrer votre ordinateur. Ce qui a été fait

[nardino]

Bonsoir,
tdsskiller.zip de Kaspersky

Décompresse l'archive et place TDSSKiller.exe sur le bureau.Double clicque sur le fichier.
Sur l'écran clique sur le bouton Start scan
A la fin du scan, si des nuisibles sont détectés, ceci apparaîtra:

Vérifie que l'option Cure est sélectionnée

Clique sur le bouton Continue

Puis sur le bouton Reboot now


Poste le contenu du rapport C:\TDSSKiller.Version_Date_Heure_log.txt

@+

[Sookie]

Voici le rapport:

23:46:14.0226 5372 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
23:46:14.0522 5372 ============================================================
23:46:14.0522 5372 Current date / time: 2012/04/16 23:46:14.0522
23:46:14.0522 5372 SystemInfo:
23:46:14.0522 5372
23:46:14.0522 5372 OS Version: 6.0.6002 ServicePack: 2.0
23:46:14.0522 5372 Product type: Workstation
23:46:14.0522 5372 ComputerName: PC-DE-ACER
23:46:14.0522 5372 UserName: acer
23:46:14.0522 5372 Windows directory: C:\Windows
23:46:14.0522 5372 System windows directory: C:\Windows
23:46:14.0522 5372 Processor architecture: Intel x86
23:46:14.0522 5372 Number of processors: 2
23:46:14.0522 5372 Page size: 0x1000
23:46:14.0522 5372 Boot type: Normal boot
23:46:14.0522 5372 ============================================================
23:46:15.0302 5372 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:46:15.0302 5372 \Device\Harddisk0\DR0:
23:46:15.0302 5372 MBR used
23:46:15.0302 5372 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1400800, BlocksNum 0x12016800
23:46:15.0302 5372 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13417000, BlocksNum 0x12017000
23:46:15.0412 5372 Initialize success
23:46:15.0412 5372 ============================================================
23:46:16.0613 4292 ============================================================
23:46:16.0628 4292 Scan started
23:46:16.0628 4292 Mode: Manual;
23:46:16.0628 4292 ============================================================
23:46:17.0221 4292 A310 (02e1c46c34f2d2843533c4f223867930) C:\Windows\system32\DRIVERS\AVerA310USB.sys
23:46:17.0221 4292 A310 - ok
23:46:17.0315 4292 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
23:46:17.0315 4292 ACPI - ok
23:46:17.0408 4292 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
23:46:17.0408 4292 adp94xx - ok
23:46:17.0440 4292 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
23:46:17.0455 4292 adpahci - ok
23:46:17.0486 4292 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
23:46:17.0486 4292 adpu160m - ok
23:46:17.0518 4292 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
23:46:17.0518 4292 adpu320 - ok
23:46:17.0564 4292 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
23:46:17.0564 4292 AeLookupSvc - ok
23:46:17.0627 4292 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
23:46:17.0627 4292 AFD - ok
23:46:17.0674 4292 AgereModemAudio (efbc44fbd75e4f80bd927aebf6e7eade) C:\Windows\system32\agrsmsvc.exe
23:46:17.0674 4292 AgereModemAudio - ok
23:46:17.0767 4292 AgereSoftModem (38325c6aa8eae011897d61ce48ec6435) C:\Windows\system32\DRIVERS\AGRSM.sys
23:46:17.0783 4292 AgereSoftModem - ok
23:46:17.0845 4292 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
23:46:17.0845 4292 agp440 - ok
23:46:17.0876 4292 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
23:46:17.0876 4292 aic78xx - ok
23:46:17.0954 4292 AlfaFF (8d59617a9c3dbf4650aa44f4e9215744) C:\Windows\system32\Drivers\AlfaFF.sys
23:46:17.0954 4292 AlfaFF - ok
23:46:17.0970 4292 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
23:46:17.0986 4292 ALG - ok
23:46:18.0017 4292 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
23:46:18.0017 4292 aliide - ok
23:46:18.0064 4292 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
23:46:18.0064 4292 amdagp - ok
23:46:18.0079 4292 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
23:46:18.0079 4292 amdide - ok
23:46:18.0110 4292 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
23:46:18.0126 4292 AmdK7 - ok
23:46:18.0142 4292 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
23:46:18.0142 4292 AmdK8 - ok
23:46:18.0235 4292 AntiVirSchedulerService (a5bcbaf0477c4869b67e0195aea4a9cd) C:\Program Files\Avira\AntiVir Desktop\sched.exe
23:46:18.0235 4292 AntiVirSchedulerService - ok
23:46:18.0282 4292 AntiVirService (3cce4afa4aacdb28e01a148394212186) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
23:46:18.0298 4292 AntiVirService - ok
23:46:18.0376 4292 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
23:46:18.0376 4292 Appinfo - ok
23:46:18.0469 4292 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:46:18.0485 4292 Apple Mobile Device - ok
23:46:18.0563 4292 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
23:46:18.0563 4292 arc - ok
23:46:18.0610 4292 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
23:46:18.0610 4292 arcsas - ok
23:46:18.0656 4292 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
23:46:18.0656 4292 AsyncMac - ok
23:46:18.0703 4292 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
23:46:18.0703 4292 atapi - ok
23:46:18.0750 4292 ATSWPDRV (5e19f7b730c6a32e83174e2d6fee4389) C:\Windows\system32\DRIVERS\ATSwpDrv.sys
23:46:18.0750 4292 ATSWPDRV - ok
23:46:18.0812 4292 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
23:46:18.0812 4292 AudioEndpointBuilder - ok
23:46:18.0859 4292 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
23:46:18.0859 4292 Audiosrv - ok
23:46:18.0922 4292 avgio (f1d43170fdd7399ee17ea32d4f868b0c) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
23:46:18.0922 4292 avgio - ok
23:46:19.0031 4292 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
23:46:19.0031 4292 avgntflt - ok
23:46:19.0093 4292 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
23:46:19.0093 4292 avipbb - ok
23:46:19.0156 4292 b57nd60x (7d0f2bfa273831124fa08526af48af18) C:\Windows\system32\DRIVERS\b57nd60x.sys
23:46:19.0156 4292 b57nd60x - ok
23:46:19.0265 4292 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
23:46:19.0265 4292 BBSvc - ok
23:46:19.0312 4292 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
23:46:19.0327 4292 BBUpdate - ok
23:46:19.0405 4292 BDASwCap (9347a2ddee501c242a8e21990279d688) C:\Windows\system32\drivers\AVerA310Cap.sys
23:46:19.0405 4292 BDASwCap - ok
23:46:19.0468 4292 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
23:46:19.0468 4292 Beep - ok
23:46:19.0577 4292 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
23:46:19.0592 4292 BITS - ok
23:46:19.0624 4292 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
23:46:19.0624 4292 blbdrive - ok
23:46:19.0733 4292 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
23:46:19.0733 4292 Bonjour Service - ok
23:46:19.0873 4292 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
23:46:19.0873 4292 bowser - ok
23:46:19.0936 4292 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
23:46:19.0936 4292 BrFiltLo - ok
23:46:19.0982 4292 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
23:46:19.0982 4292 BrFiltUp - ok
23:46:20.0029 4292 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
23:46:20.0029 4292 Browser - ok
23:46:20.0060 4292 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
23:46:20.0060 4292 Brserid - ok
23:46:20.0107 4292 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
23:46:20.0107 4292 BrSerWdm - ok
23:46:20.0154 4292 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
23:46:20.0154 4292 BrUsbMdm - ok
23:46:20.0216 4292 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
23:46:20.0216 4292 BrUsbSer - ok
23:46:20.0263 4292 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
23:46:20.0263 4292 BTHMODEM - ok
23:46:20.0341 4292 BUNAgentSvc (09e6affae6c0e9158bf05c7d08d0107a) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
23:46:20.0341 4292 BUNAgentSvc - ok
23:46:20.0388 4292 catchme - ok
23:46:20.0497 4292 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
23:46:20.0497 4292 cdfs - ok
23:46:20.0560 4292 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
23:46:20.0575 4292 cdrom - ok
23:46:20.0622 4292 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
23:46:20.0622 4292 CertPropSvc - ok
23:46:20.0653 4292 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
23:46:20.0669 4292 circlass - ok
23:46:20.0747 4292 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
23:46:20.0747 4292 CLFS - ok
23:46:20.0840 4292 CLHNService (5ca9b1062c0c3e3ae19c23ad9d8a5048) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
23:46:20.0856 4292 CLHNService - ok
23:46:20.0950 4292 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:46:20.0950 4292 clr_optimization_v2.0.50727_32 - ok
23:46:21.0043 4292 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:46:21.0059 4292 clr_optimization_v4.0.30319_32 - ok
23:46:21.0152 4292 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
23:46:21.0152 4292 CmBatt - ok
23:46:21.0199 4292 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
23:46:21.0199 4292 cmdide - ok
23:46:21.0215 4292 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
23:46:21.0230 4292 Compbatt - ok
23:46:21.0230 4292 COMSysApp - ok
23:46:21.0262 4292 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
23:46:21.0262 4292 crcdisk - ok
23:46:21.0293 4292 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
23:46:21.0293 4292 Crusoe - ok
23:46:21.0324 4292 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
23:46:21.0340 4292 CryptSvc - ok
23:46:21.0402 4292 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
23:46:21.0418 4292 DcomLaunch - ok
23:46:21.0464 4292 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
23:46:21.0464 4292 DfsC - ok
23:46:21.0574 4292 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
23:46:21.0605 4292 DFSR - ok
23:46:21.0683 4292 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
23:46:21.0683 4292 Dhcp - ok
23:46:21.0776 4292 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
23:46:21.0776 4292 disk - ok
23:46:21.0823 4292 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
23:46:21.0823 4292 DKbFltr - ok
23:46:21.0870 4292 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
23:46:21.0870 4292 Dnscache - ok
23:46:21.0917 4292 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
23:46:21.0917 4292 dot3svc - ok
23:46:21.0964 4292 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
23:46:21.0964 4292 DPS - ok
23:46:21.0995 4292 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
23:46:21.0995 4292 drmkaud - ok
23:46:22.0073 4292 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
23:46:22.0088 4292 DXGKrnl - ok
23:46:22.0135 4292 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
23:46:22.0135 4292 E1G60 - ok
23:46:22.0198 4292 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
23:46:22.0198 4292 EapHost - ok
23:46:22.0260 4292 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
23:46:22.0260 4292 Ecache - ok
23:46:22.0385 4292 eDataSecurity Service (b7dc2580425225c320ceda78de55a3d0) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
23:46:22.0400 4292 eDataSecurity Service - ok
23:46:22.0432 4292 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
23:46:22.0447 4292 ehRecvr - ok
23:46:22.0463 4292 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
23:46:22.0478 4292 ehSched - ok
23:46:22.0478 4292 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
23:46:22.0478 4292 ehstart - ok
23:46:22.0572 4292 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
23:46:22.0588 4292 elxstor - ok
23:46:22.0666 4292 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
23:46:22.0666 4292 EMDMgmt - ok
23:46:22.0712 4292 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
23:46:22.0712 4292 ErrDev - ok
23:46:22.0790 4292 ETService (a51fd9df23720485991f56741bbefcfb) C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
23:46:22.0790 4292 ETService - ok
23:46:22.0868 4292 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
23:46:22.0868 4292 EventSystem - ok
23:46:22.0931 4292 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
23:46:22.0931 4292 exfat - ok
23:46:22.0978 4292 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
23:46:22.0978 4292 fastfat - ok
23:46:23.0024 4292 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
23:46:23.0024 4292 fdc - ok
23:46:23.0056 4292 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
23:46:23.0056 4292 fdPHost - ok
23:46:23.0087 4292 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
23:46:23.0087 4292 FDResPub - ok
23:46:23.0118 4292 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
23:46:23.0118 4292 FileInfo - ok
23:46:23.0149 4292 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
23:46:23.0149 4292 Filetrace - ok
23:46:23.0180 4292 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
23:46:23.0180 4292 flpydisk - ok
23:46:23.0243 4292 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
23:46:23.0243 4292 FltMgr - ok
23:46:23.0352 4292 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
23:46:23.0368 4292 FontCache - ok
23:46:23.0461 4292 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:46:23.0461 4292 FontCache3.0.0.0 - ok
23:46:23.0539 4292 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
23:46:23.0539 4292 Fs_Rec - ok
23:46:23.0570 4292 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
23:46:23.0586 4292 gagp30kx - ok
23:46:23.0633 4292 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:46:23.0633 4292 GEARAspiWDM - ok
23:46:23.0695 4292 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
23:46:23.0711 4292 gpsvc - ok
23:46:23.0758 4292 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
23:46:23.0758 4292 HdAudAddService - ok
23:46:23.0820 4292 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:46:23.0836 4292 HDAudBus - ok
23:46:23.0867 4292 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
23:46:23.0867 4292 HidBth - ok
23:46:23.0882 4292 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
23:46:23.0898 4292 HidIr - ok
23:46:23.0945 4292 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
23:46:23.0960 4292 hidserv - ok
23:46:24.0007 4292 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
23:46:24.0007 4292 HidUsb - ok
23:46:24.0038 4292 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
23:46:24.0038 4292 hkmsvc - ok
23:46:24.0070 4292 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
23:46:24.0070 4292 HpCISSs - ok
23:46:24.0132 4292 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
23:46:24.0132 4292 HTTP - ok
23:46:24.0148 4292 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
23:46:24.0148 4292 i2omp - ok
23:46:24.0210 4292 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
23:46:24.0210 4292 i8042prt - ok
23:46:24.0288 4292 IAANTMON (cb686f44bf955ea02520710a56874fa4) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:46:24.0304 4292 IAANTMON - ok
23:46:24.0335 4292 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
23:46:24.0350 4292 iaStor - ok
23:46:24.0366 4292 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
23:46:24.0382 4292 iaStorV - ok
23:46:24.0475 4292 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:46:24.0491 4292 idsvc - ok
23:46:24.0662 4292 IGBASVC (60a52c8e2e25c62ec8359c28a4af6e25) C:\Program Files\Acer\Acer Bio Protection\BASVC.exe
23:46:24.0725 4292 IGBASVC - ok
23:46:24.0818 4292 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
23:46:24.0818 4292 iirsp - ok
23:46:24.0896 4292 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
23:46:24.0896 4292 IKEEXT - ok
23:46:24.0928 4292 int15 (4d8d5b1c895ea0f2a721b98a7ce198f1) C:\Windows\system32\drivers\int15.sys
23:46:24.0928 4292 int15 - ok
23:46:25.0052 4292 IntcAzAudAddService (3cfa12fefea751dae7b8133a6ef3c0d9) C:\Windows\system32\drivers\RTKVHDA.sys
23:46:25.0084 4292 IntcAzAudAddService - ok
23:46:25.0130 4292 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
23:46:25.0130 4292 intelide - ok
23:46:25.0162 4292 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
23:46:25.0162 4292 intelppm - ok
23:46:25.0208 4292 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
23:46:25.0224 4292 IPBusEnum - ok
23:46:25.0240 4292 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:46:25.0255 4292 IpFilterDriver - ok
23:46:25.0302 4292 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
23:46:25.0302 4292 iphlpsvc - ok
23:46:25.0318 4292 IpInIp - ok
23:46:25.0349 4292 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
23:46:25.0364 4292 IPMIDRV - ok
23:46:25.0380 4292 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
23:46:25.0380 4292 IPNAT - ok
23:46:25.0474 4292 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
23:46:25.0489 4292 iPod Service - ok
23:46:25.0505 4292 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
23:46:25.0505 4292 IRENUM - ok
23:46:25.0536 4292 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
23:46:25.0536 4292 isapnp - ok
23:46:25.0614 4292 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
23:46:25.0614 4292 iScsiPrt - ok
23:46:25.0661 4292 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
23:46:25.0661 4292 iteatapi - ok
23:46:25.0692 4292 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
23:46:25.0692 4292 iteraid - ok
23:46:25.0739 4292 JMCR (858c550ebbd243826a2193262c1b54a3) C:\Windows\system32\DRIVERS\jmcr.sys
23:46:25.0739 4292 JMCR - ok
23:46:25.0754 4292 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
23:46:25.0754 4292 kbdclass - ok
23:46:25.0801 4292 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
23:46:25.0801 4292 kbdhid - ok
23:46:25.0832 4292 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
23:46:25.0848 4292 KeyIso - ok
23:46:25.0895 4292 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
23:46:25.0895 4292 KSecDD - ok
23:46:25.0957 4292 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
23:46:25.0973 4292 KtmRm - ok
23:46:26.0020 4292 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
23:46:26.0035 4292 LanmanServer - ok
23:46:26.0082 4292 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
23:46:26.0098 4292 LanmanWorkstation - ok
23:46:26.0176 4292 LightScribeService (793ff718477345cd5d232c50bed1e452) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
23:46:26.0176 4292 LightScribeService - ok
23:46:26.0222 4292 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
23:46:26.0222 4292 lltdio - ok
23:46:26.0269 4292 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
23:46:26.0285 4292 lltdsvc - ok
23:46:26.0300 4292 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
23:46:26.0300 4292 lmhosts - ok
23:46:26.0332 4292 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
23:46:26.0347 4292 LSI_FC - ok
23:46:26.0378 4292 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
23:46:26.0378 4292 LSI_SAS - ok
23:46:26.0410 4292 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
23:46:26.0425 4292 LSI_SCSI - ok
23:46:26.0456 4292 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
23:46:26.0456 4292 luafv - ok
23:46:26.0472 4292 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
23:46:26.0472 4292 Mcx2Svc - ok
23:46:26.0519 4292 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
23:46:26.0519 4292 megasas - ok
23:46:26.0566 4292 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
23:46:26.0566 4292 MegaSR - ok
23:46:26.0597 4292 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
23:46:26.0597 4292 MMCSS - ok
23:46:26.0644 4292 MobilityService - ok
23:46:26.0675 4292 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
23:46:26.0675 4292 Modem - ok
23:46:26.0706 4292 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
23:46:26.0706 4292 monitor - ok
23:46:26.0722 4292 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
23:46:26.0722 4292 mouclass - ok
23:46:26.0753 4292 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
23:46:26.0753 4292 mouhid - ok
23:46:26.0784 4292 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
23:46:26.0784 4292 MountMgr - ok
23:46:26.0831 4292 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
23:46:26.0831 4292 mpio - ok
23:46:26.0862 4292 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
23:46:26.0862 4292 mpsdrv - ok
23:46:26.0909 4292 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
23:46:26.0909 4292 Mraid35x - ok
23:46:26.0956 4292 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
23:46:26.0956 4292 MRxDAV - ok
23:46:27.0018 4292 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:46:27.0018 4292 mrxsmb - ok
23:46:27.0080 4292 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:46:27.0080 4292 mrxsmb10 - ok
23:46:27.0096 4292 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:46:27.0096 4292 mrxsmb20 - ok
23:46:27.0143 4292 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
23:46:27.0143 4292 msahci - ok
23:46:27.0174 4292 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
23:46:27.0174 4292 msdsm - ok
23:46:27.0221 4292 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
23:46:27.0221 4292 MSDTC - ok
23:46:27.0268 4292 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
23:46:27.0268 4292 Msfs - ok
23:46:27.0299 4292 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
23:46:27.0299 4292 msisadrv - ok
23:46:27.0346 4292 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
23:46:27.0361 4292 MSiSCSI - ok
23:46:27.0377 4292 msiserver - ok
23:46:27.0408 4292 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
23:46:27.0424 4292 MSKSSRV - ok
23:46:27.0455 4292 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
23:46:27.0455 4292 MSPCLOCK - ok
23:46:27.0502 4292 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
23:46:27.0502 4292 MSPQM - ok
23:46:27.0548 4292 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
23:46:27.0548 4292 MsRPC - ok
23:46:27.0580 4292 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
23:46:27.0580 4292 mssmbios - ok
23:46:27.0611 4292 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
23:46:27.0611 4292 MSTEE - ok
23:46:27.0658 4292 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
23:46:27.0658 4292 Mup - ok
23:46:27.0720 4292 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
23:46:27.0736 4292 napagent - ok
23:46:27.0798 4292 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
23:46:27.0798 4292 NativeWifiP - ok
23:46:27.0860 4292 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
23:46:27.0876 4292 NDIS - ok
23:46:27.0907 4292 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
23:46:27.0907 4292 NdisTapi - ok
23:46:27.0938 4292 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
23:46:27.0938 4292 Ndisuio - ok
23:46:27.0985 4292 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:46:27.0985 4292 NdisWan - ok
23:46:28.0001 4292 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
23:46:28.0016 4292 NDProxy - ok
23:46:28.0032 4292 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
23:46:28.0032 4292 NetBIOS - ok
23:46:28.0094 4292 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
23:46:28.0094 4292 netbt - ok
23:46:28.0126 4292 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
23:46:28.0141 4292 Netlogon - ok
23:46:28.0204 4292 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
23:46:28.0219 4292 Netman - ok
23:46:28.0250 4292 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
23:46:28.0250 4292 netprofm - ok
23:46:28.0344 4292 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:46:28.0344 4292 NetTcpPortSharing - ok
23:46:28.0516 4292 NETw5v32 (e559ea9138c77b5d1fda8c558764a25f) C:\Windows\system32\DRIVERS\NETw5v32.sys
23:46:28.0562 4292 NETw5v32 - ok
23:46:28.0594 4292 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
23:46:28.0594 4292 nfrd960 - ok
23:46:28.0640 4292 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
23:46:28.0656 4292 NlaSvc - ok
23:46:28.0703 4292 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
23:46:28.0703 4292 Npfs - ok
23:46:28.0734 4292 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
23:46:28.0750 4292 nsi - ok
23:46:28.0765 4292 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
23:46:28.0765 4292 nsiproxy - ok
23:46:28.0843 4292 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
23:46:28.0859 4292 Ntfs - ok
23:46:28.0921 4292 NTIBackupSvc (cb76f68ba0d57c5d25b538981b1c611c) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
23:46:28.0921 4292 NTIBackupSvc - ok
23:46:28.0984 4292 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
23:46:28.0984 4292 NTIDrvr - ok
23:46:29.0062 4292 NTIPPKernel (547bfa3591c70674b0bfc99354ab78b3) C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys
23:46:29.0062 4292 NTIPPKernel - ok
23:46:29.0108 4292 NTISchedulerSvc (df1c10a75df7e50195fc417f88a33227) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
23:46:29.0108 4292 NTISchedulerSvc - ok
23:46:29.0233 4292 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
23:46:29.0233 4292 ntrigdigi - ok
23:46:29.0280 4292 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
23:46:29.0280 4292 Null - ok
23:46:29.0311 4292 NVHDA (f972dc046c374a9e02f2dfbe74ebb203) C:\Windows\system32\drivers\nvhda32v.sys
23:46:29.0311 4292 NVHDA - ok
23:46:29.0576 4292 nvlddmkm (0a19680ca54d262534f8a2f4cf79e271) C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:46:29.0686 4292 nvlddmkm - ok
23:46:29.0732 4292 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
23:46:29.0748 4292 nvraid - ok
23:46:29.0779 4292 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
23:46:29.0779 4292 nvstor - ok
23:46:29.0810 4292 nvsvc (342fcbf0b293dbec54b055418df1ee7e) C:\Windows\system32\nvvsvc.exe
23:46:29.0810 4292 nvsvc - ok
23:46:29.0842 4292 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
23:46:29.0857 4292 nv_agp - ok
23:46:29.0857 4292 NwlnkFlt - ok
23:46:29.0888 4292 NwlnkFwd - ok
23:46:30.0044 4292 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:46:30.0060 4292 odserv - ok
23:46:30.0169 4292 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
23:46:30.0169 4292 ohci1394 - ok
23:46:30.0310 4292 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:46:30.0310 4292 ose - ok
23:46:30.0388 4292 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
23:46:30.0403 4292 p2pimsvc - ok
23:46:30.0450 4292 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
23:46:30.0466 4292 p2psvc - ok
23:46:30.0512 4292 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
23:46:30.0512 4292 Parport - ok
23:46:30.0559 4292 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
23:46:30.0559 4292 partmgr - ok
23:46:30.0590 4292 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
23:46:30.0590 4292 Parvdm - ok
23:46:30.0637 4292 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
23:46:30.0637 4292 PcaSvc - ok
23:46:30.0684 4292 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
23:46:30.0684 4292 pci - ok
23:46:30.0715 4292 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
23:46:30.0715 4292 pciide - ok
23:46:30.0762 4292 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
23:46:30.0762 4292 pcmcia - ok
23:46:30.0840 4292 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
23:46:30.0856 4292 PEAUTH - ok
23:46:30.0965 4292 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
23:46:30.0996 4292 pla - ok
23:46:31.0043 4292 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
23:46:31.0058 4292 PlugPlay - ok
23:46:31.0121 4292 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
23:46:31.0136 4292 PNRPAutoReg - ok
23:46:31.0168 4292 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
23:46:31.0183 4292 PNRPsvc - ok
23:46:31.0230 4292 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
23:46:31.0246 4292 PolicyAgent - ok
23:46:31.0355 4292 postgresql-8.4 - ok
23:46:31.0417 4292 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
23:46:31.0417 4292 PptpMiniport - ok
23:46:31.0448 4292 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
23:46:31.0448 4292 Processor - ok
23:46:31.0511 4292 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
23:46:31.0511 4292 ProfSvc - ok
23:46:31.0542 4292 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
23:46:31.0542 4292 ProtectedStorage - ok
23:46:31.0604 4292 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
23:46:31.0604 4292 PSched - ok
23:46:31.0636 4292 PSDFilter (ab94285ff6c6bc5433407d8d182a4bb4) C:\Windows\system32\DRIVERS\psdfilter.sys
23:46:31.0636 4292 PSDFilter - ok
23:46:31.0667 4292 PSDNServ (2aaf9a5d7a63d26bfaea853c5f2292bc) C:\Windows\system32\DRIVERS\PSDNServ.sys
23:46:31.0667 4292 PSDNServ - ok
23:46:31.0698 4292 psdvdisk (0eb8cec99855beae5b0d02c2302619ef) C:\Windows\system32\DRIVERS\PSDVdisk.sys
23:46:31.0698 4292 psdvdisk - ok
23:46:31.0792 4292 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
23:46:31.0823 4292 ql2300 - ok
23:46:31.0854 4292 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
23:46:31.0854 4292 ql40xx - ok
23:46:31.0901 4292 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
23:46:31.0916 4292 QWAVE - ok
23:46:31.0948 4292 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
23:46:31.0948 4292 QWAVEdrv - ok
23:46:32.0010 4292 RADAR - ok
23:46:32.0026 4292 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
23:46:32.0041 4292 RasAcd - ok
23:46:32.0072 4292 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
23:46:32.0088 4292 RasAuto - ok
23:46:32.0104 4292 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:46:32.0104 4292 Rasl2tp - ok
23:46:32.0166 4292 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
23:46:32.0182 4292 RasMan - ok
23:46:32.0228 4292 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
23:46:32.0228 4292 RasPppoe - ok
23:46:32.0275 4292 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
23:46:32.0291 4292 RasSstp - ok
23:46:32.0353 4292 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
23:46:32.0353 4292 rdbss - ok
23:46:32.0400 4292 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:46:32.0400 4292 RDPCDD - ok
23:46:32.0447 4292 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
23:46:32.0447 4292 rdpdr - ok
23:46:32.0462 4292 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
23:46:32.0462 4292 RDPENCDD - ok
23:46:32.0525 4292 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
23:46:32.0525 4292 RDPWD - ok
23:46:32.0572 4292 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
23:46:32.0572 4292 RemoteAccess - ok
23:46:32.0618 4292 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
23:46:32.0634 4292 RemoteRegistry - ok
23:46:32.0728 4292 RichVideo (17e0bef5ca5c9ce52cc8082ac6ebc449) C:\Program Files\Cyberlink\Shared files\RichVideo.exe
23:46:32.0743 4292 RichVideo - ok
23:46:32.0774 4292 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
23:46:32.0774 4292 RpcLocator - ok
23:46:32.0837 4292 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
23:46:32.0852 4292 RpcSs - ok
23:46:32.0915 4292 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
23:46:32.0915 4292 rspndr - ok
23:46:32.0962 4292 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
23:46:32.0962 4292 SamSs - ok
23:46:33.0008 4292 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
23:46:33.0024 4292 sbp2port - ok
23:46:33.0071 4292 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
23:46:33.0071 4292 SCardSvr - ok
23:46:33.0149 4292 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
23:46:33.0164 4292 Schedule - ok
23:46:33.0196 4292 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
23:46:33.0211 4292 SCPolicySvc - ok
23:46:33.0274 4292 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
23:46:33.0274 4292 sdbus - ok
23:46:33.0336 4292 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
23:46:33.0336 4292 SDRSVC - ok
23:46:33.0367 4292 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:46:33.0367 4292 secdrv - ok
23:46:33.0383 4292 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
23:46:33.0398 4292 seclogon - ok
23:46:33.0414 4292 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
23:46:33.0430 4292 SENS - ok
23:46:33.0461 4292 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
23:46:33.0461 4292 Serenum - ok
23:46:33.0492 4292 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
23:46:33.0492 4292 Serial - ok
23:46:33.0523 4292 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
23:46:33.0523 4292 sermouse - ok
23:46:33.0570 4292 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
23:46:33.0586 4292 SessionEnv - ok
23:46:33.0601 4292 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
23:46:33.0601 4292 sffdisk - ok
23:46:33.0632 4292 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
23:46:33.0632 4292 sffp_mmc - ok
23:46:33.0664 4292 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
23:46:33.0664 4292 sffp_sd - ok
23:46:33.0695 4292 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
23:46:33.0695 4292 sfloppy - ok
23:46:33.0742 4292 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
23:46:33.0742 4292 SharedAccess - ok
23:46:33.0820 4292 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
23:46:33.0820 4292 ShellHWDetection - ok
23:46:33.0866 4292 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
23:46:33.0866 4292 sisagp - ok
23:46:33.0898 4292 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
23:46:33.0898 4292 SiSRaid2 - ok
23:46:33.0929 4292 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
23:46:33.0929 4292 SiSRaid4 - ok
23:46:34.0085 4292 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
23:46:34.0147 4292 slsvc - ok
23:46:34.0210 4292 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
23:46:34.0210 4292 SLUINotify - ok
23:46:34.0256 4292 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
23:46:34.0256 4292 Smb - ok
23:46:34.0319 4292 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
23:46:34.0334 4292 SNMPTRAP - ok
23:46:34.0350 4292 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
23:46:34.0350 4292 spldr - ok
23:46:34.0397 4292 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
23:46:34.0412 4292 Spooler - ok
23:46:34.0506 4292 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
23:46:34.0506 4292 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
23:46:34.0506 4292 sptd ( LockedFile.Multi.Generic ) - warning
23:46:34.0506 4292 sptd - detected LockedFile.Multi.Generic (1)
23:46:34.0553 4292 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
23:46:34.0568 4292 srv - ok
23:46:34.0584 4292 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
23:46:34.0600 4292 srv2 - ok
23:46:34.0615 4292 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
23:46:34.0631 4292 srvnet - ok
23:46:34.0662 4292 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
23:46:34.0678 4292 SSDPSRV - ok
23:46:34.0740 4292 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
23:46:34.0740 4292 ssmdrv - ok
23:46:34.0771 4292 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
23:46:34.0787 4292 SstpSvc - ok
23:46:34.0865 4292 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
23:46:34.0880 4292 stisvc - ok
23:46:34.0912 4292 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
23:46:34.0927 4292 swenum - ok
23:46:34.0974 4292 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
23:46:34.0990 4292 swprv - ok
23:46:35.0021 4292 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
23:46:35.0021 4292 Symc8xx - ok
23:46:35.0052 4292 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
23:46:35.0052 4292 Sym_hi - ok
23:46:35.0099 4292 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
23:46:35.0099 4292 Sym_u3 - ok
23:46:35.0146 4292 SynTP (bf7aa84d5af0faa0978c840e63b17dbf) C:\Windows\system32\DRIVERS\SynTP.sys
23:46:35.0161 4292 SynTP - ok
23:46:35.0224 4292 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
23:46:35.0239 4292 SysMain - ok
23:46:35.0270 4292 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
23:46:35.0286 4292 TabletInputService - ok
23:46:35.0333 4292 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
23:46:35.0348 4292 TapiSrv - ok
23:46:35.0380 4292 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
23:46:35.0395 4292 TBS - ok
23:46:35.0504 4292 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
23:46:35.0520 4292 Tcpip - ok
23:46:35.0582 4292 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
23:46:35.0598 4292 Tcpip6 - ok
23:46:35.0645 4292 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
23:46:35.0645 4292 tcpipreg - ok
23:46:35.0676 4292 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
23:46:35.0692 4292 TDPIPE - ok
23:46:35.0723 4292 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
23:46:35.0723 4292 TDTCP - ok
23:46:35.0785 4292 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
23:46:35.0785 4292 tdx - ok
23:46:35.0816 4292 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
23:46:35.0816 4292 TermDD - ok
23:46:35.0879 4292 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
23:46:35.0879 4292 TermService - ok
23:46:35.0941 4292 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
23:46:35.0957 4292 Themes - ok
23:46:35.0988 4292 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
23:46:35.0988 4292 THREADORDER - ok
23:46:36.0035 4292 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
23:46:36.0035 4292 TrkWks - ok
23:46:36.0082 4292 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
23:46:36.0082 4292 TrustedInstaller - ok
23:46:36.0160 4292 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:46:36.0160 4292 tssecsrv - ok
23:46:36.0206 4292 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
23:46:36.0206 4292 tunmp - ok
23:46:36.0222 4292 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
23:46:36.0222 4292 tunnel - ok
23:46:36.0253 4292 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
23:46:36.0253 4292 uagp35 - ok
23:46:36.0316 4292 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
23:46:36.0316 4292 UBHelper - ok
23:46:36.0347 4292 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
23:46:36.0347 4292 udfs - ok
23:46:36.0409 4292 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
23:46:36.0425 4292 UI0Detect - ok
23:46:36.0456 4292 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
23:46:36.0456 4292 uliagpkx - ok
23:46:36.0487 4292 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
23:46:36.0487 4292 uliahci - ok
23:46:36.0518 4292 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
23:46:36.0534 4292 UlSata - ok
23:46:36.0565 4292 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
23:46:36.0565 4292 ulsata2 - ok
23:46:36.0581 4292 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
23:46:36.0581 4292 umbus - ok
23:46:36.0628 4292 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
23:46:36.0643 4292 upnphost - ok
23:46:36.0737 4292 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
23:46:36.0737 4292 USBAAPL - ok
23:46:36.0784 4292 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
23:46:36.0784 4292 usbccgp - ok
23:46:36.0846 4292 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
23:46:36.0846 4292 usbcir - ok
23:46:36.0893 4292 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
23:46:36.0893 4292 usbehci - ok
23:46:36.0955 4292 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
23:46:36.0955 4292 usbhub - ok
23:46:36.0986 4292 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
23:46:36.0986 4292 usbohci - ok
23:46:37.0033 4292 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
23:46:37.0033 4292 usbprint - ok
23:46:37.0096 4292 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
23:46:37.0096 4292 usbscan - ok
23:46:37.0127 4292 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:46:37.0142 4292 USBSTOR - ok
23:46:37.0174 4292 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
23:46:37.0174 4292 usbuhci - ok
23:46:37.0236 4292 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
23:46:37.0236 4292 usbvideo - ok
23:46:37.0283 4292 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
23:46:37.0298 4292 UxSms - ok
23:46:37.0361 4292 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
23:46:37.0376 4292 vds - ok
23:46:37.0392 4292 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
23:46:37.0392 4292 vga - ok
23:46:37.0423 4292 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
23:46:37.0423 4292 VgaSave - ok
23:46:37.0454 4292 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
23:46:37.0454 4292 viaagp - ok
23:46:37.0486 4292 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
23:46:37.0486 4292 ViaC7 - ok
23:46:37.0517 4292 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
23:46:37.0517 4292 viaide - ok
23:46:37.0564 4292 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
23:46:37.0564 4292 volmgr - ok
23:46:37.0610 4292 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
23:46:37.0626 4292 volmgrx - ok
23:46:37.0657 4292 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
23:46:37.0673 4292 volsnap - ok
23:46:37.0704 4292 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
23:46:37.0720 4292 vsmraid - ok
23:46:37.0798 4292 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
23:46:37.0813 4292 VSS - ok
23:46:37.0876 4292 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
23:46:37.0876 4292 W32Time - ok
23:46:37.0922 4292 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
23:46:37.0922 4292 WacomPen - ok
23:46:37.0954 4292 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:46:37.0954 4292 Wanarp - ok
23:46:37.0969 4292 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
23:46:37.0969 4292 Wanarpv6 - ok
23:46:38.0000 4292 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
23:46:38.0016 4292 wcncsvc - ok
23:46:38.0063 4292 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
23:46:38.0063 4292 WcsPlugInService - ok
23:46:38.0094 4292 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
23:46:38.0094 4292 Wd - ok
23:46:38.0141 4292 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
23:46:38.0156 4292 Wdf01000 - ok
23:46:38.0188 4292 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
23:46:38.0188 4292 WdiServiceHost - ok
23:46:38.0203 4292 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
23:46:38.0219 4292 WdiSystemHost - ok
23:46:38.0266 4292 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
23:46:38.0281 4292 WebClient - ok
23:46:38.0328 4292 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
23:46:38.0344 4292 Wecsvc - ok
23:46:38.0375 4292 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
23:46:38.0390 4292 wercplsupport - ok
23:46:38.0437 4292 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
23:46:38.0453 4292 WerSvc - ok
23:46:38.0515 4292 winbondcir (3fa87d56769838aac82fafc3e78fc732) C:\Windows\system32\DRIVERS\winbondcir.sys
23:46:38.0515 4292 winbondcir - ok
23:46:38.0609 4292 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
23:46:38.0609 4292 WinDefend - ok
23:46:38.0624 4292 WinHttpAutoProxySvc - ok
23:46:38.0702 4292 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
23:46:38.0702 4292 Winmgmt - ok
23:46:38.0796 4292 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
23:46:38.0812 4292 WinRM - ok
23:46:38.0890 4292 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
23:46:38.0905 4292 Wlansvc - ok
23:46:38.0968 4292 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
23:46:38.0968 4292 WmiAcpi - ok
23:46:39.0046 4292 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
23:46:39.0046 4292 wmiApSrv - ok
23:46:39.0155 4292 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
23:46:39.0155 4292 WMPNetworkSvc - ok
23:46:39.0186 4292 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
23:46:39.0202 4292 WPCSvc - ok
23:46:39.0248 4292 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
23:46:39.0264 4292 WPDBusEnum - ok
23:46:39.0326 4292 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
23:46:39.0326 4292 WpdUsb - ok
23:46:39.0451 4292 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:46:39.0467 4292 WPFFontCache_v0400 - ok
23:46:39.0529 4292 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
23:46:39.0529 4292 ws2ifsl - ok
23:46:39.0592 4292 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
23:46:39.0592 4292 wscsvc - ok
23:46:39.0607 4292 WSearch - ok
23:46:39.0732 4292 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
23:46:39.0763 4292 wuauserv - ok
23:46:39.0826 4292 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:46:39.0841 4292 WUDFRd - ok
23:46:39.0872 4292 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
23:46:39.0872 4292 wudfsvc - ok
23:46:39.0982 4292 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} (4d840c6af3c020ed3a35efba9025cf4a) C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl
23:46:39.0982 4292 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok
23:46:40.0013 4292 MBR (0x1B8) (7ba4c7ea1ef33a92f5f01be63edacb6a) \Device\Harddisk0\DR0
23:46:46.0440 4292 \Device\Harddisk0\DR0 - ok
23:46:46.0487 4292 Boot (0x1200) (652dd192a7caf13e954ea2c55ea8f2f1) \Device\Harddisk0\DR0\Partition0
23:46:46.0487 4292 \Device\Harddisk0\DR0\Partition0 - ok
23:46:46.0502 4292 Boot (0x1200) (7ebd0a60284dc66377a0a9f12fccef1e) \Device\Harddisk0\DR0\Partition1
23:46:46.0518 4292 \Device\Harddisk0\DR0\Partition1 - ok
23:46:46.0518 4292 ============================================================
23:46:46.0518 4292 Scan finished
23:46:46.0518 4292 ============================================================
23:46:46.0534 3676 Detected object count: 1
23:46:46.0534 3676 Actual detected object count: 1
23:46:51.0151 3676 sptd ( LockedFile.Multi.Generic ) - skipped by user
23:46:51.0151 3676 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

[nardino]

Bonsoir,
Envoie le rapport Combofix que tu trouveras dans C:\ComboFix.txt
@+

[Sookie]

Bonsoir.

Comme dit précédement, ComboFix n'a pas pu faire de rapport pour je ne sais quelle raison.

Si ça peut aider il me met aussi juste après la phrase "Combofix s'apprête à démarrer":

Failed to get dat for 'EnableLUA'

[nardino]

Bonsoir
Tu l’exécutes en tant qu'administrateur à partir du bureau ?
@+

[Sookie]

Oui Oui, je fais tout comme expliqué mais il n'y a que les messages que j'ai posté précédemment qui s'affiche, et aucun rapport...

[nardino]

Bonjour,
Tu as bien regardé dans C ?
@+