Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firefox/ IE8 Google Redirect Virus


  • This topic is locked This topic is locked
11 replies to this topic

#1 Barry35

Barry35

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 11 October 2012 - 03:06 PM

So Frustrated!!! I've been working through Bitdefender help and not making progress on getting rid of this virus. I've had this virus since at least early August. Just Today - I've scanned using Bitdefender, Malwarebytes, Microsoft Security essentials, Microsoft Malicious Malware removal tool. Bitdefender is primary - for the others - I'd disable Bitdefender and install/scan/uninstall the other AV software. I've uninstalled/re-installed Mozilla Firefox. I've used CCleaner on the registry to delete unused keys. All with no luck in removing. From all my reading, I went ahead and ran ComboFix - log attached. After running ComboFix, my very first search via Firefox/Google was redirected. Any suggestions?

Attached Files



BC AdBot (Login to Remove)

 


#2 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:16 PM

Posted 11 October 2012 - 06:33 PM

Please open FireFox and type about:support into the address bar.

Click the "copy to clipboard" button, save the file as a text file - Look.txt

post the content of Look.txt into your next reply



NEXT


Download AdwCleaner from here and save it to your desktop.
  • Run AdwCleaner and select Delete
  • Once done it will ask to reboot, allow the reboot
  • On reboot a log will be produced, please attach the content of the log to your next reply

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#3 Barry35

Barry35
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 12 October 2012 - 10:04 AM

Hi there,
As directed.... attached the two files. I see that AdwCleanerS1 deleted one virus....pauseing - checking various search results for redirection....still being redirected. I am still being redirected. Anything else to try? Appreciate the help.

Attached Files



#4 Barry35

Barry35
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 12 October 2012 - 10:31 AM

Hi there,
Immediately after the last post, I looked at the "look" file. I realized that I was not up to date for Firefox. So upgraded to Firefox 16, re-ran the "look" file and AdwCleaner file which are attached. Pausing to test...... Firefox / Bing did not seem to redirect. However, Firefox/Google WAS redirected. Any ideas? Thanks much!!

Attached Files



#5 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:16 PM

Posted 12 October 2012 - 10:03 PM

I can't find any info on this:

Performance Cache
1.0
true
ppbcjbwimx@ppbcjbwimx.org

so I suggest deleting it from FireFox add-ons unless you know specifically what it is

NEXT

Go here to run an online scanner from ESET.
  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the activeX control to install
  • Click Start
  • Make sure that the option Remove found threats is unticked and the Scan Archives option is ticked.
  • Click on Advanced Settings, ensure the options Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
  • Click Scan
  • Wait for the scan to finish
  • When the scan completes, press the LIST OF THREATS FOUND button
  • Press EXPORT TO TEXT FILE , name the file ESETSCAN and save it to your desktop
  • Include the contents of this report in your next reply.
  • Press the BACK button.
  • Press Finish

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#6 Barry35

Barry35
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 14 October 2012 - 11:18 AM

Hi, Redirect problem seems to be fixed. Not sure how or why.

As directed, removed the Performance Cache extension for Firefox. No idea where or when it came from. I'm sure I restarted Firefox after removal (not reboot)and tested - I was still being redirected.
Next - followed your directions for ESET....below.

Go here to run an online scanner from ESET.

Turn off the real time scanner of any existing antivirus program while performing the online scan - YES
Tick the box next to YES, I accept the Terms of Use. - YES
Click Start - YES
When asked, allow the activeX control to install - not asked
Click Start - YES
Make sure that the option Remove found threats is unticked ( - YES) and the Scan Archives option is ticked. - YES
Click on Advanced Settings, ensure the options Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked. - YES
Click Scan - YES
Wait for the scan to finish - YES
When the scan completes, press the LIST OF THREATS FOUND button - no button for this shown - scan ended at step 4 of 4, only button is finish
Press EXPORT TO TEXT FILE , name the file ESETSCAN and save it to your desktop
Include the contents of this report in your next reply.
Press the BACK button.
Press Finish
- YES

I'm attaching bmp of final screen headed "no threats found". Since scan finished, I've rebooted three times. I'm no longer being redirected. Just curious, if no tick mark for "remove found threats", did the scan somehow fix things? Any ideas? Appreciate your help in giving me some guidance on steps to take. I suppose it could have been the "performance cache" since I did not reboot.
I guess next step is to remove/uninstall the various scan tools I've used. Assume I can use control panel/add-remove programs to safely remove.

Attached Files



#7 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:16 PM

Posted 14 October 2012 - 11:29 AM

let's have one more look with a diagnostic tool to make sure there are no leftovers, then we can clean up our tools

Please download DDS from either of these links

LINK 1
LINK 2

and save it to your desktop.
  • Disable any script blocking protection
  • Double click dds to run the tool.
  • When done, two DDS.txt's will open.
  • Save both reports to your desktop.
---------------------------------------------------
Please include the contents of the following in your next reply:

DDS.txt
Attach.txt.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#8 Barry35

Barry35
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 14 October 2012 - 02:54 PM

Hi,
Ran DDS.
Attached are the two files requested.
Looking forward to final clean up and a better working computer.

Attached Files



#9 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:16 PM

Posted 14 October 2012 - 03:18 PM

one more scan I'd like you to run, just to be sure, there is an entry in the DDS log that may indicate an issue with the MBR,

please run the following:

Please download TDSSKiller.zip
  • Extract it to your desktop
  • Double click TDSSKiller.exe
  • when the window opens, click on Change Parameters
  • under ”Additional options”, put a check mark in the box next to “Detect TDLFS File System”
  • click OK
  • Press Start Scan
    • If Malicious objects are found then ensure Cure is selected
    • If TDLFS File System/TDSS File system is found then ensure Cure is selected (if cure is not available, choose skip)
    • Then click Continue > Reboot now
  • Copy and paste the log in your next reply
    • A copy of the log will be saved automatically to the root of the drive (typically C:\)

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#10 Barry35

Barry35
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:11:16 AM

Posted 15 October 2012 - 12:04 PM

Hi Catbyte,
Downloaded TDSSKiller and ran.

Double click TDSSKiller.exe - YES
when the window opens, click on Change Parameters - YES
under ”Additional options”, put a check mark in the box next to “Detect TDLFS File System” - YES
click OK - YES
Press Start Scan - YES

If Malicious objects are found then ensure Cure is selected
If TDLFS File System/TDSS File system is found then ensure Cure is selected (if cure is not available, choose skip)
Then click Continue > Reboot now


Scan result says "no threats found." I found "report" in the upper right corner, but after highlighting, I can't copy. Found report on C: drive and copy/pasted below.

Note - Before working through this site, I had tried TDSSKiller in late August. I can see the report, any value in attaching? What's next? Appreciate your help.
****************Today's TDSS Report************

12:28:51.0140 4596 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
12:28:53.0140 4596 ============================================================
12:28:53.0140 4596 Current date / time: 2012/10/15 12:28:53.0140
12:28:53.0140 4596 SystemInfo:
12:28:53.0140 4596
12:28:53.0140 4596 OS Version: 5.1.2600 ServicePack: 3.0
12:28:53.0140 4596 Product type: Workstation
12:28:53.0140 4596 ComputerName: PC232291660822
12:28:53.0140 4596 UserName: User One
12:28:53.0140 4596 Windows directory: C:\WINDOWS
12:28:53.0140 4596 System windows directory: C:\WINDOWS
12:28:53.0140 4596 Processor architecture: Intel x86
12:28:53.0140 4596 Number of processors: 2
12:28:53.0140 4596 Page size: 0x1000
12:28:53.0140 4596 Boot type: Normal boot
12:28:53.0140 4596 ============================================================
12:28:53.0937 4596 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:28:53.0937 4596 ============================================================
12:28:53.0937 4596 \Device\Harddisk0\DR0:
12:28:53.0937 4596 MBR partitions:
12:28:53.0937 4596 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xCBE38BD
12:28:53.0937 4596 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0xCBE393B, BlocksNum 0x11AE1C3
12:28:53.0937 4596 ============================================================
12:28:53.0953 4596 C: <-> \Device\Harddisk0\DR0\Partition1
12:28:53.0984 4596 D: <-> \Device\Harddisk0\DR0\Partition2
12:28:53.0984 4596 ============================================================
12:28:53.0984 4596 Initialize success
12:28:53.0984 4596 ============================================================
12:30:15.0234 1100 ============================================================
12:30:15.0234 1100 Scan started
12:30:15.0234 1100 Mode: Manual; TDLFS;
12:30:15.0234 1100 ============================================================
12:30:15.0531 1100 ================ Scan system memory ========================
12:30:15.0546 1100 System memory - ok
12:30:15.0546 1100 ================ Scan services =============================
12:30:15.0718 1100 Abiosdsk - ok
12:30:15.0734 1100 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
12:30:15.0843 1100 abp480n5 - ok
12:30:15.0937 1100 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
12:30:15.0953 1100 ACDaemon - ok
12:30:16.0000 1100 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
12:30:16.0000 1100 ACPI - ok
12:30:16.0015 1100 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
12:30:16.0015 1100 ACPIEC - ok
12:30:16.0093 1100 [ 746742588C07DB53731143229E2EE450 ] AddFiltr C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
12:30:16.0187 1100 AddFiltr - ok
12:30:16.0218 1100 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
12:30:16.0250 1100 adpu160m - ok
12:30:16.0281 1100 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
12:30:16.0281 1100 aec - ok
12:30:16.0328 1100 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
12:30:16.0343 1100 AFD - ok
12:30:16.0359 1100 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
12:30:16.0421 1100 agp440 - ok
12:30:16.0437 1100 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
12:30:16.0468 1100 agpCPQ - ok
12:30:16.0515 1100 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
12:30:16.0531 1100 Aha154x - ok
12:30:16.0562 1100 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
12:30:16.0578 1100 aic78u2 - ok
12:30:16.0609 1100 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
12:30:16.0640 1100 aic78xx - ok
12:30:16.0687 1100 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
12:30:16.0703 1100 Alerter - ok
12:30:16.0750 1100 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
12:30:16.0750 1100 ALG - ok
12:30:16.0765 1100 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
12:30:16.0765 1100 AliIde - ok
12:30:16.0781 1100 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
12:30:16.0812 1100 alim1541 - ok
12:30:16.0843 1100 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
12:30:16.0875 1100 amdagp - ok
12:30:16.0890 1100 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
12:30:16.0906 1100 amsint - ok
12:30:17.0000 1100 [ 70D7BE78061126DD0C3ACCDB7E129017 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:30:17.0015 1100 Apple Mobile Device - ok
12:30:17.0062 1100 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
12:30:17.0078 1100 AppMgmt - ok
12:30:17.0125 1100 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
12:30:17.0125 1100 Arp1394 - ok
12:30:17.0156 1100 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
12:30:17.0171 1100 asc - ok
12:30:17.0203 1100 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
12:30:17.0218 1100 asc3350p - ok
12:30:17.0265 1100 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
12:30:17.0281 1100 asc3550 - ok
12:30:17.0437 1100 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
12:30:17.0437 1100 aspnet_state - ok
12:30:17.0468 1100 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
12:30:17.0468 1100 AsyncMac - ok
12:30:17.0500 1100 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
12:30:17.0500 1100 atapi - ok
12:30:17.0515 1100 Atdisk - ok
12:30:17.0531 1100 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
12:30:17.0546 1100 Atmarpc - ok
12:30:17.0593 1100 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
12:30:17.0593 1100 AudioSrv - ok
12:30:17.0609 1100 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
12:30:17.0625 1100 audstub - ok
12:30:17.0687 1100 [ F0C0E213D6D811384A49981ADFF0B6C0 ] avc3 C:\WINDOWS\system32\DRIVERS\avc3.sys
12:30:17.0687 1100 avc3 - ok
12:30:17.0734 1100 [ A64529781E5B9CC454666A33A24E3E1D ] avchv C:\WINDOWS\system32\DRIVERS\avchv.sys
12:30:17.0765 1100 avchv - ok
12:30:17.0796 1100 [ 2BCE314A25E71298ADD6794BFBD66266 ] avckf C:\WINDOWS\system32\DRIVERS\avckf.sys
12:30:17.0812 1100 avckf - ok
12:30:17.0890 1100 [ 03F9DBFF185F9CCCA82844216591EA01 ] Bdfndisf C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf.sys
12:30:17.0921 1100 Bdfndisf - ok
12:30:18.0000 1100 [ 5EF7AC38B4A7DC80860D7FFAFAC78C36 ] bdfsfltr C:\WINDOWS\system32\DRIVERS\bdfsfltr.sys
12:30:18.0000 1100 bdfsfltr - ok
12:30:18.0015 1100 [ F7D825F7E47D8A7865F5D2156B1B7A24 ] bdftdif C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdftdif.sys
12:30:18.0046 1100 bdftdif - ok
12:30:18.0093 1100 [ E260C0079B5C1107B87E98F356292004 ] bdsandbox C:\WINDOWS\system32\drivers\bdsandbox.sys
12:30:18.0125 1100 bdsandbox - ok
12:30:18.0171 1100 [ A9A33963C8358979827D1A75B20C0423 ] bdselfpr C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys
12:30:18.0218 1100 bdselfpr - ok
12:30:18.0250 1100 [ 375CD0B9F433465EC6F50D4DF44E9448 ] BDVEDISK C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
12:30:18.0281 1100 BDVEDISK - ok
12:30:18.0312 1100 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
12:30:18.0328 1100 Beep - ok
12:30:18.0375 1100 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
12:30:18.0421 1100 BITS - ok
12:30:18.0500 1100 [ 673CF4F6BB1FBE09331B526802FBB892 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:30:18.0531 1100 Bonjour Service - ok
12:30:18.0578 1100 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
12:30:18.0578 1100 Browser - ok
12:30:18.0656 1100 catchme - ok
12:30:18.0687 1100 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
12:30:18.0687 1100 cbidf - ok
12:30:18.0703 1100 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
12:30:18.0703 1100 cbidf2k - ok
12:30:18.0718 1100 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
12:30:18.0750 1100 cd20xrnt - ok
12:30:18.0781 1100 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
12:30:18.0937 1100 Cdaudio - ok
12:30:18.0984 1100 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
12:30:18.0984 1100 Cdfs - ok
12:30:19.0031 1100 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
12:30:19.0078 1100 Cdrom - ok
12:30:19.0093 1100 Changer - ok
12:30:19.0125 1100 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
12:30:19.0140 1100 CiSvc - ok
12:30:19.0156 1100 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
12:30:19.0156 1100 ClipSrv - ok
12:30:19.0203 1100 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:30:19.0218 1100 clr_optimization_v2.0.50727_32 - ok
12:30:19.0296 1100 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:30:19.0296 1100 clr_optimization_v4.0.30319_32 - ok
12:30:19.0328 1100 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
12:30:19.0343 1100 CmBatt - ok
12:30:19.0390 1100 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
12:30:19.0406 1100 CmdIde - ok
12:30:19.0421 1100 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
12:30:19.0421 1100 Compbatt - ok
12:30:19.0437 1100 COMSysApp - ok
12:30:19.0484 1100 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
12:30:19.0500 1100 Cpqarray - ok
12:30:19.0531 1100 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
12:30:19.0531 1100 CryptSvc - ok
12:30:19.0562 1100 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
12:30:19.0593 1100 dac2w2k - ok
12:30:19.0609 1100 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
12:30:19.0625 1100 dac960nt - ok
12:30:19.0703 1100 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
12:30:19.0734 1100 DcomLaunch - ok
12:30:19.0781 1100 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
12:30:19.0796 1100 Dhcp - ok
12:30:19.0812 1100 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
12:30:19.0828 1100 Disk - ok
12:30:19.0828 1100 dmadmin - ok
12:30:19.0921 1100 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
12:30:19.0968 1100 dmboot - ok
12:30:20.0000 1100 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
12:30:20.0000 1100 dmio - ok
12:30:20.0046 1100 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
12:30:20.0046 1100 dmload - ok
12:30:20.0093 1100 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
12:30:20.0093 1100 dmserver - ok
12:30:20.0125 1100 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
12:30:20.0125 1100 DMusic - ok
12:30:20.0156 1100 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
12:30:20.0156 1100 Dnscache - ok
12:30:20.0218 1100 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
12:30:20.0218 1100 Dot3svc - ok
12:30:20.0250 1100 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
12:30:20.0265 1100 dpti2o - ok
12:30:20.0281 1100 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
12:30:20.0281 1100 drmkaud - ok
12:30:20.0343 1100 [ AC9CF17EE2AE003C98EB4F5336C38058 ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
12:30:20.0359 1100 E100B - ok
12:30:20.0375 1100 [ B5CB3084046146FD2587D8C9B219FEB4 ] eabfiltr C:\WINDOWS\system32\DRIVERS\eabfiltr.sys
12:30:20.0390 1100 eabfiltr - ok
12:30:20.0421 1100 [ 231F4547AE1E4B3E60ECA66C3A96D218 ] eabusb C:\WINDOWS\system32\DRIVERS\eabusb.sys
12:30:20.0437 1100 eabusb - ok
12:30:20.0468 1100 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
12:30:20.0468 1100 EapHost - ok
12:30:20.0500 1100 [ 7EC42EC12A4BAC14BCCA99FB06F2D125 ] elagopro C:\WINDOWS\system32\DRIVERS\elagopro.sys
12:30:20.0515 1100 elagopro - ok
12:30:20.0531 1100 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] elaunidr C:\WINDOWS\system32\DRIVERS\elaunidr.sys
12:30:20.0531 1100 elaunidr - ok
12:30:20.0546 1100 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
12:30:20.0562 1100 ERSvc - ok
12:30:20.0593 1100 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
12:30:20.0609 1100 Eventlog - ok
12:30:20.0671 1100 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
12:30:20.0671 1100 EventSystem - ok
12:30:20.0734 1100 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
12:30:20.0734 1100 Fastfat - ok
12:30:20.0796 1100 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
12:30:20.0796 1100 FastUserSwitchingCompatibility - ok
12:30:20.0812 1100 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
12:30:20.0812 1100 Fdc - ok
12:30:20.0843 1100 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
12:30:20.0843 1100 Fips - ok
12:30:20.0859 1100 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
12:30:20.0859 1100 Flpydisk - ok
12:30:20.0875 1100 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
12:30:20.0890 1100 FltMgr - ok
12:30:20.0953 1100 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
12:30:20.0968 1100 FontCache3.0.0.0 - ok
12:30:21.0031 1100 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:30:21.0031 1100 Fs_Rec - ok
12:30:21.0046 1100 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
12:30:21.0062 1100 Ftdisk - ok
12:30:21.0109 1100 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
12:30:21.0156 1100 GEARAspiWDM - ok
12:30:21.0203 1100 [ 947DA3AD94A7593BFA439939AC5E823B ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
12:30:21.0343 1100 getPlusHelper - ok
12:30:21.0375 1100 [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio C:\WINDOWS\system32\giveio.sys
12:30:21.0375 1100 giveio - ok
12:30:21.0421 1100 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
12:30:21.0421 1100 Gpc - ok
12:30:21.0515 1100 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1ca107b48616166 C:\Program Files\Google\Update\GoogleUpdate.exe
12:30:21.0515 1100 gupdate1ca107b48616166 - ok
12:30:21.0531 1100 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
12:30:21.0531 1100 gupdatem - ok
12:30:21.0562 1100 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
12:30:21.0578 1100 gusvc - ok
12:30:21.0609 1100 [ 407E41DDB2BFECE109132AEC296E0D98 ] HBtnKey C:\WINDOWS\system32\DRIVERS\cpqbttn.sys
12:30:21.0625 1100 HBtnKey - ok
12:30:21.0671 1100 [ 4905D28AA09F63E6A2F4E93ED6DD7D19 ] HdAudAddService C:\WINDOWS\system32\drivers\CHDAud.sys
12:30:21.0687 1100 HdAudAddService - ok
12:30:21.0750 1100 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
12:30:21.0750 1100 HDAudBus - ok
12:30:21.0828 1100 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
12:30:21.0828 1100 helpsvc - ok
12:30:21.0843 1100 HidServ - ok
12:30:21.0875 1100 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
12:30:21.0875 1100 HidUsb - ok
12:30:21.0921 1100 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
12:30:21.0937 1100 hkmsvc - ok
12:30:21.0968 1100 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
12:30:21.0984 1100 hpn - ok
12:30:22.0031 1100 [ 04C1DCBB226C6AE647B794833CE3CEB6 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
12:30:22.0031 1100 hpqwmiex - ok
12:30:22.0078 1100 [ 0AAEF566E6782957252FA79F566FBC0B ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
12:30:22.0125 1100 HSFHWAZL - ok
12:30:22.0171 1100 [ E472E0CB4E716CC34C0E045F2C196221 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
12:30:22.0265 1100 HSF_DPV - ok
12:30:22.0312 1100 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
12:30:22.0312 1100 HTTP - ok
12:30:22.0359 1100 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
12:30:22.0359 1100 HTTPFilter - ok
12:30:22.0390 1100 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
12:30:22.0406 1100 i2omgmt - ok
12:30:22.0437 1100 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
12:30:22.0453 1100 i2omp - ok
12:30:22.0500 1100 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
12:30:22.0515 1100 i8042prt - ok
12:30:22.0625 1100 [ 85D42B7F0DD406ADF5E3EC7659A279EC ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
12:30:22.0765 1100 ialm - ok
12:30:22.0843 1100 [ 309C4D86D989FB1FCF64BD30DC81C51B ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
12:30:22.0859 1100 iaStor - ok
12:30:22.0937 1100 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
12:30:23.0062 1100 IDriverT - ok
12:30:23.0203 1100 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:30:23.0250 1100 idsvc - ok
12:30:23.0265 1100 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
12:30:23.0281 1100 Imapi - ok
12:30:23.0343 1100 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
12:30:23.0359 1100 ImapiService - ok
12:30:23.0406 1100 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
12:30:23.0421 1100 ini910u - ok
12:30:23.0468 1100 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
12:30:23.0468 1100 IntelIde - ok
12:30:23.0515 1100 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
12:30:23.0515 1100 intelppm - ok
12:30:23.0593 1100 [ 3DC635B66DD7412E1C9C3A77B8D78F25 ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
12:30:23.0593 1100 IntuitUpdateService - ok
12:30:23.0640 1100 [ 1663A135865F0BA6E853353E98E67F2A ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
12:30:23.0640 1100 IntuitUpdateServiceV4 - ok
12:30:23.0687 1100 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
12:30:23.0703 1100 Ip6Fw - ok
12:30:23.0718 1100 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:30:23.0718 1100 IpFilterDriver - ok
12:30:23.0859 1100 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
12:30:23.0859 1100 IpInIp - ok
12:30:23.0890 1100 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
12:30:23.0906 1100 IpNat - ok
12:30:23.0968 1100 [ 32CDEDD15E2D1A557CD54552AE78FF86 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
12:30:24.0015 1100 iPod Service - ok
12:30:24.0046 1100 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
12:30:24.0046 1100 IPSec - ok
12:30:24.0078 1100 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
12:30:24.0078 1100 IRENUM - ok
12:30:24.0109 1100 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
12:30:24.0109 1100 isapnp - ok
12:30:24.0234 1100 [ 0E410EDC8D0527801B899CF29E60597C ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
12:30:24.0250 1100 JavaQuickStarterService - ok
12:30:24.0265 1100 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
12:30:24.0281 1100 Kbdclass - ok
12:30:24.0296 1100 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
12:30:24.0312 1100 kbdhid - ok
12:30:24.0375 1100 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
12:30:24.0375 1100 kmixer - ok
12:30:24.0406 1100 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
12:30:24.0406 1100 KSecDD - ok
12:30:24.0437 1100 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
12:30:24.0453 1100 lanmanserver - ok
12:30:24.0484 1100 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
12:30:24.0500 1100 lanmanworkstation - ok
12:30:24.0515 1100 lbrtfdc - ok
12:30:24.0578 1100 [ 2A125981BB23F0A023255D39B7E1C25E ] LexBceS C:\WINDOWS\system32\LEXBCES.EXE
12:30:24.0609 1100 LexBceS - ok
12:30:24.0687 1100 [ 86E8BCAA91FC2ACFACD99CF2BF9F1F47 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
12:30:24.0687 1100 LightScribeService - ok
12:30:24.0718 1100 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
12:30:24.0734 1100 LmHosts - ok
12:30:24.0781 1100 [ E8D15ACD2F65A2E8756768353E08A9A0 ] LXARScan C:\WINDOWS\system32\Drivers\Lxarscan.sys
12:30:24.0781 1100 LXARScan - ok
12:30:24.0828 1100 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
12:30:24.0828 1100 mdmxsdk - ok
12:30:24.0843 1100 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
12:30:24.0859 1100 Messenger - ok
12:30:24.0890 1100 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
12:30:24.0890 1100 mnmdd - ok
12:30:24.0921 1100 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
12:30:24.0937 1100 mnmsrvc - ok
12:30:24.0968 1100 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
12:30:24.0984 1100 Modem - ok
12:30:25.0015 1100 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
12:30:25.0031 1100 Mouclass - ok
12:30:25.0062 1100 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
12:30:25.0062 1100 MountMgr - ok
12:30:25.0109 1100 [ 24409A2A9F0351E208E14F609340FB25 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:30:25.0171 1100 MozillaMaintenance - ok
12:30:25.0203 1100 [ 70C14F5CCA5CF73F8A645C73A01D8726 ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
12:30:25.0203 1100 MQAC - ok
12:30:25.0234 1100 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
12:30:25.0250 1100 mraid35x - ok
12:30:25.0265 1100 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
12:30:25.0265 1100 MRxDAV - ok
12:30:25.0328 1100 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:30:25.0359 1100 MRxSmb - ok
12:30:25.0390 1100 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
12:30:25.0406 1100 MSDTC - ok
12:30:25.0421 1100 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
12:30:25.0421 1100 Msfs - ok
12:30:25.0437 1100 MSIServer - ok
12:30:25.0468 1100 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:30:25.0484 1100 MSKSSRV - ok
12:30:25.0562 1100 [ AFB909B537AAE1BEAE7BBDB6A36D40B0 ] MSMQ C:\WINDOWS\system32\mqsvc.exe
12:30:25.0578 1100 MSMQ - ok
12:30:25.0609 1100 [ 7F955FF3B1BB93376EBE75D5ACCDC6DB ] MSMQTriggers C:\WINDOWS\system32\mqtgsvc.exe
12:30:25.0609 1100 MSMQTriggers - ok
12:30:25.0640 1100 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:30:25.0656 1100 MSPCLOCK - ok
12:30:25.0687 1100 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
12:30:25.0703 1100 MSPQM - ok
12:30:25.0734 1100 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
12:30:25.0734 1100 mssmbios - ok
12:30:25.0781 1100 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
12:30:25.0781 1100 Mup - ok
12:30:25.0828 1100 [ CA68234D644ACA94E7DE0C90D2142F9D ] MXOFX C:\WINDOWS\system32\DRIVERS\MXOFX.SYS
12:30:25.0859 1100 MXOFX - ok
12:30:25.0890 1100 [ E3DEC7CA28A9870E24FFF4E467AF7328 ] MXOPSWD C:\WINDOWS\system32\DRIVERS\mxopswd.sys
12:30:25.0906 1100 MXOPSWD - ok
12:30:25.0953 1100 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
12:30:26.0000 1100 napagent - ok
12:30:26.0031 1100 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
12:30:26.0046 1100 NDIS - ok
12:30:26.0078 1100 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:30:26.0078 1100 NdisTapi - ok
12:30:26.0093 1100 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:30:26.0109 1100 Ndisuio - ok
12:30:26.0125 1100 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:30:26.0125 1100 NdisWan - ok
12:30:26.0171 1100 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
12:30:26.0171 1100 NDProxy - ok
12:30:26.0187 1100 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
12:30:26.0187 1100 NetBIOS - ok
12:30:26.0234 1100 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
12:30:26.0250 1100 NetBT - ok
12:30:26.0296 1100 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
12:30:26.0312 1100 NetDDE - ok
12:30:26.0328 1100 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
12:30:26.0328 1100 NetDDEdsdm - ok
12:30:26.0375 1100 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
12:30:26.0375 1100 Netlogon - ok
12:30:26.0406 1100 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
12:30:26.0406 1100 Netman - ok
12:30:26.0468 1100 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:30:26.0468 1100 NetTcpPortSharing - ok
12:30:26.0609 1100 [ 9EB7001200BC53DAD5BC531F0E58970E ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
12:30:26.0750 1100 NETw4x32 - ok
12:30:26.0937 1100 [ 05743FFFC2BC88CC8E426321BC6A762E ] NETw5x32 C:\WINDOWS\system32\DRIVERS\NETw5x32.sys
12:30:27.0093 1100 NETw5x32 - ok
12:30:27.0109 1100 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
12:30:27.0109 1100 NIC1394 - ok
12:30:27.0171 1100 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
12:30:27.0187 1100 Nla - ok
12:30:27.0203 1100 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
12:30:27.0203 1100 Npfs - ok
12:30:27.0281 1100 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
12:30:27.0312 1100 Ntfs - ok
12:30:27.0343 1100 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
12:30:27.0343 1100 NtLmSsp - ok
12:30:27.0421 1100 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
12:30:27.0500 1100 NtmsSvc - ok
12:30:27.0546 1100 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
12:30:27.0562 1100 Null - ok
12:30:27.0578 1100 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
12:30:27.0578 1100 NwlnkFlt - ok
12:30:27.0593 1100 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
12:30:27.0593 1100 NwlnkFwd - ok
12:30:27.0625 1100 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
12:30:27.0625 1100 ohci1394 - ok
12:30:27.0671 1100 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\drivers\Parport.sys
12:30:27.0687 1100 Parport - ok
12:30:27.0718 1100 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
12:30:27.0718 1100 PartMgr - ok
12:30:27.0750 1100 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
12:30:27.0750 1100 ParVdm - ok
12:30:27.0781 1100 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
12:30:27.0781 1100 PCI - ok
12:30:27.0796 1100 PCIDump - ok
12:30:27.0812 1100 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
12:30:27.0812 1100 PCIIde - ok
12:30:27.0859 1100 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
12:30:27.0875 1100 Pcmcia - ok
12:30:27.0875 1100 PDCOMP - ok
12:30:27.0890 1100 PDFRAME - ok
12:30:27.0906 1100 PDRELI - ok
12:30:27.0921 1100 PDRFRAME - ok
12:30:27.0953 1100 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
12:30:27.0968 1100 perc2 - ok
12:30:28.0000 1100 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
12:30:28.0015 1100 perc2hib - ok
12:30:28.0062 1100 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
12:30:28.0078 1100 PlugPlay - ok
12:30:28.0093 1100 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
12:30:28.0093 1100 PolicyAgent - ok
12:30:28.0109 1100 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
12:30:28.0109 1100 PptpMiniport - ok
12:30:28.0125 1100 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
12:30:28.0125 1100 ProtectedStorage - ok
12:30:28.0140 1100 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
12:30:28.0171 1100 PSched - ok
12:30:28.0218 1100 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
12:30:28.0218 1100 Ptilink - ok
12:30:28.0265 1100 [ 49452BFCEC22F36A7A9B9C2181BC3042 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
12:30:28.0265 1100 PxHelp20 - ok
12:30:28.0281 1100 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
12:30:28.0312 1100 ql1080 - ok
12:30:28.0343 1100 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
12:30:28.0359 1100 Ql10wnt - ok
12:30:28.0390 1100 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
12:30:28.0421 1100 ql12160 - ok
12:30:28.0437 1100 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
12:30:28.0453 1100 ql1240 - ok
12:30:28.0500 1100 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
12:30:28.0531 1100 ql1280 - ok
12:30:28.0546 1100 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:30:28.0562 1100 RasAcd - ok
12:30:28.0593 1100 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
12:30:28.0609 1100 RasAuto - ok
12:30:28.0640 1100 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
12:30:28.0640 1100 Rasl2tp - ok
12:30:28.0687 1100 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
12:30:28.0703 1100 RasMan - ok
12:30:28.0703 1100 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:30:28.0718 1100 RasPppoe - ok
12:30:28.0734 1100 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
12:30:28.0734 1100 Raspti - ok
12:30:28.0796 1100 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:30:28.0796 1100 Rdbss - ok
12:30:28.0859 1100 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
12:30:28.0859 1100 RDPCDD - ok
12:30:28.0890 1100 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
12:30:28.0890 1100 rdpdr - ok
12:30:28.0937 1100 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
12:30:28.0953 1100 RDPWD - ok
12:30:28.0984 1100 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
12:30:28.0984 1100 RDSessMgr - ok
12:30:29.0015 1100 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
12:30:29.0031 1100 redbook - ok
12:30:29.0062 1100 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
12:30:29.0093 1100 RemoteAccess - ok
12:30:29.0140 1100 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
12:30:29.0156 1100 RemoteRegistry - ok
12:30:29.0156 1100 [ 7A6648B61661B1421FFAB762E391E33F ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
12:30:29.0187 1100 rimmptsk - ok
12:30:29.0203 1100 [ D0A35B7670AA3558EAAB483F64446496 ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
12:30:29.0234 1100 rimsptsk - ok
12:30:29.0265 1100 [ 3AC17802740C3A4764DC9750E92E6233 ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
12:30:29.0296 1100 rismxdp - ok
12:30:29.0359 1100 [ 96F7A9A7BF0C9C0440A967440065D33C ] RMCAST C:\WINDOWS\system32\drivers\RMCast.sys
12:30:29.0359 1100 RMCAST - ok
12:30:29.0484 1100 [ 85B5159D86AC06AD744EE9D3C288AEEE ] Roxio UPnP Renderer 10 C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
12:30:29.0515 1100 Roxio UPnP Renderer 10 - ok
12:30:29.0546 1100 [ 0DB43CAF2D77B809A86E9D7E1BCC6D76 ] Roxio Upnp Server 10 C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe
12:30:29.0578 1100 Roxio Upnp Server 10 - ok
12:30:29.0671 1100 [ 7958AFFC64E4F284068EB6575CC64DCF ] RoxLiveShare10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe
12:30:29.0703 1100 RoxLiveShare10 - ok
12:30:29.0796 1100 [ ED69CD4AB4BE607ABF768A60E4AC79DA ] RoxMediaDB10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
12:30:29.0843 1100 RoxMediaDB10 - ok
12:30:29.0890 1100 [ 0DA14EE2C0E274FEA5A6545181851C16 ] RoxWatch10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
12:30:29.0906 1100 RoxWatch10 - ok
12:30:29.0953 1100 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
12:30:29.0984 1100 RpcLocator - ok
12:30:30.0015 1100 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
12:30:30.0031 1100 RpcSs - ok
12:30:30.0078 1100 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
12:30:30.0078 1100 RSVP - ok
12:30:30.0125 1100 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
12:30:30.0156 1100 rtl8139 - ok
12:30:30.0187 1100 [ 80CAE340F37B52D1CB75FF74E6A087CD ] RxFilter C:\WINDOWS\system32\DRIVERS\RxFilter.sys
12:30:30.0218 1100 RxFilter - ok
12:30:30.0234 1100 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
12:30:30.0234 1100 SamSs - ok
12:30:30.0265 1100 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
12:30:30.0281 1100 SCardSvr - ok
12:30:30.0328 1100 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
12:30:30.0359 1100 Schedule - ok
12:30:30.0390 1100 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
12:30:30.0406 1100 sdbus - ok
12:30:30.0437 1100 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
12:30:30.0437 1100 Secdrv - ok
12:30:30.0468 1100 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
12:30:30.0468 1100 seclogon - ok
12:30:30.0515 1100 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
12:30:30.0515 1100 SENS - ok
12:30:30.0546 1100 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
12:30:30.0562 1100 Serial - ok
12:30:30.0593 1100 SessionLauncher - ok
12:30:30.0656 1100 [ 0FA803C64DF0914B41F807EA276BF2A6 ] sffdisk C:\WINDOWS\system32\DRIVERS\sffdisk.sys
12:30:30.0656 1100 sffdisk - ok
12:30:30.0671 1100 [ C17C331E435ED8737525C86A7557B3AC ] sffp_sd C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
12:30:30.0671 1100 sffp_sd - ok
12:30:30.0703 1100 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
12:30:30.0703 1100 Sfloppy - ok
12:30:30.0765 1100 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
12:30:30.0781 1100 SharedAccess - ok
12:30:30.0812 1100 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:30:30.0812 1100 ShellHWDetection - ok
12:30:30.0828 1100 Simbad - ok
12:30:30.0859 1100 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
12:30:30.0906 1100 sisagp - ok
12:30:30.0968 1100 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
12:30:30.0984 1100 Sparrow - ok
12:30:31.0031 1100 [ 3FA2E254BFBCE52B3C6F1BF23AAB6911 ] speedfan C:\WINDOWS\system32\speedfan.sys
12:30:31.0046 1100 speedfan - ok
12:30:31.0062 1100 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
12:30:31.0062 1100 splitter - ok
12:30:31.0109 1100 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
12:30:31.0125 1100 Spooler - ok
12:30:31.0171 1100 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
12:30:31.0171 1100 sr - ok
12:30:31.0218 1100 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
12:30:31.0234 1100 srservice - ok
12:30:31.0296 1100 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
12:30:31.0312 1100 Srv - ok
12:30:31.0343 1100 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
12:30:31.0343 1100 SSDPSRV - ok
12:30:31.0406 1100 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
12:30:31.0468 1100 stisvc - ok
12:30:31.0531 1100 [ 78B58486A5CB4F418D06EA2D6E961DB0 ] SupportSoft RemoteAssist C:\Program Files\Common Files\supportsoft\bin\ssrc.exe
12:30:31.0546 1100 SupportSoft RemoteAssist - ok
12:30:31.0562 1100 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
12:30:31.0562 1100 swenum - ok
12:30:31.0609 1100 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
12:30:31.0609 1100 swmidi - ok
12:30:31.0625 1100 SwPrv - ok
12:30:31.0687 1100 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
12:30:31.0703 1100 symc810 - ok
12:30:31.0718 1100 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
12:30:31.0750 1100 symc8xx - ok
12:30:31.0750 1100 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
12:30:31.0781 1100 sym_hi - ok
12:30:31.0828 1100 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
12:30:31.0859 1100 sym_u3 - ok
12:30:31.0890 1100 [ 926E0BB4CAC05D9A0C3B59DC16FE2F1C ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
12:30:31.0921 1100 SynTP - ok
12:30:31.0953 1100 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
12:30:31.0953 1100 sysaudio - ok
12:30:32.0000 1100 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
12:30:32.0000 1100 SysmonLog - ok
12:30:32.0031 1100 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
12:30:32.0046 1100 TapiSrv - ok
12:30:32.0109 1100 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:30:32.0125 1100 Tcpip - ok
12:30:32.0187 1100 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
12:30:32.0203 1100 TDPIPE - ok
12:30:32.0218 1100 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
12:30:32.0218 1100 TDTCP - ok
12:30:32.0250 1100 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
12:30:32.0265 1100 TermDD - ok
12:30:32.0296 1100 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
12:30:32.0312 1100 TermService - ok
12:30:32.0359 1100 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
12:30:32.0375 1100 Themes - ok
12:30:32.0421 1100 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
12:30:32.0421 1100 TlntSvr - ok
12:30:32.0468 1100 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
12:30:32.0484 1100 TosIde - ok
12:30:32.0531 1100 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
12:30:32.0531 1100 TrkWks - ok
12:30:32.0593 1100 [ 9016639C71328E4667D06119937AA20A ] trufos C:\WINDOWS\system32\DRIVERS\trufos.sys
12:30:32.0593 1100 trufos - ok
12:30:32.0640 1100 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
12:30:32.0640 1100 Udfs - ok
12:30:32.0656 1100 UIUSys - ok
12:30:32.0671 1100 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
12:30:32.0703 1100 ultra - ok
12:30:32.0765 1100 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
12:30:32.0796 1100 Update - ok
12:30:32.0890 1100 [ 3CC00597A30B23757AA23CB677918BEF ] Update Server C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe
12:30:32.0953 1100 Update Server - ok
12:30:33.0031 1100 [ 03579BEC2E930B92EFD6D4E7F899CFF5 ] UPDATESRV C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
12:30:33.0046 1100 UPDATESRV - ok
12:30:33.0078 1100 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
12:30:33.0093 1100 upnphost - ok
12:30:33.0109 1100 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
12:30:33.0109 1100 UPS - ok
12:30:33.0156 1100 [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
12:30:33.0187 1100 USBAAPL - ok
12:30:33.0234 1100 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
12:30:33.0250 1100 usbccgp - ok
12:30:33.0281 1100 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
12:30:33.0296 1100 usbehci - ok
12:30:33.0343 1100 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
12:30:33.0375 1100 usbhub - ok
12:30:33.0390 1100 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
12:30:33.0421 1100 usbprint - ok
12:30:33.0453 1100 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
12:30:33.0484 1100 usbscan - ok
12:30:33.0500 1100 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
12:30:33.0515 1100 USBSTOR - ok
12:30:33.0546 1100 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
12:30:33.0562 1100 usbuhci - ok
12:30:33.0593 1100 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
12:30:33.0593 1100 VgaSave - ok
12:30:33.0640 1100 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
12:30:33.0671 1100 viaagp - ok
12:30:33.0687 1100 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
12:30:33.0687 1100 ViaIde - ok
12:30:33.0718 1100 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
12:30:33.0718 1100 VolSnap - ok
12:30:33.0781 1100 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
12:30:33.0796 1100 VSS - ok
12:30:33.0812 1100 VSSERV - ok
12:30:33.0843 1100 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
12:30:33.0859 1100 W32Time - ok
12:30:33.0953 1100 [ C79918A5BD269035F3A34D157401B9DF ] w39n51 C:\WINDOWS\system32\DRIVERS\w39n51.sys
12:30:34.0078 1100 w39n51 - ok
12:30:34.0109 1100 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
12:30:34.0109 1100 Wanarp - ok
12:30:34.0125 1100 WDC_SAM - ok
12:30:34.0187 1100 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
12:30:34.0265 1100 Wdf01000 - ok
12:30:34.0281 1100 WDICA - ok
12:30:34.0328 1100 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
12:30:34.0328 1100 wdmaud - ok
12:30:34.0390 1100 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
12:30:34.0390 1100 WebClient - ok
12:30:34.0453 1100 [ 0E666AC2766F2FD860CC03F405A2ACE1 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
12:30:34.0531 1100 winachsf - ok
12:30:34.0625 1100 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
12:30:34.0625 1100 winmgmt - ok
12:30:34.0687 1100 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
12:30:34.0718 1100 WmdmPmSN - ok
12:30:34.0781 1100 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
12:30:34.0812 1100 Wmi - ok
12:30:34.0828 1100 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
12:30:34.0843 1100 WmiAcpi - ok
12:30:34.0859 1100 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
12:30:34.0875 1100 WmiApSrv - ok
12:30:34.0984 1100 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
12:30:35.0031 1100 WMPNetworkSvc - ok
12:30:35.0156 1100 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
12:30:35.0234 1100 WPFFontCache_v0400 - ok
12:30:35.0281 1100 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
12:30:35.0281 1100 WS2IFSL - ok
12:30:35.0328 1100 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
12:30:35.0328 1100 wscsvc - ok
12:30:35.0375 1100 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
12:30:35.0375 1100 wuauserv - ok
12:30:35.0421 1100 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
12:30:35.0421 1100 WudfPf - ok
12:30:35.0453 1100 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
12:30:35.0453 1100 WudfRd - ok
12:30:35.0484 1100 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
12:30:35.0500 1100 WudfSvc - ok
12:30:35.0578 1100 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
12:30:35.0609 1100 WZCSVC - ok
12:30:35.0625 1100 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
12:30:35.0640 1100 xmlprov - ok
12:30:35.0656 1100 ================ Scan global ===============================
12:30:35.0703 1100 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
12:30:35.0750 1100 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
12:30:35.0796 1100 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
12:30:35.0812 1100 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
12:30:35.0812 1100 [Global] - ok
12:30:35.0812 1100 ================ Scan MBR ==================================
12:30:35.0843 1100 [ 665277635DC8BA83DEAE12EADEDB75A0 ] \Device\Harddisk0\DR0
12:30:36.0375 1100 \Device\Harddisk0\DR0 - ok
12:30:36.0375 1100 ================ Scan VBR ==================================
12:30:36.0390 1100 [ 143A1E734A00045DF79E493DA299CEB3 ] \Device\Harddisk0\DR0\Partition1
12:30:36.0390 1100 \Device\Harddisk0\DR0\Partition1 - ok
12:30:36.0390 1100 [ 7F7928800BCB9F44D45654C132AAE8E1 ] \Device\Harddisk0\DR0\Partition2
12:30:36.0406 1100 \Device\Harddisk0\DR0\Partition2 - ok
12:30:36.0406 1100 ============================================================
12:30:36.0406 1100 Scan finished
12:30:36.0406 1100 ============================================================
12:30:36.0421 2988 Detected object count: 0
12:30:36.0421 2988 Actual detected object count: 0
12:36:44.0921 4172 Deinitialize success

#11 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:16 PM

Posted 15 October 2012 - 09:12 PM

have the redirects stopped?

are there any outstanding issues?

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015


#12 CatByte

CatByte

    bleepin' tiger


  • Malware Response Team
  • 14,664 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Canada
  • Local time:12:16 PM

Posted 24 October 2012 - 07:48 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

Microsoft MVP - 2010, 2011, 2012, 2013, 2014, 2015





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users