Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirects on Firefox Failing at self-help


  • Please log in to reply
13 replies to this topic

#1 grumpster

grumpster

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:47 PM

Posted 14 June 2012 - 10:11 AM

Hi- Im running Windows 7 home premium on a Lenovo thinkpad

Recently I began getting redirected on Google searches using Firefox. I remember something flashing up on screen that appeared to be a Google Chrome window, which was odd as I do not use Chrome. No discrepancies were flagged by Avast AV, however when I ran Malaware it caught and quarantined 3 files that all were attibuted to Hapilli trojan. I am a somewhat experienced user so I started searching for other signs of infection but apparently this one is smarter than me. I tried stepping through the Rkill and self help procedures but consistently the redirects return on Firefox. It appears that using IE, Yahoo and Google searches are not being redirected. When I run Combofix it seems to always think Avast is running although I shut it down and even uninstalled it, so that may be a symptom of some sort.

I'm hoping that someone familiar with the current generation of viruses can step me through ridding myself of this leech.

**Update- it appears at times that Im being blocked from accessing the forum URL here...can it be that smart ?

Edited by grumpster, 14 June 2012 - 11:05 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:47 AM

Posted 14 June 2012 - 12:26 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 grumpster

grumpster
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:47 PM

Posted 14 June 2012 - 02:41 PM

Thank you for responding NarenXP- I am in the process of running those, my next post will be the logs.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:47 AM

Posted 14 June 2012 - 02:50 PM

:thumbup2:

#5 grumpster

grumpster
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:47 PM

Posted 14 June 2012 - 03:50 PM

I put the machine in Safe Mode and installed/ ran the tools. Here are the logs from those scans- they didn't seem to pick anything up. ESET produced no trouble found and completed without a log. ( I also confirmed I'm still infected- upon opening a new Firefox window and performing a search I still get redirected to some bogus page and I get a warning page stating that IP 66.85.181.166 is a known malicious site, etc. No idea what the URL is and never been there before, etc.)
==========================================================================================

TDSS Log

14:01:24.0205 1892 TDSS rootkit removing tool 2.7.39.0 Jun 14 2012 08:11:46
14:01:24.0560 1892 ============================================================
14:01:24.0560 1892 Current date / time: 2012/06/14 14:01:24.0560
14:01:24.0560 1892 SystemInfo:
14:01:24.0560 1892
14:01:24.0560 1892 OS Version: 6.1.7601 ServicePack: 1.0
14:01:24.0560 1892 Product type: Workstation
14:01:24.0561 1892 ComputerName: BILL-THINK
14:01:24.0561 1892 UserName: Bill
14:01:24.0561 1892 Windows directory: C:\Windows
14:01:24.0561 1892 System windows directory: C:\Windows
14:01:24.0561 1892 Processor architecture: Intel x86
14:01:24.0561 1892 Number of processors: 1
14:01:24.0561 1892 Page size: 0x1000
14:01:24.0561 1892 Boot type: Safe boot with network
14:01:24.0561 1892 ============================================================
14:01:26.0442 1892 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:01:26.0444 1892 ============================================================
14:01:26.0444 1892 \Device\Harddisk0\DR0:
14:01:26.0444 1892 MBR partitions:
14:01:26.0445 1892 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x258000
14:01:26.0445 1892 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x258800, BlocksNum 0x11438800
14:01:26.0445 1892 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x11691000, BlocksNum 0x1388000
14:01:26.0445 1892 ============================================================
14:01:26.0482 1892 C: <-> \Device\Harddisk0\DR0\Partition1
14:01:26.0530 1892 Q: <-> \Device\Harddisk0\DR0\Partition2
14:01:26.0530 1892 ============================================================
14:01:26.0530 1892 Initialize success
14:01:26.0530 1892 ============================================================
14:01:35.0922 1996 ============================================================
14:01:35.0922 1996 Scan started
14:01:35.0922 1996 Mode: Manual; TDLFS;
14:01:35.0922 1996 ============================================================
14:01:37.0297 1996 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
14:01:37.0301 1996 1394ohci - ok
14:01:37.0418 1996 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
14:01:37.0423 1996 ACPI - ok
14:01:37.0508 1996 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
14:01:37.0509 1996 AcpiPmi - ok
14:01:37.0748 1996 AcPrfMgrSvc (40c186d35c0e307240d6bca399332b24) C:\Program Files\Lenovo\Access Connections\AcPrfMgrSvc.exe
14:01:37.0752 1996 AcPrfMgrSvc - ok
14:01:37.0864 1996 AcSvc (51e12e36bdeb10c0d9dbdb1fa4914800) C:\Program Files\Lenovo\Access Connections\AcSvc.exe
14:01:37.0915 1996 AcSvc - ok
14:01:38.0175 1996 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:01:38.0179 1996 AdobeARMservice - ok
14:01:38.0377 1996 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:01:38.0431 1996 AdobeFlashPlayerUpdateSvc - ok
14:01:38.0561 1996 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
14:01:38.0567 1996 adp94xx - ok
14:01:38.0653 1996 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
14:01:38.0658 1996 adpahci - ok
14:01:38.0752 1996 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
14:01:38.0755 1996 adpu320 - ok
14:01:38.0847 1996 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
14:01:38.0857 1996 AeLookupSvc - ok
14:01:39.0030 1996 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
14:01:39.0036 1996 AFD - ok
14:01:39.0122 1996 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
14:01:39.0123 1996 agp440 - ok
14:01:39.0246 1996 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
14:01:39.0248 1996 aic78xx - ok
14:01:39.0362 1996 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
14:01:39.0364 1996 ALG - ok
14:01:39.0447 1996 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
14:01:39.0448 1996 aliide - ok
14:01:39.0572 1996 AMD External Events Utility (946848a3cac9909d8f72a4847419e77d) C:\Windows\system32\atiesrxx.exe
14:01:39.0576 1996 AMD External Events Utility - ok
14:01:39.0731 1996 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
14:01:39.0733 1996 amdagp - ok
14:01:39.0756 1996 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
14:01:39.0757 1996 amdide - ok
14:01:39.0879 1996 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
14:01:39.0927 1996 AmdK8 - ok
14:01:40.0412 1996 amdkmdag (19529728442d4794b96d1b8a9a63eca1) C:\Windows\system32\DRIVERS\atikmdag.sys
14:01:40.0563 1996 amdkmdag - ok
14:01:40.0777 1996 amdkmdap (b44737ff566b5888d15fdb66849f34e5) C:\Windows\system32\DRIVERS\atikmpag.sys
14:01:40.0780 1996 amdkmdap - ok
14:01:40.0811 1996 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
14:01:40.0813 1996 AmdPPM - ok
14:01:40.0915 1996 amdsata (e7f4d42d8076ec60e21715cd11743a0d) C:\Windows\system32\drivers\amdsata.sys
14:01:40.0967 1996 amdsata - ok
14:01:40.0998 1996 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
14:01:41.0001 1996 amdsbs - ok
14:01:41.0072 1996 amdxata (146459d2b08bfdcbfa856d9947043c81) C:\Windows\system32\drivers\amdxata.sys
14:01:41.0073 1996 amdxata - ok
14:01:41.0192 1996 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
14:01:41.0193 1996 AppID - ok
14:01:41.0284 1996 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
14:01:41.0286 1996 AppIDSvc - ok
14:01:41.0410 1996 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
14:01:41.0412 1996 Appinfo - ok
14:01:41.0641 1996 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:01:41.0645 1996 Apple Mobile Device - ok
14:01:41.0836 1996 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
14:01:41.0838 1996 arc - ok
14:01:41.0869 1996 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
14:01:41.0871 1996 arcsas - ok
14:01:42.0195 1996 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
14:01:42.0200 1996 aspnet_state - ok
14:01:42.0295 1996 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
14:01:42.0296 1996 AsyncMac - ok
14:01:42.0403 1996 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
14:01:42.0404 1996 atapi - ok
14:01:42.0849 1996 atikmdag (19529728442d4794b96d1b8a9a63eca1) C:\Windows\system32\DRIVERS\atikmdag.sys
14:01:42.0896 1996 atikmdag - ok
14:01:43.0122 1996 AtiPcie (b73c832088dd54b55e04ff6f9646ad8c) C:\Windows\system32\DRIVERS\AtiPcie.sys
14:01:43.0123 1996 AtiPcie - ok
14:01:43.0324 1996 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
14:01:43.0332 1996 AudioEndpointBuilder - ok
14:01:43.0347 1996 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
14:01:43.0353 1996 Audiosrv - ok
14:01:43.0462 1996 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
14:01:43.0465 1996 AxInstSV - ok
14:01:43.0650 1996 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
14:01:43.0659 1996 b06bdrv - ok
14:01:43.0747 1996 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
14:01:43.0751 1996 b57nd60x - ok
14:01:44.0006 1996 BcmSqlStartupSvc (6163664c7e9cd110af70180c126c3fdc) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
14:01:44.0016 1996 BcmSqlStartupSvc - ok
14:01:44.0053 1996 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
14:01:44.0055 1996 BDESVC - ok
14:01:44.0230 1996 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
14:01:44.0230 1996 Beep - ok
14:01:44.0424 1996 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
14:01:44.0431 1996 BFE - ok
14:01:44.0543 1996 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\system32\qmgr.dll
14:01:44.0656 1996 BITS - ok
14:01:44.0675 1996 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
14:01:44.0676 1996 blbdrive - ok
14:01:44.0884 1996 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
14:01:44.0890 1996 Bonjour Service - ok
14:01:45.0022 1996 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
14:01:45.0024 1996 bowser - ok
14:01:45.0208 1996 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:01:45.0209 1996 BrFiltLo - ok
14:01:45.0226 1996 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:01:45.0227 1996 BrFiltUp - ok
14:01:45.0386 1996 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
14:01:45.0388 1996 BridgeMP - ok
14:01:45.0586 1996 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
14:01:45.0588 1996 Browser - ok
14:01:45.0673 1996 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
14:01:45.0677 1996 Brserid - ok
14:01:45.0805 1996 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
14:01:45.0806 1996 BrSerWdm - ok
14:01:45.0876 1996 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:01:45.0877 1996 BrUsbMdm - ok
14:01:45.0942 1996 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
14:01:45.0943 1996 BrUsbSer - ok
14:01:46.0103 1996 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
14:01:46.0104 1996 BthEnum - ok
14:01:46.0174 1996 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
14:01:46.0176 1996 BTHMODEM - ok
14:01:46.0339 1996 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
14:01:46.0341 1996 BthPan - ok
14:01:46.0492 1996 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
14:01:46.0498 1996 BTHPORT - ok
14:01:46.0755 1996 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
14:01:46.0758 1996 bthserv - ok
14:01:46.0968 1996 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
14:01:46.0988 1996 BTHUSB - ok
14:01:47.0548 1996 btwdins (0e3ee2bc0ec56bfe869fcde3e5806684) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
14:01:47.0558 1996 btwdins - ok
14:01:47.0964 1996 catchme - ok
14:01:48.0142 1996 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
14:01:48.0143 1996 cdfs - ok
14:01:48.0422 1996 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
14:01:48.0424 1996 cdrom - ok
14:01:48.0631 1996 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
14:01:48.0656 1996 CertPropSvc - ok
14:01:48.0821 1996 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
14:01:48.0822 1996 circlass - ok
14:01:49.0029 1996 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
14:01:49.0035 1996 CLFS - ok
14:01:49.0383 1996 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:01:49.0387 1996 clr_optimization_v2.0.50727_32 - ok
14:01:50.0014 1996 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:01:50.0122 1996 clr_optimization_v4.0.30319_32 - ok
14:01:50.0227 1996 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
14:01:50.0228 1996 CmBatt - ok
14:01:50.0324 1996 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
14:01:50.0325 1996 cmdide - ok
14:01:50.0594 1996 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
14:01:50.0608 1996 CNG - ok
14:01:50.0814 1996 CnxtHdAudService (e786008346afa5ea2109d5e8ad44a9dd) C:\Windows\system32\drivers\CHDRT32.sys
14:01:50.0822 1996 CnxtHdAudService - ok
14:01:50.0928 1996 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
14:01:50.0929 1996 Compbatt - ok
14:01:51.0060 1996 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
14:01:51.0061 1996 CompositeBus - ok
14:01:51.0147 1996 COMSysApp - ok
14:01:51.0226 1996 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
14:01:51.0227 1996 crcdisk - ok
14:01:51.0341 1996 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
14:01:51.0344 1996 CryptSvc - ok
14:01:51.0499 1996 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
14:01:51.0536 1996 DcomLaunch - ok
14:01:51.0731 1996 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
14:01:51.0798 1996 defragsvc - ok
14:01:51.0912 1996 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
14:01:51.0914 1996 DfsC - ok
14:01:52.0262 1996 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
14:01:52.0267 1996 Dhcp - ok
14:01:52.0356 1996 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
14:01:52.0357 1996 discache - ok
14:01:52.0501 1996 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
14:01:52.0504 1996 Disk - ok
14:01:52.0855 1996 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
14:01:52.0858 1996 Dnscache - ok
14:01:52.0963 1996 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
14:01:52.0967 1996 dot3svc - ok
14:01:53.0146 1996 Dot4 (b5e479eb83707dd698f66953e922042c) C:\Windows\system32\DRIVERS\Dot4.sys
14:01:53.0149 1996 Dot4 - ok
14:01:53.0290 1996 Dot4Print (caefd09b6a6249c53a67d55a9a9fcabf) C:\Windows\system32\drivers\Dot4Prt.sys
14:01:53.0291 1996 Dot4Print - ok
14:01:53.0379 1996 dot4usb (cf491ff38d62143203c065260567e2f7) C:\Windows\system32\DRIVERS\dot4usb.sys
14:01:53.0381 1996 dot4usb - ok
14:01:53.0509 1996 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
14:01:53.0516 1996 DPS - ok
14:01:53.0680 1996 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
14:01:53.0681 1996 drmkaud - ok
14:01:53.0957 1996 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
14:01:53.0989 1996 DXGKrnl - ok
14:01:54.0165 1996 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
14:01:54.0221 1996 EapHost - ok
14:01:54.0657 1996 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
14:01:54.0796 1996 ebdrv - ok
14:01:55.0015 1996 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
14:01:55.0017 1996 EFS - ok
14:01:55.0125 1996 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
14:01:55.0134 1996 ehRecvr - ok
14:01:55.0228 1996 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
14:01:55.0230 1996 ehSched - ok
14:01:55.0599 1996 EkaProt6 (4e2a97a57cd9b92bfbb55b3b1f3ff939) C:\Windows\system32\DRIVERS\ekaprot6.sys
14:01:55.0600 1996 EkaProt6 - ok
14:01:55.0948 1996 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
14:01:56.0019 1996 elxstor - ok
14:01:56.0105 1996 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
14:01:56.0120 1996 ErrDev - ok
14:01:59.0144 1996 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
14:01:59.0166 1996 EventSystem - ok
14:01:59.0259 1996 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
14:01:59.0262 1996 exfat - ok
14:01:59.0293 1996 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
14:01:59.0296 1996 fastfat - ok
14:01:59.0407 1996 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
14:01:59.0416 1996 Fax - ok
14:01:59.0451 1996 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
14:01:59.0453 1996 fdc - ok
14:01:59.0489 1996 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
14:01:59.0491 1996 fdPHost - ok
14:01:59.0560 1996 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
14:01:59.0562 1996 FDResPub - ok
14:01:59.0598 1996 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
14:01:59.0599 1996 FileInfo - ok
14:01:59.0654 1996 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
14:01:59.0655 1996 Filetrace - ok
14:01:59.0695 1996 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
14:01:59.0696 1996 flpydisk - ok
14:01:59.0768 1996 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
14:01:59.0771 1996 FltMgr - ok
14:01:59.0864 1996 FontCache (fa6c66e4364d7da57aade5dcc03bb999) C:\Windows\system32\FntCache.dll
14:01:59.0876 1996 FontCache - ok
14:02:00.0005 1996 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:02:00.0007 1996 FontCache3.0.0.0 - ok
14:02:00.0023 1996 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
14:02:00.0025 1996 FsDepends - ok
14:02:00.0077 1996 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
14:02:00.0078 1996 Fs_Rec - ok
14:02:00.0153 1996 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
14:02:00.0156 1996 fvevol - ok
14:02:00.0235 1996 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:02:00.0236 1996 gagp30kx - ok
14:02:00.0315 1996 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:02:00.0317 1996 GEARAspiWDM - ok
14:02:00.0438 1996 getPlusHelper (360fc9e29ebcd7cb75320e2663eba0f2) C:\Program Files\NOS\bin\getPlus_Helper.dll
14:02:00.0444 1996 getPlusHelper - ok
14:02:00.0518 1996 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
14:02:00.0529 1996 gpsvc - ok
14:02:00.0615 1996 grmnusb (6003bc70f1a8307262bd3c941bda0b7e) C:\Windows\system32\drivers\grmnusb.sys
14:02:00.0616 1996 grmnusb - ok
14:02:00.0716 1996 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
14:02:00.0719 1996 gupdate - ok
14:02:00.0764 1996 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
14:02:00.0766 1996 gupdatem - ok
14:02:00.0820 1996 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
14:02:00.0823 1996 gusvc - ok
14:02:00.0862 1996 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
14:02:00.0863 1996 hcw85cir - ok
14:02:00.0959 1996 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
14:02:00.0964 1996 HdAudAddService - ok
14:02:01.0025 1996 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
14:02:01.0027 1996 HDAudBus - ok
14:02:01.0051 1996 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
14:02:01.0052 1996 HidBatt - ok
14:02:01.0079 1996 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
14:02:01.0081 1996 HidBth - ok
14:02:01.0134 1996 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
14:02:01.0136 1996 HidIr - ok
14:02:01.0173 1996 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
14:02:01.0175 1996 hidserv - ok
14:02:01.0251 1996 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
14:02:01.0252 1996 HidUsb - ok
14:02:01.0307 1996 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
14:02:01.0310 1996 hkmsvc - ok
14:02:01.0360 1996 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
14:02:01.0365 1996 HomeGroupListener - ok
14:02:01.0428 1996 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
14:02:01.0433 1996 HomeGroupProvider - ok
14:02:01.0509 1996 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
14:02:01.0511 1996 HpSAMD - ok
14:02:01.0603 1996 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
14:02:01.0611 1996 HTTP - ok
14:02:01.0710 1996 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
14:02:01.0711 1996 hwpolicy - ok
14:02:01.0831 1996 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
14:02:01.0833 1996 i8042prt - ok
14:02:01.0938 1996 iaStorV (a3cae5d281db4cff7cff8233507ee5ad) C:\Windows\system32\drivers\iaStorV.sys
14:02:01.0947 1996 iaStorV - ok
14:02:02.0016 1996 IBMPMDRV (400d7095d5ae08970f839bcac1843106) C:\Windows\system32\DRIVERS\ibmpmdrv.sys
14:02:02.0017 1996 IBMPMDRV - ok
14:02:02.0035 1996 IBMPMSVC (06af18300c5b511a3d85c3e0b7909c10) C:\Windows\system32\ibmpmsvc.exe
14:02:02.0038 1996 IBMPMSVC - ok
14:02:02.0162 1996 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:02:02.0176 1996 idsvc - ok
14:02:02.0446 1996 igfx (ad626f6964f4d364d226c39e06872dd3) C:\Windows\system32\DRIVERS\igdkmd32.sys
14:02:02.0509 1996 igfx - ok
14:02:02.0644 1996 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
14:02:02.0646 1996 iirsp - ok
14:02:02.0735 1996 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
14:02:02.0745 1996 IKEEXT - ok
14:02:02.0830 1996 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
14:02:02.0831 1996 intelide - ok
14:02:02.0858 1996 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
14:02:02.0860 1996 intelppm - ok
14:02:02.0933 1996 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
14:02:02.0936 1996 IPBusEnum - ok
14:02:02.0973 1996 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:02:02.0974 1996 IpFilterDriver - ok
14:02:03.0050 1996 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
14:02:03.0059 1996 iphlpsvc - ok
14:02:03.0136 1996 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
14:02:03.0138 1996 IPMIDRV - ok
14:02:03.0170 1996 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
14:02:03.0172 1996 IPNAT - ok
14:02:03.0312 1996 iPod Service (178fe38b7740f598391eb2f51ae4ccac) C:\Program Files\iPod\bin\iPodService.exe
14:02:03.0325 1996 iPod Service - ok
14:02:03.0394 1996 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
14:02:03.0395 1996 IRENUM - ok
14:02:03.0421 1996 is3srv - ok
14:02:03.0485 1996 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
14:02:03.0487 1996 isapnp - ok
14:02:03.0588 1996 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
14:02:03.0594 1996 iScsiPrt - ok
14:02:03.0666 1996 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
14:02:03.0667 1996 kbdclass - ok
14:02:03.0729 1996 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
14:02:03.0730 1996 kbdhid - ok
14:02:03.0797 1996 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:02:03.0799 1996 KeyIso - ok
14:02:03.0853 1996 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
14:02:03.0857 1996 KSecDD - ok
14:02:03.0910 1996 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
14:02:03.0913 1996 KSecPkg - ok
14:02:03.0992 1996 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
14:02:03.0999 1996 KtmRm - ok
14:02:04.0079 1996 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\System32\srvsvc.dll
14:02:04.0101 1996 LanmanServer - ok
14:02:04.0145 1996 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
14:02:04.0158 1996 LanmanWorkstation - ok
14:02:04.0293 1996 LENOVO.CAMMUTE (a4aefd644cade44f99ceafa49004426c) C:\Program Files\LENOVO\HOTKEY\CAMMUTE.exe
14:02:04.0296 1996 LENOVO.CAMMUTE - ok
14:02:04.0363 1996 LENOVO.MICMUTE (c88eb33793420a79f601fb5e33e2edd9) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
14:02:04.0365 1996 LENOVO.MICMUTE - ok
14:02:04.0381 1996 lenovo.smi (3c3f7f424e324c6971632c5de5ff458f) C:\Windows\system32\DRIVERS\smiif32.sys
14:02:04.0382 1996 lenovo.smi - ok
14:02:04.0408 1996 Lenovo.VIRTSCRLSVC (6f2cc57eb5836d2ac9bd37f3554d55f8) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
14:02:04.0410 1996 Lenovo.VIRTSCRLSVC - ok
14:02:04.0489 1996 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
14:02:04.0491 1996 lltdio - ok
14:02:04.0568 1996 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
14:02:04.0573 1996 lltdsvc - ok
14:02:04.0602 1996 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
14:02:04.0604 1996 lmhosts - ok
14:02:04.0671 1996 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:02:04.0673 1996 LSI_FC - ok
14:02:04.0696 1996 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:02:04.0698 1996 LSI_SAS - ok
14:02:04.0721 1996 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:02:04.0723 1996 LSI_SAS2 - ok
14:02:04.0746 1996 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:02:04.0748 1996 LSI_SCSI - ok
14:02:04.0784 1996 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
14:02:04.0786 1996 luafv - ok
14:02:04.0843 1996 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
14:02:04.0847 1996 Mcx2Svc - ok
14:02:04.0872 1996 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
14:02:04.0873 1996 megasas - ok
14:02:04.0947 1996 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
14:02:04.0951 1996 MegaSR - ok
14:02:04.0996 1996 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:02:04.0999 1996 MMCSS - ok
14:02:05.0019 1996 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
14:02:05.0020 1996 Modem - ok
14:02:05.0091 1996 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
14:02:05.0093 1996 monitor - ok
14:02:05.0160 1996 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
14:02:05.0161 1996 mouclass - ok
14:02:05.0196 1996 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
14:02:05.0197 1996 mouhid - ok
14:02:05.0255 1996 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
14:02:05.0257 1996 mountmgr - ok
14:02:05.0318 1996 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
14:02:05.0320 1996 mpio - ok
14:02:05.0345 1996 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
14:02:05.0346 1996 mpsdrv - ok
14:02:05.0425 1996 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
14:02:05.0435 1996 MpsSvc - ok
14:02:05.0501 1996 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
14:02:05.0530 1996 MRxDAV - ok
14:02:05.0586 1996 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:02:05.0595 1996 mrxsmb - ok
14:02:05.0708 1996 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:02:05.0717 1996 mrxsmb10 - ok
14:02:05.0773 1996 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:02:05.0779 1996 mrxsmb20 - ok
14:02:05.0833 1996 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
14:02:05.0834 1996 msahci - ok
14:02:05.0913 1996 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
14:02:05.0915 1996 msdsm - ok
14:02:05.0988 1996 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
14:02:05.0992 1996 MSDTC - ok
14:02:06.0079 1996 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
14:02:06.0080 1996 Msfs - ok
14:02:06.0098 1996 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
14:02:06.0099 1996 mshidkmdf - ok
14:02:06.0118 1996 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
14:02:06.0119 1996 msisadrv - ok
14:02:06.0177 1996 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
14:02:06.0181 1996 MSiSCSI - ok
14:02:06.0196 1996 msiserver - ok
14:02:06.0243 1996 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
14:02:06.0245 1996 MSKSSRV - ok
14:02:06.0269 1996 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
14:02:06.0270 1996 MSPCLOCK - ok
14:02:06.0286 1996 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
14:02:06.0287 1996 MSPQM - ok
14:02:06.0323 1996 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
14:02:06.0327 1996 MsRPC - ok
14:02:06.0371 1996 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
14:02:06.0372 1996 mssmbios - ok
14:02:06.0479 1996 MSSQL$MSSMLBIZ - ok
14:02:06.0535 1996 MSSQLServerADHelper (c06ea83f6fc2959e897c117255b6b1d5) c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
14:02:06.0538 1996 MSSQLServerADHelper - ok
14:02:06.0614 1996 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
14:02:06.0615 1996 MSTEE - ok
14:02:06.0636 1996 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
14:02:06.0637 1996 MTConfig - ok
14:02:06.0672 1996 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
14:02:06.0674 1996 Mup - ok
14:02:06.0750 1996 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
14:02:06.0758 1996 napagent - ok
14:02:06.0838 1996 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
14:02:06.0842 1996 NativeWifiP - ok
14:02:06.0894 1996 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
14:02:06.0906 1996 NDIS - ok
14:02:06.0949 1996 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
14:02:06.0951 1996 NdisCap - ok
14:02:07.0014 1996 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
14:02:07.0016 1996 NdisTapi - ok
14:02:07.0073 1996 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
14:02:07.0074 1996 Ndisuio - ok
14:02:07.0130 1996 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
14:02:07.0133 1996 NdisWan - ok
14:02:07.0199 1996 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
14:02:07.0200 1996 NDProxy - ok
14:02:07.0265 1996 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
14:02:07.0267 1996 NetBIOS - ok
14:02:07.0331 1996 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
14:02:07.0338 1996 NetBT - ok
14:02:07.0400 1996 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:02:07.0402 1996 Netlogon - ok
14:02:07.0490 1996 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
14:02:07.0496 1996 Netman - ok
14:02:07.0655 1996 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:02:07.0689 1996 NetMsmqActivator - ok
14:02:07.0704 1996 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:02:07.0706 1996 NetPipeActivator - ok
14:02:07.0766 1996 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
14:02:07.0777 1996 netprofm - ok
14:02:07.0829 1996 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:02:07.0831 1996 NetTcpActivator - ok
14:02:07.0837 1996 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:02:07.0839 1996 NetTcpPortSharing - ok
14:02:08.0159 1996 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
14:02:08.0218 1996 netw5v32 - ok
14:02:08.0391 1996 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
14:02:08.0392 1996 nfrd960 - ok
14:02:08.0555 1996 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
14:02:08.0561 1996 NlaSvc - ok
14:02:08.0591 1996 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
14:02:08.0593 1996 Npfs - ok
14:02:08.0700 1996 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
14:02:08.0754 1996 nsi - ok
14:02:08.0780 1996 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
14:02:08.0781 1996 nsiproxy - ok
14:02:08.0896 1996 Ntfs (33c3093d09017cfe2e219f2472bff6eb) C:\Windows\system32\drivers\Ntfs.sys
14:02:08.0914 1996 Ntfs - ok
14:02:09.0034 1996 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
14:02:09.0035 1996 Null - ok
14:02:09.0134 1996 nvraid (af2eec9580c1d32fb7eaf105d9784061) C:\Windows\system32\drivers\nvraid.sys
14:02:09.0136 1996 nvraid - ok
14:02:09.0173 1996 nvstor (9283c58ebaa2618f93482eb5dabcec82) C:\Windows\system32\drivers\nvstor.sys
14:02:09.0176 1996 nvstor - ok
14:02:09.0260 1996 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
14:02:09.0262 1996 nv_agp - ok
14:02:09.0328 1996 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
14:02:09.0330 1996 ohci1394 - ok
14:02:09.0446 1996 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:02:09.0450 1996 ose - ok
14:02:09.0614 1996 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:02:09.0621 1996 p2pimsvc - ok
14:02:09.0714 1996 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
14:02:09.0721 1996 p2psvc - ok
14:02:09.0755 1996 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
14:02:09.0757 1996 Parport - ok
14:02:09.0910 1996 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
14:02:09.0912 1996 partmgr - ok
14:02:09.0980 1996 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
14:02:09.0981 1996 Parvdm - ok
14:02:10.0014 1996 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
14:02:10.0018 1996 PcaSvc - ok
14:02:10.0169 1996 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
14:02:10.0172 1996 pci - ok
14:02:10.0198 1996 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
14:02:10.0199 1996 pciide - ok
14:02:10.0294 1996 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
14:02:10.0298 1996 pcmcia - ok
14:02:10.0382 1996 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
14:02:10.0383 1996 pcw - ok
14:02:10.0487 1996 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
14:02:10.0496 1996 PEAUTH - ok
14:02:10.0773 1996 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
14:02:10.0804 1996 pla - ok
14:02:11.0030 1996 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
14:02:11.0037 1996 PlugPlay - ok
14:02:11.0123 1996 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
14:02:11.0126 1996 PNRPAutoReg - ok
14:02:11.0160 1996 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
14:02:11.0170 1996 PNRPsvc - ok
14:02:11.0332 1996 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
14:02:11.0339 1996 PolicyAgent - ok
14:02:11.0475 1996 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
14:02:11.0480 1996 Power - ok
14:02:11.0732 1996 Power Manager DBC Service (bac02775cf629e5fe80bea952f4448ef) C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
14:02:11.0814 1996 Power Manager DBC Service - ok
14:02:12.0013 1996 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
14:02:12.0067 1996 PptpMiniport - ok
14:02:12.0184 1996 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
14:02:12.0186 1996 Processor - ok
14:02:12.0331 1996 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
14:02:12.0339 1996 ProfSvc - ok
14:02:12.0442 1996 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:02:12.0444 1996 ProtectedStorage - ok
14:02:12.0478 1996 psadd (72de205cd4006dc45b1401859c506679) C:\Windows\system32\DRIVERS\psadd.sys
14:02:12.0479 1996 psadd - ok
14:02:12.0634 1996 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
14:02:12.0636 1996 Psched - ok
14:02:12.0736 1996 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
14:02:12.0759 1996 ql2300 - ok
14:02:13.0386 1996 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
14:02:13.0388 1996 ql40xx - ok
14:02:13.0428 1996 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
14:02:13.0434 1996 QWAVE - ok
14:02:13.0461 1996 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
14:02:13.0462 1996 QWAVEdrv - ok
14:02:13.0489 1996 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
14:02:13.0490 1996 RasAcd - ok
14:02:13.0586 1996 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:02:13.0587 1996 RasAgileVpn - ok
14:02:13.0630 1996 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
14:02:13.0636 1996 RasAuto - ok
14:02:13.0717 1996 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:02:13.0720 1996 Rasl2tp - ok
14:02:13.0802 1996 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
14:02:13.0810 1996 RasMan - ok
14:02:13.0878 1996 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
14:02:13.0880 1996 RasPppoe - ok
14:02:13.0913 1996 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
14:02:13.0915 1996 RasSstp - ok
14:02:13.0946 1996 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
14:02:13.0950 1996 rdbss - ok
14:02:13.0973 1996 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
14:02:13.0974 1996 rdpbus - ok
14:02:14.0027 1996 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:02:14.0027 1996 RDPCDD - ok
14:02:14.0084 1996 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
14:02:14.0084 1996 RDPENCDD - ok
14:02:14.0104 1996 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
14:02:14.0105 1996 RDPREFMP - ok
14:02:14.0141 1996 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
14:02:14.0144 1996 RDPWD - ok
14:02:14.0217 1996 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
14:02:14.0220 1996 rdyboost - ok
14:02:14.0298 1996 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
14:02:14.0306 1996 RemoteAccess - ok
14:02:14.0342 1996 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
14:02:14.0347 1996 RemoteRegistry - ok
14:02:14.0416 1996 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
14:02:14.0419 1996 RFCOMM - ok
14:02:14.0447 1996 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
14:02:14.0456 1996 RpcEptMapper - ok
14:02:14.0495 1996 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
14:02:14.0497 1996 RpcLocator - ok
14:02:14.0570 1996 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
14:02:14.0586 1996 RpcSs - ok
14:02:14.0657 1996 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
14:02:14.0659 1996 rspndr - ok
14:02:14.0746 1996 RSUSBSTOR (7b7a157d6cc1eb77bc43e2aa23dae600) C:\Windows\system32\Drivers\RtsUStor.sys
14:02:14.0748 1996 RSUSBSTOR - ok
14:02:14.0833 1996 RTL8167 (c5a68c5ec01fd6f03396dd154b48db56) C:\Windows\system32\DRIVERS\Rt86win7.sys
14:02:14.0837 1996 RTL8167 - ok
14:02:14.0957 1996 rtl8192se (12dc84ea9fcd649e0a972bf6f1d9dd0f) C:\Windows\system32\DRIVERS\rtl8192se.sys
14:02:14.0969 1996 rtl8192se - ok
14:02:15.0031 1996 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:02:15.0033 1996 SamSs - ok
14:02:15.0109 1996 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
14:02:15.0111 1996 sbp2port - ok
14:02:15.0153 1996 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
14:02:15.0158 1996 SCardSvr - ok
14:02:15.0207 1996 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
14:02:15.0208 1996 scfilter - ok
14:02:15.0298 1996 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
14:02:15.0312 1996 Schedule - ok
14:02:15.0370 1996 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
14:02:15.0372 1996 SCPolicySvc - ok
14:02:15.0440 1996 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
14:02:15.0442 1996 sdbus - ok
14:02:15.0494 1996 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
14:02:15.0503 1996 SDRSVC - ok
14:02:15.0640 1996 SeaPort (d358e077a0a05d9b12da22d137ee8464) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
14:02:15.0645 1996 SeaPort - ok
14:02:15.0700 1996 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
14:02:15.0701 1996 secdrv - ok
14:02:15.0735 1996 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
14:02:15.0739 1996 seclogon - ok
14:02:15.0800 1996 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
14:02:15.0806 1996 SENS - ok
14:02:15.0854 1996 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
14:02:15.0858 1996 SensrSvc - ok
14:02:15.0944 1996 ser2plms (227df2e68510d25462ee80136722374e) C:\Windows\system32\DRIVERS\ser2plms.sys
14:02:15.0946 1996 ser2plms - ok
14:02:15.0982 1996 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
14:02:15.0984 1996 Serenum - ok
14:02:16.0006 1996 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
14:02:16.0009 1996 Serial - ok
14:02:16.0058 1996 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
14:02:16.0059 1996 sermouse - ok
14:02:16.0141 1996 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
14:02:16.0146 1996 SessionEnv - ok
14:02:16.0199 1996 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
14:02:16.0200 1996 sffdisk - ok
14:02:16.0221 1996 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
14:02:16.0222 1996 sffp_mmc - ok
14:02:16.0242 1996 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
14:02:16.0243 1996 sffp_sd - ok
14:02:16.0274 1996 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
14:02:16.0275 1996 sfloppy - ok
14:02:16.0364 1996 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
14:02:16.0370 1996 SharedAccess - ok
14:02:16.0435 1996 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
14:02:16.0444 1996 ShellHWDetection - ok
14:02:16.0483 1996 Shockprf (486a1bd22dd66d0a8542ebb0cd792bdb) C:\Windows\system32\DRIVERS\Apsx86.sys
14:02:16.0488 1996 Shockprf - ok
14:02:16.0536 1996 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
14:02:16.0538 1996 sisagp - ok
14:02:16.0599 1996 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:02:16.0601 1996 SiSRaid2 - ok
14:02:16.0624 1996 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
14:02:16.0627 1996 SiSRaid4 - ok
14:02:16.0747 1996 SlingAgentService (0973bd0931bf4d0dfb1885bd464e9766) C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
14:02:16.0750 1996 SlingAgentService - ok
14:02:16.0829 1996 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
14:02:16.0833 1996 Smb - ok
14:02:16.0916 1996 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
14:02:16.0919 1996 SNMPTRAP - ok
14:02:16.0959 1996 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
14:02:16.0960 1996 spldr - ok
14:02:17.0023 1996 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
14:02:17.0032 1996 Spooler - ok
14:02:17.0238 1996 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
14:02:17.0289 1996 sppsvc - ok
14:02:17.0415 1996 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
14:02:17.0419 1996 sppuinotify - ok
14:02:17.0555 1996 SQLBrowser (b2ec3e1deac5f0a764bd3486d213a0af) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
14:02:17.0560 1996 SQLBrowser - ok
14:02:17.0607 1996 SQLWriter (d2f4f32b59440011174b4f8137af4e0c) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
14:02:17.0610 1996 SQLWriter - ok
14:02:17.0714 1996 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
14:02:17.0720 1996 srv - ok
14:02:17.0754 1996 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
14:02:17.0759 1996 srv2 - ok
14:02:17.0837 1996 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
14:02:17.0841 1996 SrvHsfHDA - ok
14:02:17.0910 1996 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
14:02:17.0932 1996 SrvHsfV92 - ok
14:02:17.0990 1996 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
14:02:18.0002 1996 SrvHsfWinac - ok
14:02:18.0058 1996 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
14:02:18.0060 1996 srvnet - ok
14:02:18.0106 1996 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
14:02:18.0120 1996 SSDPSRV - ok
14:02:18.0145 1996 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
14:02:18.0149 1996 SstpSvc - ok
14:02:18.0190 1996 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
14:02:18.0191 1996 stexstor - ok
14:02:18.0282 1996 StillCam (edb05bd63148796f23ea78506404a538) C:\Windows\system32\DRIVERS\serscan.sys
14:02:18.0283 1996 StillCam - ok
14:02:18.0355 1996 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
14:02:18.0371 1996 StiSvc - ok
14:02:18.0426 1996 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
14:02:18.0427 1996 swenum - ok
14:02:18.0480 1996 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
14:02:18.0492 1996 swprv - ok
14:02:18.0566 1996 SynTP (d7dc30b8b41e7a913c3fccc0631e72ec) C:\Windows\system32\DRIVERS\SynTP.sys
14:02:18.0569 1996 SynTP - ok
14:02:18.0673 1996 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
14:02:18.0695 1996 SysMain - ok
14:02:18.0734 1996 szkg5 - ok
14:02:18.0745 1996 szkgfs - ok
14:02:18.0789 1996 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
14:02:18.0794 1996 TabletInputService - ok
14:02:18.0853 1996 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
14:02:18.0860 1996 TapiSrv - ok
14:02:18.0907 1996 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
14:02:18.0912 1996 TBS - ok
14:02:19.0030 1996 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
14:02:19.0050 1996 Tcpip - ok
14:02:19.0093 1996 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
14:02:19.0109 1996 TCPIP6 - ok
14:02:19.0265 1996 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
14:02:19.0266 1996 tcpipreg - ok
14:02:19.0338 1996 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
14:02:19.0339 1996 TDPIPE - ok
14:02:19.0392 1996 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
14:02:19.0394 1996 TDTCP - ok
14:02:19.0450 1996 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
14:02:19.0455 1996 tdx - ok
14:02:19.0507 1996 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
14:02:19.0508 1996 TermDD - ok
14:02:19.0595 1996 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
14:02:19.0606 1996 TermService - ok
14:02:19.0648 1996 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
14:02:19.0652 1996 Themes - ok
14:02:19.0822 1996 ThinkVantage Registry Monitor Service (82c4830ab23a7ab125f38da9a46b6a6d) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
14:02:19.0839 1996 ThinkVantage Registry Monitor Service - ok
14:02:19.0874 1996 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
14:02:19.0879 1996 THREADORDER - ok
14:02:19.0953 1996 TPDIGIMN (20a439d6475d6fe1909159c0143d0466) C:\Windows\system32\DRIVERS\ApsHM86.sys
14:02:19.0954 1996 TPDIGIMN - ok
14:02:20.0203 1996 TPHDEXLGSVC (3775e4aa5f72264dbab7a578dd913ecf) C:\Windows\system32\TPHDEXLG.exe
14:02:20.0207 1996 TPHDEXLGSVC - ok
14:02:20.0345 1996 TPHKSVC (2cf225e19490f499528b926263fe4554) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
14:02:20.0348 1996 TPHKSVC - ok
14:02:20.0448 1996 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
14:02:20.0449 1996 TPM - ok
14:02:20.0563 1996 TPPWRIF (6412da2b8d079d821b99b3a99943284e) C:\Windows\system32\drivers\Tppwr32v.sys
14:02:20.0564 1996 TPPWRIF - ok
14:02:20.0643 1996 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
14:02:20.0647 1996 TrkWks - ok
14:02:20.0817 1996 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
14:02:20.0821 1996 TrustedInstaller - ok
14:02:20.0848 1996 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:02:20.0849 1996 tssecsrv - ok
14:02:20.0958 1996 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
14:02:20.0960 1996 TsUsbFlt - ok
14:02:21.0178 1996 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
14:02:21.0182 1996 tunnel - ok
14:02:21.0441 1996 TVT Backup Service (4581a61ad590bc3ccdf2759d0bdd69fc) C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
14:02:21.0464 1996 TVT Backup Service - ok
14:02:21.0737 1996 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
14:02:21.0738 1996 uagp35 - ok
14:02:21.0856 1996 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
14:02:21.0861 1996 udfs - ok
14:02:21.0963 1996 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
14:02:21.0967 1996 UI0Detect - ok
14:02:22.0075 1996 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
14:02:22.0077 1996 uliagpkx - ok
14:02:22.0183 1996 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
14:02:22.0184 1996 umbus - ok
14:02:22.0294 1996 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
14:02:22.0295 1996 UmPass - ok
14:02:22.0335 1996 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
14:02:22.0342 1996 upnphost - ok
14:02:22.0504 1996 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
14:02:22.0506 1996 USBAAPL - ok
14:02:22.0630 1996 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys
14:02:22.0632 1996 usbaudio - ok
14:02:22.0708 1996 usbccgp (7e72e7d7e0757d59481d530fd2b0bfae) C:\Windows\system32\drivers\usbccgp.sys
14:02:22.0710 1996 usbccgp - ok
14:02:22.0743 1996 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
14:02:22.0745 1996 usbcir - ok
14:02:22.0817 1996 usbehci (cfbce999c057d78979a181c9c60f208e) C:\Windows\system32\drivers\usbehci.sys
14:02:22.0819 1996 usbehci - ok
14:02:22.0926 1996 usbfilter (19999ca8e83f16d271afc467b84718d7) C:\Windows\system32\DRIVERS\usbfilter.sys
14:02:22.0927 1996 usbfilter - ok
14:02:23.0036 1996 usbhub (9d22aad9ac6a07c691a1113e5f860868) C:\Windows\system32\DRIVERS\usbhub.sys
14:02:23.0086 1996 usbhub - ok
14:02:23.0107 1996 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\drivers\usbohci.sys
14:02:23.0108 1996 usbohci - ok
14:02:23.0196 1996 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
14:02:23.0197 1996 usbprint - ok
14:02:23.0340 1996 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
14:02:23.0342 1996 usbscan - ok
14:02:23.0464 1996 usbsmi (07ea2284c901ad3f5d1cf56268dadc6d) C:\Windows\system32\DRIVERS\SMIksdrv.sys
14:02:23.0467 1996 usbsmi - ok
14:02:23.0567 1996 USBSTOR (bf63ebfc6979fefb2bc03df7989a0c1a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:02:23.0569 1996 USBSTOR - ok
14:02:23.0653 1996 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\drivers\usbuhci.sys
14:02:23.0654 1996 usbuhci - ok
14:02:23.0761 1996 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
14:02:23.0764 1996 usbvideo - ok
14:02:23.0849 1996 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
14:02:23.0854 1996 UxSms - ok
14:02:23.0953 1996 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
14:02:23.0955 1996 VaultSvc - ok
14:02:24.0139 1996 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
14:02:24.0141 1996 vdrvroot - ok
14:02:24.0246 1996 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
14:02:24.0256 1996 vds - ok
14:02:24.0337 1996 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
14:02:24.0338 1996 vga - ok
14:02:24.0369 1996 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
14:02:24.0370 1996 VgaSave - ok
14:02:24.0399 1996 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
14:02:24.0448 1996 vhdmp - ok
14:02:24.0578 1996 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
14:02:24.0580 1996 viaagp - ok
14:02:24.0600 1996 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
14:02:24.0654 1996 ViaC7 - ok
14:02:24.0688 1996 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
14:02:24.0690 1996 viaide - ok
14:02:24.0772 1996 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
14:02:24.0774 1996 volmgr - ok
14:02:24.0864 1996 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
14:02:24.0869 1996 volmgrx - ok
14:02:24.0899 1996 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
14:02:24.0949 1996 volsnap - ok
14:02:25.0048 1996 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
14:02:25.0051 1996 vsmraid - ok
14:02:25.0188 1996 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
14:02:25.0207 1996 VSS - ok
14:02:25.0293 1996 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
14:02:25.0295 1996 vwifibus - ok
14:02:25.0422 1996 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
14:02:25.0423 1996 vwififlt - ok
14:02:25.0610 1996 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
14:02:25.0617 1996 W32Time - ok
14:02:25.0712 1996 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
14:02:25.0719 1996 WacomPen - ok
14:02:25.0843 1996 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
14:02:25.0897 1996 WANARP - ok
14:02:25.0908 1996 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
14:02:25.0912 1996 Wanarpv6 - ok
14:02:26.0208 1996 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
14:02:26.0227 1996 WatAdminSvc - ok
14:02:26.0442 1996 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
14:02:26.0521 1996 wbengine - ok
14:02:26.0562 1996 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
14:02:26.0620 1996 WbioSrvc - ok
14:02:26.0739 1996 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
14:02:26.0749 1996 wcncsvc - ok
14:02:26.0776 1996 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
14:02:26.0833 1996 WcsPlugInService - ok
14:02:26.0950 1996 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
14:02:26.0952 1996 Wd - ok
14:02:27.0035 1996 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
14:02:27.0042 1996 Wdf01000 - ok
14:02:27.0121 1996 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:02:27.0126 1996 WdiServiceHost - ok
14:02:27.0138 1996 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
14:02:27.0141 1996 WdiSystemHost - ok
14:02:27.0244 1996 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
14:02:27.0251 1996 WebClient - ok
14:02:27.0352 1996 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
14:02:27.0358 1996 Wecsvc - ok
14:02:27.0432 1996 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
14:02:27.0438 1996 wercplsupport - ok
14:02:27.0548 1996 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
14:02:27.0552 1996 WerSvc - ok
14:02:27.0651 1996 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
14:02:27.0652 1996 WfpLwf - ok
14:02:27.0723 1996 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
14:02:27.0726 1996 WIMMount - ok
14:02:27.0865 1996 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
14:02:27.0936 1996 WinDefend - ok
14:02:27.0961 1996 WinHttpAutoProxySvc - ok
14:02:28.0083 1996 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
14:02:28.0137 1996 Winmgmt - ok
14:02:28.0349 1996 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
14:02:28.0369 1996 WinRM - ok
14:02:28.0582 1996 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
14:02:28.0584 1996 WinUsb - ok
14:02:28.0699 1996 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
14:02:28.0714 1996 Wlansvc - ok
14:02:28.0810 1996 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
14:02:28.0811 1996 WmiAcpi - ok
14:02:28.0991 1996 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
14:02:28.0994 1996 wmiApSrv - ok
14:02:29.0223 1996 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
14:02:29.0239 1996 WMPNetworkSvc - ok
14:02:29.0279 1996 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
14:02:29.0283 1996 WPCSvc - ok
14:02:29.0443 1996 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
14:02:29.0448 1996 WPDBusEnum - ok
14:02:29.0587 1996 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
14:02:29.0588 1996 ws2ifsl - ok
14:02:29.0738 1996 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\system32\wscsvc.dll
14:02:29.0743 1996 wscsvc - ok
14:02:29.0756 1996 WSearch - ok
14:02:30.0051 1996 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
14:02:30.0091 1996 wuauserv - ok
14:02:30.0324 1996 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
14:02:30.0326 1996 WudfPf - ok
14:02:30.0426 1996 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:02:30.0429 1996 WUDFRd - ok
14:02:30.0587 1996 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
14:02:30.0592 1996 wudfsvc - ok
14:02:30.0687 1996 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
14:02:30.0694 1996 WwanSvc - ok
14:02:30.0823 1996 MBR (0x1B8) (fa3599867c25beb155d4513edd43061d) \Device\Harddisk0\DR0
14:02:31.0151 1996 \Device\Harddisk0\DR0 - ok
14:02:31.0161 1996 Boot (0x1200) (74ea7ebabd350cf8d9eb37e45f2e0f4a) \Device\Harddisk0\DR0\Partition0
14:02:31.0163 1996 \Device\Harddisk0\DR0\Partition0 - ok
14:02:31.0247 1996 Boot (0x1200) (ff63265f03f74e767236c6751bc52668) \Device\Harddisk0\DR0\Partition1
14:02:31.0249 1996 \Device\Harddisk0\DR0\Partition1 - ok
14:02:31.0320 1996 Boot (0x1200) (5bf722cb82b04be93ff7417c72277de9) \Device\Harddisk0\DR0\Partition2
14:02:31.0322 1996 \Device\Harddisk0\DR0\Partition2 - ok
14:02:31.0327 1996 ============================================================
14:02:31.0327 1996 Scan finished
14:02:31.0327 1996 ============================================================
14:02:31.0347 0352 Detected object count: 0
14:02:31.0347 0352 Actual detected object count: 0
14:04:21.0100 1500 Deinitialize success




AswMBR log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-14 14:06:19
-----------------------------
14:06:19.701 OS Version: Windows 6.1.7601 Service Pack 1
14:06:19.701 Number of processors: 1 586 0x7F02
14:06:19.702 ComputerName: BILL-THINK UserName: Bill
14:06:20.172 Initialize success
14:06:29.590 AVAST engine defs: 12061400
14:08:12.944 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
14:08:12.947 Disk 0 Vendor: HITACHI_HTS545016B9A300 PBBZC61H Size: 152627MB BusType: 11
14:08:13.025 Disk 0 MBR read successfully
14:08:13.028 Disk 0 MBR scan
14:08:13.087 Disk 0 unknown MBR code
14:08:13.096 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 1200 MB offset 2048
14:08:13.116 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 141425 MB offset 2459648
14:08:13.191 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 10000 MB offset 292098048
14:08:13.198 Disk 0 scanning sectors +312578048
14:08:13.298 Disk 0 scanning C:\Windows\system32\drivers
14:08:31.213 Service scanning
14:09:25.488 Modules scanning
14:09:40.564 Disk 0 trace - called modules:
14:09:41.217 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS halmacpi.dll PCIIDEX.SYS msahci.sys
14:09:41.223 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85389158]
14:09:41.230 3 CLASSPNP.SYS[89fd759e] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x85351908]
14:09:41.891 AVAST engine scan C:\Windows
14:09:45.848 AVAST engine scan C:\Windows\system32
14:13:56.691 AVAST engine scan C:\Windows\system32\drivers
14:14:19.092 AVAST engine scan C:\Users\Bill
14:28:45.474 AVAST engine scan C:\ProgramData
14:31:05.353 Scan finished successfully
14:31:24.012 Disk 0 MBR has been saved successfully to "C:\Users\Bill\Desktop\MBR.dat"
14:31:24.018 The log file has been saved successfully to "C:\Users\Bill\Desktop\aswMBR.txt"

Edited by grumpster, 14 June 2012 - 03:53 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:47 AM

Posted 14 June 2012 - 03:59 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Uninstall firefox>>Make sure to check Remove my Firefox personal data option
Install firefox again and let me know if you still have redirects

Edited by narenxp, 14 June 2012 - 03:59 PM.


#7 grumpster

grumpster
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:47 PM

Posted 14 June 2012 - 04:29 PM

OK, will do. Will be some hours before all that completes but will post results. Thank you again for taking this on!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:47 AM

Posted 14 June 2012 - 04:38 PM

:thumbup2:

#9 grumpster

grumpster
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:47 PM

Posted 14 June 2012 - 07:15 PM

OK, MBAM ran clean in Safe Mode as well as in normal mode:

=================================================================================================================================================================
Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.14.10

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
Bill :: BILL-THINK [administrator]

6/14/2012 6:39:24 PM
mbam-log-2012-06-14 (18-39-24).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 333341
Time elapsed: 1 hour(s), 17 minute(s), 27 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
============================================================================================================================================================

So I ran the mini tool and heres the log from that- not clear ( to me) it ran clean

===============================================================================================================================================================


MiniToolBox by Farbar Version: 09-06-2012
Ran by Bill (administrator) on 14-06-2012 at 20:00:56
Microsoft Windows 7 Home Premium Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

11b/g/n Wireless LAN Mini-PCI Express Adapter II = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Bill-THINK
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : 11b/g/n Wireless LAN Mini-PCI Express Adapter II
Physical Address. . . . . . . . . : 70-1A-04-A9-B2-0B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b8fd:3f6f:e274:54ca%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, June 14, 2012 6:36:31 PM
Lease Expires . . . . . . . . . . : Friday, June 15, 2012 6:36:32 PM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 191896068
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-EB-9D-69-00-26-9E-D5-E6-09
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-26-9E-D5-E6-09
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.gateway.2wire.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1c73:119e:3f57:febf(Preferred)
Link-local IPv6 Address . . . . . : fe80::1c73:119e:3f57:febf%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Reusable ISATAP Interface {C381A908-A234-4CCE-B626-F04CD8590DF3}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{17108E0E-D045-4EDA-8E10-554CA2981B91}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4004:801::1009
74.125.228.32
74.125.228.33
74.125.228.34
74.125.228.35
74.125.228.36
74.125.228.37
74.125.228.38
74.125.228.39
74.125.228.40
74.125.228.41
74.125.228.46


Pinging google.com [74.125.228.34] with 32 bytes of data:
Reply from 74.125.228.34: bytes=32 time=38ms TTL=50
Reply from 74.125.228.34: bytes=32 time=37ms TTL=50

Ping statistics for 74.125.228.34:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 37ms, Maximum = 38ms, Average = 37ms
Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=74ms TTL=44
Reply from 98.139.183.24: bytes=32 time=112ms TTL=42

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 74ms, Maximum = 112ms, Average = 93ms
Server: homeportal
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...70 1a 04 a9 b2 0b ......11b/g/n Wireless LAN Mini-PCI Express Adapter II
10...00 26 9e d5 e6 09 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.64 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.64 281
192.168.1.64 255.255.255.255 On-link 192.168.1.64 281
192.168.1.255 255.255.255.255 On-link 192.168.1.64 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.64 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.64 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:1c73:119e:3f57:febf/128
On-link
11 281 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::1c73:119e:3f57:febf/128
On-link
11 281 fe80::b8fd:3f6f:e274:54ca/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:55:6650)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:55:6640)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:55:6630)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.body locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:55:6620)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.title locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:14:1240)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:14:1240)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:14:1220)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.body locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:14:1140)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.title locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:13 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:13:2170)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExpiringWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:13 PM) (Source: PC-Doctor) (User: )
Description: (4076) Asapi: (19:01:13:2170)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExpiringWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt


System errors:
=============
Error: (06/14/2012 06:36:32 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom
is3srv
szkg5
szkgfs

Error: (06/14/2012 06:34:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:34:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:34:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:29:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:29:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:29:46 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:27:38 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:27:38 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/14/2012 06:27:38 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:55:6650)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:55:6640)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:55:6630)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.body locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:55 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:55:6620)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.LenovoCare.title locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:14:1240)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:14:1240)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:14:1220)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.body locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:14 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:14:1140)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExtendWarranty.title locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:13 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:13:2170)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExpiringWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt

Error: (06/14/2012 07:01:13 PM) (Source: PC-Doctor)(User: )
Description: (4076) Asapi: (19:01:13:2170)(4076) DEFECT.LOCALIZATION - Error -- Missing String: scriptlets : homepage.panel.ExpiringWarranty.button.text locale: PCDLocale: language = en, customer = lenovo, variant = ltt


=========================== Installed Programs ============================

Registry Patch to arrange icons in Device and Printers folder of Windows 7 (Version: 1.00)
32 Bit HP CIO Components Installer (Version: 6.1.1)
6400_Help (Version: 1.00.0000)
Access Help (Version: 3.00)
Adobe Download Manager (Version: 1.6.2.63)
Adobe Flash Player 10 ActiveX (Version: 10.0.12.36)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
AMD USB Filter Driver (Version: 1.0.13.88)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
AT&T Service Activation (Version: 1.8.7.0)
ATI Catalyst Install Manager (Version: 3.0.774.0)
ATI Uninstaller (Version: 8.663.2-091019a-091218C-Lenovo)
Bonjour (Version: 3.0.0.10)
bpd_scan (Version: 3.00.0000)
BPDSoftware (Version: 130.0.000.000)
BPDSoftware_Ini (Version: 1.00.0000)
Business Contact Manager for Outlook 2007 SP1 (Version: 3.0.7311.0)
Catalyst Control Center Core Implementation (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Full Existing (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Full New (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Light (Version: 2010.0504.2152.37420)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0504.2152.37420)
Catalyst Control Center InstallProxy (Version: 2009.1019.1219.20240)
Catalyst Control Center InstallProxy (Version: 2010.0504.2152.37420)
Catalyst Control Center Localization All (Version: 2010.0504.2152.37420)
ccc-core-static (Version: 2010.0504.2152.37420)
ccc-utility (Version: 2010.0504.2152.37420)
CCC Help English (Version: 2010.0504.2151.37420)
CCleaner (Version: 3.19)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Client Security - Password Manager (Version: 8.30.0023.00)
Colorado Topo Maps
Conexant 20582 SmartAudio HD (Version: 4.98.18.62)
CopyTrans Suite Remove Only
CPUID CPU-Z 1.53.1
Create Recovery Media (Version: 1.20.0.00)
Ekahau HeatMapper (Version: 1.1.3.38636)
ESET Online Scanner v3
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
GanttProject
Garmin MapSource (Version: 6.15.11)
Garmin Training Center (Version: 3.5.3)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.5.4)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.111)
GPSBabel 1.4.2
GPX2IMG 1.0.5.2
Hatfield-McCoy Trails
HP Officejet J6400 Series (Version: 13.0)
HUAWEI DataCard Driver 3.05 (Version: 3.05)
iCloud (Version: 1.0.2.17)
Integrated Camera (Version: 5.50.2.7)
IP Camera
IPSetup version 2.0.0.0 (Version: 2.0.0.0)
iSpy (Version: 3.6.2)
iTunes (Version: 10.5.2.11)
J6400_Basic (Version: 130.0.000.000)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 14.0.8089.726)
Korean Fonts Support For Adobe Reader 9 (Version: 9.0.0)
Lenovo Auto Scroll Utility (Version: 1.00)
Lenovo System Interface Driver (Version: 1.02)
Lenovo ThinkVantage Toolbox (Version: 6.0.5802.25)
Lenovo Warranty Information (Version: 1.0.0003.00)
Lenovo Welcome (Version: 2.0.023.0)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MasterCook Deluxe 8 (Version: 8.00.000)
Message Center Plus (Version: 2.0.0012.00)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Expression Encoder 3 (Version: 3.0.1332.0)
Microsoft Office 2003 Web Components (Version: 11.0.8003.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office Access database engine 2007 (English) (Version: 12.0.4518.1031)
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0)
Microsoft Research AutoCollage Touch 2009 (Version: 2.00.2009)
Microsoft Search Enhancement Pack (Version: 1.2.123.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.3.4035.00)
Microsoft SQL Server Native Client (Version: 9.00.4035.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.4035.00)
Microsoft SQL Server VSS Writer (Version: 9.00.4035.00)
Microsoft Streets & Trips 2009 (Version: 16.0.18.1000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Mobile Broadband Connect (Version: 3.5.0010)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 13.0 (x86 en-US) (Version: 13.0)
Mozilla Maintenance Service (Version: 13.0)
Mozilla Thunderbird 12.0.1 (x86 en-US) (Version: 12.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network (Version: 130.0.579.000)
On Screen Display (Version: 6.10.01)
OpenOffice.org 3.2 (Version: 3.2.9483)
OpenProj (Version: 1.4.0)
Paiute Trails v1.1
Picasa 3 (Version: 3.8)
PL-2303 USB-to-Serial (Version: 1.00.000)
Pod to PC 3.243
Prism Video Converter
QuickTime (Version: 7.71.80.42)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek Ethernet Controller Driver For Windows Vista and Later (Version: 1.00.0010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30118)
RealUpgrade 1.1 (Version: 1.1.0)
Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (Version: 1.00)
Rescue and Recovery (Version: 4.30.0025.00)
Scan (Version: 13.0.0.0)
SecurView Pro version 2.0.0.0 (Version: 2.0.0.0)
SlingPlayer (Version: 2.0.4521)
System Update (Version: 4.00.0009)
ThinkPad Bluetooth with Enhanced Data Rate Software (Version: 6.2.1.800)
ThinkPad FullScreen Magnifier (Version: 2.15)
ThinkPad Power Management Driver (Version: 1.60.0.4)
ThinkPad Power Manager (Version: 3.30)
ThinkPad UltraNav Driver (Version: 15.0.18.0)
ThinkPad UltraNav Utility (Version: 2.13.0)
ThinkPad Wireless LAN Adapter Software (Version: 1.00.0017)
ThinkVantage Access Connections (Version: 5.72)
ThinkVantage Active Protection System (Version: 1.71)
Toolbox (Version: 130.0.648.000)
Unity Web Player (Version: 2.6.1f3_31223)
UTAH TOPO 2011
VC 9.0 Runtime (Version: 1.0.0)
Verizon Wireless Mobile Broadband Self Activation (Version: 3.1.4)
VideoPad Video Editor
VisualGPS (Version: 4.2.105)
WavePad Sound Editor
WebReg (Version: 130.0.132.017)
West Virginia Topo Map
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom Bluetooth (09/11/2009 6.2.0.9407) (Version: 09/11/2009 6.2.0.9407)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Driver Package - Lenovo 1.60.0.4 (11/18/2009 1.60.0.4) (Version: 11/18/2009 1.60.0.4)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
WV ATV Trails 2.0
WV ATV Trails 2.5
Yahoo! Detect
ZoneAlarm LTD Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 37%
Total physical RAM: 2814.42 MB
Available physical RAM: 1746.89 MB
Total Pagefile: 6612.71 MB
Available Pagefile: 5660.79 MB
Total Virtual: 2047.88 MB
Available Virtual: 1940.76 MB

========================= Partitions: =====================================

1 Drive c: (Windows7_OS) (Fixed) (Total:138.11 GB) (Free:48.98 GB) NTFS
2 Drive q: (Lenovo_Recovery) (Fixed) (Total:9.77 GB) (Free:3.97 GB) NTFS

========================= Users: ========================================

User accounts for \\BILL-THINK

Administrator Bill Guest


**** End of log ****



Is it OK to proceed with Firefox removal and re-install ? Thought it might be good to pause here until you digest the above...


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:47 AM

Posted 14 June 2012 - 07:24 PM

Go ahead :thumbup2:

#11 grumpster

grumpster
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:47 PM

Posted 14 June 2012 - 08:35 PM

Uninstalled Firefox, personal data ( I guess it was time to cleanup the old bookmarks anyways) I included the steps to do the extra manual delete for Firefox directory extensions folder, etc. ( stuff not removed by uninstall) per Mozilla website.

Rebooted. Reinstalled Firefox. Browsing is fine, no redirects. Rebooted again, still appears fine. Good !

The only I haven't done is test IE, I used it only to get Firefox back on and didn't do any testing to see if I got redirects there.

Question: should I remove and re-install IE as a precaution ? I feel like I dont want to leave it untouched if there is a possibility that it has altered settings.


UPDATE: Just plunged in and tested IE and have no issues there with redirects, so I suppose the question above is moot.

Thank you for your expertise in cleaning this up, I had apparently gotten myself part-way there but certainly needed your help in getting to the end cleanup.

Narenxp rocks !

Edited by grumpster, 14 June 2012 - 08:57 PM.


#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:47 AM

Posted 14 June 2012 - 09:06 PM

Thanks for the feedback

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your ADOBE FLASH PLAYER

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#13 grumpster

grumpster
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:12:47 PM

Posted 15 June 2012 - 06:45 AM

Done, Done and Done

Usually I am pretty careful when browsing and reading mail- obviously something got past me. Thanks again...I'm off to go prune my emails and set up more filters and protection there. THANK YOU!!


:thumbsup: :thumbsup:

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:47 AM

Posted 15 June 2012 - 10:29 AM

You're most welcome :thumbsup:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users