Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

my machine gets redirected when on google


  • This topic is locked This topic is locked
30 replies to this topic

#1 christopherw

christopherw

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 07:38 AM

I've got 5 machines at my office and now one of my machines is all of a sudden getting redirected to porn when clicking on a specific search result in google and other search engines. I've ran a few tools but nothing is coming up. None of the other machines redirect only my laptop. Am i infected and what do you recommend?

Thank you

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:30 PM

Posted 16 May 2012 - 07:40 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 09:48 AM

I'm on it and almost finished with the scans. A couple of things I want to mention.

About 60 seconds into the first scan with gmer my machine shut gmer down and stopped the scan. I was able to run a second full scan.

About 5 mins into the Avast scan my machine shut down and rebooted. I am doing a second Avast scan in about 1 min and will post all logs shortly.

Thank you for your help.
Christopher

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:30 PM

Posted 16 May 2012 - 09:51 AM

If you have issues in normal mode ,try it in safemode with networking

Make sure to run TDSSkiller before running other two scans

good luck

#5 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 10:23 AM

ok running in safe mode with networking now. Avast keeps shutting down or freezing my computer. There's definitely something strange going on with my machine.

When i finish I'd like to make a donation for your services. :)

Thanks

#6 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 10:56 AM

my system just crashed again. This time i got the BOD and when rebooting microsoft wants to send this error report.

C:\DOCUME~1\RayRay\LOCALS~1\Temp\WER9d28.dir00\Mini051612-03.dmp
C:\DOCUME~1\RayRay\LOCALS~1\Temp\WER9d28.dir00\sysdata.xml

And now tells me this:
Remove possible malware from your computer
Your computer experienced a problem that was caused by spooldr.sys.

This product might be malware

I've TDSSKILLER and Gmer complete. Going to give Avast another go. Would you like me to post the logs from the first two applications?

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:30 PM

Posted 16 May 2012 - 11:02 AM

yes please :thumbup2:

#8 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 11:13 AM

Here's the TDSSKILLER logs:

08:50:49.0484 2668 TDSS rootkit removing tool 2.7.35.0 May 16 2012 07:37:57
08:50:51.0140 2668 ============================================================
08:50:51.0140 2668 Current date / time: 2012/05/16 08:50:51.0140
08:50:51.0140 2668 SystemInfo:
08:50:51.0140 2668
08:50:51.0140 2668 OS Version: 5.1.2600 ServicePack: 3.0
08:50:51.0140 2668 Product type: Workstation
08:50:51.0140 2668 ComputerName: RAY
08:50:51.0140 2668 UserName: RayRay
08:50:51.0140 2668 Windows directory: C:\WINDOWS
08:50:51.0140 2668 System windows directory: C:\WINDOWS
08:50:51.0140 2668 Processor architecture: Intel x86
08:50:51.0140 2668 Number of processors: 8
08:50:51.0140 2668 Page size: 0x1000
08:50:51.0140 2668 Boot type: Normal boot
08:50:51.0140 2668 ============================================================
08:50:52.0390 2668 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
08:50:52.0421 2668 ============================================================
08:50:52.0421 2668 \Device\Harddisk0\DR0:
08:50:52.0421 2668 MBR partitions:
08:50:52.0421 2668 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x38000, BlocksNum 0x1D18C000
08:50:52.0421 2668 ============================================================
08:50:52.0468 2668 C: <-> \Device\Harddisk0\DR0\Partition0
08:50:52.0468 2668 ============================================================
08:50:52.0468 2668 Initialize success
08:50:52.0468 2668 ============================================================
08:52:20.0125 5184 ============================================================
08:52:20.0125 5184 Scan started
08:52:20.0125 5184 Mode: Manual; TDLFS;
08:52:20.0125 5184 ============================================================
08:52:21.0250 5184 Abiosdsk - ok
08:52:21.0296 5184 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
08:52:21.0296 5184 abp480n5 - ok
08:52:21.0328 5184 Acceler (af1f178b0218b44876e63bf0b019e96b) C:\WINDOWS\system32\DRIVERS\Accelern.sys
08:52:21.0328 5184 Acceler - ok
08:52:21.0406 5184 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:52:21.0406 5184 ACPI - ok
08:52:21.0406 5184 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
08:52:21.0406 5184 ACPIEC - ok
08:52:21.0453 5184 adfs (6d7f09cd92a9fef3a8efce66231fdd79) C:\WINDOWS\system32\drivers\adfs.sys
08:52:21.0468 5184 adfs - ok
08:52:21.0515 5184 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
08:52:21.0515 5184 adpu160m - ok
08:52:21.0546 5184 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
08:52:21.0562 5184 aec - ok
08:52:21.0593 5184 AESTAud (822d53766d57c90c437536232ece9023) C:\WINDOWS\system32\drivers\AESTAud.sys
08:52:21.0593 5184 AESTAud - ok
08:52:21.0625 5184 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
08:52:21.0625 5184 AFD - ok
08:52:21.0656 5184 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
08:52:21.0656 5184 agp440 - ok
08:52:21.0671 5184 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
08:52:21.0671 5184 agpCPQ - ok
08:52:21.0671 5184 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
08:52:21.0671 5184 Aha154x - ok
08:52:21.0687 5184 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
08:52:21.0687 5184 aic78u2 - ok
08:52:21.0687 5184 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
08:52:21.0687 5184 aic78xx - ok
08:52:21.0734 5184 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
08:52:21.0750 5184 Alerter - ok
08:52:21.0781 5184 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
08:52:21.0781 5184 ALG - ok
08:52:21.0796 5184 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
08:52:21.0796 5184 AliIde - ok
08:52:21.0796 5184 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
08:52:21.0796 5184 alim1541 - ok
08:52:21.0796 5184 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
08:52:21.0796 5184 amdagp - ok
08:52:21.0812 5184 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
08:52:21.0812 5184 amsint - ok
08:52:21.0875 5184 ApfiltrService (3adde2de22d3c3f6d7fbdb450c6287d2) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
08:52:21.0875 5184 ApfiltrService - ok
08:52:21.0984 5184 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:52:22.0000 5184 Apple Mobile Device - ok
08:52:22.0015 5184 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
08:52:22.0062 5184 AppMgmt - ok
08:52:22.0078 5184 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:52:22.0078 5184 Arp1394 - ok
08:52:22.0093 5184 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
08:52:22.0093 5184 asc - ok
08:52:22.0093 5184 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
08:52:22.0093 5184 asc3350p - ok
08:52:22.0093 5184 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
08:52:22.0109 5184 asc3550 - ok
08:52:22.0203 5184 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:52:22.0218 5184 aspnet_state - ok
08:52:22.0234 5184 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:52:22.0234 5184 AsyncMac - ok
08:52:22.0250 5184 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
08:52:22.0250 5184 atapi - ok
08:52:22.0265 5184 Atdisk - ok
08:52:22.0281 5184 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:52:22.0281 5184 Atmarpc - ok
08:52:22.0312 5184 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
08:52:22.0328 5184 AudioSrv - ok
08:52:22.0343 5184 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
08:52:22.0343 5184 audstub - ok
08:52:22.0609 5184 BCM43XX (5d4893633b7161fa25500eb7aeabec94) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
08:52:22.0640 5184 BCM43XX - ok
08:52:22.0812 5184 BCMTPM (aa8629c3f91300645c64cf0084f94df1) C:\WINDOWS\system32\DRIVERS\btpmw32.sys
08:52:22.0812 5184 BCMTPM - ok
08:52:22.0828 5184 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
08:52:22.0828 5184 Beep - ok
08:52:23.0046 5184 BHDrvx86 (a503d32ae26f77cb942aed530112edaa) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\BASHDefs\20120507.001\BHDrvx86.sys
08:52:23.0046 5184 BHDrvx86 - ok
08:52:23.0093 5184 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
08:52:23.0156 5184 BITS - ok
08:52:23.0296 5184 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
08:52:23.0296 5184 Bonjour Service - ok
08:52:23.0343 5184 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
08:52:23.0359 5184 Browser - ok
08:52:23.0484 5184 catchme - ok
08:52:23.0578 5184 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
08:52:23.0578 5184 cbidf - ok
08:52:23.0578 5184 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
08:52:23.0578 5184 cbidf2k - ok
08:52:23.0640 5184 ccSet_NIS (599e7f6259a127c174c49938d2aa6a60) C:\WINDOWS\system32\drivers\NIS\1307000.009\ccSetx86.sys
08:52:23.0640 5184 ccSet_NIS - ok
08:52:23.0640 5184 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
08:52:23.0640 5184 cd20xrnt - ok
08:52:23.0656 5184 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
08:52:23.0656 5184 Cdaudio - ok
08:52:23.0671 5184 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
08:52:23.0671 5184 Cdfs - ok
08:52:23.0703 5184 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:52:23.0703 5184 Cdrom - ok
08:52:23.0703 5184 Changer - ok
08:52:23.0703 5184 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
08:52:23.0718 5184 CiSvc - ok
08:52:23.0734 5184 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
08:52:23.0734 5184 ClipSrv - ok
08:52:23.0796 5184 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:52:23.0812 5184 clr_optimization_v2.0.50727_32 - ok
08:52:23.0843 5184 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
08:52:23.0843 5184 CmBatt - ok
08:52:23.0859 5184 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
08:52:23.0859 5184 CmdIde - ok
08:52:23.0890 5184 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
08:52:23.0890 5184 Compbatt - ok
08:52:23.0890 5184 COMSysApp - ok
08:52:23.0890 5184 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
08:52:23.0890 5184 Cpqarray - ok
08:52:24.0031 5184 Credential Vault Host Control Service (09fea7fbd6a29e3941a2ffc6f7aeb818) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
08:52:24.0046 5184 Credential Vault Host Control Service - ok
08:52:24.0062 5184 Credential Vault Host Storage (45bf153d51ed8790de8f8446b11deb57) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
08:52:24.0062 5184 Credential Vault Host Storage - ok
08:52:24.0093 5184 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
08:52:24.0093 5184 CryptSvc - ok
08:52:24.0109 5184 cvusbdrv (d1697063e2cdb6575aa46d668ffee825) C:\WINDOWS\system32\Drivers\cvusbdrv.sys
08:52:24.0109 5184 cvusbdrv - ok
08:52:24.0171 5184 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
08:52:24.0171 5184 dac2w2k - ok
08:52:24.0171 5184 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
08:52:24.0171 5184 dac960nt - ok
08:52:24.0312 5184 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
08:52:24.0312 5184 DcomLaunch - ok
08:52:24.0437 5184 dcpsysmgrsvc (f73080d9f2a78472ac8e7947f3f6c6aa) c:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
08:52:24.0437 5184 dcpsysmgrsvc - ok
08:52:24.0484 5184 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
08:52:24.0500 5184 Dhcp - ok
08:52:24.0500 5184 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
08:52:24.0500 5184 Disk - ok
08:52:24.0500 5184 dmadmin - ok
08:52:24.0578 5184 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
08:52:24.0609 5184 dmboot - ok
08:52:24.0640 5184 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
08:52:24.0640 5184 dmio - ok
08:52:24.0671 5184 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
08:52:24.0671 5184 dmload - ok
08:52:24.0671 5184 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
08:52:24.0703 5184 dmserver - ok
08:52:24.0734 5184 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
08:52:24.0734 5184 DMusic - ok
08:52:24.0765 5184 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
08:52:24.0765 5184 Dnscache - ok
08:52:24.0796 5184 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
08:52:24.0796 5184 Dot3svc - ok
08:52:24.0796 5184 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
08:52:24.0796 5184 dpti2o - ok
08:52:24.0812 5184 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
08:52:24.0812 5184 drmkaud - ok
08:52:24.0843 5184 e1kexpress (8bed3dbbb13d2c8e1c1c9decec309826) C:\WINDOWS\system32\DRIVERS\e1k5132.sys
08:52:24.0859 5184 e1kexpress - ok
08:52:24.0875 5184 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
08:52:24.0875 5184 EapHost - ok
08:52:25.0000 5184 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
08:52:25.0000 5184 eeCtrl - ok
08:52:25.0031 5184 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:52:25.0031 5184 EraserUtilRebootDrv - ok
08:52:25.0046 5184 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
08:52:25.0046 5184 ERSvc - ok
08:52:25.0078 5184 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
08:52:25.0078 5184 Eventlog - ok
08:52:25.0156 5184 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
08:52:25.0156 5184 EventSystem - ok
08:52:25.0203 5184 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
08:52:25.0203 5184 Fastfat - ok
08:52:25.0250 5184 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:52:25.0250 5184 FastUserSwitchingCompatibility - ok
08:52:25.0296 5184 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
08:52:25.0296 5184 Fax - ok
08:52:25.0296 5184 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
08:52:25.0296 5184 Fdc - ok
08:52:25.0328 5184 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
08:52:25.0343 5184 Fips - ok
08:52:25.0453 5184 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:52:25.0453 5184 FLEXnet Licensing Service - ok
08:52:25.0468 5184 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
08:52:25.0468 5184 Flpydisk - ok
08:52:25.0484 5184 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
08:52:25.0484 5184 FltMgr - ok
08:52:25.0578 5184 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:52:25.0578 5184 FontCache3.0.0.0 - ok
08:52:25.0578 5184 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:52:25.0578 5184 Fs_Rec - ok
08:52:25.0593 5184 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:52:25.0593 5184 Ftdisk - ok
08:52:25.0625 5184 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:52:25.0625 5184 GEARAspiWDM - ok
08:52:25.0640 5184 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:52:25.0640 5184 Gpc - ok
08:52:25.0671 5184 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:52:25.0671 5184 HDAudBus - ok
08:52:25.0734 5184 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:52:25.0734 5184 helpsvc - ok
08:52:25.0750 5184 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
08:52:25.0750 5184 HidServ - ok
08:52:25.0765 5184 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:52:25.0765 5184 hidusb - ok
08:52:25.0796 5184 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
08:52:25.0796 5184 hkmsvc - ok
08:52:25.0859 5184 HP Port Resolver (c5f00d15aa15cb7f55a027ff75e44bb7) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
08:52:25.0859 5184 HP Port Resolver - ok
08:52:25.0875 5184 HP Status Server (c5a288e4ceef5a26d105117baa3763ab) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
08:52:25.0875 5184 HP Status Server - ok
08:52:25.0921 5184 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
08:52:25.0921 5184 hpn - ok
08:52:25.0953 5184 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:52:25.0953 5184 HPZid412 - ok
08:52:25.0968 5184 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:52:25.0984 5184 HPZipr12 - ok
08:52:26.0000 5184 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:52:26.0000 5184 HPZius12 - ok
08:52:26.0046 5184 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
08:52:26.0062 5184 HTTP - ok
08:52:26.0078 5184 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
08:52:26.0109 5184 HTTPFilter - ok
08:52:26.0125 5184 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
08:52:26.0125 5184 i2omgmt - ok
08:52:26.0156 5184 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
08:52:26.0156 5184 i2omp - ok
08:52:26.0171 5184 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:52:26.0187 5184 i8042prt - ok
08:52:26.0250 5184 iaStor (26541a068572f650a2fa490726fe81be) C:\WINDOWS\system32\drivers\iaStor.sys
08:52:26.0265 5184 iaStor - ok
08:52:26.0359 5184 IAStorDataMgrSvc (31a0e93cdf29007d6c6fffb632f375ed) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
08:52:26.0375 5184 IAStorDataMgrSvc - ok
08:52:26.0546 5184 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:52:26.0562 5184 idsvc - ok
08:52:26.0781 5184 IDSxpx86 (c924bf6d42b3d9292268ff1998596bd1) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\IPSDefs\20120515.001\IDSxpx86.sys
08:52:26.0781 5184 IDSxpx86 - ok
08:52:26.0937 5184 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
08:52:26.0937 5184 Imapi - ok
08:52:26.0968 5184 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
08:52:26.0984 5184 ImapiService - ok
08:52:26.0984 5184 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
08:52:27.0000 5184 ini910u - ok
08:52:27.0062 5184 InstallFilterService (987a2cc8ec0e86caa2d8068b1ed7b441) C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
08:52:27.0078 5184 InstallFilterService - ok
08:52:27.0093 5184 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
08:52:27.0093 5184 IntelIde - ok
08:52:27.0109 5184 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:52:27.0109 5184 intelppm - ok
08:52:27.0125 5184 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
08:52:27.0125 5184 Ip6Fw - ok
08:52:27.0125 5184 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:52:27.0140 5184 IpFilterDriver - ok
08:52:27.0140 5184 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:52:27.0140 5184 IpInIp - ok
08:52:27.0171 5184 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:52:27.0171 5184 IpNat - ok
08:52:27.0281 5184 iPod Service (33642c17c232aa272c68e446a2619899) C:\Program Files\iPod\bin\iPodService.exe
08:52:27.0296 5184 iPod Service - ok
08:52:27.0328 5184 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:52:27.0328 5184 IPSec - ok
08:52:27.0343 5184 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
08:52:27.0343 5184 IRENUM - ok
08:52:27.0375 5184 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:52:27.0375 5184 isapnp - ok
08:52:27.0453 5184 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe
08:52:27.0453 5184 JavaQuickStarterService - ok
08:52:27.0468 5184 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:52:27.0468 5184 Kbdclass - ok
08:52:27.0484 5184 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:52:27.0484 5184 kbdhid - ok
08:52:27.0531 5184 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
08:52:27.0531 5184 kmixer - ok
08:52:27.0562 5184 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
08:52:27.0562 5184 KSecDD - ok
08:52:27.0593 5184 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
08:52:27.0593 5184 LanmanServer - ok
08:52:27.0625 5184 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
08:52:27.0625 5184 lanmanworkstation - ok
08:52:27.0625 5184 lbrtfdc - ok
08:52:27.0656 5184 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
08:52:27.0656 5184 LmHosts - ok
08:52:27.0750 5184 MatSvc (9f04b1edc2dca29bbea94f37dacb55b7) C:\Program Files\Microsoft Fix it Center\Matsvc.exe
08:52:27.0750 5184 MatSvc - ok
08:52:27.0828 5184 McciCMService (e6cb119ef2e148eaa1a247343550756e) C:\Program Files\Common Files\Motive\McciCMService.exe
08:52:27.0843 5184 McciCMService - ok
08:52:27.0859 5184 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
08:52:27.0875 5184 Messenger - ok
08:52:27.0906 5184 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
08:52:27.0906 5184 mnmdd - ok
08:52:27.0906 5184 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
08:52:27.0921 5184 mnmsrvc - ok
08:52:27.0921 5184 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
08:52:27.0937 5184 Modem - ok
08:52:27.0937 5184 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:52:27.0953 5184 Mouclass - ok
08:52:27.0968 5184 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:52:27.0968 5184 mouhid - ok
08:52:28.0000 5184 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
08:52:28.0000 5184 MountMgr - ok
08:52:28.0046 5184 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
08:52:28.0046 5184 MozillaMaintenance - ok
08:52:28.0078 5184 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
08:52:28.0078 5184 mraid35x - ok
08:52:28.0093 5184 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
08:52:28.0093 5184 MREMP50 - ok
08:52:28.0093 5184 MREMPR5 - ok
08:52:28.0093 5184 MRENDIS5 - ok
08:52:28.0109 5184 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
08:52:28.0109 5184 MRESP50 - ok
08:52:28.0125 5184 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:52:28.0125 5184 MRxDAV - ok
08:52:28.0187 5184 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:52:28.0203 5184 MRxSmb - ok
08:52:28.0250 5184 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
08:52:28.0250 5184 MSDTC - ok
08:52:28.0250 5184 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
08:52:28.0250 5184 Msfs - ok
08:52:28.0250 5184 MSIServer - ok
08:52:28.0265 5184 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:52:28.0265 5184 MSKSSRV - ok
08:52:28.0281 5184 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:52:28.0281 5184 MSPCLOCK - ok
08:52:28.0296 5184 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
08:52:28.0296 5184 MSPQM - ok
08:52:28.0312 5184 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:52:28.0312 5184 mssmbios - ok
08:52:28.0328 5184 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
08:52:28.0328 5184 Mup - ok
08:52:28.0343 5184 NAL (428c611928df3e96538a482117e659f7) C:\WINDOWS\system32\Drivers\iqvw32.sys
08:52:28.0359 5184 NAL - ok
08:52:28.0390 5184 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
08:52:28.0421 5184 napagent - ok
08:52:28.0609 5184 NAVENG (f11033730b38260b6892e837c457fb4b) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120515.024\NAVENG.SYS
08:52:28.0609 5184 NAVENG - ok
08:52:28.0765 5184 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120515.024\NAVEX15.SYS
08:52:28.0781 5184 NAVEX15 - ok
08:52:28.0921 5184 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
08:52:28.0937 5184 NDIS - ok
08:52:28.0968 5184 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:52:28.0968 5184 NdisTapi - ok
08:52:28.0984 5184 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:52:28.0984 5184 Ndisuio - ok
08:52:29.0000 5184 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:52:29.0000 5184 NdisWan - ok
08:52:29.0031 5184 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
08:52:29.0031 5184 NDProxy - ok
08:52:29.0046 5184 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
08:52:29.0046 5184 NetBIOS - ok
08:52:29.0093 5184 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
08:52:29.0093 5184 NetBT - ok
08:52:29.0125 5184 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
08:52:29.0125 5184 NetDDE - ok
08:52:29.0125 5184 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
08:52:29.0125 5184 NetDDEdsdm - ok
08:52:29.0156 5184 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:29.0156 5184 Netlogon - ok
08:52:29.0203 5184 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
08:52:29.0203 5184 Netman - ok
08:52:29.0296 5184 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:52:29.0296 5184 NetTcpPortSharing - ok
08:52:29.0328 5184 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:52:29.0328 5184 NIC1394 - ok
08:52:29.0453 5184 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files\Norton Internet Security\Engine\19.7.0.9\ccSvcHst.exe
08:52:29.0468 5184 NIS - ok
08:52:29.0531 5184 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
08:52:29.0531 5184 Nla - ok
08:52:29.0546 5184 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
08:52:29.0546 5184 Npfs - ok
08:52:29.0656 5184 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
08:52:29.0687 5184 Ntfs - ok
08:52:29.0718 5184 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:29.0718 5184 NtLmSsp - ok
08:52:29.0781 5184 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
08:52:29.0812 5184 NtmsSvc - ok
08:52:29.0843 5184 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
08:52:29.0843 5184 Null - ok
08:52:30.0500 5184 nv (0d3d6537671d6a31a58c654f82b77110) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:52:30.0640 5184 nv - ok
08:52:30.0859 5184 NVHDA (2d2b7b3ad297c659efa1d02852ca9860) C:\WINDOWS\system32\drivers\nvhda32.sys
08:52:30.0859 5184 NVHDA - ok
08:52:31.0359 5184 NVIDIA Performance Driver Service (8234151a1d602d3175de4859e32d5289) C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
08:52:31.0437 5184 NVIDIA Performance Driver Service - ok
08:52:31.0562 5184 nvsvc (87ff0b427c6645dfaf15ccd6ae7823b6) C:\WINDOWS\system32\nvsvc32.exe
08:52:31.0578 5184 nvsvc - ok
08:52:31.0625 5184 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:52:31.0625 5184 NwlnkFlt - ok
08:52:31.0640 5184 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:52:31.0656 5184 NwlnkFwd - ok
08:52:31.0796 5184 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:52:31.0796 5184 odserv - ok
08:52:31.0859 5184 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:52:31.0875 5184 ohci1394 - ok
08:52:31.0890 5184 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:52:31.0890 5184 ose - ok
08:52:31.0921 5184 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
08:52:31.0921 5184 Parport - ok
08:52:31.0937 5184 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
08:52:31.0937 5184 PartMgr - ok
08:52:31.0953 5184 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
08:52:31.0953 5184 ParVdm - ok
08:52:31.0953 5184 PBADRV (4088c1ecd1f54281a92fa663b0fdc36f) C:\WINDOWS\system32\DRIVERS\PBADRV.sys
08:52:31.0953 5184 PBADRV - ok
08:52:31.0968 5184 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
08:52:31.0968 5184 PCI - ok
08:52:31.0968 5184 PCIDump - ok
08:52:31.0984 5184 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
08:52:31.0984 5184 PCIIde - ok
08:52:32.0000 5184 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
08:52:32.0000 5184 Pcmcia - ok
08:52:32.0000 5184 PDCOMP - ok
08:52:32.0000 5184 PDFRAME - ok
08:52:32.0015 5184 PDRELI - ok
08:52:32.0015 5184 PDRFRAME - ok
08:52:32.0062 5184 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
08:52:32.0062 5184 perc2 - ok
08:52:32.0062 5184 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
08:52:32.0062 5184 perc2hib - ok
08:52:32.0093 5184 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
08:52:32.0109 5184 PlugPlay - ok
08:52:32.0140 5184 Pml Driver HPZ12 (2d091a99624fb9e7eef0a86d872ec0c3) C:\WINDOWS\system32\HPZipm12.exe
08:52:32.0140 5184 Pml Driver HPZ12 - ok
08:52:32.0187 5184 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:32.0187 5184 PolicyAgent - ok
08:52:32.0218 5184 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:52:32.0218 5184 PptpMiniport - ok
08:52:32.0218 5184 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:32.0218 5184 ProtectedStorage - ok
08:52:32.0250 5184 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
08:52:32.0250 5184 PSched - ok
08:52:32.0281 5184 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
08:52:32.0281 5184 PSI_SVC_2 - ok
08:52:32.0296 5184 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:52:32.0296 5184 Ptilink - ok
08:52:32.0312 5184 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
08:52:32.0312 5184 ql1080 - ok
08:52:32.0312 5184 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
08:52:32.0328 5184 Ql10wnt - ok
08:52:32.0343 5184 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
08:52:32.0343 5184 ql12160 - ok
08:52:32.0343 5184 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
08:52:32.0343 5184 ql1240 - ok
08:52:32.0359 5184 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
08:52:32.0359 5184 ql1280 - ok
08:52:32.0359 5184 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:52:32.0359 5184 RasAcd - ok
08:52:32.0390 5184 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
08:52:32.0390 5184 RasAuto - ok
08:52:32.0406 5184 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:52:32.0406 5184 Rasl2tp - ok
08:52:32.0421 5184 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
08:52:32.0421 5184 RasMan - ok
08:52:32.0437 5184 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:52:32.0437 5184 RasPppoe - ok
08:52:32.0437 5184 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
08:52:32.0437 5184 Raspti - ok
08:52:32.0484 5184 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:52:32.0484 5184 Rdbss - ok
08:52:32.0515 5184 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:52:32.0515 5184 RDPCDD - ok
08:52:32.0531 5184 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:52:32.0531 5184 rdpdr - ok
08:52:32.0578 5184 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
08:52:32.0578 5184 RDPWD - ok
08:52:32.0593 5184 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
08:52:32.0593 5184 RDSessMgr - ok
08:52:32.0625 5184 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
08:52:32.0625 5184 redbook - ok
08:52:32.0687 5184 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
08:52:32.0687 5184 RemoteAccess - ok
08:52:32.0703 5184 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
08:52:32.0703 5184 RemoteRegistry - ok
08:52:32.0750 5184 risdpcie (5312f15dbeb47d906dca2e334dc4c97d) C:\WINDOWS\system32\DRIVERS\risdpe86.sys
08:52:32.0750 5184 risdpcie - ok
08:52:32.0765 5184 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
08:52:32.0765 5184 RpcLocator - ok
08:52:32.0828 5184 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
08:52:32.0828 5184 RpcSs - ok
08:52:32.0859 5184 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
08:52:32.0859 5184 RSVP - ok
08:52:32.0875 5184 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:32.0875 5184 SamSs - ok
08:52:32.0890 5184 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
08:52:32.0906 5184 SCardSvr - ok
08:52:32.0921 5184 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
08:52:32.0937 5184 Schedule - ok
08:52:32.0953 5184 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
08:52:32.0953 5184 sdbus - ok
08:52:32.0968 5184 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:52:32.0968 5184 Secdrv - ok
08:52:32.0984 5184 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
08:52:32.0984 5184 seclogon - ok
08:52:33.0187 5184 SecureStorageService (e396fbc469df73692318dc90ad13ce86) C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe
08:52:33.0203 5184 SecureStorageService - ok
08:52:33.0218 5184 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
08:52:33.0218 5184 SENS - ok
08:52:33.0234 5184 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
08:52:33.0234 5184 Serial - ok
08:52:33.0281 5184 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
08:52:33.0281 5184 Sfloppy - ok
08:52:33.0343 5184 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
08:52:33.0359 5184 SharedAccess - ok
08:52:33.0390 5184 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:52:33.0390 5184 ShellHWDetection - ok
08:52:33.0406 5184 Simbad - ok
08:52:33.0421 5184 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
08:52:33.0421 5184 sisagp - ok
08:52:33.0421 5184 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
08:52:33.0421 5184 Sparrow - ok
08:52:33.0453 5184 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
08:52:33.0453 5184 splitter - ok
08:52:33.0531 5184 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
08:52:33.0531 5184 Spooler - ok
08:52:33.0562 5184 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
08:52:33.0562 5184 sr - ok
08:52:33.0609 5184 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
08:52:33.0609 5184 srservice - ok
08:52:33.0703 5184 SRTSP (9dd258ee034afd36259cb7357e19d0b1) C:\WINDOWS\System32\Drivers\NIS\1307000.009\SRTSP.SYS
08:52:33.0703 5184 SRTSP - ok
08:52:33.0750 5184 SRTSPX (0cc3a10f363436c7b478419eb73f8d91) C:\WINDOWS\system32\drivers\NIS\1307000.009\SRTSPX.SYS
08:52:33.0750 5184 SRTSPX - ok
08:52:33.0796 5184 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
08:52:33.0796 5184 Srv - ok
08:52:33.0828 5184 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
08:52:33.0843 5184 SSDPSRV - ok
08:52:33.0937 5184 STacSV (95e100d2aab23a591a01655e6063d36e) C:\Program Files\IDT\WDM\stacsv.exe
08:52:33.0937 5184 STacSV - ok
08:52:33.0984 5184 stdflt (a5b83c8050572622e5c43b5b3326a129) C:\WINDOWS\system32\DRIVERS\stdfltn.sys
08:52:33.0984 5184 stdflt - ok
08:52:34.0125 5184 STHDA (72c411579358a57941f8d0b3a67175b4) C:\WINDOWS\system32\drivers\sthda.sys
08:52:34.0140 5184 STHDA - ok
08:52:34.0296 5184 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
08:52:34.0296 5184 StillCam - ok
08:52:34.0343 5184 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
08:52:34.0359 5184 stisvc - ok
08:52:34.0390 5184 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
08:52:34.0390 5184 swenum - ok
08:52:34.0406 5184 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
08:52:34.0406 5184 swmidi - ok
08:52:34.0406 5184 SwPrv - ok
08:52:34.0421 5184 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
08:52:34.0421 5184 symc810 - ok
08:52:34.0437 5184 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
08:52:34.0437 5184 symc8xx - ok
08:52:34.0500 5184 SymDS (690fa0e61b90084c4d9a721bd4f3d779) C:\WINDOWS\system32\drivers\NIS\1307000.009\SYMDS.SYS
08:52:34.0515 5184 SymDS - ok
08:52:34.0609 5184 SymEFA (4e55148a2e044d02245cbcdbb266b98c) C:\WINDOWS\system32\drivers\NIS\1307000.009\SYMEFA.SYS
08:52:34.0625 5184 SymEFA - ok
08:52:34.0656 5184 SymEvent (555fb450fe6908600310e990738b41d6) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
08:52:34.0656 5184 SymEvent - ok
08:52:34.0718 5184 SymIM (a7100ea17ed9eaf365362a05bf430e77) C:\WINDOWS\system32\DRIVERS\SymIM.sys
08:52:34.0718 5184 SymIM - ok
08:52:34.0718 5184 SymIMMP (a7100ea17ed9eaf365362a05bf430e77) C:\WINDOWS\system32\DRIVERS\SymIM.sys
08:52:34.0718 5184 SymIMMP - ok
08:52:34.0750 5184 SymIRON (2c356cca706505cf63cbe39d532b9236) C:\WINDOWS\system32\drivers\NIS\1307000.009\Ironx86.SYS
08:52:34.0750 5184 SymIRON - ok
08:52:34.0796 5184 SYMTDI (508bd882040f9cb12319e3a4fc78edb9) C:\WINDOWS\System32\Drivers\NIS\1307000.009\SYMTDI.SYS
08:52:34.0796 5184 SYMTDI - ok
08:52:34.0812 5184 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
08:52:34.0812 5184 sym_hi - ok
08:52:34.0812 5184 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
08:52:34.0812 5184 sym_u3 - ok
08:52:34.0843 5184 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
08:52:34.0843 5184 sysaudio - ok
08:52:34.0875 5184 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
08:52:34.0875 5184 SysmonLog - ok
08:52:34.0906 5184 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
08:52:34.0906 5184 TapiSrv - ok
08:52:34.0953 5184 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:52:34.0953 5184 Tcpip - ok
08:52:35.0125 5184 tcsd_win32.exe (69f1a38a6dbfe682491cb61a596662e3) C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
08:52:35.0156 5184 tcsd_win32.exe - ok
08:52:35.0343 5184 TdmService (a405d39f4dd131954c39114fba31a5e0) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
08:52:35.0375 5184 TdmService - ok
08:52:35.0500 5184 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
08:52:35.0500 5184 TDPIPE - ok
08:52:35.0515 5184 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
08:52:35.0515 5184 TDTCP - ok
08:52:35.0546 5184 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
08:52:35.0546 5184 TermDD - ok
08:52:35.0609 5184 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
08:52:35.0625 5184 TermService - ok
08:52:35.0656 5184 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:52:35.0656 5184 Themes - ok
08:52:35.0671 5184 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
08:52:35.0671 5184 TlntSvr - ok
08:52:35.0703 5184 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
08:52:35.0703 5184 TosIde - ok
08:52:35.0718 5184 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
08:52:35.0734 5184 TrkWks - ok
08:52:35.0734 5184 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
08:52:35.0734 5184 Udfs - ok
08:52:35.0750 5184 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
08:52:35.0750 5184 ultra - ok
08:52:35.0796 5184 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
08:52:35.0812 5184 Update - ok
08:52:35.0828 5184 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
08:52:35.0843 5184 upnphost - ok
08:52:35.0859 5184 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
08:52:35.0859 5184 UPS - ok
08:52:35.0921 5184 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
08:52:35.0921 5184 usbaudio - ok
08:52:35.0937 5184 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:52:35.0937 5184 usbccgp - ok
08:52:35.0953 5184 USBCCID (64ca8ed4b0980aae46beb3727046e860) C:\WINDOWS\system32\DRIVERS\usbccid.sys
08:52:35.0968 5184 USBCCID - ok
08:52:35.0984 5184 usbehci (4bac8df07f1d8434fc640e677a62204e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:52:35.0984 5184 usbehci - ok
08:52:36.0015 5184 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:52:36.0015 5184 usbhub - ok
08:52:36.0031 5184 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:52:36.0046 5184 usbprint - ok
08:52:36.0062 5184 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:52:36.0062 5184 usbscan - ok
08:52:36.0093 5184 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:52:36.0093 5184 USBSTOR - ok
08:52:36.0109 5184 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:52:36.0109 5184 usbuhci - ok
08:52:36.0109 5184 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
08:52:36.0109 5184 VgaSave - ok
08:52:36.0125 5184 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
08:52:36.0125 5184 viaagp - ok
08:52:36.0156 5184 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
08:52:36.0156 5184 ViaIde - ok
08:52:36.0187 5184 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
08:52:36.0187 5184 VolSnap - ok
08:52:36.0265 5184 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
08:52:36.0265 5184 VSS - ok
08:52:36.0312 5184 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
08:52:36.0312 5184 w32time - ok
08:52:36.0328 5184 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:52:36.0328 5184 Wanarp - ok
08:52:36.0359 5184 WavxDMgr (81f117b7834fa0b78c2354208d185528) C:\WINDOWS\system32\DRIVERS\WavxDMgr.sys
08:52:36.0375 5184 WavxDMgr - ok
08:52:36.0453 5184 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
08:52:36.0468 5184 Wdf01000 - ok
08:52:36.0468 5184 WDICA - ok
08:52:36.0484 5184 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
08:52:36.0500 5184 wdmaud - ok
08:52:36.0515 5184 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
08:52:36.0515 5184 WebClient - ok
08:52:36.0640 5184 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
08:52:36.0640 5184 winmgmt - ok
08:52:36.0750 5184 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
08:52:36.0796 5184 WinRM - ok
08:52:36.0796 5184 wltrysvc - ok
08:52:36.0828 5184 WmdmPmSN (c7e39ea41233e9f5b86c8da3a9f1e4a8) C:\WINDOWS\system32\mspmsnsv.dll
08:52:36.0828 5184 WmdmPmSN - ok
08:52:36.0906 5184 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
08:52:36.0921 5184 Wmi - ok
08:52:37.0015 5184 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
08:52:37.0015 5184 WmiAcpi - ok
08:52:37.0031 5184 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:52:37.0046 5184 WmiApSrv - ok
08:52:37.0078 5184 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
08:52:37.0078 5184 wscsvc - ok
08:52:37.0093 5184 WSearch - ok
08:52:37.0109 5184 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
08:52:37.0109 5184 wuauserv - ok
08:52:37.0156 5184 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
08:52:37.0156 5184 WZCSVC - ok
08:52:37.0203 5184 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
08:52:37.0218 5184 xmlprov - ok
08:52:37.0265 5184 YahooAUService - ok
08:52:37.0296 5184 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
08:52:38.0312 5184 \Device\Harddisk0\DR0 - ok
08:52:38.0343 5184 Boot (0x1200) (91f7c0e3e233cbe18c77cfa070926b4c) \Device\Harddisk0\DR0\Partition0
08:52:38.0343 5184 \Device\Harddisk0\DR0\Partition0 - ok
08:52:38.0343 5184 ============================================================
08:52:38.0343 5184 Scan finished
08:52:38.0343 5184 ============================================================
08:52:38.0343 5476 Detected object count: 0
08:52:38.0343 5476 Actual detected object count: 0
08:55:13.0593 4428 Deinitialize success


Here's Gmer:

08:50:49.0484 2668 TDSS rootkit removing tool 2.7.35.0 May 16 2012 07:37:57
08:50:51.0140 2668 ============================================================
08:50:51.0140 2668 Current date / time: 2012/05/16 08:50:51.0140
08:50:51.0140 2668 SystemInfo:
08:50:51.0140 2668
08:50:51.0140 2668 OS Version: 5.1.2600 ServicePack: 3.0
08:50:51.0140 2668 Product type: Workstation
08:50:51.0140 2668 ComputerName: RAY
08:50:51.0140 2668 UserName: RayRay
08:50:51.0140 2668 Windows directory: C:\WINDOWS
08:50:51.0140 2668 System windows directory: C:\WINDOWS
08:50:51.0140 2668 Processor architecture: Intel x86
08:50:51.0140 2668 Number of processors: 8
08:50:51.0140 2668 Page size: 0x1000
08:50:51.0140 2668 Boot type: Normal boot
08:50:51.0140 2668 ============================================================
08:50:52.0390 2668 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
08:50:52.0421 2668 ============================================================
08:50:52.0421 2668 \Device\Harddisk0\DR0:
08:50:52.0421 2668 MBR partitions:
08:50:52.0421 2668 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x38000, BlocksNum 0x1D18C000
08:50:52.0421 2668 ============================================================
08:50:52.0468 2668 C: <-> \Device\Harddisk0\DR0\Partition0
08:50:52.0468 2668 ============================================================
08:50:52.0468 2668 Initialize success
08:50:52.0468 2668 ============================================================
08:52:20.0125 5184 ============================================================
08:52:20.0125 5184 Scan started
08:52:20.0125 5184 Mode: Manual; TDLFS;
08:52:20.0125 5184 ============================================================
08:52:21.0250 5184 Abiosdsk - ok
08:52:21.0296 5184 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
08:52:21.0296 5184 abp480n5 - ok
08:52:21.0328 5184 Acceler (af1f178b0218b44876e63bf0b019e96b) C:\WINDOWS\system32\DRIVERS\Accelern.sys
08:52:21.0328 5184 Acceler - ok
08:52:21.0406 5184 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:52:21.0406 5184 ACPI - ok
08:52:21.0406 5184 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
08:52:21.0406 5184 ACPIEC - ok
08:52:21.0453 5184 adfs (6d7f09cd92a9fef3a8efce66231fdd79) C:\WINDOWS\system32\drivers\adfs.sys
08:52:21.0468 5184 adfs - ok
08:52:21.0515 5184 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
08:52:21.0515 5184 adpu160m - ok
08:52:21.0546 5184 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
08:52:21.0562 5184 aec - ok
08:52:21.0593 5184 AESTAud (822d53766d57c90c437536232ece9023) C:\WINDOWS\system32\drivers\AESTAud.sys
08:52:21.0593 5184 AESTAud - ok
08:52:21.0625 5184 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
08:52:21.0625 5184 AFD - ok
08:52:21.0656 5184 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
08:52:21.0656 5184 agp440 - ok
08:52:21.0671 5184 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
08:52:21.0671 5184 agpCPQ - ok
08:52:21.0671 5184 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
08:52:21.0671 5184 Aha154x - ok
08:52:21.0687 5184 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
08:52:21.0687 5184 aic78u2 - ok
08:52:21.0687 5184 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
08:52:21.0687 5184 aic78xx - ok
08:52:21.0734 5184 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
08:52:21.0750 5184 Alerter - ok
08:52:21.0781 5184 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
08:52:21.0781 5184 ALG - ok
08:52:21.0796 5184 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
08:52:21.0796 5184 AliIde - ok
08:52:21.0796 5184 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
08:52:21.0796 5184 alim1541 - ok
08:52:21.0796 5184 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
08:52:21.0796 5184 amdagp - ok
08:52:21.0812 5184 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
08:52:21.0812 5184 amsint - ok
08:52:21.0875 5184 ApfiltrService (3adde2de22d3c3f6d7fbdb450c6287d2) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
08:52:21.0875 5184 ApfiltrService - ok
08:52:21.0984 5184 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:52:22.0000 5184 Apple Mobile Device - ok
08:52:22.0015 5184 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
08:52:22.0062 5184 AppMgmt - ok
08:52:22.0078 5184 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:52:22.0078 5184 Arp1394 - ok
08:52:22.0093 5184 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
08:52:22.0093 5184 asc - ok
08:52:22.0093 5184 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
08:52:22.0093 5184 asc3350p - ok
08:52:22.0093 5184 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
08:52:22.0109 5184 asc3550 - ok
08:52:22.0203 5184 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
08:52:22.0218 5184 aspnet_state - ok
08:52:22.0234 5184 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:52:22.0234 5184 AsyncMac - ok
08:52:22.0250 5184 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
08:52:22.0250 5184 atapi - ok
08:52:22.0265 5184 Atdisk - ok
08:52:22.0281 5184 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:52:22.0281 5184 Atmarpc - ok
08:52:22.0312 5184 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
08:52:22.0328 5184 AudioSrv - ok
08:52:22.0343 5184 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
08:52:22.0343 5184 audstub - ok
08:52:22.0609 5184 BCM43XX (5d4893633b7161fa25500eb7aeabec94) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
08:52:22.0640 5184 BCM43XX - ok
08:52:22.0812 5184 BCMTPM (aa8629c3f91300645c64cf0084f94df1) C:\WINDOWS\system32\DRIVERS\btpmw32.sys
08:52:22.0812 5184 BCMTPM - ok
08:52:22.0828 5184 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
08:52:22.0828 5184 Beep - ok
08:52:23.0046 5184 BHDrvx86 (a503d32ae26f77cb942aed530112edaa) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\BASHDefs\20120507.001\BHDrvx86.sys
08:52:23.0046 5184 BHDrvx86 - ok
08:52:23.0093 5184 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
08:52:23.0156 5184 BITS - ok
08:52:23.0296 5184 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
08:52:23.0296 5184 Bonjour Service - ok
08:52:23.0343 5184 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
08:52:23.0359 5184 Browser - ok
08:52:23.0484 5184 catchme - ok
08:52:23.0578 5184 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
08:52:23.0578 5184 cbidf - ok
08:52:23.0578 5184 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
08:52:23.0578 5184 cbidf2k - ok
08:52:23.0640 5184 ccSet_NIS (599e7f6259a127c174c49938d2aa6a60) C:\WINDOWS\system32\drivers\NIS\1307000.009\ccSetx86.sys
08:52:23.0640 5184 ccSet_NIS - ok
08:52:23.0640 5184 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
08:52:23.0640 5184 cd20xrnt - ok
08:52:23.0656 5184 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
08:52:23.0656 5184 Cdaudio - ok
08:52:23.0671 5184 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
08:52:23.0671 5184 Cdfs - ok
08:52:23.0703 5184 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:52:23.0703 5184 Cdrom - ok
08:52:23.0703 5184 Changer - ok
08:52:23.0703 5184 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
08:52:23.0718 5184 CiSvc - ok
08:52:23.0734 5184 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
08:52:23.0734 5184 ClipSrv - ok
08:52:23.0796 5184 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:52:23.0812 5184 clr_optimization_v2.0.50727_32 - ok
08:52:23.0843 5184 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
08:52:23.0843 5184 CmBatt - ok
08:52:23.0859 5184 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
08:52:23.0859 5184 CmdIde - ok
08:52:23.0890 5184 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
08:52:23.0890 5184 Compbatt - ok
08:52:23.0890 5184 COMSysApp - ok
08:52:23.0890 5184 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
08:52:23.0890 5184 Cpqarray - ok
08:52:24.0031 5184 Credential Vault Host Control Service (09fea7fbd6a29e3941a2ffc6f7aeb818) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
08:52:24.0046 5184 Credential Vault Host Control Service - ok
08:52:24.0062 5184 Credential Vault Host Storage (45bf153d51ed8790de8f8446b11deb57) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
08:52:24.0062 5184 Credential Vault Host Storage - ok
08:52:24.0093 5184 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
08:52:24.0093 5184 CryptSvc - ok
08:52:24.0109 5184 cvusbdrv (d1697063e2cdb6575aa46d668ffee825) C:\WINDOWS\system32\Drivers\cvusbdrv.sys
08:52:24.0109 5184 cvusbdrv - ok
08:52:24.0171 5184 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
08:52:24.0171 5184 dac2w2k - ok
08:52:24.0171 5184 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
08:52:24.0171 5184 dac960nt - ok
08:52:24.0312 5184 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
08:52:24.0312 5184 DcomLaunch - ok
08:52:24.0437 5184 dcpsysmgrsvc (f73080d9f2a78472ac8e7947f3f6c6aa) c:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
08:52:24.0437 5184 dcpsysmgrsvc - ok
08:52:24.0484 5184 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
08:52:24.0500 5184 Dhcp - ok
08:52:24.0500 5184 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
08:52:24.0500 5184 Disk - ok
08:52:24.0500 5184 dmadmin - ok
08:52:24.0578 5184 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
08:52:24.0609 5184 dmboot - ok
08:52:24.0640 5184 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
08:52:24.0640 5184 dmio - ok
08:52:24.0671 5184 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
08:52:24.0671 5184 dmload - ok
08:52:24.0671 5184 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
08:52:24.0703 5184 dmserver - ok
08:52:24.0734 5184 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
08:52:24.0734 5184 DMusic - ok
08:52:24.0765 5184 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
08:52:24.0765 5184 Dnscache - ok
08:52:24.0796 5184 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
08:52:24.0796 5184 Dot3svc - ok
08:52:24.0796 5184 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
08:52:24.0796 5184 dpti2o - ok
08:52:24.0812 5184 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
08:52:24.0812 5184 drmkaud - ok
08:52:24.0843 5184 e1kexpress (8bed3dbbb13d2c8e1c1c9decec309826) C:\WINDOWS\system32\DRIVERS\e1k5132.sys
08:52:24.0859 5184 e1kexpress - ok
08:52:24.0875 5184 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
08:52:24.0875 5184 EapHost - ok
08:52:25.0000 5184 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
08:52:25.0000 5184 eeCtrl - ok
08:52:25.0031 5184 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:52:25.0031 5184 EraserUtilRebootDrv - ok
08:52:25.0046 5184 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
08:52:25.0046 5184 ERSvc - ok
08:52:25.0078 5184 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
08:52:25.0078 5184 Eventlog - ok
08:52:25.0156 5184 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
08:52:25.0156 5184 EventSystem - ok
08:52:25.0203 5184 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
08:52:25.0203 5184 Fastfat - ok
08:52:25.0250 5184 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:52:25.0250 5184 FastUserSwitchingCompatibility - ok
08:52:25.0296 5184 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
08:52:25.0296 5184 Fax - ok
08:52:25.0296 5184 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
08:52:25.0296 5184 Fdc - ok
08:52:25.0328 5184 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
08:52:25.0343 5184 Fips - ok
08:52:25.0453 5184 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:52:25.0453 5184 FLEXnet Licensing Service - ok
08:52:25.0468 5184 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
08:52:25.0468 5184 Flpydisk - ok
08:52:25.0484 5184 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
08:52:25.0484 5184 FltMgr - ok
08:52:25.0578 5184 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:52:25.0578 5184 FontCache3.0.0.0 - ok
08:52:25.0578 5184 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:52:25.0578 5184 Fs_Rec - ok
08:52:25.0593 5184 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:52:25.0593 5184 Ftdisk - ok
08:52:25.0625 5184 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:52:25.0625 5184 GEARAspiWDM - ok
08:52:25.0640 5184 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:52:25.0640 5184 Gpc - ok
08:52:25.0671 5184 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
08:52:25.0671 5184 HDAudBus - ok
08:52:25.0734 5184 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:52:25.0734 5184 helpsvc - ok
08:52:25.0750 5184 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
08:52:25.0750 5184 HidServ - ok
08:52:25.0765 5184 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:52:25.0765 5184 hidusb - ok
08:52:25.0796 5184 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
08:52:25.0796 5184 hkmsvc - ok
08:52:25.0859 5184 HP Port Resolver (c5f00d15aa15cb7f55a027ff75e44bb7) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
08:52:25.0859 5184 HP Port Resolver - ok
08:52:25.0875 5184 HP Status Server (c5a288e4ceef5a26d105117baa3763ab) C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
08:52:25.0875 5184 HP Status Server - ok
08:52:25.0921 5184 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
08:52:25.0921 5184 hpn - ok
08:52:25.0953 5184 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
08:52:25.0953 5184 HPZid412 - ok
08:52:25.0968 5184 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
08:52:25.0984 5184 HPZipr12 - ok
08:52:26.0000 5184 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
08:52:26.0000 5184 HPZius12 - ok
08:52:26.0046 5184 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
08:52:26.0062 5184 HTTP - ok
08:52:26.0078 5184 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
08:52:26.0109 5184 HTTPFilter - ok
08:52:26.0125 5184 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
08:52:26.0125 5184 i2omgmt - ok
08:52:26.0156 5184 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
08:52:26.0156 5184 i2omp - ok
08:52:26.0171 5184 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:52:26.0187 5184 i8042prt - ok
08:52:26.0250 5184 iaStor (26541a068572f650a2fa490726fe81be) C:\WINDOWS\system32\drivers\iaStor.sys
08:52:26.0265 5184 iaStor - ok
08:52:26.0359 5184 IAStorDataMgrSvc (31a0e93cdf29007d6c6fffb632f375ed) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
08:52:26.0375 5184 IAStorDataMgrSvc - ok
08:52:26.0546 5184 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:52:26.0562 5184 idsvc - ok
08:52:26.0781 5184 IDSxpx86 (c924bf6d42b3d9292268ff1998596bd1) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\IPSDefs\20120515.001\IDSxpx86.sys
08:52:26.0781 5184 IDSxpx86 - ok
08:52:26.0937 5184 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
08:52:26.0937 5184 Imapi - ok
08:52:26.0968 5184 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
08:52:26.0984 5184 ImapiService - ok
08:52:26.0984 5184 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
08:52:27.0000 5184 ini910u - ok
08:52:27.0062 5184 InstallFilterService (987a2cc8ec0e86caa2d8068b1ed7b441) C:\Program Files\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
08:52:27.0078 5184 InstallFilterService - ok
08:52:27.0093 5184 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
08:52:27.0093 5184 IntelIde - ok
08:52:27.0109 5184 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:52:27.0109 5184 intelppm - ok
08:52:27.0125 5184 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
08:52:27.0125 5184 Ip6Fw - ok
08:52:27.0125 5184 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:52:27.0140 5184 IpFilterDriver - ok
08:52:27.0140 5184 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:52:27.0140 5184 IpInIp - ok
08:52:27.0171 5184 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:52:27.0171 5184 IpNat - ok
08:52:27.0281 5184 iPod Service (33642c17c232aa272c68e446a2619899) C:\Program Files\iPod\bin\iPodService.exe
08:52:27.0296 5184 iPod Service - ok
08:52:27.0328 5184 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:52:27.0328 5184 IPSec - ok
08:52:27.0343 5184 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
08:52:27.0343 5184 IRENUM - ok
08:52:27.0375 5184 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:52:27.0375 5184 isapnp - ok
08:52:27.0453 5184 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe
08:52:27.0453 5184 JavaQuickStarterService - ok
08:52:27.0468 5184 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:52:27.0468 5184 Kbdclass - ok
08:52:27.0484 5184 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:52:27.0484 5184 kbdhid - ok
08:52:27.0531 5184 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
08:52:27.0531 5184 kmixer - ok
08:52:27.0562 5184 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
08:52:27.0562 5184 KSecDD - ok
08:52:27.0593 5184 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
08:52:27.0593 5184 LanmanServer - ok
08:52:27.0625 5184 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
08:52:27.0625 5184 lanmanworkstation - ok
08:52:27.0625 5184 lbrtfdc - ok
08:52:27.0656 5184 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
08:52:27.0656 5184 LmHosts - ok
08:52:27.0750 5184 MatSvc (9f04b1edc2dca29bbea94f37dacb55b7) C:\Program Files\Microsoft Fix it Center\Matsvc.exe
08:52:27.0750 5184 MatSvc - ok
08:52:27.0828 5184 McciCMService (e6cb119ef2e148eaa1a247343550756e) C:\Program Files\Common Files\Motive\McciCMService.exe
08:52:27.0843 5184 McciCMService - ok
08:52:27.0859 5184 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
08:52:27.0875 5184 Messenger - ok
08:52:27.0906 5184 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
08:52:27.0906 5184 mnmdd - ok
08:52:27.0906 5184 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
08:52:27.0921 5184 mnmsrvc - ok
08:52:27.0921 5184 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
08:52:27.0937 5184 Modem - ok
08:52:27.0937 5184 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:52:27.0953 5184 Mouclass - ok
08:52:27.0968 5184 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:52:27.0968 5184 mouhid - ok
08:52:28.0000 5184 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
08:52:28.0000 5184 MountMgr - ok
08:52:28.0046 5184 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
08:52:28.0046 5184 MozillaMaintenance - ok
08:52:28.0078 5184 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
08:52:28.0078 5184 mraid35x - ok
08:52:28.0093 5184 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
08:52:28.0093 5184 MREMP50 - ok
08:52:28.0093 5184 MREMPR5 - ok
08:52:28.0093 5184 MRENDIS5 - ok
08:52:28.0109 5184 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
08:52:28.0109 5184 MRESP50 - ok
08:52:28.0125 5184 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:52:28.0125 5184 MRxDAV - ok
08:52:28.0187 5184 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:52:28.0203 5184 MRxSmb - ok
08:52:28.0250 5184 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
08:52:28.0250 5184 MSDTC - ok
08:52:28.0250 5184 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
08:52:28.0250 5184 Msfs - ok
08:52:28.0250 5184 MSIServer - ok
08:52:28.0265 5184 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:52:28.0265 5184 MSKSSRV - ok
08:52:28.0281 5184 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:52:28.0281 5184 MSPCLOCK - ok
08:52:28.0296 5184 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
08:52:28.0296 5184 MSPQM - ok
08:52:28.0312 5184 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:52:28.0312 5184 mssmbios - ok
08:52:28.0328 5184 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
08:52:28.0328 5184 Mup - ok
08:52:28.0343 5184 NAL (428c611928df3e96538a482117e659f7) C:\WINDOWS\system32\Drivers\iqvw32.sys
08:52:28.0359 5184 NAL - ok
08:52:28.0390 5184 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
08:52:28.0421 5184 napagent - ok
08:52:28.0609 5184 NAVENG (f11033730b38260b6892e837c457fb4b) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120515.024\NAVENG.SYS
08:52:28.0609 5184 NAVENG - ok
08:52:28.0765 5184 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120515.024\NAVEX15.SYS
08:52:28.0781 5184 NAVEX15 - ok
08:52:28.0921 5184 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
08:52:28.0937 5184 NDIS - ok
08:52:28.0968 5184 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:52:28.0968 5184 NdisTapi - ok
08:52:28.0984 5184 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:52:28.0984 5184 Ndisuio - ok
08:52:29.0000 5184 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:52:29.0000 5184 NdisWan - ok
08:52:29.0031 5184 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
08:52:29.0031 5184 NDProxy - ok
08:52:29.0046 5184 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
08:52:29.0046 5184 NetBIOS - ok
08:52:29.0093 5184 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
08:52:29.0093 5184 NetBT - ok
08:52:29.0125 5184 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
08:52:29.0125 5184 NetDDE - ok
08:52:29.0125 5184 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
08:52:29.0125 5184 NetDDEdsdm - ok
08:52:29.0156 5184 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:29.0156 5184 Netlogon - ok
08:52:29.0203 5184 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
08:52:29.0203 5184 Netman - ok
08:52:29.0296 5184 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:52:29.0296 5184 NetTcpPortSharing - ok
08:52:29.0328 5184 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:52:29.0328 5184 NIC1394 - ok
08:52:29.0453 5184 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files\Norton Internet Security\Engine\19.7.0.9\ccSvcHst.exe
08:52:29.0468 5184 NIS - ok
08:52:29.0531 5184 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
08:52:29.0531 5184 Nla - ok
08:52:29.0546 5184 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
08:52:29.0546 5184 Npfs - ok
08:52:29.0656 5184 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
08:52:29.0687 5184 Ntfs - ok
08:52:29.0718 5184 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:29.0718 5184 NtLmSsp - ok
08:52:29.0781 5184 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
08:52:29.0812 5184 NtmsSvc - ok
08:52:29.0843 5184 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
08:52:29.0843 5184 Null - ok
08:52:30.0500 5184 nv (0d3d6537671d6a31a58c654f82b77110) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:52:30.0640 5184 nv - ok
08:52:30.0859 5184 NVHDA (2d2b7b3ad297c659efa1d02852ca9860) C:\WINDOWS\system32\drivers\nvhda32.sys
08:52:30.0859 5184 NVHDA - ok
08:52:31.0359 5184 NVIDIA Performance Driver Service (8234151a1d602d3175de4859e32d5289) C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
08:52:31.0437 5184 NVIDIA Performance Driver Service - ok
08:52:31.0562 5184 nvsvc (87ff0b427c6645dfaf15ccd6ae7823b6) C:\WINDOWS\system32\nvsvc32.exe
08:52:31.0578 5184 nvsvc - ok
08:52:31.0625 5184 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:52:31.0625 5184 NwlnkFlt - ok
08:52:31.0640 5184 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:52:31.0656 5184 NwlnkFwd - ok
08:52:31.0796 5184 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:52:31.0796 5184 odserv - ok
08:52:31.0859 5184 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:52:31.0875 5184 ohci1394 - ok
08:52:31.0890 5184 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:52:31.0890 5184 ose - ok
08:52:31.0921 5184 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
08:52:31.0921 5184 Parport - ok
08:52:31.0937 5184 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
08:52:31.0937 5184 PartMgr - ok
08:52:31.0953 5184 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
08:52:31.0953 5184 ParVdm - ok
08:52:31.0953 5184 PBADRV (4088c1ecd1f54281a92fa663b0fdc36f) C:\WINDOWS\system32\DRIVERS\PBADRV.sys
08:52:31.0953 5184 PBADRV - ok
08:52:31.0968 5184 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
08:52:31.0968 5184 PCI - ok
08:52:31.0968 5184 PCIDump - ok
08:52:31.0984 5184 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
08:52:31.0984 5184 PCIIde - ok
08:52:32.0000 5184 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
08:52:32.0000 5184 Pcmcia - ok
08:52:32.0000 5184 PDCOMP - ok
08:52:32.0000 5184 PDFRAME - ok
08:52:32.0015 5184 PDRELI - ok
08:52:32.0015 5184 PDRFRAME - ok
08:52:32.0062 5184 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
08:52:32.0062 5184 perc2 - ok
08:52:32.0062 5184 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
08:52:32.0062 5184 perc2hib - ok
08:52:32.0093 5184 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
08:52:32.0109 5184 PlugPlay - ok
08:52:32.0140 5184 Pml Driver HPZ12 (2d091a99624fb9e7eef0a86d872ec0c3) C:\WINDOWS\system32\HPZipm12.exe
08:52:32.0140 5184 Pml Driver HPZ12 - ok
08:52:32.0187 5184 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:32.0187 5184 PolicyAgent - ok
08:52:32.0218 5184 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:52:32.0218 5184 PptpMiniport - ok
08:52:32.0218 5184 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:32.0218 5184 ProtectedStorage - ok
08:52:32.0250 5184 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
08:52:32.0250 5184 PSched - ok
08:52:32.0281 5184 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
08:52:32.0281 5184 PSI_SVC_2 - ok
08:52:32.0296 5184 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:52:32.0296 5184 Ptilink - ok
08:52:32.0312 5184 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
08:52:32.0312 5184 ql1080 - ok
08:52:32.0312 5184 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
08:52:32.0328 5184 Ql10wnt - ok
08:52:32.0343 5184 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
08:52:32.0343 5184 ql12160 - ok
08:52:32.0343 5184 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
08:52:32.0343 5184 ql1240 - ok
08:52:32.0359 5184 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
08:52:32.0359 5184 ql1280 - ok
08:52:32.0359 5184 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:52:32.0359 5184 RasAcd - ok
08:52:32.0390 5184 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
08:52:32.0390 5184 RasAuto - ok
08:52:32.0406 5184 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:52:32.0406 5184 Rasl2tp - ok
08:52:32.0421 5184 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
08:52:32.0421 5184 RasMan - ok
08:52:32.0437 5184 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:52:32.0437 5184 RasPppoe - ok
08:52:32.0437 5184 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
08:52:32.0437 5184 Raspti - ok
08:52:32.0484 5184 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:52:32.0484 5184 Rdbss - ok
08:52:32.0515 5184 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:52:32.0515 5184 RDPCDD - ok
08:52:32.0531 5184 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:52:32.0531 5184 rdpdr - ok
08:52:32.0578 5184 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
08:52:32.0578 5184 RDPWD - ok
08:52:32.0593 5184 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
08:52:32.0593 5184 RDSessMgr - ok
08:52:32.0625 5184 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
08:52:32.0625 5184 redbook - ok
08:52:32.0687 5184 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
08:52:32.0687 5184 RemoteAccess - ok
08:52:32.0703 5184 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
08:52:32.0703 5184 RemoteRegistry - ok
08:52:32.0750 5184 risdpcie (5312f15dbeb47d906dca2e334dc4c97d) C:\WINDOWS\system32\DRIVERS\risdpe86.sys
08:52:32.0750 5184 risdpcie - ok
08:52:32.0765 5184 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
08:52:32.0765 5184 RpcLocator - ok
08:52:32.0828 5184 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
08:52:32.0828 5184 RpcSs - ok
08:52:32.0859 5184 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
08:52:32.0859 5184 RSVP - ok
08:52:32.0875 5184 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
08:52:32.0875 5184 SamSs - ok
08:52:32.0890 5184 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
08:52:32.0906 5184 SCardSvr - ok
08:52:32.0921 5184 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
08:52:32.0937 5184 Schedule - ok
08:52:32.0953 5184 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
08:52:32.0953 5184 sdbus - ok
08:52:32.0968 5184 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:52:32.0968 5184 Secdrv - ok
08:52:32.0984 5184 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
08:52:32.0984 5184 seclogon - ok
08:52:33.0187 5184 SecureStorageService (e396fbc469df73692318dc90ad13ce86) C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe
08:52:33.0203 5184 SecureStorageService - ok
08:52:33.0218 5184 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
08:52:33.0218 5184 SENS - ok
08:52:33.0234 5184 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
08:52:33.0234 5184 Serial - ok
08:52:33.0281 5184 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
08:52:33.0281 5184 Sfloppy - ok
08:52:33.0343 5184 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
08:52:33.0359 5184 SharedAccess - ok
08:52:33.0390 5184 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:52:33.0390 5184 ShellHWDetection - ok
08:52:33.0406 5184 Simbad - ok
08:52:33.0421 5184 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
08:52:33.0421 5184 sisagp - ok
08:52:33.0421 5184 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
08:52:33.0421 5184 Sparrow - ok
08:52:33.0453 5184 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
08:52:33.0453 5184 splitter - ok
08:52:33.0531 5184 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
08:52:33.0531 5184 Spooler - ok
08:52:33.0562 5184 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
08:52:33.0562 5184 sr - ok
08:52:33.0609 5184 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
08:52:33.0609 5184 srservice - ok
08:52:33.0703 5184 SRTSP (9dd258ee034afd36259cb7357e19d0b1) C:\WINDOWS\System32\Drivers\NIS\1307000.009\SRTSP.SYS
08:52:33.0703 5184 SRTSP - ok
08:52:33.0750 5184 SRTSPX (0cc3a10f363436c7b478419eb73f8d91) C:\WINDOWS\system32\drivers\NIS\1307000.009\SRTSPX.SYS
08:52:33.0750 5184 SRTSPX - ok
08:52:33.0796 5184 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
08:52:33.0796 5184 Srv - ok
08:52:33.0828 5184 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
08:52:33.0843 5184 SSDPSRV - ok
08:52:33.0937 5184 STacSV (95e100d2aab23a591a01655e6063d36e) C:\Program Files\IDT\WDM\stacsv.exe
08:52:33.0937 5184 STacSV - ok
08:52:33.0984 5184 stdflt (a5b83c8050572622e5c43b5b3326a129) C:\WINDOWS\system32\DRIVERS\stdfltn.sys
08:52:33.0984 5184 stdflt - ok
08:52:34.0125 5184 STHDA (72c411579358a57941f8d0b3a67175b4) C:\WINDOWS\system32\drivers\sthda.sys
08:52:34.0140 5184 STHDA - ok
08:52:34.0296 5184 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
08:52:34.0296 5184 StillCam - ok
08:52:34.0343 5184 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
08:52:34.0359 5184 stisvc - ok
08:52:34.0390 5184 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
08:52:34.0390 5184 swenum - ok
08:52:34.0406 5184 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
08:52:34.0406 5184 swmidi - ok
08:52:34.0406 5184 SwPrv - ok
08:52:34.0421 5184 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
08:52:34.0421 5184 symc810 - ok
08:52:34.0437 5184 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
08:52:34.0437 5184 symc8xx - ok
08:52:34.0500 5184 SymDS (690fa0e61b90084c4d9a721bd4f3d779) C:\WINDOWS\system32\drivers\NIS\1307000.009\SYMDS.SYS
08:52:34.0515 5184 SymDS - ok
08:52:34.0609 5184 SymEFA (4e55148a2e044d02245cbcdbb266b98c) C:\WINDOWS\system32\drivers\NIS\1307000.009\SYMEFA.SYS
08:52:34.0625 5184 SymEFA - ok
08:52:34.0656 5184 SymEvent (555fb450fe6908600310e990738b41d6) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
08:52:34.0656 5184 SymEvent - ok
08:52:34.0718 5184 SymIM (a7100ea17ed9eaf365362a05bf430e77) C:\WINDOWS\system32\DRIVERS\SymIM.sys
08:52:34.0718 5184 SymIM - ok
08:52:34.0718 5184 SymIMMP (a7100ea17ed9eaf365362a05bf430e77) C:\WINDOWS\system32\DRIVERS\SymIM.sys
08:52:34.0718 5184 SymIMMP - ok
08:52:34.0750 5184 SymIRON (2c356cca706505cf63cbe39d532b9236) C:\WINDOWS\system32\drivers\NIS\1307000.009\Ironx86.SYS
08:52:34.0750 5184 SymIRON - ok
08:52:34.0796 5184 SYMTDI (508bd882040f9cb12319e3a4fc78edb9) C:\WINDOWS\System32\Drivers\NIS\1307000.009\SYMTDI.SYS
08:52:34.0796 5184 SYMTDI - ok
08:52:34.0812 5184 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
08:52:34.0812 5184 sym_hi - ok
08:52:34.0812 5184 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
08:52:34.0812 5184 sym_u3 - ok
08:52:34.0843 5184 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
08:52:34.0843 5184 sysaudio - ok
08:52:34.0875 5184 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
08:52:34.0875 5184 SysmonLog - ok
08:52:34.0906 5184 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
08:52:34.0906 5184 TapiSrv - ok
08:52:34.0953 5184 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:52:34.0953 5184 Tcpip - ok
08:52:35.0125 5184 tcsd_win32.exe (69f1a38a6dbfe682491cb61a596662e3) C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
08:52:35.0156 5184 tcsd_win32.exe - ok
08:52:35.0343 5184 TdmService (a405d39f4dd131954c39114fba31a5e0) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
08:52:35.0375 5184 TdmService - ok
08:52:35.0500 5184 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
08:52:35.0500 5184 TDPIPE - ok
08:52:35.0515 5184 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
08:52:35.0515 5184 TDTCP - ok
08:52:35.0546 5184 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
08:52:35.0546 5184 TermDD - ok
08:52:35.0609 5184 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
08:52:35.0625 5184 TermService - ok
08:52:35.0656 5184 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
08:52:35.0656 5184 Themes - ok
08:52:35.0671 5184 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
08:52:35.0671 5184 TlntSvr - ok
08:52:35.0703 5184 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
08:52:35.0703 5184 TosIde - ok
08:52:35.0718 5184 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
08:52:35.0734 5184 TrkWks - ok
08:52:35.0734 5184 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
08:52:35.0734 5184 Udfs - ok
08:52:35.0750 5184 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
08:52:35.0750 5184 ultra - ok
08:52:35.0796 5184 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
08:52:35.0812 5184 Update - ok
08:52:35.0828 5184 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
08:52:35.0843 5184 upnphost - ok
08:52:35.0859 5184 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
08:52:35.0859 5184 UPS - ok
08:52:35.0921 5184 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
08:52:35.0921 5184 usbaudio - ok
08:52:35.0937 5184 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:52:35.0937 5184 usbccgp - ok
08:52:35.0953 5184 USBCCID (64ca8ed4b0980aae46beb3727046e860) C:\WINDOWS\system32\DRIVERS\usbccid.sys
08:52:35.0968 5184 USBCCID - ok
08:52:35.0984 5184 usbehci (4bac8df07f1d8434fc640e677a62204e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:52:35.0984 5184 usbehci - ok
08:52:36.0015 5184 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:52:36.0015 5184 usbhub - ok
08:52:36.0031 5184 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:52:36.0046 5184 usbprint - ok
08:52:36.0062 5184 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:52:36.0062 5184 usbscan - ok
08:52:36.0093 5184 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:52:36.0093 5184 USBSTOR - ok
08:52:36.0109 5184 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
08:52:36.0109 5184 usbuhci - ok
08:52:36.0109 5184 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
08:52:36.0109 5184 VgaSave - ok
08:52:36.0125 5184 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
08:52:36.0125 5184 viaagp - ok
08:52:36.0156 5184 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
08:52:36.0156 5184 ViaIde - ok
08:52:36.0187 5184 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
08:52:36.0187 5184 VolSnap - ok
08:52:36.0265 5184 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
08:52:36.0265 5184 VSS - ok
08:52:36.0312 5184 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
08:52:36.0312 5184 w32time - ok
08:52:36.0328 5184 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:52:36.0328 5184 Wanarp - ok
08:52:36.0359 5184 WavxDMgr (81f117b7834fa0b78c2354208d185528) C:\WINDOWS\system32\DRIVERS\WavxDMgr.sys
08:52:36.0375 5184 WavxDMgr - ok
08:52:36.0453 5184 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
08:52:36.0468 5184 Wdf01000 - ok
08:52:36.0468 5184 WDICA - ok
08:52:36.0484 5184 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
08:52:36.0500 5184 wdmaud - ok
08:52:36.0515 5184 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
08:52:36.0515 5184 WebClient - ok
08:52:36.0640 5184 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
08:52:36.0640 5184 winmgmt - ok
08:52:36.0750 5184 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
08:52:36.0796 5184 WinRM - ok
08:52:36.0796 5184 wltrysvc - ok
08:52:36.0828 5184 WmdmPmSN (c7e39ea41233e9f5b86c8da3a9f1e4a8) C:\WINDOWS\system32\mspmsnsv.dll
08:52:36.0828 5184 WmdmPmSN - ok
08:52:36.0906 5184 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
08:52:36.0921 5184 Wmi - ok
08:52:37.0015 5184 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
08:52:37.0015 5184 WmiAcpi - ok
08:52:37.0031 5184 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
08:52:37.0046 5184 WmiApSrv - ok
08:52:37.0078 5184 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
08:52:37.0078 5184 wscsvc - ok
08:52:37.0093 5184 WSearch - ok
08:52:37.0109 5184 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
08:52:37.0109 5184 wuauserv - ok
08:52:37.0156 5184 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
08:52:37.0156 5184 WZCSVC - ok
08:52:37.0203 5184 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
08:52:37.0218 5184 xmlprov - ok
08:52:37.0265 5184 YahooAUService - ok
08:52:37.0296 5184 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
08:52:38.0312 5184 \Device\Harddisk0\DR0 - ok
08:52:38.0343 5184 Boot (0x1200) (91f7c0e3e233cbe18c77cfa070926b4c) \Device\Harddisk0\DR0\Partition0
08:52:38.0343 5184 \Device\Harddisk0\DR0\Partition0 - ok
08:52:38.0343 5184 ============================================================
08:52:38.0343 5184 Scan finished
08:52:38.0343 5184 ============================================================
08:52:38.0343 5476 Detected object count: 0
08:52:38.0343 5476 Actual detected object count: 0
08:55:13.0593 4428 Deinitialize success


Working on the other now. :)

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:30 PM

Posted 16 May 2012 - 11:17 AM

Actually you posted TDSSkiller log twice :thumbup2:

#10 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 11:33 AM

Sorry about that.

Here's gmer:

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-05-16 10:24:38
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 TOSHIBA_ rev.LH00
Running: bivgkksy[1].exe; Driver: C:\DOCUME~1\RayRay\LOCALS~1\Temp\fxtdrpob.sys


---- System - GMER 1.0.15 ----

SSDT 8892EA28 ZwAlertResumeThread
SSDT 8826BC90 ZwAlertThread
SSDT 88969108 ZwAllocateVirtualMemory
SSDT 8826B0A0 ZwAssignProcessToJobObject
SSDT 88A4A268 ZwConnectPort
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS (Symantec Event Library/Symantec Corporation) ZwCreateKey [0xB590ED40]
SSDT 88972938 ZwCreateMutant
SSDT 88304080 ZwCreateSymbolicLinkObject
SSDT 88926F58 ZwCreateThread
SSDT 8826B180 ZwDebugActiveProcess
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS (Symantec Event Library/Symantec Corporation) ZwDeleteKey [0xB590EFC0]
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS (Symantec Event Library/Symantec Corporation) ZwDeleteValueKey [0xB590F680]
SSDT 8896D0E8 ZwDuplicateObject
SSDT 8890C538 ZwFreeVirtualMemory
SSDT 88972A28 ZwImpersonateAnonymousToken
SSDT 8892E948 ZwImpersonateThread
SSDT 88BE6428 ZwLoadDriver
SSDT 88943AC8 ZwMapViewOfSection
SSDT 88957F90 ZwOpenEvent
SSDT 883060E0 ZwOpenProcess
SSDT 8892E850 ZwOpenProcessToken
SSDT 889531B8 ZwOpenSection
SSDT 8896D008 ZwOpenThread
SSDT 88304170 ZwProtectVirtualMemory
SSDT 8826BD70 ZwResumeThread
SSDT 8826BEA0 ZwSetContextThread
SSDT 8826BF80 ZwSetInformationProcess
SSDT 88953070 ZwSetSystemInformation
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS (Symantec Event Library/Symantec Corporation) ZwSetValueKey [0xB590F910]
SSDT 88957EB0 ZwSuspendProcess
SSDT 8896B840 ZwSuspendThread
SSDT 8892BBC0 ZwTerminateProcess
SSDT 8896B920 ZwTerminateThread
SSDT 88943A08 ZwUnmapViewOfSection
SSDT 8890C628 ZwWriteVirtualMemory

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwCallbackReturn + 2C0C 805044C4 8 Bytes JMP BC908892
.text ntkrnlpa.exe!ZwCallbackReturn + 2CEC 805045A4 4 Bytes [E8, D0, 96, 88]
.text ntkrnlpa.exe!ZwCallbackReturn + 2D48 80504600 4 Bytes JMP A198CE97
? SYMDS.SYS The system cannot find the file specified. !
? SYMEFA.SYS The system cannot find the file specified. !
.text C:\WINDOWS\system32\DRIVERS\nv4_mini.sys section is writeable [0xB7274380, 0x3E6515, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!DialogBoxParamW 7E4247AB 5 Bytes JMP 3E215505 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!CreateWindowExW 7E42D0A3 5 Bytes JMP 3E2EDB14 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!DialogBoxIndirectParamW 7E432072 5 Bytes JMP 3E3E53AF C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!MessageBoxIndirectA 7E43A082 5 Bytes JMP 3E3E52E1 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!DialogBoxParamA 7E43B144 5 Bytes JMP 3E3E534C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!MessageBoxExW 7E450838 5 Bytes JMP 3E3E51B2 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!MessageBoxExA 7E45085C 5 Bytes JMP 3E3E5214 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!DialogBoxIndirectParamA 7E456D7D 5 Bytes JMP 3E3E5412 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[888] USER32.dll!MessageBoxIndirectW 7E4664D5 5 Bytes JMP 3E3E5276 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\WINDOWS\system32\SearchIndexer.exe[1900] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 00585C0C C:\WINDOWS\system32\MSSRCH.DLL (mssrch.dll/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] ntdll.dll!NtMapViewOfSection 7C90D51E 5 Bytes JMP 03D3003A
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 03D300F7
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] kernel32.dll!VirtualProtectEx + 6E 7C801ACF 7 Bytes JMP 03D303D2
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] kernel32.dll!ReadProcessMemory + 3E 7C80220E 7 Bytes JMP 03D301B0
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] kernel32.dll!lstrlenW + 43 7C809AEC 7 Bytes JMP 03D3031C
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] kernel32.dll!GetVersionExA + D3 7C812C51 7 Bytes JMP 03D30488
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] kernel32.dll!GetProcessHandleCount + 35 7C86229F 7 Bytes JMP 03D30266
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!DialogBoxParamW 7E4247AB 5 Bytes JMP 3E215505 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 3E2E9AA5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!CallNextHookEx 7E42B3C6 5 Bytes JMP 3E2DD119 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!CreateWindowExW 7E42D0A3 5 Bytes JMP 3E2EDB14 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 3E254686 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!DialogBoxIndirectParamW 7E432072 5 Bytes JMP 3E3E53AF C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!MessageBoxIndirectA 7E43A082 5 Bytes JMP 3E3E52E1 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!DialogBoxParamA 7E43B144 5 Bytes JMP 3E3E534C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!MessageBoxExW 7E450838 5 Bytes JMP 3E3E51B2 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!MessageBoxExA 7E45085C 5 Bytes JMP 3E3E5214 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!DialogBoxIndirectParamA 7E456D7D 5 Bytes JMP 3E3E5412 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] USER32.dll!MessageBoxIndirectW 7E4664D5 5 Bytes JMP 3E3E5276 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] ole32.dll!CreateBindCtx + B5F 774FF15F 7 Bytes JMP 03D305F8
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] ole32.dll!CoCreateInstance 774FF1BC 5 Bytes JMP 3E2EDB70 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] ole32.dll!CoImpersonateClient + 51 77515200 7 Bytes JMP 03D3053E
.text C:\Program Files\Internet Explorer\iexplore.exe[3548] ole32.dll!OleLoadFromStream 7752983B 5 Bytes JMP 3E3E5717 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] ntdll.dll!NtMapViewOfSection 7C90D51E 5 Bytes JMP 037F00B3
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] ntdll.dll!NtSetInformationProcess 7C90DC9E 5 Bytes JMP 037F016C
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] kernel32.dll!VirtualProtectEx + 6E 7C801ACF 7 Bytes JMP 037F0447
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] kernel32.dll!ReadProcessMemory + 3E 7C80220E 7 Bytes JMP 037F0225
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] kernel32.dll!lstrlenW + 43 7C809AEC 7 Bytes JMP 037F0391
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] kernel32.dll!GetVersionExA + D3 7C812C51 7 Bytes JMP 037F04FD
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] kernel32.dll!GetProcessHandleCount + 35 7C86229F 7 Bytes JMP 037F02DB
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!DialogBoxParamW 7E4247AB 5 Bytes JMP 3E215505 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!SetWindowsHookExW 7E42820F 5 Bytes JMP 3E2E9AA5 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!CallNextHookEx 7E42B3C6 5 Bytes JMP 3E2DD119 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!CreateWindowExW 7E42D0A3 5 Bytes JMP 3E2EDB14 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!UnhookWindowsHookEx 7E42D5F3 5 Bytes JMP 3E254686 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!DialogBoxIndirectParamW 7E432072 5 Bytes JMP 3E3E53AF C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!MessageBoxIndirectA 7E43A082 5 Bytes JMP 3E3E52E1 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!DialogBoxParamA 7E43B144 5 Bytes JMP 3E3E534C C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!MessageBoxExW 7E450838 5 Bytes JMP 3E3E51B2 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!MessageBoxExA 7E45085C 5 Bytes JMP 3E3E5214 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!DialogBoxIndirectParamA 7E456D7D 5 Bytes JMP 3E3E5412 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] USER32.dll!MessageBoxIndirectW 7E4664D5 5 Bytes JMP 3E3E5276 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] ole32.dll!CreateBindCtx + B5F 774FF15F 7 Bytes JMP 037F0671
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] ole32.dll!CoCreateInstance 774FF1BC 5 Bytes JMP 3E2EDB70 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] ole32.dll!CoImpersonateClient + 51 77515200 7 Bytes JMP 037F05B7
.text C:\Program Files\Internet Explorer\iexplore.exe[4772] ole32.dll!OleLoadFromStream 7752983B 5 Bytes JMP 3E3E5717 C:\WINDOWS\system32\IEFRAME.dll (Internet Explorer/Microsoft Corporation)

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Program Files\Internet Explorer\iexplore.exe[3548] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] [451F1ACB] C:\Program Files\Internet Explorer\xpshims.dll (Internet Explorer Compatibility Shims for XP/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

Device Ntfs.sys (NT File System Driver/Microsoft Corporation)
Device Fastfat.SYS (Fast FAT File System Driver/Microsoft Corporation)

AttachedDevice \Driver\Tcpip \Device\Ip SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Tcp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\Udp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)
AttachedDevice \Driver\Tcpip \Device\RawIp SYMTDI.SYS (Network Dispatch Driver/Symantec Corporation)

Device mrxsmb.sys (Windows NT SMB Minirdr/Microsoft Corporation)

AttachedDevice fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

---- EOF - GMER 1.0.15 ----


I can't get Avast to work 100%. I've made some progress but it freezes at C:Document and Settings/

Giving it another go.

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:30 PM

Posted 16 May 2012 - 11:35 AM

Ignore ASWMBR

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

After running these scans

Try to run aswmbr

good luck

#12 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 11:44 AM

ok on it. Did those logs help or show anything suspicious?

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:30 PM

Posted 16 May 2012 - 11:51 AM

Nothing suspicious yet

#14 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 01:57 PM

Hi,
here's minitoolbox logs, the rest thus far have turned nothing up.

MiniToolBox by Farbar Version: 18-01-2012
Ran by RayRay (administrator) on 16-05-2012 at 14:53:04
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost
127.0.0.1 localhost

========================= IP Configuration: ================================

DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
1394 Net Adapter = 1394 Connection (Connected)
Intel® 82577LM Gigabit Network Connection = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Ray

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card

Physical Address. . . . . . . . . : 70-F1-A1-E7-4E-D8

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.221

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Wednesday, May 16, 2012 2:04:01 PM

Lease Expires . . . . . . . . . . : Thursday, May 17, 2012 2:04:01 PM



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel® 82577LM Gigabit Network Connection

Physical Address. . . . . . . . . : 5C-26-0A-2C-36-89

Server: dslrouter
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.229.160, 74.125.229.161, 74.125.229.162, 74.125.229.163
74.125.229.164, 74.125.229.165, 74.125.229.166, 74.125.229.167, 74.125.229.168
74.125.229.169, 74.125.229.174



Pinging google.com [74.125.229.174] with 32 bytes of data:



Reply from 74.125.229.174: bytes=32 time=19ms TTL=52

Reply from 74.125.229.174: bytes=32 time=19ms TTL=52



Ping statistics for 74.125.229.174:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 19ms, Maximum = 19ms, Average = 19ms

Server: dslrouter
Address: 192.168.1.254

Name: yahoo.com
Addresses: 209.191.122.70, 72.30.38.140, 98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=161ms TTL=44

Reply from 98.139.183.24: bytes=32 time=99ms TTL=46



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 99ms, Maximum = 161ms, Average = 130ms

Server: dslrouter
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...70 f1 a1 e7 4e d8 ...... DW1501 Wireless-N WLAN Half-Mini Card - Packet Scheduler Miniport
0x3 ...5c 26 0a 2c 36 89 ...... Intel® 82577LM Gigabit Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.221 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.221 192.168.1.221 20
192.168.1.0 255.255.255.0 192.168.1.221 192.168.1.221 25
192.168.1.221 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.221 192.168.1.221 25
224.0.0.0 240.0.0.0 192.168.1.221 192.168.1.221 25
255.255.255.255 255.255.255.255 192.168.1.221 192.168.1.221 1
255.255.255.255 255.255.255.255 192.168.1.221 3 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/16/2012 02:02:20 PM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (05/16/2012 01:59:44 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (05/16/2012 01:59:44 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.

Error: (05/16/2012 01:58:15 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (05/16/2012 01:58:15 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.

Error: (05/16/2012 01:57:58 PM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (05/16/2012 01:40:01 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (05/16/2012 01:40:01 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.

Error: (05/16/2012 01:38:29 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (05/16/2012 01:38:29 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.


System errors:
=============
Error: (05/16/2012 02:02:06 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Cdrom
redbook

Error: (05/16/2012 02:02:02 PM) (Source: Service Control Manager) (User: )
Description: The Yahoo! Updater service failed to start due to the following error:
%%3

Error: (05/16/2012 01:58:07 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Cdrom
redbook

Error: (05/16/2012 01:58:05 PM) (Source: Service Control Manager) (User: )
Description: The Yahoo! Updater service failed to start due to the following error:
%%3

Error: (05/16/2012 01:38:21 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Cdrom
redbook

Error: (05/16/2012 01:38:19 PM) (Source: Service Control Manager) (User: )
Description: The Yahoo! Updater service failed to start due to the following error:
%%3

Error: (05/16/2012 01:24:24 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Cdrom
redbook

Error: (05/16/2012 01:24:20 PM) (Source: Service Control Manager) (User: )
Description: The Yahoo! Updater service failed to start due to the following error:
%%3

Error: (05/16/2012 01:22:28 PM) (Source: DCOM) (User: SYSTEM)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (05/16/2012 01:21:00 PM) (Source: DCOM) (User: RayRay)
Description: DCOM got error "%%1084" attempting to start the service netman with arguments ""
in order to run the server:
{BA126AE5-2166-11D1-B1D0-00805FC1270E}


Microsoft Office Sessions:
=========================
Error: (03/13/2012 03:19:34 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/03/2012 03:44:00 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 7 seconds with 0 seconds of active time. This session ended with a crash.

Error: (10/03/2011 10:50:55 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6562.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 2351 seconds with 1200 seconds of active time. This session ended with a crash.

Error: (08/02/2011 10:37:33 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 11 seconds with 0 seconds of active time. This session ended with a crash.

Error: (07/26/2011 06:14:38 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 2948 seconds with 1500 seconds of active time. This session ended with a crash.

Error: (06/21/2011 10:08:14 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/11/2011 08:10:51 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 21 seconds with 0 seconds of active time. This session ended with a crash.

Error: (05/06/2011 09:17:14 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6550.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.

Error: (02/22/2011 01:53:14 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6550.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

AccelerometerP11 (Version: 2.00.00.12)
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe CSI CS4 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 10 Plugin (Version: 10.2.152.26)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Fonts All (Version: 2.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.96)
Apple Software Update (Version: 2.1.3.127)
att.net Internet Mail
BioAPI Framework (Version: 1.0.1)
Bonjour (Version: 3.0.0.10)
Connect (Version: 1.0.0.1)
Corel Painter Essentials 4 (Version: 4.2)
Dell Backup and Recovery Manager (Version: 1.3)
Dell Control Point (Version: 1.6.468.86)
Dell ControlPoint Security Manager (Version: 1.6.468.86)
Dell ControlVault Host Components Installer (Version: 1.7.459.360)
Dell Embassy Trust Suite by Wave Systems (Version: 03.05.04.002)
Dell Security Device Driver Pack (Version: 1.4.055)
Dell System Manager (Version: 1.5.00000)
Dell Touchpad (Version: 7.1008.101.105)
Document Manager Lite (Version: 06.09.00.159)
DW WLAN Card Utility (Version: 5.60.48.36)
EMBASSY Security Center (Version: 04.00.00.101)
EMBASSY Security Setup (Version: 04.00.00.090)
ESC Home Page Plugin (Version: 04.00.00.018)
Fiddler Syntax-Highlighting Addons
Fiddler2 (Version: 2.3.9.5)
Gemalto (Version: 01.01.00.0000)
Google Talk (remove only)
IETester v0.4.11 (remove only) (Version: 0.4.11)
Intel® Network Connections 15.2.89.0 (Version: 15.2.89.0)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Ipswitch WS_FTP 12 (Version: 12.3)
iTunes (Version: 10.5.0.142)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
kuler (Version: 2.0)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Fix it Center (Version: 1.0.0090)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Small Business 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 6.0 Parser (KB927977) (Version: 6.00.3890.0)
Norton Internet Security (Version: 19.7.0.9)
NTRU TCG Software Stack (Version: 2.1.29)
NVIDIA Drivers (Version: 1.10.60.38)
NVIDIA Performance Drivers (Version: 2.1.0.0)
PDF Settings CS4 (Version: 9.0)
Photoshop Camera Raw (Version: 5.0)
Preboot Manager (Version: 03.00.00.154)
Private Information Manager (Version: 06.04.00.065)
QuickTime (Version: 7.71.80.42)
Safari (Version: 5.34.52.7)
Security Wizards (Version: 01.07.00.026)
Skype™ 5.9 (Version: 5.9.114)
Suite Shared Configuration CS4 (Version: 1.0)
Trusted Drive Manager (Version: 3.3.3.104)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB980182) (Version: 1)
UPEK TouchChip Fingerprint Reader (Version: 1.2.0)
Wave Infrastructure Installer (Version: 07.01.31.0000)
Wave Support Software (Version: 05.10.00.073)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 70.0.170.000)
Windows Driver Package - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (Version: 09/11/2009 1.0.1.6)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Presentation Foundation (Version: 3.0.6920.0)
Windows Rights Management Client Backwards Compatibility SP2 (Version: 5.2.95)
Windows Rights Management Client with Service Pack 2 (Version: 5.2.95)
WinSCP 4.3.2 (Version: 4.3.2)
Xenu's Link Sleuth (Version: 1.3.8)
XML Paper Specification Shared Components Pack 1.0
Yahoo! Software Update

========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 3317.82 MB
Available physical RAM: 2356.64 MB
Total Pagefile: 5199.21 MB
Available Pagefile: 3872.23 MB
Total Virtual: 2047.88 MB
Available Virtual: 1973.75 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:232.77 GB) (Free:197.48 GB) NTFS

========================= Users: ========================================

User accounts for \\RAY

Administrator Guest HelpAssistant
RayRay SUPPORT_388945a0


**** End of log ****


Running avast now.

#15 christopherw

christopherw
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 16 May 2012 - 02:40 PM

Avast is still a no go. What else do you recommend?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users