rob_roy Posted August 19, 2012 ID:587171 Share Posted August 19, 2012 Hello smart people of the universe! I need help with this virus/ hijacker (of some sort)- I am using the most up to date AV (IObit Malware Fighter, ESET Smart Security, SPYBOT S&D just to name a few i've been using) but none of which is picking up anything.The virus is altering my web browsers' rendering (both chrome and firefox, wouldn't dare use IE anyway) eg. random images on webpages are mixed up and replaced with each other, tried to use an online scanner through Kaspersky but the webpage for downloading it is appearing so badly altered that i couldn't.On initial start-up of my Windows 7 64-bit Home Premium computer, the CPU is running at 100% and the culprit appears to be "dllhost.exe". I have read up about this and it seems it is not a virus, but is instead hosting a virus (not too sure)? I am able to end the process with task manager and CPU usage seems to go back to normal but something is still altering my browsers... Could this be more than one virus?Thank you for any help or suggestions in advance! hijackthis2.log Link to post Share on other sites More sharing options...
MrCharlie Posted August 19, 2012 ID:587173 Share Posted August 19, 2012 Welcome to the forum, please start at the link below:http://forums.malwar...?showtopic=9573Post back the 2 logs here.....DDS.txt and Attach.txt<====><====><====><====><====><====><====><====>Next.......Please remove any usb or external drives from the computer before you run this scan!Please download and run RogueKiller to your desktop.For Windows XP, double-click to start.For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.Click Scan to scan the system.When the scan completes > Close out the program > Don't Fix anything!Don't run any other options, they're not all bad!!!!!!!Post back the report which should be located on your desktop.MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 19, 2012 Author ID:587271 Share Posted August 19, 2012 Welcome to the forum, please start at the link below:http://forums.malwar...?showtopic=9573Post back the 2 logs here.....DDS.txt and Attach.txt<====><====><====><====><====><====><====><====>Next.......Please remove any usb or external drives from the computer before you run this scan!Please download and run RogueKiller to your desktop.For Windows XP, double-click to start.For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.Click Scan to scan the system.When the scan completes > Close out the program > Don't Fix anything!Don't run any other options, they're not all bad!!!!!!!Post back the report which should be located on your desktop.MrCOk, have done as requested... did the hijackthis report show anything unusual?Attach.txtDDS.txtRKreport1.txt Link to post Share on other sites More sharing options...
MrCharlie Posted August 19, 2012 ID:587273 Share Posted August 19, 2012 AV: ESET Smart Security 5.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}SP: ESET Smart Security 5.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}You can't have more than one anti-virus program running on the system.First....please disable Windows Defender:http://www.howtogeek...ow-turn-it-off/------------------------Uninstall > IObit Malware Fighter-------------------------and.........Before we proceed further, please uninstall or disable uTorrent and any other peer-to-peer filesharing app.Continued use of filesharing or ill-advised downloads will surely re-infect your system.Risks of File-Sharing Technology.P2P file sharing: Know the risksIt's also against the forums policy:http://forums.malwar...showtopic=97700MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 19, 2012 Author ID:587457 Share Posted August 19, 2012 I've uninstalled Iobit anti-malware & Utorrent, is there anything else i should do? (i used the general windows uninstaller for both which i believe can leave remnants of a program's files and data, so please if you find anything else regarding p2p software, it is not there intentionally). Link to post Share on other sites More sharing options...
MrCharlie Posted August 19, 2012 ID:587462 Share Posted August 19, 2012 OK, lets run some scans now.........Please download and run TDSSKiller to your desktop as outlined below:Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.For Windows XP, double-click to start.For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.-------------------------Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.------------------------Click the Start Scan button.-----------------------If a suspicious object is detected, the default action will be Skip, click on ContinueIf you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please chooseSkip and click on Continue----------------------If malicious objects are found, they will show in the Scan results and offer three (3) options.Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.--------------------A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.-------------------Here's a summary of what to do if you would like to print it out:If a suspicious object is detected, the default action will be Skip, click on ContinueIf you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please chooseSkip and click on ContinueIf malicious objects are found, they will show in the Scan results and offer three (3) options.Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 19, 2012 Author ID:587469 Share Posted August 19, 2012 11:12:37.0401 9240 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:0511:12:38.0125 9240 ============================================================11:12:38.0125 9240 Current date / time: 2012/08/20 11:12:38.012511:12:38.0125 9240 SystemInfo:11:12:38.0125 9240 11:12:38.0125 9240 OS Version: 6.1.7601 ServicePack: 1.011:12:38.0125 9240 Product type: Workstation11:12:38.0125 9240 ComputerName: ROBAUSTEN-PC11:12:38.0125 9240 UserName: Rob Austen11:12:38.0125 9240 Windows directory: C:\windows11:12:38.0125 9240 System windows directory: C:\windows11:12:38.0125 9240 Running under WOW6411:12:38.0125 9240 Processor architecture: Intel x6411:12:38.0125 9240 Number of processors: 211:12:38.0125 9240 Page size: 0x100011:12:38.0125 9240 Boot type: Normal boot11:12:38.0125 9240 ============================================================11:12:38.0848 9240 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x0000004011:12:38.0853 9240 ============================================================11:12:38.0853 9240 \Device\Harddisk0\DR0:11:12:38.0853 9240 MBR partitions:11:12:38.0853 9240 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x3A09680011:12:38.0853 9240 ============================================================11:12:38.0892 9240 C: <-> \Device\Harddisk0\DR0\Partition111:12:38.0892 9240 ============================================================11:12:38.0892 9240 Initialize success11:12:38.0892 9240 ============================================================11:13:32.0896 10024 ============================================================11:13:32.0896 10024 Scan started11:13:32.0896 10024 Mode: Manual; SigCheck; TDLFS; 11:13:32.0896 10024 ============================================================11:13:33.0175 10024 ================ Scan services =============================11:13:33.0440 10024 [ a87d604aea360176311474c87a63bb88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys11:13:33.0628 10024 1394ohci - ok11:13:33.0693 10024 [ d81d9e70b8a6dd14d42d7b4efa65d5f2 ] ACPI C:\windows\system32\drivers\ACPI.sys11:13:33.0712 10024 ACPI - ok11:13:33.0764 10024 [ 99f8e788246d495ce3794d7e7821d2ca ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys11:13:33.0878 10024 AcpiPmi - ok11:13:33.0975 10024 [ 4ae327c9c375d985ff2a2aab92765218 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe11:13:34.0029 10024 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning11:13:34.0029 10024 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)11:13:34.0087 10024 [ 2f6b34b83843f0c5118b63ac634f5bf4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys11:13:34.0109 10024 adp94xx - ok11:13:34.0150 10024 [ 597f78224ee9224ea1a13d6350ced962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys11:13:34.0197 10024 adpahci - ok11:13:34.0253 10024 [ e109549c90f62fb570b9540c4b148e54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys11:13:34.0269 10024 adpu320 - ok11:13:34.0303 10024 [ 4b78b431f225fd8624c5655cb1de7b61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll11:13:34.0475 10024 AeLookupSvc - ok11:13:34.0539 10024 [ 1c7857b62de5994a75b054a9fd4c3825 ] AFD C:\windows\system32\drivers\afd.sys11:13:34.0609 10024 AFD - ok11:13:34.0691 10024 [ b65f8dba54f251906bbe8611b5a0e7ab ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe11:13:34.0782 10024 AgereModemAudio - ok11:13:34.0826 10024 [ c98356d813b581e9c425b42a5d146ce0 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys11:13:34.0890 10024 AgereSoftModem - ok11:13:34.0969 10024 [ 608c14dba7299d8cb6ed035a68a15799 ] agp440 C:\windows\system32\drivers\agp440.sys11:13:34.0981 10024 agp440 - ok11:13:35.0022 10024 [ 3290d6946b5e30e70414990574883ddb ] ALG C:\windows\System32\alg.exe11:13:35.0103 10024 ALG - ok11:13:35.0164 10024 [ 5812713a477a3ad7363c7438ca2ee038 ] aliide C:\windows\system32\drivers\aliide.sys11:13:35.0175 10024 aliide - ok11:13:35.0236 10024 [ 9c616ba191b80f5cd1a1b9553e107100 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe11:13:35.0356 10024 AMD External Events Utility - ok11:13:35.0448 10024 AMD FUEL Service - ok11:13:35.0493 10024 [ 1ff8b4431c353ce385c875f194924c0c ] amdide C:\windows\system32\drivers\amdide.sys11:13:35.0504 10024 amdide - ok11:13:35.0557 10024 [ 6a2eeb0c4133b20773bb3dd0b7b377b4 ] amdiox64 C:\windows\system32\DRIVERS\amdiox64.sys11:13:35.0578 10024 amdiox64 - ok11:13:35.0613 10024 [ 7024f087cff1833a806193ef9d22cda9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys11:13:35.0703 10024 AmdK8 - ok11:13:35.0937 10024 [ 5165e83751b8ff40e5e4925996fcc506 ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys11:13:36.0397 10024 amdkmdag - ok11:13:36.0452 10024 [ 86ab3cf484260c4318f3a6e8b035f422 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys11:13:36.0501 10024 amdkmdap - ok11:13:36.0523 10024 [ 1e56388b3fe0d031c44144eb8c4d6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys11:13:36.0570 10024 AmdPPM - ok11:13:36.0614 10024 [ d4121ae6d0c0e7e13aa221aa57ef2d49 ] amdsata C:\windows\system32\drivers\amdsata.sys11:13:36.0628 10024 amdsata - ok11:13:36.0663 10024 [ f67f933e79241ed32ff46a4f29b5120b ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys11:13:36.0679 10024 amdsbs - ok11:13:36.0711 10024 [ deda72a4ab5416ad0a09faecfa6056c2 ] AmdTools64 C:\windows\system32\DRIVERS\AmdTools64.sys11:13:36.0723 10024 AmdTools64 - ok11:13:36.0745 10024 [ 540daf1cea6094886d72126fd7c33048 ] amdxata C:\windows\system32\drivers\amdxata.sys11:13:36.0769 10024 amdxata - ok11:13:36.0795 10024 [ a4947e035b441d946422bd9a5d411c98 ] amd_sata C:\windows\system32\DRIVERS\amd_sata.sys11:13:36.0813 10024 amd_sata - ok11:13:36.0833 10024 [ 7a0e0ce7aecee3f175cb2dac81694499 ] amd_xata C:\windows\system32\DRIVERS\amd_xata.sys11:13:36.0852 10024 amd_xata - ok11:13:37.0100 10024 [ 5b25d1a753cc3a3edb909bb759ac1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys11:13:37.0111 10024 AODDriver4.1 - ok11:13:37.0150 10024 [ 7f46bee50e6fdb6473fbe172466a9ead ] AODDriver4.2.0 C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver2.sys11:13:37.0161 10024 AODDriver4.2.0 - ok11:13:37.0184 10024 [ dcadad156815b8d6f935377806a2cf95 ] AODService C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe11:13:37.0194 10024 AODService - ok11:13:37.0305 10024 [ f41e453a90ef19217cee1675f5256ee7 ] Apache2.2 C:\xampp\apache\bin\httpd.exe11:13:37.0310 10024 Apache2.2 ( UnsignedFile.Multi.Generic ) - warning11:13:37.0310 10024 Apache2.2 - detected UnsignedFile.Multi.Generic (1)11:13:37.0393 10024 [ 59d01fa91962c9c1e9b4022b2d3b46db ] AppHostSvc C:\windows\system32\inetsrv\apphostsvc.dll11:13:37.0499 10024 AppHostSvc - ok11:13:37.0572 10024 [ 89a69c3f2f319b43379399547526d952 ] AppID C:\windows\system32\drivers\appid.sys11:13:37.0779 10024 AppID - ok11:13:37.0810 10024 [ 0bc381a15355a3982216f7172f545de1 ] AppIDSvc C:\windows\System32\appidsvc.dll11:13:37.0869 10024 AppIDSvc - ok11:13:37.0930 10024 [ 3977d4a871ca0d4f2ed1e7db46829731 ] Appinfo C:\windows\System32\appinfo.dll11:13:37.0989 10024 Appinfo - ok11:13:38.0030 10024 [ c484f8ceb1717c540242531db7845c4e ] arc C:\windows\system32\DRIVERS\arc.sys11:13:38.0045 10024 arc - ok11:13:38.0061 10024 [ 019af6924aefe7839f61c830227fe79c ] arcsas C:\windows\system32\DRIVERS\arcsas.sys11:13:38.0078 10024 arcsas - ok11:13:38.0135 10024 [ 769765ce2cc62867468cea93969b2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys11:13:38.0220 10024 AsyncMac - ok11:13:38.0273 10024 [ 02062c0b390b7729edc9e69c680a6f3c ] atapi C:\windows\system32\drivers\atapi.sys11:13:38.0286 10024 atapi - ok11:13:38.0355 10024 [ e857eee6b92aaa473ebb3465add8f7e7 ] athr C:\windows\system32\DRIVERS\athrx.sys11:13:38.0487 10024 athr - ok11:13:38.0536 10024 [ 24464b908e143d2561e9e452fee97309 ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys11:13:38.0550 10024 AtiHDAudioService - ok11:13:38.0598 10024 atillk64 - ok11:13:38.0639 10024 [ 7c5d273e29dcc5505469b299c6f29163 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys11:13:38.0652 10024 AtiPcie - ok11:13:38.0674 10024 [ b07e6681d303a612680223c729b021e2 ] ATITool C:\windows\system32\DRIVERS\ATITool64.sys11:13:38.0697 10024 ATITool ( UnsignedFile.Multi.Generic ) - warning11:13:38.0697 10024 ATITool - detected UnsignedFile.Multi.Generic (1)11:13:38.0778 10024 [ f23fef6d569fce88671949894a8becf1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll11:13:38.0865 10024 AudioEndpointBuilder - ok11:13:38.0945 10024 [ f23fef6d569fce88671949894a8becf1 ] AudioSrv C:\windows\System32\Audiosrv.dll11:13:38.0991 10024 AudioSrv - ok11:13:39.0051 10024 [ a6bf31a71b409dfa8cac83159e1e2aff ] AxInstSV C:\windows\System32\AxInstSV.dll11:13:39.0141 10024 AxInstSV - ok11:13:39.0200 10024 [ 3e5b191307609f7514148c6832bb0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys11:13:39.0258 10024 b06bdrv - ok11:13:39.0299 10024 [ b5ace6968304a3900eeb1ebfd9622df2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys11:13:39.0344 10024 b57nd60a - ok11:13:39.0467 10024 [ 5b5c36b2ec500462a715db6bcbaf5da7 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys11:13:39.0559 10024 BCM43XX - ok11:13:39.0639 10024 [ 6163664c7e9cd110af70180c126c3fdc ] BcmSqlStartupSvc C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe11:13:39.0652 10024 BcmSqlStartupSvc - ok11:13:39.0685 10024 [ fde360167101b4e45a96f939f388aeb0 ] BDESVC C:\windows\System32\bdesvc.dll11:13:39.0741 10024 BDESVC - ok11:13:39.0758 10024 [ 16a47ce2decc9b099349a5f840654746 ] Beep C:\windows\system32\drivers\Beep.sys11:13:39.0816 10024 Beep - ok11:13:39.0892 10024 [ 82974d6a2fd19445cc5171fc378668a4 ] BFE C:\windows\System32\bfe.dll11:13:39.0959 10024 BFE - ok11:13:40.0015 10024 [ 1ea7969e3271cbc59e1730697dc74682 ] BITS C:\windows\System32\qmgr.dll11:13:40.0081 10024 BITS - ok11:13:40.0119 10024 [ 61583ee3c3a17003c4acd0475646b4d3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys11:13:40.0132 10024 blbdrive - ok11:13:40.0175 10024 [ 6c02a83164f5cc0a262f4199f0871cf5 ] bowser C:\windows\system32\DRIVERS\bowser.sys11:13:40.0194 10024 bowser - ok11:13:40.0236 10024 [ f09eee9edc320b5e1501f749fde686c8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys11:13:40.0277 10024 BrFiltLo - ok11:13:40.0301 10024 [ b114d3098e9bdb8bea8b053685831be6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys11:13:40.0316 10024 BrFiltUp - ok11:13:40.0357 10024 [ 8ef0d5c41ec907751b8429162b1239ed ] Browser C:\windows\System32\browser.dll11:13:40.0415 10024 Browser - ok11:13:40.0448 10024 [ 43bea8d483bf1870f018e2d02e06a5bd ] Brserid C:\windows\System32\Drivers\Brserid.sys11:13:40.0509 10024 Brserid - ok11:13:40.0524 10024 [ a6eca2151b08a09caceca35c07f05b42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys11:13:40.0539 10024 BrSerWdm - ok11:13:40.0559 10024 [ b79968002c277e869cf38bd22cd61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys11:13:40.0588 10024 BrUsbMdm - ok11:13:40.0625 10024 [ a87528880231c54e75ea7a44943b38bf ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys11:13:40.0659 10024 BrUsbSer - ok11:13:40.0692 10024 [ 9da669f11d1f894ab4eb69bf546a42e8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys11:13:40.0731 10024 BTHMODEM - ok11:13:40.0783 10024 [ 95f9c2976059462cbbf227f7aab10de9 ] bthserv C:\windows\system32\bthserv.dll11:13:40.0837 10024 bthserv - ok11:13:40.0871 10024 [ b8bd2bb284668c84865658c77574381a ] cdfs C:\windows\system32\DRIVERS\cdfs.sys11:13:41.0010 10024 cdfs - ok11:13:41.0077 10024 [ f036ce71586e93d94dab220d7bdf4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys11:13:41.0103 10024 cdrom - ok11:13:41.0149 10024 [ f17d1d393bbc69c5322fbfafaca28c7f ] CertPropSvc C:\windows\System32\certprop.dll11:13:41.0214 10024 CertPropSvc - ok11:13:41.0303 10024 [ 41e7c4fa6491747402cfca77cc1c7aab ] cfWiMAXService C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe11:13:41.0315 10024 cfWiMAXService - ok11:13:41.0364 10024 [ d7cd5c4e1b71fa62050515314cfb52cf ] circlass C:\windows\system32\DRIVERS\circlass.sys11:13:41.0395 10024 circlass - ok11:13:41.0443 10024 [ fe1ec06f2253f691fe36217c592a0206 ] CLFS C:\windows\system32\CLFS.sys11:13:41.0462 10024 CLFS - ok11:13:41.0548 10024 [ d88040f816fda31c3b466f0fa0918f29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe11:13:41.0566 10024 clr_optimization_v2.0.50727_32 - ok11:13:41.0611 10024 [ d1ceea2b47cb998321c579651ce3e4f8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe11:13:41.0622 10024 clr_optimization_v2.0.50727_64 - ok11:13:41.0691 10024 [ c5a75eb48e2344abdc162bda79e16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe11:13:41.0704 10024 clr_optimization_v4.0.30319_32 - ok11:13:41.0738 10024 [ c6f9af94dcd58122a4d7e89db6bed29d ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe11:13:41.0751 10024 clr_optimization_v4.0.30319_64 - ok11:13:41.0791 10024 [ 0840155d0bddf1190f84a663c284bd33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys11:13:41.0827 10024 CmBatt - ok11:13:41.0867 10024 [ e19d3f095812725d88f9001985b94edd ] cmdide C:\windows\system32\drivers\cmdide.sys11:13:41.0879 10024 cmdide - ok11:13:41.0921 10024 [ 9ac4f97c2d3e93367e2148ea940cd2cd ] CNG C:\windows\system32\Drivers\cng.sys11:13:41.0975 10024 CNG - ok11:13:42.0026 10024 [ 25c58ee97be0416a373e3e4f855206b5 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys11:13:42.0049 10024 CnxtHdAudService - ok11:13:42.0095 10024 [ 89c99ab4ae9535f727791592d84d4821 ] CnxtHdmiAudService C:\windows\system32\drivers\CHDMI64.sys11:13:42.0119 10024 CnxtHdmiAudService - ok11:13:42.0167 10024 [ 102de219c3f61415f964c88e9085ad14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys11:13:42.0180 10024 Compbatt - ok11:13:42.0226 10024 [ 03edb043586cceba243d689bdda370a8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys11:13:42.0273 10024 CompositeBus - ok11:13:42.0300 10024 COMSysApp - ok11:13:42.0335 10024 [ cab0eeaf5295fc96ddd3e19dce27e131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe11:13:42.0343 10024 ConfigFree Service - ok11:13:42.0373 10024 [ 1c827878a998c18847245fe1f34ee597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys11:13:42.0386 10024 crcdisk - ok11:13:42.0422 10024 [ 4f5414602e2544a4554d95517948b705 ] CryptSvc C:\windows\system32\cryptsvc.dll11:13:42.0472 10024 CryptSvc - ok11:13:42.0530 10024 [ 5c627d1b1138676c0a7ab2c2c190d123 ] DcomLaunch C:\windows\system32\rpcss.dll11:13:42.0602 10024 DcomLaunch - ok11:13:42.0638 10024 [ 3cec7631a84943677aa8fa8ee5b6b43d ] defragsvc C:\windows\System32\defragsvc.dll11:13:42.0687 10024 defragsvc - ok11:13:42.0735 10024 [ 9bb2ef44eaa163b29c4a4587887a0fe4 ] DfsC C:\windows\system32\Drivers\dfsc.sys11:13:42.0785 10024 DfsC - ok11:13:42.0850 10024 [ 43d808f5d9e1a18e5eeb5ebc83969e4e ] Dhcp C:\windows\system32\dhcpcore.dll11:13:42.0888 10024 Dhcp - ok11:13:42.0917 10024 [ 13096b05847ec78f0977f2c0f79e9ab3 ] discache C:\windows\system32\drivers\discache.sys11:13:42.0976 10024 discache - ok11:13:43.0002 10024 [ 9819eee8b5ea3784ec4af3b137a5244c ] Disk C:\windows\system32\DRIVERS\disk.sys11:13:43.0022 10024 Disk - ok11:13:43.0063 10024 [ 16835866aaa693c7d7fceba8fff706e4 ] Dnscache C:\windows\System32\dnsrslvr.dll11:13:43.0086 10024 Dnscache - ok11:13:43.0133 10024 [ b1fb3ddca0fdf408750d5843591afbc6 ] dot3svc C:\windows\System32\dot3svc.dll11:13:43.0191 10024 dot3svc - ok11:13:43.0226 10024 [ b26f4f737e8f9df4f31af6cf31d05820 ] DPS C:\windows\system32\dps.dll11:13:43.0292 10024 DPS - ok11:13:43.0341 10024 [ 9b19f34400d24df84c858a421c205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys11:13:43.0380 10024 drmkaud - ok11:13:43.0466 10024 [ f5bee30450e18e6b83a5012c100616fd ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys11:13:43.0495 10024 DXGKrnl - ok11:13:43.0571 10024 [ d00eae9c735a7dee8049e50d73d25434 ] eamonm C:\windows\system32\DRIVERS\eamonm.sys11:13:43.0586 10024 eamonm - ok11:13:43.0633 10024 [ e2dda8726da9cb5b2c4000c9018a9633 ] EapHost C:\windows\System32\eapsvc.dll11:13:43.0689 10024 EapHost - ok11:13:43.0796 10024 [ dc5d737f51be844d8c82c695eb17372f ] ebdrv C:\windows\system32\DRIVERS\evbda.sys11:13:43.0868 10024 ebdrv - ok11:13:43.0916 10024 efavdrv - ok11:13:43.0950 10024 [ c118a82cd78818c29ab228366ebf81c3 ] EFS C:\windows\System32\lsass.exe11:13:44.0010 10024 EFS - ok11:13:44.0048 10024 [ e5edde3c8158dd0cbc5812f201dcded0 ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys11:13:44.0061 10024 ehdrv - ok11:13:44.0118 10024 [ c4002b6b41975f057d98c439030cea07 ] ehRecvr C:\windows\ehome\ehRecvr.exe11:13:44.0196 10024 ehRecvr - ok11:13:44.0234 10024 [ 4705e8ef9934482c5bb488ce28afc681 ] ehSched C:\windows\ehome\ehsched.exe11:13:44.0295 10024 ehSched - ok11:13:44.0727 10024 [ ad4faade819e0da9933bea7c01d2c763 ] ekrn C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe11:13:44.0768 10024 ekrn - ok11:13:44.0807 10024 [ 0e5da5369a0fcaea12456dd852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys11:13:44.0828 10024 elxstor - ok11:13:44.0894 10024 [ 587f0f4145a1536a6e37efd769b7665f ] epfw C:\windows\system32\DRIVERS\epfw.sys11:13:44.0922 10024 epfw - ok11:13:44.0986 10024 [ d2f812358ee8ee23cbb5c4daffb5b819 ] EpfwLWF C:\windows\system32\DRIVERS\EpfwLWF.sys11:13:44.0997 10024 EpfwLWF - ok11:13:45.0044 10024 [ 34bf55d69ab74d14c7e7a17259cb7df8 ] epfwwfp C:\windows\system32\DRIVERS\epfwwfp.sys11:13:45.0055 10024 epfwwfp - ok11:13:45.0096 10024 [ 34a3c54752046e79a126e15c51db409b ] ErrDev C:\windows\system32\drivers\errdev.sys11:13:45.0140 10024 ErrDev - ok11:13:45.0402 10024 esihdrv - ok11:13:45.0445 10024 [ 4166f82be4d24938977dd1746be9b8a0 ] EventSystem C:\windows\system32\es.dll11:13:45.0504 10024 EventSystem - ok11:13:45.0573 10024 [ a510c654ec00c1e9bdd91eeb3a59823b ] exfat C:\windows\system32\drivers\exfat.sys11:13:45.0628 10024 exfat - ok11:13:45.0666 10024 [ 0adc83218b66a6db380c330836f3e36d ] fastfat C:\windows\system32\drivers\fastfat.sys11:13:45.0724 10024 fastfat - ok11:13:45.0785 10024 [ dbefd454f8318a0ef691fdd2eaab44eb ] Fax C:\windows\system32\fxssvc.exe11:13:45.0853 10024 Fax - ok11:13:45.0879 10024 [ d765d19cd8ef61f650c384f62fac00ab ] fdc C:\windows\system32\DRIVERS\fdc.sys11:13:45.0910 10024 fdc - ok11:13:45.0939 10024 [ 0438cab2e03f4fb61455a7956026fe86 ] fdPHost C:\windows\system32\fdPHost.dll11:13:45.0998 10024 fdPHost - ok11:13:46.0024 10024 [ 802496cb59a30349f9a6dd22d6947644 ] FDResPub C:\windows\system32\fdrespub.dll11:13:46.0080 10024 FDResPub - ok11:13:46.0119 10024 [ 655661be46b5f5f3fd454e2c3095b930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys11:13:46.0131 10024 FileInfo - ok11:13:46.0152 10024 [ 5f671ab5bc87eea04ec38a6cd5962a47 ] Filetrace C:\windows\system32\drivers\filetrace.sys11:13:46.0215 10024 Filetrace - ok11:13:46.0261 10024 [ c172a0f53008eaeb8ea33fe10e177af5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys11:13:46.0295 10024 flpydisk - ok11:13:46.0356 10024 [ da6b67270fd9db3697b20fce94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys11:13:46.0372 10024 FltMgr - ok11:13:46.0433 10024 [ 5c4cb4086fb83115b153e47add961a0c ] FontCache C:\windows\system32\FntCache.dll11:13:46.0473 10024 FontCache - ok11:13:46.0531 10024 [ a8b7f3818ab65695e3a0bb3279f6dce6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe11:13:46.0540 10024 FontCache3.0.0.0 - ok11:13:46.0577 10024 [ d43703496149971890703b4b1b723eac ] FsDepends C:\windows\system32\drivers\FsDepends.sys11:13:46.0592 10024 FsDepends - ok11:13:46.0617 10024 [ 6bd9295cc032dd3077c671fccf579a7b ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys11:13:46.0629 10024 Fs_Rec - ok11:13:46.0680 10024 [ 1f7b25b858fa27015169fe95e54108ed ] fvevol C:\windows\system32\DRIVERS\fvevol.sys11:13:46.0699 10024 fvevol - ok11:13:46.0741 10024 [ 60acb128e64c35c2b4e4aab1b0a5c293 ] FwLnk C:\windows\system32\DRIVERS\FwLnk.sys11:13:46.0796 10024 FwLnk - ok11:13:46.0828 10024 [ 8c778d335c9d272cfd3298ab02abe3b6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys11:13:46.0841 10024 gagp30kx - ok11:13:46.0897 10024 [ 277bbc7e1aa1ee957f573a10eca7ef3a ] gpsvc C:\windows\System32\gpsvc.dll11:13:46.0958 10024 gpsvc - ok11:13:47.0024 10024 [ f02a533f517eb38333cb12a9e8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe11:13:47.0035 10024 gupdate - ok11:13:47.0061 10024 [ f02a533f517eb38333cb12a9e8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe11:13:47.0071 10024 gupdatem - ok11:13:47.0109 10024 [ f2523ef6460fc42405b12248338ab2f0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys11:13:47.0164 10024 hcw85cir - ok11:13:47.0232 10024 [ 975761c778e33cd22498059b91e7373a ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys11:13:47.0251 10024 HdAudAddService - ok11:13:47.0283 10024 [ 97bfed39b6b79eb12cddbfeed51f56bb ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys11:13:47.0319 10024 HDAudBus - ok11:13:47.0358 10024 [ 78e86380454a7b10a5eb255dc44a355f ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys11:13:47.0406 10024 HidBatt - ok11:13:47.0411 10024 [ 7fd2a313f7afe5c4dab14798c48dd104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys11:13:47.0464 10024 HidBth - ok11:13:47.0488 10024 [ 0a77d29f311b88cfae3b13f9c1a73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys11:13:47.0523 10024 HidIr - ok11:13:47.0558 10024 [ bd9eb3958f213f96b97b1d897dee006d ] hidserv C:\windows\system32\hidserv.dll11:13:47.0610 10024 hidserv - ok11:13:47.0677 10024 [ 9592090a7e2b61cd582b612b6df70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys11:13:47.0689 10024 HidUsb - ok11:13:47.0722 10024 [ 387e72e739e15e3d37907a86d9ff98e2 ] hkmsvc C:\windows\system32\kmsvc.dll11:13:47.0788 10024 hkmsvc - ok11:13:47.0819 10024 [ efdfb3dd38a4376f93e7985173813abd ] HomeGroupListener C:\windows\system32\ListSvc.dll11:13:47.0874 10024 HomeGroupListener - ok11:13:47.0922 10024 [ 908acb1f594274965a53926b10c81e89 ] HomeGroupProvider C:\windows\system32\provsvc.dll11:13:48.0028 10024 HomeGroupProvider - ok11:13:48.0067 10024 [ 39d2abcd392f3d8a6dce7b60ae7b8efc ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys11:13:48.0082 10024 HpSAMD - ok11:13:48.0152 10024 [ 0ea7de1acb728dd5a369fd742d6eee28 ] HTTP C:\windows\system32\drivers\HTTP.sys11:13:48.0224 10024 HTTP - ok11:13:48.0258 10024 [ a5462bd6884960c9dc85ed49d34ff392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys11:13:48.0268 10024 hwpolicy - ok11:13:48.0324 10024 [ fa55c73d4affa7ee23ac4be53b4592d3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys11:13:48.0338 10024 i8042prt - ok11:13:48.0393 10024 [ aaaf44db3bd0b9d1fb6969b23ecc8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys11:13:48.0414 10024 iaStorV - ok11:13:48.0489 10024 [ 5988fc40f8db5b0739cd1e3a5d0d78bd ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe11:13:48.0516 10024 idsvc - ok11:13:48.0550 10024 [ 5c18831c61933628f5bb0ea2675b9d21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys11:13:48.0563 10024 iirsp - ok11:13:48.0623 10024 [ fcd84c381e0140af901e58d48882d26b ] IKEEXT C:\windows\System32\ikeext.dll11:13:48.0688 10024 IKEEXT - ok11:13:48.0721 10024 [ f00f20e70c6ec3aa366910083a0518aa ] intelide C:\windows\system32\drivers\intelide.sys11:13:48.0734 10024 intelide - ok11:13:48.0759 10024 [ ada036632c664caa754079041cf1f8c1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys11:13:48.0792 10024 intelppm - ok11:13:48.0829 10024 [ 098a91c54546a3b878dad6a7e90a455b ] IPBusEnum C:\windows\system32\ipbusenum.dll11:13:48.0887 10024 IPBusEnum - ok11:13:48.0923 10024 [ c9f0e1bd74365a8771590e9008d22ab6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys11:13:48.0976 10024 IpFilterDriver - ok11:13:49.0027 10024 [ a34a587fffd45fa649fba6d03784d257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll11:13:49.0091 10024 iphlpsvc - ok11:13:49.0128 10024 [ 0fc1aea580957aa8817b8f305d18ca3a ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys11:13:49.0163 10024 IPMIDRV - ok11:13:49.0232 10024 [ af9b39a7e7b6caa203b3862582e9f2d0 ] IPNAT C:\windows\system32\drivers\ipnat.sys11:13:49.0283 10024 IPNAT - ok11:13:49.0304 10024 [ 3abf5e7213eb28966d55d58b515d5ce9 ] IRENUM C:\windows\system32\drivers\irenum.sys11:13:49.0348 10024 IRENUM - ok11:13:49.0400 10024 [ 2f7b28dc3e1183e5eb418df55c204f38 ] isapnp C:\windows\system32\drivers\isapnp.sys11:13:49.0418 10024 isapnp - ok11:13:49.0453 10024 [ d931d7309deb2317035b07c9f9e6b0bd ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys11:13:49.0469 10024 iScsiPrt - ok11:13:49.0561 10024 [ 928034ecce50dc6ab6c4cd575b78bd10 ] JoinMEUI Assistant Service C:\Program Files (x86)\Join Me\JoinMEAssistantServices.exe11:13:49.0604 10024 JoinMEUI Assistant Service ( UnsignedFile.Multi.Generic ) - warning11:13:49.0604 10024 JoinMEUI Assistant Service - detected UnsignedFile.Multi.Generic (1)11:13:49.0668 10024 [ bc02336f1cba7dcc7d1213bb588a68a5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys11:13:49.0679 10024 kbdclass - ok11:13:49.0697 10024 [ 0705eff5b42a9db58548eec3b26bb484 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys11:13:49.0727 10024 kbdhid - ok11:13:49.0751 10024 [ c118a82cd78818c29ab228366ebf81c3 ] KeyIso C:\windows\system32\lsass.exe11:13:49.0764 10024 KeyIso - ok11:13:49.0790 10024 [ 97a7070aea4c058b6418519e869a63b4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys11:13:49.0803 10024 KSecDD - ok11:13:49.0874 10024 [ 26c43a7c2862447ec59deda188d1da07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys11:13:49.0887 10024 KSecPkg - ok11:13:49.0925 10024 [ 6869281e78cb31a43e969f06b57347c4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys11:13:49.0980 10024 ksthunk - ok11:13:50.0021 10024 [ 6ab66e16aa859232f64deb66887a8c9c ] KtmRm C:\windows\system32\msdtckrm.dll11:13:50.0090 10024 KtmRm - ok11:13:50.0133 10024 [ fc741259b7c22379ee83257d7cf91151 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys11:13:50.0151 10024 L1C - ok11:13:50.0194 10024 [ d9f42719019740baa6d1c6d536cbdaa6 ] LanmanServer C:\windows\system32\srvsvc.dll11:13:50.0266 10024 LanmanServer - ok11:13:50.0310 10024 [ 851a1382eed3e3a7476db004f4ee3e1a ] LanmanWorkstation C:\windows\System32\wkssvc.dll11:13:50.0364 10024 LanmanWorkstation - ok11:13:50.0409 10024 [ 1538831cf8ad2979a04c423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys11:13:50.0477 10024 lltdio - ok11:13:50.0529 10024 [ c1185803384ab3feed115f79f109427f ] lltdsvc C:\windows\System32\lltdsvc.dll11:13:50.0595 10024 lltdsvc - ok11:13:50.0821 10024 [ f993a32249b66c9d622ea5592a8b76b8 ] lmhosts C:\windows\System32\lmhsvc.dll11:13:50.0856 10024 lmhosts - ok11:13:50.0890 10024 [ 1a93e54eb0ece102495a51266dcdb6a6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys11:13:50.0903 10024 LSI_FC - ok11:13:50.0926 10024 [ 1047184a9fdc8bdbff857175875ee810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys11:13:50.0942 10024 LSI_SAS - ok11:13:50.0957 10024 [ 30f5c0de1ee8b5bc9306c1f0e4a75f93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys11:13:50.0969 10024 LSI_SAS2 - ok11:13:51.0004 10024 [ 0504eacaff0d3c8aed161c4b0d369d4a ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys11:13:51.0018 10024 LSI_SCSI - ok11:13:51.0032 10024 [ 43d0f98e1d56ccddb0d5254cff7b356e ] luafv C:\windows\system32\drivers\luafv.sys11:13:51.0097 10024 luafv - ok11:13:51.0172 10024 [ 7ad627cdb12f5f451f24c8a97ca6e175 ] massfilter_hs C:\windows\system32\drivers\massfilter_hs.sys11:13:51.0232 10024 massfilter_hs - ok11:13:51.0290 10024 [ dc8490812a3b72811ae534f423b4c206 ] MBAMProtector C:\windows\system32\drivers\mbam.sys11:13:51.0303 10024 MBAMProtector - ok11:13:51.0401 10024 [ 43683e970f008c93c9429ef428147a54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe11:13:51.0423 10024 MBAMService - ok11:13:51.0459 10024 [ 0be09cd858abf9df6ed259d57a1a1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll11:13:51.0474 10024 Mcx2Svc - ok11:13:51.0509 10024 [ a55805f747c6edb6a9080d7c633bd0f4 ] megasas C:\windows\system32\DRIVERS\megasas.sys11:13:51.0521 10024 megasas - ok11:13:51.0605 10024 [ baf74ce0072480c3b6b7c13b2a94d6b3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys11:13:51.0622 10024 MegaSR - ok11:13:51.0659 10024 [ e40e80d0304a73e8d269f7141d77250b ] MMCSS C:\windows\system32\mmcss.dll11:13:51.0717 10024 MMCSS - ok11:13:51.0741 10024 [ 800ba92f7010378b09f9ed9270f07137 ] Modem C:\windows\system32\drivers\modem.sys11:13:51.0804 10024 Modem - ok11:13:51.0839 10024 [ b03d591dc7da45ece20b3b467e6aadaa ] monitor C:\windows\system32\DRIVERS\monitor.sys11:13:51.0868 10024 monitor - ok11:13:51.0896 10024 [ 7d27ea49f3c1f687d357e77a470aea99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys11:13:51.0909 10024 mouclass - ok11:13:51.0924 10024 [ d3bf052c40b0c4166d9fd86a4288c1e6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys11:13:51.0959 10024 mouhid - ok11:13:51.0993 10024 [ 32e7a3d591d671a6df2db515a5cbe0fa ] mountmgr C:\windows\system32\drivers\mountmgr.sys11:13:52.0005 10024 mountmgr - ok11:13:52.0218 10024 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe11:13:52.0230 10024 MozillaMaintenance - ok11:13:52.0270 10024 [ a44b420d30bd56e145d6a2bc8768ec58 ] mpio C:\windows\system32\drivers\mpio.sys11:13:52.0284 10024 mpio - ok11:13:52.0323 10024 [ 6c38c9e45ae0ea2fa5e551f2ed5e978f ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys11:13:52.0358 10024 mpsdrv - ok11:13:52.0413 10024 [ 54ffc9c8898113ace189d4aa7199d2c1 ] MpsSvc C:\windows\system32\mpssvc.dll11:13:52.0479 10024 MpsSvc - ok11:13:52.0519 10024 [ dc722758b8261e1abafd31a3c0a66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys11:13:52.0567 10024 MRxDAV - ok11:13:52.0608 10024 [ a5d9106a73dc88564c825d317cac68ac ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys11:13:52.0658 10024 mrxsmb - ok11:13:52.0679 10024 [ d711b3c1d5f42c0c2415687be09fc163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys11:13:52.0722 10024 mrxsmb10 - ok11:13:52.0753 10024 [ 9423e9d355c8d303e76b8cfbd8a5c30c ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys11:13:52.0767 10024 mrxsmb20 - ok11:13:52.0805 10024 [ c25f0bafa182cbca2dd3c851c2e75796 ] msahci C:\windows\system32\drivers\msahci.sys11:13:52.0817 10024 msahci - ok11:13:52.0845 10024 [ db801a638d011b9633829eb6f663c900 ] msdsm C:\windows\system32\drivers\msdsm.sys11:13:52.0860 10024 msdsm - ok11:13:52.0888 10024 [ de0ece52236cfa3ed2dbfc03f28253a8 ] MSDTC C:\windows\System32\msdtc.exe11:13:52.0930 10024 MSDTC - ok11:13:52.0997 10024 [ aa3fb40e17ce1388fa1bedab50ea8f96 ] Msfs C:\windows\system32\drivers\Msfs.sys11:13:53.0033 10024 Msfs - ok11:13:53.0059 10024 [ f9d215a46a8b9753f61767fa72a20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys11:13:53.0112 10024 mshidkmdf - ok11:13:53.0158 10024 [ d916874bbd4f8b07bfb7fa9b3ccae29d ] msisadrv C:\windows\system32\drivers\msisadrv.sys11:13:53.0170 10024 msisadrv - ok11:13:53.0192 10024 [ 808e98ff49b155c522e6400953177b08 ] MSiSCSI C:\windows\system32\iscsiexe.dll11:13:53.0248 10024 MSiSCSI - ok11:13:53.0252 10024 msiserver - ok11:13:53.0296 10024 [ 49ccf2c4fea34ffad8b1b59d49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys11:13:53.0350 10024 MSKSSRV - ok11:13:53.0364 10024 [ bdd71ace35a232104ddd349ee70e1ab3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys11:13:53.0418 10024 MSPCLOCK - ok11:13:53.0435 10024 [ 4ed981241db27c3383d72092b618a1d0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys11:13:53.0490 10024 MSPQM - ok11:13:53.0543 10024 [ 759a9eeb0fa9ed79da1fb7d4ef78866d ] MsRPC C:\windows\system32\drivers\MsRPC.sys11:13:53.0562 10024 MsRPC - ok11:13:53.0614 10024 [ 0eed230e37515a0eaee3c2e1bc97b288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys11:13:53.0625 10024 mssmbios - ok11:13:53.0665 10024 MSSQL$MSSMLBIZ - ok11:13:53.0698 10024 MSSQL$SQLEXPRESS - ok11:13:53.0731 10024 [ c06ea83f6fc2959e897c117255b6b1d5 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe11:13:53.0758 10024 MSSQLServerADHelper - ok11:13:53.0796 10024 [ 2e66f9ecb30b4221a318c92ac2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys11:13:53.0850 10024 MSTEE - ok11:13:53.0872 10024 [ 7ea404308934e675bffde8edf0757bcd ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys11:13:53.0901 10024 MTConfig - ok11:13:53.0942 10024 [ f9a18612fd3526fe473c1bda678d61c8 ] Mup C:\windows\system32\Drivers\mup.sys11:13:53.0955 10024 Mup - ok11:13:53.0989 10024 [ 08835780cc6a5cff5275101b5a9d17a4 ] MxEFUF C:\windows\system32\DRIVERS\MxEFUF64.sys11:13:54.0044 10024 MxEFUF - ok11:13:54.0151 10024 mysql - ok11:13:54.0199 10024 [ 582ac6d9873e31dfa28a4547270862dd ] napagent C:\windows\system32\qagentRT.dll11:13:54.0271 10024 napagent - ok11:13:54.0322 10024 [ 1ea3749c4114db3e3161156ffffa6b33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys11:13:54.0360 10024 NativeWifiP - ok11:13:54.0445 10024 [ 79b47fd40d9a817e932f9d26fac0a81c ] NDIS C:\windows\system32\drivers\ndis.sys11:13:54.0474 10024 NDIS - ok11:13:54.0507 10024 [ 9f9a1f53aad7da4d6fef5bb73ab811ac ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys11:13:54.0580 10024 NdisCap - ok11:13:54.0621 10024 [ 30639c932d9fef22b31268fe25a1b6e5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys11:13:54.0685 10024 NdisTapi - ok11:13:54.0722 10024 [ 136185f9fb2cc61e573e676aa5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys11:13:54.0755 10024 Ndisuio - ok11:13:54.0801 10024 [ 53f7305169863f0a2bddc49e116c2e11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys11:13:54.0862 10024 NdisWan - ok11:13:54.0898 10024 [ 015c0d8e0e0421b4cfd48cffe2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys11:13:54.0932 10024 NDProxy - ok11:13:54.0975 10024 [ 86743d9f5d2b1048062b14b1d84501c4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys11:13:55.0026 10024 NetBIOS - ok11:13:55.0064 10024 [ 09594d1089c523423b32a4229263f068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys11:13:55.0124 10024 NetBT - ok11:13:55.0151 10024 [ c118a82cd78818c29ab228366ebf81c3 ] Netlogon C:\windows\system32\lsass.exe11:13:55.0164 10024 Netlogon - ok11:13:55.0191 10024 [ 847d3ae376c0817161a14a82c8922a9e ] Netman C:\windows\System32\netman.dll11:13:55.0254 10024 Netman - ok11:13:55.0300 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe11:13:55.0312 10024 NetMsmqActivator - ok11:13:55.0316 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe11:13:55.0328 10024 NetPipeActivator - ok11:13:55.0366 10024 [ 5f28111c648f1e24f7dbc87cdeb091b8 ] netprofm C:\windows\System32\netprofm.dll11:13:55.0437 10024 netprofm - ok11:13:55.0467 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe11:13:55.0478 10024 NetTcpActivator - ok11:13:55.0482 10024 [ 3e5a36127e201ddf663176b66828fafe ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe11:13:55.0497 10024 NetTcpPortSharing - ok11:13:55.0521 10024 [ 77889813be4d166cdab78ddba990da92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys11:13:55.0533 10024 nfrd960 - ok11:13:55.0587 10024 [ 1ee99a89cc788ada662441d1e9830529 ] NlaSvc C:\windows\System32\nlasvc.dll11:13:55.0643 10024 NlaSvc - ok11:13:56.0042 10024 [ 1e4c4ab5c9b8dd13179bbdc75a2a01f7 ] Npfs C:\windows\system32\drivers\Npfs.sys11:13:56.0092 10024 Npfs - ok11:13:56.0126 10024 [ d54bfdf3e0c953f823b3d0bfe4732528 ] nsi C:\windows\system32\nsisvc.dll11:13:56.0182 10024 nsi - ok11:13:56.0214 10024 [ e7f5ae18af4168178a642a9247c63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys11:13:56.0274 10024 nsiproxy - ok11:13:56.0344 10024 [ a2f74975097f52a00745f9637451fdd8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys11:13:56.0393 10024 Ntfs - ok11:13:56.0733 10024 [ 9899284589f75fa8724ff3d16aed75c1 ] Null C:\windows\system32\drivers\Null.sys11:13:56.0792 10024 Null - ok11:13:56.0821 10024 [ 0a92cb65770442ed0dc44834632f66ad ] nvraid C:\windows\system32\drivers\nvraid.sys11:13:56.0835 10024 nvraid - ok11:13:56.0875 10024 [ dab0e87525c10052bf65f06152f37e4a ] nvstor C:\windows\system32\drivers\nvstor.sys11:13:56.0889 10024 nvstor - ok11:13:56.0928 10024 [ 270d7cd42d6e3979f6dd0146650f0e05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys11:13:56.0943 10024 nv_agp - ok11:13:57.0043 10024 [ 1f0e05dff4f5a833168e49be1256f002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE11:13:57.0062 10024 odserv - ok11:13:57.0092 10024 [ 3589478e4b22ce21b41fa1bfc0b8b8a0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys11:13:57.0112 10024 ohci1394 - ok11:13:57.0146 10024 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE11:13:57.0179 10024 ose - ok11:13:57.0223 10024 [ 3eac4455472cc2c97107b5291e0dcafe ] p2pimsvc C:\windows\system32\pnrpsvc.dll11:13:57.0287 10024 p2pimsvc - ok11:13:57.0310 10024 [ 927463ecb02179f88e4b9a17568c63c3 ] p2psvc C:\windows\system32\p2psvc.dll11:13:57.0331 10024 p2psvc - ok11:13:57.0358 10024 [ 0086431c29c35be1dbc43f52cc273887 ] Parport C:\windows\system32\DRIVERS\parport.sys11:13:57.0372 10024 Parport - ok11:13:57.0398 10024 [ e9766131eeade40a27dc27d2d68fba9c ] partmgr C:\windows\system32\drivers\partmgr.sys11:13:57.0411 10024 partmgr - ok11:13:57.0438 10024 [ 3aeaa8b561e63452c655dc0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll11:13:57.0475 10024 PcaSvc - ok11:13:57.0510 10024 [ 94575c0571d1462a0f70bde6bd6ee6b3 ] pci C:\windows\system32\drivers\pci.sys11:13:57.0525 10024 pci - ok11:13:57.0569 10024 [ b5b8b5ef2e5cb34df8dcf8831e3534fa ] pciide C:\windows\system32\drivers\pciide.sys11:13:57.0585 10024 pciide - ok11:13:57.0606 10024 [ b2e81d4e87ce48589f98cb8c05b01f2f ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys11:13:57.0623 10024 pcmcia - ok11:13:57.0635 10024 [ d6b9c2e1a11a3a4b26a182ffef18f603 ] pcw C:\windows\system32\drivers\pcw.sys11:13:57.0647 10024 pcw - ok11:13:57.0735 10024 [ 68769c3356b3be5d1c732c97b9a80d6e ] PEAUTH C:\windows\system32\drivers\peauth.sys11:13:57.0781 10024 PEAUTH - ok11:13:57.0847 10024 [ e495e408c93141e8fc72dc0c6046ddfa ] PerfHost C:\windows\SysWow64\perfhost.exe11:13:57.0880 10024 PerfHost - ok11:13:57.0939 10024 [ 663962900e7fea522126ba287715bb4a ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys11:13:57.0951 10024 PGEffect - ok11:13:58.0023 10024 [ c7cf6a6e137463219e1259e3f0f0dd6c ] pla C:\windows\system32\pla.dll11:13:58.0096 10024 pla - ok11:13:58.0162 10024 [ 25fbdef06c4d92815b353f6e792c8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll11:13:58.0260 10024 PlugPlay - ok11:13:58.0298 10024 PnkBstrA - ok11:13:58.0322 10024 [ 7195581cec9bb7d12abe54036acc2e38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll11:13:58.0357 10024 PNRPAutoReg - ok11:13:58.0401 10024 [ 3eac4455472cc2c97107b5291e0dcafe ] PNRPsvc C:\windows\system32\pnrpsvc.dll11:13:58.0416 10024 PNRPsvc - ok11:13:58.0477 10024 [ 4f15d75adf6156bf56eced6d4a55c389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll11:13:58.0541 10024 PolicyAgent - ok11:13:58.0578 10024 [ 6ba9d927dded70bd1a9caded45f8b184 ] Power C:\windows\system32\umpo.dll11:13:58.0643 10024 Power - ok11:13:58.0680 10024 [ f92a2c41117a11a00be01ca01a7fcde9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys11:13:58.0715 10024 PptpMiniport - ok11:13:58.0738 10024 [ 0d922e23c041efb1c3fac2a6f943c9bf ] Processor C:\windows\system32\DRIVERS\processr.sys11:13:58.0775 10024 Processor - ok11:13:58.0827 10024 [ 53e83f1f6cf9d62f32801cf66d8352a8 ] ProfSvc C:\windows\system32\profsvc.dll11:13:58.0884 10024 ProfSvc - ok11:13:58.0896 10024 [ c118a82cd78818c29ab228366ebf81c3 ] ProtectedStorage C:\windows\system32\lsass.exe11:13:58.0908 10024 ProtectedStorage - ok11:13:58.0950 10024 [ 0557cf5a2556bd58e26384169d72438d ] Psched C:\windows\system32\DRIVERS\pacer.sys11:13:58.0999 10024 Psched - ok11:13:59.0058 10024 [ a53a15a11ebfd21077463ee2c7afeef0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys11:13:59.0111 10024 ql2300 - ok11:13:59.0133 10024 [ 4f6d12b51de1aaeff7dc58c4d75423c8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys11:13:59.0150 10024 ql40xx - ok11:13:59.0173 10024 [ 906191634e99aea92c4816150bda3732 ] QWAVE C:\windows\system32\qwave.dll11:13:59.0210 10024 QWAVE - ok11:13:59.0235 10024 [ 76707bb36430888d9ce9d705398adb6c ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys11:13:59.0268 10024 QWAVEdrv - ok11:13:59.0299 10024 [ 5a0da8ad5762fa2d91678a8a01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys11:13:59.0367 10024 RasAcd - ok11:13:59.0399 10024 [ 7ecff9b22276b73f43a99a15a6094e90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys11:13:59.0446 10024 RasAgileVpn - ok11:13:59.0471 10024 [ 8f26510c5383b8dbe976de1cd00fc8c7 ] RasAuto C:\windows\System32\rasauto.dll11:13:59.0542 10024 RasAuto - ok11:13:59.0605 10024 [ 471815800ae33e6f1c32fb1b97c490ca ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys11:13:59.0666 10024 Rasl2tp - ok11:13:59.0702 10024 [ ee867a0870fc9e4972ba9eaad35651e2 ] RasMan C:\windows\System32\rasmans.dll11:13:59.0742 10024 RasMan - ok11:13:59.0761 10024 [ 855c9b1cd4756c5e9a2aa58a15f58c25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys11:13:59.0820 10024 RasPppoe - ok11:13:59.0856 10024 [ e8b1e447b008d07ff47d016c2b0eeecb ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys11:13:59.0902 10024 RasSstp - ok11:13:59.0950 10024 [ 77f665941019a1594d887a74f301fa2f ] rdbss C:\windows\system32\DRIVERS\rdbss.sys11:14:00.0018 10024 rdbss - ok11:14:00.0054 10024 [ 302da2a0539f2cf54d7c6cc30c1f2d8d ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys11:14:00.0093 10024 rdpbus - ok11:14:00.0117 10024 [ cea6cc257fc9b7715f1c2b4849286d24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys11:14:00.0172 10024 RDPCDD - ok11:14:00.0199 10024 [ bb5971a4f00659529a5c44831af22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys11:14:00.0252 10024 RDPENCDD - ok11:14:00.0283 10024 [ 216f3fa57533d98e1f74ded70113177a ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys11:14:00.0322 10024 RDPREFMP - ok11:14:00.0354 10024 [ e61608aa35e98999af9aaeeea6114b0a ] RDPWD C:\windows\system32\drivers\RDPWD.sys11:14:00.0385 10024 RDPWD - ok11:14:00.0433 10024 [ 34ed295fa0121c241bfef24764fc4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys11:14:00.0448 10024 rdyboost - ok11:14:00.0502 10024 RegFilter - ok11:14:00.0529 10024 [ 254fb7a22d74e5511c73a3f6d802f192 ] RemoteAccess C:\windows\System32\mprdim.dll11:14:00.0584 10024 RemoteAccess - ok11:14:00.0623 10024 [ e4d94f24081440b5fc5aa556c7c62702 ] RemoteRegistry C:\windows\system32\regsvc.dll11:14:00.0667 10024 RemoteRegistry - ok11:14:00.0716 10024 [ a10b40cf9eb57d24e44717a2d38a00f4 ] RivaTuner64 C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys11:14:00.0728 10024 RivaTuner64 - ok11:14:00.0774 10024 [ e4dc58cf7b3ea515ae917ff0d402a7bb ] RpcEptMapper C:\windows\System32\RpcEpMap.dll11:14:00.0838 10024 RpcEptMapper - ok11:14:00.0861 10024 [ d5ba242d4cf8e384db90e6a8ed850b8c ] RpcLocator C:\windows\system32\locator.exe11:14:00.0875 10024 RpcLocator - ok11:14:00.0920 10024 [ 5c627d1b1138676c0a7ab2c2c190d123 ] RpcSs C:\windows\system32\rpcss.dll11:14:00.0962 10024 RpcSs - ok11:14:01.0002 10024 [ ddc86e4f8e7456261e637e3552e804ff ] rspndr C:\windows\system32\DRIVERS\rspndr.sys11:14:01.0040 10024 rspndr - ok11:14:01.0088 10024 [ 907c4464381b5ebdfdc60f6c7d0dedfc ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys11:14:01.0103 10024 RSUSBSTOR - ok11:14:01.0118 10024 [ c118a82cd78818c29ab228366ebf81c3 ] SamSs C:\windows\system32\lsass.exe11:14:01.0131 10024 SamSs - ok11:14:01.0180 10024 [ ac03af3329579fffb455aa2daabbe22b ] sbp2port C:\windows\system32\drivers\sbp2port.sys11:14:01.0193 10024 sbp2port - ok11:14:01.0287 10024 [ 794d4b48dfb6e999537c7c3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe11:14:01.0320 10024 SBSDWSCService - ok11:14:01.0341 10024 [ 9b7395789e3791a3b6d000fe6f8b131e ] SCardSvr C:\windows\System32\SCardSvr.dll11:14:01.0396 10024 SCardSvr - ok11:14:01.0431 10024 [ 253f38d0d7074c02ff8deb9836c97d2b ] scfilter C:\windows\system32\DRIVERS\scfilter.sys11:14:01.0485 10024 scfilter - ok11:14:01.0541 10024 [ 262f6592c3299c005fd6bec90fc4463a ] Schedule C:\windows\system32\schedsvc.dll11:14:01.0610 10024 Schedule - ok11:14:01.0650 10024 [ f17d1d393bbc69c5322fbfafaca28c7f ] SCPolicySvc C:\windows\System32\certprop.dll11:14:01.0683 10024 SCPolicySvc - ok11:14:01.0731 10024 [ 6ea4234dc55346e0709560fe7c2c1972 ] SDRSVC C:\windows\System32\SDRSVC.dll11:14:01.0787 10024 SDRSVC - ok11:14:01.0826 10024 [ 3ea8a16169c26afbeb544e0e48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys11:14:01.0883 10024 secdrv - ok11:14:01.0925 10024 [ bc617a4e1b4fa8df523a061739a0bd87 ] seclogon C:\windows\system32\seclogon.dll11:14:01.0983 10024 seclogon - ok11:14:02.0022 10024 [ c32ab8fa018ef34c0f113bd501436d21 ] SENS C:\windows\System32\sens.dll11:14:02.0093 10024 SENS - ok11:14:02.0124 10024 [ 0336cffafaab87a11541f1cf1594b2b2 ] SensrSvc C:\windows\system32\sensrsvc.dll11:14:02.0191 10024 SensrSvc - ok11:14:02.0234 10024 [ cb624c0035412af0debec78c41f5ca1b ] Serenum C:\windows\system32\DRIVERS\serenum.sys11:14:02.0267 10024 Serenum - ok11:14:02.0294 10024 [ c1d8e28b2c2adfaec4ba89e9fda69bd6 ] Serial C:\windows\system32\DRIVERS\serial.sys11:14:02.0314 10024 Serial - ok11:14:02.0357 10024 [ 1c545a7d0691cc4a027396535691c3e3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys11:14:02.0396 10024 sermouse - ok11:14:02.0447 10024 [ 0b6231bf38174a1628c4ac812cc75804 ] SessionEnv C:\windows\system32\sessenv.dll11:14:02.0500 10024 SessionEnv - ok11:14:02.0536 10024 [ a554811bcd09279536440c964ae35bbf ] sffdisk C:\windows\system32\drivers\sffdisk.sys11:14:02.0586 10024 sffdisk - ok11:14:02.0604 10024 [ ff414f0baefeba59bc6c04b3db0b87bf ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys11:14:02.0638 10024 sffp_mmc - ok11:14:02.0665 10024 [ dd85b78243a19b59f0637dcf284da63c ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys11:14:02.0696 10024 sffp_sd - ok11:14:02.0729 10024 [ a9d601643a1647211a1ee2ec4e433ff4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys11:14:02.0746 10024 sfloppy - ok11:14:02.0773 10024 [ b95f6501a2f8b2e78c697fec401970ce ] SharedAccess C:\windows\System32\ipnathlp.dll11:14:02.0842 10024 SharedAccess - ok11:14:02.0884 10024 [ aaf932b4011d14052955d4b212a4da8d ] ShellHWDetection C:\windows\System32\shsvcs.dll11:14:02.0948 10024 ShellHWDetection - ok11:14:02.0976 10024 [ 843caf1e5fde1ffd5ff768f23a51e2e1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys11:14:02.0989 10024 SiSRaid2 - ok11:14:03.0010 10024 [ 6a6c106d42e9ffff8b9fcb4f754f6da4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys11:14:03.0023 10024 SiSRaid4 - ok11:14:03.0184 10024 [ 2a99850c2a6edd6c6602e822c716edaf ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe11:14:03.0271 10024 Skype C2C Service - ok11:14:03.0396 10024 [ 6128e98eaaed364ed1a32708d2fd22cb ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe11:14:03.0409 10024 SkypeUpdate - ok11:14:03.0436 10024 [ 548260a7b8654e024dc30bf8a7c5baa4 ] Smb C:\windows\system32\DRIVERS\smb.sys11:14:03.0525 10024 Smb - ok11:14:03.0581 10024 [ 6313f223e817cc09aa41811daa7f541d ] SNMPTRAP C:\windows\System32\snmptrap.exe11:14:03.0621 10024 SNMPTRAP - ok11:14:03.0656 10024 [ b9e31e5cacdfe584f34f730a677803f9 ] spldr C:\windows\system32\drivers\spldr.sys11:14:03.0669 10024 spldr - ok11:14:03.0718 10024 [ b96c17b5dc1424d56eea3a99e97428cd ] Spooler C:\windows\System32\spoolsv.exe11:14:03.0762 10024 Spooler - ok11:14:03.0875 10024 [ e17e0188bb90fae42d83e98707efa59c ] sppsvc C:\windows\system32\sppsvc.exe11:14:04.0014 10024 sppsvc - ok11:14:04.0038 10024 [ 93d7d61317f3d4bc4f4e9f8a96a7de45 ] sppuinotify C:\windows\system32\sppuinotify.dll11:14:04.0079 10024 sppuinotify - ok11:14:04.0083 10024 sptd - ok11:14:04.0118 10024 [ b2ec3e1deac5f0a764bd3486d213a0af ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe11:14:04.0133 10024 SQLBrowser - ok11:14:04.0203 10024 [ d63fc56c7c3f9b576bc25f617e3f7963 ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe11:14:04.0214 10024 SQLWriter - ok11:14:04.0271 10024 [ 441fba48bff01fdb9d5969ebc1838f0b ] srv C:\windows\system32\DRIVERS\srv.sys11:14:04.0348 10024 srv - ok11:14:04.0376 10024 [ b4adebbf5e3677cce9651e0f01f7cc28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys11:14:04.0418 10024 srv2 - ok11:14:04.0464 10024 [ 27e461f0be5bff5fc737328f749538c3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys11:14:04.0495 10024 srvnet - ok11:14:04.0545 10024 [ 51b52fbd583cde8aa9ba62b8b4298f33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll11:14:04.0612 10024 SSDPSRV - ok11:14:04.0698 10024 [ ab7aebf58dad8daab7a6c45e6a8885cb ] SstpSvc C:\windows\system32\sstpsvc.dll11:14:04.0735 10024 SstpSvc - ok11:14:04.0766 10024 [ f3817967ed533d08327dc73bc4d5542a ] stexstor C:\windows\system32\DRIVERS\stexstor.sys11:14:04.0779 10024 stexstor - ok11:14:04.0853 10024 [ 8dd52e8e6128f4b2da92ce27402871c1 ] stisvc C:\windows\System32\wiaservc.dll11:14:04.0900 10024 stisvc - ok11:14:04.0928 10024 [ d01ec09b6711a5f8e7e6564a4d0fbc90 ] swenum C:\windows\system32\drivers\swenum.sys11:14:04.0939 10024 swenum - ok11:14:04.0988 10024 [ e08e46fdd841b7184194011ca1955a0b ] swprv C:\windows\System32\swprv.dll11:14:05.0055 10024 swprv - ok11:14:05.0098 10024 [ 470c47daba9ca3966f0ab3f835d7d135 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys11:14:05.0118 10024 SynTP - ok11:14:05.0188 10024 [ bf9ccc0bf39b418c8d0ae8b05cf95b7d ] SysMain C:\windows\system32\sysmain.dll11:14:05.0252 10024 SysMain - ok11:14:05.0292 10024 [ e3c61fd7b7c2557e1f1b0b4cec713585 ] TabletInputService C:\windows\System32\TabSvc.dll11:14:05.0311 10024 TabletInputService - ok11:14:05.0384 10024 [ 40f0849f65d13ee87b9a9ae3c1dd6823 ] TapiSrv C:\windows\System32\tapisrv.dll11:14:05.0446 10024 TapiSrv - ok11:14:05.0478 10024 [ 1be03ac720f4d302ea01d40f588162f6 ] TBS C:\windows\System32\tbssvc.dll11:14:05.0520 10024 TBS - ok11:14:05.0589 10024 [ acb82bda8f46c84f465c1afa517dc4b9 ] Tcpip C:\windows\system32\drivers\tcpip.sys11:14:05.0638 10024 Tcpip - ok11:14:05.0700 10024 [ acb82bda8f46c84f465c1afa517dc4b9 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys11:14:05.0741 10024 TCPIP6 - ok11:14:05.0789 10024 [ df687e3d8836bfb04fcc0615bf15a519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys11:14:05.0825 10024 tcpipreg - ok11:14:05.0865 10024 [ fd542b661bd22fa69ca789ad0ac58c29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys11:14:05.0875 10024 tdcmdpst - ok11:14:05.0899 10024 [ 3371d21011695b16333a3934340c4e7c ] TDPIPE C:\windows\system32\drivers\tdpipe.sys11:14:05.0958 10024 TDPIPE - ok11:14:05.0986 10024 [ 51c5eceb1cdee2468a1748be550cfbc8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys11:14:06.0017 10024 TDTCP - ok11:14:06.0069 10024 [ ddad5a7ab24d8b65f8d724f5c20fd806 ] tdx C:\windows\system32\DRIVERS\tdx.sys11:14:06.0128 10024 tdx - ok11:14:06.0255 10024 [ 561e7e1f06895d78de991e01dd0fb6e5 ] TermDD C:\windows\system32\drivers\termdd.sys11:14:06.0268 10024 TermDD - ok11:14:06.0319 10024 [ 2e648163254233755035b46dd7b89123 ] TermService C:\windows\System32\termsrv.dll11:14:06.0405 10024 TermService - ok11:14:06.0437 10024 [ f0344071948d1a1fa732231785a0664c ] Themes C:\windows\system32\themeservice.dll11:14:06.0456 10024 Themes - ok11:14:06.0483 10024 [ e40e80d0304a73e8d269f7141d77250b ] THREADORDER C:\windows\system32\mmcss.dll11:14:06.0520 10024 THREADORDER - ok11:14:06.0656 10024 [ dfe9ba871b9f3dbb591bd113611cbcc0 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe11:14:06.0673 10024 TMachInfo - ok11:14:06.0702 10024 [ ed32035bdfeced1ad66d459fd9cc1140 ] TODDSrv C:\windows\system32\TODDSrv.exe11:14:06.0714 10024 TODDSrv - ok11:14:06.0823 10024 [ ddfb839074fa7980726d24495aeb25e3 ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe11:14:06.0843 10024 TosCoSrv - ok11:14:06.0909 10024 [ 895f6972480306cb2a2a246991e34c68 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe11:14:06.0920 10024 TOSHIBA Bluetooth Service - ok11:14:06.0962 10024 [ 3e6756677e16532d235c6cb20614f369 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe11:14:06.0974 10024 TOSHIBA eco Utility Service - ok11:14:07.0010 10024 [ 74c2fa8c3765ee71a9c22182ec108457 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe11:14:07.0021 10024 TOSHIBA HDD SSD Alert Service - ok11:14:07.0066 10024 [ 8021f63311797085949fa387f7c83583 ] tosporte C:\windows\system32\DRIVERS\tosporte.sys11:14:07.0075 10024 tosporte - ok11:14:07.0117 10024 [ 1b09357180034639e62cf745e77ac66e ] tosrfbd C:\windows\system32\DRIVERS\tosrfbd.sys11:14:07.0130 10024 tosrfbd - ok11:14:07.0158 10024 [ 62512b5277d88600f8bd4b7aec43569d ] tosrfbnp C:\windows\system32\Drivers\tosrfbnp.sys11:14:07.0168 10024 tosrfbnp - ok11:14:07.0202 10024 [ c523a9186c39d65cc9adebb2e1b93ccd ] Tosrfcom C:\windows\system32\Drivers\tosrfcom.sys11:14:07.0212 10024 Tosrfcom - ok11:14:07.0252 10024 [ 11699d47b3491d86249c168496d55c92 ] tosrfec C:\windows\system32\DRIVERS\tosrfec.sys11:14:07.0262 10024 tosrfec - ok11:14:07.0312 10024 [ 451b8c1815c6cc39650af916c2a382cd ] Tosrfhid C:\windows\system32\DRIVERS\Tosrfhid.sys11:14:07.0322 10024 Tosrfhid - ok11:14:07.0345 10024 [ b6fdc3c76ffe9c5171eea9c37ea367c2 ] tosrfnds C:\windows\system32\DRIVERS\tosrfnds.sys11:14:07.0354 10024 tosrfnds - ok11:14:07.0382 10024 [ e1e045240c1184fa6628f3c7e7ff85d8 ] TosRfSnd C:\windows\system32\drivers\tosrfsnd.sys11:14:07.0391 10024 TosRfSnd - ok11:14:07.0429 10024 [ de44a2a2459d0504f146e599f4bd2074 ] Tosrfusb C:\windows\system32\DRIVERS\tosrfusb.sys11:14:07.0438 10024 Tosrfusb - ok11:14:07.0499 10024 [ 97687d094aa597da366e1194b218cc6c ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe11:14:07.0524 10024 TPCHSrv - ok11:14:07.0734 10024 [ 7e7afd841694f6ac397e99d75cead49d ] TrkWks C:\windows\System32\trkwks.dll11:14:07.0795 10024 TrkWks - ok11:14:07.0867 10024 [ 773212b2aaa24c1e31f10246b15b276c ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe11:14:07.0905 10024 TrustedInstaller - ok11:14:07.0951 10024 [ ce18b2cdfc837c99e5fae9ca6cba5d30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys11:14:08.0008 10024 tssecsrv - ok11:14:08.0066 10024 [ d11c783e3ef9a3c52c0ebe83cc5000e9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys11:14:08.0096 10024 TsUsbFlt - ok11:14:08.0149 10024 [ 3566a8daafa27af944f5d705eaa64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys11:14:08.0213 10024 tunnel - ok11:14:08.0249 10024 [ 550b567f9364d8f7684c3fb3ea665a72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS11:14:08.0260 10024 TVALZ - ok11:14:08.0286 10024 [ 9c7191f4b2e49bff47a6c1144b5923fa ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys11:14:08.0297 10024 TVALZFL - ok11:14:08.0333 10024 [ b4dd609bd7e282bfc683cec7eaaaad67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys11:14:08.0347 10024 uagp35 - ok11:14:08.0389 10024 [ ff4232a1a64012baa1fd97c7b67df593 ] udfs C:\windows\system32\DRIVERS\udfs.sys11:14:08.0449 10024 udfs - ok11:14:08.0474 10024 UfasoftSnifDriver4 - ok11:14:08.0497 10024 [ 3cbdec8d06b9968aba702eba076364a1 ] UI0Detect C:\windows\system32\UI0Detect.exe11:14:08.0512 10024 UI0Detect - ok11:14:08.0530 10024 [ 4bfe1bc28391222894cbf1e7d0e42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys11:14:08.0543 10024 uliagpkx - ok11:14:08.0579 10024 [ dc54a574663a895c8763af0fa1ff7561 ] umbus C:\windows\system32\drivers\umbus.sys11:14:08.0618 10024 umbus - ok11:14:08.0657 10024 [ b2e8e8cb557b156da5493bbddcc1474d ] UmPass C:\windows\system32\DRIVERS\umpass.sys11:14:08.0693 10024 UmPass - ok11:14:08.0739 10024 [ 9dc07e73a4abb9acf692113b36a5009f ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys11:14:08.0749 10024 UnlockerDriver5 - ok11:14:08.0784 10024 [ d47ec6a8e81633dd18d2436b19baf6de ] upnphost C:\windows\System32\upnphost.dll11:14:08.0861 10024 upnphost - ok11:14:08.0919 10024 [ 82e8f44688e6fac57b5b7c6fc7adbc2a ] usbaudio C:\windows\system32\drivers\usbaudio.sys11:14:08.0961 10024 usbaudio - ok11:14:09.0003 10024 [ 6f1a3157a1c89435352ceb543cdb359c ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys11:14:09.0056 10024 usbccgp - ok11:14:09.0098 10024 [ af0892a803fdda7492f595368e3b68e7 ] usbcir C:\windows\system32\drivers\usbcir.sys11:14:09.0114 10024 usbcir - ok11:14:09.0130 10024 [ c025055fe7b87701eb042095df1a2d7b ] usbehci C:\windows\system32\DRIVERS\usbehci.sys11:14:09.0160 10024 usbehci - ok11:14:09.0197 10024 [ 287c6c9410b111b68b52ca298f7b8c24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys11:14:09.0235 10024 usbhub - ok11:14:09.0275 10024 [ 9840fc418b4cbd632d3d0a667a725c31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys11:14:09.0314 10024 usbohci - ok11:14:09.0350 10024 [ 73188f58fb384e75c4063d29413cee3d ] usbprint C:\windows\system32\DRIVERS\usbprint.sys11:14:09.0387 10024 usbprint - ok11:14:09.0422 10024 [ fed648b01349a3c8395a5169db5fb7d6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS11:14:09.0452 10024 USBSTOR - ok11:14:09.0486 10024 [ 62069a34518bcf9c1fd9e74b3f6db7cd ] usbuhci C:\windows\system32\drivers\usbuhci.sys11:14:09.0522 10024 usbuhci - ok11:14:09.0589 10024 [ 454800c2bc7f3927ce030141ee4f4c50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys11:14:09.0609 10024 usbvideo - ok11:14:09.0631 10024 [ edbb23cbcf2cdf727d64ff9b51a6070e ] UxSms C:\windows\System32\uxsms.dll11:14:09.0688 10024 UxSms - ok11:14:09.0708 10024 [ c118a82cd78818c29ab228366ebf81c3 ] VaultSvc C:\windows\system32\lsass.exe11:14:09.0732 10024 VaultSvc - ok11:14:09.0787 10024 [ 8acf22b86ce4e85c23e3e9513bf45c37 ] VBoxNetAdp C:\windows\system32\DRIVERS\VBoxNetAdp.sys11:14:09.0801 10024 VBoxNetAdp - ok11:14:09.0816 10024 VBoxNetFlt - ok11:14:09.0829 10024 [ c5c876ccfc083ff3b128f933823e87bd ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys11:14:09.0842 10024 vdrvroot - ok11:14:09.0891 10024 [ 8d6b481601d01a456e75c3210f1830be ] vds C:\windows\System32\vds.exe11:14:09.0950 10024 vds - ok11:14:09.0992 10024 [ da4da3f5e02943c2dc8c6ed875de68dd ] vga C:\windows\system32\DRIVERS\vgapnp.sys11:14:10.0011 10024 vga - ok11:14:10.0026 10024 [ 53e92a310193cb3c03bea963de7d9cfc ] VgaSave C:\windows\System32\drivers\vga.sys11:14:10.0088 10024 VgaSave - ok11:14:10.0122 10024 [ 2ce2df28c83aeaf30084e1b1eb253cbb ] vhdmp C:\windows\system32\drivers\vhdmp.sys11:14:10.0138 10024 vhdmp - ok11:14:10.0179 10024 [ e5689d93ffe4e5d66c0178761240dd54 ] viaide C:\windows\system32\drivers\viaide.sys11:14:10.0191 10024 viaide - ok11:14:10.0209 10024 [ d2aafd421940f640b407aefaaebd91b0 ] volmgr C:\windows\system32\drivers\volmgr.sys11:14:10.0222 10024 volmgr - ok11:14:10.0272 10024 [ a255814907c89be58b79ef2f189b843b ] volmgrx C:\windows\system32\drivers\volmgrx.sys11:14:10.0289 10024 volmgrx - ok11:14:10.0355 10024 [ 0d08d2f3b3ff84e433346669b5e0f639 ] volsnap C:\windows\system32\drivers\volsnap.sys11:14:10.0372 10024 volsnap - ok11:14:10.0408 10024 [ 5e2016ea6ebaca03c04feac5f330d997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys11:14:10.0422 10024 vsmraid - ok11:14:10.0494 10024 [ b60ba0bc31b0cb414593e169f6f21cc2 ] VSS C:\windows\system32\vssvc.exe11:14:10.0579 10024 VSS - ok11:14:10.0612 10024 [ 36d4720b72b5c5d9cb2b9c29e9df67a1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys11:14:10.0648 10024 vwifibus - ok11:14:10.0678 10024 [ 6a3d66263414ff0d6fa754c646612f3f ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys11:14:10.0705 10024 vwififlt - ok11:14:10.0734 10024 [ 6a638fc4bfddc4d9b186c28c91bd1a01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys11:14:10.0757 10024 vwifimp - ok11:14:10.0785 10024 [ 1c9d80cc3849b3788048078c26486e1a ] W32Time C:\windows\system32\w32time.dll11:14:10.0831 10024 W32Time - ok11:14:10.0909 10024 [ b32009db1972e7f2c227499289c4384a ] W3SVC C:\windows\system32\inetsrv\iisw3adm.dll11:14:10.0978 10024 W3SVC - ok11:14:11.0015 10024 [ 4e9440f4f152a7b944cb1663d3935a3e ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys11:14:11.0108 10024 WacomPen - ok11:14:11.0161 10024 [ 356afd78a6ed4457169241ac3965230c ] WANARP C:\windows\system32\DRIVERS\wanarp.sys11:14:11.0228 10024 WANARP - ok11:14:11.0232 10024 [ 356afd78a6ed4457169241ac3965230c ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys11:14:11.0275 10024 Wanarpv6 - ok11:14:11.0331 10024 [ b32009db1972e7f2c227499289c4384a ] WAS C:\windows\system32\inetsrv\iisw3adm.dll11:14:11.0355 10024 WAS - ok11:14:11.0418 10024 [ 3cec96de223e49eaae3651fcf8faea6c ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe11:14:11.0455 10024 WatAdminSvc - ok11:14:11.0560 10024 [ 78f4e7f5c56cb9716238eb57da4b6a75 ] wbengine C:\windows\system32\wbengine.exe11:14:11.0636 10024 wbengine - ok11:14:11.0662 10024 [ 3aa101e8edab2db4131333f4325c76a3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll11:14:11.0682 10024 WbioSrvc - ok11:14:11.0726 10024 [ 7368a2afd46e5a4481d1de9d14848edd ] wcncsvc C:\windows\System32\wcncsvc.dll11:14:11.0749 10024 wcncsvc - ok11:14:11.0764 10024 [ 20f7441334b18cee52027661df4a6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll11:14:11.0803 10024 WcsPlugInService - ok11:14:11.0825 10024 [ 72889e16ff12ba0f235467d6091b17dc ] Wd C:\windows\system32\DRIVERS\wd.sys11:14:11.0837 10024 Wd - ok11:14:11.0889 10024 [ a3d04ebf5227886029b4532f20d026f7 ] WDC_SAM C:\windows\system32\DRIVERS\wdcsam64.sys11:14:11.0912 10024 WDC_SAM - ok11:14:11.0940 10024 [ 441bd2d7b4f98134c3a4f9fa570fd250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys11:14:11.0967 10024 Wdf01000 - ok11:14:11.0979 10024 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiServiceHost C:\windows\system32\wdi.dll11:14:12.0066 10024 WdiServiceHost - ok11:14:12.0079 10024 [ bf1fc3f79b863c914687a737c2f3d681 ] WdiSystemHost C:\windows\system32\wdi.dll11:14:12.0101 10024 WdiSystemHost - ok11:14:12.0140 10024 [ 3db6d04e1c64272f8b14eb8bc4616280 ] WebClient C:\windows\System32\webclnt.dll11:14:12.0179 10024 WebClient - ok11:14:12.0214 10024 [ c749025a679c5103e575e3b48e092c43 ] Wecsvc C:\windows\system32\wecsvc.dll11:14:12.0283 10024 Wecsvc - ok11:14:12.0306 10024 [ 7e591867422dc788b9e5bd337a669a08 ] wercplsupport C:\windows\System32\wercplsupport.dll11:14:12.0369 10024 wercplsupport - ok11:14:12.0407 10024 [ 6d137963730144698cbd10f202e9f251 ] WerSvc C:\windows\System32\WerSvc.dll11:14:12.0445 10024 WerSvc - ok11:14:12.0466 10024 [ 611b23304bf067451a9fdee01fbdd725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys11:14:12.0501 10024 WfpLwf - ok11:14:12.0520 10024 [ 05ecaec3e4529a7153b3136ceb49f0ec ] WIMMount C:\windows\system32\drivers\wimmount.sys11:14:12.0532 10024 WIMMount - ok11:14:12.0551 10024 WinDefend - ok11:14:12.0557 10024 WinHttpAutoProxySvc - ok11:14:12.0610 10024 [ 19b07e7e8915d701225da41cb3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll11:14:12.0670 10024 Winmgmt - ok11:14:12.0758 10024 [ bcb1310604aa415c4508708975b3931e ] WinRM C:\windows\system32\WsmSvc.dll11:14:12.0890 10024 WinRM - ok11:14:12.0942 10024 [ fe88b288356e7b47b74b13372add906d ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys11:14:12.0970 10024 WinUsb - ok11:14:13.0017 10024 [ 4fada86e62f18a1b2f42ba18ae24e6aa ] Wlansvc C:\windows\System32\wlansvc.dll11:14:13.0091 10024 Wlansvc - ok11:14:13.0203 10024 [ 98f138897ef4246381d197cb81846d62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE11:14:13.0255 10024 wlidsvc - ok11:14:13.0288 10024 [ f6ff8944478594d0e414d3f048f0d778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys11:14:13.0331 10024 WmiAcpi - ok11:14:13.0363 10024 [ 38b84c94c5a8af291adfea478ae54f93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe11:14:13.0411 10024 wmiApSrv - ok11:14:13.0449 10024 WMPNetworkSvc - ok11:14:13.0475 10024 [ 96c6e7100d724c69fcf9e7bf590d1dca ] WPCSvc C:\windows\System32\wpcsvc.dll11:14:13.0498 10024 WPCSvc - ok11:14:13.0556 10024 [ 93221146d4ebbf314c29b23cd6cc391d ] WPDBusEnum C:\windows\system32\wpdbusenum.dll11:14:13.0609 10024 WPDBusEnum - ok11:14:13.0630 10024 [ 6bcc1d7d2fd2453957c5479a32364e52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys11:14:13.0687 10024 ws2ifsl - ok11:14:13.0723 10024 [ e8b1fe6669397d1772d8196df0e57a9e ] wscsvc C:\windows\System32\wscsvc.dll11:14:13.0763 10024 wscsvc - ok11:14:13.0767 10024 WSearch - ok11:14:13.0857 10024 [ d9ef901dca379cfe914e9fa13b73b4c4 ] wuauserv C:\windows\system32\wuaueng.dll11:14:13.0940 10024 wuauserv - ok11:14:13.0960 10024 [ d3381dc54c34d79b22cee0d65ba91b7c ] WudfPf C:\windows\system32\drivers\WudfPf.sys11:14:14.0014 10024 WudfPf - ok11:14:14.0089 10024 [ cf8d590be3373029d57af80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys11:14:14.0142 10024 WUDFRd - ok11:14:14.0177 10024 [ 7a95c95b6c4cf292d689106bcae49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll11:14:14.0214 10024 wudfsvc - ok11:14:14.0244 10024 [ 9a3452b3c2a46c073166c5cf49fad1ae ] WwanSvc C:\windows\System32\wwansvc.dll11:14:14.0283 10024 WwanSvc - ok11:14:14.0354 10024 [ 2ee48cfce7ca8e0db4c44c7476c0943b ] xusb21 C:\windows\system32\DRIVERS\xusb21.sys11:14:14.0405 10024 xusb21 - ok11:14:14.0446 10024 ================ Scan global ===============================11:14:14.0477 10024 (ba0cd8c393e8c9f83354106093832c7b) C:\windows\system32\basesrv.dll11:14:14.0519 10024 (eb6a48cc998e1090e44e8e7f1009a640) C:\windows\system32\winsrv.dll11:14:14.0529 10024 (eb6a48cc998e1090e44e8e7f1009a640) C:\windows\system32\winsrv.dll11:14:14.0559 10024 (d6160f9d869ba3af0b787f971db56368) C:\windows\system32\sxssrv.dll11:14:14.0599 10024 (24acb7e5be595468e3b9aa488b9b4fcb) C:\windows\system32\services.exe11:14:14.0605 10024 [Global] - ok11:14:14.0605 10024 ================ Scan MBR ==================================11:14:14.0621 10024 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR011:14:15.0654 10024 \Device\Harddisk0\DR0 - ok11:14:15.0657 10024 ================ Scan VBR ==================================11:14:15.0691 10024 Boot (0x1200) (f0ecb079b46050d7ae2a4917be5cf031) \Device\Harddisk0\DR0\Partition111:14:15.0692 10024 \Device\Harddisk0\DR0\Partition1 - ok11:14:15.0693 10024 ============================================================11:14:15.0693 10024 Scan finished11:14:15.0693 10024 ============================================================11:14:15.0706 2532 Detected object count: 411:14:15.0707 2532 Actual detected object count: 411:15:26.0567 2532 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user11:15:26.0567 2532 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 11:15:26.0569 2532 Apache2.2 ( UnsignedFile.Multi.Generic ) - skipped by user11:15:26.0569 2532 Apache2.2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 11:15:26.0571 2532 ATITool ( UnsignedFile.Multi.Generic ) - skipped by user11:15:26.0571 2532 ATITool ( UnsignedFile.Multi.Generic ) - User select action: Skip 11:15:26.0577 2532 JoinMEUI Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user11:15:26.0577 2532 JoinMEUI Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip Thanks a lot again for helping me out mate Link to post Share on other sites More sharing options...
MrCharlie Posted August 19, 2012 ID:587472 Share Posted August 19, 2012 That scan was clean.........Please download and run ComboFix.The most important things to remember when running it is to disable all your malware programs and run Combofix from your desktop.Please visit this webpage for download links, and instructions for running ComboFixhttp://www.bleepingc...to-use-combofixEnsure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix.Information on disabling your malware programs can be found Here.Make sure you run ComboFix from your desktop. Give it at least 30-45 minutes to finish if needed.Please include the C:\ComboFix.txt in your next reply for further review.---------->NOTE<----------If you get the message Illegal operation attempted on registry key that has been marked for deletion after you run ComboFix....please reboot the computer, this should resolve the problem. You may have to do this several times if needed.MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 20, 2012 Author ID:587490 Share Posted August 20, 2012 The scan took nearly an hour, can't be good eh? Here's the log:ComboFix.txt Link to post Share on other sites More sharing options...
MrCharlie Posted August 20, 2012 ID:587492 Share Posted August 20, 2012 The scan took nearly an hour, can't be good eh?No it can take that long.~~~~~~~~~~~~Please Update and run a Quick Scan with MBAM, post the report.Make sure that everything is checked, and click Remove Selected.Please let me know how computer is running now, MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 20, 2012 Author ID:587496 Share Posted August 20, 2012 Malwarebytes Anti-Malware (Trial) 1.62.0.1300www.malwarebytes.orgDatabase version: v2012.08.19.07Windows 7 Service Pack 1 x64 NTFSInternet Explorer 9.0.8112.16421Rob Austen :: ROBAUSTEN-PC [administrator]Protection: Enabled8/20/2012 1:01:42 PMmbam-log-2012-08-20 (13-01-42).txtScan type: Quick scanScan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUMScan options disabled: P2PObjects scanned: 197629Time elapsed: 3 minute(s), 2 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 0(No malicious items detected)Registry Values Detected: 0(No malicious items detected)Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 0(No malicious items detected)Files Detected: 0(No malicious items detected)(end)Browser is still screwing up images on webpages, eg:http://www.trademe.c...n-501099416.htm see attatched picture, spot the difference Link to post Share on other sites More sharing options...
MrCharlie Posted August 20, 2012 ID:587497 Share Posted August 20, 2012 Chrome...you have to check that yourself:First please make sure you have the latest version of Chrome:Click the wrench in the upper right hand cornerClick on "About Google Chrome"If an update is available it will be downloaded and installedNext:Carefully check for any odd extensions or plugins:Type the following into the address box and hit Enter:chrome:pluginsDo the same for:chrome:extensionsNext:Go to Settings > Show advanced settings........ (at the bottom)Put a check next to all of these:Clear browsing historyClear download historyEmpty the cacheClick "Clear Browsing Data"Next:Look through the rest of Tools, Settings and View Backround Pages and make sure there's nothing suspicious.---------------------------Then look at this link (it's for a different infection but the way to change Chromes settings is the same)http://deletemalware...tall-guide.htmlLet me know, MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 20, 2012 Author ID:587513 Share Posted August 20, 2012 Ok it seems to be running better, images on page are fine now. However, there is a miscellaneous plugin running which i can't do anything about, see attached picture Link to post Share on other sites More sharing options...
MrCharlie Posted August 20, 2012 ID:587515 Share Posted August 20, 2012 Can you get me the name of that? MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 20, 2012 Author ID:587519 Share Posted August 20, 2012 I'm not able to find a name for it, as i can't seem to find it anywhere else. Also having big difficulties with viewing 'Computer' folder with windows explorer- it doesn't seem to load, this was a problem i had a few days ago but it corrected itself (or so i thought) Link to post Share on other sites More sharing options...
rob_roy Posted August 20, 2012 Author ID:587520 Share Posted August 20, 2012 CPU is getting max'd out by dllhost... Link to post Share on other sites More sharing options...
MrCharlie Posted August 20, 2012 ID:587574 Share Posted August 20, 2012 Please run a free online scan with the ESET Online ScannerNote: You will need to use Internet Explorer for this scan.http://www.eset.eu/online-scannerTick the box next to YES, I accept the Terms of Use.Click StartWhen asked, allow the ActiveX control to installClick StartMake sure that the options Remove found threats and the option Scan unwanted applications is checkedClick Advanced settings and select the following:Scan potentially unwanted applicationsScan for potentially unsafe applicationsEnable Anti-Stealth technologyClick StartWait for the scan to finishUse Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txtCopy and paste that log as a reply to this topicMrC Link to post Share on other sites More sharing options...
rob_roy Posted August 21, 2012 Author ID:588355 Share Posted August 21, 2012 Hey mate sorry that took a while, workin away on trying to start a biz (although i can't do much with this pc that's just screwed my workmate's 64gb flash drive! ) Anyway, here's that log file... doesn't seem to be showing anything though.log.txt Link to post Share on other sites More sharing options...
MrCharlie Posted August 21, 2012 ID:588365 Share Posted August 21, 2012 Do you remember if it found anything?? MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 21, 2012 Author ID:588379 Share Posted August 21, 2012 no, it didn't find anything... is there any chance you may be willing to do a remote connection cleaning? Link to post Share on other sites More sharing options...
MrCharlie Posted August 21, 2012 ID:588388 Share Posted August 21, 2012 There's no malware to clean.It has to be related to a program that is running.I suggest you disable one at a time and see which one makes a difference.MrC Link to post Share on other sites More sharing options...
rob_roy Posted August 22, 2012 Author ID:588423 Share Posted August 22, 2012 Ok i will do that... Did the 'dllhost.exe' issue I posted give you any ideas? I've looked into it and it is located at C:\Windows\SysWOW64, and is 7kb... Link to post Share on other sites More sharing options...
MrCharlie Posted August 22, 2012 ID:588433 Share Posted August 22, 2012 You can upload it here for a check:http://www.virustotal.com/The scanners we ran already would have picked up any malware by now.Let me know Link to post Share on other sites More sharing options...
rob_roy Posted August 22, 2012 Author ID:588494 Share Posted August 22, 2012 no luck mate, do you know of any software that can strip my pc back to original OS? Unfortunately my pc didn't come with a W7 install disc Link to post Share on other sites More sharing options...
MrCharlie Posted August 22, 2012 ID:588572 Share Posted August 22, 2012 Please download OTL from one of the links below:http://oldtimer.geekstogo.com/OTL.exehttp://www.itxassoci...T-Tools/OTL.exehttp://oldtimer.geekstogo.com/OTL.com (<---renamed version)Save it to your desktop.Double click on the icon on your desktop.Click the Scan All Users checkbox.Push the Quick Scan button.The scan will take about 10 minutes...depends on your hard drive size.Two reports will open, copy and paste them in a reply here: (or attach them as .txt files)OTL.txt <-- Will be openedExtra.txt <-- Will be minimizedMrC Link to post Share on other sites More sharing options...
Recommended Posts