Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirect virus


  • Please log in to reply
19 replies to this topic

#1 achisri

achisri

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 23 June 2012 - 10:15 PM

Hi,

I am facing problem of Google Redirect .When ever i click on Google search results it will takes to different site.
This is happing only in IE(internet explorer). This Issue is not there in Chrome & FireFox browsers.

I had gone through multiple threads, I had run full scan using Malware Bytes, Super Antivirus, Hitman Pro 3.6 , TDSS Killer, Goodred Fix, none of these showed any issues, all of them given no issue results. But I am still having this Google Redirect issue. Some times it goes results.servary.com or infomash.com ....etc.

Finally i came to know Combofix from your site, but it is saying run only with advise from Technician. That's reason I am posting this. is any one can help me on this Combofix run !

I had already took backup of all of my files on my laptop. I am ready to reformat as well.

Thanks
Sreeni

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 23 June 2012 - 10:43 PM

Lets see if we could fix this without combofix

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 10:23 AM

Hi Naren Thanks for information.

I had run the TDSSKilller , aswMBR ,ESET Online Scanner all these 3 tools runs are completed. Below ones are logs.

09:23:40.0157 5024 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
09:23:40.0541 5024 ============================================================
09:23:40.0541 5024 Current date / time: 2012/06/24 09:23:40.0541
09:23:40.0541 5024 SystemInfo:
09:23:40.0542 5024
09:23:40.0542 5024 OS Version: 6.1.7601 ServicePack: 1.0
09:23:40.0542 5024 Product type: Workstation
09:23:40.0542 5024 ComputerName: ACHISREENI-PC
09:23:40.0543 5024 UserName: achisreeni
09:23:40.0543 5024 Windows directory: C:\windows
09:23:40.0543 5024 System windows directory: C:\windows
09:23:40.0543 5024 Running under WOW64
09:23:40.0543 5024 Processor architecture: Intel x64
09:23:40.0543 5024 Number of processors: 4
09:23:40.0543 5024 Page size: 0x1000
09:23:40.0543 5024 Boot type: Normal boot
09:23:40.0543 5024 ============================================================
09:23:41.0046 5024 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:23:41.0059 5024 ============================================================
09:23:41.0060 5024 \Device\Harddisk0\DR0:
09:23:41.0060 5024 MBR partitions:
09:23:41.0060 5024 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
09:23:41.0060 5024 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x2FFC76F0
09:23:41.0078 5024 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x31D46800, BlocksNum 0x257FF000
09:23:41.0078 5024 ============================================================
09:23:41.0133 5024 C: <-> \Device\Harddisk0\DR0\Partition1
09:23:41.0202 5024 E: <-> \Device\Harddisk0\DR0\Partition2
09:23:41.0202 5024 ============================================================
09:23:41.0202 5024 Initialize success
09:23:41.0202 5024 ============================================================
09:23:48.0006 3828 ============================================================
09:23:48.0006 3828 Scan started
09:23:48.0006 3828 Mode: Manual; SigCheck; TDLFS;
09:23:48.0006 3828 ============================================================
09:23:48.0873 3828 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
09:23:49.0023 3828 1394ohci - ok
09:23:49.0106 3828 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
09:23:49.0148 3828 ACPI - ok
09:23:49.0193 3828 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
09:23:49.0249 3828 AcpiPmi - ok
09:23:49.0412 3828 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:23:49.0443 3828 AdobeARMservice - ok
09:23:49.0676 3828 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:23:49.0713 3828 AdobeFlashPlayerUpdateSvc - ok
09:23:49.0819 3828 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
09:23:49.0873 3828 adp94xx - ok
09:23:49.0943 3828 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
09:23:50.0008 3828 adpahci - ok
09:23:50.0053 3828 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
09:23:50.0109 3828 adpu320 - ok
09:23:50.0182 3828 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
09:23:50.0246 3828 AeLookupSvc - ok
09:23:50.0349 3828 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Program Files\IDT\WDM\AESTSr64.exe
09:23:50.0417 3828 AESTFilters - ok
09:23:50.0505 3828 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
09:23:50.0587 3828 AFD - ok
09:23:50.0644 3828 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
09:23:50.0677 3828 agp440 - ok
09:23:50.0715 3828 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
09:23:50.0786 3828 ALG - ok
09:23:50.0828 3828 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
09:23:50.0857 3828 aliide - ok
09:23:50.0871 3828 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
09:23:50.0881 3828 amdide - ok
09:23:50.0932 3828 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
09:23:51.0002 3828 AmdK8 - ok
09:23:51.0033 3828 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
09:23:51.0096 3828 AmdPPM - ok
09:23:51.0158 3828 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
09:23:51.0215 3828 amdsata - ok
09:23:51.0264 3828 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
09:23:51.0337 3828 amdsbs - ok
09:23:51.0352 3828 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
09:23:51.0361 3828 amdxata - ok
09:23:51.0432 3828 ApfiltrService (24ed0eb2b2558970176ecee680f8f806) C:\windows\system32\DRIVERS\Apfiltr.sys
09:23:51.0466 3828 ApfiltrService - ok
09:23:51.0518 3828 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
09:23:51.0594 3828 AppID - ok
09:23:51.0634 3828 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
09:23:51.0714 3828 AppIDSvc - ok
09:23:51.0773 3828 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
09:23:51.0853 3828 Appinfo - ok
09:23:52.0017 3828 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:23:52.0045 3828 Apple Mobile Device - ok
09:23:52.0088 3828 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
09:23:52.0118 3828 arc - ok
09:23:52.0139 3828 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
09:23:52.0150 3828 arcsas - ok
09:23:52.0180 3828 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
09:23:52.0301 3828 AsyncMac - ok
09:23:52.0352 3828 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
09:23:52.0383 3828 atapi - ok
09:23:52.0473 3828 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
09:23:52.0573 3828 AudioEndpointBuilder - ok
09:23:52.0578 3828 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
09:23:52.0612 3828 AudioSrv - ok
09:23:52.0699 3828 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
09:23:52.0778 3828 AxInstSV - ok
09:23:52.0873 3828 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
09:23:52.0906 3828 b06bdrv - ok
09:23:52.0975 3828 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
09:23:53.0040 3828 b57nd60a - ok
09:23:53.0088 3828 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
09:23:53.0154 3828 BDESVC - ok
09:23:53.0165 3828 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
09:23:53.0215 3828 Beep - ok
09:23:53.0328 3828 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
09:23:53.0414 3828 BITS - ok
09:23:53.0450 3828 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
09:23:53.0499 3828 blbdrive - ok
09:23:53.0690 3828 Bluetooth Device Monitor (093b1b419ef25b15d3a1ca6953f41afb) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
09:23:53.0737 3828 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - warning
09:23:53.0737 3828 Bluetooth Device Monitor - detected UnsignedFile.Multi.Generic (1)
09:23:53.0866 3828 Bluetooth Media Service (03a7341e94acd92e0831336d4f3ace92) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
09:23:53.0921 3828 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - warning
09:23:53.0922 3828 Bluetooth Media Service - detected UnsignedFile.Multi.Generic (1)
09:23:54.0037 3828 Bluetooth OBEX Service (a2ebf384ed105fed7d05c5465500ef2e) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
09:23:54.0082 3828 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - warning
09:23:54.0082 3828 Bluetooth OBEX Service - detected UnsignedFile.Multi.Generic (1)
09:23:54.0225 3828 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
09:23:54.0252 3828 Bonjour Service - ok
09:23:54.0423 3828 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
09:23:54.0460 3828 bowser - ok
09:23:54.0513 3828 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
09:23:54.0549 3828 BrFiltLo - ok
09:23:54.0567 3828 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
09:23:54.0588 3828 BrFiltUp - ok
09:23:54.0632 3828 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
09:23:54.0682 3828 Browser - ok
09:23:54.0734 3828 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
09:23:54.0788 3828 Brserid - ok
09:23:54.0809 3828 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
09:23:54.0842 3828 BrSerWdm - ok
09:23:54.0876 3828 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
09:23:54.0903 3828 BrUsbMdm - ok
09:23:54.0925 3828 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
09:23:54.0955 3828 BrUsbSer - ok
09:23:55.0009 3828 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys
09:23:55.0091 3828 BthEnum - ok
09:23:55.0123 3828 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
09:23:55.0186 3828 BTHMODEM - ok
09:23:55.0226 3828 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
09:23:55.0266 3828 BthPan - ok
09:23:55.0369 3828 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys
09:23:55.0420 3828 BTHPORT - ok
09:23:55.0482 3828 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
09:23:55.0552 3828 bthserv - ok
09:23:55.0575 3828 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys
09:23:55.0638 3828 BTHUSB - ok
09:23:55.0689 3828 btmaux (16c1bac9760c9fa85a30f3fa0fbb1b7a) C:\windows\system32\DRIVERS\btmaux.sys
09:23:55.0716 3828 btmaux - ok
09:23:55.0788 3828 btmhsf (0c468d8da95be16bfdd380bb9de88259) C:\windows\system32\DRIVERS\btmhsf.sys
09:23:55.0829 3828 btmhsf - ok
09:23:55.0870 3828 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
09:23:55.0943 3828 cdfs - ok
09:23:56.0008 3828 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
09:23:56.0070 3828 cdrom - ok
09:23:56.0115 3828 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
09:23:56.0177 3828 CertPropSvc - ok
09:23:56.0249 3828 cfwids (274ce03459896006f7a5069266e0469e) C:\windows\system32\drivers\cfwids.sys
09:23:56.0280 3828 cfwids - ok
09:23:56.0331 3828 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
09:23:56.0404 3828 circlass - ok
09:23:56.0481 3828 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
09:23:56.0507 3828 CLFS - ok
09:23:56.0591 3828 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:23:56.0609 3828 clr_optimization_v2.0.50727_32 - ok
09:23:56.0665 3828 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:23:56.0675 3828 clr_optimization_v2.0.50727_64 - ok
09:23:56.0765 3828 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:23:56.0797 3828 clr_optimization_v4.0.30319_32 - ok
09:23:56.0845 3828 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:23:56.0855 3828 clr_optimization_v4.0.30319_64 - ok
09:23:56.0883 3828 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
09:23:56.0917 3828 CmBatt - ok
09:23:56.0944 3828 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
09:23:56.0976 3828 cmdide - ok
09:23:57.0057 3828 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
09:23:57.0105 3828 CNG - ok
09:23:57.0152 3828 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
09:23:57.0179 3828 Compbatt - ok
09:23:57.0212 3828 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
09:23:57.0277 3828 CompositeBus - ok
09:23:57.0301 3828 COMSysApp - ok
09:23:57.0323 3828 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
09:23:57.0334 3828 crcdisk - ok
09:23:57.0398 3828 CryptSvc (4f5414602e2544a4554d95517948b705) C:\windows\system32\cryptsvc.dll
09:23:57.0442 3828 CryptSvc - ok
09:23:57.0521 3828 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\windows\system32\DRIVERS\CtClsFlt.sys
09:23:57.0565 3828 CtClsFlt - ok
09:23:57.0643 3828 ctxusbm (ba8e5b2291c01ef71ca80e25f0c79d55) C:\windows\system32\DRIVERS\ctxusbm.sys
09:23:57.0667 3828 ctxusbm - ok
09:23:57.0723 3828 dc3d (1ca90212a99db6975c344826d11055c9) C:\windows\system32\DRIVERS\dc3d.sys
09:23:57.0753 3828 dc3d - ok
09:23:57.0852 3828 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
09:23:57.0943 3828 DcomLaunch - ok
09:23:58.0007 3828 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
09:23:58.0099 3828 defragsvc - ok
09:23:58.0144 3828 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
09:23:58.0193 3828 DfsC - ok
09:23:58.0270 3828 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
09:23:58.0364 3828 Dhcp - ok
09:23:58.0403 3828 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
09:23:58.0463 3828 discache - ok
09:23:58.0517 3828 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
09:23:58.0552 3828 Disk - ok
09:23:58.0571 3828 dlea_device - ok
09:23:58.0621 3828 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
09:23:58.0676 3828 Dnscache - ok
09:23:58.0735 3828 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
09:23:58.0821 3828 dot3svc - ok
09:23:58.0865 3828 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
09:23:58.0938 3828 DPS - ok
09:23:58.0980 3828 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
09:23:59.0031 3828 drmkaud - ok
09:23:59.0141 3828 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
09:23:59.0178 3828 DXGKrnl - ok
09:23:59.0242 3828 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
09:23:59.0326 3828 EapHost - ok
09:23:59.0557 3828 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
09:23:59.0684 3828 ebdrv - ok
09:23:59.0829 3828 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
09:23:59.0907 3828 EFS - ok
09:24:00.0021 3828 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
09:24:00.0095 3828 ehRecvr - ok
09:24:00.0142 3828 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
09:24:00.0164 3828 ehSched - ok
09:24:00.0269 3828 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
09:24:00.0338 3828 elxstor - ok
09:24:00.0370 3828 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
09:24:00.0426 3828 ErrDev - ok
09:24:00.0509 3828 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
09:24:00.0594 3828 EventSystem - ok
09:24:00.0865 3828 EvtEng (8b6c9924b0d333dbf76086b8258a0891) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
09:24:00.0899 3828 EvtEng - ok
09:24:01.0106 3828 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
09:24:01.0168 3828 exfat - ok
09:24:01.0203 3828 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
09:24:01.0305 3828 fastfat - ok
09:24:01.0411 3828 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
09:24:01.0467 3828 Fax - ok
09:24:01.0510 3828 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
09:24:01.0567 3828 fdc - ok
09:24:01.0610 3828 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
09:24:01.0700 3828 fdPHost - ok
09:24:01.0721 3828 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
09:24:01.0751 3828 FDResPub - ok
09:24:01.0774 3828 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
09:24:01.0785 3828 FileInfo - ok
09:24:01.0813 3828 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
09:24:01.0885 3828 Filetrace - ok
09:24:01.0927 3828 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
09:24:01.0958 3828 flpydisk - ok
09:24:02.0035 3828 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
09:24:02.0055 3828 FltMgr - ok
09:24:02.0164 3828 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
09:24:02.0222 3828 FontCache - ok
09:24:02.0312 3828 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:24:02.0341 3828 FontCache3.0.0.0 - ok
09:24:02.0405 3828 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
09:24:02.0437 3828 FsDepends - ok
09:24:02.0492 3828 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
09:24:02.0524 3828 Fs_Rec - ok
09:24:02.0600 3828 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
09:24:02.0625 3828 fvevol - ok
09:24:02.0643 3828 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
09:24:02.0654 3828 gagp30kx - ok
09:24:02.0699 3828 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
09:24:02.0708 3828 GEARAspiWDM - ok
09:24:02.0799 3828 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
09:24:02.0869 3828 gpsvc - ok
09:24:03.0008 3828 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:24:03.0037 3828 gupdate - ok
09:24:03.0039 3828 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:24:03.0048 3828 gupdatem - ok
09:24:03.0080 3828 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
09:24:03.0124 3828 hcw85cir - ok
09:24:03.0218 3828 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
09:24:03.0306 3828 HdAudAddService - ok
09:24:03.0344 3828 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
09:24:03.0390 3828 HDAudBus - ok
09:24:03.0394 3828 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
09:24:03.0407 3828 HidBatt - ok
09:24:03.0432 3828 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
09:24:03.0447 3828 HidBth - ok
09:24:03.0464 3828 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
09:24:03.0507 3828 HidIr - ok
09:24:03.0553 3828 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
09:24:03.0643 3828 hidserv - ok
09:24:03.0690 3828 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
09:24:03.0726 3828 HidUsb - ok
09:24:03.0782 3828 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
09:24:03.0887 3828 hkmsvc - ok
09:24:03.0950 3828 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
09:24:03.0997 3828 HomeGroupListener - ok
09:24:04.0051 3828 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
09:24:04.0112 3828 HomeGroupProvider - ok
09:24:04.0138 3828 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
09:24:04.0149 3828 HpSAMD - ok
09:24:04.0238 3828 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
09:24:04.0310 3828 HTTP - ok
09:24:04.0344 3828 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
09:24:04.0362 3828 hwpolicy - ok
09:24:04.0413 3828 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
09:24:04.0447 3828 i8042prt - ok
09:24:04.0519 3828 iaStor (d7921d5a870b11cc1adab198a519d50a) C:\windows\system32\DRIVERS\iaStor.sys
09:24:04.0564 3828 iaStor - ok
09:24:04.0644 3828 IAStorDataMgrSvc (8fff9083252c16fe3960173722605e9e) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:24:04.0672 3828 IAStorDataMgrSvc - ok
09:24:04.0737 3828 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
09:24:04.0791 3828 iaStorV - ok
09:24:04.0834 3828 iBtFltCoex (fc85972037815fa7b413e790b426acb2) C:\windows\system32\DRIVERS\iBtFltCoex.sys
09:24:04.0888 3828 iBtFltCoex - ok
09:24:05.0043 3828 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:24:05.0109 3828 idsvc - ok
09:24:05.0799 3828 igfx (795c99dc4f574c97c03d0bb39cf099ee) C:\windows\system32\DRIVERS\igdkmd64.sys
09:24:06.0083 3828 igfx - ok
09:24:06.0239 3828 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
09:24:06.0273 3828 iirsp - ok
09:24:06.0381 3828 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
09:24:06.0454 3828 IKEEXT - ok
09:24:06.0531 3828 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
09:24:06.0593 3828 IntcDAud - ok
09:24:06.0634 3828 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
09:24:06.0664 3828 intelide - ok
09:24:06.0698 3828 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
09:24:06.0757 3828 intelppm - ok
09:24:06.0792 3828 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
09:24:06.0881 3828 IPBusEnum - ok
09:24:06.0914 3828 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
09:24:06.0966 3828 IpFilterDriver - ok
09:24:07.0015 3828 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
09:24:07.0064 3828 IPMIDRV - ok
09:24:07.0136 3828 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
09:24:07.0225 3828 IPNAT - ok
09:24:07.0403 3828 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
09:24:07.0430 3828 iPod Service - ok
09:24:07.0462 3828 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
09:24:07.0522 3828 IRENUM - ok
09:24:07.0561 3828 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
09:24:07.0585 3828 isapnp - ok
09:24:07.0637 3828 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
09:24:07.0673 3828 iScsiPrt - ok
09:24:07.0705 3828 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
09:24:07.0728 3828 kbdclass - ok
09:24:07.0769 3828 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\DRIVERS\kbdhid.sys
09:24:07.0820 3828 kbdhid - ok
09:24:07.0862 3828 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
09:24:07.0893 3828 KeyIso - ok
09:24:07.0917 3828 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
09:24:07.0928 3828 KSecDD - ok
09:24:07.0962 3828 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
09:24:07.0990 3828 KSecPkg - ok
09:24:08.0022 3828 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
09:24:08.0094 3828 ksthunk - ok
09:24:08.0163 3828 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
09:24:08.0241 3828 KtmRm - ok
09:24:08.0319 3828 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
09:24:08.0369 3828 LanmanServer - ok
09:24:08.0409 3828 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
09:24:08.0484 3828 LanmanWorkstation - ok
09:24:08.0536 3828 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
09:24:08.0607 3828 lltdio - ok
09:24:08.0669 3828 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
09:24:08.0726 3828 lltdsvc - ok
09:24:08.0746 3828 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
09:24:08.0776 3828 lmhosts - ok
09:24:08.0916 3828 LMS (0803906d607a9b83184447b75b60ecc2) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
09:24:08.0949 3828 LMS - ok
09:24:08.0986 3828 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
09:24:09.0038 3828 LSI_FC - ok
09:24:09.0080 3828 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
09:24:09.0137 3828 LSI_SAS - ok
09:24:09.0161 3828 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
09:24:09.0172 3828 LSI_SAS2 - ok
09:24:09.0204 3828 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
09:24:09.0216 3828 LSI_SCSI - ok
09:24:09.0258 3828 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
09:24:09.0313 3828 luafv - ok
09:24:09.0391 3828 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\windows\system32\drivers\mbam.sys
09:24:09.0423 3828 MBAMProtector - ok
09:24:09.0542 3828 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
09:24:09.0581 3828 MBAMService - ok
09:24:09.0684 3828 McAfee SiteAdvisor Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:24:09.0704 3828 McAfee SiteAdvisor Service - ok
09:24:09.0791 3828 McAWFwk (b6bd99c3e23507a732c474caa620c0d7) c:\PROGRA~1\mcafee\msc\mcawfwk.exe
09:24:09.0823 3828 McAWFwk - ok
09:24:09.0933 3828 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
09:24:09.0970 3828 McComponentHostService - ok
09:24:09.0990 3828 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:24:10.0014 3828 McMPFSvc - ok
09:24:10.0030 3828 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:24:10.0041 3828 mcmscsvc - ok
09:24:10.0057 3828 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:24:10.0068 3828 McNaiAnn - ok
09:24:10.0072 3828 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:24:10.0083 3828 McNASvc - ok
09:24:10.0171 3828 McODS (dd01bf24dd6bf70a90549f9a7bb2d1eb) C:\Program Files\mcafee\VirusScan\mcods.exe
09:24:10.0210 3828 McODS - ok
09:24:10.0213 3828 McOobeSv (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:24:10.0225 3828 McOobeSv - ok
09:24:10.0233 3828 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
09:24:10.0245 3828 McProxy - ok
09:24:10.0324 3828 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
09:24:10.0357 3828 McShield - ok
09:24:10.0521 3828 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
09:24:10.0577 3828 Mcx2Svc - ok
09:24:10.0648 3828 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
09:24:10.0683 3828 megasas - ok
09:24:10.0722 3828 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
09:24:10.0750 3828 MegaSR - ok
09:24:10.0795 3828 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\windows\system32\DRIVERS\HECIx64.sys
09:24:10.0804 3828 MEIx64 - ok
09:24:10.0871 3828 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\windows\system32\drivers\mfeapfk.sys
09:24:10.0906 3828 mfeapfk - ok
09:24:10.0972 3828 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\windows\system32\drivers\mfeavfk.sys
09:24:11.0016 3828 mfeavfk - ok
09:24:11.0034 3828 mfeavfk01 - ok
09:24:11.0082 3828 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
09:24:11.0109 3828 mfefire - ok
09:24:11.0158 3828 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\windows\system32\drivers\mfefirek.sys
09:24:11.0200 3828 mfefirek - ok
09:24:11.0277 3828 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\windows\system32\drivers\mfehidk.sys
09:24:11.0300 3828 mfehidk - ok
09:24:11.0332 3828 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\windows\system32\DRIVERS\mfenlfk.sys
09:24:11.0342 3828 mfenlfk - ok
09:24:11.0390 3828 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\windows\system32\drivers\mferkdet.sys
09:24:11.0410 3828 mferkdet - ok
09:24:11.0446 3828 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Windows\system32\mfevtps.exe
09:24:11.0457 3828 mfevtp - ok
09:24:11.0493 3828 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\windows\system32\drivers\mfewfpk.sys
09:24:11.0509 3828 mfewfpk - ok
09:24:11.0626 3828 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
09:24:11.0649 3828 Microsoft Office Groove Audit Service - ok
09:24:11.0674 3828 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
09:24:11.0751 3828 MMCSS - ok
09:24:11.0789 3828 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
09:24:11.0847 3828 Modem - ok
09:24:11.0889 3828 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
09:24:11.0946 3828 monitor - ok
09:24:12.0000 3828 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
09:24:12.0035 3828 mouclass - ok
09:24:12.0066 3828 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
09:24:12.0117 3828 mouhid - ok
09:24:12.0172 3828 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
09:24:12.0207 3828 mountmgr - ok
09:24:12.0288 3828 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:24:12.0337 3828 MozillaMaintenance - ok
09:24:12.0388 3828 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
09:24:12.0426 3828 mpio - ok
09:24:12.0453 3828 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
09:24:12.0531 3828 mpsdrv - ok
09:24:12.0586 3828 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
09:24:12.0668 3828 MRxDAV - ok
09:24:12.0716 3828 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
09:24:12.0775 3828 mrxsmb - ok
09:24:12.0846 3828 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
09:24:12.0913 3828 mrxsmb10 - ok
09:24:12.0966 3828 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
09:24:12.0998 3828 mrxsmb20 - ok
09:24:13.0031 3828 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
09:24:13.0057 3828 msahci - ok
09:24:13.0089 3828 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
09:24:13.0124 3828 msdsm - ok
09:24:13.0165 3828 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
09:24:13.0241 3828 MSDTC - ok
09:24:13.0302 3828 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
09:24:13.0347 3828 Msfs - ok
09:24:13.0369 3828 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
09:24:13.0455 3828 mshidkmdf - ok
09:24:13.0489 3828 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
09:24:13.0498 3828 msisadrv - ok
09:24:13.0540 3828 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
09:24:13.0639 3828 MSiSCSI - ok
09:24:13.0641 3828 msiserver - ok
09:24:13.0761 3828 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
09:24:13.0781 3828 MSK80Service - ok
09:24:13.0816 3828 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
09:24:13.0882 3828 MSKSSRV - ok
09:24:13.0902 3828 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
09:24:13.0972 3828 MSPCLOCK - ok
09:24:13.0993 3828 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
09:24:14.0083 3828 MSPQM - ok
09:24:14.0149 3828 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
09:24:14.0173 3828 MsRPC - ok
09:24:14.0201 3828 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
09:24:14.0228 3828 mssmbios - ok
09:24:14.0245 3828 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
09:24:14.0304 3828 MSTEE - ok
09:24:14.0324 3828 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
09:24:14.0356 3828 MTConfig - ok
09:24:14.0383 3828 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
09:24:14.0393 3828 Mup - ok
09:24:14.0511 3828 MyWiFiDHCPDNS (6ed8935257672f4cd04a88a0f3de093d) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
09:24:14.0558 3828 MyWiFiDHCPDNS - ok
09:24:14.0629 3828 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
09:24:14.0673 3828 napagent - ok
09:24:14.0729 3828 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
09:24:14.0798 3828 NativeWifiP - ok
09:24:14.0942 3828 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\windows\system32\drivers\ndis.sys
09:24:14.0965 3828 NDIS - ok
09:24:14.0988 3828 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
09:24:15.0019 3828 NdisCap - ok
09:24:15.0038 3828 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
09:24:15.0107 3828 NdisTapi - ok
09:24:15.0154 3828 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
09:24:15.0229 3828 Ndisuio - ok
09:24:15.0284 3828 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
09:24:15.0372 3828 NdisWan - ok
09:24:15.0412 3828 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
09:24:15.0471 3828 NDProxy - ok
09:24:15.0496 3828 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
09:24:15.0560 3828 NetBIOS - ok
09:24:15.0620 3828 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
09:24:15.0684 3828 NetBT - ok
09:24:15.0728 3828 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
09:24:15.0758 3828 Netlogon - ok
09:24:15.0823 3828 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
09:24:15.0889 3828 Netman - ok
09:24:15.0950 3828 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
09:24:16.0011 3828 netprofm - ok
09:24:16.0100 3828 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:24:16.0146 3828 NetTcpPortSharing - ok
09:24:16.0617 3828 NETwNs64 (5d262402b0634c998f8cbcead7dd8676) C:\windows\system32\DRIVERS\NETwNs64.sys
09:24:16.0833 3828 NETwNs64 - ok
09:24:16.0996 3828 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
09:24:17.0020 3828 nfrd960 - ok
09:24:17.0087 3828 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
09:24:17.0131 3828 NlaSvc - ok
09:24:17.0410 3828 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
09:24:17.0450 3828 NOBU - ok
09:24:17.0603 3828 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
09:24:17.0662 3828 Npfs - ok
09:24:17.0689 3828 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
09:24:17.0718 3828 nsi - ok
09:24:17.0722 3828 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
09:24:17.0764 3828 nsiproxy - ok
09:24:17.0927 3828 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
09:24:17.0989 3828 Ntfs - ok
09:24:18.0136 3828 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
09:24:18.0178 3828 Null - ok
09:24:18.0225 3828 nusb3hub (158ad24745bd85ba9be3c51c38f48c32) C:\windows\system32\DRIVERS\nusb3hub.sys
09:24:18.0249 3828 nusb3hub - ok
09:24:18.0279 3828 nusb3xhc (d40a13b2c0891e218f9523b376955db6) C:\windows\system32\DRIVERS\nusb3xhc.sys
09:24:18.0343 3828 nusb3xhc - ok
09:24:18.0404 3828 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
09:24:18.0432 3828 nvraid - ok
09:24:18.0477 3828 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
09:24:18.0517 3828 nvstor - ok
09:24:18.0539 3828 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
09:24:18.0594 3828 nv_agp - ok
09:24:18.0748 3828 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:24:18.0789 3828 odserv - ok
09:24:18.0835 3828 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
09:24:18.0877 3828 ohci1394 - ok
09:24:18.0952 3828 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:24:18.0972 3828 ose - ok
09:24:19.0027 3828 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
09:24:19.0066 3828 p2pimsvc - ok
09:24:19.0119 3828 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
09:24:19.0141 3828 p2psvc - ok
09:24:19.0186 3828 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
09:24:19.0213 3828 Parport - ok
09:24:19.0241 3828 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
09:24:19.0253 3828 partmgr - ok
09:24:19.0280 3828 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
09:24:19.0324 3828 PcaSvc - ok
09:24:19.0379 3828 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
09:24:19.0397 3828 pci - ok
09:24:19.0426 3828 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
09:24:19.0439 3828 pciide - ok
09:24:19.0465 3828 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
09:24:19.0483 3828 pcmcia - ok
09:24:19.0500 3828 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
09:24:19.0511 3828 pcw - ok
09:24:19.0572 3828 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
09:24:19.0621 3828 PEAUTH - ok
09:24:19.0720 3828 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
09:24:19.0774 3828 PerfHost - ok
09:24:19.0989 3828 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
09:24:20.0076 3828 pla - ok
09:24:20.0151 3828 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
09:24:20.0193 3828 PlugPlay - ok
09:24:20.0225 3828 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
09:24:20.0258 3828 PNRPAutoReg - ok
09:24:20.0302 3828 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
09:24:20.0327 3828 PNRPsvc - ok
09:24:20.0396 3828 Point64 (4f0878fd62d5f7444c5f1c4c66d9d293) C:\windows\system32\DRIVERS\point64.sys
09:24:20.0421 3828 Point64 - ok
09:24:20.0495 3828 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
09:24:20.0567 3828 PolicyAgent - ok
09:24:20.0624 3828 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
09:24:20.0670 3828 Power - ok
09:24:20.0740 3828 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
09:24:20.0839 3828 PptpMiniport - ok
09:24:20.0873 3828 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
09:24:20.0919 3828 Processor - ok
09:24:20.0970 3828 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\windows\system32\profsvc.dll
09:24:21.0033 3828 ProfSvc - ok
09:24:21.0073 3828 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
09:24:21.0101 3828 ProtectedStorage - ok
09:24:21.0152 3828 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
09:24:21.0224 3828 Psched - ok
09:24:21.0278 3828 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\windows\system32\Drivers\PxHlpa64.sys
09:24:21.0307 3828 PxHlpa64 - ok
09:24:21.0457 3828 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
09:24:21.0532 3828 ql2300 - ok
09:24:21.0699 3828 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
09:24:21.0757 3828 ql40xx - ok
09:24:21.0811 3828 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
09:24:21.0877 3828 QWAVE - ok
09:24:21.0903 3828 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
09:24:21.0968 3828 QWAVEdrv - ok
09:24:21.0987 3828 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
09:24:22.0017 3828 RasAcd - ok
09:24:22.0057 3828 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
09:24:22.0106 3828 RasAgileVpn - ok
09:24:22.0359 3828 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
09:24:22.0463 3828 RasAuto - ok
09:24:22.0516 3828 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
09:24:22.0613 3828 Rasl2tp - ok
09:24:22.0681 3828 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
09:24:22.0761 3828 RasMan - ok
09:24:22.0789 3828 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
09:24:22.0821 3828 RasPppoe - ok
09:24:22.0846 3828 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
09:24:22.0914 3828 RasSstp - ok
09:24:22.0981 3828 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
09:24:23.0061 3828 rdbss - ok
09:24:23.0079 3828 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
09:24:23.0094 3828 rdpbus - ok
09:24:23.0109 3828 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
09:24:23.0185 3828 RDPCDD - ok
09:24:23.0219 3828 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
09:24:23.0300 3828 RDPENCDD - ok
09:24:23.0326 3828 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
09:24:23.0356 3828 RDPREFMP - ok
09:24:23.0404 3828 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\windows\system32\drivers\RDPWD.sys
09:24:23.0467 3828 RDPWD - ok
09:24:23.0553 3828 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
09:24:23.0589 3828 rdyboost - ok
09:24:23.0743 3828 RegSrvc (189c5a8d2098e0aa14fd157a954b34fc) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
09:24:23.0776 3828 RegSrvc - ok
09:24:23.0820 3828 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
09:24:23.0918 3828 RemoteAccess - ok
09:24:23.0960 3828 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
09:24:24.0002 3828 RemoteRegistry - ok
09:24:24.0088 3828 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
09:24:24.0157 3828 RFCOMM - ok
09:24:24.0371 3828 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
09:24:24.0436 3828 RoxMediaDB12OEM - ok
09:24:24.0496 3828 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
09:24:24.0521 3828 RoxWatch12 - ok
09:24:24.0675 3828 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
09:24:24.0727 3828 RpcEptMapper - ok
09:24:24.0759 3828 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
09:24:24.0816 3828 RpcLocator - ok
09:24:24.0895 3828 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
09:24:24.0936 3828 RpcSs - ok
09:24:25.0013 3828 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
09:24:25.0062 3828 rspndr - ok
09:24:25.0133 3828 RSUSBSTOR (be29b0a3ac1e8bd02ffab8cee86badfa) C:\windows\system32\Drivers\RtsUStor.sys
09:24:25.0148 3828 RSUSBSTOR - ok
09:24:25.0251 3828 RTL8167 (2777226ee8bf50b059d7a7c90177e99c) C:\windows\system32\DRIVERS\Rt64win7.sys
09:24:25.0280 3828 RTL8167 - ok
09:24:25.0316 3828 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
09:24:25.0330 3828 SamSs - ok
09:24:25.0369 3828 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
09:24:25.0382 3828 sbp2port - ok
09:24:25.0426 3828 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
09:24:25.0473 3828 SCardSvr - ok
09:24:25.0506 3828 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
09:24:25.0561 3828 scfilter - ok
09:24:25.0658 3828 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
09:24:25.0714 3828 Schedule - ok
09:24:25.0748 3828 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
09:24:25.0795 3828 SCPolicySvc - ok
09:24:25.0844 3828 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
09:24:25.0914 3828 SDRSVC - ok
09:24:26.0000 3828 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
09:24:26.0064 3828 secdrv - ok
09:24:26.0094 3828 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
09:24:26.0147 3828 seclogon - ok
09:24:26.0173 3828 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
09:24:26.0242 3828 SENS - ok
09:24:26.0265 3828 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
09:24:26.0317 3828 SensrSvc - ok
09:24:26.0340 3828 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
09:24:26.0393 3828 Serenum - ok
09:24:26.0440 3828 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
09:24:26.0493 3828 Serial - ok
09:24:26.0551 3828 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
09:24:26.0608 3828 sermouse - ok
09:24:26.0666 3828 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
09:24:26.0775 3828 SessionEnv - ok
09:24:26.0809 3828 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
09:24:26.0856 3828 sffdisk - ok
09:24:26.0874 3828 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
09:24:26.0925 3828 sffp_mmc - ok
09:24:26.0948 3828 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
09:24:27.0007 3828 sffp_sd - ok
09:24:27.0036 3828 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
09:24:27.0069 3828 sfloppy - ok
09:24:27.0290 3828 SftService (74ec60e20516aaa573be74f31175270f) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
09:24:27.0328 3828 SftService - ok
09:24:27.0497 3828 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
09:24:27.0574 3828 SharedAccess - ok
09:24:27.0640 3828 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
09:24:27.0705 3828 ShellHWDetection - ok
09:24:27.0767 3828 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
09:24:27.0791 3828 SiSRaid2 - ok
09:24:27.0814 3828 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
09:24:27.0828 3828 SiSRaid4 - ok
09:24:27.0950 3828 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
09:24:27.0971 3828 SkypeUpdate - ok
09:24:27.0996 3828 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
09:24:28.0072 3828 Smb - ok
09:24:28.0117 3828 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
09:24:28.0176 3828 SNMPTRAP - ok
09:24:28.0203 3828 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
09:24:28.0234 3828 spldr - ok
09:24:28.0306 3828 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
09:24:28.0354 3828 Spooler - ok
09:24:28.0618 3828 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
09:24:28.0694 3828 sppsvc - ok
09:24:28.0846 3828 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
09:24:28.0889 3828 sppuinotify - ok
09:24:28.0963 3828 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
09:24:29.0031 3828 srv - ok
09:24:29.0091 3828 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
09:24:29.0153 3828 srv2 - ok
09:24:29.0200 3828 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
09:24:29.0231 3828 srvnet - ok
09:24:29.0288 3828 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
09:24:29.0364 3828 SSDPSRV - ok
09:24:29.0396 3828 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
09:24:29.0427 3828 SstpSvc - ok
09:24:29.0545 3828 STacSV (b2d8b364a831427a5741f6c408fa8ae3) C:\Program Files\IDT\WDM\STacSV64.exe
09:24:29.0611 3828 STacSV - ok
09:24:29.0657 3828 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
09:24:29.0667 3828 stexstor - ok
09:24:29.0739 3828 STHDA (ef5acde92ba3f691bbfef781cb063501) C:\windows\system32\DRIVERS\stwrt64.sys
09:24:29.0775 3828 STHDA - ok
09:24:29.0860 3828 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
09:24:29.0943 3828 stisvc - ok
09:24:30.0042 3828 stllssvr (7731f46ec0d687a931cba063e8f90ef0) c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
09:24:30.0068 3828 stllssvr - ok
09:24:30.0102 3828 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
09:24:30.0130 3828 swenum - ok
09:24:30.0204 3828 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
09:24:30.0260 3828 swprv - ok
09:24:30.0448 3828 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
09:24:30.0509 3828 SysMain - ok
09:24:30.0655 3828 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
09:24:30.0715 3828 TabletInputService - ok
09:24:30.0775 3828 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
09:24:30.0863 3828 TapiSrv - ok
09:24:30.0902 3828 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
09:24:30.0953 3828 TBS - ok
09:24:31.0163 3828 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
09:24:31.0250 3828 Tcpip - ok
09:24:31.0543 3828 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
09:24:31.0591 3828 TCPIP6 - ok
09:24:31.0687 3828 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
09:24:31.0736 3828 tcpipreg - ok
09:24:31.0779 3828 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
09:24:31.0827 3828 TDPIPE - ok
09:24:31.0866 3828 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
09:24:31.0897 3828 TDTCP - ok
09:24:31.0937 3828 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
09:24:31.0967 3828 tdx - ok
09:24:32.0300 3828 TeamViewer7 (33966a658ff37e0c65d46e59f37e2380) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
09:24:32.0350 3828 TeamViewer7 - ok
09:24:32.0508 3828 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
09:24:32.0537 3828 TermDD - ok
09:24:32.0624 3828 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
09:24:32.0675 3828 TermService - ok
09:24:32.0711 3828 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
09:24:32.0770 3828 Themes - ok
09:24:32.0809 3828 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
09:24:32.0867 3828 THREADORDER - ok
09:24:32.0894 3828 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
09:24:32.0964 3828 TrkWks - ok
09:24:33.0028 3828 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
09:24:33.0088 3828 TrustedInstaller - ok
09:24:33.0124 3828 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
09:24:33.0200 3828 tssecsrv - ok
09:24:33.0254 3828 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
09:24:33.0270 3828 TsUsbFlt - ok
09:24:33.0326 3828 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
09:24:33.0435 3828 tunnel - ok
09:24:33.0485 3828 TurboB (fd24f98d2898be093fe926604be7db99) C:\windows\system32\DRIVERS\TurboB.sys
09:24:33.0495 3828 TurboB - ok
09:24:33.0564 3828 TurboBoost (600b406a04d90f577fea8a88d7379f08) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
09:24:33.0603 3828 TurboBoost - ok
09:24:33.0650 3828 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
09:24:33.0671 3828 uagp35 - ok
09:24:33.0735 3828 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
09:24:33.0831 3828 udfs - ok
09:24:33.0867 3828 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
09:24:33.0895 3828 UI0Detect - ok
09:24:33.0927 3828 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
09:24:33.0938 3828 uliagpkx - ok
09:24:33.0984 3828 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
09:24:34.0041 3828 umbus - ok
09:24:34.0085 3828 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
09:24:34.0143 3828 UmPass - ok
09:24:34.0419 3828 UNS (eb79c6c91a99930015ef29ae7fa802d1) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
09:24:34.0458 3828 UNS - ok
09:24:34.0482 3828 Updater Service for StartNow Toolbar - ok
09:24:34.0644 3828 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
09:24:34.0733 3828 upnphost - ok
09:24:34.0814 3828 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\windows\system32\Drivers\usbaapl64.sys
09:24:34.0865 3828 USBAAPL64 - ok
09:24:34.0911 3828 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
09:24:34.0983 3828 usbccgp - ok
09:24:35.0028 3828 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
09:24:35.0055 3828 usbcir - ok
09:24:35.0079 3828 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
09:24:35.0093 3828 usbehci - ok
09:24:35.0156 3828 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
09:24:35.0232 3828 usbhub - ok
09:24:35.0256 3828 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
09:24:35.0271 3828 usbohci - ok
09:24:35.0293 3828 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
09:24:35.0347 3828 usbprint - ok
09:24:35.0403 3828 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
09:24:35.0466 3828 usbscan - ok
09:24:35.0510 3828 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
09:24:35.0557 3828 USBSTOR - ok
09:24:35.0579 3828 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
09:24:35.0643 3828 usbuhci - ok
09:24:35.0727 3828 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
09:24:35.0754 3828 usbvideo - ok
09:24:35.0788 3828 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
09:24:35.0869 3828 UxSms - ok
09:24:35.0906 3828 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
09:24:35.0917 3828 VaultSvc - ok
09:24:35.0944 3828 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
09:24:35.0954 3828 vdrvroot - ok
09:24:36.0048 3828 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
09:24:36.0095 3828 vds - ok
09:24:36.0128 3828 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
09:24:36.0161 3828 vga - ok
09:24:36.0173 3828 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
09:24:36.0224 3828 VgaSave - ok
09:24:36.0265 3828 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
09:24:36.0309 3828 vhdmp - ok
09:24:36.0321 3828 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
09:24:36.0332 3828 viaide - ok
09:24:36.0358 3828 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
09:24:36.0377 3828 volmgr - ok
09:24:36.0455 3828 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
09:24:36.0493 3828 volmgrx - ok
09:24:36.0550 3828 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
09:24:36.0582 3828 volsnap - ok
09:24:36.0623 3828 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
09:24:36.0666 3828 vsmraid - ok
09:24:36.0806 3828 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
09:24:36.0855 3828 VSS - ok
09:24:37.0002 3828 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
09:24:37.0046 3828 vwifibus - ok
09:24:37.0089 3828 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
09:24:37.0123 3828 vwififlt - ok
09:24:37.0152 3828 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
09:24:37.0208 3828 vwifimp - ok
09:24:37.0291 3828 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
09:24:37.0349 3828 W32Time - ok
09:24:37.0396 3828 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
09:24:37.0410 3828 WacomPen - ok
09:24:37.0473 3828 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
09:24:37.0553 3828 WANARP - ok
09:24:37.0557 3828 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
09:24:37.0590 3828 Wanarpv6 - ok
09:24:37.0719 3828 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
09:24:37.0778 3828 WatAdminSvc - ok
09:24:37.0924 3828 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
09:24:38.0011 3828 wbengine - ok
09:24:38.0171 3828 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
09:24:38.0208 3828 WbioSrvc - ok
09:24:38.0265 3828 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
09:24:38.0348 3828 wcncsvc - ok
09:24:38.0353 3828 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
09:24:38.0372 3828 WcsPlugInService - ok
09:24:38.0431 3828 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
09:24:38.0465 3828 Wd - ok
09:24:38.0530 3828 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\windows\system32\DRIVERS\wdcsam64.sys
09:24:38.0557 3828 WDC_SAM - ok
09:24:38.0627 3828 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
09:24:38.0658 3828 Wdf01000 - ok
09:24:38.0697 3828 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
09:24:38.0717 3828 WdiServiceHost - ok
09:24:38.0720 3828 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
09:24:38.0739 3828 WdiSystemHost - ok
09:24:38.0776 3828 wdkmd (94dc2bf6cbaaa95e369c3756d3115a76) C:\windows\system32\DRIVERS\WDKMD.sys
09:24:38.0800 3828 wdkmd - ok
09:24:38.0856 3828 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
09:24:38.0927 3828 WebClient - ok
09:24:38.0972 3828 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
09:24:39.0026 3828 Wecsvc - ok
09:24:39.0041 3828 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
09:24:39.0072 3828 wercplsupport - ok
09:24:39.0100 3828 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
09:24:39.0161 3828 WerSvc - ok
09:24:39.0237 3828 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
09:24:39.0273 3828 WfpLwf - ok
09:24:39.0333 3828 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\windows\system32\DRIVERS\wimfltr.sys
09:24:39.0376 3828 WimFltr - ok
09:24:39.0394 3828 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
09:24:39.0404 3828 WIMMount - ok
09:24:39.0408 3828 WinHttpAutoProxySvc - ok
09:24:39.0498 3828 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
09:24:39.0557 3828 Winmgmt - ok
09:24:39.0733 3828 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
09:24:39.0847 3828 WinRM - ok
09:24:40.0026 3828 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
09:24:40.0075 3828 WinUsb - ok
09:24:40.0163 3828 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
09:24:40.0216 3828 Wlansvc - ok
09:24:40.0311 3828 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:24:40.0344 3828 wlcrasvc - ok
09:24:40.0568 3828 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:24:40.0602 3828 wlidsvc - ok
09:24:40.0747 3828 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
09:24:40.0801 3828 WmiAcpi - ok
09:24:40.0896 3828 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
09:24:40.0957 3828 wmiApSrv - ok
09:24:41.0007 3828 WMPNetworkSvc - ok
09:24:41.0042 3828 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
09:24:41.0077 3828 WPCSvc - ok
09:24:41.0112 3828 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
09:24:41.0143 3828 WPDBusEnum - ok
09:24:41.0167 3828 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
09:24:41.0222 3828 ws2ifsl - ok
09:24:41.0225 3828 WSearch - ok
09:24:41.0453 3828 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\windows\system32\wuaueng.dll
09:24:41.0500 3828 wuauserv - ok
09:24:41.0631 3828 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
09:24:41.0719 3828 WudfPf - ok
09:24:41.0759 3828 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
09:24:41.0814 3828 WUDFRd - ok
09:24:41.0849 3828 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
09:24:41.0899 3828 wudfsvc - ok
09:24:41.0953 3828 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
09:24:42.0033 3828 WwanSvc - ok
09:24:42.0113 3828 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\windows\system32\DRIVERS\yk62x64.sys
09:24:42.0142 3828 yukonw7 - ok
09:24:42.0189 3828 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
09:24:42.0665 3828 \Device\Harddisk0\DR0 - ok
09:24:42.0671 3828 Boot (0x1200) (b4a651ea79a9998884da67ecffb5e2e7) \Device\Harddisk0\DR0\Partition0
09:24:42.0675 3828 \Device\Harddisk0\DR0\Partition0 - ok
09:24:42.0703 3828 Boot (0x1200) (9e05a441814ce1409fe19cd0a6cfe62d) \Device\Harddisk0\DR0\Partition1
09:24:42.0706 3828 \Device\Harddisk0\DR0\Partition1 - ok
09:24:42.0734 3828 Boot (0x1200) (65fd84f727ca65ed192bf6e70ba5d5ab) \Device\Harddisk0\DR0\Partition2
09:24:42.0737 3828 \Device\Harddisk0\DR0\Partition2 - ok
09:24:42.0739 3828 ============================================================
09:24:42.0739 3828 Scan finished
09:24:42.0739 3828 ============================================================
09:24:42.0758 8720 Detected object count: 3
09:24:42.0759 8720 Actual detected object count: 3
09:25:07.0746 8720 C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe - copied to quarantine
09:25:08.0854 8720 HKLM\SYSTEM\ControlSet001\services\Bluetooth Device Monitor - will be deleted on reboot
09:25:08.0919 8720 HKLM\SYSTEM\ControlSet002\services\Bluetooth Device Monitor - will be deleted on reboot
09:25:09.0166 8720 C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe - will be deleted on reboot
09:25:09.0166 8720 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - User select action: Delete
09:25:09.0295 8720 C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe - copied to quarantine
09:25:10.0374 8720 HKLM\SYSTEM\ControlSet001\services\Bluetooth Media Service - will be deleted on reboot
09:25:10.0415 8720 HKLM\SYSTEM\ControlSet002\services\Bluetooth Media Service - will be deleted on reboot
09:25:10.0428 8720 C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe - will be deleted on reboot
09:25:10.0428 8720 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - User select action: Delete
09:25:10.0550 8720 C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe - copied to quarantine
09:25:11.0659 8720 HKLM\SYSTEM\ControlSet001\services\Bluetooth OBEX Service - will be deleted on reboot
09:25:11.0659 8720 HKLM\SYSTEM\ControlSet002\services\Bluetooth OBEX Service - will be deleted on reboot
09:25:11.0662 8720 C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe - will be deleted on reboot
09:25:11.0663 8720 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - User select action: Delete
09:26:46.0487 9024 Deinitialize success



---------------------------------
ESET Scanner took 1 hr to complete scan, it is showing no threats found.
C:\ESET online Scanner results-no threats found
C:\ESET online Scanner results-no threats found

after running these 3 tools also my laptop is having Google Redirect virus issue.

#4 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 10:25 AM

please let me know what steps have to do now. Can I reformat the laptop. After reformating does this issue goes away , if yes I am ready to do reformat, but I need instructions how to do that reformat.

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 24 June 2012 - 10:37 AM

I want you to reset Internet explorer

http://support.microsoft.com/kb/923737



Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#6 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 11:53 AM

Thanks Naren, I am doing above steps, i will send you logs soon.Thanks for prompt response.

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 24 June 2012 - 11:59 AM

:thumbup2:

#8 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 12:55 PM

Hi Naren,

Here is the scan results logs. No issues found. But still problem exist.

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.24.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
achisreeni :: ACHISREENI-PC [administrator]

Protection: Enabled

6/24/2012 12:57:27 PM
mbam-log-2012-06-24 (12-57-27).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 359441
Time elapsed: 51 minute(s), 20 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
---------------------------------------------------------------------------

MiniToolBox by Farbar Version: 09-06-2012
Ran by achisreeni (administrator) on 24-06-2012 at 13:51:38
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/24/2012 00:39:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1869422

Error: (06/24/2012 00:39:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1869422

Error: (06/24/2012 00:39:33 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/24/2012 00:39:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1868408

Error: (06/24/2012 00:39:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1868408

Error: (06/24/2012 00:39:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/24/2012 00:39:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1867410

Error: (06/24/2012 00:39:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1867410

Error: (06/24/2012 00:39:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/24/2012 00:39:30 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1866412


System errors:
=============
Error: (06/24/2012 00:42:37 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (06/24/2012 00:42:37 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (06/24/2012 09:36:01 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (06/24/2012 09:36:01 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (06/24/2012 09:35:01 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/24/2012 09:34:31 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/24/2012 09:33:42 AM) (Source: Service Control Manager) (User: )
Description: The IPsec Policy Agent service depends the following service: BFE. This service might not be installed.

Error: (06/24/2012 09:33:39 AM) (Source: Service Control Manager) (User: )
Description: The McAfee Personal Firewall Service service depends the following service: MpsSvc. This service might not be installed.

Error: (06/24/2012 09:33:39 AM) (Source: Service Control Manager) (User: )
Description: The IKE and AuthIP IPsec Keying Modules service depends the following service: BFE. This service might not be installed.

Error: (06/24/2012 09:33:37 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Reader X (10.1.3) MUI (Version: 10.1.3)
Advanced Audio FX Engine (Version: 1.12.05)
Any Video Converter 3.3.5
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Citrix online plug-in - web (Version: 12.1.44.1)
Citrix online plug-in (DV) (Version: 12.1.44.1)
Citrix online plug-in (HDX) (Version: 12.1.44.1)
Citrix online plug-in (USB) (Version: 12.1.44.1)
Citrix online plug-in (Web) (Version: 12.1.44.1)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell MusicStage (Version: 1.3.31.0)
Dell Perks Webslice IE8 (Version: 8.0)
Dell PhotoStage (Version: 1.5.0.19)
Dell Stage (Version: 1.5.420.0)
Dell Touchpad (Version: 7.1209.101.204)
Dell V310-V510 Series
Dell VideoStage (Version: 1.1.0.1011)
Dell Webcam Central (Version: 2.00.35)
DirectX 9 Runtime (Version: 1.00.0000)
eBay (Version: 1.4.0)
ESET Online Scanner v3
Google Update Helper (Version: 1.3.21.111)
iCloud (Version: 1.1.0.40)
IDT Audio (Version: 1.0.6324.0)
ImageMixer 3 SE Ver.5 Transfer Utility (Version: 3.04.009)
ImageMixer 3 SE Ver.5 Video Tools (Version: 3.04.013)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Processor Graphics (Version: 8.15.10.2342)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 1.0.0.0454)
Intel® PROSet/Wireless WiFi Software (Version: 14.00.1000)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® Wireless Display
Intel® Wireless Display (Version: 2.0.27.0)
Internet Explorer (Version: 8)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 30 (Version: 6.0.300)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
McAfee Security Scan Plus (Version: 2.0.181.2)
McAfee SecurityCenter (Version: 11.0.669)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Music Transfer Utility Ver.2 (Version: 1.01.006)
Octoshape Streaming Services
PhotoShowExpress (Version: 2.0.063)
Quickset64 (Version: 10.09.20)
QuickTime (Version: 7.72.80.56)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek Ethernet Controller Driver (Version: 7.31.1025.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30126)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.32.0)
Rights Management Add-on for Internet Explorer (Version: 1.0.1.0000)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Skype Click to Call (Version: 5.10.9560)
Skype™ 5.8 (Version: 5.8.158)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
System Checkup 3.0 (Version: 3.0.5.1)
TeamViewer 7 (Version: 7.0.12313)
TextPad 5 (Version: 5.4.2)
TrustedID (Version: 5.0)
TVUPlayer 2.5.3.1 (Version: 2.5.3.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 1.1.11 (Version: 1.1.11)
WebM Media Foundation Components (Version: 1.0.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 31%
Total physical RAM: 8099.18 MB
Available physical RAM: 5543.77 MB
Total Pagefile: 16196.54 MB
Available Pagefile: 13063.77 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.15 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:383.89 GB) (Free:322.06 GB) NTFS
3 Drive e: (BasicFiles) (Fixed) (Total:300 GB) (Free:299.88 GB) NTFS

========================= Users: ========================================

User accounts for \\ACHISREENI-PC

achisreeni Administrator Guest

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

24-06-2012 01:43:37 Windows Modules Installer
24-06-2012 01:54:16 Windows Modules Installer
24-06-2012 01:58:46 Restore Operation
24-06-2012 02:23:32 Removed iTunes
24-06-2012 02:31:03 Windows Modules Installer
24-06-2012 02:37:22 Windows Modules Installer
24-06-2012 02:41:14 Restore Operation
24-06-2012 02:59:06 Windows Update
24-06-2012 03:30:08 Installed Microsoft Fix it 50778
24-06-2012 04:05:45 Removed ABBYY FineReader 6.0 Sprint
24-06-2012 04:06:49 Removed eBay
24-06-2012 04:07:27 Removed eBay
24-06-2012 04:08:42 Removed Cozi
24-06-2012 04:09:06 Removed eBay
24-06-2012 04:12:07 Removed SnagIt
24-06-2012 04:25:37 Removed Google Talk Plugin
24-06-2012 07:00:35 Windows Update
24-06-2012 16:49:00 Installed Microsoft Fix it 50195

**** End of log ****


Please let me know what i have to next to resolve this issue !
shall we go with ComboFix !

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 24 June 2012 - 01:31 PM

I want you to reset Internet explorer

http://support.microsoft.com/kb/923737

Let me know if you still get redirected

#10 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 01:36 PM

I just did this, I am still getting google redirect issue.

#11 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 01:43 PM

i am still getting this redirect issue after restarting the laptop as well.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 24 June 2012 - 02:12 PM

what version of Internet explorer do you use?

If its IE 9,uninstall it using this method

http://windows.microsoft.com/en-US/windows7/how-do-i-install-or-uninstall-internet-explorer-9

This should rollback to IE 8,let me know if you still have redirects

#13 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 02:31 PM

i have IE9 before, but yesterday i removed IE9 and it rolledback to IE8. Still i am having this issue.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 24 June 2012 - 02:43 PM

Can you post the aswmbr log?

#15 achisri

achisri
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:08:15 AM

Posted 24 June 2012 - 02:56 PM

Here is the log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-24 09:35:17
-----------------------------
09:35:17.644 OS Version: Windows x64 6.1.7601 Service Pack 1
09:35:17.644 Number of processors: 4 586 0x2A07
09:35:17.645 ComputerName: ACHISREENI-PC UserName: achisreeni
09:35:20.071 Initialize success
09:35:27.256 AVAST engine defs: 12062400
09:36:05.579 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
09:36:05.581 Disk 0 Vendor: WDC_WD75 01.0 Size: 715404MB BusType: 3
09:36:05.593 Disk 0 MBR read successfully
09:36:05.595 Disk 0 MBR scan
09:36:05.599 Disk 0 Windows 7 default MBR code
09:36:05.602 Disk 0 Partition 1 00 DE Dell Utility DELL 8.0 100 MB offset 2048
09:36:05.620 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
09:36:05.640 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 393102 MB offset 30926848
09:36:05.644 Disk 0 Partition - 00 0F Extended LBA 307199 MB offset 836001792
09:36:05.683 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 307198 MB offset 836003840
09:36:05.726 Disk 0 scanning C:\windows\system32\drivers
09:36:26.467 Service scanning
09:37:09.927 Modules scanning
09:37:10.283 Disk 0 trace - called modules:
09:37:10.313 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
09:37:10.325 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80090d6060]
09:37:10.337 3 CLASSPNP.SYS[fffff88001a0143f] -> nt!IofCallDriver -> [0xfffffa8007110630]
09:37:10.348 5 ACPI.sys[fffff88000f027a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007117050]
09:37:11.977 AVAST engine scan C:\windows
09:37:14.526 AVAST engine scan C:\windows\system32
09:42:40.409 AVAST engine scan C:\windows\system32\drivers
09:43:08.250 AVAST engine scan C:\Users\achisreeni
09:46:25.722 Disk 0 MBR has been saved successfully to "C:\Users\achisreeni\Desktop\MBR.dat"
09:46:25.730 The log file has been saved successfully to "C:\Users\achisreeni\Desktop\aswMBR log 06242012.txt"
09:55:47.548 AVAST engine scan C:\ProgramData
10:02:47.580 Scan finished successfully
10:03:50.929 Disk 0 MBR has been saved successfully to "C:\Users\achisreeni\Desktop\MBR.dat"
10:03:50.936 The log file has been saved successfully to "C:\Users\achisreeni\Desktop\aswMBR log 06242012 v1.txt"




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users