Se connecter / S'enregistrer
Votre question

problème Service.exe virus

Tags :
  • Google Chrome
  • Algorithme
  • services.exe
  • Windows
  • zero access
  • Trojan
  • zaccess
  • Virus
  • sirefef
  • Serveur
  • Sécurité
Dernière réponse : dans Sécurité et virus
20 Juin 2012 12:43:51

Bonjour
J'ai un problème qui a déjà été traité dans ce forum!
Mon antivirus detecte un virus dans C:/Windows/etc/service.exe
Je ne peu plus utilisé google chrome il me marque :
"Le certificat de sécurité du site a été signé avec un algorithme de signature faible. Vous avez tenté d'accéder à www.google.com, mais le serveur a présenté un certificat signé à l'aide d'un algorithme de signature faible. Il est possible que le certificat fourni par le serveur ait été falsifié. Il se peut donc que le serveur ne soit pas celui auquel vous souhaitez accéder, et qu'il s'agisse d'une tentative de piratage.
Impossible de continuer, car l'opérateur du site Web exige une sécurité renforcée pour ce domaine."


Du coup j'utilise explorer pour l'instant. Il y a des pop-ip de sites bizarre souvent, et mon ordi rame plus souvent.

J'ai regarder un peu d'autres problème similaires et j'ai téléchargé tous les logiciels pour pouvoir suprimé le virus. Donc voici le log créé par hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:39:21, on 20/06/2012
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16446)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Users\Agence Pschhh\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\AVG Secure Search\vprot.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 255.255.255.255 broadcasthost
O1 - Hosts: ::1 localhost
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngin.dll
O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.7\AVG Secure Search_toolbar.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\prxConduitEngin.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.7\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Agence Pschhh\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Startup: Dropbox.lnk = C:\Users\Agence Pschhh\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Ajouter à un fichier PDF existant - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convertir au format Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/3DVIA_p...
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\11.1.0\ViProtocol.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files (x86)\ewido anti-malware\ewidoctrl.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: mental ray 3.8 Satellite for Autodesk 3ds Max 2011 32-bit 32-bit (mi-raysat_3dsmax2011_32) - Unknown owner - C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
O23 - Service: mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit (mi-raysat_3dsmax2011_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater11.1.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.1.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15552 bytes


Par ailleur j'ai netoyer mon ordi avec : cc cleaner et ewido anti-malware. Il a trouver 132 fichier infecter qui à réussi a nétoyer.
J'ai fai un scan avec AVG antivirus, il a trouver 2 fichier infecter et il les à suprimés.


J'ai toujour le problème avec le fichier service.exe par contre.

Je suis sur windows 7 64 bit.

Merci beaucoup,

Daniel

Autres pages sur : probleme service exe virus

20 Juin 2012 16:46:48

Bonjour
désinstalle spybot et ewido anti-malware (obsolètes)


Tu ferais bien de lire: Stop la pub ! pour éviter que tes soucis ne se reproduisent...
http://forum.security-x.fr/securite-generale/stop-la-pu...




  • Rends-toi sur cette page AdwCleaner de Xplode , clique sur Télécharger et enregistre le fichier sur ton Bureau
  • Double-clique sur l'icône AdwCleaner0.exe pour lancer l'installation
    /!\ Sous Vista et Windows 7, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
  • Sur le menu principal, clique sur Recherche et patiente le temps de l'analyse
  • A la fin du scan, un rapport AdwCleaner[R].txt s'ouvre. Poste le rapport dans ta prochaine réponse
    Le rapport se trouve sous C:\AdwCleaner[R].txt


    Tutoriel: AdwCleaner (Xplode)


    25 Juin 2012 10:22:48

    Bonjour, désolé pour la réponse tardive.

    Voici le rapport avec AdwCleaner

    # AdwCleaner v1.609 - Rapport créé le 25/06/2012 à 10:21:23
    # Mis à jour le 10/06/2012 par Xplode
    # Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Nom d'utilisateur : Agence Pschhh - AGENCEPSCHHH
    # Exécuté depuis : C:\Users\Agence Pschhh\Downloads\adwcleaner.exe
    # Option [Recherche]


    ***** [Services] *****

    Présent : vToolbarUpdater11.1.0

    ***** [Fichiers / Dossiers] *****

    Dossier Présent : C:\Users\Agence Pschhh\AppData\Local\AVG Secure Search
    Dossier Présent : C:\Users\Agence Pschhh\AppData\Local\Conduit
    Dossier Présent : C:\Users\Agence Pschhh\AppData\LocalLow\AVG Secure Search
    Dossier Présent : C:\Users\Agence Pschhh\AppData\LocalLow\Conduit
    Dossier Présent : C:\Users\Agence Pschhh\AppData\LocalLow\ConduitEngine
    Dossier Présent : C:\Users\Agence Pschhh\AppData\LocalLow\PriceGong
    Dossier Présent : C:\Users\Agence Pschhh\AppData\LocalLow\uTorrentBar_FR
    Dossier Présent : C:\ProgramData\AVG Secure Search
    Dossier Présent : C:\Program Files (x86)\AVG Secure Search
    Dossier Présent : C:\Program Files (x86)\Conduit
    Dossier Présent : C:\Program Files (x86)\ConduitEngine
    Dossier Présent : C:\Program Files (x86)\Common Files\AVG Secure Search

    ***** [Registre] *****

  • Clé Présente : HKLM\SOFTWARE\Classes\Toolbar.CT2851639
    Clé Présente : HKCU\Software\AVG Secure Search
    Clé Présente : HKCU\Software\IGearSettings
    Clé Présente : HKCU\Software\AppDataLow\Toolbar
    Clé Présente : HKCU\Software\AppDataLow\Software\Conduit
    Clé Présente : HKCU\Software\AppDataLow\Software\conduitEngine
    Clé Présente : HKCU\Software\AppDataLow\Software\PriceGong
    Clé Présente : HKCU\Software\AppDataLow\Software\uTorrentBar_FR
    Clé Présente : HKLM\SOFTWARE\AVG Secure Search
    Clé Présente : HKLM\SOFTWARE\Conduit
    Clé Présente : HKLM\SOFTWARE\conduitEngine
    Clé Présente : HKLM\SOFTWARE\uTorrentBar_FR
    Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
    Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
    Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
    Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
    Clé Présente : HKLM\SOFTWARE\Classes\Conduit.Engine
    Clé Présente : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
    Clé Présente : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
    Clé Présente : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
    Clé Présente : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
    Clé Présente : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
    Clé Présente : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
    Clé Présente : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
    Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
    Clé Présente : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
    Valeur Présente : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
    [x64] Clé Présente : HKCU\Software\AVG Secure Search
    [x64] Clé Présente : HKCU\Software\IGearSettings
    [x64] Clé Présente : HKCU\Software\AppDataLow\Toolbar
    [x64] Clé Présente : HKCU\Software\AppDataLow\Software\Conduit
    [x64] Clé Présente : HKCU\Software\AppDataLow\Software\conduitEngine
    [x64] Clé Présente : HKCU\Software\AppDataLow\Software\PriceGong
    [x64] Clé Présente : HKCU\Software\AppDataLow\Software\uTorrentBar_FR
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\Conduit.Engine
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol

    ***** [Registre - GUID] *****

    Clé Présente : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
    Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
    Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Clé Présente : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
    Clé Présente : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
    Clé Présente : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
    Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
    Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
    Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
    Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
    Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
    Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
    Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
    Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
    Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
    Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]
    Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]
    Valeur Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
    [x64] Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
    [x64] Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
    [x64] Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    [x64] Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
    [x64] Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
    [x64] Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
    [x64] Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
    [x64] Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
    [x64] Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]
    [x64] Valeur Présente : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]

    ***** [Navigateurs] *****

    -\\ Internet Explorer v9.0.8112.16421

    [OK] Le registre ne contient aucune entrée illégitime.

    -\\ Google Chrome v19.0.1084.56

    Fichier : C:\Users\Agence Pschhh\AppData\Local\Google\Chrome\User Data\Default\Preferences

    Présente : "icon_url": "hxxp://isearch.avg.com/favicon.ico",
    Présente : "keyword": "isearch.avg.com",
    Présente : "name": "AVG Secure Search",
    Présente : "search_url": "hxxp://isearch.avg.com/search?cid={172B86F3-C897-46B3-9E77-5431AC7F2A80}&mid=9d[...]

    *************************

    AdwCleaner[R1].txt - [10528 octets] - [25/06/2012 10:21:23]

    ########## EOF - C:\AdwCleaner[R1].txt - [10657 octets] ##########
    Contenus similaires
    25 Juin 2012 21:16:30

    Bonsoir


    • Ferme toutes les applications, y compris ton navigateur
    • Relance AdwCleaner par un double-clique sur l'icône AdwCleaner0.exe.
      /!\ Sous Vista et Windows 7, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
    • Sur le menu principal, clique sur Suppression et patiente le temps de l'analyse
    • A la fin du scan, un rapport AdwCleaner(S).txt s'ouvre. Poste le rapport dans ta prochaine réponse
      Le rapport se trouve sous C:\AdwCleaner(S).txt

      Tutoriel: AdwCleaner (Xplode)


  • <@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**


    26 Juin 2012 10:01:58

    Bonjour,

    J'ai lu maintenant le tutoriel!

    voici le log,

    # AdwCleaner v1.609 - Rapport créé le 26/06/2012 à 09:56:46
    # Mis à jour le 10/06/2012 par Xplode
    # Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Nom d'utilisateur : Agence Pschhh - AGENCEPSCHHH
    # Exécuté depuis : C:\Users\Agence Pschhh\Downloads\adwcleaner.exe
    # Option [Suppression]


    ***** [Services] *****

    Arrêté & Supprimé : vToolbarUpdater11.1.0

    ***** [Fichiers / Dossiers] *****

    Dossier Supprimé : C:\Users\Agence Pschhh\AppData\Local\AVG Secure Search
    Dossier Supprimé : C:\Users\Agence Pschhh\AppData\Local\Conduit
    Dossier Supprimé : C:\Users\Agence Pschhh\AppData\LocalLow\AVG Secure Search
    Dossier Supprimé : C:\Users\Agence Pschhh\AppData\LocalLow\Conduit
    Dossier Supprimé : C:\Users\Agence Pschhh\AppData\LocalLow\ConduitEngine
    Dossier Supprimé : C:\Users\Agence Pschhh\AppData\LocalLow\PriceGong
    Dossier Supprimé : C:\Users\Agence Pschhh\AppData\LocalLow\uTorrentBar_FR
    Dossier Supprimé : C:\ProgramData\AVG Secure Search
    Dossier Supprimé : C:\Program Files (x86)\AVG Secure Search
    Dossier Supprimé : C:\Program Files (x86)\Conduit
    Dossier Supprimé : C:\Program Files (x86)\ConduitEngine
    Dossier Supprimé : C:\Program Files (x86)\Common Files\AVG Secure Search

    ***** [Registre] *****

  • Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2851639
    Clé Supprimée : HKCU\Software\AVG Secure Search
    Clé Supprimée : HKCU\Software\IGearSettings
    Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
    Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
    Clé Supprimée : HKCU\Software\AppDataLow\Software\conduitEngine
    Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
    Clé Supprimée : HKCU\Software\AppDataLow\Software\uTorrentBar_FR
    Clé Supprimée : HKLM\SOFTWARE\AVG Secure Search
    Clé Supprimée : HKLM\SOFTWARE\Conduit
    Clé Supprimée : HKLM\SOFTWARE\conduitEngine
    Clé Supprimée : HKLM\SOFTWARE\uTorrentBar_FR
    Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
    Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
    Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine
    Clé Supprimée : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
    Clé Supprimée : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
    Clé Supprimée : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
    Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
    Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

    ***** [Registre - GUID] *****

    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
    Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]
    Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]
    Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]
    [x64] Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
    [x64] Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
    [x64] Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
    [x64] Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

    ***** [Navigateurs] *****

    -\\ Internet Explorer v9.0.8112.16421

    [OK] Le registre ne contient aucune entrée illégitime.

    -\\ Google Chrome v19.0.1084.56

    Fichier : C:\Users\Agence Pschhh\AppData\Local\Google\Chrome\User Data\Default\Preferences

    Supprimée : "icon_url": "hxxp://isearch.avg.com/favicon.ico",
    Supprimée : "keyword": "isearch.avg.com",
    Supprimée : "name": "AVG Secure Search",
    Supprimée : "search_url": "hxxp://isearch.avg.com/search?cid={172B86F3-C897-46B3-9E77-5431AC7F2A80}&mid=9d[...]

    *************************

    AdwCleaner[R1].txt - [10585 octets] - [25/06/2012 10:21:23]
    AdwCleaner[R2].txt - [10646 octets] - [26/06/2012 09:56:40]
    AdwCleaner[S1].txt - [7873 octets] - [26/06/2012 09:56:46]

    ########## EOF - C:\AdwCleaner[S1].txt - [8001 octets] ##########


    Merci!
    26 Juin 2012 21:57:31

    Bonsoir
    on continue :) 

    Désactive ton antivirus et tout autre type de protection.
    Télécharge ComboFix de sUBs : Combofix
    Sauvegarde-le sur ton bureau et pas ailleurs!

    Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
    clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

    viens sur le forum et édition "coller"

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    <@_@>
    2 Juillet 2012 09:59:30

    Bonjour,
    Enfin j'ai réussi à faire le log de combofix. désolé de ne pas avoir répondu avant; c'est l'ordi de mon taff, et j'était en weekend! Voici le log:

    ComboFix 12-06-26.02 - Agence Pschhh 02/07/2012 9:43.2.4 - x64
    Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.12286.10463 [GMT 2:00]
    Lancé depuis: c:\users\Agence Pschhh\Desktop\ComboFix.exe
    AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
    AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
    SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
    SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Un nouveau point de restauration a été créé
    .
    - Mode FONCTIONNALITES REDUITES -
    .
    .
    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    ---- Exécution préalable -------
    .
    c:\programdata\ajbrxnmodrjazil
    c:\users\Agence Pschhh\0.4084016953431242.exe
    c:\users\Agence Pschhh\AppData\Roaming\Microsoft\Windows\Recent\mpm_F_04_vray_matlib.MAT
    c:\windows\assembly\GAC_32\Desktop.ini
    c:\windows\assembly\GAC_64\Desktop.ini
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\@
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\L\00000004.@
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\L\1afb2d56
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\L\201d3dde
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\L\55490ac4
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\U\00000004.@
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\U\00000008.@
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\U\000000cb.@
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\U\80000000.@
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\U\80000032.@
    c:\windows\Installer\{3b00614a-3518-33af-9e4b-2bc41bf7bfda}\U\80000064.@
    c:\windows\system32\drivers\etc\hosts.txt
    .
    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2012-06-02 au 2012-07-02 ))))))))))))))))))))))))))))))))))))
    .
    .
    2012-07-02 07:46 . 2012-07-02 07:46 -------- d-----w- c:\users\Default\AppData\Local\temp
    2012-06-25 08:47 . 2012-06-25 08:49 -------- d-----w- c:\program files (x86)\Google
    2012-06-22 15:46 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
    2012-06-22 15:46 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
    2012-06-22 15:46 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
    2012-06-22 15:46 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
    2012-06-22 15:46 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
    2012-06-22 15:46 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
    2012-06-22 15:46 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
    2012-06-22 15:46 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
    2012-06-22 15:46 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
    2012-06-19 12:47 . 2012-06-27 07:52 -------- d-----w- c:\program files (x86)\ewido anti-malware
    2012-06-19 11:06 . 2012-06-27 07:53 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
    2012-06-19 11:06 . 2012-06-27 07:52 -------- d-----w- c:\programdata\Spybot - Search & Destroy
    2012-06-19 10:48 . 2012-06-19 10:48 -------- d-----w- c:\program files (x86)\Trend Micro
    2012-06-19 10:45 . 2012-06-19 10:45 -------- d-----w- c:\programdata\utbgwntxvhxvnyt
    2012-06-18 08:51 . 2012-06-18 08:51 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\AVG2012
    2012-06-18 08:44 . 2012-06-18 08:44 -------- d-----w- c:\windows\SysWow64\drivers\AVG
    2012-06-18 08:44 . 2012-06-18 08:44 -------- d-----w- C:\$AVG
    2012-06-18 08:44 . 2012-06-29 15:21 -------- d-----w- c:\windows\system32\drivers\AVG
    2012-06-18 08:44 . 2012-06-20 10:27 -------- d-----w- c:\programdata\AVG2012
    2012-06-18 08:43 . 2012-06-18 08:43 -------- d-----w- c:\program files (x86)\AVG
    2012-06-18 08:40 . 2012-06-18 08:40 -------- d--h--w- c:\programdata\Common Files
    2012-06-18 08:40 . 2012-06-29 10:39 -------- d-----w- c:\programdata\MFAData
    2012-06-18 08:40 . 2012-06-18 08:40 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\GetRightToGo
    2012-06-14 01:01 . 2012-05-18 01:51 2382848 ----a-w- c:\windows\system32\mshtml.tlb
    2012-06-14 01:01 . 2012-05-17 22:24 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
    2012-06-13 20:47 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
    2012-06-13 16:54 . 2012-06-19 12:36 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\Media Player Classic
    2012-06-13 12:19 . 2012-06-13 12:19 -------- d-----w- c:\program files (x86)\Combined Community Codec Pack
    2012-06-12 10:00 . 2012-06-12 10:00 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%
    2012-06-12 07:51 . 2012-05-08 17:02 8955792 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6BD92F04-6D46-4DAC-952E-BFC554036627}\mpengine.dll
    2012-06-10 23:38 . 2012-05-08 17:02 8955792 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-04-24 14:50 . 2011-11-16 14:10 151552 ----a-w- c:\windows\SysWow64\nvRegDev.dll
    2012-04-24 14:50 . 2011-11-16 14:09 61440 ----a-w- c:\windows\SysWow64\nvPhotoshopUtil.dll
    2012-04-24 14:50 . 2011-11-16 14:09 40960 ----a-w- c:\windows\SysWow64\nvISWOW64.dll
    2012-04-19 02:50 . 2012-04-19 02:50 28480 ----a-w- c:\windows\system32\drivers\avgidsha.sys
    2012-04-04 05:53 . 2012-04-04 05:53 53656 ----a-w- c:\windows\system32\AdobePDF.dll
    2012-04-04 05:53 . 2012-04-04 05:53 24984 ----a-w- c:\windows\system32\AdobePDFUI.dll
    .
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
    "uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-09-23 640888]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
    "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-28 336384]
    "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
    "AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
    "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
    "Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2012-04-04 36760]
    "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2012-04-04 815512]
    "AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008]
    .
    c:\users\Agence Pschhh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dropbox.lnk - c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
    OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
    "aux1"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
    BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 116648]
    R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-10-24 1436424]
    R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 116648]
    R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-03-20 98688]
    R3 NisSrv;Inspection du réseau Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-03-26 291696]
    R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
    R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
    R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
    R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [2011-03-17 13312]
    R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-02 1255736]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
    S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]
    S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
    S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-02-22 289872]
    S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]
    S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-03-19 383808]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-22 270912]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-07-28 204288]
    S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-07-28 361984]
    S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2011-06-24 55424]
    S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\avgidsagent.exe [2012-04-30 5106744]
    S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
    S2 mi-raysat_3dsmax2011_32;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 32-bit 32-bit;c:\program files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe [2010-03-10 86016]
    S2 mi-raysat_3dsmax2011_64;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit;c:\program files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe [2010-03-09 86016]
    S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
    S2 TabletServiceWacom;TabletServiceWacom;c:\program files\Tablet\Wacom\Wacom_Tablet.exe [2011-06-06 6438264]
    S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-07-28 9980416]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-07-28 309248]
    S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
    S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2011-12-23 124496]
    S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
    .
    .
    Contenu du dossier 'Tâches planifiées'
    .
    2012-07-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 08:47]
    .
    2012-06-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 08:47]
    .
    2012-06-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-190529239-3606450313-1582325100-1001Core.job
    - c:\users\Agence Pschhh\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-22 09:44]
    .
    2012-06-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-190529239-3606450313-1582325100-1001UA.job
    - c:\users\Agence Pschhh\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-22 09:44]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-09-16 497648]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 1271168]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x0
    .
    ------- Examen supplémentaire -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = https://www.google.fr/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: &Envoyer à OneNote - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105
    IE: Ajouter la cible du lien à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Ajouter à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la cible du lien au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000
    TCP: DhcpNameServer = 8.8.8.8 8.8.4.4 192.168.1.254
    .
    - - - - ORPHELINS SUPPRIMES - - - -
    .
    Wow6432Node-HKCU-Run-AdobeBridge - (no file)
    Wow6432Node-HKLM-Run-vProt - c:\program files (x86)\AVG Secure Search\vprot.exe
    SafeBoot-MsMpSvc
    .
    .
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.10"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Autres processus actifs ------------------------
    .
    c:\program files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
    c:\program files (x86)\OpenOffice.org 3\program\soffice.exe
    c:\program files (x86)\OpenOffice.org 3\program\soffice.bin
    .
    **************************************************************************
    .
    Heure de fin: 2012-07-02 09:52:27 - La machine a redémarré
    ComboFix-quarantined-files.txt 2012-07-02 07:52
    .
    Avant-CF: 651 636 940 800 octets libres
    Après-CF: 651 897 438 208 octets libres
    .
    - - End Of File - - 4EED9416821FD063DCA595468AF6AD5D
    2 Juillet 2012 21:42:21

    Bonsoir
    sauvegarde tes données...

    désinstalle ewido anti-malware et Spybot - Search & Destroy (tous les deux obsolètes)
    choisis un de tes deux antivirus:AVG Anti-Virus Free Edition 2012 ou Microsoft Security Essentials et désinstalle l'autre.

    Copie (Ctrl+C) le texte ci-dessous :

    Folder::
    c:\programdata\utbgwntxvhxvnyt



    Ouvre le Bloc-Notes puis colle (Ctrl+V) le texte que tu viens de copier.
    Sauvegarde ce fichier sous le nom de CFScript.txt

    Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe comme sur la capture


  • Combofix se lance, laisse toi guider..

  • Patiente le temps du scan. Le bureau va disparaître à plusieurs reprises: c'est normal!
    Ne touche à rien tant que le scan n'est pas terminé.
  • Une fois le scan achevé, un rapport va s'afficher: poste son contenu, en précisant où en sont tes soucis

  • Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    puis:


    Suis ce Tutoriel: TDSSKiller
    Poste le rapport généré.

    3 Juillet 2012 18:54:40

    Bonsoir, j'ai suivi vos conseils, voici le log.

    Actuellement je n'ai plus le problème avec google chrome, et l'ordi il va plus vite. D'autre part je n'ai plus aucun message par rapport au virus service.exe, comme avant!
    Je crois que c'est régler!
    merci énormément! je ne sais pas si je dois faire d'autres scanne?



    ComboFix 12-06-26.02 - Agence Pschhh 03/07/2012 18:38:00.3.4 - x64
    Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.12286.10164 [GMT 2:00]
    Lancé depuis: c:\users\Agence Pschhh\Desktop\ComboFix.exe
    Commutateurs utilisés :: c:\users\Agence Pschhh\Desktop\CFScript.txt
    AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
    SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
    SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    - Mode FONCTIONNALITES REDUITES -
    .
    .
    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\programdata\utbgwntxvhxvnyt
    c:\programdata\utbgwntxvhxvnyt\btn-green.png
    c:\programdata\utbgwntxvhxvnyt\corners-btn.png
    c:\programdata\utbgwntxvhxvnyt\corners1.png
    c:\programdata\utbgwntxvhxvnyt\corners2.png
    c:\programdata\utbgwntxvhxvnyt\corners3.png
    c:\programdata\utbgwntxvhxvnyt\corners4.png
    c:\programdata\utbgwntxvhxvnyt\fr-flag.png
    c:\programdata\utbgwntxvhxvnyt\fr-image.png
    c:\programdata\utbgwntxvhxvnyt\ie6-7.css
    c:\programdata\utbgwntxvhxvnyt\jquery.main.js
    c:\programdata\utbgwntxvhxvnyt\main.html
    c:\programdata\utbgwntxvhxvnyt\McAfee.png
    c:\programdata\utbgwntxvhxvnyt\pay14.png
    c:\programdata\utbgwntxvhxvnyt\pay15.png
    c:\programdata\utbgwntxvhxvnyt\pay16.png
    c:\programdata\utbgwntxvhxvnyt\steps-en.png
    c:\programdata\utbgwntxvhxvnyt\steps-fr.png
    c:\programdata\utbgwntxvhxvnyt\style.css
    c:\programdata\utbgwntxvhxvnyt\tabs.png
    .
    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2012-06-03 au 2012-07-03 ))))))))))))))))))))))))))))))))))))
    .
    .
    2012-07-03 16:40 . 2012-07-03 16:40 -------- d-----w- c:\users\Default\AppData\Local\temp
    2012-07-02 17:24 . 2012-07-02 17:24 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
    2012-07-02 14:05 . 2012-07-02 14:05 -------- d-----w- c:\program files (x86)\Adobe Story
    2012-07-02 14:03 . 2012-07-02 14:03 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    2012-07-02 13:29 . 2012-07-02 13:29 -------- d-----w- c:\programdata\ALM
    2012-07-02 13:25 . 2012-07-02 13:25 -------- d-----w- c:\users\Agence Pschhh\Adobe Flash Builder 4.6
    2012-06-25 08:47 . 2012-06-25 08:49 -------- d-----w- c:\program files (x86)\Google
    2012-06-22 15:46 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
    2012-06-22 15:46 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
    2012-06-22 15:46 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
    2012-06-22 15:46 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
    2012-06-22 15:46 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
    2012-06-22 15:46 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
    2012-06-22 15:46 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
    2012-06-22 15:46 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
    2012-06-22 15:46 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
    2012-06-19 11:06 . 2012-06-27 07:52 -------- d-----w- c:\programdata\Spybot - Search & Destroy
    2012-06-19 10:48 . 2012-06-19 10:48 -------- d-----w- c:\program files (x86)\Trend Micro
    2012-06-18 08:51 . 2012-06-18 08:51 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\AVG2012
    2012-06-18 08:44 . 2012-06-18 08:44 -------- d-----w- c:\windows\SysWow64\drivers\AVG
    2012-06-18 08:44 . 2012-06-18 08:44 -------- d-----w- C:\$AVG
    2012-06-18 08:44 . 2012-07-03 15:44 -------- d-----w- c:\windows\system32\drivers\AVG
    2012-06-18 08:44 . 2012-06-20 10:27 -------- d-----w- c:\programdata\AVG2012
    2012-06-18 08:43 . 2012-06-18 08:43 -------- d-----w- c:\program files (x86)\AVG
    2012-06-18 08:40 . 2012-06-18 08:40 -------- d--h--w- c:\programdata\Common Files
    2012-06-18 08:40 . 2012-07-03 15:44 -------- d-----w- c:\programdata\MFAData
    2012-06-18 08:40 . 2012-06-18 08:40 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\GetRightToGo
    2012-06-14 01:01 . 2012-05-18 01:51 2382848 ----a-w- c:\windows\system32\mshtml.tlb
    2012-06-14 01:01 . 2012-05-17 22:24 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
    2012-06-13 20:47 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
    2012-06-13 16:54 . 2012-06-19 12:36 -------- d-----w- c:\users\Agence Pschhh\AppData\Roaming\Media Player Classic
    2012-06-13 12:19 . 2012-06-13 12:19 -------- d-----w- c:\program files (x86)\Combined Community Codec Pack
    2012-06-12 10:00 . 2012-06-12 10:00 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%
    .
    .
    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-04-24 14:50 . 2011-11-16 14:10 151552 ----a-w- c:\windows\SysWow64\nvRegDev.dll
    2012-04-24 14:50 . 2011-11-16 14:09 61440 ----a-w- c:\windows\SysWow64\nvPhotoshopUtil.dll
    2012-04-24 14:50 . 2011-11-16 14:09 40960 ----a-w- c:\windows\SysWow64\nvISWOW64.dll
    2012-04-19 02:50 . 2012-04-19 02:50 28480 ----a-w- c:\windows\system32\drivers\avgidsha.sys
    .
    .
    ((((((((((((((((((((((((((((( SnapShot@2012-07-02_07.47.53 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2011-02-19 21:03 . 2011-02-19 21:03 51024 c:\windows\SysWOW64\vcomp100.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 81744 c:\windows\SysWOW64\mfcm100u.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 81744 c:\windows\SysWOW64\mfcm100.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 60752 c:\windows\SysWOW64\mfc100rus.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 43344 c:\windows\SysWOW64\mfc100kor.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 43856 c:\windows\SysWOW64\mfc100jpn.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 62288 c:\windows\SysWOW64\mfc100ita.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 64336 c:\windows\SysWOW64\mfc100fra.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 63824 c:\windows\SysWOW64\mfc100esn.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 55120 c:\windows\SysWOW64\mfc100enu.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 64336 c:\windows\SysWOW64\mfc100deu.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 36176 c:\windows\SysWOW64\mfc100cht.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 36176 c:\windows\SysWOW64\mfc100chs.dll
    + 2010-11-21 03:09 . 2012-07-03 08:06 46770 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
    + 2009-07-14 05:10 . 2012-07-03 08:06 39714 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
    + 2011-09-22 09:09 . 2012-07-03 08:06 11870 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-190529239-3606450313-1582325100-1001_UserData.bin
    + 2011-02-19 20:51 . 2011-02-19 20:51 57168 c:\windows\system32\vcomp100.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 57168 c:\windows\system32\vcomp100.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 93008 c:\windows\system32\mfcm100u.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 93008 c:\windows\system32\mfcm100.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 60752 c:\windows\system32\mfc100rus.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 60752 c:\windows\system32\mfc100rus.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 43344 c:\windows\system32\mfc100kor.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 43344 c:\windows\system32\mfc100kor.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 43856 c:\windows\system32\mfc100jpn.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 43856 c:\windows\system32\mfc100jpn.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 62288 c:\windows\system32\mfc100ita.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 62288 c:\windows\system32\mfc100ita.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 64336 c:\windows\system32\mfc100fra.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 64336 c:\windows\system32\mfc100fra.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 63824 c:\windows\system32\mfc100esn.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 63824 c:\windows\system32\mfc100esn.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 55120 c:\windows\system32\mfc100enu.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 55120 c:\windows\system32\mfc100enu.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 64336 c:\windows\system32\mfc100deu.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 64336 c:\windows\system32\mfc100deu.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 36176 c:\windows\system32\mfc100cht.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 36176 c:\windows\system32\mfc100cht.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 36176 c:\windows\system32\mfc100chs.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 36176 c:\windows\system32\mfc100chs.dll
    + 2011-12-05 17:31 . 2011-11-03 01:01 56208 c:\windows\system32\drivers\PxHlpa64.sys
    + 2012-07-02 14:05 . 2012-07-02 14:05 26112 c:\windows\Installer\136a02.msi
    + 2012-07-02 13:21 . 2012-07-02 13:21 23040 c:\windows\Installer\12a7227.msi
    + 2012-07-02 13:18 . 2012-07-02 13:18 32256 c:\windows\Installer\12a71ee.msi
    + 2012-07-02 13:18 . 2012-07-02 13:18 32256 c:\windows\Installer\12a71dd.msi
    - 2011-12-19 11:37 . 2011-12-19 11:37 10134 c:\windows\Installer\{B6D38690-755E-4F40-A35A-23F8BC2B86AC}\ARPPRODUCTICON.exe
    + 2012-07-02 13:14 . 2012-07-02 13:14 10134 c:\windows\Installer\{B6D38690-755E-4F40-A35A-23F8BC2B86AC}\ARPPRODUCTICON.exe
    - 2012-04-15 15:08 . 2012-04-15 15:08 10134 c:\windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
    + 2012-07-02 13:11 . 2012-07-02 13:11 10134 c:\windows\Installer\{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}\ARPPRODUCTICON.exe
    - 2012-04-15 15:08 . 2012-04-15 15:08 10134 c:\windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
    + 2012-07-02 13:14 . 2012-07-02 13:14 10134 c:\windows\Installer\{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}\ARPPRODUCTICON.exe
    + 2012-07-02 13:21 . 2012-07-02 13:21 53248 c:\windows\Installer\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}\ARPPRODUCTICON.exe
    + 2012-07-02 13:21 . 2012-07-02 13:21 53248 c:\windows\Installer\{185F9795-9663-4F13-9EF9-307A282ADB5A}\ARPPRODUCTICON.exe
    + 2012-07-02 13:11 . 2012-07-02 13:11 10134 c:\windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
    - 2012-04-15 15:08 . 2012-04-15 15:08 10134 c:\windows\Installer\{08D2E121-7F6A-43EB-97FD-629B44903403}\ARPPRODUCTICON.exe
    - 2012-07-02 07:47 . 2012-07-02 07:47 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2012-07-03 16:41 . 2012-07-03 16:41 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2012-07-03 16:41 . 2012-07-03 16:41 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    - 2012-07-02 07:47 . 2012-07-02 07:47 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2011-09-06 23:01 . 2011-09-06 23:01 100848 c:\windows\SysWOW64\vxblock.dll
    + 2011-02-18 22:40 . 2011-02-18 22:40 773968 c:\windows\SysWOW64\msvcr100.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 421200 c:\windows\SysWOW64\msvcp100.dll
    + 2012-03-12 18:56 . 2012-03-12 18:56 947472 c:\windows\SysWOW64\msjava.dll
    - 2010-03-05 09:13 . 2010-03-05 08:13 947472 c:\windows\SysWOW64\msjava.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 138056 c:\windows\SysWOW64\atl100.dll
    + 2010-11-21 06:19 . 2012-07-03 13:31 704464 c:\windows\system32\perfh00C.dat
    + 2009-07-14 02:36 . 2012-07-03 13:31 616032 c:\windows\system32\perfh009.dat
    + 2010-11-21 06:19 . 2012-07-03 13:31 130770 c:\windows\system32\perfc00C.dat
    + 2009-07-14 02:36 . 2012-07-03 13:31 106412 c:\windows\system32\perfc009.dat
    + 2011-02-18 22:52 . 2011-02-18 22:52 829264 c:\windows\system32\msvcr100.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 608080 c:\windows\system32\msvcp100.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 608080 c:\windows\system32\msvcp100.dll
    - 2011-01-07 13:02 . 2011-01-07 13:02 158536 c:\windows\system32\atl100.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 158536 c:\windows\system32\atl100.dll
    + 2009-07-14 05:01 . 2012-07-03 16:40 591560 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2012-04-15 04:48 . 2012-04-15 04:48 593408 c:\windows\Installer\12a720c.msi
    + 2012-04-15 04:48 . 2012-04-15 04:48 915456 c:\windows\Installer\12a7195.msi
    + 2011-02-19 20:57 . 2011-02-19 20:57 177664 c:\windows\Installer\129531f.msi
    + 2011-02-19 21:08 . 2011-02-19 21:08 163840 c:\windows\Installer\1217123.msi
    + 2012-03-01 02:40 . 2012-03-01 02:40 950112 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgxpl.dll
    + 2012-02-15 02:57 . 2012-02-15 02:57 383320 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgwdwsc.dll
    + 2012-02-14 02:53 . 2012-02-14 02:53 977760 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff9.dll
    + 2012-02-14 02:53 . 2012-02-14 02:53 977760 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff8.dll
    + 2012-02-14 02:53 . 2012-02-14 02:53 977760 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff7.dll
    + 2012-02-14 02:53 . 2012-02-14 02:53 977760 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff6.dll
    + 2012-02-14 02:53 . 2012-02-14 02:53 977760 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff5.dll
    + 2012-04-08 16:23 . 2012-04-08 16:23 982072 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff12.dll
    + 2012-03-12 02:52 . 2012-03-12 02:52 980864 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff11.dll
    + 2012-02-14 02:53 . 2012-02-14 02:53 977760 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssff10.dll
    + 2012-04-20 17:57 . 2012-04-20 17:57 507472 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgsrmx.dll
    + 2012-04-20 17:57 . 2012-04-20 17:57 959568 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgsrma.dll
    + 2012-04-20 17:57 . 2012-04-20 17:57 990800 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgscanx.exe
    + 2012-03-23 03:55 . 2012-03-23 03:55 776064 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgrkta.dll
    + 2012-02-14 02:52 . 2012-02-14 02:52 627040 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgntdumpx.exe
    + 2012-02-15 02:56 . 2012-02-15 02:56 284512 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avglogx.dll
    + 2012-02-15 02:56 . 2012-02-15 02:56 513888 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgloga.dll
    + 2012-02-14 02:52 . 2012-02-14 02:52 681312 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgdumpx.exe
    + 2012-04-20 17:56 . 2012-04-20 17:56 936528 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgdtiex.dll
    + 2012-04-02 03:14 . 2012-04-02 03:14 516992 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgapix.dll
    + 2012-04-02 03:14 . 2012-04-02 03:14 906624 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgapia.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 4422992 c:\windows\SysWOW64\mfc100u.dll
    + 2011-02-19 21:03 . 2011-02-19 21:03 4397384 c:\windows\SysWOW64\mfc100.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 5601616 c:\windows\system32\mfc100u.dll
    + 2011-02-19 20:51 . 2011-02-19 20:51 5574472 c:\windows\system32\mfc100.dll
    + 2012-06-20 10:27 . 2012-07-02 13:46 5211360 c:\windows\system32\FNTCACHE.DAT
    + 2011-09-09 13:32 . 2012-07-03 16:40 8105688 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
    + 2012-07-03 08:10 . 2012-07-03 08:10 8451584 c:\windows\Installer\63eac.msi
    + 2012-04-15 04:48 . 2012-04-15 04:48 1436672 c:\windows\Installer\12a7222.msi
    + 2012-04-15 04:47 . 2012-04-15 04:47 2259968 c:\windows\Installer\12a71ff.msi
    + 2012-04-15 04:48 . 2012-04-15 04:48 2211328 c:\windows\Installer\121711e.msi
    + 2012-04-15 04:48 . 2012-04-15 04:48 1997312 c:\windows\Installer\1217117.msi
    + 2012-03-01 02:40 . 2012-03-01 02:40 1444704 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgxpla.dll
    + 2012-03-29 02:56 . 2012-03-29 02:56 1975416 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgwd.dll
    + 2012-03-29 02:56 . 2012-03-29 02:56 2638208 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avguiadv.dll
    + 2012-04-13 15:40 . 2012-04-13 15:40 4361296 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgui.exe
    + 2012-04-13 15:40 . 2012-04-13 15:40 1948240 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssiea.dll
    + 2012-04-13 15:40 . 2012-04-13 15:40 1390672 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgssie.dll
    + 2012-04-20 17:57 . 2012-04-20 17:57 1728080 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgscana.exe
    + 2012-02-14 02:53 . 2012-02-14 02:53 1392992 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgrsa.exe
    + 2012-02-14 02:53 . 2012-02-14 02:53 1106784 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgntdumpa.exe
    + 2012-04-19 02:51 . 2012-04-19 02:51 2011728 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgnsa.exe
    + 2012-04-30 07:44 . 2012-04-30 07:44 5106744 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\AVGIDSAgent.exe
    + 2012-02-14 02:53 . 2012-02-14 02:53 1184608 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgdumpa.exe
    + 2012-04-20 17:56 . 2012-04-20 17:56 1388624 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgdtiea.dll
    + 2012-04-05 03:12 . 2012-04-05 03:12 1326464 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\avgabout.dll
    + 2011-10-24 17:30 . 2012-07-03 16:40 27410576 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-190529239-3606450313-1582325100-1001-8192.dat
    + 2012-04-15 04:48 . 2012-04-15 04:48 12719104 c:\windows\Installer\12a719c.msi
    + 2012-04-15 19:54 . 2012-04-15 19:54 10206080 c:\windows\Installer\$PatchCache$\Managed\E67F4A945824EEA4D9D5C9ECE568AAF8\12.0.2180\AVGTBInstall.exe
    .
    -- Instantané actualisé --
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 94208 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
    "uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-09-23 640888]
    "AdobeBridge"="" [BU]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
    "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-28 336384]
    "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
    "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
    "Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2012-04-04 36760]
    "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2012-04-04 815512]
    "AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008]
    "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
    .
    c:\users\Agence Pschhh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dropbox.lnk - c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
    OpenOffice.org 3.3.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
    "aux1"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
    BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 116648]
    R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-10-24 1436424]
    R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 116648]
    R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
    R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
    R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
    R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
    R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys [2011-03-17 13312]
    R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-02 1255736]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
    S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]
    S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-11-03 56208]
    S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-02-22 289872]
    S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]
    S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-03-19 383808]
    S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-22 270912]
    S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-07-28 204288]
    S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-07-28 361984]
    S2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2011-06-24 55424]
    S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\avgidsagent.exe [2012-06-13 5161080]
    S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
    S2 mi-raysat_3dsmax2011_32;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 32-bit 32-bit;c:\program files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe [2010-03-10 86016]
    S2 mi-raysat_3dsmax2011_64;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit;c:\program files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe [2010-03-09 86016]
    S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-05-04 503080]
    S2 TabletServiceWacom;TabletServiceWacom;c:\program files\Tablet\Wacom\Wacom_Tablet.exe [2011-06-06 6438264]
    S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
    S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-07-28 9980416]
    S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-07-28 309248]
    S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2011-06-06 231440]
    S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2011-12-23 124496]
    S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 344680]
    .
    .
    Contenu du dossier 'Tâches planifiées'
    .
    2012-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 08:47]
    .
    2012-07-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-06-25 08:47]
    .
    2012-07-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-190529239-3606450313-1582325100-1001Core.job
    - c:\users\Agence Pschhh\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-22 09:44]
    .
    2012-07-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-190529239-3606450313-1582325100-1001UA.job
    - c:\users\Agence Pschhh\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-22 09:44]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Agence Pschhh\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
    .
    ------- Examen supplémentaire -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = https://www.google.fr/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: &Envoyer à OneNote - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105
    IE: Ajouter la cible du lien à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Ajouter à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la cible du lien au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000
    TCP: DhcpNameServer = 8.8.8.8 8.8.4.4 192.168.1.254
    .
    - - - - ORPHELINS SUPPRIMES - - - -
    .
    Wow6432Node-HKLM-Run-AdobeCS5ServiceManager - c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
    .
    .
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.10"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker4"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Autres processus actifs ------------------------
    .
    c:\program files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
    c:\program files (x86)\OpenOffice.org 3\program\soffice.exe
    c:\program files (x86)\OpenOffice.org 3\program\soffice.bin
    .
    **************************************************************************
    .
    Heure de fin: 2012-07-03 18:45:09 - La machine a redémarré
    ComboFix-quarantined-files.txt 2012-07-03 16:45
    ComboFix2.txt 2012-07-02 07:52
    .
    Avant-CF: 608 936 751 104 octets libres
    Après-CF: 639 733 350 400 octets libres
    .
    - - End Of File - - 662B1B957B8A08E682F9AE16FCD654E2
    9 Juillet 2012 16:59:06

    Bonsoir,
    voici le log avec TDS killer


    16:57:21.0604 6812 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
    16:57:22.0119 6812 ============================================================
    16:57:22.0119 6812 Current date / time: 2012/07/09 16:57:22.0119
    16:57:22.0119 6812 SystemInfo:
    16:57:22.0119 6812
    16:57:22.0119 6812 OS Version: 6.1.7601 ServicePack: 1.0
    16:57:22.0119 6812 Product type: Workstation
    16:57:22.0119 6812 ComputerName: AGENCEPSCHHH
    16:57:22.0119 6812 UserName: Agence Pschhh
    16:57:22.0119 6812 Windows directory: C:\Windows
    16:57:22.0119 6812 System windows directory: C:\Windows
    16:57:22.0119 6812 Running under WOW64
    16:57:22.0119 6812 Processor architecture: Intel x64
    16:57:22.0119 6812 Number of processors: 4
    16:57:22.0119 6812 Page size: 0x1000
    16:57:22.0119 6812 Boot type: Normal boot
    16:57:22.0119 6812 ============================================================
    16:57:23.0570 6812 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    16:57:23.0586 6812 ============================================================
    16:57:23.0586 6812 \Device\Harddisk0\DR0:
    16:57:23.0586 6812 MBR partitions:
    16:57:23.0586 6812 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
    16:57:23.0586 6812 ============================================================
    16:57:23.0601 6812 C: <-> \Device\Harddisk0\DR0\Partition0
    16:57:23.0601 6812 ============================================================
    16:57:23.0601 6812 Initialize success
    16:57:23.0601 6812 ============================================================
    16:57:25.0738 3816 ============================================================
    16:57:25.0738 3816 Scan started
    16:57:25.0738 3816 Mode: Manual;
    16:57:25.0738 3816 ============================================================
    16:57:28.0156 3816 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
    16:57:28.0172 3816 1394ohci - ok
    16:57:28.0203 3816 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
    16:57:28.0203 3816 ACPI - ok
    16:57:28.0219 3816 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
    16:57:28.0219 3816 AcpiPmi - ok
    16:57:28.0266 3816 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
    16:57:28.0281 3816 adp94xx - ok
    16:57:28.0297 3816 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
    16:57:28.0297 3816 adpahci - ok
    16:57:28.0297 3816 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
    16:57:28.0297 3816 adpu320 - ok
    16:57:28.0312 3816 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
    16:57:28.0328 3816 AeLookupSvc - ok
    16:57:28.0375 3816 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
    16:57:28.0390 3816 AFD - ok
    16:57:28.0406 3816 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
    16:57:28.0406 3816 agp440 - ok
    16:57:28.0422 3816 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
    16:57:28.0422 3816 ALG - ok
    16:57:28.0422 3816 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
    16:57:28.0437 3816 aliide - ok
    16:57:28.0453 3816 AMD External Events Utility (a2f5bea5b45a8e7c4776f39c25e8699d) C:\Windows\system32\atiesrxx.exe
    16:57:28.0453 3816 AMD External Events Utility - ok
    16:57:28.0484 3816 AMD FUEL Service - ok
    16:57:28.0484 3816 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
    16:57:28.0484 3816 amdide - ok
    16:57:28.0515 3816 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
    16:57:28.0515 3816 amdiox64 - ok
    16:57:28.0515 3816 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
    16:57:28.0515 3816 AmdK8 - ok
    16:57:28.0749 3816 amdkmdag (5b03217859b014b090cb5060c1d96875) C:\Windows\system32\DRIVERS\atikmdag.sys
    16:57:28.0921 3816 amdkmdag - ok
    16:57:29.0046 3816 amdkmdap (35d2184a99ad4cd5d17284d6c9f382c9) C:\Windows\system32\DRIVERS\atikmpag.sys
    16:57:29.0046 3816 amdkmdap - ok
    16:57:29.0077 3816 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
    16:57:29.0077 3816 AmdPPM - ok
    16:57:29.0139 3816 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
    16:57:29.0139 3816 amdsata - ok
    16:57:29.0170 3816 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
    16:57:29.0186 3816 amdsbs - ok
    16:57:29.0202 3816 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
    16:57:29.0202 3816 amdxata - ok
    16:57:29.0217 3816 AODDriver4.01 (f312fad7dbd49ed21a194ac71b497832) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
    16:57:29.0217 3816 AODDriver4.01 - ok
    16:57:29.0233 3816 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
    16:57:29.0233 3816 AppID - ok
    16:57:29.0248 3816 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
    16:57:29.0248 3816 AppIDSvc - ok
    16:57:29.0264 3816 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
    16:57:29.0264 3816 Appinfo - ok
    16:57:29.0280 3816 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
    16:57:29.0280 3816 arc - ok
    16:57:29.0280 3816 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
    16:57:29.0295 3816 arcsas - ok
    16:57:29.0311 3816 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
    16:57:29.0311 3816 AsyncMac - ok
    16:57:29.0326 3816 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
    16:57:29.0326 3816 atapi - ok
    16:57:29.0358 3816 AtiHDAudioService (dbb487d09f56c674430ac454fd8bcab9) C:\Windows\system32\drivers\AtihdW76.sys
    16:57:29.0358 3816 AtiHDAudioService - ok
    16:57:29.0592 3816 atikmdag (5b03217859b014b090cb5060c1d96875) C:\Windows\system32\DRIVERS\atikmdag.sys
    16:57:29.0638 3816 atikmdag - ok
    16:57:29.0716 3816 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
    16:57:29.0732 3816 AudioEndpointBuilder - ok
    16:57:29.0732 3816 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
    16:57:29.0732 3816 AudioSrv - ok
    16:57:29.0997 3816 AVGIDSAgent (d67719bcfde5798f5c30d14efed3bcaf) C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe
    16:57:30.0013 3816 AVGIDSAgent - ok
    16:57:30.0091 3816 AVGIDSDriver (1b2e9fcdc26dc7c81d4131430e2dc936) C:\Windows\system32\DRIVERS\avgidsdrivera.sys
    16:57:30.0106 3816 AVGIDSDriver - ok
    16:57:30.0122 3816 AVGIDSFilter (0f293406f64b48d5d2f0d3a1117f3a83) C:\Windows\system32\DRIVERS\avgidsfiltera.sys
    16:57:30.0122 3816 AVGIDSFilter - ok
    16:57:30.0138 3816 AVGIDSHA (cffc3a4a638f462e0561cb368b9a7a3a) C:\Windows\system32\DRIVERS\avgidsha.sys
    16:57:30.0138 3816 AVGIDSHA - ok
    16:57:30.0153 3816 Avgldx64 (59955b4c288dd2a8b9fd2cd5158355c5) C:\Windows\system32\DRIVERS\avgldx64.sys
    16:57:30.0153 3816 Avgldx64 - ok
    16:57:30.0169 3816 Avgmfx64 (a6aec362aae5e2dda7445e7690cb0f33) C:\Windows\system32\DRIVERS\avgmfx64.sys
    16:57:30.0169 3816 Avgmfx64 - ok
    16:57:30.0184 3816 Avgrkx64 (645c7f0a0e39758a0024a9b1748273c0) C:\Windows\system32\DRIVERS\avgrkx64.sys
    16:57:30.0184 3816 Avgrkx64 - ok
    16:57:30.0247 3816 Avgtdia (1bee674ad792b1c63bb0dac5fa724b23) C:\Windows\system32\DRIVERS\avgtdia.sys
    16:57:30.0262 3816 Avgtdia - ok
    16:57:30.0294 3816 avgwd (ea1145debcd508fd25bd1e95c4346929) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
    16:57:30.0294 3816 avgwd - ok
    16:57:30.0340 3816 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
    16:57:30.0340 3816 AxInstSV - ok
    16:57:30.0590 3816 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
    16:57:30.0606 3816 b06bdrv - ok
    16:57:30.0730 3816 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
    16:57:30.0746 3816 b57nd60a - ok
    16:57:30.0762 3816 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
    16:57:30.0777 3816 BDESVC - ok
    16:57:30.0777 3816 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
    16:57:30.0777 3816 Beep - ok
    16:57:30.0808 3816 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
    16:57:30.0808 3816 BFE - ok
    16:57:30.0855 3816 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
    16:57:30.0855 3816 BITS - ok
    16:57:30.0933 3816 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
    16:57:30.0933 3816 blbdrive - ok
    16:57:30.0949 3816 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
    16:57:30.0949 3816 bowser - ok
    16:57:30.0964 3816 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
    16:57:30.0964 3816 BrFiltLo - ok
    16:57:30.0980 3816 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
    16:57:30.0980 3816 BrFiltUp - ok
    16:57:31.0027 3816 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
    16:57:31.0042 3816 BridgeMP - ok
    16:57:31.0089 3816 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
    16:57:31.0089 3816 Browser - ok
    16:57:31.0136 3816 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
    16:57:31.0136 3816 Brserid - ok
    16:57:31.0152 3816 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
    16:57:31.0152 3816 BrSerWdm - ok
    16:57:31.0152 3816 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
    16:57:31.0152 3816 BrUsbMdm - ok
    16:57:31.0167 3816 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
    16:57:31.0167 3816 BrUsbSer - ok
    16:57:31.0167 3816 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
    16:57:31.0167 3816 BTHMODEM - ok
    16:57:31.0183 3816 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
    16:57:31.0183 3816 bthserv - ok
    16:57:31.0198 3816 catchme - ok
    16:57:31.0214 3816 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
    16:57:31.0214 3816 cdfs - ok
    16:57:31.0230 3816 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
    16:57:31.0230 3816 cdrom - ok
    16:57:31.0245 3816 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
    16:57:31.0245 3816 CertPropSvc - ok
    16:57:31.0261 3816 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
    16:57:31.0261 3816 circlass - ok
    16:57:31.0276 3816 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
    16:57:31.0292 3816 CLFS - ok
    16:57:31.0354 3816 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    16:57:31.0354 3816 clr_optimization_v2.0.50727_32 - ok
    16:57:31.0386 3816 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    16:57:31.0401 3816 clr_optimization_v2.0.50727_64 - ok
    16:57:31.0432 3816 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    16:57:31.0432 3816 clr_optimization_v4.0.30319_32 - ok
    16:57:31.0448 3816 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    16:57:31.0448 3816 clr_optimization_v4.0.30319_64 - ok
    16:57:31.0464 3816 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
    16:57:31.0464 3816 CmBatt - ok
    16:57:31.0464 3816 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
    16:57:31.0464 3816 cmdide - ok
    16:57:31.0526 3816 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
    16:57:31.0526 3816 CNG - ok
    16:57:31.0542 3816 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
    16:57:31.0542 3816 Compbatt - ok
    16:57:31.0573 3816 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
    16:57:31.0573 3816 CompositeBus - ok
    16:57:31.0573 3816 COMSysApp - ok
    16:57:31.0588 3816 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
    16:57:31.0588 3816 crcdisk - ok
    16:57:31.0635 3816 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
    16:57:31.0635 3816 CryptSvc - ok
    16:57:31.0666 3816 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
    16:57:31.0666 3816 DcomLaunch - ok
    16:57:31.0698 3816 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
    16:57:31.0698 3816 defragsvc - ok
    16:57:31.0713 3816 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
    16:57:31.0713 3816 DfsC - ok
    16:57:31.0729 3816 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
    16:57:31.0729 3816 Dhcp - ok
    16:57:31.0744 3816 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
    16:57:31.0744 3816 discache - ok
    16:57:31.0744 3816 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
    16:57:31.0744 3816 Disk - ok
    16:57:31.0791 3816 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
    16:57:31.0791 3816 Dnscache - ok
    16:57:31.0807 3816 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
    16:57:31.0807 3816 dot3svc - ok
    16:57:31.0822 3816 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
    16:57:31.0822 3816 DPS - ok
    16:57:31.0854 3816 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
    16:57:31.0854 3816 drmkaud - ok
    16:57:31.0869 3816 dtsoftbus01 (d3d64cf7b2bceaa34a270f45a3fffb36) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
    16:57:31.0869 3816 dtsoftbus01 - ok
    16:57:31.0900 3816 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
    16:57:31.0916 3816 DXGKrnl - ok
    16:57:31.0916 3816 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
    16:57:31.0916 3816 EapHost - ok
    16:57:32.0010 3816 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
    16:57:32.0072 3816 ebdrv - ok
    16:57:32.0150 3816 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
    16:57:32.0150 3816 EFS - ok
    16:57:32.0244 3816 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
    16:57:32.0244 3816 ehRecvr - ok
    16:57:32.0259 3816 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
    16:57:32.0259 3816 ehSched - ok
    16:57:32.0290 3816 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
    16:57:32.0290 3816 elxstor - ok
    16:57:32.0306 3816 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
    16:57:32.0306 3816 ErrDev - ok
    16:57:32.0322 3816 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
    16:57:32.0322 3816 EventSystem - ok
    16:57:32.0337 3816 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
    16:57:32.0337 3816 exfat - ok
    16:57:32.0353 3816 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
    16:57:32.0353 3816 fastfat - ok
    16:57:32.0415 3816 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
    16:57:32.0431 3816 Fax - ok
    16:57:32.0431 3816 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
    16:57:32.0431 3816 fdc - ok
    16:57:32.0446 3816 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
    16:57:32.0446 3816 fdPHost - ok
    16:57:32.0462 3816 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
    16:57:32.0462 3816 FDResPub - ok
    16:57:32.0462 3816 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
    16:57:32.0478 3816 FileInfo - ok
    16:57:32.0478 3816 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
    16:57:32.0478 3816 Filetrace - ok
    16:57:32.0602 3816 FLEXnet Licensing Service (d60ef46dc0e757fe5eb579db95b88954) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    16:57:32.0634 3816 FLEXnet Licensing Service - ok
    16:57:32.0774 3816 FLEXnet Licensing Service 64 (a4297244d4f817278a6ae45b1899ca9c) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
    16:57:32.0805 3816 FLEXnet Licensing Service 64 - ok
    16:57:32.0852 3816 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
    16:57:32.0852 3816 flpydisk - ok
    16:57:32.0883 3816 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
    16:57:32.0883 3816 FltMgr - ok
    16:57:32.0930 3816 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
    16:57:32.0946 3816 FontCache - ok
    16:57:32.0992 3816 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    16:57:33.0008 3816 FontCache3.0.0.0 - ok
    16:57:33.0024 3816 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
    16:57:33.0024 3816 FsDepends - ok
    16:57:33.0070 3816 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
    16:57:33.0086 3816 fssfltr - ok
    16:57:33.0242 3816 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
    16:57:33.0289 3816 fsssvc - ok
    16:57:33.0351 3816 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
    16:57:33.0351 3816 Fs_Rec - ok
    16:57:33.0382 3816 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
    16:57:33.0398 3816 fvevol - ok
    16:57:33.0414 3816 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
    16:57:33.0414 3816 gagp30kx - ok
    16:57:33.0445 3816 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
    16:57:33.0445 3816 gpsvc - ok
    16:57:33.0538 3816 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    16:57:33.0538 3816 gupdate - ok
    16:57:33.0538 3816 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    16:57:33.0554 3816 gupdatem - ok
    16:57:33.0554 3816 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
    16:57:33.0570 3816 hcw85cir - ok
    16:57:33.0585 3816 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
    16:57:33.0585 3816 HdAudAddService - ok
    16:57:33.0601 3816 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
    16:57:33.0601 3816 HDAudBus - ok
    16:57:33.0616 3816 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
    16:57:33.0616 3816 HidBatt - ok
    16:57:33.0632 3816 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
    16:57:33.0632 3816 HidBth - ok
    16:57:33.0632 3816 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
    16:57:33.0632 3816 HidIr - ok
    16:57:33.0648 3816 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
    16:57:33.0648 3816 hidserv - ok
    16:57:33.0679 3816 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
    16:57:33.0694 3816 HidUsb - ok
    16:57:33.0726 3816 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
    16:57:33.0726 3816 hkmsvc - ok
    16:57:33.0726 3816 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
    16:57:33.0741 3816 HomeGroupListener - ok
    16:57:33.0772 3816 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
    16:57:33.0772 3816 HomeGroupProvider - ok
    16:57:33.0788 3816 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
    16:57:33.0788 3816 HpSAMD - ok
    16:57:33.0819 3816 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
    16:57:33.0819 3816 HTTP - ok
    16:57:33.0835 3816 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
    16:57:33.0835 3816 hwpolicy - ok
    16:57:33.0882 3816 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
    16:57:33.0882 3816 i8042prt - ok
    16:57:33.0975 3816 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
    16:57:33.0991 3816 iaStorV - ok
    16:57:34.0084 3816 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    16:57:34.0100 3816 idsvc - ok
    16:57:34.0116 3816 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
    16:57:34.0116 3816 iirsp - ok
    16:57:34.0178 3816 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
    16:57:34.0194 3816 IKEEXT - ok
    16:57:34.0209 3816 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
    16:57:34.0209 3816 intelide - ok
    16:57:34.0209 3816 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\drivers\intelppm.sys
    16:57:34.0209 3816 intelppm - ok
    16:57:34.0225 3816 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
    16:57:34.0225 3816 IPBusEnum - ok
    16:57:34.0225 3816 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
    16:57:34.0240 3816 IpFilterDriver - ok
    16:57:34.0256 3816 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
    16:57:34.0256 3816 iphlpsvc - ok
    16:57:34.0272 3816 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
    16:57:34.0272 3816 IPMIDRV - ok
    16:57:34.0272 3816 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
    16:57:34.0287 3816 IPNAT - ok
    16:57:34.0303 3816 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
    16:57:34.0303 3816 IRENUM - ok
    16:57:34.0303 3816 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
    16:57:34.0303 3816 isapnp - ok
    16:57:34.0318 3816 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
    16:57:34.0334 3816 iScsiPrt - ok
    16:57:34.0350 3816 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
    16:57:34.0350 3816 kbdclass - ok
    16:57:34.0350 3816 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
    16:57:34.0365 3816 kbdhid - ok
    16:57:34.0396 3816 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
    16:57:34.0396 3816 KeyIso - ok
    16:57:34.0412 3816 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
    16:57:34.0412 3816 KSecDD - ok
    16:57:34.0428 3816 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
    16:57:34.0443 3816 KSecPkg - ok
    16:57:34.0443 3816 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
    16:57:34.0443 3816 ksthunk - ok
    16:57:34.0474 3816 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
    16:57:34.0474 3816 KtmRm - ok
    16:57:34.0490 3816 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
    16:57:34.0506 3816 LanmanServer - ok
    16:57:34.0521 3816 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
    16:57:34.0521 3816 LanmanWorkstation - ok
    16:57:34.0537 3816 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
    16:57:34.0552 3816 lltdio - ok
    16:57:34.0552 3816 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
    16:57:34.0568 3816 lltdsvc - ok
    16:57:34.0568 3816 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
    16:57:34.0584 3816 lmhosts - ok
    16:57:34.0599 3816 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
    16:57:34.0599 3816 LSI_FC - ok
    16:57:34.0599 3816 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
    16:57:34.0599 3816 LSI_SAS - ok
    16:57:34.0662 3816 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
    16:57:34.0662 3816 LSI_SAS2 - ok
    16:57:34.0662 3816 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
    16:57:34.0662 3816 LSI_SCSI - ok
    16:57:34.0677 3816 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
    16:57:34.0677 3816 luafv - ok
    16:57:34.0693 3816 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
    16:57:34.0693 3816 Mcx2Svc - ok
    16:57:34.0708 3816 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
    16:57:34.0708 3816 megasas - ok
    16:57:34.0724 3816 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
    16:57:34.0724 3816 MegaSR - ok
    16:57:34.0896 3816 mi-raysat_3dsmax2011_32 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files (x86)\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
    16:57:34.0896 3816 mi-raysat_3dsmax2011_32 - ok
    16:57:35.0020 3816 mi-raysat_3dsmax2011_64 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe
    16:57:35.0020 3816 mi-raysat_3dsmax2011_64 - ok
    16:57:35.0083 3816 Microsoft SharePoint Workspace Audit Service - ok
    16:57:35.0114 3816 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
    16:57:35.0114 3816 MMCSS - ok
    16:57:35.0130 3816 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
    16:57:35.0130 3816 Modem - ok
    16:57:35.0161 3816 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
    16:57:35.0161 3816 monitor - ok
    16:57:35.0176 3816 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
    16:57:35.0176 3816 mouclass - ok
    16:57:35.0192 3816 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
    16:57:35.0192 3816 mouhid - ok
    16:57:35.0192 3816 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
    16:57:35.0192 3816 mountmgr - ok
    16:57:35.0239 3816 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    16:57:35.0239 3816 MozillaMaintenance - ok
    16:57:35.0254 3816 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
    16:57:35.0254 3816 mpio - ok
    16:57:35.0270 3816 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
    16:57:35.0270 3816 mpsdrv - ok
    16:57:35.0301 3816 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
    16:57:35.0317 3816 MpsSvc - ok
    16:57:35.0317 3816 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
    16:57:35.0317 3816 MRxDAV - ok
    16:57:35.0332 3816 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
    16:57:35.0332 3816 mrxsmb - ok
    16:57:35.0348 3816 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
    16:57:35.0348 3816 mrxsmb10 - ok
    16:57:35.0364 3816 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
    16:57:35.0364 3816 mrxsmb20 - ok
    16:57:35.0379 3816 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
    16:57:35.0379 3816 msahci - ok
    16:57:35.0395 3816 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
    16:57:35.0395 3816 msdsm - ok
    16:57:35.0410 3816 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
    16:57:35.0410 3816 MSDTC - ok
    16:57:35.0426 3816 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
    16:57:35.0426 3816 Msfs - ok
    16:57:35.0442 3816 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
    16:57:35.0442 3816 mshidkmdf - ok
    16:57:35.0442 3816 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
    16:57:35.0442 3816 msisadrv - ok
    16:57:35.0473 3816 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
    16:57:35.0473 3816 MSiSCSI - ok
    16:57:35.0473 3816 msiserver - ok
    16:57:35.0488 3816 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
    16:57:35.0488 3816 MSKSSRV - ok
    16:57:35.0488 3816 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
    16:57:35.0488 3816 MSPCLOCK - ok
    16:57:35.0488 3816 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
    16:57:35.0488 3816 MSPQM - ok
    16:57:35.0504 3816 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
    16:57:35.0520 3816 MsRPC - ok
    16:57:35.0520 3816 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
    16:57:35.0520 3816 mssmbios - ok
    16:57:35.0535 3816 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
    16:57:35.0535 3816 MSTEE - ok
    16:57:35.0551 3816 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
    16:57:35.0551 3816 MTConfig - ok
    16:57:35.0582 3816 MTsensor (03b7145c889603537e9ffeabb1ad1089) C:\Windows\system32\drivers\ASACPI.sys
    16:57:35.0582 3816 MTsensor - ok
    16:57:35.0598 3816 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
    16:57:35.0598 3816 Mup - ok
    16:57:35.0629 3816 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
    16:57:35.0644 3816 napagent - ok
    16:57:35.0676 3816 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
    16:57:35.0676 3816 NativeWifiP - ok
    16:57:35.0800 3816 NAUpdate (9d1cce440552500ded3a62f9d779cdb4) C:\Program Files (x86)\Nero\Update\NASvc.exe
    16:57:35.0816 3816 NAUpdate - ok
    16:57:35.0863 3816 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
    16:57:35.0878 3816 NDIS - ok
    16:57:35.0910 3816 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
    16:57:35.0910 3816 NdisCap - ok
    16:57:35.0925 3816 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
    16:57:35.0925 3816 NdisTapi - ok
    16:57:35.0941 3816 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
    16:57:35.0941 3816 Ndisuio - ok
    16:57:35.0972 3816 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
    16:57:35.0972 3816 NdisWan - ok
    16:57:35.0988 3816 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
    16:57:35.0988 3816 NDProxy - ok
    16:57:35.0988 3816 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
    16:57:35.0988 3816 NetBIOS - ok
    16:57:36.0003 3816 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
    16:57:36.0003 3816 NetBT - ok
    16:57:36.0050 3816 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
    16:57:36.0050 3816 Netlogon - ok
    16:57:36.0081 3816 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
    16:57:36.0097 3816 Netman - ok
    16:57:36.0097 3816 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
    16:57:36.0112 3816 netprofm - ok
    16:57:36.0175 3816 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    16:57:36.0190 3816 NetTcpPortSharing - ok
    16:57:36.0206 3816 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
    16:57:36.0206 3816 nfrd960 - ok
    16:57:36.0222 3816 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
    16:57:36.0237 3816 NlaSvc - ok
    16:57:36.0237 3816 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
    16:57:36.0237 3816 Npfs - ok
    16:57:36.0253 3816 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
    16:57:36.0253 3816 nsi - ok
    16:57:36.0268 3816 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
    16:57:36.0268 3816 nsiproxy - ok
    16:57:36.0331 3816 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
    16:57:36.0331 3816 Ntfs - ok
    16:57:36.0393 3816 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
    16:57:36.0393 3816 Null - ok
    16:57:36.0424 3816 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
    16:57:36.0424 3816 nvraid - ok
    16:57:36.0440 3816 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
    16:57:36.0440 3816 nvstor - ok
    16:57:36.0456 3816 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
    16:57:36.0456 3816 nv_agp - ok
    16:57:36.0456 3816 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
    16:57:36.0471 3816 ohci1394 - ok
    16:57:36.0518 3816 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    16:57:36.0518 3816 ose - ok
    16:57:36.0736 3816 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    16:57:36.0814 3816 osppsvc - ok
    16:57:36.0924 3816 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
    16:57:36.0924 3816 p2pimsvc - ok
    16:57:36.0955 3816 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
    16:57:36.0970 3816 p2psvc - ok
    16:57:37.0002 3816 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
    16:57:37.0017 3816 Parport - ok
    16:57:37.0048 3816 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
    16:57:37.0048 3816 partmgr - ok
    16:57:37.0080 3816 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
    16:57:37.0080 3816 PcaSvc - ok
    16:57:37.0080 3816 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
    16:57:37.0080 3816 pci - ok
    16:57:37.0095 3816 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
    16:57:37.0095 3816 pciide - ok
    16:57:37.0111 3816 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
    16:57:37.0111 3816 pcmcia - ok
    16:57:37.0126 3816 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
    16:57:37.0126 3816 pcw - ok
    16:57:37.0158 3816 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
    16:57:37.0158 3816 PEAUTH - ok
    16:57:37.0204 3816 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
    16:57:37.0220 3816 PerfHost - ok
    16:57:37.0251 3816 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
    16:57:37.0282 3816 pla - ok
    16:57:37.0329 3816 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
    16:57:37.0345 3816 PlugPlay - ok
    16:57:37.0345 3816 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
    16:57:37.0345 3816 PNRPAutoReg - ok
    16:57:37.0360 3816 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
    16:57:37.0376 3816 PNRPsvc - ok
    16:57:37.0423 3816 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
    16:57:37.0423 3816 PolicyAgent - ok
    16:57:37.0454 3816 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
    16:57:37.0454 3816 Power - ok
    16:57:37.0485 3816 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
    16:57:37.0485 3816 PptpMiniport - ok
    16:57:37.0501 3816 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
    16:57:37.0501 3816 Processor - ok
    16:57:37.0579 3816 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
    16:57:37.0594 3816 ProfSvc - ok
    16:57:37.0641 3816 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
    16:57:37.0641 3816 ProtectedStorage - ok
    16:57:37.0657 3816 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
    16:57:37.0657 3816 Psched - ok
    16:57:37.0704 3816 PxHlpa64 (bc08f7f3c53cbee68670ed1314e290fd) C:\Windows\system32\Drivers\PxHlpa64.sys
    16:57:37.0704 3816 PxHlpa64 - ok
    16:57:37.0782 3816 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
    16:57:37.0797 3816 ql2300 - ok
    16:57:37.0860 3816 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
    16:57:37.0860 3816 ql40xx - ok
    16:57:37.0860 3816 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
    16:57:37.0875 3816 QWAVE - ok
    16:57:37.0875 3816 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
    16:57:37.0875 3816 QWAVEdrv - ok
    16:57:37.0891 3816 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
    16:57:37.0891 3816 RasAcd - ok
    16:57:37.0938 3816 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
    16:57:37.0938 3816 RasAgileVpn - ok
    16:57:37.0953 3816 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
    16:57:37.0953 3816 RasAuto - ok
    16:57:37.0969 3816 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
    16:57:37.0969 3816 Rasl2tp - ok
    16:57:37.0984 3816 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
    16:57:38.0000 3816 RasMan - ok
    16:57:38.0000 3816 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
    16:57:38.0016 3816 RasPppoe - ok
    16:57:38.0031 3816 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
    16:57:38.0031 3816 RasSstp - ok
    16:57:38.0047 3816 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
    16:57:38.0047 3816 rdbss - ok
    16:57:38.0078 3816 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
    16:57:38.0078 3816 rdpbus - ok
    16:57:38.0109 3816 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
    16:57:38.0109 3816 RDPCDD - ok
    16:57:38.0296 3816 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
    16:57:38.0296 3816 RDPENCDD - ok
    16:57:38.0328 3816 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
    16:57:38.0328 3816 RDPREFMP - ok
    16:57:38.0374 3816 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
    16:57:38.0390 3816 RDPWD - ok
    16:57:38.0421 3816 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
    16:57:38.0421 3816 rdyboost - ok
    16:57:38.0437 3816 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
    16:57:38.0452 3816 RemoteAccess - ok
    16:57:38.0468 3816 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
    16:57:38.0468 3816 RemoteRegistry - ok
    16:57:38.0515 3816 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
    16:57:38.0515 3816 RpcEptMapper - ok
    16:57:38.0530 3816 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
    16:57:38.0530 3816 RpcLocator - ok
    16:57:38.0562 3816 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
    16:57:38.0562 3816 RpcSs - ok
    16:57:38.0577 3816 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
    16:57:38.0577 3816 rspndr - ok
    16:57:38.0608 3816 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
    16:57:38.0608 3816 RTL8167 - ok
    16:57:38.0671 3816 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
    16:57:38.0671 3816 SamSs - ok
    16:57:38.0686 3816 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
    16:57:38.0686 3816 sbp2port - ok
    16:57:38.0702 3816 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
    16:57:38.0702 3816 SCardSvr - ok
    16:57:38.0718 3816 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
    16:57:38.0718 3816 scfilter - ok
    16:57:38.0764 3816 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
    16:57:38.0764 3816 Schedule - ok
    16:57:38.0796 3816 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
    16:57:38.0796 3816 SCPolicySvc - ok
    16:57:38.0811 3816 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
    16:57:38.0811 3816 SDRSVC - ok
    16:57:38.0842 3816 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
    16:57:38.0842 3816 secdrv - ok
    16:57:38.0858 3816 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
    16:57:38.0858 3816 seclogon - ok
    16:57:38.0858 3816 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
    16:57:38.0874 3816 SENS - ok
    16:57:38.0889 3816 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
    16:57:38.0889 3816 SensrSvc - ok
    16:57:38.0889 3816 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
    16:57:38.0889 3816 Serenum - ok
    16:57:38.0905 3816 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
    16:57:38.0905 3816 Serial - ok
    16:57:38.0920 3816 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
    16:57:38.0920 3816 sermouse - ok
    16:57:38.0952 3816 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
    16:57:38.0952 3816 SessionEnv - ok
    16:57:38.0952 3816 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
    16:57:38.0952 3816 sffdisk - ok
    16:57:38.0967 3816 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
    16:57:38.0967 3816 sffp_mmc - ok
    16:57:38.0983 3816 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
    16:57:38.0983 3816 sffp_sd - ok
    16:57:38.0983 3816 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
    16:57:38.0983 3816 sfloppy - ok
    16:57:39.0014 3816 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
    16:57:39.0030 3816 SharedAccess - ok
    16:57:39.0045 3816 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
    16:57:39.0045 3816 ShellHWDetection - ok
    16:57:39.0045 3816 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
    16:57:39.0045 3816 SiSRaid2 - ok
    16:57:39.0061 3816 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
    16:57:39.0061 3816 SiSRaid4 - ok
    16:57:39.0061 3816 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
    16:57:39.0061 3816 Smb - ok
    16:57:39.0092 3816 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
    16:57:39.0092 3816 SNMPTRAP - ok
    16:57:39.0108 3816 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
    16:57:39.0108 3816 spldr - ok
    16:57:39.0154 3816 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
    16:57:39.0170 3816 Spooler - ok
    16:57:39.0264 3816 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
    16:57:39.0295 3816 sppsvc - ok
    16:57:39.0342 3816 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
    16:57:39.0342 3816 sppuinotify - ok
    16:57:39.0373 3816 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
    16:57:39.0373 3816 srv - ok
    16:57:39.0388 3816 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
    16:57:39.0388 3816 srv2 - ok
    16:57:39.0404 3816 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
    16:57:39.0404 3816 srvnet - ok
    16:57:39.0435 3816 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
    16:57:39.0435 3816 SSDPSRV - ok
    16:57:39.0435 3816 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
    16:57:39.0435 3816 SstpSvc - ok
    16:57:39.0451 3816 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
    16:57:39.0451 3816 stexstor - ok
    16:57:39.0498 3816 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
    16:57:39.0498 3816 stisvc - ok
    16:57:39.0513 3816 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
    16:57:39.0529 3816 swenum - ok
    16:57:39.0607 3816 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    16:57:39.0622 3816 SwitchBoard - ok
    16:57:39.0654 3816 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
    16:57:39.0654 3816 swprv - ok
    16:57:39.0700 3816 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
    16:57:39.0716 3816 SysMain - ok
    16:57:39.0794 3816 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
    16:57:39.0794 3816 TabletInputService - ok
    16:57:40.0106 3816 TabletServiceWacom (34d92e8cb04dcaeeae054fede7526282) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
    16:57:40.0137 3816 TabletServiceWacom - ok
    16:57:40.0184 3816 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
    16:57:40.0184 3816 TapiSrv - ok
    16:57:40.0200 3816 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
    16:57:40.0200 3816 TBS - ok
    16:57:40.0324 3816 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
    16:57:40.0356 3816 Tcpip - ok
    16:57:40.0543 3816 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
    16:57:40.0558 3816 TCPIP6 - ok
    16:57:40.0636 3816 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
    16:57:40.0636 3816 tcpipreg - ok
    16:57:40.0668 3816 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
    16:57:40.0668 3816 TDPIPE - ok
    16:57:40.0714 3816 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
    16:57:40.0714 3816 TDTCP - ok
    16:57:40.0730 3816 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
    16:57:40.0746 3816 tdx - ok
    16:57:40.0761 3816 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
    16:57:40.0761 3816 TermDD - ok
    16:57:40.0792 3816 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
    16:57:40.0792 3816 TermService - ok
    16:57:40.0886 3816 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
    16:57:40.0902 3816 Themes - ok
    16:57:40.0917 3816 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
    16:57:40.0917 3816 THREADORDER - ok
    16:57:40.0933 3816 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
    16:57:40.0948 3816 TrkWks - ok
    16:57:40.0964 3816 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
    16:57:40.0964 3816 TrustedInstaller - ok
    16:57:40.0980 3816 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
    16:57:40.0980 3816 tssecsrv - ok
    16:57:40.0995 3816 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
    16:57:40.0995 3816 TsUsbFlt - ok
    16:57:40.0995 3816 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
    16:57:40.0995 3816 TsUsbGD - ok
    16:57:41.0011 3816 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
    16:57:41.0011 3816 tunnel - ok
    16:57:41.0011 3816 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
    16:57:41.0026 3816 uagp35 - ok
    16:57:41.0042 3816 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
    16:57:41.0042 3816 udfs - ok
    16:57:41.0058 3816 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
    16:57:41.0058 3816 UI0Detect - ok
    16:57:41.0073 3816 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
    16:57:41.0073 3816 uliagpkx - ok
    16:57:41.0089 3816 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
    16:57:41.0089 3816 umbus - ok
    16:57:41.0104 3816 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
    16:57:41.0104 3816 UmPass - ok
    16:57:41.0120 3816 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
    16:57:41.0120 3816 upnphost - ok
    16:57:41.0136 3816 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
    16:57:41.0151 3816 usbccgp - ok
    16:57:41.0151 3816 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
    16:57:41.0151 3816 usbcir - ok
    16:57:41.0167 3816 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
    16:57:41.0167 3816 usbehci - ok
    16:57:41.0182 3816 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
    16:57:41.0182 3816 usbhub - ok
    16:57:41.0182 3816 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
    16:57:41.0182 3816 usbohci - ok
    16:57:41.0198 3816 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\drivers\usbprint.sys
    16:57:41.0198 3816 usbprint - ok
    16:57:41.0214 3816 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
    16:57:41.0214 3816 USBSTOR - ok
    16:57:41.0229 3816 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
    16:57:41.0229 3816 usbuhci - ok
    16:57:41.0245 3816 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
    16:57:41.0245 3816 UxSms - ok
    16:57:41.0276 3816 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
    16:57:41.0276 3816 VaultSvc - ok
    16:57:41.0292 3816 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
    16:57:41.0292 3816 vdrvroot - ok
    16:57:41.0338 3816 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
    16:57:41.0338 3816 vds - ok
    16:57:41.0338 3816 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
    16:57:41.0354 3816 vga - ok
    16:57:41.0354 3816 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
    16:57:41.0354 3816 VgaSave - ok
    16:57:41.0370 3816 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
    16:57:41.0370 3816 vhdmp - ok
    16:57:41.0385 3816 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
    16:57:41.0385 3816 viaide - ok
    16:57:41.0401 3816 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
    16:57:41.0401 3816 volmgr - ok
    16:57:41.0416 3816 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
    16:57:41.0416 3816 volmgrx - ok
    16:57:41.0432 3816 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
    16:57:41.0432 3816 volsnap - ok
    16:57:41.0448 3816 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
    16:57:41.0448 3816 vsmraid - ok
    16:57:41.0494 3816 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
    16:57:41.0510 3816 VSS - ok
    16:57:41.0572 3816 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
    16:57:41.0572 3816 vwifibus - ok
    16:57:41.0604 3816 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
    16:57:41.0635 3816 W32Time - ok
    16:57:41.0697 3816 wacmoumonitor (fe75777289278a4941fe6139e82b3bd9) C:\Windows\system32\DRIVERS\wacmoumonitor.sys
    16:57:41.0713 3816 wacmoumonitor - ok
    16:57:41.0760 3816 wacommousefilter (e04d43c7d1641e95d35cae6086c7e350) C:\Windows\system32\DRIVERS\wacommousefilter.sys
    16:57:41.0760 3816 wacommousefilter - ok
    16:57:41.0760 3816 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
    16:57:41.0775 3816 WacomPen - ok
    16:57:41.0806 3816 wacomvhid (ec1ceb237e365330c1fcfc4876aa0ac0) C:\Windows\system32\DRIVERS\wacomvhid.sys
    16:57:41.0806 3816 wacomvhid - ok
    16:57:41.0822 3816 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
    16:57:41.0822 3816 WANARP - ok
    16:57:41.0838 3816 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
    16:57:41.0838 3816 Wanarpv6 - ok
    16:57:41.0947 3816 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
    16:57:41.0994 3816 WatAdminSvc - ok
    16:57:42.0056 3816 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
    16:57:42.0103 3816 wbengine - ok
    16:57:42.0165 3816 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
    16:57:42.0165 3816 WbioSrvc - ok
    16:57:42.0196 3816 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
    16:57:42.0228 3816 wcncsvc - ok
    16:57:42.0274 3816 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
    16:57:42.0290 3816 WcsPlugInService - ok
    16:57:42.0290 3816 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
    16:57:42.0306 3816 Wd - ok
    16:57:42.0368 3816 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
    16:57:42.0384 3816 Wdf01000 - ok
    16:57:42.0399 3816 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
    16:57:42.0399 3816 WdiServiceHost - ok
    16:57:42.0399 3816 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
    16:57:42.0399 3816 WdiSystemHost - ok
    16:57:42.0415 3816 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
    16:57:42.0415 3816 WebClient - ok
    16:57:42.0430 3816 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
    16:57:42.0430 3816 Wecsvc - ok
    16:57:42.0446 3816 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
    16:57:42.0446 3816 wercplsupport - ok
    16:57:42.0462 3816 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
    16:57:42.0462 3816 WerSvc - ok
    16:57:42.0477 3816 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
    16:57:42.0477 3816 WfpLwf - ok
    16:57:42.0493 3816 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
    16:57:42.0493 3816 WIMMount - ok
    16:57:42.0524 3816 WinDefend - ok
    16:57:42.0540 3816 WinHttpAutoProxySvc - ok
    16:57:42.0602 3816 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
    16:57:42.0602 3816 Winmgmt - ok
    16:57:42.0711 3816 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
    16:57:42.0774 3816 WinRM - ok
    16:57:42.0836 3816 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
    16:57:42.0836 3816 Wlansvc - ok
    16:57:42.0867 3816 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
    16:57:42.0883 3816 wlcrasvc - ok
    16:57:42.0992 3816 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    16:57:43.0008 3816 wlidsvc - ok
    16:57:43.0070 3816 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
    16:57:43.0070 3816 WmiAcpi - ok
    16:57:43.0132 3816 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
    16:57:43.0132 3816 wmiApSrv - ok
    16:57:43.0148 3816 WMPNetworkSvc - ok
    16:57:43.0179 3816 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
    16:57:43.0179 3816 WPCSvc - ok
    16:57:43.0179 3816 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
    16:57:43.0195 3816 WPDBusEnum - ok
    16:57:43.0210 3816 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
    16:57:43.0210 3816 ws2ifsl - ok
    16:57:43.0242 3816 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
    16:57:43.0257 3816 wscsvc - ok
    16:57:43.0257 3816 WSearch - ok
    16:57:43.0413 3816 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
    16:57:43.0476 3816 wuauserv - ok
    16:57:43.0507 3816 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
    16:57:43.0507 3816 WudfPf - ok
    16:57:43.0522 3816 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
    16:57:43.0538 3816 WUDFRd - ok
    16:57:43.0538 3816 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
    16:57:43.0538 3816 wudfsvc - ok
    16:57:43.0554 3816 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
    16:57:43.0554 3816 WwanSvc - ok
    16:57:43.0585 3816 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
    16:57:43.0819 3816 \Device\Harddisk0\DR0 - ok
    16:57:43.0819 3816 Boot (0x1200) (52b22f38444a2f3bb9b56e09cda735a0) \Device\Harddisk0\DR0\Partition0
    16:57:43.0819 3816 \Device\Harddisk0\DR0\Partition0 - ok
    16:57:43.0819 3816 ============================================================
    16:57:43.0819 3816 Scan finished
    16:57:43.0819 3816 ============================================================
    16:57:43.0834 6948 Detected object count: 0
    16:57:43.0834 6948 Actual detected object count: 0
    9 Juillet 2012 21:06:18

    Bonsoir
    comment se comporte ton pc?
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS