Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Advanced form of windows alert virus combo fix nothing works?


  • Please log in to reply
13 replies to this topic

#1 helpplease1

helpplease1

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 16 June 2012 - 01:21 PM

Hello,
Last time I had a virus I used combo fix to remove a virus. (was simple and removed it)

long way down the track I have got this virus,


Windows can check online for a solution to the problem the next time you go online

check your computer security
there are mulitplie security problems with your computer
click this notification to fix these problems.

I think I have some sort of advanced form of this virus

Because combo fix , removes the red shield for a second then it re appears. It has even some how reset my machine I assume its fighting combo fix and seems to be winning.

I have tried malware bytes done full update first then done full system scan found two trojans
so I removed them ( when selected to remove) Malwarebytes came up with message must restart your computer.
Is this a common thing with malwarebytes as havn't used it before? I'm wondering weather this virus rebooted my computer after malwarebytes aswell.

So the computer rebooted after malware bytes and yes the red shield and message came up again,

Done another full system scan and now no viruses are showing at all in malwarebytes search but the red shield virus is still there by the way when i hover my mouse over the red shield it says Windows Security Alerts.

So I tried Rkill,
Its even beating road kill which rkill doesn't kill the process using rkill it does seem to do something this message comes up
iexplore.exe has stopped working

I believe I have got some form of advanced version of this windows security alert virus.

Please help its my work computer. I am using windows Vista aswell,

thankyou

Edited by helpplease1, 16 June 2012 - 01:34 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 AM

Posted 16 June 2012 - 01:59 PM

Boot the PC into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 16 June 2012 - 02:18 PM

Boot the PC into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply



Hello thankyou for your quick reply i am goin to do your steps right now thankyou

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 AM

Posted 16 June 2012 - 02:19 PM

:thumbup2:

#5 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 16 June 2012 - 02:49 PM

Sorry going so slow here is the tds killer report shown no errors

05:41:59.0905 1700 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
05:42:01.0917 1700 ============================================================
05:42:01.0917 1700 Current date / time: 2012/06/17 05:42:01.0917
05:42:01.0917 1700 SystemInfo:
05:42:01.0917 1700
05:42:01.0917 1700 OS Version: 6.0.6002 ServicePack: 2.0
05:42:01.0917 1700 Product type: Workstation
05:42:01.0917 1700 ComputerName: MARK-PC
05:42:01.0917 1700 UserName: mark
05:42:01.0917 1700 Windows directory: C:\Windows
05:42:01.0917 1700 System windows directory: C:\Windows
05:42:01.0917 1700 Processor architecture: Intel x86
05:42:01.0917 1700 Number of processors: 1
05:42:01.0917 1700 Page size: 0x1000
05:42:01.0917 1700 Boot type: Safe boot with network
05:42:01.0917 1700 ============================================================
05:42:02.0307 1700 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
05:42:02.0307 1700 ============================================================
05:42:02.0307 1700 \Device\Harddisk0\DR0:
05:42:02.0307 1700 MBR partitions:
05:42:02.0307 1700 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x11423000
05:42:02.0307 1700 ============================================================
05:42:02.0370 1700 C: <-> \Device\Harddisk0\DR0\Partition0
05:42:02.0370 1700 ============================================================
05:42:02.0370 1700 Initialize success
05:42:02.0370 1700 ============================================================
05:42:16.0285 1956 ============================================================
05:42:16.0285 1956 Scan started
05:42:16.0285 1956 Mode: Manual; TDLFS;
05:42:16.0285 1956 ============================================================
05:42:17.0440 1956 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
05:42:17.0455 1956 ACPI - ok
05:42:17.0736 1956 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
05:42:17.0736 1956 adp94xx - ok
05:42:17.0861 1956 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
05:42:17.0861 1956 adpahci - ok
05:42:17.0908 1956 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
05:42:17.0908 1956 adpu160m - ok
05:42:17.0986 1956 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
05:42:17.0986 1956 adpu320 - ok
05:42:18.0048 1956 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
05:42:18.0048 1956 AeLookupSvc - ok
05:42:18.0126 1956 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
05:42:18.0126 1956 AFD - ok
05:42:18.0251 1956 AgereSoftModem (5d97943c128ed756d1b0a08302c1b1f8) C:\Windows\system32\DRIVERS\AGRSM.sys
05:42:18.0266 1956 AgereSoftModem - ok
05:42:18.0329 1956 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
05:42:18.0329 1956 agp440 - ok
05:42:18.0360 1956 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
05:42:18.0360 1956 aic78xx - ok
05:42:18.0422 1956 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
05:42:18.0422 1956 ALG - ok
05:42:18.0454 1956 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
05:42:18.0454 1956 aliide - ok
05:42:18.0485 1956 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
05:42:18.0485 1956 amdagp - ok
05:42:18.0516 1956 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
05:42:18.0516 1956 amdide - ok
05:42:18.0594 1956 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
05:42:18.0594 1956 AmdK7 - ok
05:42:18.0610 1956 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
05:42:18.0610 1956 AmdK8 - ok
05:42:18.0734 1956 AntiVirSchedulerService (9015bc03f62940527ec92d45ee89e46f) C:\Program Files\Avira\AntiVir Desktop\sched.exe
05:42:18.0734 1956 AntiVirSchedulerService - ok
05:42:18.0766 1956 AntiVirService (b8720a787c1223492e6f319465e996ce) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
05:42:18.0781 1956 AntiVirService - ok
05:42:18.0828 1956 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
05:42:18.0828 1956 Appinfo - ok
05:42:18.0906 1956 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
05:42:18.0906 1956 arc - ok
05:42:18.0968 1956 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
05:42:18.0968 1956 arcsas - ok
05:42:19.0124 1956 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
05:42:19.0124 1956 aspnet_state - ok
05:42:19.0171 1956 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
05:42:19.0171 1956 AsyncMac - ok
05:42:19.0202 1956 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
05:42:19.0202 1956 atapi - ok
05:42:19.0280 1956 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
05:42:19.0280 1956 AudioEndpointBuilder - ok
05:42:19.0296 1956 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
05:42:19.0296 1956 Audiosrv - ok
05:42:19.0327 1956 avgio (6a646c46b9415e13095aa9b352040a7a) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
05:42:19.0327 1956 avgio - ok
05:42:19.0358 1956 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
05:42:19.0358 1956 avgntflt - ok
05:42:19.0374 1956 avipbb (452e382340bb0c5e694ed9d3625356d0) C:\Windows\system32\DRIVERS\avipbb.sys
05:42:19.0374 1956 avipbb - ok
05:42:19.0436 1956 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
05:42:19.0436 1956 Beep - ok
05:42:19.0499 1956 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
05:42:19.0499 1956 BFE - ok
05:42:19.0592 1956 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
05:42:19.0670 1956 BITS - ok
05:42:19.0733 1956 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
05:42:19.0733 1956 blbdrive - ok
05:42:19.0764 1956 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
05:42:19.0764 1956 bowser - ok
05:42:19.0795 1956 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
05:42:19.0795 1956 BrFiltLo - ok
05:42:19.0826 1956 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
05:42:19.0826 1956 BrFiltUp - ok
05:42:19.0842 1956 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
05:42:19.0842 1956 Browser - ok
05:42:19.0873 1956 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
05:42:19.0889 1956 Brserid - ok
05:42:19.0904 1956 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
05:42:19.0904 1956 BrSerWdm - ok
05:42:19.0951 1956 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
05:42:19.0951 1956 BrUsbMdm - ok
05:42:19.0967 1956 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
05:42:19.0967 1956 BrUsbSer - ok
05:42:20.0014 1956 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
05:42:20.0014 1956 BTHMODEM - ok
05:42:20.0092 1956 catchme - ok
05:42:20.0138 1956 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
05:42:20.0138 1956 cdfs - ok
05:42:20.0201 1956 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
05:42:20.0201 1956 cdrom - ok
05:42:20.0279 1956 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
05:42:20.0279 1956 CertPropSvc - ok
05:42:20.0341 1956 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
05:42:20.0341 1956 circlass - ok
05:42:20.0388 1956 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
05:42:20.0388 1956 CLFS - ok
05:42:20.0482 1956 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
05:42:20.0482 1956 clr_optimization_v2.0.50727_32 - ok
05:42:20.0622 1956 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:42:20.0669 1956 clr_optimization_v4.0.30319_32 - ok
05:42:20.0731 1956 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
05:42:20.0731 1956 CmBatt - ok
05:42:20.0778 1956 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
05:42:20.0778 1956 cmdide - ok
05:42:20.0809 1956 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
05:42:20.0809 1956 Compbatt - ok
05:42:20.0825 1956 COMSysApp - ok
05:42:20.0918 1956 ConfigFree Service (d10d01b2dfcd8d2f32a32ed29e8da1c2) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
05:42:20.0918 1956 ConfigFree Service - ok
05:42:20.0981 1956 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
05:42:20.0981 1956 crcdisk - ok
05:42:21.0012 1956 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
05:42:21.0012 1956 Crusoe - ok
05:42:21.0106 1956 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
05:42:21.0106 1956 CryptSvc - ok
05:42:21.0168 1956 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
05:42:21.0184 1956 DcomLaunch - ok
05:42:21.0246 1956 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
05:42:21.0246 1956 DfsC - ok
05:42:21.0464 1956 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
05:42:21.0542 1956 DFSR - ok
05:42:21.0683 1956 dgderdrv (3be1651c63954067940e7f473498ad70) C:\Windows\system32\drivers\dgderdrv.sys
05:42:21.0683 1956 dgderdrv - ok
05:42:21.0698 1956 dgdersvc (10b8f89d146d0e20b1284d47bb4ec6c9) C:\Windows\system32\dgdersvc.exe
05:42:21.0698 1956 dgdersvc - ok
05:42:21.0792 1956 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
05:42:21.0792 1956 Dhcp - ok
05:42:21.0854 1956 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
05:42:21.0854 1956 disk - ok
05:42:21.0917 1956 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
05:42:21.0917 1956 Dnscache - ok
05:42:21.0964 1956 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
05:42:21.0964 1956 dot3svc - ok
05:42:22.0010 1956 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
05:42:22.0010 1956 DPS - ok
05:42:22.0057 1956 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
05:42:22.0057 1956 drmkaud - ok
05:42:22.0135 1956 DXGKrnl (fb85f7f69e9b109820409243f578cc4d) C:\Windows\System32\drivers\dxgkrnl.sys
05:42:22.0135 1956 DXGKrnl - ok
05:42:22.0198 1956 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
05:42:22.0198 1956 E1G60 - ok
05:42:22.0244 1956 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
05:42:22.0260 1956 EapHost - ok
05:42:22.0322 1956 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
05:42:22.0322 1956 Ecache - ok
05:42:22.0416 1956 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
05:42:22.0416 1956 elxstor - ok
05:42:22.0478 1956 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
05:42:22.0494 1956 EMDMgmt - ok
05:42:22.0525 1956 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
05:42:22.0525 1956 ErrDev - ok
05:42:22.0572 1956 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
05:42:22.0572 1956 EventSystem - ok
05:42:22.0650 1956 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
05:42:22.0650 1956 exfat - ok
05:42:22.0697 1956 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
05:42:22.0697 1956 fastfat - ok
05:42:22.0775 1956 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
05:42:22.0775 1956 fdc - ok
05:42:22.0822 1956 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
05:42:22.0822 1956 fdPHost - ok
05:42:22.0837 1956 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
05:42:22.0837 1956 FDResPub - ok
05:42:22.0868 1956 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
05:42:22.0868 1956 FileInfo - ok
05:42:22.0915 1956 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
05:42:22.0915 1956 Filetrace - ok
05:42:23.0040 1956 FLEXnet Licensing Service (d94b4eec9205656ba26c9a2376758893) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
05:42:23.0040 1956 FLEXnet Licensing Service - ok
05:42:23.0087 1956 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
05:42:23.0087 1956 flpydisk - ok
05:42:23.0134 1956 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
05:42:23.0134 1956 FltMgr - ok
05:42:23.0212 1956 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
05:42:23.0212 1956 FontCache3.0.0.0 - ok
05:42:23.0274 1956 FsUsbExDisk (b07663a810e861eebfd0eac7e82ca62d) C:\Windows\system32\FsUsbExDisk.SYS
05:42:23.0274 1956 FsUsbExDisk - ok
05:42:23.0305 1956 FsUsbExService (f96c429788350db4ba6771c3034dfd88) C:\Windows\system32\FsUsbExService.Exe
05:42:23.0321 1956 FsUsbExService - ok
05:42:23.0352 1956 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
05:42:23.0352 1956 Fs_Rec - ok
05:42:23.0383 1956 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
05:42:23.0383 1956 FwLnk - ok
05:42:23.0414 1956 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
05:42:23.0414 1956 gagp30kx - ok
05:42:23.0555 1956 GameConsoleService (9dcf7dfe5fdbb0a47f8ee01fe13c2876) C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
05:42:23.0555 1956 GameConsoleService - ok
05:42:23.0633 1956 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
05:42:23.0633 1956 gpsvc - ok
05:42:23.0742 1956 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
05:42:23.0742 1956 gupdate - ok
05:42:23.0773 1956 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
05:42:23.0773 1956 gupdatem - ok
05:42:23.0851 1956 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
05:42:23.0851 1956 gusvc - ok
05:42:23.0914 1956 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
05:42:23.0914 1956 HdAudAddService - ok
05:42:23.0992 1956 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
05:42:23.0992 1956 HDAudBus - ok
05:42:24.0023 1956 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
05:42:24.0023 1956 HidBth - ok
05:42:24.0085 1956 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
05:42:24.0085 1956 HidIr - ok
05:42:24.0132 1956 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
05:42:24.0132 1956 hidserv - ok
05:42:24.0163 1956 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
05:42:24.0163 1956 HidUsb - ok
05:42:24.0194 1956 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
05:42:24.0194 1956 hkmsvc - ok
05:42:24.0241 1956 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
05:42:24.0241 1956 HpCISSs - ok
05:42:24.0335 1956 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
05:42:24.0350 1956 HTTP - ok
05:42:24.0397 1956 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
05:42:24.0397 1956 i2omp - ok
05:42:24.0460 1956 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
05:42:24.0460 1956 i8042prt - ok
05:42:24.0584 1956 IAANTMON (cb686f44bf955ea02520710a56874fa4) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
05:42:24.0584 1956 IAANTMON - ok
05:42:24.0647 1956 iaStor (db0cc620b27a928d968c1a1e9cd9cb87) C:\Windows\system32\DRIVERS\iaStor.sys
05:42:24.0647 1956 iaStor - ok
05:42:24.0709 1956 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
05:42:24.0709 1956 iaStorV - ok
05:42:24.0803 1956 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
05:42:24.0818 1956 IDriverT - ok
05:42:24.0928 1956 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
05:42:24.0943 1956 idsvc - ok
05:42:25.0068 1956 igfx (6fb1858d1f0923d122b0331865695041) C:\Windows\system32\DRIVERS\igdkmd32.sys
05:42:25.0084 1956 igfx - ok
05:42:25.0240 1956 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
05:42:25.0240 1956 iirsp - ok
05:42:25.0286 1956 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
05:42:25.0286 1956 IKEEXT - ok
05:42:25.0458 1956 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
05:42:25.0474 1956 IntcAzAudAddService - ok
05:42:25.0645 1956 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
05:42:25.0645 1956 intelide - ok
05:42:25.0676 1956 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
05:42:25.0676 1956 intelppm - ok
05:42:25.0723 1956 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
05:42:25.0723 1956 IPBusEnum - ok
05:42:25.0770 1956 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
05:42:25.0770 1956 IpFilterDriver - ok
05:42:25.0864 1956 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
05:42:25.0864 1956 iphlpsvc - ok
05:42:25.0879 1956 IpInIp - ok
05:42:25.0926 1956 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
05:42:25.0926 1956 IPMIDRV - ok
05:42:25.0957 1956 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
05:42:25.0957 1956 IPNAT - ok
05:42:25.0973 1956 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
05:42:25.0973 1956 IRENUM - ok
05:42:26.0004 1956 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
05:42:26.0004 1956 isapnp - ok
05:42:26.0051 1956 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
05:42:26.0051 1956 iScsiPrt - ok
05:42:26.0082 1956 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
05:42:26.0082 1956 iteatapi - ok
05:42:26.0129 1956 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
05:42:26.0129 1956 iteraid - ok
05:42:26.0160 1956 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
05:42:26.0160 1956 kbdclass - ok
05:42:26.0222 1956 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
05:42:26.0222 1956 kbdhid - ok
05:42:26.0285 1956 KeyIso (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
05:42:26.0285 1956 KeyIso - ok
05:42:26.0332 1956 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
05:42:26.0332 1956 KR10I - ok
05:42:26.0363 1956 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
05:42:26.0363 1956 KR10N - ok
05:42:26.0425 1956 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
05:42:26.0425 1956 KSecDD - ok
05:42:26.0503 1956 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
05:42:26.0519 1956 KtmRm - ok
05:42:26.0550 1956 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
05:42:26.0566 1956 LanmanServer - ok
05:42:26.0628 1956 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
05:42:26.0644 1956 LanmanWorkstation - ok
05:42:26.0675 1956 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
05:42:26.0675 1956 lltdio - ok
05:42:26.0706 1956 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
05:42:26.0722 1956 lltdsvc - ok
05:42:26.0737 1956 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
05:42:26.0737 1956 lmhosts - ok
05:42:26.0768 1956 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
05:42:26.0768 1956 LSI_FC - ok
05:42:26.0800 1956 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
05:42:26.0800 1956 LSI_SAS - ok
05:42:26.0831 1956 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
05:42:26.0831 1956 LSI_SCSI - ok
05:42:26.0940 1956 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
05:42:26.0940 1956 luafv - ok
05:42:27.0034 1956 Macromedia Licensing Service (a8382713f5870e4af1de4e8f7af9d882) C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
05:42:27.0034 1956 Macromedia Licensing Service - ok
05:42:27.0127 1956 MDM (7da176a1664276c326a980673887ba89) C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
05:42:27.0127 1956 MDM - ok
05:42:27.0190 1956 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
05:42:27.0190 1956 megasas - ok
05:42:27.0236 1956 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
05:42:27.0236 1956 MegaSR - ok
05:42:27.0283 1956 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
05:42:27.0283 1956 MMCSS - ok
05:42:27.0330 1956 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
05:42:27.0330 1956 Modem - ok
05:42:27.0377 1956 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
05:42:27.0377 1956 monitor - ok
05:42:27.0392 1956 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
05:42:27.0392 1956 mouclass - ok
05:42:27.0424 1956 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
05:42:27.0424 1956 mouhid - ok
05:42:27.0455 1956 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
05:42:27.0455 1956 MountMgr - ok
05:42:27.0486 1956 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
05:42:27.0502 1956 mpio - ok
05:42:27.0533 1956 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
05:42:27.0533 1956 mpsdrv - ok
05:42:27.0580 1956 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
05:42:27.0580 1956 MpsSvc - ok
05:42:27.0642 1956 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
05:42:27.0642 1956 Mraid35x - ok
05:42:27.0689 1956 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
05:42:27.0689 1956 MRxDAV - ok
05:42:27.0736 1956 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
05:42:27.0736 1956 mrxsmb - ok
05:42:27.0782 1956 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
05:42:27.0782 1956 mrxsmb10 - ok
05:42:27.0798 1956 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
05:42:27.0798 1956 mrxsmb20 - ok
05:42:27.0860 1956 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
05:42:27.0860 1956 msahci - ok
05:42:27.0892 1956 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
05:42:27.0892 1956 msdsm - ok
05:42:27.0938 1956 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
05:42:27.0938 1956 MSDTC - ok
05:42:28.0001 1956 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
05:42:28.0001 1956 Msfs - ok
05:42:28.0048 1956 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
05:42:28.0048 1956 msisadrv - ok
05:42:28.0079 1956 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
05:42:28.0079 1956 MSiSCSI - ok
05:42:28.0094 1956 msiserver - ok
05:42:28.0126 1956 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
05:42:28.0126 1956 MSKSSRV - ok
05:42:28.0172 1956 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
05:42:28.0172 1956 MSPCLOCK - ok
05:42:28.0219 1956 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
05:42:28.0219 1956 MSPQM - ok
05:42:28.0266 1956 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
05:42:28.0266 1956 MsRPC - ok
05:42:28.0328 1956 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
05:42:28.0328 1956 mssmbios - ok
05:42:28.0375 1956 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
05:42:28.0375 1956 MSTEE - ok
05:42:28.0422 1956 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
05:42:28.0422 1956 Mup - ok
05:42:28.0469 1956 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
05:42:28.0484 1956 napagent - ok
05:42:28.0531 1956 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
05:42:28.0531 1956 NativeWifiP - ok
05:42:28.0625 1956 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
05:42:28.0625 1956 NDIS - ok
05:42:28.0672 1956 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
05:42:28.0672 1956 NdisTapi - ok
05:42:28.0687 1956 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
05:42:28.0687 1956 Ndisuio - ok
05:42:28.0734 1956 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
05:42:28.0734 1956 NdisWan - ok
05:42:28.0781 1956 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
05:42:28.0781 1956 NDProxy - ok
05:42:28.0812 1956 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
05:42:28.0812 1956 NetBIOS - ok
05:42:28.0859 1956 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
05:42:28.0859 1956 netbt - ok
05:42:28.0906 1956 Netlogon (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
05:42:28.0906 1956 Netlogon - ok
05:42:28.0937 1956 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
05:42:28.0952 1956 Netman - ok
05:42:29.0077 1956 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
05:42:29.0093 1956 NetMsmqActivator - ok
05:42:29.0093 1956 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
05:42:29.0093 1956 NetPipeActivator - ok
05:42:29.0155 1956 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
05:42:29.0155 1956 netprofm - ok
05:42:29.0155 1956 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
05:42:29.0155 1956 NetTcpActivator - ok
05:42:29.0171 1956 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
05:42:29.0171 1956 NetTcpPortSharing - ok
05:42:29.0218 1956 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
05:42:29.0218 1956 nfrd960 - ok
05:42:29.0249 1956 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
05:42:29.0249 1956 NlaSvc - ok
05:42:29.0311 1956 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
05:42:29.0311 1956 Npfs - ok
05:42:29.0358 1956 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
05:42:29.0358 1956 nsi - ok
05:42:29.0389 1956 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
05:42:29.0389 1956 nsiproxy - ok
05:42:29.0467 1956 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
05:42:29.0467 1956 Ntfs - ok
05:42:29.0530 1956 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
05:42:29.0530 1956 ntrigdigi - ok
05:42:29.0545 1956 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
05:42:29.0545 1956 Null - ok
05:42:29.0576 1956 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
05:42:29.0576 1956 nvraid - ok
05:42:29.0608 1956 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
05:42:29.0608 1956 nvstor - ok
05:42:29.0654 1956 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
05:42:29.0654 1956 nv_agp - ok
05:42:29.0654 1956 NwlnkFlt - ok
05:42:29.0670 1956 NwlnkFwd - ok
05:42:29.0701 1956 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
05:42:29.0701 1956 ohci1394 - ok
05:42:29.0764 1956 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
05:42:29.0779 1956 p2pimsvc - ok
05:42:29.0795 1956 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
05:42:29.0795 1956 p2psvc - ok
05:42:29.0857 1956 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
05:42:29.0857 1956 Parport - ok
05:42:29.0904 1956 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
05:42:29.0904 1956 partmgr - ok
05:42:29.0920 1956 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
05:42:29.0920 1956 Parvdm - ok
05:42:29.0951 1956 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
05:42:29.0951 1956 PcaSvc - ok
05:42:29.0998 1956 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
05:42:29.0998 1956 pci - ok
05:42:30.0060 1956 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\DRIVERS\pciide.sys
05:42:30.0060 1956 pciide - ok
05:42:30.0091 1956 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
05:42:30.0091 1956 pcmcia - ok
05:42:30.0169 1956 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
05:42:30.0185 1956 PEAUTH - ok
05:42:30.0278 1956 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
05:42:30.0294 1956 pla - ok
05:42:30.0466 1956 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
05:42:30.0466 1956 PlugPlay - ok
05:42:30.0622 1956 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
05:42:30.0622 1956 PNRPAutoReg - ok
05:42:30.0637 1956 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
05:42:30.0637 1956 PNRPsvc - ok
05:42:30.0731 1956 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
05:42:30.0731 1956 PolicyAgent - ok
05:42:30.0809 1956 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
05:42:30.0809 1956 PptpMiniport - ok
05:42:30.0840 1956 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
05:42:30.0840 1956 Processor - ok
05:42:30.0902 1956 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
05:42:30.0902 1956 ProfSvc - ok
05:42:30.0949 1956 ProtectedStorage (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
05:42:30.0949 1956 ProtectedStorage - ok
05:42:30.0980 1956 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
05:42:30.0980 1956 PSched - ok
05:42:31.0043 1956 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
05:42:31.0043 1956 PxHelp20 - ok
05:42:31.0136 1956 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
05:42:31.0136 1956 ql2300 - ok
05:42:31.0168 1956 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
05:42:31.0168 1956 ql40xx - ok
05:42:31.0214 1956 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
05:42:31.0230 1956 QWAVE - ok
05:42:31.0277 1956 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
05:42:31.0277 1956 QWAVEdrv - ok
05:42:31.0292 1956 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
05:42:31.0292 1956 RasAcd - ok
05:42:31.0324 1956 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
05:42:31.0324 1956 RasAuto - ok
05:42:31.0355 1956 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
05:42:31.0355 1956 Rasl2tp - ok
05:42:31.0433 1956 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
05:42:31.0448 1956 RasMan - ok
05:42:31.0511 1956 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
05:42:31.0511 1956 RasPppoe - ok
05:42:31.0558 1956 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
05:42:31.0558 1956 RasSstp - ok
05:42:31.0589 1956 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
05:42:31.0604 1956 rdbss - ok
05:42:31.0636 1956 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
05:42:31.0636 1956 RDPCDD - ok
05:42:31.0682 1956 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
05:42:31.0682 1956 rdpdr - ok
05:42:31.0682 1956 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
05:42:31.0698 1956 RDPENCDD - ok
05:42:31.0729 1956 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
05:42:31.0729 1956 RDPWD - ok
05:42:31.0807 1956 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
05:42:31.0807 1956 RemoteAccess - ok
05:42:31.0854 1956 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
05:42:31.0870 1956 RemoteRegistry - ok
05:42:31.0901 1956 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
05:42:31.0901 1956 RpcLocator - ok
05:42:31.0963 1956 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
05:42:31.0963 1956 RpcSs - ok
05:42:32.0010 1956 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
05:42:32.0010 1956 rspndr - ok
05:42:32.0057 1956 RTL8169 (7157e70a90cce49deb8885d23a073a39) C:\Windows\system32\DRIVERS\Rtlh86.sys
05:42:32.0057 1956 RTL8169 - ok
05:42:32.0104 1956 RTL8187B (b71d269b9ab5417963e986126c12b9fc) C:\Windows\system32\DRIVERS\RTL8187B.sys
05:42:32.0104 1956 RTL8187B - ok
05:42:32.0135 1956 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys
05:42:32.0135 1956 RtlProt - ok
05:42:32.0166 1956 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS
05:42:32.0166 1956 RTSTOR - ok
05:42:32.0213 1956 SamSs (3978f3540329e16c0ac3bcf677e5669f) C:\Windows\system32\lsass.exe
05:42:32.0213 1956 SamSs - ok
05:42:32.0244 1956 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
05:42:32.0260 1956 sbp2port - ok
05:42:32.0322 1956 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
05:42:32.0322 1956 SCardSvr - ok
05:42:32.0400 1956 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
05:42:32.0416 1956 Schedule - ok
05:42:32.0462 1956 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
05:42:32.0462 1956 SCPolicySvc - ok
05:42:32.0494 1956 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
05:42:32.0509 1956 SDRSVC - ok
05:42:32.0525 1956 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
05:42:32.0525 1956 secdrv - ok
05:42:32.0540 1956 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
05:42:32.0540 1956 seclogon - ok
05:42:32.0572 1956 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
05:42:32.0572 1956 SENS - ok
05:42:32.0618 1956 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
05:42:32.0618 1956 Serenum - ok
05:42:32.0634 1956 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
05:42:32.0634 1956 Serial - ok
05:42:32.0665 1956 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
05:42:32.0665 1956 sermouse - ok
05:42:32.0712 1956 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
05:42:32.0712 1956 SessionEnv - ok
05:42:32.0759 1956 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
05:42:32.0774 1956 sffdisk - ok
05:42:32.0790 1956 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
05:42:32.0790 1956 sffp_mmc - ok
05:42:32.0806 1956 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
05:42:32.0806 1956 sffp_sd - ok
05:42:32.0837 1956 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
05:42:32.0837 1956 sfloppy - ok
05:42:32.0884 1956 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
05:42:32.0884 1956 SharedAccess - ok
05:42:32.0915 1956 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
05:42:32.0930 1956 ShellHWDetection - ok
05:42:32.0977 1956 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
05:42:32.0977 1956 sisagp - ok
05:42:33.0008 1956 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
05:42:33.0008 1956 SiSRaid2 - ok
05:42:33.0040 1956 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
05:42:33.0040 1956 SiSRaid4 - ok
05:42:33.0196 1956 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
05:42:33.0305 1956 slsvc - ok
05:42:33.0492 1956 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
05:42:33.0492 1956 SLUINotify - ok
05:42:33.0586 1956 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
05:42:33.0586 1956 Smb - ok
05:42:33.0632 1956 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
05:42:33.0632 1956 SNMPTRAP - ok
05:42:33.0679 1956 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
05:42:33.0679 1956 spldr - ok
05:42:33.0726 1956 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
05:42:33.0726 1956 Spooler - ok
05:42:33.0851 1956 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
05:42:33.0866 1956 sptd - ok
05:42:33.0913 1956 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
05:42:33.0913 1956 srv - ok
05:42:33.0960 1956 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
05:42:33.0960 1956 srv2 - ok
05:42:34.0007 1956 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
05:42:34.0007 1956 srvnet - ok
05:42:34.0069 1956 ssadbus (6d83ff6722baf7e82a4521dbec363e5a) C:\Windows\system32\DRIVERS\ssadbus.sys
05:42:34.0069 1956 ssadbus - ok
05:42:34.0085 1956 ssadmdfl (5ae42e90f99749e0e35b9989a2d0275c) C:\Windows\system32\DRIVERS\ssadmdfl.sys
05:42:34.0085 1956 ssadmdfl - ok
05:42:34.0132 1956 ssadmdm (9285d8aba50a4d6482b1574448f9eb76) C:\Windows\system32\DRIVERS\ssadmdm.sys
05:42:34.0132 1956 ssadmdm - ok
05:42:34.0210 1956 sscdbus (ffe42941e0326c322f40b0b79a46493c) C:\Windows\system32\DRIVERS\sscdbus.sys
05:42:34.0210 1956 sscdbus - ok
05:42:34.0256 1956 sscdmdfl (a68e7d87adfbb8c50d88cd58230c6819) C:\Windows\system32\DRIVERS\sscdmdfl.sys
05:42:34.0256 1956 sscdmdfl - ok
05:42:34.0272 1956 sscdmdm (b534b24151281856ec2f69ed3d6d60dd) C:\Windows\system32\DRIVERS\sscdmdm.sys
05:42:34.0272 1956 sscdmdm - ok
05:42:34.0319 1956 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
05:42:34.0319 1956 SSDPSRV - ok
05:42:34.0350 1956 ssmdrv (654dfea96bc82b4acda4f37e5e4a3bbf) C:\Windows\system32\DRIVERS\ssmdrv.sys
05:42:34.0350 1956 ssmdrv - ok
05:42:34.0381 1956 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
05:42:34.0381 1956 SstpSvc - ok
05:42:34.0475 1956 StarOpen (306521935042fc0a6988d528643619b3) C:\Windows\system32\drivers\StarOpen.sys
05:42:34.0475 1956 StarOpen - ok
05:42:34.0615 1956 StarWindServiceAE - ok
05:42:34.0678 1956 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
05:42:34.0678 1956 stisvc - ok
05:42:34.0725 1956 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
05:42:34.0725 1956 swenum - ok
05:42:34.0771 1956 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
05:42:34.0771 1956 swprv - ok
05:42:34.0818 1956 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
05:42:34.0818 1956 Symc8xx - ok
05:42:34.0849 1956 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
05:42:34.0849 1956 Sym_hi - ok
05:42:34.0881 1956 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
05:42:34.0881 1956 Sym_u3 - ok
05:42:34.0927 1956 SynTP (55f6e55cc2430ca8713387106fa79817) C:\Windows\system32\DRIVERS\SynTP.sys
05:42:34.0927 1956 SynTP - ok
05:42:34.0990 1956 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
05:42:35.0005 1956 SysMain - ok
05:42:35.0037 1956 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
05:42:35.0037 1956 TabletInputService - ok
05:42:35.0099 1956 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
05:42:35.0099 1956 TapiSrv - ok
05:42:35.0130 1956 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
05:42:35.0130 1956 TBS - ok
05:42:35.0208 1956 Tcpip (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\drivers\tcpip.sys
05:42:35.0208 1956 Tcpip - ok
05:42:35.0255 1956 Tcpip6 (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\DRIVERS\tcpip.sys
05:42:35.0255 1956 Tcpip6 - ok
05:42:35.0317 1956 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
05:42:35.0317 1956 tcpipreg - ok
05:42:35.0380 1956 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
05:42:35.0380 1956 tdcmdpst - ok
05:42:35.0411 1956 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
05:42:35.0411 1956 TDPIPE - ok
05:42:35.0458 1956 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
05:42:35.0458 1956 TDTCP - ok
05:42:35.0520 1956 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
05:42:35.0520 1956 tdx - ok
05:42:35.0583 1956 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
05:42:35.0583 1956 TermDD - ok
05:42:35.0707 1956 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
05:42:35.0723 1956 TermService - ok
05:42:35.0785 1956 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
05:42:35.0785 1956 Themes - ok
05:42:35.0832 1956 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
05:42:35.0832 1956 THREADORDER - ok
05:42:36.0004 1956 TMachInfo (e09caafb2b323a6ff120cefb96da0a44) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
05:42:36.0004 1956 TMachInfo - ok
05:42:36.0082 1956 TNaviSrv (fd9515297d79e1ac8965e384467b6f6b) C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
05:42:36.0082 1956 TNaviSrv - ok
05:42:36.0129 1956 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
05:42:36.0129 1956 TODDSrv - ok
05:42:36.0207 1956 TosCoSrv (44dbac611b11646683b5b066a049b8e4) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
05:42:36.0222 1956 TosCoSrv - ok
05:42:36.0253 1956 TOSHIBA SMART Log Service (22690dffc7f2a18279a7a0489aa02bac) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
05:42:36.0253 1956 TOSHIBA SMART Log Service - ok
05:42:36.0316 1956 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys
05:42:36.0316 1956 tos_sps32 - ok
05:42:36.0347 1956 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
05:42:36.0363 1956 TrkWks - ok
05:42:36.0425 1956 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
05:42:36.0425 1956 TrustedInstaller - ok
05:42:36.0487 1956 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
05:42:36.0487 1956 tssecsrv - ok
05:42:36.0519 1956 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
05:42:36.0519 1956 tunmp - ok
05:42:36.0581 1956 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
05:42:36.0581 1956 tunnel - ok
05:42:36.0628 1956 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
05:42:36.0628 1956 TVALZ - ok
05:42:36.0675 1956 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
05:42:36.0675 1956 uagp35 - ok
05:42:36.0737 1956 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
05:42:36.0737 1956 udfs - ok
05:42:36.0784 1956 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
05:42:36.0784 1956 UI0Detect - ok
05:42:36.0877 1956 UleadBurningHelper (332d341d92b933600d41953b08360dfb) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
05:42:36.0877 1956 UleadBurningHelper - ok
05:42:36.0909 1956 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
05:42:36.0909 1956 uliagpkx - ok
05:42:36.0924 1956 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
05:42:36.0940 1956 uliahci - ok
05:42:36.0955 1956 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
05:42:36.0955 1956 UlSata - ok
05:42:37.0002 1956 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
05:42:37.0002 1956 ulsata2 - ok
05:42:37.0033 1956 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
05:42:37.0033 1956 umbus - ok
05:42:37.0080 1956 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
05:42:37.0080 1956 upnphost - ok
05:42:37.0127 1956 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
05:42:37.0127 1956 usbccgp - ok
05:42:37.0143 1956 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
05:42:37.0158 1956 usbcir - ok
05:42:37.0221 1956 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
05:42:37.0221 1956 usbehci - ok
05:42:37.0252 1956 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
05:42:37.0267 1956 usbhub - ok
05:42:37.0299 1956 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
05:42:37.0299 1956 usbohci - ok
05:42:37.0330 1956 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
05:42:37.0330 1956 usbprint - ok
05:42:37.0377 1956 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
05:42:37.0377 1956 USBSTOR - ok
05:42:37.0408 1956 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
05:42:37.0408 1956 usbuhci - ok
05:42:37.0439 1956 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
05:42:37.0439 1956 usbvideo - ok
05:42:37.0517 1956 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
05:42:37.0517 1956 UxSms - ok
05:42:37.0564 1956 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
05:42:37.0564 1956 vds - ok
05:42:37.0626 1956 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
05:42:37.0626 1956 vga - ok
05:42:37.0657 1956 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
05:42:37.0657 1956 VgaSave - ok
05:42:37.0673 1956 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
05:42:37.0673 1956 viaagp - ok
05:42:37.0704 1956 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
05:42:37.0704 1956 ViaC7 - ok
05:42:37.0751 1956 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
05:42:37.0751 1956 viaide - ok
05:42:37.0813 1956 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
05:42:37.0813 1956 volmgr - ok
05:42:37.0860 1956 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
05:42:37.0876 1956 volmgrx - ok
05:42:37.0938 1956 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
05:42:37.0938 1956 volsnap - ok
05:42:37.0969 1956 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
05:42:37.0985 1956 vsmraid - ok
05:42:38.0063 1956 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
05:42:38.0063 1956 VSS - ok
05:42:38.0125 1956 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
05:42:38.0125 1956 W32Time - ok
05:42:38.0203 1956 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
05:42:38.0203 1956 WacomPen - ok
05:42:38.0250 1956 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
05:42:38.0250 1956 Wanarp - ok
05:42:38.0250 1956 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
05:42:38.0250 1956 Wanarpv6 - ok
05:42:38.0313 1956 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
05:42:38.0328 1956 wcncsvc - ok
05:42:38.0359 1956 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
05:42:38.0359 1956 WcsPlugInService - ok
05:42:38.0406 1956 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
05:42:38.0406 1956 Wd - ok
05:42:38.0453 1956 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
05:42:38.0469 1956 Wdf01000 - ok
05:42:38.0515 1956 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
05:42:38.0515 1956 WdiServiceHost - ok
05:42:38.0531 1956 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
05:42:38.0531 1956 WdiSystemHost - ok
05:42:38.0578 1956 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
05:42:38.0593 1956 WebClient - ok
05:42:38.0640 1956 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
05:42:38.0640 1956 Wecsvc - ok
05:42:38.0687 1956 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
05:42:38.0687 1956 wercplsupport - ok
05:42:38.0749 1956 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
05:42:38.0749 1956 WerSvc - ok
05:42:38.0859 1956 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
05:42:38.0859 1956 WinDefend - ok
05:42:38.0905 1956 WinHttpAutoProxySvc - ok
05:42:38.0999 1956 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
05:42:38.0999 1956 Winmgmt - ok
05:42:39.0061 1956 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
05:42:39.0077 1956 WinRM - ok
05:42:39.0155 1956 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
05:42:39.0171 1956 Wlansvc - ok
05:42:39.0249 1956 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
05:42:39.0249 1956 WmiAcpi - ok
05:42:39.0327 1956 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
05:42:39.0327 1956 wmiApSrv - ok
05:42:39.0451 1956 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
05:42:39.0467 1956 WMPNetworkSvc - ok
05:42:39.0514 1956 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
05:42:39.0529 1956 WPCSvc - ok
05:42:39.0576 1956 WPDBusEnum (396d406292b0cd26e3504ffe82784702) C:\Windows\system32\wpdbusenum.dll
05:42:39.0576 1956 WPDBusEnum - ok
05:42:39.0654 1956 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
05:42:39.0654 1956 WpdUsb - ok
05:42:39.0826 1956 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
05:42:39.0841 1956 WPFFontCache_v0400 - ok
05:42:39.0888 1956 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
05:42:39.0888 1956 ws2ifsl - ok
05:42:39.0919 1956 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
05:42:39.0935 1956 wscsvc - ok
05:42:39.0935 1956 WSearch - ok
05:42:40.0029 1956 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
05:42:40.0060 1956 wuauserv - ok
05:42:40.0200 1956 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
05:42:40.0200 1956 WUDFRd - ok
05:42:40.0247 1956 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
05:42:40.0294 1956 wudfsvc - ok
05:42:40.0325 1956 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
05:42:41.0479 1956 \Device\Harddisk0\DR0 - ok
05:42:41.0511 1956 Boot (0x1200) (9f5288ab0b0d33dff414f8303e88262a) \Device\Harddisk0\DR0\Partition0
05:42:41.0511 1956 \Device\Harddisk0\DR0\Partition0 - ok
05:42:41.0511 1956 ============================================================
05:42:41.0511 1956 Scan finished
05:42:41.0511 1956 ============================================================
05:42:41.0542 1584 Detected object count: 0
05:42:41.0542 1584 Actual detected object count: 0

doing next steps now.

#6 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 16 June 2012 - 05:42 PM

THe AWS scan took an hour to download updates but the scan didn't go for very long is that correct?

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-17 06:00:57
-----------------------------
06:00:57.335 OS Version: Windows 6.0.6002 Service Pack 2
06:00:57.335 Number of processors: 1 586 0x170A
06:00:57.335 ComputerName: MARK-PC UserName: mark
06:01:31.062 Initialize success
08:17:52.029 AVAST engine defs: 12061601
08:18:39.126 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:18:39.126 Disk 0 Vendor: TOSHIBA_ FG01 Size: 152627MB BusType: 3
08:18:39.141 Disk 0 MBR read successfully
08:18:39.157 Disk 0 MBR scan
08:18:39.188 Disk 0 Windows VISTA default MBR code
08:18:39.204 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
08:18:39.235 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 141382 MB offset 3074048
08:18:39.266 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 9743 MB offset 292624384
08:18:39.313 Disk 0 scanning sectors +312578048
08:18:39.485 Disk 0 scanning C:\Windows\system32\drivers
08:18:53.010 Service scanning
08:19:46.627 Modules scanning
08:20:04.707 Disk 0 trace - called modules:
08:20:05.238 ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
08:20:05.253 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85796ac8]
08:20:05.253 3 CLASSPNP.SYS[87f158b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x84d16028]
08:20:06.408 AVAST engine scan C:\Windows
08:20:11.400 AVAST engine scan C:\Windows\system32
08:23:46.898 AVAST engine scan C:\Windows\system32\drivers
08:24:02.763 AVAST engine scan C:\Users\mark
08:39:56.313 Disk 0 MBR has been saved successfully to "C:\reports\MBR.dat"
08:39:56.329 The log file has been saved successfully to "C:\reports\aswMBR.txt"

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 AM

Posted 16 June 2012 - 06:11 PM

ESET log?

#8 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 16 June 2012 - 07:49 PM

ESET log?



Still waiting for it to do its signiture database update its about 80 percent on the bar step 2 of 4

Havn't stopped since started this morning, the updates seem to taking forever sorry :(

maybe nother half hour it looks like for the eset log.

#9 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 16 June 2012 - 10:10 PM

Its still scanning but wanted to update you its found 1 threat unlike malwarebytes, thanks great program

the threat is variation of win32/installcore.d

So this is the file then,

I'll up date you soon, i done a google search says annoying pop ups , is from this installcore file.

C:\Users\mark\Downloads\cnet_Pazera_Free_FLV_to_AVI_Converter_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined


Thats the eset log file, I think it is removed the virus has worked sometimes it pops up randomoly i lll let you know

Edited by helpplease1, 16 June 2012 - 10:25 PM.


#10 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 16 June 2012 - 10:40 PM

I have rebooted and got a new message now but not sure if its actually Antivir or the virus comes up congratulations you are a winner message sponsor pop up from vistaprint?

Is this actually antivir now or the virus , can't be the virus used every program now ?

Is antivir doing promotions with vistaprint?

I've done an antivir update anyway in process off.

I think you got rid of the other virus thanks.

Is this an antivir promo with vista print not a virus this other message?

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 AM

Posted 16 June 2012 - 11:55 PM

Lets finish the scan first

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#12 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 17 June 2012 - 12:14 AM

Lets finish the scan first

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


Okay thanks doing it now.

#13 helpplease1

helpplease1
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 17 June 2012 - 05:46 AM

Lets finish the scan first

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.



Hello Sorry for the reply, but after all the problems i reliased one of my programs had falied because of this virus and spent hours getting it back working aftera clean up and restall ( cause have a customer job to do) web design.

You helped alot and all the pop ups have gone now thank you very much , without sounding rude do you mind if i dont do the last update is it extreemly necesarry as I just spent hours getting my graphics programs re installing after this virus?

and its all up and running again :) I did have a chance to do the malwarebtyes again came up clean :) but didnt' get a chance to do that tool kit one at the end. Hope its not rude to say thankyou , but if you don't mind like to leave it for a few days so I can finish this work and hopefully all okay.

Thankyou so much can't thank you enough and hope all okay now.

thanks :)

:)

Edited by helpplease1, 17 June 2012 - 05:47 AM.


#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:59 AM

Posted 17 June 2012 - 12:14 PM

If you're system is clean,its not necessary

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

Edited by narenxp, 17 June 2012 - 12:15 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users