Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google re-directing after clicking through a search.


  • This topic is locked This topic is locked
35 replies to this topic

#1 Scorscribler

Scorscribler

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 30 March 2012 - 05:30 PM

After google comes back with a search result, and I click on a link, I am re-directed to a website that is definitely not the link I clicked on! easya-z.com being one of the many sites I end up on. wwwsubaquaholicscouk being another. It seems to send you to a similar themed site, but not the site you actually click on.

Thanks in advance! Scorscribler.

Attached Files



BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:38 PM

Posted 30 March 2012 - 09:54 PM

Hello and Welcome to Bleeping Computer!!

My name is Gringo and I'll be glad to help you with your computer problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


DeFogger:

  • Please download DeFogger to your desktop.

    Double click DeFogger to run the tool.
  • The application window will appear
  • Click the Disable button to disable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger may ask you to reboot the machine, if it does - click OK
Do not re-enable these drivers until otherwise instructed.

Download DDS:

  • Please download DDS by sUBs from one of the links below and save it to your desktop:

    Posted Image
    Download DDS and save it to your desktop

    Link1
    Link2
    Link3

    Please disable any anti-malware program that will block scripts from running before running DDS.

    • Double-Click on dds.scr and a command window will appear. This is normal.
    • Shortly after two logs will appear:
    • DDS.txt
    • Attach.txt
  • A window will open instructing you save & post the logs
  • Save the logs to a convenient place such as your desktop
  • Copy the contents of both logs & post in your next reply

information and logs:

  • In your next post I need the following

  • .logs from DDS
  • let me know of any problems you may have had

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 31 March 2012 - 03:18 AM

No problems running either program, and thanks for your quick response!

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by Terri at 9:06:49 on 2012-03-31
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.44.1033.18.3030.803 [GMT 1:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\WLTRYSVC.EXE
C:\Windows\System32\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\rundll32.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\Windows\system32\mfevtps.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Dell\DellDock\DellDock.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Dell Webcam\Dell Webcam Central\WebcamDell.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\McAfee\MAT\McPvTray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\Olympus\ib\olycamdetect.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Apple\Internet Services\ubd.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Brother\Brmfcmon\BrMfimon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\McAfee Online Backup\MOBKbackup.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\McAfee Online Backup\MOBKbackup.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\mswinext.exe
C:\Windows\system32\Macromed\Flash\FlashUtil11g_ActiveX.exe
C:\Program Files\Lavasoft\Ad-Aware\AWSC.exe
C:\Program Files\Lavasoft\Ad-Aware\AWSC.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\McAfee\VirusScan\mcods.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uStart Page = hxxp://www.google.co.uk/
uSearch Bar = hxxp://www.google.com/ie
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20120107201706.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn toolbar\platform\6.3.2322.0\npwinext.dll
BHO: Foxit Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Foxit Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: @c:\program files\msn toolbar\platform\6.3.2322.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\msn toolbar\platform\6.3.2322.0\npwinext.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [AdobeUpdater6] "c:\program files\common files\adobe\updater6\Adobe_Updater.exe"
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [Olympus ib] "c:\program files\olympus\ib\olycamdetect.exe" /Startup
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [MobileDocuments] c:\program files\common files\apple\internet services\ubd.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [QuickSet] c:\program files\dell\quickset\QuickSet.exe
mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe"
mRun: [Dell Webcam Central] "c:\program files\dell webcam\dell webcam central\WebcamDell.exe" /mode2
mRun: [dellsupportcenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P dellsupportcenter
mRun: [Google Quick Search Box] "c:\program files\google\quick search box\GoogleQuickSearchBox.exe" /autorun
mRun: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
mRun: [BrMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN
mRun: [ControlCenter3] c:\program files\brother\controlcenter3\brctrcen.exe /autorun
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [MDS_Menu] "c:\program files\olympus\ib\muitransfer\muistartmenu.exe" "c:\program files\olympus\ib" updatewithcreateonce "software\olympus\ib\1.0"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [McPvTray_exe] "c:\program files\mcafee\mat\McPvTray.exe"
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
StartupFolder: c:\users\terri\appdata\roaming\micros~1\windows\startm~1\programs\startup\delldo~1.lnk - c:\program files\dell\delldock\DellDock.exe
StartupFolder: c:\users\terri\appdata\roaming\micros~1\windows\startm~1\programs\startup\limewi~1.lnk - c:\program files\limewire\LimeWire.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\2.0.181\SSScheduler.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{F2BBDBD1-D087-4EB7-BE9E-0AA3F364F97C} : DhcpNameServer = 192.168.1.1
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\McSnIePl.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
Notify: igfxcui - igfxdev.dll
.
============= SERVICES / DRIVERS ===============
.
R0 McPvDrv;McPvDrv Driver;c:\windows\system32\drivers\McPvDrv.sys [2011-10-27 64048]
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2011-3-13 464176]
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\drivers\mfenlfk.sys [2011-10-27 64880]
R1 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2011-10-27 165680]
R1 MOBKFilter;MOBKFilter;c:\windows\system32\drivers\MOBK.sys [2011-10-27 54776]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\driverstore\filerepository\stwrt.inf_f6ef8056\AEstSrv.exe [2009-6-28 81920]
R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2008-12-18 155648]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-10-27 214904]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-10-27 214904]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-10-27 214904]
R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2011-10-27 214904]
R2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2011-10-27 166288]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2011-10-27 160608]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2011-10-27 150856]
R2 MOBKbackup;McAfee Online Backup;c:\program files\mcafee online backup\MOBKbackup.exe [2010-4-13 229688]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2011-10-27 57600]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\drivers\CtClsFlt.sys [2009-6-28 135936]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-6-28 112128]
R3 k57nd60x;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\k57nd60x.sys [2009-6-28 212992]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2011-10-27 180816]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2011-10-27 59456]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2011-10-27 338176]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2011-10-27 87656]
R3 OA008Ufd;Creative Camera OA008 Upper Filter Driver;c:\windows\system32\drivers\OA008Ufd.sys [2009-6-28 133472]
R3 OA008Vid;Creative Camera OA008 Function Driver;c:\windows\system32\drivers\OA008Vid.sys [2009-6-28 271616]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [2010-11-27 27632]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-2-2 135664]
S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2010-11-8 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2011-5-13 1492840]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2010-11-27 13224]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-2-2 135664]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
S3 OlyCamComm;OLYMPUS USB Communication Device;c:\windows\system32\drivers\OlyCamComm.sys [2009-9-10 21648]
S3 PCD5SRVC{3F6A8B78-EC003E00-05040104};PCD5SRVC{3F6A8B78-EC003E00-05040104} - PCDR Kernel Mode Service Helper Driver;c:\progra~1\dellsu~1\hwdiag\bin\PCD5SRVC.pkms [2008-11-5 22904]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2010-3-4 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2010-3-4 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2010-3-4 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [2010-3-4 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [2010-3-4 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [2010-3-4 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [2010-3-4 109864]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\drivers\WSDPrint.sys [2008-1-21 16896]
.
=============== Created Last 30 ================
.
2012-03-30 19:30:04 -------- d-----w- c:\users\terri\appdata\local\{DAEA3EA4-F595-422B-8B68-4AB0149EE5BE}
2012-03-30 08:41:23 -------- d-----w- c:\users\terri\appdata\local\{FE2C3CC6-633E-47FD-89B9-67C0CB673141}
2012-03-29 11:49:55 -------- d-----w- c:\users\terri\appdata\local\{7BD34C2A-9BE5-420D-8356-A35BBC2B783F}
2012-03-28 07:41:57 -------- d-----w- c:\users\terri\appdata\local\{A919BE35-17FF-4121-9049-6871E7874EF6}
2012-03-27 20:01:52 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-03-27 19:58:13 -------- d-----w- c:\program files\Lavasoft
2012-03-27 19:41:26 -------- d-----w- c:\users\terri\appdata\local\{2565F36E-EA94-45BE-9B1B-078FE1424C7E}
2012-03-27 19:41:13 -------- d-----w- c:\users\terri\appdata\local\{F9CD5D50-E262-4072-B15D-FE928AE842FE}
2012-03-26 11:53:02 -------- d-----w- c:\users\terri\appdata\local\{275B9B3E-74B2-444D-8E3A-FB9DADCDB8EE}
2012-03-26 11:52:46 -------- d-----w- c:\users\terri\appdata\local\{AD8AA6A1-FE3D-410B-B5DD-925D37F9ACE1}
2012-03-25 17:47:17 -------- d-----w- c:\users\terri\appdata\local\{D1E6E9B2-B35A-450C-99ED-DB1734463635}
2012-03-25 17:46:59 -------- d-----w- c:\users\terri\appdata\local\{8CA5907B-28C5-44FE-9F86-5B49E7C56516}
2012-03-24 22:06:37 -------- d-----w- c:\users\terri\appdata\local\{3F4D021B-81B9-4F93-9493-765BC606E29E}
2012-03-24 22:06:23 -------- d-----w- c:\users\terri\appdata\local\{E8460CA8-A5ED-48EC-876E-78611BD7A3BB}
2012-03-24 21:55:03 -------- d-----w- c:\users\terri\appdata\roaming\Malwarebytes
2012-03-24 21:54:39 -------- d-----w- c:\programdata\Malwarebytes
2012-03-24 21:46:53 -------- d-----w- c:\users\terri\appdata\roaming\Val'Gor 2
2012-03-24 21:46:09 -------- d-----w- c:\users\terri\appdata\roaming\ValGor 2
2012-03-24 10:05:48 -------- d-----w- c:\users\terri\appdata\local\{E49E0A91-D428-4259-9A48-5EEFD3D1C5B4}
2012-03-24 10:05:33 -------- d-----w- c:\users\terri\appdata\local\{5D198630-F580-4B52-937B-A79A713D492B}
2012-03-23 13:23:13 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2012-03-23 13:23:13 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2012-03-23 13:23:13 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2012-03-23 13:23:13 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2012-03-23 13:23:13 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2012-03-23 13:23:13 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2012-03-23 13:23:13 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2012-03-23 13:14:20 -------- d-----w- c:\program files\Bonjour
2012-03-23 08:54:47 -------- d-----w- c:\users\terri\appdata\local\{B300FAFB-3DEF-46B6-A2AB-9DB522B7946D}
2012-03-23 08:54:30 -------- d-----w- c:\users\terri\appdata\local\{8F450A3A-58D7-41C3-9E81-89B066213589}
2012-03-21 19:45:44 -------- d-----w- c:\users\terri\appdata\local\{E732EC96-037F-4474-A24B-BAE49D2226A7}
2012-03-21 19:45:30 -------- d-----w- c:\users\terri\appdata\local\{D038EDF0-9AEA-4E81-9714-71CA9A1722CC}
2012-03-18 18:08:32 -------- d-----w- c:\programdata\SugarGames
2012-03-18 18:05:10 -------- d-----w- c:\program files\Crop Busters
2012-03-18 09:38:10 126976 --sha-r- c:\windows\system32\authuiw.dll
2012-03-18 09:29:46 -------- d-----w- c:\users\terri\appdata\local\{6DEF135A-62F1-4B14-A023-180D4E953F3D}
2012-03-18 09:28:55 -------- d-----w- c:\users\terri\appdata\local\{9B832290-A95C-4621-A76A-70DDCB05ED62}
2012-03-14 03:02:06 2044416 ----a-w- c:\windows\system32\win32k.sys
2012-03-14 03:02:03 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-03-14 03:02:03 1068544 ----a-w- c:\windows\system32\DWrite.dll
2012-03-14 03:02:02 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-03-14 03:02:02 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-03-14 03:02:02 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-03-14 03:01:59 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2012-03-13 18:01:51 -------- d-----w- c:\users\terri\appdata\roaming\Friday's games
2012-03-13 17:21:31 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-03-13 17:21:30 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-03-13 17:05:12 -------- d-----w- c:\users\terri\appdata\local\{463C6BCF-D0B8-4394-BF99-556C0C58F572}
2012-03-05 19:05:24 -------- d-----w- c:\users\terri\appdata\local\{05C7F6A8-BE04-4A2A-9329-A1158BEAA38D}
2012-03-05 19:05:02 -------- d-----w- c:\users\terri\appdata\local\{5864B007-76BE-4C80-86DD-B3E6CF6DC75B}
.
==================== Find3M ====================
.
2012-03-05 19:04:14 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-15 11:01:50 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-02-15 11:01:50 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys
.
============= FINISH: 9:13:43.49 ===============












Attach:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume3
Install Date: 27/06/2009 23:00:44
System Uptime: 31/03/2012 05:26:36 (4 hours ago)
.
Motherboard: Dell Inc. | | 0D176M
Processor: Intel® Core™2 Duo CPU T6500 @ 2.10GHz | U2E1 | 1200/533mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 451 GiB total, 343.055 GiB free.
D: is FIXED (NTFS) - 15 GiB total, 8.53 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP416: 16/09/2011 07:34:41 - Windows Update
RP417: 18/09/2011 03:00:39 - Windows Update
RP418: 19/09/2011 20:51:26 - Scheduled Checkpoint
RP419: 20/09/2011 19:14:44 - Windows Update
RP420: 24/09/2011 10:22:44 - Windows Update
RP421: 25/09/2011 15:29:18 - Scheduled Checkpoint
RP422: 08/10/2011 12:57:35 - Windows Update
RP423: 08/10/2011 13:12:59 - Windows Update
RP424: 10/10/2011 03:00:26 - Windows Update
RP425: 12/10/2011 21:35:40 - Windows Update
RP426: 15/10/2011 08:55:51 - Windows Update
RP427: 16/10/2011 03:00:24 - Windows Update
RP428: 18/10/2011 20:42:05 - Windows Update
RP429: 22/10/2011 22:57:36 - Windows Update
RP430: 25/10/2011 20:08:46 - Windows Update
RP431: 27/10/2011 18:54:19 - Device Driver Package Install: McAfee, Inc. Network Service
RP432: 28/10/2011 18:05:20 - Installed Java™ 6 Update 29
RP433: 12/11/2011 03:06:41 - Windows Update
RP434: 25/11/2011 11:59:07 - Scheduled Checkpoint
RP435: 29/12/2011 03:00:52 - Windows Update
RP436: 08/01/2012 18:26:12 - Scheduled Checkpoint
RP437: 15/01/2012 15:26:34 - Windows Update
RP438: 21/01/2012 18:47:02 - Windows Update
RP439: 23/01/2012 17:55:19 - Windows Update
RP440: 02/02/2012 20:21:57 - Windows Update
RP441: 08/02/2012 20:11:13 - Scheduled Checkpoint
RP442: 14/02/2012 22:02:44 - Scheduled Checkpoint
RP443: 17/02/2012 22:35:53 - Windows Update
RP444: 25/02/2012 15:09:04 - Scheduled Checkpoint
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
360Share Pro(remove only)
Acrobat.com
Adobe AIR
Adobe Flash Player 10 Plugin
Adobe Flash Player 11 ActiveX
Adobe Reader 9.2
Advanced Audio FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Ask Toolbar
Big Fish Games: Game Manager
Bing Bar
Bing Bar Platform
Bonjour
Brother MFL-Pro Suite
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Compatibility Pack for the 2007 Office system
Crop Busters
D3DX10
Dell-eBay
Dell Dock
Dell Edoc Viewer
Dell Getting Started Guide
Dell Support Center (Support Software)
Dell Touchpad
Dell Video Chat
Dell Webcam Central
Dell Wireless WLAN Card Utility
Foxit Reader
Google Quick Search Box
Google Toolbar for Internet Explorer
Google Update Helper
GoToAssist 8.0.0.514
Hotel Dash: Suite Success
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
iCloud
Integrated Webcam Driver (1.02.02.0106)
Intel® Graphics Media Accelerator Driver
iPhone Configuration Utility
iTunes
Java Auto Updater
Java™ 6 Update 29
Junk Mail filter update
LimeWire 5.2.13
Live! Cam Avatar Creator
McAfee Online Backup
McAfee Security Scan Plus
McAfee Total Protection
Media Go
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office Live Add-in 1.5
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
MSVCRT
Mystery Case Files: Return to Ravenhearst ™
NetSpy Protector (remove only)
OGA Notifier 2.0.0048.0
OLYMPUS ib
Picasa 3
PlayStation®Network Downloader
PlayStation®Store
PowerDVD
QuickSet
QuickTime
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
RPS CRT
Safari
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Segoe UI
Sony Ericsson Update Service
Spelling Dictionaries Support For Adobe Reader 9
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Windows Driver Package - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Yahoo! Detect
.
==== Event Viewer Messages From Past Week ========
.
30/03/2012 23:14:45, Error: ACPI [13] - : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.
30/03/2012 20:28:50, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID {C97FCC79-E628-407D-AE68-A06AD6D8B4D1} to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
30/03/2012 20:18:15, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
30/03/2012 20:18:15, Error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
30/03/2012 20:18:15, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1053" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
29/03/2012 12:49:26, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.
28/03/2012 07:24:58, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlugPlay service.
.
==== End Of File ===========================

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:38 PM

Posted 31 March 2012 - 03:49 AM

Hello

I Would like you to do the following.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 31 March 2012 - 05:23 AM

Hi Gringo. I disabled McAfee anti virus and began to run Combofix. A warning message appeared saying the anti virus and anti spyware were still running. To be safe, I stopped Combofix and uninstalled the antivirus software. I then restarted the computer and began combofix again, only to be told that McAfee antivirus and anti spyware is still running!!!

Would you like me to run Combofix anyway?

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:38 PM

Posted 31 March 2012 - 10:18 AM

Hello


Yes I want you to run it anyway


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 31 March 2012 - 12:36 PM

Part way through the ComboFix run a window appeared stating that PEV.exe has stopped working and that windows was looking for a solution.

I have since tried a search through google and am still getting re-directed. Everything seems to be working as normal, although a shortcut bar that was at the top of the desktop has since disappeared.




ComboFix 12-03-31.01 - Terri 31/03/2012 18:12:40.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.44.1033.18.3030.1733 [GMT 1:00]
Running from: c:\users\Terri\Desktop\ComboFix.exe
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-02-28 to 2012-03-31 )))))))))))))))))))))))))))))))
.
.
2012-03-31 17:22 . 2012-03-31 17:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-27 20:01 . 2012-03-27 20:01 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2012-03-27 19:58 . 2012-03-30 20:12 -------- d-----w- c:\programdata\Lavasoft
2012-03-27 19:58 . 2012-03-27 19:58 -------- d-----w- c:\program files\Lavasoft
2012-03-24 21:55 . 2012-03-24 21:55 -------- d-----w- c:\users\Terri\AppData\Roaming\Malwarebytes
2012-03-24 21:54 . 2012-03-24 21:54 -------- d-----w- c:\programdata\Malwarebytes
2012-03-24 21:46 . 2012-03-24 21:47 -------- d-----w- c:\users\Terri\AppData\Roaming\Val'Gor 2
2012-03-24 21:46 . 2012-03-24 21:46 -------- d-----w- c:\users\Terri\AppData\Roaming\ValGor 2
2012-03-23 13:39 . 2012-03-23 13:40 -------- d-----w- c:\program files\Safari
2012-03-23 13:23 . 2012-03-23 13:23 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2012-03-23 13:23 . 2012-03-23 13:23 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2012-03-23 13:23 . 2012-03-23 13:23 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2012-03-23 13:23 . 2012-03-23 13:23 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2012-03-23 13:23 . 2012-03-23 13:23 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2012-03-23 13:23 . 2012-03-23 13:23 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2012-03-23 13:23 . 2012-03-23 13:23 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2012-03-23 13:21 . 2012-03-23 13:23 -------- d-----w- c:\program files\QuickTime
2012-03-23 13:14 . 2012-03-23 13:14 -------- d-----w- c:\program files\Bonjour
2012-03-18 18:08 . 2012-03-18 18:08 -------- d-----w- c:\programdata\SugarGames
2012-03-18 18:05 . 2012-03-18 18:06 -------- d-----w- c:\program files\Crop Busters
2012-03-18 09:38 . 2012-03-18 09:38 126976 --sha-r- c:\windows\system32\authuiw.dll
2012-03-14 03:02 . 2012-02-02 15:16 2044416 ----a-w- c:\windows\system32\win32k.sys
2012-03-14 03:02 . 2012-02-14 15:45 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-03-14 03:02 . 2012-02-13 13:44 1068544 ----a-w- c:\windows\system32\DWrite.dll
2012-03-14 03:02 . 2012-02-14 15:45 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2012-03-14 03:02 . 2012-02-13 14:12 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2012-03-14 03:02 . 2012-02-13 13:47 683008 ----a-w- c:\windows\system32\d2d1.dll
2012-03-14 03:01 . 2012-01-31 10:59 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat
2012-03-13 18:01 . 2012-03-13 18:01 -------- d-----w- c:\users\Terri\AppData\Roaming\Friday's games
2012-03-13 17:21 . 2012-01-09 15:54 613376 ----a-w- c:\windows\system32\rdpencom.dll
2012-03-13 17:21 . 2012-01-09 13:58 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-05 19:04 . 2012-02-05 08:16 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-15 11:01 . 2012-02-15 11:01 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll
2012-02-15 11:01 . 2012-02-15 11:01 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2010-02-04 15:50 1197448 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-08-03 39408]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Olympus ib"="c:\program files\Olympus\ib\olycamdetect.exe" [2010-02-04 93376]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
"MobileDocuments"="c:\program files\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-12-01 1422632]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2008-12-22 3810304]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-05-23 128296]
"Dell Webcam Central"="c:\program files\Dell Webcam\Dell Webcam Central\WebcamDell.exe" [2008-11-11 442536]
"dellsupportcenter"="c:\program files\Dell Support Center\bin\sprtcmd.exe" [2009-06-03 206064]
"Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-08-03 122368]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2009-03-20 483428]
"BrMfcWnd"="c:\program files\Brother\Brmfcmon\BrMfcWnd.exe" [2007-03-23 663552]
"ControlCenter3"="c:\program files\Brother\ControlCenter3\brctrcen.exe" [2007-01-26 65536]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-06 421736]
"MDS_Menu"="c:\program files\Olympus\ib\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
.
c:\users\Terri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-2-27 1316192]
LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [2009-7-31 139776]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-2-27 1316192]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToAssist]
2009-06-28 03:27 10536 ----a-w- c:\program files\Citrix\GoToAssist\514\g2awinlogon.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe [2009-03-20 81920]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-02 20:42]
.
2012-03-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-02 20:42]
.
2012-03-31 c:\windows\Tasks\jbhhj.job
- c:\windows\system32\authuiw.dll [2012-03-18 09:38]
.
2010-12-19 c:\windows\Tasks\User_Feed_Synchronization-{55BAE670-427E-46EE-84C2-8ABA37EE720C}.job
- c:\windows\system32\msfeedssync.exe [2011-06-25 08:40]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.co.uk/
uDefault_Search_URL = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-AdobeUpdater6 - c:\program files\Common Files\Adobe\Updater6\Adobe_Updater.exe
HKLM-Run-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe
HKLM-Run-Adobe ARM - c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
AddRemove-360Share Pro - c:\program files\360Share Pro\bt-uninst.exe
AddRemove-BFG-Mystery Case Files - Return to Ravenhearst - c:\program files\Mystery Case Files - Return to Ravenhearst\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-31 18:23
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\PCD5SRVC{3F6A8B78-EC003E00-05040104}]
"ImagePath"="\??\c:\progra~1\DELLSU~1\HWDiag\bin\PCD5SRVC.pkms"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2012-03-31 18:26:48
ComboFix-quarantined-files.txt 2012-03-31 17:26
.
Pre-Run: 368,484,048,896 bytes free
Post-Run: 369,106,616,320 bytes free
.
- - End Of File - - 5DC1E53051D46CD42706CBD96F585DD6

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:38 PM

Posted 31 March 2012 - 09:11 PM

Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 01 April 2012 - 03:22 AM

Both programs ran fine. Google is still redirecting at this stage.

TDSSKiller:

08:53:34.0439 5136 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
08:53:34.0602 5136 ============================================================
08:53:34.0602 5136 Current date / time: 2012/04/01 08:53:34.0602
08:53:34.0602 5136 SystemInfo:
08:53:34.0602 5136
08:53:34.0602 5136 OS Version: 6.0.6002 ServicePack: 2.0
08:53:34.0602 5136 Product type: Workstation
08:53:34.0602 5136 ComputerName: TERRI-PC
08:53:34.0602 5136 UserName: Terri
08:53:34.0602 5136 Windows directory: C:\Windows
08:53:34.0602 5136 System windows directory: C:\Windows
08:53:34.0603 5136 Processor architecture: Intel x86
08:53:34.0603 5136 Number of processors: 2
08:53:34.0603 5136 Page size: 0x1000
08:53:34.0603 5136 Boot type: Normal boot
08:53:34.0603 5136 ============================================================
08:53:36.0092 5136 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
08:53:36.0096 5136 \Device\Harddisk0\DR0:
08:53:36.0097 5136 MBR used
08:53:36.0097 5136 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
08:53:36.0097 5136 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B
08:53:36.0160 5136 Initialize success
08:53:36.0160 5136 ============================================================
08:54:32.0866 3752 ============================================================
08:54:32.0866 3752 Scan started
08:54:32.0866 3752 Mode: Manual;
08:54:32.0866 3752 ============================================================
08:54:34.0299 3752 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
08:54:34.0306 3752 ACPI - ok
08:54:34.0359 3752 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
08:54:34.0373 3752 adp94xx - ok
08:54:34.0421 3752 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
08:54:34.0430 3752 adpahci - ok
08:54:34.0473 3752 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
08:54:34.0477 3752 adpu160m - ok
08:54:34.0517 3752 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
08:54:34.0524 3752 adpu320 - ok
08:54:34.0605 3752 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
08:54:34.0606 3752 AeLookupSvc - ok
08:54:34.0729 3752 AESTFilters (827dbc22c96eecf6d36a13162fabafd3) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe
08:54:34.0733 3752 AESTFilters - ok
08:54:34.0884 3752 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
08:54:34.0892 3752 AFD - ok
08:54:34.0963 3752 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
08:54:34.0965 3752 agp440 - ok
08:54:35.0038 3752 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
08:54:35.0041 3752 aic78xx - ok
08:54:35.0078 3752 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
08:54:35.0080 3752 ALG - ok
08:54:35.0120 3752 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
08:54:35.0122 3752 aliide - ok
08:54:35.0176 3752 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
08:54:35.0179 3752 amdagp - ok
08:54:35.0247 3752 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
08:54:35.0249 3752 amdide - ok
08:54:35.0278 3752 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
08:54:35.0282 3752 AmdK7 - ok
08:54:35.0306 3752 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
08:54:35.0308 3752 AmdK8 - ok
08:54:35.0382 3752 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
08:54:35.0384 3752 Appinfo - ok
08:54:35.0501 3752 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:54:35.0508 3752 Apple Mobile Device - ok
08:54:35.0803 3752 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
08:54:35.0807 3752 arc - ok
08:54:35.0890 3752 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
08:54:35.0894 3752 arcsas - ok
08:54:35.0963 3752 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
08:54:35.0965 3752 AsyncMac - ok
08:54:36.0021 3752 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
08:54:36.0022 3752 atapi - ok
08:54:36.0122 3752 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
08:54:36.0133 3752 AudioEndpointBuilder - ok
08:54:36.0143 3752 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
08:54:36.0148 3752 Audiosrv - ok
08:54:36.0240 3752 BCM42RLY (423c7b87e886ac93d22936ea82665f83) C:\Windows\system32\drivers\BCM42RLY.sys
08:54:36.0242 3752 BCM42RLY - ok
08:54:36.0350 3752 BCM43XX (b56999be8f22ba3071e4ceafa9e82e26) C:\Windows\system32\DRIVERS\bcmwl6.sys
08:54:36.0398 3752 BCM43XX - ok
08:54:36.0562 3752 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
08:54:36.0565 3752 Beep - ok
08:54:36.0666 3752 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
08:54:36.0676 3752 BFE - ok
08:54:36.0777 3752 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
08:54:36.0789 3752 BITS - ok
08:54:36.0864 3752 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
08:54:36.0867 3752 blbdrive - ok
08:54:36.0988 3752 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
08:54:36.0997 3752 Bonjour Service - ok
08:54:37.0095 3752 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
08:54:37.0098 3752 bowser - ok
08:54:37.0194 3752 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
08:54:37.0196 3752 BrFiltLo - ok
08:54:37.0268 3752 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
08:54:37.0270 3752 BrFiltUp - ok
08:54:37.0323 3752 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
08:54:37.0327 3752 Browser - ok
08:54:37.0403 3752 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
08:54:37.0406 3752 Brserid - ok
08:54:37.0467 3752 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
08:54:37.0470 3752 BrSerWdm - ok
08:54:37.0513 3752 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
08:54:37.0516 3752 BrUsbMdm - ok
08:54:37.0555 3752 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
08:54:37.0558 3752 BrUsbSer - ok
08:54:37.0647 3752 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
08:54:37.0649 3752 BTHMODEM - ok
08:54:37.0742 3752 catchme - ok
08:54:37.0844 3752 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
08:54:37.0849 3752 cdfs - ok
08:54:37.0952 3752 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
08:54:37.0956 3752 cdrom - ok
08:54:38.0089 3752 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
08:54:38.0092 3752 CertPropSvc - ok
08:54:38.0147 3752 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
08:54:38.0150 3752 circlass - ok
08:54:38.0223 3752 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
08:54:38.0230 3752 CLFS - ok
08:54:38.0305 3752 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:54:38.0309 3752 clr_optimization_v2.0.50727_32 - ok
08:54:38.0369 3752 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:54:38.0373 3752 clr_optimization_v4.0.30319_32 - ok
08:54:38.0455 3752 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
08:54:38.0456 3752 CmBatt - ok
08:54:38.0517 3752 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
08:54:38.0519 3752 cmdide - ok
08:54:38.0580 3752 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
08:54:38.0582 3752 Compbatt - ok
08:54:38.0607 3752 COMSysApp - ok
08:54:38.0648 3752 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
08:54:38.0651 3752 crcdisk - ok
08:54:38.0688 3752 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
08:54:38.0690 3752 Crusoe - ok
08:54:38.0784 3752 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
08:54:38.0790 3752 CryptSvc - ok
08:54:38.0876 3752 CtClsFlt (ec232b13241caf587323b84981e0dda3) C:\Windows\system32\DRIVERS\CtClsFlt.sys
08:54:38.0881 3752 CtClsFlt - ok
08:54:38.0995 3752 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
08:54:39.0006 3752 DcomLaunch - ok
08:54:39.0056 3752 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
08:54:39.0060 3752 DfsC - ok
08:54:39.0174 3752 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
08:54:39.0248 3752 DFSR - ok
08:54:39.0384 3752 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
08:54:39.0391 3752 Dhcp - ok
08:54:39.0499 3752 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
08:54:39.0502 3752 disk - ok
08:54:39.0591 3752 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
08:54:39.0595 3752 Dnscache - ok
08:54:39.0729 3752 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
08:54:39.0731 3752 DockLoginService - ok
08:54:39.0824 3752 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
08:54:39.0831 3752 dot3svc - ok
08:54:39.0920 3752 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
08:54:39.0923 3752 DPS - ok
08:54:39.0992 3752 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
08:54:39.0994 3752 drmkaud - ok
08:54:40.0061 3752 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
08:54:40.0084 3752 DXGKrnl - ok
08:54:40.0171 3752 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
08:54:40.0178 3752 e1express - ok
08:54:40.0254 3752 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
08:54:40.0259 3752 E1G60 - ok
08:54:40.0352 3752 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
08:54:40.0356 3752 EapHost - ok
08:54:40.0494 3752 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
08:54:40.0502 3752 Ecache - ok
08:54:40.0572 3752 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
08:54:40.0581 3752 ehRecvr - ok
08:54:40.0598 3752 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
08:54:40.0603 3752 ehSched - ok
08:54:40.0620 3752 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
08:54:40.0622 3752 ehstart - ok
08:54:40.0756 3752 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
08:54:40.0766 3752 elxstor - ok
08:54:40.0958 3752 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
08:54:40.0983 3752 EMDMgmt - ok
08:54:41.0062 3752 ErrDev (f2a80de2d1b7116052c09cb4d4ca1416) C:\Windows\system32\drivers\errdev.sys
08:54:41.0064 3752 ErrDev - ok
08:54:41.0149 3752 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
08:54:41.0153 3752 EventSystem - ok
08:54:41.0244 3752 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
08:54:41.0250 3752 exfat - ok
08:54:41.0288 3752 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
08:54:41.0294 3752 fastfat - ok
08:54:41.0391 3752 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
08:54:41.0393 3752 fdc - ok
08:54:41.0446 3752 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
08:54:41.0448 3752 fdPHost - ok
08:54:41.0463 3752 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
08:54:41.0465 3752 FDResPub - ok
08:54:41.0552 3752 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
08:54:41.0554 3752 FileInfo - ok
08:54:41.0575 3752 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
08:54:41.0578 3752 Filetrace - ok
08:54:41.0601 3752 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
08:54:41.0603 3752 flpydisk - ok
08:54:41.0643 3752 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
08:54:41.0649 3752 FltMgr - ok
08:54:41.0759 3752 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
08:54:41.0771 3752 FontCache - ok
08:54:41.0837 3752 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
08:54:41.0840 3752 FontCache3.0.0.0 - ok
08:54:41.0939 3752 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
08:54:41.0941 3752 fssfltr - ok
08:54:42.0125 3752 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
08:54:42.0171 3752 fsssvc - ok
08:54:42.0264 3752 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
08:54:42.0266 3752 Fs_Rec - ok
08:54:42.0313 3752 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
08:54:42.0316 3752 gagp30kx - ok
08:54:42.0366 3752 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:54:42.0368 3752 GEARAspiWDM - ok
08:54:42.0425 3752 ggflt (007aea2e06e7cef7372e40c277163959) C:\Windows\system32\DRIVERS\ggflt.sys
08:54:42.0427 3752 ggflt - ok
08:54:42.0512 3752 ggsemc (c73de35960ca75c5ab4ae636b127c64e) C:\Windows\system32\DRIVERS\ggsemc.sys
08:54:42.0515 3752 ggsemc - ok
08:54:42.0643 3752 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
08:54:42.0645 3752 GoToAssist - ok
08:54:42.0730 3752 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
08:54:42.0753 3752 gpsvc - ok
08:54:42.0885 3752 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
08:54:42.0891 3752 gupdate - ok
08:54:42.0924 3752 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
08:54:42.0926 3752 gupdatem - ok
08:54:42.0995 3752 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
08:54:42.0997 3752 gusvc - ok
08:54:43.0106 3752 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
08:54:43.0122 3752 HDAudBus - ok
08:54:43.0177 3752 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
08:54:43.0179 3752 HidBth - ok
08:54:43.0223 3752 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
08:54:43.0226 3752 HidIr - ok
08:54:43.0281 3752 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
08:54:43.0284 3752 hidserv - ok
08:54:43.0326 3752 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
08:54:43.0328 3752 HidUsb - ok
08:54:43.0372 3752 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
08:54:43.0378 3752 hkmsvc - ok
08:54:43.0419 3752 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
08:54:43.0422 3752 HpCISSs - ok
08:54:43.0485 3752 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
08:54:43.0498 3752 HTTP - ok
08:54:43.0564 3752 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
08:54:43.0567 3752 i2omp - ok
08:54:43.0632 3752 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
08:54:43.0635 3752 i8042prt - ok
08:54:43.0716 3752 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
08:54:43.0724 3752 iaStorV - ok
08:54:43.0821 3752 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:54:43.0855 3752 idsvc - ok
08:54:44.0152 3752 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
08:54:44.0380 3752 igfx - ok
08:54:44.0451 3752 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
08:54:44.0454 3752 iirsp - ok
08:54:44.0530 3752 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
08:54:44.0543 3752 IKEEXT - ok
08:54:44.0603 3752 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
08:54:44.0607 3752 IntcHdmiAddService - ok
08:54:44.0672 3752 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
08:54:44.0675 3752 intelide - ok
08:54:44.0748 3752 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
08:54:44.0751 3752 intelppm - ok
08:54:44.0858 3752 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
08:54:44.0863 3752 IPBusEnum - ok
08:54:44.0940 3752 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:54:44.0943 3752 IpFilterDriver - ok
08:54:44.0990 3752 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
08:54:44.0997 3752 iphlpsvc - ok
08:54:45.0022 3752 IpInIp - ok
08:54:45.0052 3752 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
08:54:45.0054 3752 IPMIDRV - ok
08:54:45.0094 3752 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
08:54:45.0099 3752 IPNAT - ok
08:54:45.0217 3752 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
08:54:45.0226 3752 iPod Service - ok
08:54:45.0315 3752 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
08:54:45.0318 3752 IRENUM - ok
08:54:45.0356 3752 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
08:54:45.0358 3752 isapnp - ok
08:54:45.0451 3752 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
08:54:45.0457 3752 iScsiPrt - ok
08:54:45.0499 3752 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
08:54:45.0503 3752 iteatapi - ok
08:54:45.0541 3752 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
08:54:45.0543 3752 iteraid - ok
08:54:45.0576 3752 k57nd60x (e1d7dcbb8811f8be7784046d4dd3a837) C:\Windows\system32\DRIVERS\k57nd60x.sys
08:54:45.0583 3752 k57nd60x - ok
08:54:45.0608 3752 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
08:54:45.0609 3752 kbdclass - ok
08:54:45.0632 3752 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
08:54:45.0634 3752 kbdhid - ok
08:54:45.0667 3752 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:45.0669 3752 KeyIso - ok
08:54:45.0734 3752 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
08:54:45.0747 3752 KSecDD - ok
08:54:45.0828 3752 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
08:54:45.0840 3752 KtmRm - ok
08:54:45.0887 3752 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
08:54:45.0891 3752 LanmanServer - ok
08:54:45.0940 3752 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
08:54:45.0976 3752 LanmanWorkstation - ok
08:54:46.0050 3752 Lavasoft Kernexplorer - ok
08:54:46.0186 3752 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
08:54:46.0188 3752 lltdio - ok
08:54:46.0248 3752 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
08:54:46.0256 3752 lltdsvc - ok
08:54:46.0288 3752 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
08:54:46.0292 3752 lmhosts - ok
08:54:46.0325 3752 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
08:54:46.0329 3752 LSI_FC - ok
08:54:46.0388 3752 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
08:54:46.0392 3752 LSI_SAS - ok
08:54:46.0462 3752 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
08:54:46.0466 3752 LSI_SCSI - ok
08:54:46.0494 3752 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
08:54:46.0498 3752 luafv - ok
08:54:46.0539 3752 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
08:54:46.0543 3752 Mcx2Svc - ok
08:54:46.0564 3752 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
08:54:46.0566 3752 megasas - ok
08:54:46.0632 3752 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
08:54:46.0643 3752 MegaSR - ok
08:54:46.0674 3752 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
08:54:46.0677 3752 MMCSS - ok
08:54:46.0733 3752 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
08:54:46.0736 3752 Modem - ok
08:54:46.0798 3752 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
08:54:46.0799 3752 monitor - ok
08:54:46.0818 3752 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
08:54:46.0821 3752 mouclass - ok
08:54:46.0849 3752 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
08:54:46.0851 3752 mouhid - ok
08:54:46.0888 3752 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
08:54:46.0892 3752 MountMgr - ok
08:54:46.0953 3752 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
08:54:46.0957 3752 mpio - ok
08:54:46.0999 3752 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
08:54:47.0002 3752 mpsdrv - ok
08:54:47.0050 3752 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
08:54:47.0064 3752 MpsSvc - ok
08:54:47.0090 3752 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
08:54:47.0092 3752 Mraid35x - ok
08:54:47.0140 3752 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
08:54:47.0145 3752 MRxDAV - ok
08:54:47.0187 3752 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
08:54:47.0191 3752 mrxsmb - ok
08:54:47.0237 3752 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:54:47.0245 3752 mrxsmb10 - ok
08:54:47.0270 3752 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:54:47.0274 3752 mrxsmb20 - ok
08:54:47.0354 3752 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
08:54:47.0357 3752 msahci - ok
08:54:47.0401 3752 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
08:54:47.0405 3752 msdsm - ok
08:54:47.0442 3752 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
08:54:47.0447 3752 MSDTC - ok
08:54:47.0511 3752 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
08:54:47.0514 3752 Msfs - ok
08:54:47.0579 3752 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
08:54:47.0581 3752 msisadrv - ok
08:54:47.0660 3752 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
08:54:47.0666 3752 MSiSCSI - ok
08:54:47.0706 3752 msiserver - ok
08:54:47.0762 3752 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
08:54:47.0764 3752 MSKSSRV - ok
08:54:47.0806 3752 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
08:54:47.0807 3752 MSPCLOCK - ok
08:54:47.0853 3752 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
08:54:47.0855 3752 MSPQM - ok
08:54:47.0900 3752 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
08:54:47.0906 3752 MsRPC - ok
08:54:47.0957 3752 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
08:54:47.0960 3752 mssmbios - ok
08:54:47.0996 3752 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
08:54:47.0998 3752 MSTEE - ok
08:54:48.0049 3752 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
08:54:48.0051 3752 Mup - ok
08:54:48.0099 3752 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
08:54:48.0111 3752 napagent - ok
08:54:48.0173 3752 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
08:54:48.0178 3752 NativeWifiP - ok
08:54:48.0232 3752 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
08:54:48.0240 3752 NDIS - ok
08:54:48.0272 3752 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
08:54:48.0273 3752 NdisTapi - ok
08:54:48.0308 3752 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
08:54:48.0310 3752 Ndisuio - ok
08:54:48.0351 3752 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
08:54:48.0355 3752 NdisWan - ok
08:54:48.0378 3752 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
08:54:48.0381 3752 NDProxy - ok
08:54:48.0407 3752 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
08:54:48.0410 3752 NetBIOS - ok
08:54:48.0459 3752 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
08:54:48.0466 3752 netbt - ok
08:54:48.0496 3752 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:48.0498 3752 Netlogon - ok
08:54:48.0575 3752 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
08:54:48.0581 3752 Netman - ok
08:54:48.0614 3752 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
08:54:48.0623 3752 netprofm - ok
08:54:48.0683 3752 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:54:48.0687 3752 NetTcpPortSharing - ok
08:54:48.0759 3752 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
08:54:48.0761 3752 nfrd960 - ok
08:54:48.0817 3752 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
08:54:48.0824 3752 NlaSvc - ok
08:54:48.0859 3752 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
08:54:48.0862 3752 Npfs - ok
08:54:48.0912 3752 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
08:54:48.0917 3752 nsi - ok
08:54:48.0957 3752 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
08:54:48.0961 3752 nsiproxy - ok
08:54:49.0029 3752 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
08:54:49.0066 3752 Ntfs - ok
08:54:49.0111 3752 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
08:54:49.0113 3752 ntrigdigi - ok
08:54:49.0129 3752 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
08:54:49.0131 3752 Null - ok
08:54:49.0160 3752 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
08:54:49.0164 3752 nvraid - ok
08:54:49.0189 3752 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
08:54:49.0191 3752 nvstor - ok
08:54:49.0232 3752 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
08:54:49.0237 3752 nv_agp - ok
08:54:49.0252 3752 NwlnkFlt - ok
08:54:49.0268 3752 NwlnkFwd - ok
08:54:49.0331 3752 OA008Ufd (9f4a5990f326f91f4d2fcdd869b15ff4) C:\Windows\system32\DRIVERS\OA008Ufd.sys
08:54:49.0336 3752 OA008Ufd - ok
08:54:49.0357 3752 OA008Vid (abfd4952e8c4d3f8af6c416c76fe6e15) C:\Windows\system32\DRIVERS\OA008Vid.sys
08:54:49.0365 3752 OA008Vid - ok
08:54:49.0496 3752 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:54:49.0510 3752 odserv - ok
08:54:49.0624 3752 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
08:54:49.0627 3752 ohci1394 - ok
08:54:49.0704 3752 OlyCamComm (f4cb9c1991314b1352ddbd8a968e4471) C:\Windows\system32\DRIVERS\OlyCamComm.sys
08:54:49.0708 3752 OlyCamComm - ok
08:54:49.0786 3752 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:54:49.0791 3752 ose - ok
08:54:49.0893 3752 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:49.0918 3752 p2pimsvc - ok
08:54:49.0948 3752 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:49.0958 3752 p2psvc - ok
08:54:50.0010 3752 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
08:54:50.0014 3752 Parport - ok
08:54:50.0055 3752 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
08:54:50.0058 3752 partmgr - ok
08:54:50.0091 3752 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
08:54:50.0094 3752 Parvdm - ok
08:54:50.0134 3752 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
08:54:50.0139 3752 PcaSvc - ok
08:54:50.0255 3752 PCD5SRVC{3F6A8B78-EC003E00-05040104} (42ede7d217325ff56cb8a9983cd7f73b) C:\PROGRA~1\DELLSU~1\HWDiag\bin\PCD5SRVC.pkms
08:54:50.0258 3752 PCD5SRVC{3F6A8B78-EC003E00-05040104} - ok
08:54:50.0357 3752 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
08:54:50.0364 3752 pci - ok
08:54:50.0426 3752 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
08:54:50.0429 3752 pciide - ok
08:54:50.0483 3752 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
08:54:50.0489 3752 pcmcia - ok
08:54:50.0542 3752 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
08:54:50.0577 3752 PEAUTH - ok
08:54:50.0666 3752 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
08:54:50.0717 3752 pla - ok
08:54:50.0763 3752 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
08:54:50.0768 3752 PlugPlay - ok
08:54:50.0831 3752 Pml Driver HPZ12 (2b81b089d9364083f5046ad1307a65be) C:\Windows\system32\HPZipm12.dll
08:54:50.0834 3752 Pml Driver HPZ12 - ok
08:54:50.0894 3752 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:50.0904 3752 PNRPAutoReg - ok
08:54:50.0933 3752 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:50.0943 3752 PNRPsvc - ok
08:54:50.0991 3752 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
08:54:51.0003 3752 PolicyAgent - ok
08:54:51.0058 3752 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
08:54:51.0061 3752 PptpMiniport - ok
08:54:51.0094 3752 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
08:54:51.0097 3752 Processor - ok
08:54:51.0115 3752 Profos - ok
08:54:51.0162 3752 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
08:54:51.0171 3752 ProfSvc - ok
08:54:51.0203 3752 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:51.0205 3752 ProtectedStorage - ok
08:54:51.0268 3752 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
08:54:51.0271 3752 PSched - ok
08:54:51.0382 3752 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
08:54:51.0384 3752 PxHelp20 - ok
08:54:51.0544 3752 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
08:54:51.0581 3752 ql2300 - ok
08:54:51.0615 3752 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
08:54:51.0619 3752 ql40xx - ok
08:54:51.0684 3752 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
08:54:51.0695 3752 QWAVE - ok
08:54:51.0732 3752 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
08:54:51.0734 3752 QWAVEdrv - ok
08:54:51.0840 3752 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
08:54:51.0901 3752 R300 - ok
08:54:51.0949 3752 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
08:54:51.0952 3752 RasAcd - ok
08:54:52.0007 3752 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
08:54:52.0014 3752 RasAuto - ok
08:54:52.0047 3752 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
08:54:52.0052 3752 Rasl2tp - ok
08:54:52.0114 3752 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
08:54:52.0124 3752 RasMan - ok
08:54:52.0162 3752 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
08:54:52.0165 3752 RasPppoe - ok
08:54:52.0205 3752 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
08:54:52.0209 3752 RasSstp - ok
08:54:52.0255 3752 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
08:54:52.0263 3752 rdbss - ok
08:54:52.0300 3752 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
08:54:52.0304 3752 RDPCDD - ok
08:54:52.0337 3752 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
08:54:52.0345 3752 rdpdr - ok
08:54:52.0361 3752 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
08:54:52.0363 3752 RDPENCDD - ok
08:54:52.0432 3752 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
08:54:52.0439 3752 RDPWD - ok
08:54:52.0513 3752 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
08:54:52.0518 3752 RemoteAccess - ok
08:54:52.0566 3752 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
08:54:52.0572 3752 RemoteRegistry - ok
08:54:52.0658 3752 rimmptsk (c2ef513bbe069f0d4ee0938a76f975d3) C:\Windows\system32\DRIVERS\rimmptsk.sys
08:54:52.0660 3752 rimmptsk - ok
08:54:52.0682 3752 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
08:54:52.0684 3752 rimsptsk - ok
08:54:52.0716 3752 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
08:54:52.0719 3752 rismxdp - ok
08:54:52.0761 3752 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
08:54:52.0764 3752 RpcLocator - ok
08:54:52.0817 3752 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
08:54:52.0827 3752 RpcSs - ok
08:54:52.0880 3752 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
08:54:52.0885 3752 rspndr - ok
08:54:52.0996 3752 s1018bus (1c5c2cb892553d2cf3f45a4bb323fcd6) C:\Windows\system32\DRIVERS\s1018bus.sys
08:54:53.0000 3752 s1018bus - ok
08:54:53.0072 3752 s1018mdfl (38f5ea219593f19b6b3a1b9c169e3b61) C:\Windows\system32\DRIVERS\s1018mdfl.sys
08:54:53.0074 3752 s1018mdfl - ok
08:54:53.0111 3752 s1018mdm (666af6b64fc7df92d3ca4819ea91631d) C:\Windows\system32\DRIVERS\s1018mdm.sys
08:54:53.0115 3752 s1018mdm - ok
08:54:53.0145 3752 s1018mgmt (f4ceda6e2ddff2af8bd745615a7ca9c0) C:\Windows\system32\DRIVERS\s1018mgmt.sys
08:54:53.0148 3752 s1018mgmt - ok
08:54:53.0192 3752 s1018nd5 (3622d9ff2253dcbe885b10736609a4ca) C:\Windows\system32\DRIVERS\s1018nd5.sys
08:54:53.0194 3752 s1018nd5 - ok
08:54:53.0234 3752 s1018obex (49431efda842b474531c29ffae9f5d09) C:\Windows\system32\DRIVERS\s1018obex.sys
08:54:53.0240 3752 s1018obex - ok
08:54:53.0282 3752 s1018unic (ac6b514cb4474f4c867d7cdc9cd54f05) C:\Windows\system32\DRIVERS\s1018unic.sys
08:54:53.0287 3752 s1018unic - ok
08:54:53.0315 3752 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:53.0318 3752 SamSs - ok
08:54:53.0377 3752 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
08:54:53.0380 3752 sbp2port - ok
08:54:53.0451 3752 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
08:54:53.0458 3752 SCardSvr - ok
08:54:53.0516 3752 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
08:54:53.0527 3752 Schedule - ok
08:54:53.0551 3752 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
08:54:53.0552 3752 SCPolicySvc - ok
08:54:53.0599 3752 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
08:54:53.0603 3752 sdbus - ok
08:54:53.0651 3752 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
08:54:53.0658 3752 SDRSVC - ok
08:54:53.0757 3752 SeaPort (16a252022535b680046f6e34e136d378) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
08:54:53.0763 3752 SeaPort - ok
08:54:53.0811 3752 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
08:54:53.0813 3752 secdrv - ok
08:54:53.0855 3752 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
08:54:53.0860 3752 seclogon - ok
08:54:53.0954 3752 seehcri (e5b56569a9f79b70314fede6c953641e) C:\Windows\system32\DRIVERS\seehcri.sys
08:54:53.0957 3752 seehcri - ok
08:54:53.0986 3752 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
08:54:53.0992 3752 SENS - ok
08:54:54.0032 3752 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
08:54:54.0035 3752 Serenum - ok
08:54:54.0064 3752 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
08:54:54.0068 3752 Serial - ok
08:54:54.0100 3752 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
08:54:54.0103 3752 sermouse - ok
08:54:54.0144 3752 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
08:54:54.0150 3752 SessionEnv - ok
08:54:54.0181 3752 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
08:54:54.0183 3752 sffdisk - ok
08:54:54.0206 3752 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
08:54:54.0209 3752 sffp_mmc - ok
08:54:54.0231 3752 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
08:54:54.0232 3752 sffp_sd - ok
08:54:54.0263 3752 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
08:54:54.0265 3752 sfloppy - ok
08:54:54.0307 3752 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
08:54:54.0318 3752 SharedAccess - ok
08:54:54.0356 3752 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
08:54:54.0362 3752 ShellHWDetection - ok
08:54:54.0403 3752 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
08:54:54.0406 3752 sisagp - ok
08:54:54.0424 3752 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
08:54:54.0426 3752 SiSRaid2 - ok
08:54:54.0456 3752 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
08:54:54.0459 3752 SiSRaid4 - ok
08:54:54.0582 3752 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
08:54:54.0681 3752 slsvc - ok
08:54:54.0754 3752 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
08:54:54.0760 3752 SLUINotify - ok
08:54:54.0816 3752 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
08:54:54.0824 3752 Smb - ok
08:54:54.0874 3752 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
08:54:54.0878 3752 SNMPTRAP - ok
08:54:54.0937 3752 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
08:54:54.0940 3752 spldr - ok
08:54:54.0979 3752 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
08:54:54.0984 3752 Spooler - ok
08:54:55.0043 3752 sprtsvc_DellSupportCenter (777115c9cc675bd98127660712d2f784) C:\Program Files\Dell Support Center\bin\sprtsvc.exe
08:54:55.0046 3752 sprtsvc_DellSupportCenter - ok
08:54:55.0172 3752 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
08:54:55.0182 3752 srv - ok
08:54:55.0236 3752 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
08:54:55.0248 3752 srv2 - ok
08:54:55.0285 3752 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
08:54:55.0289 3752 srvnet - ok
08:54:55.0334 3752 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
08:54:55.0339 3752 SSDPSRV - ok
08:54:55.0411 3752 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
08:54:55.0418 3752 SstpSvc - ok
08:54:55.0493 3752 STacSV (ddeb942850278d67edc108d57f774bf8) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe
08:54:55.0496 3752 STacSV - ok
08:54:55.0549 3752 STHDA (c4be9c3af8af6f2e4cdd22fcabf77a1b) C:\Windows\system32\DRIVERS\stwrt.sys
08:54:55.0562 3752 STHDA - ok
08:54:55.0618 3752 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
08:54:55.0619 3752 StillCam - ok
08:54:55.0671 3752 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
08:54:55.0678 3752 stisvc - ok
08:54:55.0748 3752 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
08:54:55.0752 3752 stllssvr - ok
08:54:55.0855 3752 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
08:54:55.0857 3752 swenum - ok
08:54:55.0928 3752 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
08:54:55.0940 3752 swprv - ok
08:54:55.0999 3752 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
08:54:56.0002 3752 Symc8xx - ok
08:54:56.0033 3752 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
08:54:56.0036 3752 Sym_hi - ok
08:54:56.0074 3752 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
08:54:56.0077 3752 Sym_u3 - ok
08:54:56.0181 3752 SynTP (fb86fdd993a6a0122a2f526221e5161f) C:\Windows\system32\DRIVERS\SynTP.sys
08:54:56.0188 3752 SynTP - ok
08:54:56.0254 3752 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
08:54:56.0280 3752 SysMain - ok
08:54:56.0331 3752 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
08:54:56.0337 3752 TabletInputService - ok
08:54:56.0389 3752 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
08:54:56.0394 3752 TapiSrv - ok
08:54:56.0421 3752 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
08:54:56.0425 3752 TBS - ok
08:54:56.0511 3752 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
08:54:56.0523 3752 Tcpip - ok
08:54:56.0577 3752 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
08:54:56.0589 3752 Tcpip6 - ok
08:54:56.0638 3752 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
08:54:56.0641 3752 tcpipreg - ok
08:54:56.0683 3752 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
08:54:56.0689 3752 TDPIPE - ok
08:54:56.0711 3752 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
08:54:56.0714 3752 TDTCP - ok
08:54:56.0763 3752 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
08:54:56.0767 3752 tdx - ok
08:54:56.0809 3752 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
08:54:56.0812 3752 TermDD - ok
08:54:56.0869 3752 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
08:54:56.0877 3752 TermService - ok
08:54:56.0928 3752 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
08:54:56.0934 3752 Themes - ok
08:54:56.0974 3752 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
08:54:56.0977 3752 THREADORDER - ok
08:54:57.0027 3752 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
08:54:57.0034 3752 TrkWks - ok
08:54:57.0077 3752 Trufos - ok
08:54:57.0155 3752 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
08:54:57.0157 3752 TrustedInstaller - ok
08:54:57.0226 3752 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
08:54:57.0229 3752 tssecsrv - ok
08:54:57.0253 3752 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
08:54:57.0254 3752 tunmp - ok
08:54:57.0302 3752 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
08:54:57.0305 3752 tunnel - ok
08:54:57.0351 3752 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
08:54:57.0354 3752 uagp35 - ok
08:54:57.0417 3752 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
08:54:57.0426 3752 udfs - ok
08:54:57.0480 3752 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
08:54:57.0485 3752 UI0Detect - ok
08:54:57.0543 3752 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
08:54:57.0546 3752 uliagpkx - ok
08:54:57.0616 3752 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
08:54:57.0624 3752 uliahci - ok
08:54:57.0651 3752 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
08:54:57.0655 3752 UlSata - ok
08:54:57.0688 3752 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
08:54:57.0693 3752 ulsata2 - ok
08:54:57.0722 3752 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
08:54:57.0725 3752 umbus - ok
08:54:57.0774 3752 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
08:54:57.0781 3752 upnphost - ok
08:54:57.0856 3752 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
08:54:57.0859 3752 USBAAPL - ok
08:54:57.0897 3752 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
08:54:57.0902 3752 usbccgp - ok
08:54:57.0956 3752 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
08:54:57.0960 3752 usbcir - ok
08:54:58.0010 3752 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
08:54:58.0013 3752 usbehci - ok
08:54:58.0074 3752 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
08:54:58.0081 3752 usbhub - ok
08:54:58.0130 3752 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
08:54:58.0133 3752 usbohci - ok
08:54:58.0178 3752 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
08:54:58.0181 3752 usbprint - ok
08:54:58.0219 3752 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:54:58.0222 3752 USBSTOR - ok
08:54:58.0253 3752 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
08:54:58.0256 3752 usbuhci - ok
08:54:58.0309 3752 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
08:54:58.0314 3752 UxSms - ok
08:54:58.0365 3752 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
08:54:58.0379 3752 vds - ok
08:54:58.0428 3752 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
08:54:58.0431 3752 vga - ok
08:54:58.0471 3752 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
08:54:58.0474 3752 VgaSave - ok
08:54:58.0503 3752 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
08:54:58.0506 3752 viaagp - ok
08:54:58.0526 3752 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
08:54:58.0529 3752 ViaC7 - ok
08:54:58.0557 3752 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
08:54:58.0559 3752 viaide - ok
08:54:58.0585 3752 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
08:54:58.0588 3752 volmgr - ok
08:54:58.0637 3752 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
08:54:58.0646 3752 volmgrx - ok
08:54:58.0698 3752 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
08:54:58.0704 3752 volsnap - ok
08:54:58.0743 3752 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
08:54:58.0747 3752 vsmraid - ok
08:54:58.0812 3752 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
08:54:58.0848 3752 VSS - ok
08:54:58.0875 3752 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
08:54:58.0881 3752 W32Time - ok
08:54:58.0922 3752 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
08:54:58.0925 3752 WacomPen - ok
08:54:58.0951 3752 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
08:54:58.0955 3752 Wanarp - ok
08:54:58.0961 3752 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
08:54:58.0962 3752 Wanarpv6 - ok
08:54:59.0013 3752 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
08:54:59.0036 3752 wcncsvc - ok
08:54:59.0080 3752 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
08:54:59.0085 3752 WcsPlugInService - ok
08:54:59.0131 3752 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
08:54:59.0133 3752 Wd - ok
08:54:59.0179 3752 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
08:54:59.0194 3752 Wdf01000 - ok
08:54:59.0242 3752 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
08:54:59.0246 3752 WdiServiceHost - ok
08:54:59.0258 3752 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
08:54:59.0261 3752 WdiSystemHost - ok
08:54:59.0323 3752 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
08:54:59.0332 3752 WebClient - ok
08:54:59.0369 3752 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
08:54:59.0376 3752 Wecsvc - ok
08:54:59.0440 3752 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
08:54:59.0445 3752 wercplsupport - ok
08:54:59.0477 3752 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
08:54:59.0483 3752 WerSvc - ok
08:54:59.0568 3752 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
08:54:59.0577 3752 WinDefend - ok
08:54:59.0585 3752 WinHttpAutoProxySvc - ok
08:54:59.0712 3752 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
08:54:59.0718 3752 Winmgmt - ok
08:54:59.0793 3752 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
08:54:59.0842 3752 WinRM - ok
08:54:59.0944 3752 WinUSB (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.sys
08:54:59.0947 3752 WinUSB - ok
08:55:00.0002 3752 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
08:55:00.0011 3752 Wlansvc - ok
08:55:00.0161 3752 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:55:00.0215 3752 wlidsvc - ok
08:55:00.0274 3752 wltrysvc - ok
08:55:00.0330 3752 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
08:55:00.0332 3752 WmiAcpi - ok
08:55:00.0406 3752 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
08:55:00.0413 3752 wmiApSrv - ok
08:55:00.0479 3752 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
08:55:00.0519 3752 WMPNetworkSvc - ok
08:55:00.0607 3752 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
08:55:00.0615 3752 WPCSvc - ok
08:55:00.0674 3752 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
08:55:00.0680 3752 WPDBusEnum - ok
08:55:00.0758 3752 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
08:55:00.0761 3752 WpdUsb - ok
08:55:00.0876 3752 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
08:55:00.0908 3752 WPFFontCache_v0400 - ok
08:55:01.0016 3752 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
08:55:01.0018 3752 ws2ifsl - ok
08:55:01.0070 3752 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
08:55:01.0074 3752 wscsvc - ok
08:55:01.0171 3752 WSDPrintDevice (4422ac5ed8d4c2f0db63e71d4c069dd7) C:\Windows\system32\DRIVERS\WSDPrint.sys
08:55:01.0174 3752 WSDPrintDevice - ok
08:55:01.0187 3752 WSearch - ok
08:55:01.0310 3752 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
08:55:01.0370 3752 wuauserv - ok
08:55:01.0444 3752 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
08:55:01.0450 3752 WUDFRd - ok
08:55:01.0500 3752 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
08:55:01.0506 3752 wudfsvc - ok
08:55:01.0564 3752 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
08:55:01.0631 3752 \Device\Harddisk0\DR0 - ok
08:55:01.0642 3752 Boot (0x1200) (ec80399a57b357108e39be1537784c88) \Device\Harddisk0\DR0\Partition0
08:55:01.0646 3752 \Device\Harddisk0\DR0\Partition0 - ok
08:55:01.0651 3752 Boot (0x1200) (604ef52d328b947176036e4e1328c1ad) \Device\Harddisk0\DR0\Partition1
08:55:01.0654 3752 \Device\Harddisk0\DR0\Partition1 - ok
08:55:01.0655 3752 ============================================================
08:55:01.0655 3752 Scan finished
08:55:01.0655 3752 ============================================================
08:55:01.0674 5288 Detected object count: 0
08:55:01.0674 5288 Actual detected object count: 0




aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-01 09:09:07
-----------------------------
09:09:07.024 OS Version: Windows 6.0.6002 Service Pack 2
09:09:07.024 Number of processors: 2 586 0x170A
09:09:07.025 ComputerName: TERRI-PC UserName: Terri
09:09:12.479 Initialize success
09:10:03.818 AVAST engine defs: 12033101
09:10:23.766 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
09:10:23.770 Disk 0 Vendor: ST9500325AS 0002DEM1 Size: 476940MB BusType: 3
09:10:23.839 Disk 0 MBR read successfully
09:10:23.842 Disk 0 MBR scan
09:10:23.848 Disk 0 Windows VISTA default MBR code
09:10:23.854 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
09:10:23.872 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15000 MB offset 80325
09:10:23.893 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 461899 MB offset 30800325
09:10:23.903 Disk 0 scanning sectors +976771120
09:10:24.006 Disk 0 scanning C:\Windows\system32\drivers
09:10:39.326 Service scanning
09:11:15.081 Modules scanning
09:11:35.567 Disk 0 trace - called modules:
09:11:35.948 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys ndis.sys bcmwl6.sys dxgkrnl.sys igdkmd32.sys watchdog.sys tcpip.sys NETIO.SYS
09:11:35.956 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ad354d0]
09:11:35.965 3 CLASSPNP.SYS[8fba98b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8aacdb98]
09:11:38.730 AVAST engine scan C:\Windows
09:12:02.961 AVAST engine scan C:\Windows\system32
09:16:25.376 AVAST engine scan C:\Windows\system32\drivers
09:16:44.469 AVAST engine scan C:\Users\Terri
09:17:54.516 Disk 0 MBR has been saved successfully to "C:\Users\Terri\Desktop\MBR.dat"
09:17:54.543 The log file has been saved successfully to "C:\Users\Terri\Desktop\aswMBR 120401.txt"

#10 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 01 April 2012 - 03:22 AM

Both programs ran fine. Google is still redirecting at this stage.

TDSSKiller:

08:53:34.0439 5136 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
08:53:34.0602 5136 ============================================================
08:53:34.0602 5136 Current date / time: 2012/04/01 08:53:34.0602
08:53:34.0602 5136 SystemInfo:
08:53:34.0602 5136
08:53:34.0602 5136 OS Version: 6.0.6002 ServicePack: 2.0
08:53:34.0602 5136 Product type: Workstation
08:53:34.0602 5136 ComputerName: TERRI-PC
08:53:34.0602 5136 UserName: Terri
08:53:34.0602 5136 Windows directory: C:\Windows
08:53:34.0602 5136 System windows directory: C:\Windows
08:53:34.0603 5136 Processor architecture: Intel x86
08:53:34.0603 5136 Number of processors: 2
08:53:34.0603 5136 Page size: 0x1000
08:53:34.0603 5136 Boot type: Normal boot
08:53:34.0603 5136 ============================================================
08:53:36.0092 5136 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
08:53:36.0096 5136 \Device\Harddisk0\DR0:
08:53:36.0097 5136 MBR used
08:53:36.0097 5136 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
08:53:36.0097 5136 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B
08:53:36.0160 5136 Initialize success
08:53:36.0160 5136 ============================================================
08:54:32.0866 3752 ============================================================
08:54:32.0866 3752 Scan started
08:54:32.0866 3752 Mode: Manual;
08:54:32.0866 3752 ============================================================
08:54:34.0299 3752 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
08:54:34.0306 3752 ACPI - ok
08:54:34.0359 3752 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
08:54:34.0373 3752 adp94xx - ok
08:54:34.0421 3752 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
08:54:34.0430 3752 adpahci - ok
08:54:34.0473 3752 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
08:54:34.0477 3752 adpu160m - ok
08:54:34.0517 3752 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
08:54:34.0524 3752 adpu320 - ok
08:54:34.0605 3752 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
08:54:34.0606 3752 AeLookupSvc - ok
08:54:34.0729 3752 AESTFilters (827dbc22c96eecf6d36a13162fabafd3) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\aestsrv.exe
08:54:34.0733 3752 AESTFilters - ok
08:54:34.0884 3752 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
08:54:34.0892 3752 AFD - ok
08:54:34.0963 3752 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
08:54:34.0965 3752 agp440 - ok
08:54:35.0038 3752 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
08:54:35.0041 3752 aic78xx - ok
08:54:35.0078 3752 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
08:54:35.0080 3752 ALG - ok
08:54:35.0120 3752 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
08:54:35.0122 3752 aliide - ok
08:54:35.0176 3752 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
08:54:35.0179 3752 amdagp - ok
08:54:35.0247 3752 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
08:54:35.0249 3752 amdide - ok
08:54:35.0278 3752 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
08:54:35.0282 3752 AmdK7 - ok
08:54:35.0306 3752 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
08:54:35.0308 3752 AmdK8 - ok
08:54:35.0382 3752 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
08:54:35.0384 3752 Appinfo - ok
08:54:35.0501 3752 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:54:35.0508 3752 Apple Mobile Device - ok
08:54:35.0803 3752 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
08:54:35.0807 3752 arc - ok
08:54:35.0890 3752 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
08:54:35.0894 3752 arcsas - ok
08:54:35.0963 3752 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
08:54:35.0965 3752 AsyncMac - ok
08:54:36.0021 3752 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
08:54:36.0022 3752 atapi - ok
08:54:36.0122 3752 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
08:54:36.0133 3752 AudioEndpointBuilder - ok
08:54:36.0143 3752 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
08:54:36.0148 3752 Audiosrv - ok
08:54:36.0240 3752 BCM42RLY (423c7b87e886ac93d22936ea82665f83) C:\Windows\system32\drivers\BCM42RLY.sys
08:54:36.0242 3752 BCM42RLY - ok
08:54:36.0350 3752 BCM43XX (b56999be8f22ba3071e4ceafa9e82e26) C:\Windows\system32\DRIVERS\bcmwl6.sys
08:54:36.0398 3752 BCM43XX - ok
08:54:36.0562 3752 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
08:54:36.0565 3752 Beep - ok
08:54:36.0666 3752 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
08:54:36.0676 3752 BFE - ok
08:54:36.0777 3752 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\system32\qmgr.dll
08:54:36.0789 3752 BITS - ok
08:54:36.0864 3752 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
08:54:36.0867 3752 blbdrive - ok
08:54:36.0988 3752 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
08:54:36.0997 3752 Bonjour Service - ok
08:54:37.0095 3752 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
08:54:37.0098 3752 bowser - ok
08:54:37.0194 3752 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
08:54:37.0196 3752 BrFiltLo - ok
08:54:37.0268 3752 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
08:54:37.0270 3752 BrFiltUp - ok
08:54:37.0323 3752 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
08:54:37.0327 3752 Browser - ok
08:54:37.0403 3752 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
08:54:37.0406 3752 Brserid - ok
08:54:37.0467 3752 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
08:54:37.0470 3752 BrSerWdm - ok
08:54:37.0513 3752 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
08:54:37.0516 3752 BrUsbMdm - ok
08:54:37.0555 3752 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
08:54:37.0558 3752 BrUsbSer - ok
08:54:37.0647 3752 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
08:54:37.0649 3752 BTHMODEM - ok
08:54:37.0742 3752 catchme - ok
08:54:37.0844 3752 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
08:54:37.0849 3752 cdfs - ok
08:54:37.0952 3752 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
08:54:37.0956 3752 cdrom - ok
08:54:38.0089 3752 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
08:54:38.0092 3752 CertPropSvc - ok
08:54:38.0147 3752 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
08:54:38.0150 3752 circlass - ok
08:54:38.0223 3752 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
08:54:38.0230 3752 CLFS - ok
08:54:38.0305 3752 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:54:38.0309 3752 clr_optimization_v2.0.50727_32 - ok
08:54:38.0369 3752 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:54:38.0373 3752 clr_optimization_v4.0.30319_32 - ok
08:54:38.0455 3752 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
08:54:38.0456 3752 CmBatt - ok
08:54:38.0517 3752 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
08:54:38.0519 3752 cmdide - ok
08:54:38.0580 3752 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
08:54:38.0582 3752 Compbatt - ok
08:54:38.0607 3752 COMSysApp - ok
08:54:38.0648 3752 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
08:54:38.0651 3752 crcdisk - ok
08:54:38.0688 3752 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
08:54:38.0690 3752 Crusoe - ok
08:54:38.0784 3752 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
08:54:38.0790 3752 CryptSvc - ok
08:54:38.0876 3752 CtClsFlt (ec232b13241caf587323b84981e0dda3) C:\Windows\system32\DRIVERS\CtClsFlt.sys
08:54:38.0881 3752 CtClsFlt - ok
08:54:38.0995 3752 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
08:54:39.0006 3752 DcomLaunch - ok
08:54:39.0056 3752 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
08:54:39.0060 3752 DfsC - ok
08:54:39.0174 3752 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
08:54:39.0248 3752 DFSR - ok
08:54:39.0384 3752 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
08:54:39.0391 3752 Dhcp - ok
08:54:39.0499 3752 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
08:54:39.0502 3752 disk - ok
08:54:39.0591 3752 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
08:54:39.0595 3752 Dnscache - ok
08:54:39.0729 3752 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
08:54:39.0731 3752 DockLoginService - ok
08:54:39.0824 3752 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
08:54:39.0831 3752 dot3svc - ok
08:54:39.0920 3752 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
08:54:39.0923 3752 DPS - ok
08:54:39.0992 3752 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
08:54:39.0994 3752 drmkaud - ok
08:54:40.0061 3752 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
08:54:40.0084 3752 DXGKrnl - ok
08:54:40.0171 3752 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
08:54:40.0178 3752 e1express - ok
08:54:40.0254 3752 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
08:54:40.0259 3752 E1G60 - ok
08:54:40.0352 3752 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
08:54:40.0356 3752 EapHost - ok
08:54:40.0494 3752 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
08:54:40.0502 3752 Ecache - ok
08:54:40.0572 3752 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
08:54:40.0581 3752 ehRecvr - ok
08:54:40.0598 3752 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
08:54:40.0603 3752 ehSched - ok
08:54:40.0620 3752 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
08:54:40.0622 3752 ehstart - ok
08:54:40.0756 3752 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
08:54:40.0766 3752 elxstor - ok
08:54:40.0958 3752 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
08:54:40.0983 3752 EMDMgmt - ok
08:54:41.0062 3752 ErrDev (f2a80de2d1b7116052c09cb4d4ca1416) C:\Windows\system32\drivers\errdev.sys
08:54:41.0064 3752 ErrDev - ok
08:54:41.0149 3752 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
08:54:41.0153 3752 EventSystem - ok
08:54:41.0244 3752 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
08:54:41.0250 3752 exfat - ok
08:54:41.0288 3752 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
08:54:41.0294 3752 fastfat - ok
08:54:41.0391 3752 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
08:54:41.0393 3752 fdc - ok
08:54:41.0446 3752 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
08:54:41.0448 3752 fdPHost - ok
08:54:41.0463 3752 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
08:54:41.0465 3752 FDResPub - ok
08:54:41.0552 3752 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
08:54:41.0554 3752 FileInfo - ok
08:54:41.0575 3752 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
08:54:41.0578 3752 Filetrace - ok
08:54:41.0601 3752 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
08:54:41.0603 3752 flpydisk - ok
08:54:41.0643 3752 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
08:54:41.0649 3752 FltMgr - ok
08:54:41.0759 3752 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
08:54:41.0771 3752 FontCache - ok
08:54:41.0837 3752 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
08:54:41.0840 3752 FontCache3.0.0.0 - ok
08:54:41.0939 3752 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
08:54:41.0941 3752 fssfltr - ok
08:54:42.0125 3752 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
08:54:42.0171 3752 fsssvc - ok
08:54:42.0264 3752 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
08:54:42.0266 3752 Fs_Rec - ok
08:54:42.0313 3752 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
08:54:42.0316 3752 gagp30kx - ok
08:54:42.0366 3752 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:54:42.0368 3752 GEARAspiWDM - ok
08:54:42.0425 3752 ggflt (007aea2e06e7cef7372e40c277163959) C:\Windows\system32\DRIVERS\ggflt.sys
08:54:42.0427 3752 ggflt - ok
08:54:42.0512 3752 ggsemc (c73de35960ca75c5ab4ae636b127c64e) C:\Windows\system32\DRIVERS\ggsemc.sys
08:54:42.0515 3752 ggsemc - ok
08:54:42.0643 3752 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
08:54:42.0645 3752 GoToAssist - ok
08:54:42.0730 3752 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
08:54:42.0753 3752 gpsvc - ok
08:54:42.0885 3752 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
08:54:42.0891 3752 gupdate - ok
08:54:42.0924 3752 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
08:54:42.0926 3752 gupdatem - ok
08:54:42.0995 3752 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
08:54:42.0997 3752 gusvc - ok
08:54:43.0106 3752 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
08:54:43.0122 3752 HDAudBus - ok
08:54:43.0177 3752 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
08:54:43.0179 3752 HidBth - ok
08:54:43.0223 3752 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
08:54:43.0226 3752 HidIr - ok
08:54:43.0281 3752 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\System32\hidserv.dll
08:54:43.0284 3752 hidserv - ok
08:54:43.0326 3752 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
08:54:43.0328 3752 HidUsb - ok
08:54:43.0372 3752 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
08:54:43.0378 3752 hkmsvc - ok
08:54:43.0419 3752 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
08:54:43.0422 3752 HpCISSs - ok
08:54:43.0485 3752 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
08:54:43.0498 3752 HTTP - ok
08:54:43.0564 3752 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
08:54:43.0567 3752 i2omp - ok
08:54:43.0632 3752 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
08:54:43.0635 3752 i8042prt - ok
08:54:43.0716 3752 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
08:54:43.0724 3752 iaStorV - ok
08:54:43.0821 3752 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:54:43.0855 3752 idsvc - ok
08:54:44.0152 3752 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
08:54:44.0380 3752 igfx - ok
08:54:44.0451 3752 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
08:54:44.0454 3752 iirsp - ok
08:54:44.0530 3752 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
08:54:44.0543 3752 IKEEXT - ok
08:54:44.0603 3752 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
08:54:44.0607 3752 IntcHdmiAddService - ok
08:54:44.0672 3752 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
08:54:44.0675 3752 intelide - ok
08:54:44.0748 3752 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
08:54:44.0751 3752 intelppm - ok
08:54:44.0858 3752 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
08:54:44.0863 3752 IPBusEnum - ok
08:54:44.0940 3752 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:54:44.0943 3752 IpFilterDriver - ok
08:54:44.0990 3752 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
08:54:44.0997 3752 iphlpsvc - ok
08:54:45.0022 3752 IpInIp - ok
08:54:45.0052 3752 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
08:54:45.0054 3752 IPMIDRV - ok
08:54:45.0094 3752 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
08:54:45.0099 3752 IPNAT - ok
08:54:45.0217 3752 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe
08:54:45.0226 3752 iPod Service - ok
08:54:45.0315 3752 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
08:54:45.0318 3752 IRENUM - ok
08:54:45.0356 3752 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
08:54:45.0358 3752 isapnp - ok
08:54:45.0451 3752 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
08:54:45.0457 3752 iScsiPrt - ok
08:54:45.0499 3752 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
08:54:45.0503 3752 iteatapi - ok
08:54:45.0541 3752 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
08:54:45.0543 3752 iteraid - ok
08:54:45.0576 3752 k57nd60x (e1d7dcbb8811f8be7784046d4dd3a837) C:\Windows\system32\DRIVERS\k57nd60x.sys
08:54:45.0583 3752 k57nd60x - ok
08:54:45.0608 3752 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
08:54:45.0609 3752 kbdclass - ok
08:54:45.0632 3752 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
08:54:45.0634 3752 kbdhid - ok
08:54:45.0667 3752 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:45.0669 3752 KeyIso - ok
08:54:45.0734 3752 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
08:54:45.0747 3752 KSecDD - ok
08:54:45.0828 3752 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
08:54:45.0840 3752 KtmRm - ok
08:54:45.0887 3752 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\System32\srvsvc.dll
08:54:45.0891 3752 LanmanServer - ok
08:54:45.0940 3752 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
08:54:45.0976 3752 LanmanWorkstation - ok
08:54:46.0050 3752 Lavasoft Kernexplorer - ok
08:54:46.0186 3752 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
08:54:46.0188 3752 lltdio - ok
08:54:46.0248 3752 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
08:54:46.0256 3752 lltdsvc - ok
08:54:46.0288 3752 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
08:54:46.0292 3752 lmhosts - ok
08:54:46.0325 3752 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
08:54:46.0329 3752 LSI_FC - ok
08:54:46.0388 3752 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
08:54:46.0392 3752 LSI_SAS - ok
08:54:46.0462 3752 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
08:54:46.0466 3752 LSI_SCSI - ok
08:54:46.0494 3752 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
08:54:46.0498 3752 luafv - ok
08:54:46.0539 3752 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
08:54:46.0543 3752 Mcx2Svc - ok
08:54:46.0564 3752 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
08:54:46.0566 3752 megasas - ok
08:54:46.0632 3752 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
08:54:46.0643 3752 MegaSR - ok
08:54:46.0674 3752 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
08:54:46.0677 3752 MMCSS - ok
08:54:46.0733 3752 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
08:54:46.0736 3752 Modem - ok
08:54:46.0798 3752 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
08:54:46.0799 3752 monitor - ok
08:54:46.0818 3752 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
08:54:46.0821 3752 mouclass - ok
08:54:46.0849 3752 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
08:54:46.0851 3752 mouhid - ok
08:54:46.0888 3752 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
08:54:46.0892 3752 MountMgr - ok
08:54:46.0953 3752 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
08:54:46.0957 3752 mpio - ok
08:54:46.0999 3752 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
08:54:47.0002 3752 mpsdrv - ok
08:54:47.0050 3752 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
08:54:47.0064 3752 MpsSvc - ok
08:54:47.0090 3752 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
08:54:47.0092 3752 Mraid35x - ok
08:54:47.0140 3752 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
08:54:47.0145 3752 MRxDAV - ok
08:54:47.0187 3752 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
08:54:47.0191 3752 mrxsmb - ok
08:54:47.0237 3752 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:54:47.0245 3752 mrxsmb10 - ok
08:54:47.0270 3752 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:54:47.0274 3752 mrxsmb20 - ok
08:54:47.0354 3752 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
08:54:47.0357 3752 msahci - ok
08:54:47.0401 3752 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
08:54:47.0405 3752 msdsm - ok
08:54:47.0442 3752 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
08:54:47.0447 3752 MSDTC - ok
08:54:47.0511 3752 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
08:54:47.0514 3752 Msfs - ok
08:54:47.0579 3752 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
08:54:47.0581 3752 msisadrv - ok
08:54:47.0660 3752 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
08:54:47.0666 3752 MSiSCSI - ok
08:54:47.0706 3752 msiserver - ok
08:54:47.0762 3752 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
08:54:47.0764 3752 MSKSSRV - ok
08:54:47.0806 3752 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
08:54:47.0807 3752 MSPCLOCK - ok
08:54:47.0853 3752 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
08:54:47.0855 3752 MSPQM - ok
08:54:47.0900 3752 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
08:54:47.0906 3752 MsRPC - ok
08:54:47.0957 3752 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
08:54:47.0960 3752 mssmbios - ok
08:54:47.0996 3752 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
08:54:47.0998 3752 MSTEE - ok
08:54:48.0049 3752 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
08:54:48.0051 3752 Mup - ok
08:54:48.0099 3752 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
08:54:48.0111 3752 napagent - ok
08:54:48.0173 3752 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
08:54:48.0178 3752 NativeWifiP - ok
08:54:48.0232 3752 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
08:54:48.0240 3752 NDIS - ok
08:54:48.0272 3752 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
08:54:48.0273 3752 NdisTapi - ok
08:54:48.0308 3752 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
08:54:48.0310 3752 Ndisuio - ok
08:54:48.0351 3752 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
08:54:48.0355 3752 NdisWan - ok
08:54:48.0378 3752 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
08:54:48.0381 3752 NDProxy - ok
08:54:48.0407 3752 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
08:54:48.0410 3752 NetBIOS - ok
08:54:48.0459 3752 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
08:54:48.0466 3752 netbt - ok
08:54:48.0496 3752 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:48.0498 3752 Netlogon - ok
08:54:48.0575 3752 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
08:54:48.0581 3752 Netman - ok
08:54:48.0614 3752 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
08:54:48.0623 3752 netprofm - ok
08:54:48.0683 3752 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:54:48.0687 3752 NetTcpPortSharing - ok
08:54:48.0759 3752 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
08:54:48.0761 3752 nfrd960 - ok
08:54:48.0817 3752 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
08:54:48.0824 3752 NlaSvc - ok
08:54:48.0859 3752 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
08:54:48.0862 3752 Npfs - ok
08:54:48.0912 3752 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
08:54:48.0917 3752 nsi - ok
08:54:48.0957 3752 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
08:54:48.0961 3752 nsiproxy - ok
08:54:49.0029 3752 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
08:54:49.0066 3752 Ntfs - ok
08:54:49.0111 3752 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
08:54:49.0113 3752 ntrigdigi - ok
08:54:49.0129 3752 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
08:54:49.0131 3752 Null - ok
08:54:49.0160 3752 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
08:54:49.0164 3752 nvraid - ok
08:54:49.0189 3752 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
08:54:49.0191 3752 nvstor - ok
08:54:49.0232 3752 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
08:54:49.0237 3752 nv_agp - ok
08:54:49.0252 3752 NwlnkFlt - ok
08:54:49.0268 3752 NwlnkFwd - ok
08:54:49.0331 3752 OA008Ufd (9f4a5990f326f91f4d2fcdd869b15ff4) C:\Windows\system32\DRIVERS\OA008Ufd.sys
08:54:49.0336 3752 OA008Ufd - ok
08:54:49.0357 3752 OA008Vid (abfd4952e8c4d3f8af6c416c76fe6e15) C:\Windows\system32\DRIVERS\OA008Vid.sys
08:54:49.0365 3752 OA008Vid - ok
08:54:49.0496 3752 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:54:49.0510 3752 odserv - ok
08:54:49.0624 3752 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
08:54:49.0627 3752 ohci1394 - ok
08:54:49.0704 3752 OlyCamComm (f4cb9c1991314b1352ddbd8a968e4471) C:\Windows\system32\DRIVERS\OlyCamComm.sys
08:54:49.0708 3752 OlyCamComm - ok
08:54:49.0786 3752 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:54:49.0791 3752 ose - ok
08:54:49.0893 3752 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:49.0918 3752 p2pimsvc - ok
08:54:49.0948 3752 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:49.0958 3752 p2psvc - ok
08:54:50.0010 3752 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
08:54:50.0014 3752 Parport - ok
08:54:50.0055 3752 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
08:54:50.0058 3752 partmgr - ok
08:54:50.0091 3752 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
08:54:50.0094 3752 Parvdm - ok
08:54:50.0134 3752 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
08:54:50.0139 3752 PcaSvc - ok
08:54:50.0255 3752 PCD5SRVC{3F6A8B78-EC003E00-05040104} (42ede7d217325ff56cb8a9983cd7f73b) C:\PROGRA~1\DELLSU~1\HWDiag\bin\PCD5SRVC.pkms
08:54:50.0258 3752 PCD5SRVC{3F6A8B78-EC003E00-05040104} - ok
08:54:50.0357 3752 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
08:54:50.0364 3752 pci - ok
08:54:50.0426 3752 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
08:54:50.0429 3752 pciide - ok
08:54:50.0483 3752 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
08:54:50.0489 3752 pcmcia - ok
08:54:50.0542 3752 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
08:54:50.0577 3752 PEAUTH - ok
08:54:50.0666 3752 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
08:54:50.0717 3752 pla - ok
08:54:50.0763 3752 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
08:54:50.0768 3752 PlugPlay - ok
08:54:50.0831 3752 Pml Driver HPZ12 (2b81b089d9364083f5046ad1307a65be) C:\Windows\system32\HPZipm12.dll
08:54:50.0834 3752 Pml Driver HPZ12 - ok
08:54:50.0894 3752 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:50.0904 3752 PNRPAutoReg - ok
08:54:50.0933 3752 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
08:54:50.0943 3752 PNRPsvc - ok
08:54:50.0991 3752 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
08:54:51.0003 3752 PolicyAgent - ok
08:54:51.0058 3752 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
08:54:51.0061 3752 PptpMiniport - ok
08:54:51.0094 3752 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
08:54:51.0097 3752 Processor - ok
08:54:51.0115 3752 Profos - ok
08:54:51.0162 3752 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
08:54:51.0171 3752 ProfSvc - ok
08:54:51.0203 3752 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:51.0205 3752 ProtectedStorage - ok
08:54:51.0268 3752 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
08:54:51.0271 3752 PSched - ok
08:54:51.0382 3752 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
08:54:51.0384 3752 PxHelp20 - ok
08:54:51.0544 3752 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
08:54:51.0581 3752 ql2300 - ok
08:54:51.0615 3752 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
08:54:51.0619 3752 ql40xx - ok
08:54:51.0684 3752 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
08:54:51.0695 3752 QWAVE - ok
08:54:51.0732 3752 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
08:54:51.0734 3752 QWAVEdrv - ok
08:54:51.0840 3752 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
08:54:51.0901 3752 R300 - ok
08:54:51.0949 3752 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
08:54:51.0952 3752 RasAcd - ok
08:54:52.0007 3752 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
08:54:52.0014 3752 RasAuto - ok
08:54:52.0047 3752 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
08:54:52.0052 3752 Rasl2tp - ok
08:54:52.0114 3752 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
08:54:52.0124 3752 RasMan - ok
08:54:52.0162 3752 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
08:54:52.0165 3752 RasPppoe - ok
08:54:52.0205 3752 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
08:54:52.0209 3752 RasSstp - ok
08:54:52.0255 3752 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
08:54:52.0263 3752 rdbss - ok
08:54:52.0300 3752 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
08:54:52.0304 3752 RDPCDD - ok
08:54:52.0337 3752 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
08:54:52.0345 3752 rdpdr - ok
08:54:52.0361 3752 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
08:54:52.0363 3752 RDPENCDD - ok
08:54:52.0432 3752 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
08:54:52.0439 3752 RDPWD - ok
08:54:52.0513 3752 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
08:54:52.0518 3752 RemoteAccess - ok
08:54:52.0566 3752 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
08:54:52.0572 3752 RemoteRegistry - ok
08:54:52.0658 3752 rimmptsk (c2ef513bbe069f0d4ee0938a76f975d3) C:\Windows\system32\DRIVERS\rimmptsk.sys
08:54:52.0660 3752 rimmptsk - ok
08:54:52.0682 3752 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
08:54:52.0684 3752 rimsptsk - ok
08:54:52.0716 3752 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
08:54:52.0719 3752 rismxdp - ok
08:54:52.0761 3752 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
08:54:52.0764 3752 RpcLocator - ok
08:54:52.0817 3752 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
08:54:52.0827 3752 RpcSs - ok
08:54:52.0880 3752 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
08:54:52.0885 3752 rspndr - ok
08:54:52.0996 3752 s1018bus (1c5c2cb892553d2cf3f45a4bb323fcd6) C:\Windows\system32\DRIVERS\s1018bus.sys
08:54:53.0000 3752 s1018bus - ok
08:54:53.0072 3752 s1018mdfl (38f5ea219593f19b6b3a1b9c169e3b61) C:\Windows\system32\DRIVERS\s1018mdfl.sys
08:54:53.0074 3752 s1018mdfl - ok
08:54:53.0111 3752 s1018mdm (666af6b64fc7df92d3ca4819ea91631d) C:\Windows\system32\DRIVERS\s1018mdm.sys
08:54:53.0115 3752 s1018mdm - ok
08:54:53.0145 3752 s1018mgmt (f4ceda6e2ddff2af8bd745615a7ca9c0) C:\Windows\system32\DRIVERS\s1018mgmt.sys
08:54:53.0148 3752 s1018mgmt - ok
08:54:53.0192 3752 s1018nd5 (3622d9ff2253dcbe885b10736609a4ca) C:\Windows\system32\DRIVERS\s1018nd5.sys
08:54:53.0194 3752 s1018nd5 - ok
08:54:53.0234 3752 s1018obex (49431efda842b474531c29ffae9f5d09) C:\Windows\system32\DRIVERS\s1018obex.sys
08:54:53.0240 3752 s1018obex - ok
08:54:53.0282 3752 s1018unic (ac6b514cb4474f4c867d7cdc9cd54f05) C:\Windows\system32\DRIVERS\s1018unic.sys
08:54:53.0287 3752 s1018unic - ok
08:54:53.0315 3752 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
08:54:53.0318 3752 SamSs - ok
08:54:53.0377 3752 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
08:54:53.0380 3752 sbp2port - ok
08:54:53.0451 3752 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
08:54:53.0458 3752 SCardSvr - ok
08:54:53.0516 3752 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
08:54:53.0527 3752 Schedule - ok
08:54:53.0551 3752 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
08:54:53.0552 3752 SCPolicySvc - ok
08:54:53.0599 3752 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
08:54:53.0603 3752 sdbus - ok
08:54:53.0651 3752 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
08:54:53.0658 3752 SDRSVC - ok
08:54:53.0757 3752 SeaPort (16a252022535b680046f6e34e136d378) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
08:54:53.0763 3752 SeaPort - ok
08:54:53.0811 3752 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
08:54:53.0813 3752 secdrv - ok
08:54:53.0855 3752 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
08:54:53.0860 3752 seclogon - ok
08:54:53.0954 3752 seehcri (e5b56569a9f79b70314fede6c953641e) C:\Windows\system32\DRIVERS\seehcri.sys
08:54:53.0957 3752 seehcri - ok
08:54:53.0986 3752 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\system32\sens.dll
08:54:53.0992 3752 SENS - ok
08:54:54.0032 3752 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
08:54:54.0035 3752 Serenum - ok
08:54:54.0064 3752 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
08:54:54.0068 3752 Serial - ok
08:54:54.0100 3752 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
08:54:54.0103 3752 sermouse - ok
08:54:54.0144 3752 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
08:54:54.0150 3752 SessionEnv - ok
08:54:54.0181 3752 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
08:54:54.0183 3752 sffdisk - ok
08:54:54.0206 3752 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
08:54:54.0209 3752 sffp_mmc - ok
08:54:54.0231 3752 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
08:54:54.0232 3752 sffp_sd - ok
08:54:54.0263 3752 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
08:54:54.0265 3752 sfloppy - ok
08:54:54.0307 3752 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
08:54:54.0318 3752 SharedAccess - ok
08:54:54.0356 3752 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
08:54:54.0362 3752 ShellHWDetection - ok
08:54:54.0403 3752 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
08:54:54.0406 3752 sisagp - ok
08:54:54.0424 3752 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
08:54:54.0426 3752 SiSRaid2 - ok
08:54:54.0456 3752 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
08:54:54.0459 3752 SiSRaid4 - ok
08:54:54.0582 3752 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
08:54:54.0681 3752 slsvc - ok
08:54:54.0754 3752 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
08:54:54.0760 3752 SLUINotify - ok
08:54:54.0816 3752 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
08:54:54.0824 3752 Smb - ok
08:54:54.0874 3752 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
08:54:54.0878 3752 SNMPTRAP - ok
08:54:54.0937 3752 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
08:54:54.0940 3752 spldr - ok
08:54:54.0979 3752 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
08:54:54.0984 3752 Spooler - ok
08:54:55.0043 3752 sprtsvc_DellSupportCenter (777115c9cc675bd98127660712d2f784) C:\Program Files\Dell Support Center\bin\sprtsvc.exe
08:54:55.0046 3752 sprtsvc_DellSupportCenter - ok
08:54:55.0172 3752 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
08:54:55.0182 3752 srv - ok
08:54:55.0236 3752 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
08:54:55.0248 3752 srv2 - ok
08:54:55.0285 3752 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
08:54:55.0289 3752 srvnet - ok
08:54:55.0334 3752 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
08:54:55.0339 3752 SSDPSRV - ok
08:54:55.0411 3752 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
08:54:55.0418 3752 SstpSvc - ok
08:54:55.0493 3752 STacSV (ddeb942850278d67edc108d57f774bf8) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f6ef8056\STacSV.exe
08:54:55.0496 3752 STacSV - ok
08:54:55.0549 3752 STHDA (c4be9c3af8af6f2e4cdd22fcabf77a1b) C:\Windows\system32\DRIVERS\stwrt.sys
08:54:55.0562 3752 STHDA - ok
08:54:55.0618 3752 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
08:54:55.0619 3752 StillCam - ok
08:54:55.0671 3752 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
08:54:55.0678 3752 stisvc - ok
08:54:55.0748 3752 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
08:54:55.0752 3752 stllssvr - ok
08:54:55.0855 3752 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
08:54:55.0857 3752 swenum - ok
08:54:55.0928 3752 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
08:54:55.0940 3752 swprv - ok
08:54:55.0999 3752 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
08:54:56.0002 3752 Symc8xx - ok
08:54:56.0033 3752 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
08:54:56.0036 3752 Sym_hi - ok
08:54:56.0074 3752 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
08:54:56.0077 3752 Sym_u3 - ok
08:54:56.0181 3752 SynTP (fb86fdd993a6a0122a2f526221e5161f) C:\Windows\system32\DRIVERS\SynTP.sys
08:54:56.0188 3752 SynTP - ok
08:54:56.0254 3752 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
08:54:56.0280 3752 SysMain - ok
08:54:56.0331 3752 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
08:54:56.0337 3752 TabletInputService - ok
08:54:56.0389 3752 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
08:54:56.0394 3752 TapiSrv - ok
08:54:56.0421 3752 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
08:54:56.0425 3752 TBS - ok
08:54:56.0511 3752 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
08:54:56.0523 3752 Tcpip - ok
08:54:56.0577 3752 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
08:54:56.0589 3752 Tcpip6 - ok
08:54:56.0638 3752 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
08:54:56.0641 3752 tcpipreg - ok
08:54:56.0683 3752 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
08:54:56.0689 3752 TDPIPE - ok
08:54:56.0711 3752 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
08:54:56.0714 3752 TDTCP - ok
08:54:56.0763 3752 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
08:54:56.0767 3752 tdx - ok
08:54:56.0809 3752 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
08:54:56.0812 3752 TermDD - ok
08:54:56.0869 3752 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
08:54:56.0877 3752 TermService - ok
08:54:56.0928 3752 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
08:54:56.0934 3752 Themes - ok
08:54:56.0974 3752 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
08:54:56.0977 3752 THREADORDER - ok
08:54:57.0027 3752 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
08:54:57.0034 3752 TrkWks - ok
08:54:57.0077 3752 Trufos - ok
08:54:57.0155 3752 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
08:54:57.0157 3752 TrustedInstaller - ok
08:54:57.0226 3752 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
08:54:57.0229 3752 tssecsrv - ok
08:54:57.0253 3752 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
08:54:57.0254 3752 tunmp - ok
08:54:57.0302 3752 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
08:54:57.0305 3752 tunnel - ok
08:54:57.0351 3752 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
08:54:57.0354 3752 uagp35 - ok
08:54:57.0417 3752 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
08:54:57.0426 3752 udfs - ok
08:54:57.0480 3752 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
08:54:57.0485 3752 UI0Detect - ok
08:54:57.0543 3752 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
08:54:57.0546 3752 uliagpkx - ok
08:54:57.0616 3752 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
08:54:57.0624 3752 uliahci - ok
08:54:57.0651 3752 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
08:54:57.0655 3752 UlSata - ok
08:54:57.0688 3752 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
08:54:57.0693 3752 ulsata2 - ok
08:54:57.0722 3752 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
08:54:57.0725 3752 umbus - ok
08:54:57.0774 3752 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
08:54:57.0781 3752 upnphost - ok
08:54:57.0856 3752 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
08:54:57.0859 3752 USBAAPL - ok
08:54:57.0897 3752 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
08:54:57.0902 3752 usbccgp - ok
08:54:57.0956 3752 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
08:54:57.0960 3752 usbcir - ok
08:54:58.0010 3752 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
08:54:58.0013 3752 usbehci - ok
08:54:58.0074 3752 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
08:54:58.0081 3752 usbhub - ok
08:54:58.0130 3752 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
08:54:58.0133 3752 usbohci - ok
08:54:58.0178 3752 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
08:54:58.0181 3752 usbprint - ok
08:54:58.0219 3752 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:54:58.0222 3752 USBSTOR - ok
08:54:58.0253 3752 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
08:54:58.0256 3752 usbuhci - ok
08:54:58.0309 3752 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
08:54:58.0314 3752 UxSms - ok
08:54:58.0365 3752 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
08:54:58.0379 3752 vds - ok
08:54:58.0428 3752 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
08:54:58.0431 3752 vga - ok
08:54:58.0471 3752 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
08:54:58.0474 3752 VgaSave - ok
08:54:58.0503 3752 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
08:54:58.0506 3752 viaagp - ok
08:54:58.0526 3752 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
08:54:58.0529 3752 ViaC7 - ok
08:54:58.0557 3752 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
08:54:58.0559 3752 viaide - ok
08:54:58.0585 3752 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
08:54:58.0588 3752 volmgr - ok
08:54:58.0637 3752 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
08:54:58.0646 3752 volmgrx - ok
08:54:58.0698 3752 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
08:54:58.0704 3752 volsnap - ok
08:54:58.0743 3752 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
08:54:58.0747 3752 vsmraid - ok
08:54:58.0812 3752 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
08:54:58.0848 3752 VSS - ok
08:54:58.0875 3752 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
08:54:58.0881 3752 W32Time - ok
08:54:58.0922 3752 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
08:54:58.0925 3752 WacomPen - ok
08:54:58.0951 3752 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
08:54:58.0955 3752 Wanarp - ok
08:54:58.0961 3752 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
08:54:58.0962 3752 Wanarpv6 - ok
08:54:59.0013 3752 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
08:54:59.0036 3752 wcncsvc - ok
08:54:59.0080 3752 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
08:54:59.0085 3752 WcsPlugInService - ok
08:54:59.0131 3752 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
08:54:59.0133 3752 Wd - ok
08:54:59.0179 3752 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
08:54:59.0194 3752 Wdf01000 - ok
08:54:59.0242 3752 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
08:54:59.0246 3752 WdiServiceHost - ok
08:54:59.0258 3752 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
08:54:59.0261 3752 WdiSystemHost - ok
08:54:59.0323 3752 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
08:54:59.0332 3752 WebClient - ok
08:54:59.0369 3752 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
08:54:59.0376 3752 Wecsvc - ok
08:54:59.0440 3752 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
08:54:59.0445 3752 wercplsupport - ok
08:54:59.0477 3752 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
08:54:59.0483 3752 WerSvc - ok
08:54:59.0568 3752 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
08:54:59.0577 3752 WinDefend - ok
08:54:59.0585 3752 WinHttpAutoProxySvc - ok
08:54:59.0712 3752 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
08:54:59.0718 3752 Winmgmt - ok
08:54:59.0793 3752 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
08:54:59.0842 3752 WinRM - ok
08:54:59.0944 3752 WinUSB (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.sys
08:54:59.0947 3752 WinUSB - ok
08:55:00.0002 3752 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
08:55:00.0011 3752 Wlansvc - ok
08:55:00.0161 3752 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:55:00.0215 3752 wlidsvc - ok
08:55:00.0274 3752 wltrysvc - ok
08:55:00.0330 3752 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
08:55:00.0332 3752 WmiAcpi - ok
08:55:00.0406 3752 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
08:55:00.0413 3752 wmiApSrv - ok
08:55:00.0479 3752 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
08:55:00.0519 3752 WMPNetworkSvc - ok
08:55:00.0607 3752 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
08:55:00.0615 3752 WPCSvc - ok
08:55:00.0674 3752 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
08:55:00.0680 3752 WPDBusEnum - ok
08:55:00.0758 3752 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
08:55:00.0761 3752 WpdUsb - ok
08:55:00.0876 3752 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
08:55:00.0908 3752 WPFFontCache_v0400 - ok
08:55:01.0016 3752 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
08:55:01.0018 3752 ws2ifsl - ok
08:55:01.0070 3752 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\system32\wscsvc.dll
08:55:01.0074 3752 wscsvc - ok
08:55:01.0171 3752 WSDPrintDevice (4422ac5ed8d4c2f0db63e71d4c069dd7) C:\Windows\system32\DRIVERS\WSDPrint.sys
08:55:01.0174 3752 WSDPrintDevice - ok
08:55:01.0187 3752 WSearch - ok
08:55:01.0310 3752 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
08:55:01.0370 3752 wuauserv - ok
08:55:01.0444 3752 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
08:55:01.0450 3752 WUDFRd - ok
08:55:01.0500 3752 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
08:55:01.0506 3752 wudfsvc - ok
08:55:01.0564 3752 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
08:55:01.0631 3752 \Device\Harddisk0\DR0 - ok
08:55:01.0642 3752 Boot (0x1200) (ec80399a57b357108e39be1537784c88) \Device\Harddisk0\DR0\Partition0
08:55:01.0646 3752 \Device\Harddisk0\DR0\Partition0 - ok
08:55:01.0651 3752 Boot (0x1200) (604ef52d328b947176036e4e1328c1ad) \Device\Harddisk0\DR0\Partition1
08:55:01.0654 3752 \Device\Harddisk0\DR0\Partition1 - ok
08:55:01.0655 3752 ============================================================
08:55:01.0655 3752 Scan finished
08:55:01.0655 3752 ============================================================
08:55:01.0674 5288 Detected object count: 0
08:55:01.0674 5288 Actual detected object count: 0




aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-01 09:09:07
-----------------------------
09:09:07.024 OS Version: Windows 6.0.6002 Service Pack 2
09:09:07.024 Number of processors: 2 586 0x170A
09:09:07.025 ComputerName: TERRI-PC UserName: Terri
09:09:12.479 Initialize success
09:10:03.818 AVAST engine defs: 12033101
09:10:23.766 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
09:10:23.770 Disk 0 Vendor: ST9500325AS 0002DEM1 Size: 476940MB BusType: 3
09:10:23.839 Disk 0 MBR read successfully
09:10:23.842 Disk 0 MBR scan
09:10:23.848 Disk 0 Windows VISTA default MBR code
09:10:23.854 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
09:10:23.872 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15000 MB offset 80325
09:10:23.893 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 461899 MB offset 30800325
09:10:23.903 Disk 0 scanning sectors +976771120
09:10:24.006 Disk 0 scanning C:\Windows\system32\drivers
09:10:39.326 Service scanning
09:11:15.081 Modules scanning
09:11:35.567 Disk 0 trace - called modules:
09:11:35.948 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS hal.dll PCIIDEX.SYS msahci.sys ndis.sys bcmwl6.sys dxgkrnl.sys igdkmd32.sys watchdog.sys tcpip.sys NETIO.SYS
09:11:35.956 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ad354d0]
09:11:35.965 3 CLASSPNP.SYS[8fba98b3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x8aacdb98]
09:11:38.730 AVAST engine scan C:\Windows
09:12:02.961 AVAST engine scan C:\Windows\system32
09:16:25.376 AVAST engine scan C:\Windows\system32\drivers
09:16:44.469 AVAST engine scan C:\Users\Terri
09:17:54.516 Disk 0 MBR has been saved successfully to "C:\Users\Terri\Desktop\MBR.dat"
09:17:54.543 The log file has been saved successfully to "C:\Users\Terri\Desktop\aswMBR 120401.txt"

#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:38 PM

Posted 01 April 2012 - 03:51 AM

Hello



the redirecting is it happening in one browser or is it happening in all browsers.



Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 01 April 2012 - 09:57 AM

Hi Gringo. The re-directing appears to have stopped! Its strange as this morning it was still re-directing.

Thankyou very much for your help with this problem, it is very much appreciated!!!

#13 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 01 April 2012 - 10:00 AM

Haha! literally as soon as I closed this window and opened another it began redirecting again. I have searched through Safari and it doesn't re-direct. It appears to be Explorer only.

#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:38 PM

Posted 01 April 2012 - 12:33 PM

Greetings

I want you to go to this page and click on the fix it button and let me know if you still get redirected.

http://support.microsoft.com/kb/923737



Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 Scorscribler

Scorscribler
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:05:38 PM

Posted 01 April 2012 - 01:37 PM

Still being redirected.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users