Sign in to follow this  
Followers 0
rob_roy

Need help with very bad virus!

26 posts in this topic

Hello smart people of the universe! I need help with this virus/ hijacker (of some sort)- I am using the most up to date AV (IObit Malware Fighter, ESET Smart Security, SPYBOT S&D just to name a few i've been using) but none of which is picking up anything.

The virus is altering my web browsers' rendering (both chrome and firefox, wouldn't dare use IE anyway) eg. random images on webpages are mixed up and replaced with each other, tried to use an online scanner through Kaspersky but the webpage for downloading it is appearing so badly altered that i couldn't.

On initial start-up of my Windows 7 64-bit Home Premium computer, the CPU is running at 100% and the culprit appears to be "dllhost.exe". I have read up about this and it seems it is not a virus, but is instead hosting a virus (not too sure)? I am able to end the process with task manager and CPU usage seems to go back to normal but something is still altering my browsers... Could this be more than one virus?

Thank you for any help or suggestions in advance! :Dhijackthis2.log

Share this post


Link to post
Share on other sites

Welcome to the forum, please start at the link below:

http://forums.malwar...?showtopic=9573

Post back the 2 logs here.....DDS.txt and Attach.txt

<====><====><====><====><====><====><====><====>

Next.......

Please remove any usb or external drives from the computer before you run this scan!

Please download and run RogueKiller to your desktop.

For Windows XP, double-click to start.

For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

Click Scan to scan the system.

When the scan completes > Close out the program > Don't Fix anything!

Don't run any other options, they're not all bad!!!!!!!

Post back the report which should be located on your desktop.

MrC

Share this post


Link to post
Share on other sites

Welcome to the forum, please start at the link below:

http://forums.malwar...?showtopic=9573

Post back the 2 logs here.....DDS.txt and Attach.txt

<====><====><====><====><====><====><====><====>

Next.......

Please remove any usb or external drives from the computer before you run this scan!

Please download and run RogueKiller to your desktop.

For Windows XP, double-click to start.

For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

Click Scan to scan the system.

When the scan completes > Close out the program > Don't Fix anything!

Don't run any other options, they're not all bad!!!!!!!

Post back the report which should be located on your desktop.

MrC

Ok, have done as requested... did the hijackthis report show anything unusual?

Attach.txt

DDS.txt

RKreport1.txt

Share this post


Link to post
Share on other sites
AV: ESET Smart Security 5.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}

SP: ESET Smart Security 5.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}

FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}

You can't have more than one anti-virus program running on the system.

First....please disable Windows Defender:

http://www.howtogeek...ow-turn-it-off/

------------------------

Uninstall > IObit Malware Fighter

-------------------------

and.........

Before we proceed further, please uninstall or disable uTorrent and any other peer-to-peer filesharing app.

Continued use of filesharing or ill-advised downloads will surely re-infect your system.

Risks of File-Sharing Technology.

P2P file sharing: Know the risks

It's also against the forums policy:

http://forums.malwar...showtopic=97700

MrC

Share this post


Link to post
Share on other sites

I've uninstalled Iobit anti-malware & Utorrent, is there anything else i should do? (i used the general windows uninstaller for both which i believe can leave remnants of a program's files and data, so please if you find anything else regarding p2p software, it is not there intentionally).

Share this post


Link to post
Share on other sites

OK, lets run some scans now.........

Please download and run TDSSKiller to your desktop as outlined below:

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

For Windows XP, double-click to start.

For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.

tdss_1.jpg

-------------------------

Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.

tdss_2.jpg

------------------------

Click the Start Scan button.

tdss_3.jpg

-----------------------

If a suspicious object is detected, the default action will be Skip, click on Continue

If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose

Skip and click on Continue

tdss_4.jpg

----------------------

If malicious objects are found, they will show in the Scan results and offer three (3) options.

Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

tdss_5.jpg

--------------------

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.

Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.

-------------------

Here's a summary of what to do if you would like to print it out:

If a suspicious object is detected, the default action will be Skip, click on Continue

If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose

Skip and click on Continue

If malicious objects are found, they will show in the Scan results and offer three (3) options.

Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

MrC

Share this post


Link to post
Share on other sites

11:12:37.0401 9240 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05

11:12:38.0125 9240 ============================================================

11:12:38.0125 9240 Current date / time: 2012/08/20 11:12:38.0125

11:12:38.0125 9240 SystemInfo:

11:12:38.0125 9240

11:12:38.0125 9240 OS Version: 6.1.7601 ServicePack: 1.0

11:12:38.0125 9240 Product type: Workstation

11:12:38.0125 9240 ComputerName: ROBAUSTEN-PC

11:12:38.0125 9240 UserName: Rob Austen

11:12:38.0125 9240 Windows directory: C:\windows

11:12:38.0125 9240 System windows directory: C:\windows

11:12:38.0125 9240 Running under WOW64

11:12:38.0125 9240 Processor architecture: Intel x64

11:12:38.0125 9240 Number of processors: 2

11:12:38.0125 9240 Page size: 0x1000

11:12:38.0125 9240 Boot type: Normal boot

11:12:38.0125 9240 ============================================================

11:12:38.0848 9240 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

11:12:38.0853 9240 ============================================================

11:12:38.0853 9240 \Device\Harddisk0\DR0:

11:12:38.0853 9240 MBR partitions:

11:12:38.0853 9240 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x3A096800

11:12:38.0853 9240 ============================================================

11:12:38.0892 9240 C: <-> \Device\Harddisk0\DR0\Partition1

11:12:38.0892 9240 ============================================================

11:12:38.0892 9240 Initialize success

11:12:38.0892 9240 ============================================================

11:13:32.0896 10024 ============================================================

11:13:32.0896 10024 Scan started

11:13:32.0896 10024 Mode: Manual; SigCheck; TDLFS;

11:13:32.0896 10024 ============================================================

11:13:33.0175 10024 ================ Scan services =============================

11:13:33.0440 10024 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys

11:13:33.0628 10024 1394ohci - ok

11:13:33.0693 10024 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\windows\system32\drivers\ACPI.sys

11:13:33.0712 10024 ACPI - ok

11:13:33.0764 10024 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys

11:13:33.0878 10024 AcpiPmi - ok

11:13:33.0975 10024 [ 4ae327c9c375d985ff2a2aab92765218 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

11:13:34.0029 10024 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning

11:13:34.0029 10024 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)

11:13:34.0087 10024 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys

11:13:34.0109 10024 adp94xx - ok

11:13:34.0150 10024 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys

11:13:34.0197 10024 adpahci - ok

11:13:34.0253 10024 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys

11:13:34.0269 10024 adpu320 - ok

11:13:34.0303 10024 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll

11:13:34.0475 10024 AeLookupSvc - ok

11:13:34.0539 10024 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\windows\system32\drivers\afd.sys

11:13:34.0609 10024 AFD - ok

11:13:34.0691 10024 [ b65f8dba54f251906bbe8611b5a0e7ab ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe

11:13:34.0782 10024 AgereModemAudio - ok

11:13:34.0826 10024 [ c98356d813b581e9c425b42a5d146ce0 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys

11:13:34.0890 10024 AgereSoftModem - ok

11:13:34.0969 10024 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\windows\system32\drivers\agp440.sys

11:13:34.0981 10024 agp440 - ok

11:13:35.0022 10024 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\windows\System32\alg.exe

11:13:35.0103 10024 ALG - ok

11:13:35.0164 10024 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\windows\system32\drivers\aliide.sys

11:13:35.0175 10024 aliide - ok

11:13:35.0236 10024 [ 9c616ba191b80f5cd1a1b9553e107100 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe

11:13:35.0356 10024 AMD External Events Utility - ok

11:13:35.0448 10024 AMD FUEL Service - ok

11:13:35.0493 10024 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\windows\system32\drivers\amdide.sys

11:13:35.0504 10024 amdide - ok

11:13:35.0557 10024 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\windows\system32\DRIVERS\amdiox64.sys

11:13:35.0578 10024 amdiox64 - ok

11:13:35.0613 10024 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys

11:13:35.0703 10024 AmdK8 - ok

11:13:35.0937 10024 [ 5165e83751b8ff40e5e4925996fcc506 ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys

11:13:36.0397 10024 amdkmdag - ok

11:13:36.0452 10024 [ 86ab3cf484260c4318f3a6e8b035f422 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys

11:13:36.0501 10024 amdkmdap - ok

11:13:36.0523 10024 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys

11:13:36.0570 10024 AmdPPM - ok

11:13:36.0614 10024 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\windows\system32\drivers\amdsata.sys

11:13:36.0628 10024 amdsata - ok

11:13:36.0663 10024 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys

11:13:36.0679 10024 amdsbs - ok

11:13:36.0711 10024 [ deda72a4ab5416ad0a09faecfa6056c2 ] AmdTools64 C:\windows\system32\DRIVERS\AmdTools64.sys

11:13:36.0723 10024 AmdTools64 - ok

11:13:36.0745 10024 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\windows\system32\drivers\amdxata.sys

11:13:36.0769 10024 amdxata - ok

11:13:36.0795 10024 [ a4947e035b441d946422bd9a5d411c98 ] amd_sata C:\windows\system32\DRIVERS\amd_sata.sys

11:13:36.0813 10024 amd_sata - ok

11:13:36.0833 10024 [ 7a0e0ce7aecee3f175cb2dac81694499 ] amd_xata C:\windows\system32\DRIVERS\amd_xata.sys

11:13:36.0852 10024 amd_xata - ok

11:13:37.0100 10024 [ 5b25d1a753cc3a3edb909bb759ac1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys

11:13:37.0111 10024 AODDriver4.1 - ok

11:13:37.0150 10024 [ 7f46bee50e6fdb6473fbe172466a9ead ] AODDriver4.2.0 C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys

11:13:37.0161 10024 AODDriver4.2.0 - ok

11:13:37.0184 10024 [ dcadad156815b8d6f935377806a2cf95 ] AODService C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe

11:13:37.0194 10024 AODService - ok

11:13:37.0305 10024 [ f41e453a90ef19217cee1675f5256ee7 ] Apache2.2 C:\xampp\apache\bin\httpd.exe

11:13:37.0310 10024 Apache2.2 ( UnsignedFile.Multi.Generic ) - warning

11:13:37.0310 10024 Apache2.2 - detected UnsignedFile.Multi.Generic (1)

11:13:37.0393 10024 [ 59d01fa91962c9c1e9b4022b2d3b46db ] AppHostSvc C:\windows\system32\inetsrv\apphostsvc.dll

11:13:37.0499 10024 AppHostSvc - ok

11:13:37.0572 10024 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\windows\system32\drivers\appid.sys

11:13:37.0779 10024 AppID - ok

11:13:37.0810 10024 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\windows\System32\appidsvc.dll

11:13:37.0869 10024 AppIDSvc - ok

11:13:37.0930 10024 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\windows\System32\appinfo.dll

11:13:37.0989 10024 Appinfo - ok

11:13:38.0030 10024 [ c484f8ceb1717c540242531db7845c4e ] arc C:\windows\system32\DRIVERS\arc.sys

11:13:38.0045 10024 arc - ok

11:13:38.0061 10024 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\windows\system32\DRIVERS\arcsas.sys

11:13:38.0078 10024 arcsas - ok

11:13:38.0135 10024 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys

11:13:38.0220 10024 AsyncMac - ok

11:13:38.0273 10024 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\windows\system32\drivers\atapi.sys

11:13:38.0286 10024 atapi - ok

11:13:38.0355 10024 [ e857eee6b92aaa473ebb3465add8f7e7 ] athr C:\windows\system32\DRIVERS\athrx.sys

11:13:38.0487 10024 athr - ok

11:13:38.0536 10024 [ 24464b908e143d2561e9e452fee97309 ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys

11:13:38.0550 10024 AtiHDAudioService - ok

11:13:38.0598 10024 atillk64 - ok

11:13:38.0639 10024 [ 7c5d273e29dcc5505469b299c6f29163 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys

11:13:38.0652 10024 AtiPcie - ok

11:13:38.0674 10024 [ b07e6681d303a612680223c729b021e2 ] ATITool C:\windows\system32\DRIVERS\ATITool64.sys

11:13:38.0697 10024 ATITool ( UnsignedFile.Multi.Generic ) - warning

11:13:38.0697 10024 ATITool - detected UnsignedFile.Multi.Generic (1)

11:13:38.0778 10024 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll

11:13:38.0865 10024 AudioEndpointBuilder - ok

11:13:38.0945 10024 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\windows\System32\Audiosrv.dll

11:13:38.0991 10024 AudioSrv - ok

11:13:39.0051 10024 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\windows\System32\AxInstSV.dll

11:13:39.0141 10024 AxInstSV - ok

11:13:39.0200 10024 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys

11:13:39.0258 10024 b06bdrv - ok

11:13:39.0299 10024 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys

11:13:39.0344 10024 b57nd60a - ok

11:13:39.0467 10024 [ 5b5c36b2ec500462a715db6bcbaf5da7 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys

11:13:39.0559 10024 BCM43XX - ok

11:13:39.0639 10024 [ 6163664c7e9cd110af70180c126c3fdc ] BcmSqlStartupSvc C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe

11:13:39.0652 10024 BcmSqlStartupSvc - ok

11:13:39.0685 10024 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\windows\System32\bdesvc.dll

11:13:39.0741 10024 BDESVC - ok

11:13:39.0758 10024 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\windows\system32\drivers\Beep.sys

11:13:39.0816 10024 Beep - ok

11:13:39.0892 10024 [ 82974d6a2fd19445cc5171fc378668a4 ] BFE C:\windows\System32\bfe.dll

11:13:39.0959 10024 BFE - ok

11:13:40.0015 10024 [ 1ea7969e3271cbc59e1730697dc74682 ] BITS C:\windows\System32\qmgr.dll

11:13:40.0081 10024 BITS - ok

11:13:40.0119 10024 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys

11:13:40.0132 10024 blbdrive - ok

11:13:40.0175 10024 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\windows\system32\DRIVERS\bowser.sys

11:13:40.0194 10024 bowser - ok

11:13:40.0236 10024 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys

11:13:40.0277 10024 BrFiltLo - ok

11:13:40.0301 10024 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys

11:13:40.0316 10024 BrFiltUp - ok

11:13:40.0357 10024 [ 8ef0d5c41ec907751b8429162b1239ed ] Browser C:\windows\System32\browser.dll

11:13:40.0415 10024 Browser - ok

11:13:40.0448 10024 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\windows\System32\Drivers\Brserid.sys

11:13:40.0509 10024 Brserid - ok

11:13:40.0524 10024 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys

11:13:40.0539 10024 BrSerWdm - ok

11:13:40.0559 10024 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys

11:13:40.0588 10024 BrUsbMdm - ok

11:13:40.0625 10024 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys

11:13:40.0659 10024 BrUsbSer - ok

11:13:40.0692 10024 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys

11:13:40.0731 10024 BTHMODEM - ok

11:13:40.0783 10024 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\windows\system32\bthserv.dll

11:13:40.0837 10024 bthserv - ok

11:13:40.0871 10024 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\windows\system32\DRIVERS\cdfs.sys

11:13:41.0010 10024 cdfs - ok

11:13:41.0077 10024 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys

11:13:41.0103 10024 cdrom - ok

11:13:41.0149 10024 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\windows\System32\certprop.dll

11:13:41.0214 10024 CertPropSvc - ok

11:13:41.0303 10024 [ 41e7c4fa6491747402cfca77cc1c7aab ] cfWiMAXService C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe

11:13:41.0315 10024 cfWiMAXService - ok

11:13:41.0364 10024 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\windows\system32\DRIVERS\circlass.sys

11:13:41.0395 10024 circlass - ok

11:13:41.0443 10024 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\windows\system32\CLFS.sys

11:13:41.0462 10024 CLFS - ok

11:13:41.0548 10024 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

11:13:41.0566 10024 clr_optimization_v2.0.50727_32 - ok

11:13:41.0611 10024 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

11:13:41.0622 10024 clr_optimization_v2.0.50727_64 - ok

11:13:41.0691 10024 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

11:13:41.0704 10024 clr_optimization_v4.0.30319_32 - ok

11:13:41.0738 10024 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

11:13:41.0751 10024 clr_optimization_v4.0.30319_64 - ok

11:13:41.0791 10024 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys

11:13:41.0827 10024 CmBatt - ok

11:13:41.0867 10024 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\windows\system32\drivers\cmdide.sys

11:13:41.0879 10024 cmdide - ok

11:13:41.0921 10024 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\windows\system32\Drivers\cng.sys

11:13:41.0975 10024 CNG - ok

11:13:42.0026 10024 [ 25c58ee97be0416a373e3e4f855206b5 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys

11:13:42.0049 10024 CnxtHdAudService - ok

11:13:42.0095 10024 [ 89c99ab4ae9535f727791592d84d4821 ] CnxtHdmiAudService C:\windows\system32\drivers\CHDMI64.sys

11:13:42.0119 10024 CnxtHdmiAudService - ok

11:13:42.0167 10024 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys

11:13:42.0180 10024 Compbatt - ok

11:13:42.0226 10024 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys

11:13:42.0273 10024 CompositeBus - ok

11:13:42.0300 10024 COMSysApp - ok

11:13:42.0335 10024 [ cab0eeaf5295fc96ddd3e19dce27e131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

11:13:42.0343 10024 ConfigFree Service - ok

11:13:42.0373 10024 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys

11:13:42.0386 10024 crcdisk - ok

11:13:42.0422 10024 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\windows\system32\cryptsvc.dll

11:13:42.0472 10024 CryptSvc - ok

11:13:42.0530 10024 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\windows\system32\rpcss.dll

11:13:42.0602 10024 DcomLaunch - ok

11:13:42.0638 10024 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\windows\System32\defragsvc.dll

11:13:42.0687 10024 defragsvc - ok

11:13:42.0735 10024 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\windows\system32\Drivers\dfsc.sys

11:13:42.0785 10024 DfsC - ok

11:13:42.0850 10024 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\windows\system32\dhcpcore.dll

11:13:42.0888 10024 Dhcp - ok

11:13:42.0917 10024 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\windows\system32\drivers\discache.sys

11:13:42.0976 10024 discache - ok

11:13:43.0002 10024 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\windows\system32\DRIVERS\disk.sys

11:13:43.0022 10024 Disk - ok

11:13:43.0063 10024 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\windows\System32\dnsrslvr.dll

11:13:43.0086 10024 Dnscache - ok

11:13:43.0133 10024 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\windows\System32\dot3svc.dll

11:13:43.0191 10024 dot3svc - ok

11:13:43.0226 10024 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\windows\system32\dps.dll

11:13:43.0292 10024 DPS - ok

11:13:43.0341 10024 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys

11:13:43.0380 10024 drmkaud - ok

11:13:43.0466 10024 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys

11:13:43.0495 10024 DXGKrnl - ok

11:13:43.0571 10024 [ d00eae9c735a7dee8049e50d73d25434 ] eamonm C:\windows\system32\DRIVERS\eamonm.sys

11:13:43.0586 10024 eamonm - ok

11:13:43.0633 10024 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\windows\System32\eapsvc.dll

11:13:43.0689 10024 EapHost - ok

11:13:43.0796 10024 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\windows\system32\DRIVERS\evbda.sys

11:13:43.0868 10024 ebdrv - ok

11:13:43.0916 10024 efavdrv - ok

11:13:43.0950 10024 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\windows\System32\lsass.exe

11:13:44.0010 10024 EFS - ok

11:13:44.0048 10024 [ e5edde3c8158dd0cbc5812f201dcded0 ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys

11:13:44.0061 10024 ehdrv - ok

11:13:44.0118 10024 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\windows\ehome\ehRecvr.exe

11:13:44.0196 10024 ehRecvr - ok

11:13:44.0234 10024 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\windows\ehome\ehsched.exe

11:13:44.0295 10024 ehSched - ok

11:13:44.0727 10024 [ ad4faade819e0da9933bea7c01d2c763 ] ekrn C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe

11:13:44.0768 10024 ekrn - ok

11:13:44.0807 10024 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys

11:13:44.0828 10024 elxstor - ok

11:13:44.0894 10024 [ 587f0f4145a1536a6e37efd769b7665f ] epfw C:\windows\system32\DRIVERS\epfw.sys

11:13:44.0922 10024 epfw - ok

11:13:44.0986 10024 [ d2f812358ee8ee23cbb5c4daffb5b819 ] EpfwLWF C:\windows\system32\DRIVERS\EpfwLWF.sys

11:13:44.0997 10024 EpfwLWF - ok

11:13:45.0044 10024 [ 34bf55d69ab74d14c7e7a17259cb7df8 ] epfwwfp C:\windows\system32\DRIVERS\epfwwfp.sys

11:13:45.0055 10024 epfwwfp - ok

11:13:45.0096 10024 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\windows\system32\drivers\errdev.sys

11:13:45.0140 10024 ErrDev - ok

11:13:45.0402 10024 esihdrv - ok

11:13:45.0445 10024 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\windows\system32\es.dll

11:13:45.0504 10024 EventSystem - ok

11:13:45.0573 10024 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\windows\system32\drivers\exfat.sys

11:13:45.0628 10024 exfat - ok

11:13:45.0666 10024 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\windows\system32\drivers\fastfat.sys

11:13:45.0724 10024 fastfat - ok

11:13:45.0785 10024 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\windows\system32\fxssvc.exe

11:13:45.0853 10024 Fax - ok

11:13:45.0879 10024 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\windows\system32\DRIVERS\fdc.sys

11:13:45.0910 10024 fdc - ok

11:13:45.0939 10024 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\windows\system32\fdPHost.dll

11:13:45.0998 10024 fdPHost - ok

11:13:46.0024 10024 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\windows\system32\fdrespub.dll

11:13:46.0080 10024 FDResPub - ok

11:13:46.0119 10024 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys

11:13:46.0131 10024 FileInfo - ok

11:13:46.0152 10024 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\windows\system32\drivers\filetrace.sys

11:13:46.0215 10024 Filetrace - ok

11:13:46.0261 10024 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys

11:13:46.0295 10024 flpydisk - ok

11:13:46.0356 10024 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys

11:13:46.0372 10024 FltMgr - ok

11:13:46.0433 10024 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\windows\system32\FntCache.dll

11:13:46.0473 10024 FontCache - ok

11:13:46.0531 10024 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

11:13:46.0540 10024 FontCache3.0.0.0 - ok

11:13:46.0577 10024 [ d43703496149971890703b4b1b723eac ] FsDepends C:\windows\system32\drivers\FsDepends.sys

11:13:46.0592 10024 FsDepends - ok

11:13:46.0617 10024 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys

11:13:46.0629 10024 Fs_Rec - ok

11:13:46.0680 10024 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\windows\system32\DRIVERS\fvevol.sys

11:13:46.0699 10024 fvevol - ok

11:13:46.0741 10024 [ 60acb128e64c35c2b4e4aab1b0a5c293 ] FwLnk C:\windows\system32\DRIVERS\FwLnk.sys

11:13:46.0796 10024 FwLnk - ok

11:13:46.0828 10024 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys

11:13:46.0841 10024 gagp30kx - ok

11:13:46.0897 10024 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\windows\System32\gpsvc.dll

11:13:46.0958 10024 gpsvc - ok

11:13:47.0024 10024 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

11:13:47.0035 10024 gupdate - ok

11:13:47.0061 10024 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

11:13:47.0071 10024 gupdatem - ok

11:13:47.0109 10024 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys

11:13:47.0164 10024 hcw85cir - ok

11:13:47.0232 10024 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys

11:13:47.0251 10024 HdAudAddService - ok

11:13:47.0283 10024 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys

11:13:47.0319 10024 HDAudBus - ok

11:13:47.0358 10024 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys

11:13:47.0406 10024 HidBatt - ok

11:13:47.0411 10024 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys

11:13:47.0464 10024 HidBth - ok

11:13:47.0488 10024 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys

11:13:47.0523 10024 HidIr - ok

11:13:47.0558 10024 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\windows\system32\hidserv.dll

11:13:47.0610 10024 hidserv - ok

11:13:47.0677 10024 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys

11:13:47.0689 10024 HidUsb - ok

11:13:47.0722 10024 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\windows\system32\kmsvc.dll

11:13:47.0788 10024 hkmsvc - ok

11:13:47.0819 10024 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\windows\system32\ListSvc.dll

11:13:47.0874 10024 HomeGroupListener - ok

11:13:47.0922 10024 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\windows\system32\provsvc.dll

11:13:48.0028 10024 HomeGroupProvider - ok

11:13:48.0067 10024 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys

11:13:48.0082 10024 HpSAMD - ok

11:13:48.0152 10024 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\windows\system32\drivers\HTTP.sys

11:13:48.0224 10024 HTTP - ok

11:13:48.0258 10024 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys

11:13:48.0268 10024 hwpolicy - ok

11:13:48.0324 10024 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys

11:13:48.0338 10024 i8042prt - ok

11:13:48.0393 10024 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys

11:13:48.0414 10024 iaStorV - ok

11:13:48.0489 10024 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

11:13:48.0516 10024 idsvc - ok

11:13:48.0550 10024 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys

11:13:48.0563 10024 iirsp - ok

11:13:48.0623 10024 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\windows\System32\ikeext.dll

11:13:48.0688 10024 IKEEXT - ok

11:13:48.0721 10024 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\windows\system32\drivers\intelide.sys

11:13:48.0734 10024 intelide - ok

11:13:48.0759 10024 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys

11:13:48.0792 10024 intelppm - ok

11:13:48.0829 10024 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\windows\system32\ipbusenum.dll

11:13:48.0887 10024 IPBusEnum - ok

11:13:48.0923 10024 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys

11:13:48.0976 10024 IpFilterDriver - ok

11:13:49.0027 10024 [ a34a587fffd45fa649fba6d03784d257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll

11:13:49.0091 10024 iphlpsvc - ok

11:13:49.0128 10024 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys

11:13:49.0163 10024 IPMIDRV - ok

11:13:49.0232 10024 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\windows\system32\drivers\ipnat.sys

11:13:49.0283 10024 IPNAT - ok

11:13:49.0304 10024 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\windows\system32\drivers\irenum.sys

11:13:49.0348 10024 IRENUM - ok

11:13:49.0400 10024 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\windows\system32\drivers\isapnp.sys

11:13:49.0418 10024 isapnp - ok

11:13:49.0453 10024 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys

11:13:49.0469 10024 iScsiPrt - ok

11:13:49.0561 10024 [ 928034ecce50dc6ab6c4cd575b78bd10 ] JoinMEUI Assistant Service C:\Program Files (x86)\Join Me\JoinMEAssistantServices.exe

11:13:49.0604 10024 JoinMEUI Assistant Service ( UnsignedFile.Multi.Generic ) - warning

11:13:49.0604 10024 JoinMEUI Assistant Service - detected UnsignedFile.Multi.Generic (1)

11:13:49.0668 10024 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys

11:13:49.0679 10024 kbdclass - ok

11:13:49.0697 10024 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys

11:13:49.0727 10024 kbdhid - ok

11:13:49.0751 10024 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\windows\system32\lsass.exe

11:13:49.0764 10024 KeyIso - ok

11:13:49.0790 10024 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys

11:13:49.0803 10024 KSecDD - ok

11:13:49.0874 10024 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys

11:13:49.0887 10024 KSecPkg - ok

11:13:49.0925 10024 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys

11:13:49.0980 10024 ksthunk - ok

11:13:50.0021 10024 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\windows\system32\msdtckrm.dll

11:13:50.0090 10024 KtmRm - ok

11:13:50.0133 10024 [ fc741259b7c22379ee83257d7cf91151 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys

11:13:50.0151 10024 L1C - ok

11:13:50.0194 10024 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\windows\system32\srvsvc.dll

11:13:50.0266 10024 LanmanServer - ok

11:13:50.0310 10024 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\windows\System32\wkssvc.dll

11:13:50.0364 10024 LanmanWorkstation - ok

11:13:50.0409 10024 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys

11:13:50.0477 10024 lltdio - ok

11:13:50.0529 10024 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\windows\System32\lltdsvc.dll

11:13:50.0595 10024 lltdsvc - ok

11:13:50.0821 10024 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\windows\System32\lmhsvc.dll

11:13:50.0856 10024 lmhosts - ok

11:13:50.0890 10024 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys

11:13:50.0903 10024 LSI_FC - ok

11:13:50.0926 10024 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys

11:13:50.0942 10024 LSI_SAS - ok

11:13:50.0957 10024 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys

11:13:50.0969 10024 LSI_SAS2 - ok

11:13:51.0004 10024 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys

11:13:51.0018 10024 LSI_SCSI - ok

11:13:51.0032 10024 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\windows\system32\drivers\luafv.sys

11:13:51.0097 10024 luafv - ok

11:13:51.0172 10024 [ 7ad627cdb12f5f451f24c8a97ca6e175 ] massfilter_hs C:\windows\system32\drivers\massfilter_hs.sys

11:13:51.0232 10024 massfilter_hs - ok

11:13:51.0290 10024 [ dc8490812a3b72811ae534f423b4c206 ] MBAMProtector C:\windows\system32\drivers\mbam.sys

11:13:51.0303 10024 MBAMProtector - ok

11:13:51.0401 10024 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

11:13:51.0423 10024 MBAMService - ok

11:13:51.0459 10024 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll

11:13:51.0474 10024 Mcx2Svc - ok

11:13:51.0509 10024 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\windows\system32\DRIVERS\megasas.sys

11:13:51.0521 10024 megasas - ok

11:13:51.0605 10024 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys

11:13:51.0622 10024 MegaSR - ok

11:13:51.0659 10024 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\windows\system32\mmcss.dll

11:13:51.0717 10024 MMCSS - ok

11:13:51.0741 10024 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\windows\system32\drivers\modem.sys

11:13:51.0804 10024 Modem - ok

11:13:51.0839 10024 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\windows\system32\DRIVERS\monitor.sys

11:13:51.0868 10024 monitor - ok

11:13:51.0896 10024 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys

11:13:51.0909 10024 mouclass - ok

11:13:51.0924 10024 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys

11:13:51.0959 10024 mouhid - ok

11:13:51.0993 10024 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\windows\system32\drivers\mountmgr.sys

11:13:52.0005 10024 mountmgr - ok

11:13:52.0218 10024 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

11:13:52.0230 10024 MozillaMaintenance - ok

11:13:52.0270 10024 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\windows\system32\drivers\mpio.sys

11:13:52.0284 10024 mpio - ok

11:13:52.0323 10024 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys

11:13:52.0358 10024 mpsdrv - ok

11:13:52.0413 10024 [ 54ffc9c8898113ace189d4aa7199d2c1 ] MpsSvc C:\windows\system32\mpssvc.dll

11:13:52.0479 10024 MpsSvc - ok

11:13:52.0519 10024 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys

11:13:52.0567 10024 MRxDAV - ok

11:13:52.0608 10024 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys

11:13:52.0658 10024 mrxsmb - ok

11:13:52.0679 10024 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys

11:13:52.0722 10024 mrxsmb10 - ok

11:13:52.0753 10024 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys

11:13:52.0767 10024 mrxsmb20 - ok

11:13:52.0805 10024 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\windows\system32\drivers\msahci.sys

11:13:52.0817 10024 msahci - ok

11:13:52.0845 10024 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\windows\system32\drivers\msdsm.sys

11:13:52.0860 10024 msdsm - ok

11:13:52.0888 10024 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\windows\System32\msdtc.exe

11:13:52.0930 10024 MSDTC - ok

11:13:52.0997 10024 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\windows\system32\drivers\Msfs.sys

11:13:53.0033 10024 Msfs - ok

11:13:53.0059 10024 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys

11:13:53.0112 10024 mshidkmdf - ok

11:13:53.0158 10024 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\windows\system32\drivers\msisadrv.sys

11:13:53.0170 10024 msisadrv - ok

11:13:53.0192 10024 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\windows\system32\iscsiexe.dll

11:13:53.0248 10024 MSiSCSI - ok

11:13:53.0252 10024 msiserver - ok

11:13:53.0296 10024 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys

11:13:53.0350 10024 MSKSSRV - ok

11:13:53.0364 10024 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys

11:13:53.0418 10024 MSPCLOCK - ok

11:13:53.0435 10024 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys

11:13:53.0490 10024 MSPQM - ok

11:13:53.0543 10024 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\windows\system32\drivers\MsRPC.sys

11:13:53.0562 10024 MsRPC - ok

11:13:53.0614 10024 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys

11:13:53.0625 10024 mssmbios - ok

11:13:53.0665 10024 MSSQL$MSSMLBIZ - ok

11:13:53.0698 10024 MSSQL$SQLEXPRESS - ok

11:13:53.0731 10024 [ c06ea83f6fc2959e897c117255b6b1d5 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe

11:13:53.0758 10024 MSSQLServerADHelper - ok

11:13:53.0796 10024 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys

11:13:53.0850 10024 MSTEE - ok

11:13:53.0872 10024 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys

11:13:53.0901 10024 MTConfig - ok

11:13:53.0942 10024 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\windows\system32\Drivers\mup.sys

11:13:53.0955 10024 Mup - ok

11:13:53.0989 10024 [ 08835780cc6a5cff5275101b5a9d17a4 ] MxEFUF C:\windows\system32\DRIVERS\MxEFUF64.sys

11:13:54.0044 10024 MxEFUF - ok

11:13:54.0151 10024 mysql - ok

11:13:54.0199 10024 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\windows\system32\qagentRT.dll

11:13:54.0271 10024 napagent - ok

11:13:54.0322 10024 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys

11:13:54.0360 10024 NativeWifiP - ok

11:13:54.0445 10024 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\windows\system32\drivers\ndis.sys

11:13:54.0474 10024 NDIS - ok

11:13:54.0507 10024 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys

11:13:54.0580 10024 NdisCap - ok

11:13:54.0621 10024 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys

11:13:54.0685 10024 NdisTapi - ok

11:13:54.0722 10024 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys

11:13:54.0755 10024 Ndisuio - ok

11:13:54.0801 10024 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys

11:13:54.0862 10024 NdisWan - ok

11:13:54.0898 10024 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys

11:13:54.0932 10024 NDProxy - ok

11:13:54.0975 10024 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys

11:13:55.0026 10024 NetBIOS - ok

11:13:55.0064 10024 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys

11:13:55.0124 10024 NetBT - ok

11:13:55.0151 10024 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\windows\system32\lsass.exe

11:13:55.0164 10024 Netlogon - ok

11:13:55.0191 10024 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\windows\System32\netman.dll

11:13:55.0254 10024 Netman - ok

11:13:55.0300 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

11:13:55.0312 10024 NetMsmqActivator - ok

11:13:55.0316 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

11:13:55.0328 10024 NetPipeActivator - ok

11:13:55.0366 10024 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\windows\System32\netprofm.dll

11:13:55.0437 10024 netprofm - ok

11:13:55.0467 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

11:13:55.0478 10024 NetTcpActivator - ok

11:13:55.0482 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

11:13:55.0497 10024 NetTcpPortSharing - ok

11:13:55.0521 10024 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys

11:13:55.0533 10024 nfrd960 - ok

11:13:55.0587 10024 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\windows\System32\nlasvc.dll

11:13:55.0643 10024 NlaSvc - ok

11:13:56.0042 10024 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\windows\system32\drivers\Npfs.sys

11:13:56.0092 10024 Npfs - ok

11:13:56.0126 10024 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\windows\system32\nsisvc.dll

11:13:56.0182 10024 nsi - ok

11:13:56.0214 10024 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys

11:13:56.0274 10024 nsiproxy - ok

11:13:56.0344 10024 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys

11:13:56.0393 10024 Ntfs - ok

11:13:56.0733 10024 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\windows\system32\drivers\Null.sys

11:13:56.0792 10024 Null - ok

11:13:56.0821 10024 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\windows\system32\drivers\nvraid.sys

11:13:56.0835 10024 nvraid - ok

11:13:56.0875 10024 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\windows\system32\drivers\nvstor.sys

11:13:56.0889 10024 nvstor - ok

11:13:56.0928 10024 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys

11:13:56.0943 10024 nv_agp - ok

11:13:57.0043 10024 [ 1f0e05dff4f5a833168e49be1256f002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

11:13:57.0062 10024 odserv - ok

11:13:57.0092 10024 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys

11:13:57.0112 10024 ohci1394 - ok

11:13:57.0146 10024 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

11:13:57.0179 10024 ose - ok

11:13:57.0223 10024 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\windows\system32\pnrpsvc.dll

11:13:57.0287 10024 p2pimsvc - ok

11:13:57.0310 10024 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\windows\system32\p2psvc.dll

11:13:57.0331 10024 p2psvc - ok

11:13:57.0358 10024 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\windows\system32\DRIVERS\parport.sys

11:13:57.0372 10024 Parport - ok

11:13:57.0398 10024 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\windows\system32\drivers\partmgr.sys

11:13:57.0411 10024 partmgr - ok

11:13:57.0438 10024 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll

11:13:57.0475 10024 PcaSvc - ok

11:13:57.0510 10024 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\windows\system32\drivers\pci.sys

11:13:57.0525 10024 pci - ok

11:13:57.0569 10024 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\windows\system32\drivers\pciide.sys

11:13:57.0585 10024 pciide - ok

11:13:57.0606 10024 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys

11:13:57.0623 10024 pcmcia - ok

11:13:57.0635 10024 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\windows\system32\drivers\pcw.sys

11:13:57.0647 10024 pcw - ok

11:13:57.0735 10024 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\windows\system32\drivers\peauth.sys

11:13:57.0781 10024 PEAUTH - ok

11:13:57.0847 10024 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\windows\SysWow64\perfhost.exe

11:13:57.0880 10024 PerfHost - ok

11:13:57.0939 10024 [ 663962900e7fea522126ba287715bb4a ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys

11:13:57.0951 10024 PGEffect - ok

11:13:58.0023 10024 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\windows\system32\pla.dll

11:13:58.0096 10024 pla - ok

11:13:58.0162 10024 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll

11:13:58.0260 10024 PlugPlay - ok

11:13:58.0298 10024 PnkBstrA - ok

11:13:58.0322 10024 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll

11:13:58.0357 10024 PNRPAutoReg - ok

11:13:58.0401 10024 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\windows\system32\pnrpsvc.dll

11:13:58.0416 10024 PNRPsvc - ok

11:13:58.0477 10024 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll

11:13:58.0541 10024 PolicyAgent - ok

11:13:58.0578 10024 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\windows\system32\umpo.dll

11:13:58.0643 10024 Power - ok

11:13:58.0680 10024 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys

11:13:58.0715 10024 PptpMiniport - ok

11:13:58.0738 10024 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\windows\system32\DRIVERS\processr.sys

11:13:58.0775 10024 Processor - ok

11:13:58.0827 10024 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\windows\system32\profsvc.dll

11:13:58.0884 10024 ProfSvc - ok

11:13:58.0896 10024 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\windows\system32\lsass.exe

11:13:58.0908 10024 ProtectedStorage - ok

11:13:58.0950 10024 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\windows\system32\DRIVERS\pacer.sys

11:13:58.0999 10024 Psched - ok

11:13:59.0058 10024 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys

11:13:59.0111 10024 ql2300 - ok

11:13:59.0133 10024 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys

11:13:59.0150 10024 ql40xx - ok

11:13:59.0173 10024 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\windows\system32\qwave.dll

11:13:59.0210 10024 QWAVE - ok

11:13:59.0235 10024 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys

11:13:59.0268 10024 QWAVEdrv - ok

11:13:59.0299 10024 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys

11:13:59.0367 10024 RasAcd - ok

11:13:59.0399 10024 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys

11:13:59.0446 10024 RasAgileVpn - ok

11:13:59.0471 10024 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\windows\System32\rasauto.dll

11:13:59.0542 10024 RasAuto - ok

11:13:59.0605 10024 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys

11:13:59.0666 10024 Rasl2tp - ok

11:13:59.0702 10024 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\windows\System32\rasmans.dll

11:13:59.0742 10024 RasMan - ok

11:13:59.0761 10024 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys

11:13:59.0820 10024 RasPppoe - ok

11:13:59.0856 10024 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys

11:13:59.0902 10024 RasSstp - ok

11:13:59.0950 10024 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\windows\system32\DRIVERS\rdbss.sys

11:14:00.0018 10024 rdbss - ok

11:14:00.0054 10024 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys

11:14:00.0093 10024 rdpbus - ok

11:14:00.0117 10024 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys

11:14:00.0172 10024 RDPCDD - ok

11:14:00.0199 10024 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys

11:14:00.0252 10024 RDPENCDD - ok

11:14:00.0283 10024 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys

11:14:00.0322 10024 RDPREFMP - ok

11:14:00.0354 10024 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\windows\system32\drivers\RDPWD.sys

11:14:00.0385 10024 RDPWD - ok

11:14:00.0433 10024 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys

11:14:00.0448 10024 rdyboost - ok

11:14:00.0502 10024 RegFilter - ok

11:14:00.0529 10024 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\windows\System32\mprdim.dll

11:14:00.0584 10024 RemoteAccess - ok

11:14:00.0623 10024 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\windows\system32\regsvc.dll

11:14:00.0667 10024 RemoteRegistry - ok

11:14:00.0716 10024 [ a10b40cf9eb57d24e44717a2d38a00f4 ] RivaTuner64 C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys

11:14:00.0728 10024 RivaTuner64 - ok

11:14:00.0774 10024 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\windows\System32\RpcEpMap.dll

11:14:00.0838 10024 RpcEptMapper - ok

11:14:00.0861 10024 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\windows\system32\locator.exe

11:14:00.0875 10024 RpcLocator - ok

11:14:00.0920 10024 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\windows\system32\rpcss.dll

11:14:00.0962 10024 RpcSs - ok

11:14:01.0002 10024 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\windows\system32\DRIVERS\rspndr.sys

11:14:01.0040 10024 rspndr - ok

11:14:01.0088 10024 [ 907c4464381b5ebdfdc60f6c7d0dedfc ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys

11:14:01.0103 10024 RSUSBSTOR - ok

11:14:01.0118 10024 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\windows\system32\lsass.exe

11:14:01.0131 10024 SamSs - ok

11:14:01.0180 10024 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\windows\system32\drivers\sbp2port.sys

11:14:01.0193 10024 sbp2port - ok

11:14:01.0287 10024 [ 794d4b48dfb6e999537c7c3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

11:14:01.0320 10024 SBSDWSCService - ok

11:14:01.0341 10024 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\windows\System32\SCardSvr.dll

11:14:01.0396 10024 SCardSvr - ok

11:14:01.0431 10024 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\windows\system32\DRIVERS\scfilter.sys

11:14:01.0485 10024 scfilter - ok

11:14:01.0541 10024 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\windows\system32\schedsvc.dll

11:14:01.0610 10024 Schedule - ok

11:14:01.0650 10024 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\windows\System32\certprop.dll

11:14:01.0683 10024 SCPolicySvc - ok

11:14:01.0731 10024 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\windows\System32\SDRSVC.dll

11:14:01.0787 10024 SDRSVC - ok

11:14:01.0826 10024 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys

11:14:01.0883 10024 secdrv - ok

11:14:01.0925 10024 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\windows\system32\seclogon.dll

11:14:01.0983 10024 seclogon - ok

11:14:02.0022 10024 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\windows\System32\sens.dll

11:14:02.0093 10024 SENS - ok

11:14:02.0124 10024 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\windows\system32\sensrsvc.dll

11:14:02.0191 10024 SensrSvc - ok

11:14:02.0234 10024 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\windows\system32\DRIVERS\serenum.sys

11:14:02.0267 10024 Serenum - ok

11:14:02.0294 10024 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\windows\system32\DRIVERS\serial.sys

11:14:02.0314 10024 Serial - ok

11:14:02.0357 10024 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys

11:14:02.0396 10024 sermouse - ok

11:14:02.0447 10024 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\windows\system32\sessenv.dll

11:14:02.0500 10024 SessionEnv - ok

11:14:02.0536 10024 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\windows\system32\drivers\sffdisk.sys

11:14:02.0586 10024 sffdisk - ok

11:14:02.0604 10024 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys

11:14:02.0638 10024 sffp_mmc - ok

11:14:02.0665 10024 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys

11:14:02.0696 10024 sffp_sd - ok

11:14:02.0729 10024 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys

11:14:02.0746 10024 sfloppy - ok

11:14:02.0773 10024 [ b95f6501a2f8b2e78c697fec401970ce ] SharedAccess C:\windows\System32\ipnathlp.dll

11:14:02.0842 10024 SharedAccess - ok

11:14:02.0884 10024 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\windows\System32\shsvcs.dll

11:14:02.0948 10024 ShellHWDetection - ok

11:14:02.0976 10024 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys

11:14:02.0989 10024 SiSRaid2 - ok

11:14:03.0010 10024 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys

11:14:03.0023 10024 SiSRaid4 - ok

11:14:03.0184 10024 [ 2a99850c2a6edd6c6602e822c716edaf ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe

11:14:03.0271 10024 Skype C2C Service - ok

11:14:03.0396 10024 [ 6128e98eaaed364ed1a32708d2fd22cb ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

11:14:03.0409 10024 SkypeUpdate - ok

11:14:03.0436 10024 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\windows\system32\DRIVERS\smb.sys

11:14:03.0525 10024 Smb - ok

11:14:03.0581 10024 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\windows\System32\snmptrap.exe

11:14:03.0621 10024 SNMPTRAP - ok

11:14:03.0656 10024 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\windows\system32\drivers\spldr.sys

11:14:03.0669 10024 spldr - ok

11:14:03.0718 10024 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\windows\System32\spoolsv.exe

11:14:03.0762 10024 Spooler - ok

11:14:03.0875 10024 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\windows\system32\sppsvc.exe

11:14:04.0014 10024 sppsvc - ok

11:14:04.0038 10024 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\windows\system32\sppuinotify.dll

11:14:04.0079 10024 sppuinotify - ok

11:14:04.0083 10024 sptd - ok

11:14:04.0118 10024 [ b2ec3e1deac5f0a764bd3486d213a0af ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

11:14:04.0133 10024 SQLBrowser - ok

11:14:04.0203 10024 [ d63fc56c7c3f9b576bc25f617e3f7963 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

11:14:04.0214 10024 SQLWriter - ok

11:14:04.0271 10024 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\windows\system32\DRIVERS\srv.sys

11:14:04.0348 10024 srv - ok

11:14:04.0376 10024 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys

11:14:04.0418 10024 srv2 - ok

11:14:04.0464 10024 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys

11:14:04.0495 10024 srvnet - ok

11:14:04.0545 10024 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll

11:14:04.0612 10024 SSDPSRV - ok

11:14:04.0698 10024 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\windows\system32\sstpsvc.dll

11:14:04.0735 10024 SstpSvc - ok

11:14:04.0766 10024 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\windows\system32\DRIVERS\stexstor.sys

11:14:04.0779 10024 stexstor - ok

11:14:04.0853 10024 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\windows\System32\wiaservc.dll

11:14:04.0900 10024 stisvc - ok

11:14:04.0928 10024 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\windows\system32\drivers\swenum.sys

11:14:04.0939 10024 swenum - ok

11:14:04.0988 10024 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\windows\System32\swprv.dll

11:14:05.0055 10024 swprv - ok

11:14:05.0098 10024 [ 470c47daba9ca3966f0ab3f835d7d135 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys

11:14:05.0118 10024 SynTP - ok

11:14:05.0188 10024 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\windows\system32\sysmain.dll

11:14:05.0252 10024 SysMain - ok

11:14:05.0292 10024 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\windows\System32\TabSvc.dll

11:14:05.0311 10024 TabletInputService - ok

11:14:05.0384 10024 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\windows\System32\tapisrv.dll

11:14:05.0446 10024 TapiSrv - ok

11:14:05.0478 10024 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\windows\System32\tbssvc.dll

11:14:05.0520 10024 TBS - ok

11:14:05.0589 10024 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\windows\system32\drivers\tcpip.sys

11:14:05.0638 10024 Tcpip - ok

11:14:05.0700 10024 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys

11:14:05.0741 10024 TCPIP6 - ok

11:14:05.0789 10024 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys

11:14:05.0825 10024 tcpipreg - ok

11:14:05.0865 10024 [ fd542b661bd22fa69ca789ad0ac58c29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys

11:14:05.0875 10024 tdcmdpst - ok

11:14:05.0899 10024 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\windows\system32\drivers\tdpipe.sys

11:14:05.0958 10024 TDPIPE - ok

11:14:05.0986 10024 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys

11:14:06.0017 10024 TDTCP - ok

11:14:06.0069 10024 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\windows\system32\DRIVERS\tdx.sys

11:14:06.0128 10024 tdx - ok

11:14:06.0255 10024 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\windows\system32\drivers\termdd.sys

11:14:06.0268 10024 TermDD - ok

11:14:06.0319 10024 [ 2e648163254233755035b46dd7b89123 ] TermService C:\windows\System32\termsrv.dll

11:14:06.0405 10024 TermService - ok

11:14:06.0437 10024 [ f0344071948d1a1fa732231785a0664c ] Themes C:\windows\system32\themeservice.dll

11:14:06.0456 10024 Themes - ok

11:14:06.0483 10024 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\windows\system32\mmcss.dll

11:14:06.0520 10024 THREADORDER - ok

11:14:06.0656 10024 [ dfe9ba871b9f3dbb591bd113611cbcc0 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

11:14:06.0673 10024 TMachInfo - ok

11:14:06.0702 10024 [ ed32035bdfeced1ad66d459fd9cc1140 ] TODDSrv C:\windows\system32\TODDSrv.exe

11:14:06.0714 10024 TODDSrv - ok

11:14:06.0823 10024 [ ddfb839074fa7980726d24495aeb25e3 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

11:14:06.0843 10024 TosCoSrv - ok

11:14:06.0909 10024 [ 895f6972480306cb2a2a246991e34c68 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

11:14:06.0920 10024 TOSHIBA Bluetooth Service - ok

11:14:06.0962 10024 [ 3e6756677e16532d235c6cb20614f369 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe

11:14:06.0974 10024 TOSHIBA eco Utility Service - ok

11:14:07.0010 10024 [ 74c2fa8c3765ee71a9c22182ec108457 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

11:14:07.0021 10024 TOSHIBA HDD SSD Alert Service - ok

11:14:07.0066 10024 [ 8021f63311797085949fa387f7c83583 ] tosporte C:\windows\system32\DRIVERS\tosporte.sys

11:14:07.0075 10024 tosporte - ok

11:14:07.0117 10024 [ 1b09357180034639e62cf745e77ac66e ] tosrfbd C:\windows\system32\DRIVERS\tosrfbd.sys

11:14:07.0130 10024 tosrfbd - ok

11:14:07.0158 10024 [ 62512b5277d88600f8bd4b7aec43569d ] tosrfbnp C:\windows\system32\Drivers\tosrfbnp.sys

11:14:07.0168 10024 tosrfbnp - ok

11:14:07.0202 10024 [ c523a9186c39d65cc9adebb2e1b93ccd ] Tosrfcom C:\windows\system32\Drivers\tosrfcom.sys

11:14:07.0212 10024 Tosrfcom - ok

11:14:07.0252 10024 [ 11699d47b3491d86249c168496d55c92 ] tosrfec C:\windows\system32\DRIVERS\tosrfec.sys

11:14:07.0262 10024 tosrfec - ok

11:14:07.0312 10024 [ 451b8c1815c6cc39650af916c2a382cd ] Tosrfhid C:\windows\system32\DRIVERS\Tosrfhid.sys

11:14:07.0322 10024 Tosrfhid - ok

11:14:07.0345 10024 [ b6fdc3c76ffe9c5171eea9c37ea367c2 ] tosrfnds C:\windows\system32\DRIVERS\tosrfnds.sys

11:14:07.0354 10024 tosrfnds - ok

11:14:07.0382 10024 [ e1e045240c1184fa6628f3c7e7ff85d8 ] TosRfSnd C:\windows\system32\drivers\tosrfsnd.sys

11:14:07.0391 10024 TosRfSnd - ok

11:14:07.0429 10024 [ de44a2a2459d0504f146e599f4bd2074 ] Tosrfusb C:\windows\system32\DRIVERS\tosrfusb.sys

11:14:07.0438 10024 Tosrfusb - ok

11:14:07.0499 10024 [ 97687d094aa597da366e1194b218cc6c ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

11:14:07.0524 10024 TPCHSrv - ok

11:14:07.0734 10024 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\windows\System32\trkwks.dll

11:14:07.0795 10024 TrkWks - ok

11:14:07.0867 10024 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe

11:14:07.0905 10024 TrustedInstaller - ok

11:14:07.0951 10024 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys

11:14:08.0008 10024 tssecsrv - ok

11:14:08.0066 10024 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys

11:14:08.0096 10024 TsUsbFlt - ok

11:14:08.0149 10024 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys

11:14:08.0213 10024 tunnel - ok

11:14:08.0249 10024 [ 550b567f9364d8f7684c3fb3ea665a72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS

11:14:08.0260 10024 TVALZ - ok

11:14:08.0286 10024 [ 9c7191f4b2e49bff47a6c1144b5923fa ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys

11:14:08.0297 10024 TVALZFL - ok

11:14:08.0333 10024 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys

11:14:08.0347 10024 uagp35 - ok

11:14:08.0389 10024 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\windows\system32\DRIVERS\udfs.sys

11:14:08.0449 10024 udfs - ok

11:14:08.0474 10024 UfasoftSnifDriver4 - ok

11:14:08.0497 10024 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\windows\system32\UI0Detect.exe

11:14:08.0512 10024 UI0Detect - ok

11:14:08.0530 10024 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys

11:14:08.0543 10024 uliagpkx - ok

11:14:08.0579 10024 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\windows\system32\drivers\umbus.sys

11:14:08.0618 10024 umbus - ok

11:14:08.0657 10024 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\windows\system32\DRIVERS\umpass.sys

11:14:08.0693 10024 UmPass - ok

11:14:08.0739 10024 [ 9dc07e73a4abb9acf692113b36a5009f ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys

11:14:08.0749 10024 UnlockerDriver5 - ok

11:14:08.0784 10024 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\windows\System32\upnphost.dll

11:14:08.0861 10024 upnphost - ok

11:14:08.0919 10024 [ 82e8f44688e6fac57b5b7c6fc7adbc2a ] usbaudio C:\windows\system32\drivers\usbaudio.sys

11:14:08.0961 10024 usbaudio - ok

11:14:09.0003 10024 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys

11:14:09.0056 10024 usbccgp - ok

11:14:09.0098 10024 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\windows\system32\drivers\usbcir.sys

11:14:09.0114 10024 usbcir - ok

11:14:09.0130 10024 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\windows\system32\DRIVERS\usbehci.sys

11:14:09.0160 10024 usbehci - ok

11:14:09.0197 10024 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys

11:14:09.0235 10024 usbhub - ok

11:14:09.0275 10024 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys

11:14:09.0314 10024 usbohci - ok

11:14:09.0350 10024 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\windows\system32\DRIVERS\usbprint.sys

11:14:09.0387 10024 usbprint - ok

11:14:09.0422 10024 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS

11:14:09.0452 10024 USBSTOR - ok

11:14:09.0486 10024 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\windows\system32\drivers\usbuhci.sys

11:14:09.0522 10024 usbuhci - ok

11:14:09.0589 10024 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys

11:14:09.0609 10024 usbvideo - ok

11:14:09.0631 10024 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\windows\System32\uxsms.dll

11:14:09.0688 10024 UxSms - ok

11:14:09.0708 10024 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\windows\system32\lsass.exe

11:14:09.0732 10024 VaultSvc - ok

11:14:09.0787 10024 [ 8acf22b86ce4e85c23e3e9513bf45c37 ] VBoxNetAdp C:\windows\system32\DRIVERS\VBoxNetAdp.sys

11:14:09.0801 10024 VBoxNetAdp - ok

11:14:09.0816 10024 VBoxNetFlt - ok

11:14:09.0829 10024 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys

11:14:09.0842 10024 vdrvroot - ok

11:14:09.0891 10024 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\windows\System32\vds.exe

11:14:09.0950 10024 vds - ok

11:14:09.0992 10024 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\windows\system32\DRIVERS\vgapnp.sys

11:14:10.0011 10024 vga - ok

11:14:10.0026 10024 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\windows\System32\drivers\vga.sys

11:14:10.0088 10024 VgaSave - ok

11:14:10.0122 10024 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\windows\system32\drivers\vhdmp.sys

11:14:10.0138 10024 vhdmp - ok

11:14:10.0179 10024 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\windows\system32\drivers\viaide.sys

11:14:10.0191 10024 viaide - ok

11:14:10.0209 10024 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\windows\system32\drivers\volmgr.sys

11:14:10.0222 10024 volmgr - ok

11:14:10.0272 10024 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\windows\system32\drivers\volmgrx.sys

11:14:10.0289 10024 volmgrx - ok

11:14:10.0355 10024 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\windows\system32\drivers\volsnap.sys

11:14:10.0372 10024 volsnap - ok

11:14:10.0408 10024 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys

11:14:10.0422 10024 vsmraid - ok

11:14:10.0494 10024 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\windows\system32\vssvc.exe

11:14:10.0579 10024 VSS - ok

11:14:10.0612 10024 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys

11:14:10.0648 10024 vwifibus - ok

11:14:10.0678 10024 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys

11:14:10.0705 10024 vwififlt - ok

11:14:10.0734 10024 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys

11:14:10.0757 10024 vwifimp - ok

11:14:10.0785 10024 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\windows\system32\w32time.dll

11:14:10.0831 10024 W32Time - ok

11:14:10.0909 10024 [ b32009db1972e7f2c227499289c4384a ] W3SVC C:\windows\system32\inetsrv\iisw3adm.dll

11:14:10.0978 10024 W3SVC - ok

11:14:11.0015 10024 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys

11:14:11.0108 10024 WacomPen - ok

11:14:11.0161 10024 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\windows\system32\DRIVERS\wanarp.sys

11:14:11.0228 10024 WANARP - ok

11:14:11.0232 10024 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys

11:14:11.0275 10024 Wanarpv6 - ok

11:14:11.0331 10024 [ b32009db1972e7f2c227499289c4384a ] WAS C:\windows\system32\inetsrv\iisw3adm.dll

11:14:11.0355 10024 WAS - ok

11:14:11.0418 10024 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe

11:14:11.0455 10024 WatAdminSvc - ok

11:14:11.0560 10024 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\windows\system32\wbengine.exe

11:14:11.0636 10024 wbengine - ok

11:14:11.0662 10024 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll

11:14:11.0682 10024 WbioSrvc - ok

11:14:11.0726 10024 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\windows\System32\wcncsvc.dll

11:14:11.0749 10024 wcncsvc - ok

11:14:11.0764 10024 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll

11:14:11.0803 10024 WcsPlugInService - ok

11:14:11.0825 10024 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\windows\system32\DRIVERS\wd.sys

11:14:11.0837 10024 Wd - ok

11:14:11.0889 10024 [ a3d04ebf5227886029b4532f20d026f7 ] WDC_SAM C:\windows\system32\DRIVERS\wdcsam64.sys

11:14:11.0912 10024 WDC_SAM - ok

11:14:11.0940 10024 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys

11:14:11.0967 10024 Wdf01000 - ok

11:14:11.0979 10024 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\windows\system32\wdi.dll

11:14:12.0066 10024 WdiServiceHost - ok

11:14:12.0079 10024 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\windows\system32\wdi.dll

11:14:12.0101 10024 WdiSystemHost - ok

11:14:12.0140 10024 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\windows\System32\webclnt.dll

11:14:12.0179 10024 WebClient - ok

11:14:12.0214 10024 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\windows\system32\wecsvc.dll

11:14:12.0283 10024 Wecsvc - ok

11:14:12.0306 10024 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\windows\System32\wercplsupport.dll

11:14:12.0369 10024 wercplsupport - ok

11:14:12.0407 10024 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\windows\System32\WerSvc.dll

11:14:12.0445 10024 WerSvc - ok

11:14:12.0466 10024 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys

11:14:12.0501 10024 WfpLwf - ok

11:14:12.0520 10024 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\windows\system32\drivers\wimmount.sys

11:14:12.0532 10024 WIMMount - ok

11:14:12.0551 10024 WinDefend - ok

11:14:12.0557 10024 WinHttpAutoProxySvc - ok

11:14:12.0610 10024 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll

11:14:12.0670 10024 Winmgmt - ok

11:14:12.0758 10024 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\windows\system32\WsmSvc.dll

11:14:12.0890 10024 WinRM - ok

11:14:12.0942 10024 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys

11:14:12.0970 10024 WinUsb - ok

11:14:13.0017 10024 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\windows\System32\wlansvc.dll

11:14:13.0091 10024 Wlansvc - ok

11:14:13.0203 10024 [ 98f138897ef4246381d197cb81846d62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

11:14:13.0255 10024 wlidsvc - ok

11:14:13.0288 10024 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys

11:14:13.0331 10024 WmiAcpi - ok

11:14:13.0363 10024 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe

11:14:13.0411 10024 wmiApSrv - ok

11:14:13.0449 10024 WMPNetworkSvc - ok

11:14:13.0475 10024 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\windows\System32\wpcsvc.dll

11:14:13.0498 10024 WPCSvc - ok

11:14:13.0556 10024 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\windows\system32\wpdbusenum.dll

11:14:13.0609 10024 WPDBusEnum - ok

11:14:13.0630 10024 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys

11:14:13.0687 10024 ws2ifsl - ok

11:14:13.0723 10024 [ e8b1fe6669397d1772d8196df0e57a9e ] wscsvc C:\windows\System32\wscsvc.dll

11:14:13.0763 10024 wscsvc - ok

11:14:13.0767 10024 WSearch - ok

11:14:13.0857 10024 [ d9ef901dca379cfe914e9fa13b73b4c4 ] wuauserv C:\windows\system32\wuaueng.dll

11:14:13.0940 10024 wuauserv - ok

11:14:13.0960 10024 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\windows\system32\drivers\WudfPf.sys

11:14:14.0014 10024 WudfPf - ok

11:14:14.0089 10024 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys

11:14:14.0142 10024 WUDFRd - ok

11:14:14.0177 10024 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll

11:14:14.0214 10024 wudfsvc - ok

11:14:14.0244 10024 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\windows\System32\wwansvc.dll

11:14:14.0283 10024 WwanSvc - ok

11:14:14.0354 10024 [ 2ee48cfce7ca8e0db4c44c7476c0943b ] xusb21 C:\windows\system32\DRIVERS\xusb21.sys

11:14:14.0405 10024 xusb21 - ok

11:14:14.0446 10024 ================ Scan global ===============================

11:14:14.0477 10024 (ba0cd8c393e8c9f83354106093832c7b) C:\windows\system32\basesrv.dll

11:14:14.0519 10024 (eb6a48cc998e1090e44e8e7f1009a640) C:\windows\system32\winsrv.dll

11:14:14.0529 10024 (eb6a48cc998e1090e44e8e7f1009a640) C:\windows\system32\winsrv.dll

11:14:14.0559 10024 (d6160f9d869ba3af0b787f971db56368) C:\windows\system32\sxssrv.dll

11:14:14.0599 10024 (24acb7e5be595468e3b9aa488b9b4fcb) C:\windows\system32\services.exe

11:14:14.0605 10024 [Global] - ok

11:14:14.0605 10024 ================ Scan MBR ==================================

11:14:14.0621 10024 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0

11:14:15.0654 10024 \Device\Harddisk0\DR0 - ok

11:14:15.0657 10024 ================ Scan VBR ==================================

11:14:15.0691 10024 Boot (0x1200) (f0ecb079b46050d7ae2a4917be5cf031) \Device\Harddisk0\DR0\Partition1

11:14:15.0692 10024 \Device\Harddisk0\DR0\Partition1 - ok

11:14:15.0693 10024 ============================================================

11:14:15.0693 10024 Scan finished

11:14:15.0693 10024 ============================================================

11:14:15.0706 2532 Detected object count: 4

11:14:15.0707 2532 Actual detected object count: 4

11:15:26.0567 2532 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user

11:15:26.0567 2532 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip

11:15:26.0569 2532 Apache2.2 ( UnsignedFile.Multi.Generic ) - skipped by user

11:15:26.0569 2532 Apache2.2 ( UnsignedFile.Multi.Generic ) - User select action: Skip

11:15:26.0571 2532 ATITool ( UnsignedFile.Multi.Generic ) - skipped by user

11:15:26.0571 2532 ATITool ( UnsignedFile.Multi.Generic ) - User select action: Skip

11:15:26.0577 2532 JoinMEUI Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user

11:15:26.0577 2532 JoinMEUI Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip

Thanks a lot again for helping me out mate

Share this post


Link to post
Share on other sites

That scan was clean.........

Please download and run ComboFix.

The most important things to remember when running it is to disable all your malware programs and run Combofix from your desktop.

Please visit this webpage for download links, and instructions for running ComboFix

http://www.bleepingc...to-use-combofix

Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Information on disabling your malware programs can be found Here.

Make sure you run ComboFix from your desktop.

Give it at least 30-45 minutes to finish if needed.

Please include the C:\ComboFix.txt in your next reply for further review.

---------->NOTE<----------

If you get the message Illegal operation attempted on registry key that has been marked for deletion after you run ComboFix....please reboot the computer, this should resolve the problem. You may have to do this several times if needed.

MrC

Share this post


Link to post
Share on other sites
The scan took nearly an hour, can't be good eh?

No it can take that long.

~~~~~~~~~~~~

Please Update and run a Quick Scan with MBAM, post the report.

Make sure that everything is checked, and click Remove Selected.

Please let me know how computer is running now, MrC

Share this post


Link to post
Share on other sites

Malwarebytes Anti-Malware (Trial) 1.62.0.1300

www.malwarebytes.org

Database version: v2012.08.19.07

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

Rob Austen :: ROBAUSTEN-PC [administrator]

Protection: Enabled

8/20/2012 1:01:42 PM

mbam-log-2012-08-20 (13-01-42).txt

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 197629

Time elapsed: 3 minute(s), 2 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 0

(No malicious items detected)

(end)

Browser is still screwing up images on webpages, eg:

http://www.trademe.c...n-501099416.htm see attatched picture, spot the difference :D

post-116816-0-40847600-1345425433.jpg

Share this post


Link to post
Share on other sites

Chrome...you have to check that yourself:

First please make sure you have the latest version of Chrome:

Click the wrench in the upper right hand corner

Click on "About Google Chrome"

If an update is available it will be downloaded and installed

Next:

Carefully check for any odd extensions or plugins:

Type the following into the address box and hit Enter:

chrome:plugins

Do the same for:

chrome:extensions

Next:

Go to Settings > Show advanced settings........ (at the bottom)

Put a check next to all of these:

  1. Clear browsing history
  2. Clear download history
  3. Empty the cache

Click "Clear Browsing Data"

Next:

Look through the rest of Tools, Settings and View Backround Pages and make sure there's nothing suspicious.

---------------------------

Then look at this link (it's for a different infection but the way to change Chromes settings is the same)

http://deletemalware...tall-guide.html

Let me know, MrC

Share this post


Link to post
Share on other sites

Ok it seems to be running better, images on page are fine now. However, there is a miscellaneous plugin running which i can't do anything about, see attached picture

post-116816-0-60502300-1345429292.jpg

Share this post


Link to post
Share on other sites

Can you get me the name of that? MrC

Share this post


Link to post
Share on other sites

I'm not able to find a name for it, as i can't seem to find it anywhere else. Also having big difficulties with viewing 'Computer' folder with windows explorer- it doesn't seem to load, this was a problem i had a few days ago but it corrected itself (or so i thought)

post-116816-0-59114100-1345430767.jpg

Share this post


Link to post
Share on other sites

Please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan.

http://www.eset.eu/online-scanner

Tick the box next to YES, I accept the Terms of Use.

Click Start

When asked, allow the ActiveX control to install

Click Start

Make sure that the options Remove found threats and the option Scan unwanted applications is checked

Click Advanced settings and select the following:

  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology

Click Start

Wait for the scan to finish

Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt

Copy and paste that log as a reply to this topic

MrC

Share this post


Link to post
Share on other sites

Hey mate sorry that took a while, workin away on trying to start a biz (although i can't do much with this pc that's just screwed my workmate's 64gb flash drive! :o ) Anyway, here's that log file... doesn't seem to be showing anything though.

log.txt

Share this post


Link to post
Share on other sites

Do you remember if it found anything?? MrC

Share this post


Link to post
Share on other sites

no, it didn't find anything... is there any chance you may be willing to do a remote connection cleaning?

Share this post


Link to post
Share on other sites

There's no malware to clean.

It has to be related to a program that is running.

I suggest you disable one at a time and see which one makes a difference.

MrC

Share this post


Link to post
Share on other sites

Ok i will do that... Did the 'dllhost.exe' issue I posted give you any ideas? I've looked into it and it is located at C:\Windows\SysWOW64, and is 7kb...

Share this post


Link to post
Share on other sites

no luck mate, do you know of any software that can strip my pc back to original OS? Unfortunately my pc didn't come with a W7 install disc

Share this post


Link to post
Share on other sites

Please download OTL from one of the links below:

http://oldtimer.geekstogo.com/OTL.exe

http://www.itxassoci...T-Tools/OTL.exe

http://oldtimer.geekstogo.com/OTL.com (<---renamed version)

Save it to your desktop.

Double click on the icon on your desktop.

Click the Scan All Users checkbox.

Push the Quick Scan button.

The scan will take about 10 minutes...depends on your hard drive size.

Two reports will open, copy and paste them in a reply here: (or attach them as .txt files)

OTL.txt <-- Will be opened

Extra.txt <-- Will be minimized

MrC

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0

  • Recently Browsing   0 members

    No registered users viewing this page.