Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect Virus?


  • Please log in to reply
13 replies to this topic

#1 dogboybz

dogboybz

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 09 July 2012 - 11:51 PM

Hi all,

When doing a google search in Firefox, if I click on a result it redirects me to r.looksmart.com or something similar. I've run Norton Antivirus, Norton Power Eraser, MalewareBytes, ATF Cleaner and TDSSKiller. Nothing seems to help. Any help in removing this would be much appreciated. Thanks in advance. (Using Windows Vista 32Bit)

dogboybz

Edited by dogboybz, 09 July 2012 - 11:52 PM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:59 AM

Posted 09 July 2012 - 11:55 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 dogboybz

dogboybz
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 10 July 2012 - 09:40 PM

Trying to complete the process but the ESET scanner has been going for 8.5 hours. I'll post when it's done.

#4 dogboybz

dogboybz
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 10 July 2012 - 10:32 PM

Here we go:

TDSSKiller:

22:00:35.0018 4644 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
22:00:35.0520 4644 ============================================================
22:00:35.0520 4644 Current date / time: 2012/07/09 22:00:35.0520
22:00:35.0520 4644 SystemInfo:
22:00:35.0520 4644
22:00:35.0520 4644 OS Version: 6.0.6002 ServicePack: 2.0
22:00:35.0520 4644 Product type: Workstation
22:00:35.0520 4644 ComputerName:
22:00:35.0520 4644 UserName:
22:00:35.0520 4644 Windows directory: I:\Windows
22:00:35.0520 4644 System windows directory: I:\Windows
22:00:35.0520 4644 Processor architecture: Intel x86
22:00:35.0520 4644 Number of processors: 2
22:00:35.0520 4644 Page size: 0x1000
22:00:35.0520 4644 Boot type: Normal boot
22:00:35.0520 4644 ============================================================
22:00:37.0159 4644 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:00:37.0161 4644 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:00:37.0175 4644 ============================================================
22:00:37.0175 4644 \Device\Harddisk0\DR0:
22:00:37.0175 4644 MBR partitions:
22:00:37.0175 4644 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
22:00:37.0175 4644 \Device\Harddisk1\DR1:
22:00:37.0176 4644 MBR partitions:
22:00:37.0176 4644 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A18A82
22:00:37.0176 4644 ============================================================
22:00:37.0259 4644 H: <-> \Device\Harddisk1\DR1\Partition0
22:00:37.0338 4644 I: <-> \Device\Harddisk0\DR0\Partition0
22:00:37.0338 4644 ============================================================
22:00:37.0338 4644 Initialize success
22:00:37.0338 4644 ============================================================
22:00:38.0565 3764 ============================================================
22:00:38.0565 3764 Scan started
22:00:38.0565 3764 Mode: Manual;
22:00:38.0565 3764 ============================================================
22:00:39.0948 3764 61883 (585e64bb6dfbc0a2f1f0b554ded012df) I:\Windows\system32\DRIVERS\61883.sys
22:00:39.0950 3764 61883 - ok
22:00:40.0331 3764 ACDaemon (61a581e5481e22a76a88490c57015105) I:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:00:40.0332 3764 ACDaemon - ok
22:00:40.0390 3764 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) I:\Windows\system32\drivers\acpi.sys
22:00:40.0392 3764 ACPI - ok
22:00:40.0575 3764 ACT! Scheduler (04fa07c4eed949b3ba64b536d1438130) I:\Program Files\ACT\Act for Windows\Act.Scheduler.exe
22:00:40.0610 3764 ACT! Scheduler - ok
22:00:40.0642 3764 adfs - ok
22:00:40.0740 3764 Adobe LM Service (4b06235ae1085aab809cb40e22a7a98c) I:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
22:00:40.0752 3764 Adobe LM Service - ok
22:00:40.0810 3764 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) I:\Windows\system32\drivers\adp94xx.sys
22:00:40.0833 3764 adp94xx - ok
22:00:40.0951 3764 adpahci (60505e0041f7751bdbb80f88bf45c2ce) I:\Windows\system32\drivers\adpahci.sys
22:00:40.0962 3764 adpahci - ok
22:00:40.0987 3764 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) I:\Windows\system32\drivers\adpu160m.sys
22:00:40.0989 3764 adpu160m - ok
22:00:41.0010 3764 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) I:\Windows\system32\drivers\adpu320.sys
22:00:41.0013 3764 adpu320 - ok
22:00:41.0050 3764 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) I:\Windows\System32\aelupsvc.dll
22:00:41.0050 3764 AeLookupSvc - ok
22:00:41.0121 3764 Afc (fe3ea6e9afc1a78e6edca121e006afb7) I:\Windows\system32\drivers\Afc.sys
22:00:41.0123 3764 Afc - ok
22:00:41.0306 3764 AFD (3911b972b55fea0478476b2e777b29fa) I:\Windows\system32\drivers\afd.sys
22:00:41.0309 3764 AFD - ok
22:00:41.0341 3764 agp440 (13f9e33747e6b41a3ff305c37db0d360) I:\Windows\system32\drivers\agp440.sys
22:00:41.0343 3764 agp440 - ok
22:00:41.0480 3764 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) I:\Windows\system32\drivers\djsvs.sys
22:00:41.0509 3764 aic78xx - ok
22:00:41.0536 3764 ALG (a1545b731579895d8cc44fc0481c1192) I:\Windows\System32\alg.exe
22:00:41.0537 3764 ALG - ok
22:00:41.0563 3764 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) I:\Windows\system32\drivers\aliide.sys
22:00:41.0564 3764 aliide - ok
22:00:41.0606 3764 amdagp (c47344bc706e5f0b9dce369516661578) I:\Windows\system32\drivers\amdagp.sys
22:00:41.0608 3764 amdagp - ok
22:00:41.0624 3764 amdide (9b78a39a4c173fdbc1321e0dd659b34c) I:\Windows\system32\drivers\amdide.sys
22:00:41.0626 3764 amdide - ok
22:00:41.0650 3764 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) I:\Windows\system32\drivers\amdk7.sys
22:00:41.0651 3764 AmdK7 - ok
22:00:41.0665 3764 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) I:\Windows\system32\drivers\amdk8.sys
22:00:41.0667 3764 AmdK8 - ok
22:00:41.0693 3764 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) I:\Windows\System32\appinfo.dll
22:00:41.0693 3764 Appinfo - ok
22:00:41.0983 3764 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) I:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:00:41.0985 3764 Apple Mobile Device - ok
22:00:42.0341 3764 arc (5d2888182fb46632511acee92fdad522) I:\Windows\system32\drivers\arc.sys
22:00:42.0372 3764 arc - ok
22:00:42.0427 3764 arcsas (5e2a321bd7c8b3624e41fdec3e244945) I:\Windows\system32\drivers\arcsas.sys
22:00:42.0430 3764 arcsas - ok
22:00:42.0938 3764 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) I:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:00:42.0939 3764 aspnet_state - ok
22:00:42.0960 3764 AsyncMac (53b202abee6455406254444303e87be1) I:\Windows\system32\DRIVERS\asyncmac.sys
22:00:42.0980 3764 AsyncMac - ok
22:00:43.0038 3764 atapi (1f05b78ab91c9075565a9d8a4b880bc4) I:\Windows\system32\drivers\atapi.sys
22:00:43.0039 3764 atapi - ok
22:00:43.0144 3764 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) I:\Windows\System32\Audiosrv.dll
22:00:43.0146 3764 AudioEndpointBuilder - ok
22:00:43.0151 3764 Audiosrv (68e2a1a0407a66cf50da0300852424ab) I:\Windows\System32\Audiosrv.dll
22:00:43.0153 3764 Audiosrv - ok
22:00:43.0201 3764 Avc (f4b56425a00beb32f5fa6603ff7b0ea2) I:\Windows\system32\DRIVERS\avc.sys
22:00:43.0202 3764 Avc - ok
22:00:43.0241 3764 Beep (67e506b75bd5326a3ec7b70bd014dfb6) I:\Windows\system32\drivers\Beep.sys
22:00:43.0242 3764 Beep - ok
22:00:43.0320 3764 BFE (c789af0f724fda5852fb9a7d3a432381) I:\Windows\System32\bfe.dll
22:00:43.0324 3764 BFE - ok
22:00:43.0977 3764 BHDrvx86 (a9e111a358ac5f7eba7ac61e43fc6725) I:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\BASHDefs\20120619.001\BHDrvx86.sys
22:00:44.0019 3764 BHDrvx86 - ok
22:00:44.0359 3764 BITS (93952506c6d67330367f7e7934b6a02f) I:\Windows\System32\qmgr.dll
22:00:44.0367 3764 BITS - ok
22:00:44.0766 3764 blbdrive (d4df28447741fd3d953526e33a617397) I:\Windows\system32\drivers\blbdrive.sys
22:00:44.0780 3764 blbdrive - ok
22:00:44.0943 3764 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) I:\Program Files\Bonjour\mDNSResponder.exe
22:00:44.0945 3764 Bonjour Service - ok
22:00:45.0082 3764 bowser (35f376253f687bde63976ccb3f2108ca) I:\Windows\system32\DRIVERS\bowser.sys
22:00:45.0084 3764 bowser - ok
22:00:45.0128 3764 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) I:\Windows\system32\drivers\brfiltlo.sys
22:00:45.0146 3764 BrFiltLo - ok
22:00:45.0163 3764 BrFiltUp (56801ad62213a41f6497f96dee83755a) I:\Windows\system32\drivers\brfiltup.sys
22:00:45.0181 3764 BrFiltUp - ok
22:00:45.0256 3764 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) I:\Windows\System32\browser.dll
22:00:45.0258 3764 Browser - ok
22:00:45.0304 3764 Brserid (b304e75cff293029eddf094246747113) I:\Windows\system32\drivers\brserid.sys
22:00:45.0306 3764 Brserid - ok
22:00:45.0465 3764 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) I:\Windows\system32\drivers\brserwdm.sys
22:00:45.0481 3764 BrSerWdm - ok
22:00:45.0550 3764 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) I:\Windows\system32\drivers\brusbmdm.sys
22:00:45.0580 3764 BrUsbMdm - ok
22:00:45.0622 3764 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) I:\Windows\system32\drivers\brusbser.sys
22:00:45.0624 3764 BrUsbSer - ok
22:00:45.0646 3764 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) I:\Windows\system32\drivers\bthmodem.sys
22:00:45.0648 3764 BTHMODEM - ok
22:00:45.0981 3764 catchme - ok
22:00:46.0333 3764 ccHP (1fa1c0e73eca849bed29a47c508f7f17) I:\Windows\system32\drivers\N360\0404000.00C\ccHPx86.sys
22:00:46.0377 3764 ccHP - ok
22:00:46.0436 3764 cdfs (7add03e75beb9e6dd102c3081d29840a) I:\Windows\system32\DRIVERS\cdfs.sys
22:00:46.0438 3764 cdfs - ok
22:00:46.0565 3764 cdrom (6b4bffb9becd728097024276430db314) I:\Windows\system32\DRIVERS\cdrom.sys
22:00:46.0588 3764 cdrom - ok
22:00:46.0651 3764 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) I:\Windows\System32\certprop.dll
22:00:46.0653 3764 CertPropSvc - ok
22:00:46.0739 3764 circlass (e5d4133f37219dbcfe102bc61072589d) I:\Windows\system32\drivers\circlass.sys
22:00:46.0755 3764 circlass - ok
22:00:46.0813 3764 CLFS (d7659d3b5b92c31e84e53c1431f35132) I:\Windows\system32\CLFS.sys
22:00:46.0817 3764 CLFS - ok
22:00:46.0901 3764 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) I:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:00:46.0919 3764 clr_optimization_v2.0.50727_32 - ok
22:00:47.0054 3764 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) I:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:00:47.0056 3764 clr_optimization_v4.0.30319_32 - ok
22:00:47.0091 3764 cmdide (0ca25e686a4928484e9fdabd168ab629) I:\Windows\system32\drivers\cmdide.sys
22:00:47.0104 3764 cmdide - ok
22:00:47.0125 3764 Compbatt (6afef0b60fa25de07c0968983ee4f60a) I:\Windows\system32\drivers\compbatt.sys
22:00:47.0126 3764 Compbatt - ok
22:00:47.0129 3764 COMSysApp - ok
22:00:47.0146 3764 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) I:\Windows\system32\drivers\crcdisk.sys
22:00:47.0148 3764 crcdisk - ok
22:00:47.0166 3764 Crusoe (1f07becdca750766a96cda811ba86410) I:\Windows\system32\drivers\crusoe.sys
22:00:47.0168 3764 Crusoe - ok
22:00:47.0226 3764 CryptSvc (75c6a297e364014840b48eccd7525e30) I:\Windows\system32\cryptsvc.dll
22:00:47.0227 3764 CryptSvc - ok
22:00:47.0307 3764 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) I:\Windows\system32\rpcss.dll
22:00:47.0316 3764 DcomLaunch - ok
22:00:47.0374 3764 DfsC (622c41a07ca7e6dd91770f50d532cb6c) I:\Windows\system32\Drivers\dfsc.sys
22:00:47.0393 3764 DfsC - ok
22:00:47.0413 3764 Scan interrupted by user!
22:00:47.0413 3764 Scan interrupted by user!
22:00:47.0413 3764 Scan interrupted by user!
22:00:47.0413 3764 ============================================================
22:00:47.0413 3764 Scan finished
22:00:47.0413 3764 ============================================================
22:00:47.0421 5856 Detected object count: 0
22:00:47.0421 5856 Actual detected object count: 0
22:00:52.0950 2100 ============================================================
22:00:52.0950 2100 Scan started
22:00:52.0950 2100 Mode: Manual; TDLFS;
22:00:52.0950 2100 ============================================================
22:00:53.0227 2100 61883 (585e64bb6dfbc0a2f1f0b554ded012df) I:\Windows\system32\DRIVERS\61883.sys
22:00:53.0228 2100 61883 - ok
22:00:53.0355 2100 ACDaemon (61a581e5481e22a76a88490c57015105) I:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:00:53.0356 2100 ACDaemon - ok
22:00:53.0412 2100 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) I:\Windows\system32\drivers\acpi.sys
22:00:53.0414 2100 ACPI - ok
22:00:53.0530 2100 ACT! Scheduler (04fa07c4eed949b3ba64b536d1438130) I:\Program Files\ACT\Act for Windows\Act.Scheduler.exe
22:00:53.0531 2100 ACT! Scheduler - ok
22:00:53.0534 2100 adfs - ok
22:00:53.0592 2100 Adobe LM Service (4b06235ae1085aab809cb40e22a7a98c) I:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
22:00:53.0593 2100 Adobe LM Service - ok
22:00:53.0631 2100 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) I:\Windows\system32\drivers\adp94xx.sys
22:00:53.0633 2100 adp94xx - ok
22:00:53.0659 2100 adpahci (60505e0041f7751bdbb80f88bf45c2ce) I:\Windows\system32\drivers\adpahci.sys
22:00:53.0661 2100 adpahci - ok
22:00:53.0686 2100 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) I:\Windows\system32\drivers\adpu160m.sys
22:00:53.0687 2100 adpu160m - ok
22:00:53.0707 2100 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) I:\Windows\system32\drivers\adpu320.sys
22:00:53.0709 2100 adpu320 - ok
22:00:53.0740 2100 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) I:\Windows\System32\aelupsvc.dll
22:00:53.0741 2100 AeLookupSvc - ok
22:00:53.0796 2100 Afc (fe3ea6e9afc1a78e6edca121e006afb7) I:\Windows\system32\drivers\Afc.sys
22:00:53.0797 2100 Afc - ok
22:00:53.0856 2100 AFD (3911b972b55fea0478476b2e777b29fa) I:\Windows\system32\drivers\afd.sys
22:00:53.0857 2100 AFD - ok
22:00:53.0873 2100 agp440 (13f9e33747e6b41a3ff305c37db0d360) I:\Windows\system32\drivers\agp440.sys
22:00:53.0873 2100 agp440 - ok
22:00:53.0891 2100 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) I:\Windows\system32\drivers\djsvs.sys
22:00:53.0892 2100 aic78xx - ok
22:00:53.0909 2100 ALG (a1545b731579895d8cc44fc0481c1192) I:\Windows\System32\alg.exe
22:00:53.0910 2100 ALG - ok
22:00:53.0927 2100 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) I:\Windows\system32\drivers\aliide.sys
22:00:53.0928 2100 aliide - ok
22:00:53.0962 2100 amdagp (c47344bc706e5f0b9dce369516661578) I:\Windows\system32\drivers\amdagp.sys
22:00:53.0963 2100 amdagp - ok
22:00:53.0981 2100 amdide (9b78a39a4c173fdbc1321e0dd659b34c) I:\Windows\system32\drivers\amdide.sys
22:00:53.0982 2100 amdide - ok
22:00:53.0997 2100 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) I:\Windows\system32\drivers\amdk7.sys
22:00:53.0998 2100 AmdK7 - ok
22:00:54.0013 2100 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) I:\Windows\system32\drivers\amdk8.sys
22:00:54.0014 2100 AmdK8 - ok
22:00:54.0033 2100 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) I:\Windows\System32\appinfo.dll
22:00:54.0033 2100 Appinfo - ok
22:00:54.0132 2100 Apple Mobile Device (2e3e53a6aef23e24f402c7855b9b1542) I:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:00:54.0133 2100 Apple Mobile Device - ok
22:00:54.0154 2100 arc (5d2888182fb46632511acee92fdad522) I:\Windows\system32\drivers\arc.sys
22:00:54.0155 2100 arc - ok
22:00:54.0183 2100 arcsas (5e2a321bd7c8b3624e41fdec3e244945) I:\Windows\system32\drivers\arcsas.sys
22:00:54.0184 2100 arcsas - ok
22:00:54.0330 2100 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) I:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:00:54.0330 2100 aspnet_state - ok
22:00:54.0350 2100 AsyncMac (53b202abee6455406254444303e87be1) I:\Windows\system32\DRIVERS\asyncmac.sys
22:00:54.0351 2100 AsyncMac - ok
22:00:54.0382 2100 atapi (1f05b78ab91c9075565a9d8a4b880bc4) I:\Windows\system32\drivers\atapi.sys
22:00:54.0382 2100 atapi - ok
22:00:54.0425 2100 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) I:\Windows\System32\Audiosrv.dll
22:00:54.0428 2100 AudioEndpointBuilder - ok
22:00:54.0432 2100 Audiosrv (68e2a1a0407a66cf50da0300852424ab) I:\Windows\System32\Audiosrv.dll
22:00:54.0434 2100 Audiosrv - ok
22:00:54.0474 2100 Avc (f4b56425a00beb32f5fa6603ff7b0ea2) I:\Windows\system32\DRIVERS\avc.sys
22:00:54.0475 2100 Avc - ok
22:00:54.0490 2100 Beep (67e506b75bd5326a3ec7b70bd014dfb6) I:\Windows\system32\drivers\Beep.sys
22:00:54.0490 2100 Beep - ok
22:00:54.0510 2100 BFE (c789af0f724fda5852fb9a7d3a432381) I:\Windows\System32\bfe.dll
22:00:54.0512 2100 BFE - ok
22:00:54.0766 2100 BHDrvx86 (a9e111a358ac5f7eba7ac61e43fc6725) I:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\BASHDefs\20120619.001\BHDrvx86.sys
22:00:54.0771 2100 BHDrvx86 - ok
22:00:54.0839 2100 BITS (93952506c6d67330367f7e7934b6a02f) I:\Windows\System32\qmgr.dll
22:00:54.0845 2100 BITS - ok
22:00:54.0889 2100 blbdrive (d4df28447741fd3d953526e33a617397) I:\Windows\system32\drivers\blbdrive.sys
22:00:54.0890 2100 blbdrive - ok
22:00:54.0943 2100 Bonjour Service (5ab58c337ac65837fe404462ad6265ab) I:\Program Files\Bonjour\mDNSResponder.exe
22:00:54.0945 2100 Bonjour Service - ok
22:00:55.0005 2100 bowser (35f376253f687bde63976ccb3f2108ca) I:\Windows\system32\DRIVERS\bowser.sys
22:00:55.0005 2100 bowser - ok
22:00:55.0027 2100 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) I:\Windows\system32\drivers\brfiltlo.sys
22:00:55.0028 2100 BrFiltLo - ok
22:00:55.0036 2100 BrFiltUp (56801ad62213a41f6497f96dee83755a) I:\Windows\system32\drivers\brfiltup.sys
22:00:55.0037 2100 BrFiltUp - ok
22:00:55.0062 2100 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) I:\Windows\System32\browser.dll
22:00:55.0063 2100 Browser - ok
22:00:55.0075 2100 Brserid (b304e75cff293029eddf094246747113) I:\Windows\system32\drivers\brserid.sys
22:00:55.0076 2100 Brserid - ok
22:00:55.0088 2100 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) I:\Windows\system32\drivers\brserwdm.sys
22:00:55.0088 2100 BrSerWdm - ok
22:00:55.0099 2100 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) I:\Windows\system32\drivers\brusbmdm.sys
22:00:55.0099 2100 BrUsbMdm - ok
22:00:55.0113 2100 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) I:\Windows\system32\drivers\brusbser.sys
22:00:55.0113 2100 BrUsbSer - ok
22:00:55.0128 2100 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) I:\Windows\system32\drivers\bthmodem.sys
22:00:55.0129 2100 BTHMODEM - ok
22:00:55.0197 2100 catchme - ok
22:00:55.0287 2100 ccHP (1fa1c0e73eca849bed29a47c508f7f17) I:\Windows\system32\drivers\N360\0404000.00C\ccHPx86.sys
22:00:55.0290 2100 ccHP - ok
22:00:55.0319 2100 cdfs (7add03e75beb9e6dd102c3081d29840a) I:\Windows\system32\DRIVERS\cdfs.sys
22:00:55.0320 2100 cdfs - ok
22:00:55.0372 2100 cdrom (6b4bffb9becd728097024276430db314) I:\Windows\system32\DRIVERS\cdrom.sys
22:00:55.0373 2100 cdrom - ok
22:00:55.0426 2100 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) I:\Windows\System32\certprop.dll
22:00:55.0427 2100 CertPropSvc - ok
22:00:55.0474 2100 circlass (e5d4133f37219dbcfe102bc61072589d) I:\Windows\system32\drivers\circlass.sys
22:00:55.0475 2100 circlass - ok
22:00:55.0536 2100 CLFS (d7659d3b5b92c31e84e53c1431f35132) I:\Windows\system32\CLFS.sys
22:00:55.0538 2100 CLFS - ok
22:00:55.0634 2100 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) I:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:00:55.0635 2100 clr_optimization_v2.0.50727_32 - ok
22:00:55.0744 2100 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) I:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:00:55.0745 2100 clr_optimization_v4.0.30319_32 - ok
22:00:55.0773 2100 cmdide (0ca25e686a4928484e9fdabd168ab629) I:\Windows\system32\drivers\cmdide.sys
22:00:55.0773 2100 cmdide - ok
22:00:55.0790 2100 Compbatt (6afef0b60fa25de07c0968983ee4f60a) I:\Windows\system32\drivers\compbatt.sys
22:00:55.0790 2100 Compbatt - ok
22:00:55.0794 2100 COMSysApp - ok
22:00:55.0799 2100 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) I:\Windows\system32\drivers\crcdisk.sys
22:00:55.0800 2100 crcdisk - ok
22:00:55.0815 2100 Crusoe (1f07becdca750766a96cda811ba86410) I:\Windows\system32\drivers\crusoe.sys
22:00:55.0816 2100 Crusoe - ok
22:00:55.0875 2100 CryptSvc (75c6a297e364014840b48eccd7525e30) I:\Windows\system32\cryptsvc.dll
22:00:55.0876 2100 CryptSvc - ok
22:00:55.0953 2100 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) I:\Windows\system32\rpcss.dll
22:00:55.0958 2100 DcomLaunch - ok
22:00:56.0014 2100 DfsC (622c41a07ca7e6dd91770f50d532cb6c) I:\Windows\system32\Drivers\dfsc.sys
22:00:56.0015 2100 DfsC - ok
22:00:56.0121 2100 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) I:\Windows\system32\DFSR.exe
22:00:56.0134 2100 DFSR - ok
22:00:56.0216 2100 DgiVecp - ok
22:00:56.0294 2100 Dhcp (9028559c132146fb75eb7acf384b086a) I:\Windows\System32\dhcpcsvc.dll
22:00:56.0296 2100 Dhcp - ok
22:00:56.0367 2100 disk (5d4aefc3386920236a548271f8f1af6a) I:\Windows\system32\drivers\disk.sys
22:00:56.0395 2100 disk - ok
22:00:56.0460 2100 Dnscache (57d762f6f5974af0da2be88a3349baaa) I:\Windows\System32\dnsrslvr.dll
22:00:56.0461 2100 Dnscache - ok
22:00:56.0536 2100 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) I:\Windows\System32\dot3svc.dll
22:00:56.0540 2100 dot3svc - ok
22:00:56.0563 2100 DPS (a622e888f8aa2f6b49e9bc466f0e5def) I:\Windows\system32\dps.dll
22:00:56.0565 2100 DPS - ok
22:00:56.0656 2100 DragonSvc (f7bda38afbda04f0a89deba767eeda79) I:\Program Files\Common Files\Nuance\dgnsvc.exe
22:00:56.0658 2100 DragonSvc - ok
22:00:56.0692 2100 drmkaud (97fef831ab90bee128c9af390e243f80) I:\Windows\system32\drivers\drmkaud.sys
22:00:56.0693 2100 drmkaud - ok
22:00:56.0760 2100 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) I:\Windows\System32\drivers\dxgkrnl.sys
22:00:56.0765 2100 DXGKrnl - ok
22:00:56.0803 2100 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) I:\Windows\system32\DRIVERS\E1G60I32.sys
22:00:56.0805 2100 E1G60 - ok
22:00:56.0826 2100 EapHost (c0b95e40d85cd807d614e264248a45b9) I:\Windows\System32\eapsvc.dll
22:00:56.0828 2100 EapHost - ok
22:00:56.0892 2100 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) I:\Windows\system32\drivers\ecache.sys
22:00:56.0916 2100 Ecache - ok
22:00:57.0030 2100 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) I:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:00:57.0034 2100 eeCtrl - ok
22:00:57.0088 2100 ehRecvr (9be3744d295a7701eb425332014f0797) I:\Windows\ehome\ehRecvr.exe
22:00:57.0092 2100 ehRecvr - ok
22:00:57.0105 2100 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) I:\Windows\ehome\ehsched.exe
22:00:57.0108 2100 ehSched - ok
22:00:57.0118 2100 ehstart (c27c4ee8926e74aa72efcab24c5242c3) I:\Windows\ehome\ehstart.dll
22:00:57.0119 2100 ehstart - ok
22:00:57.0166 2100 elxstor (23b62471681a124889978f6295b3f4c6) I:\Windows\system32\drivers\elxstor.sys
22:00:57.0191 2100 elxstor - ok
22:00:57.0253 2100 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) I:\Windows\system32\emdmgmt.dll
22:00:57.0257 2100 EMDMgmt - ok
22:00:57.0392 2100 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) I:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:00:57.0419 2100 EraserUtilRebootDrv - ok
22:00:57.0454 2100 ErrDev (3db974f3935483555d7148663f726c61) I:\Windows\system32\drivers\errdev.sys
22:00:57.0456 2100 ErrDev - ok
22:00:57.0520 2100 EventSystem (67058c46504bc12d821f38cf99b7b28f) I:\Windows\system32\es.dll
22:00:57.0522 2100 EventSystem - ok
22:00:57.0588 2100 exfat (22b408651f9123527bcee54b4f6c5cae) I:\Windows\system32\drivers\exfat.sys
22:00:57.0611 2100 exfat - ok
22:00:57.0624 2100 fastfat (1e9b9a70d332103c52995e957dc09ef8) I:\Windows\system32\drivers\fastfat.sys
22:00:57.0626 2100 fastfat - ok
22:00:57.0655 2100 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) I:\Windows\system32\DRIVERS\fdc.sys
22:00:57.0673 2100 fdc - ok
22:00:57.0693 2100 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) I:\Windows\system32\fdPHost.dll
22:00:57.0694 2100 fdPHost - ok
22:00:57.0698 2100 FDResPub (89ed56dce8e47af40892778a5bd31fd2) I:\Windows\system32\fdrespub.dll
22:00:57.0703 2100 FDResPub - ok
22:00:57.0726 2100 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) I:\Windows\system32\drivers\fileinfo.sys
22:00:57.0727 2100 FileInfo - ok
22:00:57.0744 2100 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) I:\Windows\system32\drivers\filetrace.sys
22:00:57.0745 2100 Filetrace - ok
22:00:57.0808 2100 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) I:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:00:57.0837 2100 FLEXnet Licensing Service - ok
22:00:57.0963 2100 FlipShare Service (27b9b2965221e95f23f33206f95c9447) I:\Program Files\Flip Video\FlipShare\FlipShareService.exe
22:00:57.0966 2100 FlipShare Service - ok
22:00:57.0994 2100 flpydisk (85b7cf99d532820495d68d747fda9ebd) I:\Windows\system32\DRIVERS\flpydisk.sys
22:00:57.0995 2100 flpydisk - ok
22:00:58.0056 2100 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) I:\Windows\system32\drivers\fltmgr.sys
22:00:58.0060 2100 FltMgr - ok
22:00:58.0165 2100 FontCache (8ce364388c8eca59b14b539179276d44) I:\Windows\system32\FntCache.dll
22:00:58.0173 2100 FontCache - ok
22:00:58.0260 2100 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) I:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:00:58.0282 2100 FontCache3.0.0.0 - ok
22:00:58.0311 2100 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) I:\Windows\system32\drivers\Fs_Rec.sys
22:00:58.0317 2100 Fs_Rec - ok
22:00:58.0370 2100 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) I:\Windows\system32\drivers\gagp30kx.sys
22:00:58.0371 2100 gagp30kx - ok
22:00:58.0439 2100 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) I:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:00:58.0440 2100 GEARAspiWDM - ok
22:00:58.0465 2100 GMSIPCI - ok
22:00:58.0544 2100 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) I:\Windows\System32\gpsvc.dll
22:00:58.0552 2100 gpsvc - ok
22:00:58.0668 2100 gupdate (f02a533f517eb38333cb12a9e8963773) I:\Program Files\Google\Update\GoogleUpdate.exe
22:00:58.0671 2100 gupdate - ok
22:00:58.0678 2100 gupdatem (f02a533f517eb38333cb12a9e8963773) I:\Program Files\Google\Update\GoogleUpdate.exe
22:00:58.0679 2100 gupdatem - ok
22:00:58.0734 2100 HdAudAddService (3f90e001369a07243763bd5a523d8722) I:\Windows\system32\drivers\HdAudio.sys
22:00:58.0767 2100 HdAudAddService - ok
22:00:58.0832 2100 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) I:\Windows\system32\DRIVERS\HDAudBus.sys
22:00:58.0840 2100 HDAudBus - ok
22:00:58.0866 2100 HidBth (1338520e78d90154ed6be8f84de5fceb) I:\Windows\system32\drivers\hidbth.sys
22:00:58.0868 2100 HidBth - ok
22:00:58.0883 2100 HidIr (ff3160c3a2445128c5a6d9b076da519e) I:\Windows\system32\drivers\hidir.sys
22:00:58.0903 2100 HidIr - ok
22:00:58.0959 2100 hidserv (84067081f3318162797385e11a8f0582) I:\Windows\System32\hidserv.dll
22:00:58.0960 2100 hidserv - ok
22:00:58.0965 2100 HidUsb (cca4b519b17e23a00b826c55716809cc) I:\Windows\system32\DRIVERS\hidusb.sys
22:00:58.0985 2100 HidUsb - ok
22:00:59.0021 2100 hkmsvc (d8ad255b37da92434c26e4876db7d418) I:\Windows\system32\kmsvc.dll
22:00:59.0024 2100 hkmsvc - ok
22:00:59.0044 2100 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) I:\Windows\system32\drivers\hpcisss.sys
22:00:59.0061 2100 HpCISSs - ok
22:00:59.0126 2100 HTTP (f870aa3e254628ebeafe754108d664de) I:\Windows\system32\drivers\HTTP.sys
22:00:59.0154 2100 HTTP - ok
22:00:59.0184 2100 i2omp (c6b032d69650985468160fc9937cf5b4) I:\Windows\system32\drivers\i2omp.sys
22:00:59.0186 2100 i2omp - ok
22:00:59.0210 2100 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) I:\Windows\system32\DRIVERS\i8042prt.sys
22:00:59.0212 2100 i8042prt - ok
22:00:59.0235 2100 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) I:\Windows\system32\drivers\iastorv.sys
22:00:59.0238 2100 iaStorV - ok
22:00:59.0344 2100 idsvc (98477b08e61945f974ed9fdc4cb6bdab) I:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:00:59.0377 2100 idsvc - ok
22:00:59.0681 2100 IDSVix86 (6262c22a913bd255a0795d070b82aa47) I:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\IPSDefs\20120705.001\IDSvix86.sys
22:00:59.0712 2100 IDSVix86 - ok
22:00:59.0793 2100 iirsp (2d077bf86e843f901d8db709c95b49a5) I:\Windows\system32\drivers\iirsp.sys
22:00:59.0811 2100 iirsp - ok
22:00:59.0955 2100 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) I:\Windows\System32\ikeext.dll
22:00:59.0958 2100 IKEEXT - ok
22:01:00.0587 2100 IntcAzAudAddService (da6ee479071883d263e75be7a67a70b8) I:\Windows\system32\drivers\RTKVHDA.sys
22:01:00.0677 2100 IntcAzAudAddService - ok
22:01:02.0343 2100 intelide (83aa759f3189e6370c30de5dc5590718) I:\Windows\system32\drivers\intelide.sys
22:01:02.0379 2100 intelide - ok
22:01:02.0408 2100 intelppm (224191001e78c89dfa78924c3ea595ff) I:\Windows\system32\DRIVERS\intelppm.sys
22:01:02.0410 2100 intelppm - ok
22:01:02.0635 2100 IntuitUpdateService (3dc635b66dd7412e1c9c3a77b8d78f25) I:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
22:01:02.0635 2100 IntuitUpdateService - ok
22:01:02.0770 2100 IntuitUpdateServiceV4 (1663a135865f0ba6e853353e98e67f2a) I:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
22:01:02.0771 2100 IntuitUpdateServiceV4 - ok
22:01:02.0958 2100 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) I:\Windows\system32\ipbusenum.dll
22:01:02.0986 2100 IPBusEnum - ok
22:01:03.0026 2100 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) I:\Windows\system32\DRIVERS\ipfltdrv.sys
22:01:03.0028 2100 IpFilterDriver - ok
22:01:03.0592 2100 iphlpsvc (1998bd97f950680bb55f55a7244679c2) I:\Windows\System32\iphlpsvc.dll
22:01:03.0601 2100 iphlpsvc - ok
22:01:03.0604 2100 IpInIp - ok
22:01:03.0648 2100 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) I:\Windows\system32\drivers\ipmidrv.sys
22:01:03.0662 2100 IPMIDRV - ok
22:01:03.0687 2100 IPNAT (8793643a67b42cec66490b2a0cf92d68) I:\Windows\system32\DRIVERS\ipnat.sys
22:01:03.0689 2100 IPNAT - ok
22:01:03.0989 2100 iPod Service (8f610078437a459948480407f4db91ea) I:\Program Files\iPod\bin\iPodService.exe
22:01:03.0993 2100 iPod Service - ok
22:01:04.0078 2100 iPodDrv (cf79ff3d10864f73660a34e006b6b8f8) I:\Windows\system32\drivers\iPodDrv.sys
22:01:04.0085 2100 iPodDrv - ok
22:01:04.0158 2100 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) I:\Windows\system32\drivers\irenum.sys
22:01:04.0186 2100 IRENUM - ok
22:01:04.0351 2100 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) I:\Windows\system32\drivers\isapnp.sys
22:01:04.0403 2100 isapnp - ok
22:01:04.0503 2100 iScsiPrt (232fa340531d940aac623b121a595034) I:\Windows\system32\DRIVERS\msiscsi.sys
22:01:04.0505 2100 iScsiPrt - ok
22:01:04.0519 2100 iteatapi (bced60d16156e428f8df8cf27b0df150) I:\Windows\system32\drivers\iteatapi.sys
22:01:04.0521 2100 iteatapi - ok
22:01:04.0548 2100 iteraid (06fa654504a498c30adca8bec4e87e7e) I:\Windows\system32\drivers\iteraid.sys
22:01:04.0550 2100 iteraid - ok
22:01:04.0554 2100 kbdclass (37605e0a8cf00cbba538e753e4344c6e) I:\Windows\system32\DRIVERS\kbdclass.sys
22:01:04.0555 2100 kbdclass - ok
22:01:04.0648 2100 kbdhid (ede59ec70e25c24581add1fbec7325f7) I:\Windows\system32\DRIVERS\kbdhid.sys
22:01:04.0686 2100 kbdhid - ok
22:01:04.0729 2100 KeyIso (a3e186b4b935905b829219502557314e) I:\Windows\system32\lsass.exe
22:01:04.0730 2100 KeyIso - ok
22:01:04.0961 2100 KSecDD (2b2f1638466e8cb091400c9019cc730e) I:\Windows\system32\Drivers\ksecdd.sys
22:01:04.0971 2100 KSecDD - ok
22:01:05.0031 2100 KtmRm (8078f8f8f7a79e2e6b494523a828c585) I:\Windows\system32\msdtckrm.dll
22:01:05.0062 2100 KtmRm - ok
22:01:05.0100 2100 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) I:\Windows\System32\srvsvc.dll
22:01:05.0103 2100 LanmanServer - ok
22:01:05.0549 2100 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) I:\Windows\System32\wkssvc.dll
22:01:05.0552 2100 LanmanWorkstation - ok
22:01:05.0598 2100 lltdio (d1c5883087a0c3f1344d9d55a44901f6) I:\Windows\system32\DRIVERS\lltdio.sys
22:01:05.0599 2100 lltdio - ok
22:01:05.0631 2100 lltdsvc (2d5a428872f1442631d0959a34abff63) I:\Windows\System32\lltdsvc.dll
22:01:05.0634 2100 lltdsvc - ok
22:01:05.0694 2100 lmhosts (35d40113e4a5b961b6ce5c5857702518) I:\Windows\System32\lmhsvc.dll
22:01:05.0696 2100 lmhosts - ok
22:01:05.0874 2100 LPDSVC (fee78621beca00b537cd70a6afaae112) I:\Windows\system32\lpdsvc.dll
22:01:05.0876 2100 LPDSVC - ok
22:01:05.0912 2100 LSI_FC (c7e15e82879bf3235b559563d4185365) I:\Windows\system32\drivers\lsi_fc.sys
22:01:05.0926 2100 LSI_FC - ok
22:01:05.0949 2100 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) I:\Windows\system32\drivers\lsi_sas.sys
22:01:05.0951 2100 LSI_SAS - ok
22:01:05.0974 2100 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) I:\Windows\system32\drivers\lsi_scsi.sys
22:01:05.0976 2100 LSI_SCSI - ok
22:01:06.0000 2100 luafv (8f5c7426567798e62a3b3614965d62cc) I:\Windows\system32\drivers\luafv.sys
22:01:06.0002 2100 luafv - ok
22:01:06.0034 2100 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) I:\Windows\system32\Mcx2Svc.dll
22:01:06.0036 2100 Mcx2Svc - ok
22:01:06.0070 2100 megasas (0001ce609d66632fa17b84705f658879) I:\Windows\system32\drivers\megasas.sys
22:01:06.0072 2100 megasas - ok
22:01:06.0121 2100 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) I:\Windows\system32\drivers\megasr.sys
22:01:06.0125 2100 MegaSR - ok
22:01:06.0776 2100 Microsoft Office Groove Audit Service (7c4c76b39d5525c4a465e0be32528e19) I:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:01:06.0830 2100 Microsoft Office Groove Audit Service - ok
22:01:06.0860 2100 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) I:\Windows\system32\mmcss.dll
22:01:06.0862 2100 MMCSS - ok
22:01:06.0881 2100 Modem (e13b5ea0f51ba5b1512ec671393d09ba) I:\Windows\system32\drivers\modem.sys
22:01:06.0883 2100 Modem - ok
22:01:06.0931 2100 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) I:\Windows\system32\DRIVERS\monitor.sys
22:01:06.0933 2100 monitor - ok
22:01:07.0693 2100 MotoHelper (3bbc6c2402242401f791548aaebf3d39) I:\Program Files\Motorola\MotoHelper\MotoHelperService.exe
22:01:07.0694 2100 MotoHelper - ok
22:01:07.0887 2100 mouclass (5bf6a1326a335c5298477754a506d263) I:\Windows\system32\DRIVERS\mouclass.sys
22:01:07.0889 2100 mouclass - ok
22:01:07.0986 2100 mouhid (93b8d4869e12cfbe663915502900876f) I:\Windows\system32\DRIVERS\mouhid.sys
22:01:08.0011 2100 mouhid - ok
22:01:08.0174 2100 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) I:\Windows\system32\drivers\mountmgr.sys
22:01:08.0175 2100 MountMgr - ok
22:01:08.0609 2100 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) I:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:01:08.0610 2100 MozillaMaintenance - ok
22:01:08.0658 2100 mpio (511d011289755dd9f9a7579fb0b064e6) I:\Windows\system32\drivers\mpio.sys
22:01:08.0678 2100 mpio - ok
22:01:08.0702 2100 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) I:\Windows\system32\drivers\mpsdrv.sys
22:01:08.0703 2100 mpsdrv - ok
22:01:08.0787 2100 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) I:\Windows\system32\mpssvc.dll
22:01:08.0792 2100 MpsSvc - ok
22:01:08.0802 2100 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) I:\Windows\system32\drivers\mraid35x.sys
22:01:08.0804 2100 Mraid35x - ok
22:01:08.0871 2100 MRxDAV (82cea0395524aacfeb58ba1448e8325c) I:\Windows\system32\drivers\mrxdav.sys
22:01:08.0886 2100 MRxDAV - ok
22:01:08.0945 2100 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) I:\Windows\system32\DRIVERS\mrxsmb.sys
22:01:08.0947 2100 mrxsmb - ok
22:01:08.0975 2100 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) I:\Windows\system32\DRIVERS\mrxsmb10.sys
22:01:08.0978 2100 mrxsmb10 - ok
22:01:09.0570 2100 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) I:\Windows\system32\DRIVERS\mrxsmb20.sys
22:01:09.0641 2100 mrxsmb20 - ok
22:01:09.0718 2100 msahci (28023e86f17001f7cd9b15a5bc9ae07d) I:\Windows\system32\drivers\msahci.sys
22:01:09.0727 2100 msahci - ok
22:01:09.0757 2100 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) I:\Windows\system32\drivers\msdsm.sys
22:01:09.0773 2100 msdsm - ok
22:01:09.0805 2100 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) I:\Windows\System32\msdtc.exe
22:01:09.0808 2100 MSDTC - ok
22:01:09.0833 2100 MSDV (343291a4dfd7c923c3f71f550830ec1c) I:\Windows\system32\DRIVERS\msdv.sys
22:01:09.0850 2100 MSDV - ok
22:01:09.0868 2100 Msfs (a9927f4a46b816c92f461acb90cf8515) I:\Windows\system32\drivers\Msfs.sys
22:01:09.0885 2100 Msfs - ok
22:01:09.0901 2100 msisadrv (0f400e306f385c56317357d6dea56f62) I:\Windows\system32\drivers\msisadrv.sys
22:01:09.0902 2100 msisadrv - ok
22:01:09.0928 2100 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) I:\Windows\system32\iscsiexe.dll
22:01:09.0930 2100 MSiSCSI - ok
22:01:09.0934 2100 msiserver - ok
22:01:09.0963 2100 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) I:\Windows\system32\drivers\MSKSSRV.sys
22:01:09.0965 2100 MSKSSRV - ok
22:01:09.0982 2100 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) I:\Windows\system32\drivers\MSPCLOCK.sys
22:01:09.0984 2100 MSPCLOCK - ok
22:01:09.0989 2100 MSPQM (b572da05bf4e098d4bba3a4734fb505b) I:\Windows\system32\drivers\MSPQM.sys
22:01:09.0990 2100 MSPQM - ok
22:01:10.0468 2100 MsRPC (b49456d70555de905c311bcda6ec6adb) I:\Windows\system32\drivers\MsRPC.sys
22:01:10.0480 2100 MsRPC - ok
22:01:10.0509 2100 mssmbios (e384487cb84be41d09711c30ca79646c) I:\Windows\system32\DRIVERS\mssmbios.sys
22:01:10.0510 2100 mssmbios - ok
22:01:10.0615 2100 MSSQL$ACT7 - ok
22:01:10.0873 2100 MSSQLServerADHelper (1d89eb4e2a99cabd4e81225f4f4c4b25) I:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
22:01:10.0899 2100 MSSQLServerADHelper - ok
22:01:10.0941 2100 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) I:\Windows\system32\drivers\MSTEE.sys
22:01:10.0943 2100 MSTEE - ok
22:01:11.0171 2100 Mup (6a57b5733d4cb702c8ea4542e836b96c) I:\Windows\system32\Drivers\mup.sys
22:01:11.0172 2100 Mup - ok
22:01:11.0961 2100 N360 (b4187346f54e362daffe647b25a58d50) I:\Program Files\Norton Security Suite\Engine\4.4.0.12\ccSvcHst.exe
22:01:11.0962 2100 N360 - ok
22:01:12.0975 2100 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) I:\Windows\system32\qagentRT.dll
22:01:12.0978 2100 napagent - ok
22:01:13.0180 2100 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) I:\Windows\system32\DRIVERS\nwifi.sys
22:01:13.0182 2100 NativeWifiP - ok
22:01:13.0640 2100 NAVENG (f11033730b38260b6892e837c457fb4b) I:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\VirusDefs\20120709.003\NAVENG.SYS
22:01:13.0647 2100 NAVENG - ok
22:01:13.0736 2100 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) I:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\VirusDefs\20120709.003\NAVEX15.SYS
22:01:13.0762 2100 NAVEX15 - ok
22:01:13.0945 2100 NDIS (1357274d1883f68300aeadd15d7bbb42) I:\Windows\system32\drivers\ndis.sys
22:01:13.0949 2100 NDIS - ok
22:01:13.0978 2100 NdisTapi (0e186e90404980569fb449ba7519ae61) I:\Windows\system32\DRIVERS\ndistapi.sys
22:01:13.0999 2100 NdisTapi - ok
22:01:14.0020 2100 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) I:\Windows\system32\DRIVERS\ndisuio.sys
22:01:14.0021 2100 Ndisuio - ok
22:01:14.0093 2100 NdisWan (818f648618ae34f729fdb47ec68345c3) I:\Windows\system32\DRIVERS\ndiswan.sys
22:01:14.0107 2100 NdisWan - ok
22:01:14.0137 2100 NDProxy (71dab552b41936358f3b541ae5997fb3) I:\Windows\system32\drivers\NDProxy.sys
22:01:14.0139 2100 NDProxy - ok
22:01:14.0145 2100 NetBIOS (bcd093a5a6777cf626434568dc7dba78) I:\Windows\system32\DRIVERS\netbios.sys
22:01:14.0147 2100 NetBIOS - ok
22:01:14.0159 2100 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) I:\Windows\system32\DRIVERS\netbt.sys
22:01:14.0161 2100 netbt - ok
22:01:14.0211 2100 Netlogon (a3e186b4b935905b829219502557314e) I:\Windows\system32\lsass.exe
22:01:14.0212 2100 Netlogon - ok
22:01:14.0252 2100 Netman (c8052711daecc48b982434c5116ca401) I:\Windows\System32\netman.dll
22:01:14.0255 2100 Netman - ok
22:01:14.0390 2100 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) I:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:01:14.0420 2100 NetMsmqActivator - ok
22:01:14.0425 2100 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) I:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:01:14.0426 2100 NetPipeActivator - ok
22:01:14.0455 2100 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) I:\Windows\System32\netprofm.dll
22:01:14.0457 2100 netprofm - ok
22:01:14.0461 2100 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) I:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:01:14.0462 2100 NetTcpActivator - ok
22:01:14.0467 2100 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) I:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:01:14.0468 2100 NetTcpPortSharing - ok
22:01:14.0491 2100 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) I:\Windows\system32\drivers\nfrd960.sys
22:01:14.0493 2100 nfrd960 - ok
22:01:14.0508 2100 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) I:\Windows\System32\nlasvc.dll
22:01:14.0510 2100 NlaSvc - ok
22:01:14.0563 2100 Npfs (d36f239d7cce1931598e8fb90a0dbc26) I:\Windows\system32\drivers\Npfs.sys
22:01:14.0565 2100 Npfs - ok
22:01:14.0587 2100 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) I:\Windows\system32\nsisvc.dll
22:01:14.0588 2100 nsi - ok
22:01:14.0596 2100 nsiproxy (609773e344a97410ce4ebf74a8914fcf) I:\Windows\system32\drivers\nsiproxy.sys
22:01:14.0597 2100 nsiproxy - ok
22:01:14.0674 2100 Ntfs (6a4a98cee84cf9e99564510dda4baa47) I:\Windows\system32\drivers\Ntfs.sys
22:01:14.0685 2100 Ntfs - ok
22:01:14.0697 2100 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) I:\Windows\system32\drivers\ntrigdigi.sys
22:01:14.0719 2100 ntrigdigi - ok
22:01:14.0736 2100 Null (c5dbbcda07d780bda9b685df333bb41e) I:\Windows\system32\drivers\Null.sys
22:01:14.0738 2100 Null - ok
22:01:14.0783 2100 NVENETFD (1657f3fbd9061526c14ff37e79306f98) I:\Windows\system32\DRIVERS\nvm60x32.sys
22:01:14.0811 2100 NVENETFD - ok
22:01:14.0879 2100 NVHDA (93c0f383b39b1f5fe7203e3270d4cf52) I:\Windows\system32\drivers\nvhda32v.sys
22:01:14.0896 2100 NVHDA - ok
22:01:15.0237 2100 nvlddmkm (f452e6ad3eda2852f44be492e283c40f) I:\Windows\system32\DRIVERS\nvlddmkm.sys
22:01:15.0402 2100 nvlddmkm - ok
22:01:15.0511 2100 nvraid (2edf9e7751554b42cbb60116de727101) I:\Windows\system32\drivers\nvraid.sys
22:01:15.0527 2100 nvraid - ok
22:01:15.0548 2100 nvstor (abed0c09758d1d97db0042dbb2688177) I:\Windows\system32\drivers\nvstor.sys
22:01:15.0549 2100 nvstor - ok
22:01:15.0645 2100 nvsvc (d122f7c5f79c68868f5dc28cefeb2ecf) I:\Windows\system32\nvvsvc.exe
22:01:15.0653 2100 nvsvc - ok
22:01:15.0863 2100 nvUpdatusService (003cb0a155568b4a53a301f07c734233) I:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
22:01:15.0884 2100 nvUpdatusService - ok
22:01:15.0990 2100 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) I:\Windows\system32\drivers\nv_agp.sys
22:01:15.0992 2100 nv_agp - ok
22:01:15.0995 2100 NwlnkFlt - ok
22:01:15.0999 2100 NwlnkFwd - ok
22:01:16.0148 2100 odserv (1f0e05dff4f5a833168e49be1256f002) I:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:01:16.0152 2100 odserv - ok
22:01:16.0223 2100 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) I:\Windows\system32\DRIVERS\ohci1394.sys
22:01:16.0225 2100 ohci1394 - ok
22:01:16.0283 2100 ose (5a432a042dae460abe7199b758e8606c) I:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:01:16.0286 2100 ose - ok
22:01:16.0361 2100 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) I:\Windows\system32\p2psvc.dll
22:01:16.0370 2100 p2pimsvc - ok
22:01:16.0376 2100 p2psvc (0c8e8e61ad1eb0b250b846712c917506) I:\Windows\system32\p2psvc.dll
22:01:16.0381 2100 p2psvc - ok
22:01:16.0395 2100 Parport (8a79fdf04a73428597e2caf9d0d67850) I:\Windows\system32\DRIVERS\parport.sys
22:01:16.0410 2100 Parport - ok
22:01:16.0436 2100 partmgr (b9c2b89f08670e159f7181891e449cd9) I:\Windows\system32\drivers\partmgr.sys
22:01:16.0445 2100 partmgr - ok
22:01:16.0459 2100 Parvdm (6c580025c81caf3ae9e3617c22cad00e) I:\Windows\system32\DRIVERS\parvdm.sys
22:01:16.0461 2100 Parvdm - ok
22:01:16.0484 2100 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) I:\Windows\System32\pcasvc.dll
22:01:16.0486 2100 PcaSvc - ok
22:01:16.0550 2100 pci (941dc1d19e7e8620f40bbc206981efdb) I:\Windows\system32\drivers\pci.sys
22:01:16.0553 2100 pci - ok
22:01:16.0575 2100 pciide (1636d43f10416aeb483bc6001097b26c) I:\Windows\system32\drivers\pciide.sys
22:01:16.0576 2100 pciide - ok
22:01:16.0603 2100 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) I:\Windows\system32\drivers\pcmcia.sys
22:01:16.0625 2100 pcmcia - ok
22:01:16.0695 2100 pcouffin (5b6c11de7e839c05248ced8825470fef) I:\Windows\system32\Drivers\pcouffin.sys
22:01:16.0729 2100 pcouffin - ok
22:01:16.0785 2100 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) I:\Windows\system32\drivers\peauth.sys
22:01:16.0791 2100 PEAUTH - ok
22:01:16.0864 2100 pfc (444f122e68db44c0589227781f3c8b3f) I:\Windows\system32\drivers\pfc.sys
22:01:16.0865 2100 pfc - ok
22:01:16.0926 2100 pla (b1689df169143f57053f795390c99db3) I:\Windows\system32\pla.dll
22:01:16.0942 2100 pla - ok
22:01:17.0075 2100 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) I:\Windows\system32\umpnpmgr.dll
22:01:17.0079 2100 PlugPlay - ok
22:01:17.0140 2100 PnkBstrA (3a2e85f7d90d15460c337ce80c2e3b29) I:\Windows\system32\PnkBstrA.exe
22:01:17.0142 2100 PnkBstrA - ok
22:01:17.0212 2100 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) I:\Windows\system32\p2psvc.dll
22:01:17.0217 2100 PNRPAutoReg - ok
22:01:17.0223 2100 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) I:\Windows\system32\p2psvc.dll
22:01:17.0232 2100 PNRPsvc - ok
22:01:17.0252 2100 PolicyAgent (d0494460421a03cd5225cca0059aa146) I:\Windows\System32\ipsecsvc.dll
22:01:17.0256 2100 PolicyAgent - ok
22:01:17.0279 2100 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) I:\Windows\system32\DRIVERS\raspptp.sys
22:01:17.0305 2100 PptpMiniport - ok
22:01:17.0328 2100 Processor (2027293619dd0f047c584cf2e7df4ffd) I:\Windows\system32\DRIVERS\processr.sys
22:01:17.0330 2100 Processor - ok
22:01:17.0344 2100 ProfSvc (0508faa222d28835310b7bfca7a77346) I:\Windows\system32\profsvc.dll
22:01:17.0345 2100 ProfSvc - ok
22:01:17.0393 2100 ProtectedStorage (a3e186b4b935905b829219502557314e) I:\Windows\system32\lsass.exe
22:01:17.0395 2100 ProtectedStorage - ok
22:01:17.0441 2100 PSched (99514faa8df93d34b5589187db3aa0ba) I:\Windows\system32\DRIVERS\pacer.sys
22:01:17.0443 2100 PSched - ok
22:01:17.0523 2100 PSI_SVC_2 (e0d0cb09aa07b22be984e4f7ec0326f5) I:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
22:01:17.0524 2100 PSI_SVC_2 - ok
22:01:17.0581 2100 PxHelp20 (40fedd328f98245ad201cf5f9f311724) I:\Windows\system32\DRIVERS\PxHelp20.sys
22:01:17.0605 2100 PxHelp20 - ok
22:01:17.0680 2100 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) I:\Windows\system32\drivers\ql2300.sys
22:01:17.0705 2100 ql2300 - ok
22:01:17.0730 2100 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) I:\Windows\system32\drivers\ql40xx.sys
22:01:17.0733 2100 ql40xx - ok
22:01:17.0761 2100 QWAVE (e9ecae663f47e6cb43962d18ab18890f) I:\Windows\system32\qwave.dll
22:01:17.0765 2100 QWAVE - ok
22:01:17.0771 2100 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) I:\Windows\system32\drivers\qwavedrv.sys
22:01:17.0773 2100 QWAVEdrv - ok
22:01:17.0785 2100 RasAcd (147d7f9c556d259924351feb0de606c3) I:\Windows\system32\DRIVERS\rasacd.sys
22:01:17.0787 2100 RasAcd - ok
22:01:17.0800 2100 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) I:\Windows\System32\rasauto.dll
22:01:17.0802 2100 RasAuto - ok
22:01:17.0811 2100 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) I:\Windows\system32\DRIVERS\rasl2tp.sys
22:01:17.0814 2100 Rasl2tp - ok
22:01:17.0874 2100 RasMan (75d47445d70ca6f9f894b032fbc64fcf) I:\Windows\System32\rasmans.dll
22:01:17.0878 2100 RasMan - ok
22:01:17.0935 2100 RasPppoe (509a98dd18af4375e1fc40bc175f1def) I:\Windows\system32\DRIVERS\raspppoe.sys
22:01:17.0937 2100 RasPppoe - ok
22:01:17.0964 2100 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) I:\Windows\system32\DRIVERS\rassstp.sys
22:01:17.0991 2100 RasSstp - ok
22:01:18.0044 2100 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) I:\Windows\system32\DRIVERS\rdbss.sys
22:01:18.0046 2100 rdbss - ok
22:01:18.0080 2100 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) I:\Windows\system32\DRIVERS\RDPCDD.sys
22:01:18.0081 2100 RDPCDD - ok
22:01:18.0102 2100 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) I:\Windows\system32\drivers\rdpdr.sys
22:01:18.0106 2100 rdpdr - ok
22:01:18.0109 2100 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) I:\Windows\system32\drivers\rdpencdd.sys
22:01:18.0111 2100 RDPENCDD - ok
22:01:18.0171 2100 RDPWD (c127ebd5afab31524662c48dfceb773a) I:\Windows\system32\drivers\RDPWD.sys
22:01:18.0180 2100 RDPWD - ok
22:01:18.0216 2100 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) I:\Windows\System32\mprdim.dll
22:01:18.0217 2100 RemoteAccess - ok
22:01:18.0270 2100 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) I:\Windows\system32\regsvc.dll
22:01:18.0274 2100 RemoteRegistry - ok
22:01:18.0324 2100 RivaTuner32 (c0c8909be3ecc9df8089112bf9be954e) I:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys
22:01:18.0331 2100 RivaTuner32 - ok
22:01:18.0356 2100 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) I:\Windows\system32\locator.exe
22:01:18.0358 2100 RpcLocator - ok
22:01:18.0434 2100 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) I:\Windows\system32\rpcss.dll
22:01:18.0438 2100 RpcSs - ok
22:01:18.0461 2100 rspndr (9c508f4074a39e8b4b31d27198146fad) I:\Windows\system32\DRIVERS\rspndr.sys
22:01:18.0463 2100 rspndr - ok
22:01:18.0510 2100 SamSs (a3e186b4b935905b829219502557314e) I:\Windows\system32\lsass.exe
22:01:18.0511 2100 SamSs - ok
22:01:18.0537 2100 sbp2port (3ce8f073a557e172b330109436984e30) I:\Windows\system32\drivers\sbp2port.sys
22:01:18.0559 2100 sbp2port - ok
22:01:18.0656 2100 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) I:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
22:01:18.0663 2100 SBSDWSCService - ok
22:01:18.0716 2100 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) I:\Windows\System32\SCardSvr.dll
22:01:18.0719 2100 SCardSvr - ok
22:01:18.0787 2100 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) I:\Windows\system32\schedsvc.dll
22:01:18.0792 2100 Schedule - ok
22:01:18.0805 2100 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) I:\Windows\System32\certprop.dll
22:01:18.0806 2100 SCPolicySvc - ok
22:01:18.0888 2100 SCREAMINGBDRIVER (a643d6df1b7546256b11fb5d6b5d1375) I:\Windows\system32\drivers\ScreamingBAudio.sys
22:01:18.0912 2100 SCREAMINGBDRIVER - ok
22:01:18.0939 2100 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) I:\Windows\System32\SDRSVC.dll
22:01:18.0943 2100 SDRSVC - ok
22:01:18.0983 2100 secdrv (90a3935d05b494a5a39d37e71f09a677) I:\Windows\system32\drivers\secdrv.sys
22:01:19.0008 2100 secdrv - ok
22:01:19.0029 2100 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) I:\Windows\system32\seclogon.dll
22:01:19.0031 2100 seclogon - ok
22:01:19.0043 2100 SENS (a9bbab5759771e523f55563d6cbe140f) I:\Windows\System32\sens.dll
22:01:19.0045 2100 SENS - ok
22:01:19.0068 2100 Serenum (ce9ec966638ef0b10b864ddedf62a099) I:\Windows\system32\DRIVERS\serenum.sys
22:01:19.0069 2100 Serenum - ok
22:01:19.0077 2100 Serial (6d663022db3e7058907784ae14b69898) I:\Windows\system32\DRIVERS\serial.sys
22:01:19.0079 2100 Serial - ok
22:01:19.0090 2100 sermouse (8af3d28a879bf75db53a0ee7a4289624) I:\Windows\system32\drivers\sermouse.sys
22:01:19.0092 2100 sermouse - ok
22:01:19.0127 2100 SessionEnv (d2193326f729b163125610dbf3e17d57) I:\Windows\system32\sessenv.dll
22:01:19.0130 2100 SessionEnv - ok
22:01:19.0142 2100 sffdisk (3efa810bdca87f6ecc24f9832243fe86) I:\Windows\system32\drivers\sffdisk.sys
22:01:19.0159 2100 sffdisk - ok
22:01:19.0191 2100 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) I:\Windows\system32\drivers\sffp_mmc.sys
22:01:19.0192 2100 sffp_mmc - ok
22:01:19.0204 2100 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) I:\Windows\system32\drivers\sffp_sd.sys
22:01:19.0206 2100 sffp_sd - ok
22:01:19.0219 2100 sfloppy (46ed8e91793b2e6f848015445a0ac188) I:\Windows\system32\drivers\sfloppy.sys
22:01:19.0221 2100 sfloppy - ok
22:01:19.0253 2100 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) I:\Windows\System32\ipnathlp.dll
22:01:19.0257 2100 SharedAccess - ok
22:01:19.0320 2100 ShellHWDetection (c7230fbee14437716701c15be02c27b8) I:\Windows\System32\shsvcs.dll
22:01:19.0323 2100 ShellHWDetection - ok
22:01:19.0338 2100 sisagp (1d76624a09a054f682d746b924e2dbc3) I:\Windows\system32\drivers\sisagp.sys
22:01:19.0339 2100 sisagp - ok
22:01:19.0353 2100 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) I:\Windows\system32\drivers\sisraid2.sys
22:01:19.0355 2100 SiSRaid2 - ok
22:01:19.0368 2100 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) I:\Windows\system32\drivers\sisraid4.sys
22:01:19.0371 2100 SiSRaid4 - ok
22:01:19.0518 2100 slsvc (862bb4cbc05d80c5b45be430e5ef872f) I:\Windows\system32\SLsvc.exe
22:01:19.0547 2100 slsvc - ok
22:01:19.0689 2100 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) I:\Windows\system32\SLUINotify.dll
22:01:19.0692 2100 SLUINotify - ok
22:01:19.0748 2100 Smb (7b75299a4d201d6a6533603d6914ab04) I:\Windows\system32\DRIVERS\smb.sys
22:01:19.0750 2100 Smb - ok
22:01:19.0775 2100 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) I:\Windows\System32\snmptrap.exe
22:01:19.0778 2100 SNMPTRAP - ok
22:01:19.0794 2100 spldr (7aebdeef071fe28b0eef2cdd69102bff) I:\Windows\system32\drivers\spldr.sys
22:01:19.0795 2100 spldr - ok
22:01:19.0852 2100 Spooler (8554097e5136c3bf9f69fe578a1b35f4) I:\Windows\System32\spoolsv.exe
22:01:19.0855 2100 Spooler - ok
22:01:19.0905 2100 sptd (71e276f6d189413266ea22171806597b) I:\Windows\system32\Drivers\sptd.sys
22:01:19.0905 2100 Suspicious file (NoAccess): I:\Windows\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b
22:01:19.0906 2100 sptd ( LockedFile.Multi.Generic ) - warning
22:01:19.0907 2100 sptd - detected LockedFile.Multi.Generic (1)
22:01:20.0041 2100 SQLBrowser (86ebd8b1f23e743aad21f4d5b4d40985) I:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
22:01:20.0045 2100 SQLBrowser - ok
22:01:20.0107 2100 SQLWriter (d89083c4eb02daca8f944b0e05e57f9d) I:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
22:01:20.0108 2100 SQLWriter - ok
22:01:20.0202 2100 SRTSP (ec5c3c6260f4019b03dfaa03ec8cbf6a) I:\Windows\System32\Drivers\N360\0404000.00C\SRTSP.SYS
22:01:20.0209 2100 SRTSP - ok
22:01:20.0231 2100 SRTSPX (55d5c37ed41231e3ac2063d16df50840) I:\Windows\system32\drivers\N360\0404000.00C\SRTSPX.SYS
22:01:20.0259 2100 SRTSPX - ok
22:01:20.0289 2100 srv (41987f9fc0e61adf54f581e15029ad91) I:\Windows\system32\DRIVERS\srv.sys
22:01:20.0324 2100 srv - ok
22:01:20.0378 2100 srv2 (ff33aff99564b1aa534f58868cbe41ef) I:\Windows\system32\DRIVERS\srv2.sys
22:01:20.0395 2100 srv2 - ok
22:01:20.0417 2100 srvnet (7605c0e1d01a08f3ecd743f38b834a44) I:\Windows\system32\DRIVERS\srvnet.sys
22:01:20.0419 2100 srvnet - ok
22:01:20.0438 2100 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) I:\Windows\System32\ssdpsrv.dll
22:01:20.0440 2100 SSDPSRV - ok
22:01:20.0504 2100 SSMO3v2Filter (0c4fffa5653683da37d463c5507ca41d) I:\Windows\system32\drivers\MO3v2Driver.sys
22:01:20.0529 2100 SSMO3v2Filter - ok
22:01:20.0572 2100 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) I:\Windows\system32\sstpsvc.dll
22:01:20.0574 2100 SstpSvc - ok
22:01:20.0647 2100 Steam Client Service - ok
22:01:20.0688 2100 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) I:\Windows\System32\wiaservc.dll
22:01:20.0693 2100 stisvc - ok
22:01:20.0717 2100 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) I:\Windows\system32\DRIVERS\swenum.sys
22:01:20.0740 2100 swenum - ok
22:01:20.0862 2100 SwitchBoard (f577910a133a592234ebaad3f3afa258) I:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:01:20.0866 2100 SwitchBoard - ok
22:01:20.0929 2100 swprv (f21fd248040681cca1fb6c9a03aaa93d) I:\Windows\System32\swprv.dll
22:01:20.0934 2100 swprv - ok
22:01:20.0957 2100 Symc8xx (192aa3ac01df071b541094f251deed10) I:\Windows\system32\drivers\symc8xx.sys
22:01:20.0967 2100 Symc8xx - ok
22:01:21.0060 2100 SymDS (56890bf9d9204b93042089d4b45ae671) I:\Windows\system32\drivers\N360\0404000.00C\SYMDS.SYS
22:01:21.0063 2100 SymDS - ok
22:01:21.0108 2100 SymEFA (10ba64273feff4df0a7ccb0ff3b9b26b) I:\Windows\system32\drivers\N360\0404000.00C\SYMEFA.SYS
22:01:21.0127 2100 SymEFA - ok
22:01:21.0177 2100 SymEvent (961b48b86f94d4cc8ceb483f8aa89374) I:\Windows\system32\Drivers\SYMEVENT.SYS
22:01:21.0208 2100 SymEvent - ok
22:01:21.0268 2100 SymIRON (dc80fbf0a348e54853ef82eed4e11e35) I:\Windows\system32\drivers\N360\0404000.00C\Ironx86.SYS
22:01:21.0289 2100 SymIRON - ok
22:01:21.0317 2100 SYMTDIv (b501d61792d8355eae7eb4f7449a9d99) I:\Windows\System32\Drivers\N360\0404000.00C\SYMTDIV.SYS
22:01:21.0334 2100 SYMTDIv - ok
22:01:21.0355 2100 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) I:\Windows\system32\drivers\sym_hi.sys
22:01:21.0357 2100 Sym_hi - ok
22:01:21.0385 2100 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) I:\Windows\system32\drivers\sym_u3.sys
22:01:21.0387 2100 Sym_u3 - ok
22:01:21.0450 2100 SysMain (9a51b04e9886aa4ee90093586b0ba88d) I:\Windows\system32\sysmain.dll
22:01:21.0458 2100 SysMain - ok
22:01:21.0469 2100 TabletInputService (2dca225eae15f42c0933e998ee0231c3) I:\Windows\System32\TabSvc.dll
22:01:21.0472 2100 TabletInputService - ok
22:01:21.0528 2100 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) I:\Windows\System32\tapisrv.dll
22:01:21.0532 2100 TapiSrv - ok
22:01:21.0540 2100 TBS (cb05822cd9cc6c688168e113c603dbe7) I:\Windows\System32\tbssvc.dll
22:01:21.0542 2100 TBS - ok
22:01:21.0594 2100 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) I:\Windows\system32\drivers\tcpip.sys
22:01:21.0614 2100 Tcpip - ok
22:01:21.0623 2100 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) I:\Windows\system32\DRIVERS\tcpip.sys
22:01:21.0627 2100 Tcpip6 - ok
22:01:21.0674 2100 tcpipreg (608c345a255d82a6289c2d468eb41fd7) I:\Windows\system32\drivers\tcpipreg.sys
22:01:21.0696 2100 tcpipreg - ok
22:01:21.0713 2100 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) I:\Windows\system32\drivers\tdpipe.sys
22:01:21.0714 2100 TDPIPE - ok
22:01:21.0733 2100 TDTCP (389c63e32b3cefed425b61ed92d3f021) I:\Windows\system32\drivers\tdtcp.sys
22:01:21.0735 2100 TDTCP - ok
22:01:21.0754 2100 tdx (76b06eb8a01fc8624d699e7045303e54) I:\Windows\system32\DRIVERS\tdx.sys
22:01:21.0777 2100 tdx - ok
22:01:21.0832 2100 TermDD (3cad38910468eab9a6479e2f01db43c7) I:\Windows\system32\DRIVERS\termdd.sys
22:01:21.0854 2100 TermDD - ok
22:01:21.0919 2100 TermService (bb95da09bef6e7a131bff3ba5032090d) I:\Windows\System32\termsrv.dll
22:01:21.0925 2100 TermService - ok
22:01:21.0986 2100 Themes (c7230fbee14437716701c15be02c27b8) I:\Windows\system32\shsvcs.dll
22:01:21.0989 2100 Themes - ok
22:01:22.0016 2100 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) I:\Windows\system32\mmcss.dll
22:01:22.0018 2100 THREADORDER - ok
22:01:22.0037 2100 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) I:\Windows\System32\trkwks.dll
22:01:22.0040 2100 TrkWks - ok
22:01:22.0101 2100 truecrypt (746b8cf9cededdd865472544edf626da) I:\Windows\system32\drivers\truecrypt.sys
22:01:22.0137 2100 truecrypt - ok
22:01:22.0186 2100 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) I:\Windows\servicing\TrustedInstaller.exe
22:01:22.0188 2100 TrustedInstaller - ok
22:01:22.0231 2100 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) I:\Windows\system32\DRIVERS\tssecsrv.sys
22:01:22.0233 2100 tssecsrv - ok
22:01:22.0247 2100 tunmp (caecc0120ac49e3d2f758b9169872d38) I:\Windows\system32\DRIVERS\tunmp.sys
22:01:22.0248 2100 tunmp - ok
22:01:22.0307 2100 tunnel (300db877ac094feab0be7688c3454a9c) I:\Windows\system32\DRIVERS\tunnel.sys
22:01:22.0335 2100 tunnel - ok
22:01:22.0355 2100 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) I:\Windows\system32\drivers\uagp35.sys
22:01:22.0375 2100 uagp35 - ok
22:01:22.0401 2100 udfs (d9728af68c4c7693cb100b8441cbdec6) I:\Windows\system32\DRIVERS\udfs.sys
22:01:22.0405 2100 udfs - ok
22:01:22.0438 2100 UI0Detect (ecef404f62863755951e09c802c94ad5) I:\Windows\system32\UI0Detect.exe
22:01:22.0441 2100 UI0Detect - ok
22:01:22.0456 2100 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) I:\Windows\system32\drivers\uliagpkx.sys
22:01:22.0476 2100 uliagpkx - ok
22:01:22.0500 2100 uliahci (9224bb254f591de4ca8d572a5f0d635c) I:\Windows\system32\drivers\uliahci.sys
22:01:22.0504 2100 uliahci - ok
22:01:22.0534 2100 UlSata (8514d0e5cd0534467c5fc61be94a569f) I:\Windows\system32\drivers\ulsata.sys
22:01:22.0537 2100 UlSata - ok
22:01:22.0550 2100 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) I:\Windows\system32\drivers\ulsata2.sys
22:01:22.0553 2100 ulsata2 - ok
22:01:22.0569 2100 umbus (32cff9f809ae9aed85464492bf3e32d2) I:\Windows\system32\DRIVERS\umbus.sys
22:01:22.0586 2100 umbus - ok
22:01:22.0612 2100 upnphost (68308183f4ae0be7bf8ecd07cb297999) I:\Windows\System32\upnphost.dll
22:01:22.0616 2100 upnphost - ok
22:01:22.0664 2100 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) I:\Windows\system32\Drivers\usbaapl.sys
22:01:22.0679 2100 USBAAPL - ok
22:01:22.0754 2100 usbaudio (32db9517628ff0d070682aab61e688f0) I:\Windows\system32\drivers\usbaudio.sys
22:01:22.0774 2100 usbaudio - ok
22:01:22.0840 2100 usbccgp (caf811ae4c147ffcd5b51750c7f09142) I:\Windows\system32\DRIVERS\usbccgp.sys
22:01:22.0861 2100 usbccgp - ok
22:01:22.0889 2100 usbcir (e9476e6c486e76bc4898074768fb7131) I:\Windows\system32\drivers\usbcir.sys
22:01:22.0892 2100 usbcir - ok
22:01:22.0919 2100 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) I:\Windows\system32\DRIVERS\usbehci.sys
22:01:22.0920 2100 usbehci - ok
22:01:22.0980 2100 usbhub (4673bbcb006af60e7abddbe7a130ba42) I:\Windows\system32\DRIVERS\usbhub.sys
22:01:23.0002 2100 usbhub - ok
22:01:23.0021 2100 usbohci (ce697fee0d479290d89bec80dfe793b7) I:\Windows\system32\DRIVERS\usbohci.sys
22:01:23.0022 2100 usbohci - ok
22:01:23.0037 2100 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) I:\Windows\system32\DRIVERS\usbprint.sys
22:01:23.0051 2100 usbprint - ok
22:01:23.0129 2100 usbscan (a508c9bd8724980512136b039bba65e9) I:\Windows\system32\DRIVERS\usbscan.sys
22:01:23.0149 2100 usbscan - ok
22:01:23.0170 2100 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) I:\Windows\system32\DRIVERS\USBSTOR.SYS
22:01:23.0192 2100 USBSTOR - ok
22:01:23.0212 2100 usbuhci (814d653efc4d48be3b04a307eceff56f) I:\Windows\system32\DRIVERS\usbuhci.sys
22:01:23.0229 2100 usbuhci - ok
22:01:23.0274 2100 UxSms (1509e705f3ac1d474c92454a5c2dd81f) I:\Windows\System32\uxsms.dll
22:01:23.0276 2100 UxSms - ok
22:01:23.0347 2100 vds (cd88d1b7776dc17a119049742ec07eb4) I:\Windows\System32\vds.exe
22:01:23.0351 2100 vds - ok
22:01:23.0375 2100 vga (87b06e1f30b749a114f74622d013f8d4) I:\Windows\system32\DRIVERS\vgapnp.sys
22:01:23.0377 2100 vga - ok
22:01:23.0391 2100 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) I:\Windows\System32\drivers\vga.sys
22:01:23.0392 2100 VgaSave - ok
22:01:23.0407 2100 viaagp (5d7159def58a800d5781ba3a879627bc) I:\Windows\system32\drivers\viaagp.sys
22:01:23.0409 2100 viaagp - ok
22:01:23.0420 2100 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) I:\Windows\system32\drivers\viac7.sys
22:01:23.0423 2100 ViaC7 - ok
22:01:23.0434 2100 viaide (aadf5587a4063f52c2c3fed7887426fc) I:\Windows\system32\drivers\viaide.sys
22:01:23.0436 2100 viaide - ok
22:01:23.0450 2100 VMnetAdapter - ok
22:01:23.0464 2100 volmgr (69503668ac66c77c6cd7af86fbdf8c43) I:\Windows\system32\drivers\volmgr.sys
22:01:23.0484 2100 volmgr - ok
22:01:23.0535 2100 volmgrx (23e41b834759917bfd6b9a0d625d0c28) I:\Windows\system32\drivers\volmgrx.sys
22:01:23.0538 2100 volmgrx - ok
22:01:23.0600 2100 volsnap (147281c01fcb1df9252de2a10d5e7093) I:\Windows\system32\drivers\volsnap.sys
22:01:23.0623 2100 volsnap - ok
22:01:23.0649 2100 vsmraid (587253e09325e6bf226b299774b728a9) I:\Windows\system32\drivers\vsmraid.sys
22:01:23.0666 2100 vsmraid - ok
22:01:23.0743 2100 VSS (db3d19f850c6eb32bdcb9bc0836acddb) I:\Windows\system32\vssvc.exe
22:01:23.0756 2100 VSS - ok
22:01:23.0815 2100 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) I:\Windows\system32\w32time.dll
22:01:23.0820 2100 W32Time - ok
22:01:23.0853 2100 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) I:\Windows\system32\drivers\wacompen.sys
22:01:23.0867 2100 WacomPen - ok
22:01:24.0036 2100 wampapache (53ea061ecc67223a430f153c3682ad54) i:\wamp\bin\apache\apache2.2.17\bin\httpd.exe
22:01:24.0055 2100 wampapache - ok
22:01:24.0119 2100 wampmysqld - ok
22:01:24.0137 2100 Wanarp (55201897378cca7af8b5efd874374a26) I:\Windows\system32\DRIVERS\wanarp.sys
22:01:24.0139 2100 Wanarp - ok
22:01:24.0142 2100 Wanarpv6 (55201897378cca7af8b5efd874374a26) I:\Windows\system32\DRIVERS\wanarp.sys
22:01:24.0143 2100 Wanarpv6 - ok
22:01:24.0179 2100 wcncsvc (a3cd60fd826381b49f03832590e069af) I:\Windows\System32\wcncsvc.dll
22:01:24.0186 2100 wcncsvc - ok
22:01:24.0205 2100 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) I:\Windows\System32\WcsPlugInService.dll
22:01:24.0209 2100 WcsPlugInService - ok
22:01:24.0228 2100 Wd (78fe9542363f297b18c027b2d7e7c07f) I:\Windows\system32\drivers\wd.sys
22:01:24.0231 2100 Wd - ok
22:01:24.0299 2100 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) I:\Windows\system32\drivers\Wdf01000.sys
22:01:24.0346 2100 Wdf01000 - ok
22:01:24.0370 2100 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) I:\Windows\system32\wdi.dll
22:01:24.0373 2100 WdiServiceHost - ok
22:01:24.0376 2100 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) I:\Windows\system32\wdi.dll
22:01:24.0378 2100 WdiSystemHost - ok
22:01:24.0440 2100 WebClient (04c37d8107320312fbae09926103d5e2) I:\Windows\System32\webclnt.dll
22:01:24.0444 2100 WebClient - ok
22:01:24.0498 2100 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) I:\Windows\system32\wecsvc.dll
22:01:24.0502 2100 Wecsvc - ok
22:01:24.0519 2100 wercplsupport (670ff720071ed741206d69bd995ea453) I:\Windows\System32\wercplsupport.dll
22:01:24.0521 2100 wercplsupport - ok
22:01:24.0577 2100 WerSvc (32b88481d3b326da6deb07b1d03481e7) I:\Windows\System32\WerSvc.dll
22:01:24.0581 2100 WerSvc - ok
22:01:24.0649 2100 WinDefend (4575aa12561c5648483403541d0d7f2b) I:\Program Files\Windows Defender\mpsvc.dll
22:01:24.0669 2100 WinDefend - ok
22:01:24.0677 2100 WinHttpAutoProxySvc - ok
22:01:24.0752 2100 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) I:\Windows\system32\wbem\WMIsvc.dll
22:01:24.0754 2100 Winmgmt - ok
22:01:24.0839 2100 WinRM (7cfe68bdc065e55aa5e8421607037511) I:\Windows\system32\WsmSvc.dll
22:01:24.0854 2100 WinRM - ok
22:01:24.0951 2100 WinUSB (30fc6e5448d0cbaaa95280eeef7fedae) I:\Windows\system32\DRIVERS\WinUSB.sys
22:01:24.0973 2100 WinUSB - ok
22:01:25.0035 2100 Wlansvc (c008405e4feeb069e30da1d823910234) I:\Windows\System32\wlansvc.dll
22:01:25.0040 2100 Wlansvc - ok
22:01:25.0061 2100 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) I:\Windows\system32\drivers\wmiacpi.sys
22:01:25.0074 2100 WmiAcpi - ok
22:01:25.0165 2100 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) I:\Windows\system32\wbem\WmiApSrv.exe
22:01:25.0168 2100 wmiApSrv - ok
22:01:25.0238 2100 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) I:\Program Files\Windows Media Player\wmpnetwk.exe
22:01:25.0248 2100 WMPNetworkSvc - ok
22:01:25.0263 2100 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) I:\Windows\System32\wpcsvc.dll
22:01:25.0267 2100 WPCSvc - ok
22:01:25.0323 2100 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) I:\Windows\system32\wpdbusenum.dll
22:01:25.0326 2100 WPDBusEnum - ok
22:01:25.0410 2100 WpdUsb (de9d36f91a4df3d911626643debf11ea) I:\Windows\system32\DRIVERS\wpdusb.sys
22:01:25.0438 2100 WpdUsb - ok
22:01:25.0639 2100 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) I:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:01:25.0648 2100 WPFFontCache_v0400 - ok
22:01:25.0669 2100 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) I:\Windows\system32\drivers\ws2ifsl.sys
22:01:25.0671 2100 ws2ifsl - ok
22:01:25.0733 2100 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) I:\Windows\system32\wscsvc.dll
22:01:25.0735 2100 wscsvc - ok
22:01:25.0738 2100 WSearch - ok
22:01:25.0844 2100 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) I:\Windows\system32\wuaueng.dll
22:01:25.0857 2100 wuauserv - ok
22:01:25.0941 2100 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) I:\Windows\system32\DRIVERS\WUDFRd.sys
22:01:25.0959 2100 WUDFRd - ok
22:01:25.0997 2100 wudfsvc (575a4190d989f64732119e4114045a4f) I:\Windows\System32\WUDFSvc.dll
22:01:26.0000 2100 wudfsvc - ok
22:01:26.0106 2100 XMail (1619a3283d9125d44116a1ee9143e035) I:\Program Files\acquia-drupal\xmail\XMail.exe
22:01:26.0108 2100 XMail - ok
22:01:26.0128 2100 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:01:26.0502 2100 \Device\Harddisk0\DR0 - ok
22:01:26.0520 2100 MBR (0x1B8) (a4a15d6782e6fe1dce41a606cb3affe3) \Device\Harddisk1\DR1
22:01:33.0705 2100 \Device\Harddisk1\DR1 - ok
22:01:33.0708 2100 Boot (0x1200) (f6f490551d7bd8d233a9a5a45e7c3691) \Device\Harddisk0\DR0\Partition0
22:01:33.0709 2100 \Device\Harddisk0\DR0\Partition0 - ok
22:01:33.0713 2100 Boot (0x1200) (674c334f92a12ffdf66683915dfc2a55) \Device\Harddisk1\DR1\Partition0
22:01:33.0717 2100 \Device\Harddisk1\DR1\Partition0 - ok
22:01:33.0717 2100 ============================================================
22:01:33.0717 2100 Scan finished
22:01:33.0717 2100 ============================================================
22:01:33.0725 4468 Detected object count: 1
22:01:33.0725 4468 Actual detected object count: 1
22:01:39.0417 4468 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:01:39.0417 4468 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:08:44.0378 5668 Deinitialize success


aswMBR
------------------------------

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-09 22:45:38
-----------------------------
22:45:38.264 OS Version: Windows 6.0.6002 Service Pack 2
22:45:38.264 Number of processors: 2 586 0x203
22:45:38.265
22:45:40.249 Initialize success
22:45:51.145 AVAST engine defs: 12070901
22:45:55.128 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-4
22:45:55.130 Disk 0 Vendor: Hitachi_HDP725050GLA360 GM4OA5CA Size: 476940MB BusType: 3
22:45:55.132 Device \Driver\USBSTOR -> DriverStartIo USBSTOR.SYS 91091f26
22:45:55.151 Disk 2 MBR read successfully
22:45:55.153 Disk 2 MBR scan
22:45:55.179 Disk 2 Windows VISTA default MBR code
22:45:55.182 Disk 2 MBR hidden
22:45:55.185 Disk 2 Partition 1 80 (A) 07 HPFS/NTFS NTFS 476929 MB offset 63
22:45:55.282 Disk 2 scanning I:\Windows\system32\drivers
22:46:33.042 Service scanning
22:46:57.478 Service sptd I:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
22:47:07.162 Modules scanning
22:47:56.871 Disk 2 trace - called modules:
22:47:56.878
22:47:58.315 AVAST engine scan I:\Windows
22:49:33.980 AVAST engine scan I:\Windows\system32
23:01:21.399 AVAST engine scan I:\Windows\system32\drivers
23:03:14.007 AVAST engine scan I:\Users\Butch
02:50:29.842 AVAST engine scan I:\ProgramData
04:22:00.596 Scan finished successfully
10:56:53.904 Disk 2 MBR has been saved successfully to "I:\Users\Butch\Documents\MBR.dat"
10:56:53.910 The log file has been saved successfully to "I:\Users\Butch\Documents\aswMBR.txt"

ESET Scanner
---------------------

There weren't any threats, It came back clean.


Everything came back clean. I haven't had any redirects today. Not sure what the change is. I've done multiple searches to make sure and haven't found anything. Norton gave me an alert on one of the AVAST scanner temp files, but that was the only one during the whole process.

Edited by dogboybz, 10 July 2012 - 10:33 PM.


#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:59 AM

Posted 10 July 2012 - 10:35 PM

We can complete the scans

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#6 dogboybz

dogboybz
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 10 July 2012 - 10:52 PM

I just restarted the machine and the redirect is back. Moving on to your next set of instructions.

Edited by dogboybz, 10 July 2012 - 10:55 PM.


#7 dogboybz

dogboybz
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 10 July 2012 - 11:24 PM

mini toolbox
-------------------

MiniToolBox by Farbar Version: 25-06-2012
Ran by ------ on 10-07-2012 at 21:03:15
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 2trees

127.0.0.1 dpauss
127.0.0.1 2trees
127.0.0.1 dpauss

========================= IP Configuration: ================================

NVIDIA nForce Networking Controller = Local Area Connection 2 (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="ethernet_10" address=192.168.219.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . :
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Home

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : NVIDIA nForce Networking Controller #2
Physical Address. . . . . . . . . : 00-21-85-32-62-7C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::f492:decb:473b:5e04%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, July 10, 2012 8:35:50 PM
Lease Expires . . . . . . . . . . : Saturday, August 17, 2148 3:31:47 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 251666821
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-44-E0-54-00-21-85-32-62-7C
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Home
Description . . . . . . . . . . . : isatap.Home
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:400a:801::1000
173.194.33.32
173.194.33.37
173.194.33.41
173.194.33.39
173.194.33.33
173.194.33.38
173.194.33.40
173.194.33.36
173.194.33.35
173.194.33.34
173.194.33.46



Pinging google.com [173.194.33.5] with 32 bytes of data:

Reply from 173.194.33.5: bytes=32 time=11ms TTL=55

Reply from 173.194.33.5: bytes=32 time=11ms TTL=55



Ping statistics for 173.194.33.5:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 11ms, Maximum = 11ms, Average = 11ms

Server: UnKnown
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
209.191.122.70



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=58ms TTL=50

Reply from 209.191.122.70: bytes=32 time=57ms TTL=50



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 57ms, Maximum = 58ms, Average = 57ms

Server: UnKnown
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
12 ...00 21 85 32 62 7c ...... NVIDIA nForce Networking Controller #2
1 ........................... Software Loopback Interface 1
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
13 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
14 ...00 00 00 00 00 00 00 e0 isatap.Home
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.3 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.3 276
192.168.2.3 255.255.255.255 On-link 192.168.2.3 276
192.168.2.255 255.255.255.255 On-link 192.168.2.3 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.3 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.3 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
12 276 fe80::/64 On-link
12 276 fe80::f492:decb:473b:5e04/128
On-link
1 306 ff00::/8 On-link
12 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 I:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 I:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 I:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 I:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 I:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 I:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 I:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 I:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/10/2012 08:36:06 PM) (Source: ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. Missing server configuration information.
at Act.Scheduler.SchedulerService.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (07/09/2012 09:00:57 PM) (Source: ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. Missing server configuration information.
at Act.Scheduler.SchedulerService.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (07/09/2012 08:16:12 PM) (Source: System Restore) (User: )
Description: Failed to create restore point on volume (Process = I:\Windows\system32\wbem\wmiprvse.exe; Descripton = ComboFix created restore point; Hr = 0x800706be).

Error: (07/09/2012 07:46:25 PM) (Source: ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. Missing server configuration information.
at Act.Scheduler.SchedulerService.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (07/09/2012 07:29:02 PM) (Source: ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. Missing server configuration information.
at Act.Scheduler.SchedulerService.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (07/09/2012 06:49:05 PM) (Source: Application Hang) (User: )
Description: The program MRT.exe version 4.9.6301.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1284
Start Time: 01cd5e222c1b5ca7
Termination Time: 323

Error: (07/09/2012 02:48:46 PM) (Source: Windows Search Service) (User: )
Description: Unvisited items cannot be deleted from the history after a full update.

Context: Application, SystemIndex Catalog

Details:
The I/O operation has been aborted because of either a thread exit or an application request. (0x800703e3)

Error: (07/09/2012 02:41:59 PM) (Source: Outlook) (User: )
Description: Failed to determine if the store is in the crawl scope (error=0x80070005).

Error: (07/09/2012 02:41:59 PM) (Source: Outlook) (User: )
Description: Failed to get the Crawl Scope Manager with error=0x80070005.

Error: (07/09/2012 02:41:40 PM) (Source: Windows Search Service) (User: )
Description: Advise Status Change failed. The system is probably low on resources. Free up resources and restart the service.

Context: Application, SystemIndex Catalog

Details:
The content index service was stopped. (0x80041812)


System errors:
=============
Error: (07/10/2012 08:36:25 PM) (Source: Service Control Manager) (User: )
Description: DgiVecp%%2

Error: (07/10/2012 08:36:25 PM) (Source: Service Control Manager) (User: )
Description: adfs%%2

Error: (07/10/2012 08:21:25 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (07/10/2012 08:21:20 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (07/10/2012 08:21:15 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (07/10/2012 08:21:10 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (07/10/2012 08:21:05 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (07/10/2012 08:21:00 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (07/10/2012 08:20:55 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.

Error: (07/10/2012 08:20:49 PM) (Source: disk) (User: )
Description: The device, \Device\Harddisk0\DR0, has a bad block.


Microsoft Office Sessions:
=========================
Error: (06/08/2010 11:16:07 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 344 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/15/2009 10:36:19 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 57372 seconds with 180 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
3ivx MPEG-4 5.0.3 (remove only) (Version: 5.0.3)
7-Zip 4.65
ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
Acquia Dev Desktop (Version: 7.9.9)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
ACT! by Sage 2009 (11.0) (Version: 11.1.0.0)
Adobe Acrobat 3D (Version: 7.1.0)
Adobe Acrobat 3D 7.1.0 (Version: 7.1.0)
AdobeColorCommonSetRGB (Version: 2.0)
AMD Processor Driver (Version: 1.3.2.0053)
Android Commander version 0.7.9.8.2.01 (Version: 0.7.9.8.2.01)
Android SDK Tools (Version: 0.7)
AnswerWorks 5.0 English Runtime (Version: 008.000.0003)
AnswerWorks 5.0 English Runtime (Version: 5.0.7)
Apple Application Support (Version: 1.3.0)
Apple Mobile Device Support (Version: 3.1.0.62)
Apple Software Update (Version: 2.1.1.116)
ArcSoft MediaImpression
Bonjour (Version: 2.0.2.0)
BurnAware Free 2.3.5
calibre (Version: 0.8.0)
Comcast High-Speed Internet Install Wizard
ConvertXtoDVD 4.0.6.316 (Version: 4.0.6.316)
Diablo III (Version: 1.0.3.10057)
doubleTwist (Version: 3.2.0.12944)
Epson Copy Utility 3.5 (Version: 3.5.0.0)
Epson Event Manager (Version: 2.30.01)
EPSON Perfection V30/V300 Photo Scanner Driver Update
EPSON Scan
ESET Online Scanner v3
ESN Sonar (Version: 0.70.0)
ESN Sonar (Version: 0.70.4)
EVE Online (remove only)
EVGA Precision 1.3.0
ffdshow [rev 2527] [2008-12-19] (Version: 1.0)
FlipShare (Version: 4.1.2.38015)
Google Chrome (Version: 20.0.1132.47)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.111)
iTunes (Version: 9.2.0.61)
Java Auto Updater (Version: 2.1.6.0)
Java DB 10.6.2.1 (Version: 10.6.2.1)
Java SE Development Kit 7 Update 4 (Version: 1.7.0.40)
Java™ 6 Update 32 (Version: 6.0.320)
Java™ 7 Update 5 (Version: 7.0.50)
Java™ SE Development Kit 6 Update 26 (Version: 1.6.0.260)
JavaFX 2.1.0 SDK (Version: 2.1.0)
JavaFX 2.1.1 (Version: 2.1.1)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mavis Beacon Teaches Typing Platinum 20 (Version: 20.00.0000)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft LifeChat (Version: 1.40.224.0)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (ACT7) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
MotoHelper 2.0.51 Driver (Version: 2.0.51)
MotoHelper MergeModules (Version: 1.0.0)
MotoHelper MergeModules (Version: 1.2.0)
Move Media Player
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mumble 1.2.3 (Version: 1.2.3)
MusicBrainz Picard (Version: 0.12.1)
Netflix in Windows Media Center (Version: 2.0.0.0)
Norton Security Suite (Version: 4.4.0.12)
NVIDIA 3D Vision Controller Driver 285.62 (Version: 285.62)
NVIDIA Control Panel 285.62 (Version: 285.62)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Graphics Driver 285.62 (Version: 285.62)
NVIDIA HD Audio Driver 1.2.24.0 (Version: 1.2.24.0)
NVIDIA Install Application (Version: 2.1002.46.235)
NVIDIA PhysX (Version: 9.11.0621)
NVIDIA PhysX System Software 9.11.0621 (Version: 9.11.0621)
NVIDIA Update 1.5.20 (Version: 1.5.20)
NVIDIA Update Components (Version: 1.5.20)
OpenAL
PDF Settings CS5 (Version: 10.0)
Pidgin (Version: 2.10.1)
PunkBuster Services (Version: 0.991)
PVSonyDll (Version: 1.00.0001)
PxMergeModule (Version: 1.00.0000)
Quicken 2010 (Version: 19.1.5.3)
QuickTime (Version: 7.66.73.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6235)
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition (Version: v2.24 MSI Master Overclocking Arena 2009 edition)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
System Requirements Lab
TeamSpeak 2 RC2 (Version: 2.0.32.60)
TeamSpeak 3 Client
TightVNC 1.3.10 (Version: 1.3.10)
TinyCAD 2.80.03 (Version: 2.80.03)
TrueCrypt (Version: 7.1)
TurboTax 2008
TurboTax 2008 WinPerFedFormset (Version: 008.000.0341)
TurboTax 2008 WinPerProgramHelp (Version: 008.000.0219)
TurboTax 2008 WinPerReleaseEngine (Version: 008.000.0197)
TurboTax 2008 WinPerTaxSupport (Version: 008.000.1007)
TurboTax 2008 WinPerUserEducation (Version: 008.000.0433)
TurboTax 2008 wrapper (Version: 008.000.0065)
TurboTax 2009
TurboTax 2009 WinPerFedFormset (Version: 009.000.1875)
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0311)
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0230)
TurboTax 2009 wrapper (Version: 009.000.0145)
TurboTax 2010
TurboTax 2010 WinPerFedFormset (Version: 010.000.3073)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0388)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0186)
TurboTax 2010 wrapper (Version: 010.000.0155)
TurboTax 2011
TurboTax 2011 WinPerFedFormset (Version: 011.000.2675)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0436)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0210)
TurboTax 2011 wrapper (Version: 011.000.0120)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Ventrilo Client (Version: 3.0.4)
Vista Codec Package (Version: 5.3.1)
VNC Free Edition 4.1.3 (Version: 4.1.3)
WampServer 2.1
Windows Driver Package - SteelSeries (HidUsb) HIDClass (11/19/2010 1.2.4.0) (Version: 11/19/2010 1.2.4.0)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinSCP 4.2.1 beta (Version: 4.2.1 beta)
World of Warcraft Cataclysm MMO Gaming Mouse (Version: 1.01.0008)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 3326.33 MB
Available physical RAM: 1768.7 MB
Total Pagefile: 6881.07 MB
Available Pagefile: 5430.56 MB
Total Virtual: 2047.88 MB
Available Virtual: 1944.72 MB

========================= Partitions: =====================================

7 Drive h: (External Hard drive) (Fixed) (Total:149.05 GB) (Free:25.89 GB) NTFS
8 Drive i: () (Fixed) (Total:465.75 GB) (Free:269.21 GB) NTFS

========================= Users: ========================================

User accounts for

Administrator Guest UpdatusUser


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:59 AM

Posted 11 July 2012 - 08:21 AM

Lot of symptoms related to harddrive

Can you check your Harddrive using this guide

http://www.bleepingcomputer.com/forums/topic28744.html

#9 dogboybz

dogboybz
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 11 July 2012 - 12:19 PM

I've completed all of your instructions. I still have the redirect. What's next?

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:59 AM

Posted 11 July 2012 - 01:10 PM

I've completed all of your instructions. I still have the redirect. What's next?

Actually we need to diagnose if you're harddrive is stable.Did you run the harddrive diagnostic tool specific to your manufacturer?>

Regarding redirect

Uninstall firefox,make sure to checkmark REMOVE MY PERSONAL DATA option

Reinstall firefox.This should fix your redirects

#11 dogboybz

dogboybz
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 13 July 2012 - 08:48 PM

My system information says that I have a hitachi drive, so I downloaded the hitachi diagnostic tool and the tool informed me that I don't have a hitachi drive. Not sure where to go from here.

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:59 AM

Posted 13 July 2012 - 09:56 PM

Can you post your exact hitachi model number?

#13 dogboybz

dogboybz
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:07:59 AM

Posted 14 July 2012 - 01:56 PM

System information says Hitachi HDP725050GLA360

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:59 AM

Posted 14 July 2012 - 02:15 PM

Back up your data first

Create a topic regarding your harddrive issue here

http://www.bleepingcomputer.com/forums/forum72.html

Uninstall firefox,make sure to checkmark REMOVE MY PERSONAL DATA option

Reinstall firefox.This should fix your redirects


This should fix your redirects




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users