Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Dell that is forever "Acquiring network address...", but never connects


  • Please log in to reply
15 replies to this topic

#1 treehigg

treehigg

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 12 January 2013 - 01:39 PM

I have a Dell machine that had that crazy DNS virus at the end of 2011. We got rid of the virus, but it has been unable to connect to the internet since then. I have spent plenty of time on the phone with both Norton and our ISP and they both confirm that virus is gone, but neither can get it to connect to the internet. I've spent countless hours over the past year trying to fix it, only to get frustrated and put it back in the closet. Now, my husband has returned to school and is reclaiming our newer laptop, soooo, now I really need to resurrect the old one!

I found a post where someone (Psyche1226) described EXACTLY what I am experiencing. I was very encouraged to see that there was some resolution for them. I went through the steps they did, but got hung up when their reports returned different results than mine. That's when I figured I'd better stop and get some help!!

I've gone through and done everything up to, and including, the FSS and Minitoolbox steps. I have the text files resulting from those. Here are the results:

Attached File  FSS.txt   4.36KB   6 downloads
Attached File  Result.txt   18.46KB   9 downloads

Any help that can be provided is greatly appreciated!! :)

Edited by bloopie, 12 January 2013 - 02:28 PM.
Moved to Aii to double check. ~bloopie


BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 PM

Posted 12 January 2013 - 02:39 PM

Please run the services repair tool reboot and post a new FSS log.

http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe

#3 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 12 January 2013 - 03:07 PM

I ran requested repair tool. Here is the new FSS log:

Farbar Service Scanner Version: 05-01-2013
Ran by User (administrator) on 12-01-2013 at 12:01:07
Running from "E:\"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

afd Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open afd registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open afd registry key. The service key does not exist.
Checking LEGACY_afd: ATTENTION!=====> Unable to open LEGACY_afd\0000 registry key. The key does not exist.


Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error. Yahoo IP is unreachable
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Disabled. The default start type is Auto.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking LEGACY_wscsvc: ATTENTION!=====> Unable to open LEGACY_wscsvc\0000 registry key. The key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wuauserv registry key. The service key does not exist.
Checking LEGACY_wuauserv: ATTENTION!=====> Unable to open LEGACY_wuauserv\0000 registry key. The key does not exist.

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS: "C:\WINDOWS\system32\qmgr.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) Gpc(3) IPSec(5) IWCA(10) NetBT(6) PSched(7) s24trans(8) SYMTDI(11) Tcpip(4)
0x0B00000005000000010000000200000003000000040000000B000000060000000700000008000000090000000A000000
IpSec Tag value is correct.

**** End of log ****

#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 PM

Posted 12 January 2013 - 03:59 PM

Please download the xp file from here.
http://www.smartestcomputing.us.com/files/file/9-registry-network-keys/

Unzip it to your desktop.


Create a restore point.


Right click and select merge on the items below.


wuauserv registry key
wscsvc registry key.
afd registry key

Reboot your machine.

Hit the windows key and r at the same time and type regedit,hit enter.

Navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root
Right-Click Root and select Permissions...
Under Security type while Everyone is selected put a check mark in the box under Allow next to Full Control.
Click Apply and OK.


Close regedit.

Now please merge the items below.


LEGACY_wuauserv
LEGACY_wscsvc
LEGACY_afd

Now reboot your machine and post new Fss log please.

#5 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 12 January 2013 - 04:34 PM

Below is the updated FSS log. Updates, etc. are showing up and it looks like it's connected!!! :clapping: But, I'm not launching any browsers or anything until you say so!

Farbar Service Scanner Version: 05-01-2013
Ran by User (administrator) on 12-01-2013 at 13:28:00
Running from "E:\"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Disabled. The default start type is Auto.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) Gpc(3) IPSec(5) IWCA(10) NetBT(6) PSched(7) s24trans(8) SYMTDI(11) Tcpip(4)
0x0B00000005000000010000000200000003000000040000000B000000060000000700000008000000090000000A000000
IpSec Tag value is correct.

**** End of log ****

#6 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 PM

Posted 12 January 2013 - 05:03 PM

Please do the following.

Download the program below.
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

Run the program hit the scan button allow it to finish.
Then hit the delete button.
Reboot your machine post a new Fss log.
As well as the Rouge killer log please.


Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe



double Click it . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results

Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/

Post the log here,


Update do a quick scan with Superantispyware remove all this finds reboot.
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE
post the log here.


Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.

Edit:
Please re-run Minitoolbox and copy and paste the log.

Edited by InadequateInfirmity, 12 January 2013 - 05:10 PM.


#7 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 12 January 2013 - 06:41 PM

I've run Rogue Killer. Here is the updated FSS log:
Farbar Service Scanner Version: 05-01-2013
Ran by User (administrator) on 12-01-2013 at 15:34:46
Running from "E:\"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is set to Disabled. The default start type is Auto.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.


Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(9) Gpc(3) IPSec(5) IWCA(10) NetBT(6) PSched(7) s24trans(8) SYMTDI(11) Tcpip(4)
0x0B00000005000000010000000200000003000000040000000B000000060000000700000008000000090000000A000000
IpSec Tag value is correct.

**** End of log ****

ROGUE KILLER LOG:
RogueKiller V8.4.3 [Jan 10 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : User [Admin rights]
Mode : Remove -- Date : 01/12/2013 14:41:10

Bad processes : 0

Registry Entries : 2
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[FILEASSO] HKLM\[...]\command : ("C:\Documents and Settings\User\Local Settings\Application Data\euo.exe" -a "C:\Program Files\Internet Explorer\iexplore.exe") -> REPLACED ("C:\Program Files\Internet Explorer\iexplore.exe")

Particular Files / Folders:

Driver : [LOADED]
SSDT[12] : NtAlertResumeThread @ 0x805CAF62 -> HOOKED (Unknown @ 0x85FB3D38)
SSDT[13] : NtAlertThread @ 0x805CAF12 -> HOOKED (Unknown @ 0x85FB3DF8)
SSDT[17] : NtAllocateVirtualMemory @ 0x8059DEEA -> HOOKED (Unknown @ 0x860304D8)
SSDT[19] : NtAssignProcessToJobObject @ 0x805CCA40 -> HOOKED (Unknown @ 0x8602FE68)
SSDT[31] : NtConnectPort @ 0x80599A14 -> HOOKED (Unknown @ 0x86A2DDA8)
SSDT[43] : NtCreateMutant @ 0x8060E210 -> HOOKED (Unknown @ 0x85FB3808)
SSDT[52] : NtCreateSymbolicLinkObject @ 0x805B96E8 -> HOOKED (Unknown @ 0x85F999D8)
SSDT[53] : NtCreateThread @ 0x805C736A -> HOOKED (Unknown @ 0x860C2008)
SSDT[57] : NtDebugActiveProcess @ 0x8063A75E -> HOOKED (Unknown @ 0x8602FF48)
SSDT[68] : NtDuplicateObject @ 0x805B39A2 -> HOOKED (Unknown @ 0x85FD78A0)
SSDT[83] : NtFreeVirtualMemory @ 0x805A8544 -> HOOKED (Unknown @ 0x85F90D80)
SSDT[89] : NtImpersonateAnonymousToken @ 0x805EF7A8 -> HOOKED (Unknown @ 0x85FB38F8)
SSDT[91] : NtImpersonateThread @ 0x805CDBD8 -> HOOKED (Unknown @ 0x85FB3C78)
SSDT[97] : NtLoadDriver @ 0x8057969A -> HOOKED (Unknown @ 0x86B10720)
SSDT[108] : NtMapViewOfSection @ 0x805A75C4 -> HOOKED (Unknown @ 0x85F90C80)
SSDT[114] : NtOpenEvent @ 0x80605C84 -> HOOKED (Unknown @ 0x85FB3480)
SSDT[122] : NtOpenProcess @ 0x805C13F8 -> HOOKED (Unknown @ 0x85FD7D18)
SSDT[123] : NtOpenProcessToken @ 0x805E4466 -> HOOKED (Unknown @ 0x860305A8)
SSDT[125] : NtOpenSection @ 0x8059F84C -> HOOKED (Unknown @ 0x85FB2F70)
SSDT[128] : NtOpenThread @ 0x805C1684 -> HOOKED (Unknown @ 0x85FD7990)
SSDT[137] : NtProtectVirtualMemory @ 0x805ADB5C -> HOOKED (Unknown @ 0x85F99AC8)
SSDT[206] : NtResumeThread @ 0x805CAD9E -> HOOKED (Unknown @ 0x85FB4860)
SSDT[213] : NtSetContextThread @ 0x805C7A8C -> HOOKED (Unknown @ 0x85FC4F48)
SSDT[228] : NtSetInformationProcess @ 0x805C3EB6 -> HOOKED (Unknown @ 0x86017E38)
SSDT[240] : NtSetSystemInformation @ 0x806068D6 -> HOOKED (Unknown @ 0x85FB2E28)
SSDT[253] : NtSuspendProcess @ 0x805CAE66 -> HOOKED (Unknown @ 0x85FB33A0)
SSDT[254] : NtSuspendThread @ 0x805CACD8 -> HOOKED (Unknown @ 0x85FB4940)
SSDT[257] : NtTerminateProcess @ 0x805C8DA6 -> HOOKED (\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS @ 0xF23D1640)
SSDT[258] : NtTerminateThread @ 0x805C8FA0 -> HOOKED (Unknown @ 0x85FC4E68)
SSDT[267] : NtUnmapViewOfSection @ 0x805A83DA -> HOOKED (Unknown @ 0x86017F28)
SSDT[277] : NtWriteVirtualMemory @ 0x805A9964 -> HOOKED (Unknown @ 0x860303E8)
S_SSDT[307] : NtUserAttachThreadInput -> HOOKED (Unknown @ 0x86C56440)
S_SSDT[383] : NtUserGetAsyncKeyState -> HOOKED (Unknown @ 0x86C58D10)
S_SSDT[414] : NtUserGetKeyboardState -> HOOKED (Unknown @ 0x86A279E8)
S_SSDT[416] : NtUserGetKeyState -> HOOKED (Unknown @ 0x86C56B18)
S_SSDT[428] : NtUserGetRawInputData -> HOOKED (Unknown @ 0x86AE21E8)
S_SSDT[460] : NtUserMessageCall -> HOOKED (Unknown @ 0x86B33530)
S_SSDT[475] : NtUserPostMessage -> HOOKED (Unknown @ 0x8618DE30)
S_SSDT[476] : NtUserPostThreadMessage -> HOOKED (Unknown @ 0x86C49A40)
S_SSDT[549] : NtUserSetWindowsHookEx -> HOOKED (Unknown @ 0x86B4A788)
S_SSDT[552] : NtUserSetWinEventHook -> HOOKED (Unknown @ 0x86090578)

Infection : Rogue.AntiSpy-AH

HOSTS File:
--> C:\WINDOWS\system32\drivers\etc\hosts



MBR Check:

+++++ PhysicalDrive0: Hitachi HTS541040G9AT00 +++++
--- User ---
[MBR] 0425b906a6321880241bb5956b9436cd
[BSP] 11d467b9f31927f29d49c85858b51038 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 38154 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Memorex TD Classic 003B USB Device +++++
--- User ---
[MBR] 80c87e195c829a630ea351cd57a2d7da
[BSP] fe609e268a432f796f63603a33c73fb7 : MBR Code unknown
Partition table:
0 - [XXXXXX] FAT16-LBA (0x0e) [VISIBLE] Offset (sectors): 32 | Size: 980 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[2]_D_01122013_02d1441.txt >>
RKreport[1]_S_01122013_02d1440.txt ; RKreport[2]_D_01122013_02d1441.txt



Now on to TDSS Killer...

#8 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 12 January 2013 - 06:43 PM

TDSS Killer Report:

15:39:41.0750 1916 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:39:43.0218 1916 ============================================================
15:39:43.0218 1916 Current date / time: 2013/01/12 15:39:43.0218
15:39:43.0218 1916 SystemInfo:
15:39:43.0218 1916
15:39:43.0218 1916 OS Version: 5.1.2600 ServicePack: 3.0
15:39:43.0218 1916 Product type: Workstation
15:39:43.0218 1916 ComputerName: PREFERRE-D4D022
15:39:43.0218 1916 UserName: User
15:39:43.0218 1916 Windows directory: C:\WINDOWS
15:39:43.0218 1916 System windows directory: C:\WINDOWS
15:39:43.0218 1916 Processor architecture: Intel x86
15:39:43.0218 1916 Number of processors: 1
15:39:43.0218 1916 Page size: 0x1000
15:39:43.0218 1916 Boot type: Normal boot
15:39:43.0218 1916 ============================================================
15:39:46.0312 1916 Drive \Device\Harddisk0\DR0 - Size: 0x950A60000 (37.26 Gb), SectorSize: 0x200, Cylinders: 0x1300, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:39:46.0312 1916 Drive \Device\Harddisk1\DR2 - Size: 0x3D500000 (0.96 Gb), SectorSize: 0x200, Cylinders: 0x7D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:39:46.0312 1916 ============================================================
15:39:46.0312 1916 \Device\Harddisk0\DR0:
15:39:46.0312 1916 MBR partitions:
15:39:46.0312 1916 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A852C1
15:39:46.0312 1916 \Device\Harddisk1\DR2:
15:39:46.0312 1916 MBR partitions:
15:39:46.0312 1916 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xE, StartLBA 0x20, BlocksNum 0x1EA7E0
15:39:46.0312 1916 ============================================================
15:39:46.0328 1916 C: <-> \Device\Harddisk0\DR0\Partition1
15:39:46.0328 1916 ============================================================
15:39:46.0328 1916 Initialize success
15:39:46.0328 1916 ============================================================
15:39:49.0562 2940 ============================================================
15:39:49.0562 2940 Scan started
15:39:49.0562 2940 Mode: Manual;
15:39:49.0562 2940 ============================================================
15:39:50.0953 2940 ================ Scan system memory ========================
15:39:54.0875 2940 System memory - ok
15:39:54.0875 2940 ================ Scan services =============================
15:39:55.0031 2940 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:39:55.0031 2940 !SASCORE - ok
15:39:55.0296 2940 Abiosdsk - ok
15:39:55.0296 2940 abp480n5 - ok
15:39:55.0343 2940 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:39:55.0359 2940 ACPI - ok
15:39:55.0406 2940 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
15:39:55.0437 2940 ACPIEC - ok
15:39:55.0453 2940 adpu160m - ok
15:39:55.0484 2940 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:39:55.0500 2940 aec - ok
15:39:55.0531 2940 [ 076394A345EE5E9E3911FC0F058F4F38 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
15:39:55.0531 2940 AegisP - ok
15:39:55.0593 2940 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:39:55.0593 2940 AFD - ok
15:39:55.0609 2940 Aha154x - ok
15:39:55.0625 2940 aic78u2 - ok
15:39:55.0640 2940 aic78xx - ok
15:39:55.0687 2940 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:39:55.0703 2940 Alerter - ok
15:39:55.0734 2940 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
15:39:55.0750 2940 ALG - ok
15:39:55.0765 2940 AliIde - ok
15:39:55.0781 2940 amsint - ok
15:39:55.0828 2940 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
15:39:55.0828 2940 AppMgmt - ok
15:39:55.0843 2940 asc - ok
15:39:55.0859 2940 asc3350p - ok
15:39:55.0890 2940 asc3550 - ok
15:39:56.0000 2940 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
15:39:56.0031 2940 aspnet_state - ok
15:39:56.0046 2940 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:39:56.0078 2940 AsyncMac - ok
15:39:56.0093 2940 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:39:56.0093 2940 atapi - ok
15:39:56.0109 2940 Atdisk - ok
15:39:56.0218 2940 [ 17EA1C7671DDE20E32E7C9FFE842F46E ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
15:39:56.0234 2940 Ati HotKey Poller - ok
15:39:56.0359 2940 [ 8EB17CF829DF300CC885651CFEAF931C ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
15:39:56.0390 2940 ati2mtag - ok
15:39:56.0453 2940 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:39:56.0453 2940 Atmarpc - ok
15:39:56.0500 2940 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:39:56.0500 2940 AudioSrv - ok
15:39:56.0546 2940 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:39:56.0562 2940 audstub - ok
15:39:56.0609 2940 [ 2ACF06176B9D011567D7F25B83DDD066 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
15:39:56.0640 2940 b57w2k - ok
15:39:56.0703 2940 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:39:56.0703 2940 Beep - ok
15:39:57.0250 2940 [ 9DFFCB249663AA3C2ECB67202280054E ] BHDrvx86 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\BASHDefs\20130107.001\BHDrvx86.sys
15:39:57.0296 2940 BHDrvx86 - ok
15:39:57.0359 2940 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
15:39:57.0375 2940 BITS - ok
15:39:57.0421 2940 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
15:39:57.0437 2940 Browser - ok
15:39:57.0453 2940 BTCFilterService - ok
15:39:57.0500 2940 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:39:57.0500 2940 cbidf2k - ok
15:39:57.0640 2940 [ ACE85AF1C31F68BDFEE9333F6592917E ] ccSet_NIS C:\WINDOWS\system32\drivers\NIS\1309000.009\ccSetx86.sys
15:39:57.0640 2940 ccSet_NIS - ok
15:39:57.0656 2940 cd20xrnt - ok
15:39:57.0703 2940 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:39:57.0718 2940 Cdaudio - ok
15:39:57.0750 2940 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:39:57.0750 2940 Cdfs - ok
15:39:57.0765 2940 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:39:57.0781 2940 Cdrom - ok
15:39:57.0828 2940 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
15:39:57.0828 2940 cercsr6 - ok
15:39:57.0843 2940 Changer - ok
15:39:57.0875 2940 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:39:57.0875 2940 CiSvc - ok
15:39:57.0921 2940 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:39:57.0968 2940 ClipSrv - ok
15:39:58.0015 2940 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:39:58.0093 2940 clr_optimization_v2.0.50727_32 - ok
15:39:58.0125 2940 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
15:39:58.0125 2940 CmBatt - ok
15:39:58.0140 2940 CmdIde - ok
15:39:58.0187 2940 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
15:39:58.0187 2940 Compbatt - ok
15:39:58.0203 2940 COMSysApp - ok
15:39:58.0234 2940 Cpqarray - ok
15:39:58.0281 2940 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:39:58.0281 2940 CryptSvc - ok
15:39:58.0296 2940 dac2w2k - ok
15:39:58.0312 2940 dac960nt - ok
15:39:58.0375 2940 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:39:58.0390 2940 DcomLaunch - ok
15:39:58.0421 2940 [ D7AC073BAFCF98786D3B85100D4288AB ] DefragFS C:\WINDOWS\system32\drivers\DefragFS.sys
15:39:58.0437 2940 DefragFS - ok
15:39:58.0468 2940 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:39:58.0484 2940 Dhcp - ok
15:39:58.0500 2940 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:39:58.0500 2940 Disk - ok
15:39:58.0515 2940 dmadmin - ok
15:39:58.0640 2940 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:39:58.0671 2940 dmboot - ok
15:39:58.0687 2940 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:39:58.0703 2940 dmio - ok
15:39:58.0734 2940 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:39:58.0734 2940 dmload - ok
15:39:58.0765 2940 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:39:58.0765 2940 dmserver - ok
15:39:58.0796 2940 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:39:58.0796 2940 DMusic - ok
15:39:58.0843 2940 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:39:58.0843 2940 Dnscache - ok
15:39:58.0875 2940 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:39:58.0890 2940 Dot3svc - ok
15:39:58.0890 2940 dpti2o - ok
15:39:58.0953 2940 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:39:58.0953 2940 drmkaud - ok
15:39:59.0000 2940 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:39:59.0000 2940 EapHost - ok
15:39:59.0140 2940 [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
15:39:59.0140 2940 eeCtrl - ok
15:39:59.0156 2940 EraserUtilDrv11210 - ok
15:39:59.0203 2940 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:39:59.0203 2940 EraserUtilRebootDrv - ok
15:39:59.0234 2940 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:39:59.0234 2940 ERSvc - ok
15:39:59.0296 2940 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
15:39:59.0296 2940 Eventlog - ok
15:39:59.0359 2940 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
15:39:59.0375 2940 EventSystem - ok
15:39:59.0468 2940 [ D335183519E6814DFAB4ED3DD806A943 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
15:39:59.0468 2940 EvtEng - ok
15:39:59.0500 2940 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:39:59.0515 2940 Fastfat - ok
15:39:59.0546 2940 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:39:59.0562 2940 FastUserSwitchingCompatibility - ok
15:39:59.0593 2940 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
15:39:59.0593 2940 Fdc - ok
15:39:59.0640 2940 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:39:59.0640 2940 Fips - ok
15:39:59.0656 2940 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
15:39:59.0656 2940 Flpydisk - ok
15:39:59.0687 2940 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:39:59.0703 2940 FltMgr - ok
15:39:59.0765 2940 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:39:59.0796 2940 FontCache3.0.0.0 - ok
15:39:59.0812 2940 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:39:59.0812 2940 Fs_Rec - ok
15:39:59.0843 2940 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:39:59.0843 2940 Ftdisk - ok
15:39:59.0875 2940 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:39:59.0921 2940 Gpc - ok
15:39:59.0968 2940 [ B6B1F53F585B41091EB3586F8297A379 ] GTIPCI21 C:\WINDOWS\system32\DRIVERS\gtipci21.sys
15:39:59.0984 2940 GTIPCI21 - ok
15:40:00.0125 2940 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:40:00.0125 2940 gupdate - ok
15:40:00.0140 2940 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:40:00.0140 2940 gupdatem - ok
15:40:00.0203 2940 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:40:00.0203 2940 gusvc - ok
15:40:00.0281 2940 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:40:00.0281 2940 helpsvc - ok
15:40:00.0328 2940 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
15:40:00.0328 2940 HidServ - ok
15:40:00.0375 2940 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:40:00.0375 2940 HidUsb - ok
15:40:00.0437 2940 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:40:00.0453 2940 hkmsvc - ok
15:40:00.0468 2940 hpn - ok
15:40:00.0515 2940 [ D03D10F7DED688FECF50F8FBF1EA9B8A ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
15:40:00.0515 2940 HPZid412 - ok
15:40:00.0546 2940 [ 89F41658929393487B6B7D13C8528CE3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
15:40:00.0562 2940 HPZipr12 - ok
15:40:00.0593 2940 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
15:40:00.0609 2940 HPZius12 - ok
15:40:00.0671 2940 [ 140BA850417896B6B3322048DE280368 ] HSFHWICH C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
15:40:00.0687 2940 HSFHWICH - ok
15:40:00.0765 2940 [ B2DFC168D6F7512FAEA085253C5A37AD ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
15:40:00.0796 2940 HSF_DP - ok
15:40:00.0875 2940 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:40:00.0875 2940 HTTP - ok
15:40:00.0968 2940 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:40:00.0984 2940 HTTPFilter - ok
15:40:01.0000 2940 i2omgmt - ok
15:40:01.0015 2940 i2omp - ok
15:40:01.0046 2940 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:40:01.0046 2940 i8042prt - ok
15:40:01.0125 2940 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
15:40:01.0140 2940 IDriverT - ok
15:40:01.0265 2940 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:40:01.0296 2940 idsvc - ok
15:40:01.0500 2940 [ C19BF2A07BE972A110220DF6B1E89D14 ] IDSxpx86 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\IPSDefs\20130111.002\IDSxpx86.sys
15:40:01.0515 2940 IDSxpx86 - ok
15:40:01.0546 2940 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:40:01.0562 2940 Imapi - ok
15:40:01.0609 2940 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:40:01.0625 2940 ImapiService - ok
15:40:01.0640 2940 ini910u - ok
15:40:01.0671 2940 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
15:40:01.0671 2940 IntelIde - ok
15:40:01.0718 2940 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:40:01.0718 2940 intelppm - ok
15:40:01.0750 2940 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:40:01.0750 2940 Ip6Fw - ok
15:40:01.0781 2940 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:40:01.0781 2940 IpFilterDriver - ok
15:40:01.0812 2940 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:40:01.0812 2940 IpInIp - ok
15:40:01.0875 2940 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:40:01.0875 2940 IpNat - ok
15:40:01.0921 2940 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:40:01.0921 2940 IPSec - ok
15:40:01.0953 2940 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:40:01.0953 2940 IRENUM - ok
15:40:01.0984 2940 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:40:02.0031 2940 isapnp - ok
15:40:02.0125 2940 [ 872D090CA5C306F62D1982BCE6302376 ] IWCA C:\WINDOWS\system32\DRIVERS\iwca.sys
15:40:02.0140 2940 IWCA - ok
15:40:02.0156 2940 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:40:02.0171 2940 Kbdclass - ok
15:40:02.0187 2940 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:40:02.0203 2940 kbdhid - ok
15:40:02.0234 2940 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:40:02.0250 2940 kmixer - ok
15:40:02.0312 2940 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:40:02.0312 2940 KSecDD - ok
15:40:02.0343 2940 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:40:02.0359 2940 lanmanserver - ok
15:40:02.0421 2940 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:40:02.0421 2940 lanmanworkstation - ok
15:40:02.0437 2940 lbrtfdc - ok
15:40:02.0468 2940 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:40:02.0468 2940 LmHosts - ok
15:40:02.0500 2940 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:40:02.0500 2940 mdmxsdk - ok
15:40:02.0546 2940 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:40:02.0546 2940 Messenger - ok
15:40:02.0640 2940 [ 7C4C76B39D5525C4A465E0BE32528E19 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:40:02.0656 2940 Microsoft Office Groove Audit Service - ok
15:40:02.0703 2940 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:40:02.0703 2940 mnmdd - ok
15:40:02.0750 2940 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:40:02.0750 2940 mnmsrvc - ok
15:40:02.0796 2940 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:40:02.0796 2940 Modem - ok
15:40:02.0812 2940 motccgp - ok
15:40:02.0828 2940 motccgpfl - ok
15:40:02.0843 2940 MotDev - ok
15:40:02.0859 2940 motmodem - ok
15:40:02.0875 2940 MotoSwitchService - ok
15:40:02.0890 2940 Motousbnet - ok
15:40:02.0906 2940 motport - ok
15:40:02.0921 2940 motusbdevice - ok
15:40:02.0953 2940 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:40:02.0953 2940 Mouclass - ok
15:40:03.0000 2940 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:40:03.0000 2940 mouhid - ok
15:40:03.0015 2940 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:40:03.0015 2940 MountMgr - ok
15:40:03.0031 2940 mraid35x - ok
15:40:03.0062 2940 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:40:03.0062 2940 MRxDAV - ok
15:40:03.0140 2940 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:40:03.0156 2940 MRxSmb - ok
15:40:03.0187 2940 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:40:03.0187 2940 MSDTC - ok
15:40:03.0218 2940 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:40:03.0234 2940 Msfs - ok
15:40:03.0250 2940 MSIServer - ok
15:40:03.0281 2940 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:40:03.0281 2940 MSKSSRV - ok
15:40:03.0312 2940 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:40:03.0312 2940 MSPCLOCK - ok
15:40:03.0343 2940 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:40:03.0343 2940 MSPQM - ok
15:40:03.0390 2940 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:40:03.0390 2940 mssmbios - ok
15:40:03.0437 2940 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:40:03.0437 2940 Mup - ok
15:40:03.0546 2940 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:40:03.0546 2940 napagent - ok
15:40:03.0656 2940 [ 8E4C77AD9BB279900C00F870CC0C674B ] NAVENG C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\VirusDefs\20130112.007\NAVENG.SYS
15:40:03.0671 2940 NAVENG - ok
15:40:03.0812 2940 [ 826F699B69E88A3920C70F344DD42D88 ] NAVEX15 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\VirusDefs\20130112.007\NAVEX15.SYS
15:40:03.0859 2940 NAVEX15 - ok
15:40:03.0937 2940 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:40:03.0937 2940 NDIS - ok
15:40:04.0000 2940 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:40:04.0000 2940 NdisTapi - ok
15:40:04.0031 2940 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:40:04.0031 2940 Ndisuio - ok
15:40:04.0078 2940 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:40:04.0093 2940 NdisWan - ok
15:40:04.0140 2940 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:40:04.0156 2940 NDProxy - ok
15:40:04.0203 2940 [ 2969D26EEE289BE7422AA46FC55F4E38 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
15:40:04.0203 2940 Net Driver HPZ12 - ok
15:40:04.0234 2940 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:40:04.0234 2940 NetBIOS - ok
15:40:04.0265 2940 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:40:04.0265 2940 NetBT - ok
15:40:04.0328 2940 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
15:40:04.0343 2940 NetDDE - ok
15:40:04.0359 2940 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:40:04.0359 2940 NetDDEdsdm - ok
15:40:04.0390 2940 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:40:04.0390 2940 Netlogon - ok
15:40:04.0421 2940 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
15:40:04.0437 2940 Netman - ok
15:40:04.0484 2940 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:40:04.0515 2940 NetTcpPortSharing - ok
15:40:04.0765 2940 [ F2840DBFE9322F35557219AE82CC4597 ] NIS C:\Program Files\Norton Internet Security\Engine\19.9.0.9\ccSvcHst.exe
15:40:04.0781 2940 NIS - ok
15:40:04.0812 2940 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
15:40:04.0812 2940 Nla - ok
15:40:04.0859 2940 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:40:04.0859 2940 Npfs - ok
15:40:04.0921 2940 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:40:04.0937 2940 Ntfs - ok
15:40:04.0953 2940 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:40:04.0953 2940 NtLmSsp - ok
15:40:05.0015 2940 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:40:05.0031 2940 NtmsSvc - ok
15:40:05.0062 2940 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
15:40:05.0062 2940 Null - ok
15:40:05.0109 2940 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:40:05.0109 2940 NwlnkFlt - ok
15:40:05.0140 2940 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:40:05.0140 2940 NwlnkFwd - ok
15:40:05.0265 2940 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:40:05.0296 2940 odserv - ok
15:40:05.0343 2940 [ CEC7E2C6C1FA00C7AB2F5434F848AE51 ] OMCI C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS
15:40:05.0343 2940 OMCI - ok
15:40:05.0406 2940 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:40:05.0406 2940 ose - ok
15:40:05.0453 2940 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:40:05.0468 2940 Parport - ok
15:40:05.0484 2940 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:40:05.0484 2940 PartMgr - ok
15:40:05.0531 2940 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:40:05.0531 2940 ParVdm - ok
15:40:05.0562 2940 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:40:05.0562 2940 PCI - ok
15:40:05.0578 2940 PCIDump - ok
15:40:05.0609 2940 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\drivers\PCIIde.sys
15:40:05.0625 2940 PCIIde - ok
15:40:05.0656 2940 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
15:40:05.0671 2940 Pcmcia - ok
15:40:05.0750 2940 [ 517A2D39B4D34631B2515A1006F0D096 ] PDAgent C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
15:40:05.0750 2940 PDAgent - ok
15:40:05.0765 2940 PDCOMP - ok
15:40:05.0812 2940 [ A0A36B4827BBFC030663664EE945EF6A ] PDEngine C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
15:40:05.0828 2940 PDEngine - ok
15:40:05.0843 2940 PDFRAME - ok
15:40:05.0859 2940 PDRELI - ok
15:40:05.0875 2940 PDRFRAME - ok
15:40:05.0890 2940 perc2 - ok
15:40:05.0906 2940 perc2hib - ok
15:40:05.0968 2940 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
15:40:05.0968 2940 PlugPlay - ok
15:40:06.0000 2940 [ BAFC9706BDF425A02B66468AB2605C59 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
15:40:06.0000 2940 Pml Driver HPZ12 - ok
15:40:06.0046 2940 [ DA19E3401F39C10DF193BE029C7E7BBA ] pnetmdm C:\WINDOWS\system32\DRIVERS\pnetmdm.sys
15:40:06.0078 2940 pnetmdm - ok
15:40:06.0109 2940 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:40:06.0109 2940 PolicyAgent - ok
15:40:06.0140 2940 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:40:06.0156 2940 PptpMiniport - ok
15:40:06.0171 2940 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:40:06.0171 2940 ProtectedStorage - ok
15:40:06.0187 2940 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
15:40:06.0187 2940 PSched - ok
15:40:06.0203 2940 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:40:06.0218 2940 Ptilink - ok
15:40:06.0218 2940 ql1080 - ok
15:40:06.0234 2940 Ql10wnt - ok
15:40:06.0250 2940 ql12160 - ok
15:40:06.0312 2940 ql1240 - ok
15:40:06.0343 2940 ql1280 - ok
15:40:06.0453 2940 [ 3B68696914E467BBE827D2552B5B85EF ] qrkis C:\WINDOWS\system32\DRIVERS\qrkis.sys
15:40:06.0468 2940 qrkis - ok
15:40:06.0484 2940 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:40:06.0484 2940 RasAcd - ok
15:40:06.0515 2940 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:40:06.0515 2940 RasAuto - ok
15:40:06.0546 2940 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:40:06.0562 2940 Rasl2tp - ok
15:40:06.0609 2940 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:40:06.0625 2940 RasMan - ok
15:40:06.0625 2940 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:40:06.0640 2940 RasPppoe - ok
15:40:06.0640 2940 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:40:06.0640 2940 Raspti - ok
15:40:06.0671 2940 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:40:06.0671 2940 Rdbss - ok
15:40:06.0671 2940 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:40:06.0687 2940 RDPCDD - ok
15:40:06.0703 2940 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:40:06.0718 2940 rdpdr - ok
15:40:06.0765 2940 [ FC105DD312ED64EB66BFF111E8EC6EAC ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:40:06.0781 2940 RDPWD - ok
15:40:06.0812 2940 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:40:06.0812 2940 RDSessMgr - ok
15:40:06.0828 2940 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:40:06.0843 2940 redbook - ok
15:40:06.0859 2940 [ 15BA3BCEEB32C4279B27F5C3389E4847 ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
15:40:06.0859 2940 RegSrvc - ok
15:40:06.0921 2940 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:40:06.0937 2940 RemoteAccess - ok
15:40:06.0984 2940 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
15:40:07.0000 2940 RemoteRegistry - ok
15:40:07.0015 2940 RimUsb - ok
15:40:07.0046 2940 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
15:40:07.0062 2940 RimVSerPort - ok
15:40:07.0093 2940 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
15:40:07.0093 2940 ROOTMODEM - ok
15:40:07.0171 2940 RoxLiveShare9 - ok
15:40:07.0203 2940 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
15:40:07.0203 2940 RpcLocator - ok
15:40:07.0250 2940 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
15:40:07.0265 2940 RpcSs - ok
15:40:07.0312 2940 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:40:07.0328 2940 RSVP - ok
15:40:07.0390 2940 [ 79A647519CA3E700E9738153F788FB7D ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
15:40:07.0406 2940 S24EventMonitor - ok
15:40:07.0421 2940 [ 81AA6F0D6A2BE1C550F814B036215888 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
15:40:07.0421 2940 s24trans - ok
15:40:07.0453 2940 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
15:40:07.0453 2940 SamSs - ok
15:40:07.0500 2940 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:40:07.0500 2940 SASDIFSV - ok
15:40:07.0546 2940 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:40:07.0546 2940 SASKUTIL - ok
15:40:07.0609 2940 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:40:07.0625 2940 SCardSvr - ok
15:40:07.0687 2940 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:40:07.0687 2940 Schedule - ok
15:40:07.0718 2940 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:40:07.0734 2940 Secdrv - ok
15:40:07.0765 2940 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
15:40:07.0765 2940 seclogon - ok
15:40:07.0796 2940 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
15:40:07.0796 2940 SENS - ok
15:40:07.0812 2940 Ser2pl - ok
15:40:07.0843 2940 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:40:07.0843 2940 serenum - ok
15:40:07.0859 2940 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:40:07.0875 2940 Serial - ok
15:40:07.0937 2940 [ 1F16931C722C69E4A7866244796C66A0 ] sermouse C:\WINDOWS\system32\DRIVERS\sermouse.sys
15:40:07.0953 2940 sermouse - ok
15:40:08.0015 2940 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
15:40:08.0015 2940 Sfloppy - ok
15:40:08.0078 2940 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:40:08.0093 2940 SharedAccess - ok
15:40:08.0140 2940 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:40:08.0140 2940 ShellHWDetection - ok
15:40:08.0156 2940 Simbad - ok
15:40:08.0187 2940 Sparrow - ok
15:40:08.0218 2940 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:40:08.0218 2940 splitter - ok
15:40:08.0265 2940 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:40:08.0265 2940 Spooler - ok
15:40:08.0296 2940 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:40:08.0312 2940 sr - ok
15:40:08.0343 2940 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
15:40:08.0343 2940 srservice - ok
15:40:08.0421 2940 [ 7BB297CADA42903328E92425D9761DA6 ] SRTSP C:\WINDOWS\System32\Drivers\NIS\1309000.009\SRTSP.SYS
15:40:08.0453 2940 SRTSP - ok
15:40:08.0484 2940 [ 475FCF0F28D845BF1C8ABAC27F19003E ] SRTSPX C:\WINDOWS\system32\drivers\NIS\1309000.009\SRTSPX.SYS
15:40:08.0500 2940 SRTSPX - ok
15:40:08.0562 2940 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:40:08.0562 2940 Srv - ok
15:40:08.0625 2940 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:40:08.0640 2940 SSDPSRV - ok
15:40:08.0703 2940 [ 305CC42945A713347F978D78566113F3 ] STAC97 C:\WINDOWS\system32\drivers\STAC97.sys
15:40:08.0734 2940 STAC97 - ok
15:40:08.0796 2940 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
15:40:08.0812 2940 StillCam - ok
15:40:08.0859 2940 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:40:08.0875 2940 stisvc - ok
15:40:08.0984 2940 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:40:08.0984 2940 swenum - ok
15:40:09.0031 2940 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:40:09.0031 2940 swmidi - ok
15:40:09.0046 2940 SwPrv - ok
15:40:09.0062 2940 symc810 - ok
15:40:09.0062 2940 symc8xx - ok
15:40:09.0140 2940 [ 690FA0E61B90084C4D9A721BD4F3D779 ] SymDS C:\WINDOWS\system32\drivers\NIS\1309000.009\SYMDS.SYS
15:40:09.0156 2940 SymDS - ok
15:40:09.0296 2940 [ 8F88EDB211B12537D2DC2A6D73D6067C ] SymEFA C:\WINDOWS\system32\drivers\NIS\1309000.009\SYMEFA.SYS
15:40:09.0359 2940 SymEFA - ok
15:40:09.0484 2940 [ 74E2521E96176A4449570E50BE91954D ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
15:40:09.0484 2940 SymEvent - ok
15:40:09.0546 2940 [ 2C356CCA706505CF63CBE39D532B9236 ] SymIRON C:\WINDOWS\system32\drivers\NIS\1309000.009\Ironx86.SYS
15:40:09.0546 2940 SymIRON - ok
15:40:09.0593 2940 [ 508BD882040F9CB12319E3A4FC78EDB9 ] SYMTDI C:\WINDOWS\System32\Drivers\NIS\1309000.009\SYMTDI.SYS
15:40:09.0593 2940 SYMTDI - ok
15:40:09.0609 2940 sym_hi - ok
15:40:09.0625 2940 sym_u3 - ok
15:40:09.0671 2940 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:40:09.0671 2940 sysaudio - ok
15:40:09.0718 2940 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:40:09.0734 2940 SysmonLog - ok
15:40:09.0781 2940 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:40:09.0796 2940 TapiSrv - ok
15:40:09.0859 2940 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:40:09.0875 2940 Tcpip - ok
15:40:09.0921 2940 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:40:09.0953 2940 TDPIPE - ok
15:40:09.0984 2940 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:40:10.0000 2940 TDTCP - ok
15:40:10.0031 2940 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:40:10.0031 2940 TermDD - ok
15:40:10.0078 2940 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
15:40:10.0078 2940 TermService - ok
15:40:10.0125 2940 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
15:40:10.0140 2940 Themes - ok
15:40:10.0187 2940 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
15:40:10.0187 2940 TlntSvr - ok
15:40:10.0203 2940 TosIde - ok
15:40:10.0234 2940 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:40:10.0234 2940 TrkWks - ok
15:40:10.0281 2940 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:40:10.0281 2940 Udfs - ok
15:40:10.0296 2940 UIUSys - ok
15:40:10.0312 2940 ultra - ok
15:40:10.0375 2940 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:40:10.0406 2940 Update - ok
15:40:10.0453 2940 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:40:10.0484 2940 upnphost - ok
15:40:10.0515 2940 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
15:40:10.0531 2940 UPS - ok
15:40:10.0578 2940 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:40:10.0578 2940 usbccgp - ok
15:40:10.0609 2940 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:40:10.0609 2940 usbehci - ok
15:40:10.0640 2940 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:40:10.0656 2940 usbhub - ok
15:40:10.0687 2940 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:40:10.0687 2940 usbprint - ok
15:40:10.0718 2940 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:40:10.0718 2940 usbscan - ok
15:40:10.0765 2940 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\DRIVERS\usbser.sys
15:40:10.0765 2940 usbser - ok
15:40:10.0796 2940 [ AF4B8CC5EA40C57208796920068DDCD5 ] usbsermptxp C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys
15:40:10.0812 2940 usbsermptxp - ok
15:40:10.0843 2940 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:40:10.0843 2940 USBSTOR - ok
15:40:10.0875 2940 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:40:10.0875 2940 usbuhci - ok
15:40:10.0906 2940 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
15:40:10.0921 2940 usb_rndisx - ok
15:40:10.0953 2940 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:40:10.0953 2940 VgaSave - ok
15:40:10.0968 2940 ViaIde - ok
15:40:11.0015 2940 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:40:11.0031 2940 VolSnap - ok
15:40:11.0109 2940 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
15:40:11.0125 2940 VSS - ok
15:40:11.0343 2940 [ F0F902220910C4FBE42A51964BD33599 ] w29n51 C:\WINDOWS\system32\DRIVERS\w29n51.sys
15:40:11.0437 2940 w29n51 - ok
15:40:11.0468 2940 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
15:40:11.0484 2940 W32Time - ok
15:40:11.0515 2940 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:40:11.0515 2940 Wanarp - ok
15:40:11.0578 2940 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
15:40:11.0609 2940 Wdf01000 - ok
15:40:11.0625 2940 WDICA - ok
15:40:11.0671 2940 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:40:11.0671 2940 wdmaud - ok
15:40:11.0718 2940 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
15:40:11.0734 2940 WebClient - ok
15:40:11.0796 2940 [ 2DC7C0B6175A0A8ED84A4F70199C93B5 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:40:11.0828 2940 winachsf - ok
15:40:11.0937 2940 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:40:11.0953 2940 winmgmt - ok
15:40:11.0984 2940 [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB C:\WINDOWS\system32\DRIVERS\WinUSB.sys
15:40:12.0000 2940 WinUSB - ok
15:40:12.0046 2940 [ 43ED73F10DE96E0A23244BD9CF04F5C2 ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
15:40:12.0062 2940 WLANKEEPER - ok
15:40:12.0109 2940 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:40:12.0109 2940 WmdmPmSN - ok
15:40:12.0187 2940 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
15:40:12.0203 2940 Wmi - ok
15:40:12.0250 2940 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:40:12.0265 2940 WmiApSrv - ok
15:40:12.0421 2940 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
15:40:12.0453 2940 WMPNetworkSvc - ok
15:40:12.0500 2940 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:40:12.0500 2940 WpdUsb - ok
15:40:12.0562 2940 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:40:12.0562 2940 wscsvc - ok
15:40:12.0578 2940 WSearch - ok
15:40:12.0609 2940 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:40:12.0640 2940 wuauserv - ok
15:40:12.0671 2940 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:40:12.0703 2940 WudfPf - ok
15:40:12.0734 2940 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:40:12.0734 2940 WudfRd - ok
15:40:12.0765 2940 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:40:12.0765 2940 WudfSvc - ok
15:40:12.0843 2940 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:40:12.0859 2940 WZCSVC - ok
15:40:12.0921 2940 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:40:12.0921 2940 xmlprov - ok
15:40:12.0968 2940 ================ Scan global ===============================
15:40:13.0015 2940 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
15:40:13.0093 2940 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
15:40:13.0156 2940 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
15:40:13.0187 2940 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
15:40:13.0187 2940 [Global] - ok
15:40:13.0203 2940 ================ Scan MBR ==================================
15:40:13.0218 2940 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
15:40:13.0406 2940 \Device\Harddisk0\DR0 - ok
15:40:13.0421 2940 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR2
15:40:14.0328 2940 \Device\Harddisk1\DR2 - ok
15:40:14.0343 2940 ================ Scan VBR ==================================
15:40:14.0343 2940 [ C8DF50684514547DEA64CBA5CBFDFF67 ] \Device\Harddisk0\DR0\Partition1
15:40:14.0343 2940 \Device\Harddisk0\DR0\Partition1 - ok
15:40:14.0359 2940 [ B132C36C57DD96F78545E8821B52EC19 ] \Device\Harddisk1\DR2\Partition1
15:40:14.0359 2940 \Device\Harddisk1\DR2\Partition1 - ok
15:40:14.0359 2940 ============================================================
15:40:14.0359 2940 Scan finished
15:40:14.0359 2940 ============================================================
15:40:14.0390 2208 Detected object count: 0
15:40:14.0390 2208 Actual detected object count: 0
15:40:46.0265 1436 ============================================================
15:40:46.0265 1436 Scan started
15:40:46.0265 1436 Mode: Manual; TDLFS;
15:40:46.0265 1436 ============================================================
15:40:46.0843 1436 ================ Scan system memory ========================
15:40:48.0343 1436 System memory - ok
15:40:48.0343 1436 ================ Scan services =============================
15:40:48.0468 1436 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
15:40:48.0468 1436 !SASCORE - ok
15:40:48.0718 1436 Abiosdsk - ok
15:40:48.0718 1436 abp480n5 - ok
15:40:48.0765 1436 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:40:48.0765 1436 ACPI - ok
15:40:48.0812 1436 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
15:40:48.0812 1436 ACPIEC - ok
15:40:48.0812 1436 adpu160m - ok
15:40:48.0843 1436 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:40:48.0843 1436 aec - ok
15:40:48.0890 1436 [ 076394A345EE5E9E3911FC0F058F4F38 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
15:40:48.0890 1436 AegisP - ok
15:40:48.0953 1436 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:40:48.0968 1436 AFD - ok
15:40:48.0968 1436 Aha154x - ok
15:40:48.0984 1436 aic78u2 - ok
15:40:49.0000 1436 aic78xx - ok
15:40:49.0046 1436 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:40:49.0046 1436 Alerter - ok
15:40:49.0078 1436 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
15:40:49.0078 1436 ALG - ok
15:40:49.0093 1436 AliIde - ok
15:40:49.0109 1436 amsint - ok
15:40:49.0171 1436 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
15:40:49.0171 1436 AppMgmt - ok
15:40:49.0187 1436 asc - ok
15:40:49.0203 1436 asc3350p - ok
15:40:49.0218 1436 asc3550 - ok
15:40:49.0281 1436 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
15:40:49.0281 1436 aspnet_state - ok
15:40:49.0328 1436 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:40:49.0328 1436 AsyncMac - ok
15:40:49.0343 1436 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:40:49.0343 1436 atapi - ok
15:40:49.0359 1436 Atdisk - ok
15:40:49.0468 1436 [ 17EA1C7671DDE20E32E7C9FFE842F46E ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
15:40:49.0468 1436 Ati HotKey Poller - ok
15:40:49.0593 1436 [ 8EB17CF829DF300CC885651CFEAF931C ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
15:40:49.0609 1436 ati2mtag - ok
15:40:49.0656 1436 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:40:49.0671 1436 Atmarpc - ok
15:40:49.0703 1436 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:40:49.0703 1436 AudioSrv - ok
15:40:49.0750 1436 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:40:49.0750 1436 audstub - ok
15:40:49.0796 1436 [ 2ACF06176B9D011567D7F25B83DDD066 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
15:40:49.0812 1436 b57w2k - ok
15:40:49.0859 1436 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:40:49.0859 1436 Beep - ok
15:40:50.0390 1436 [ 9DFFCB249663AA3C2ECB67202280054E ] BHDrvx86 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\BASHDefs\20130107.001\BHDrvx86.sys
15:40:50.0406 1436 BHDrvx86 - ok
15:40:50.0484 1436 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
15:40:50.0484 1436 BITS - ok
15:40:50.0546 1436 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
15:40:50.0546 1436 Browser - ok
15:40:50.0562 1436 BTCFilterService - ok
15:40:50.0625 1436 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:40:50.0625 1436 cbidf2k - ok
15:40:50.0750 1436 [ ACE85AF1C31F68BDFEE9333F6592917E ] ccSet_NIS C:\WINDOWS\system32\drivers\NIS\1309000.009\ccSetx86.sys
15:40:50.0750 1436 ccSet_NIS - ok
15:40:50.0765 1436 cd20xrnt - ok
15:40:50.0812 1436 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:40:50.0812 1436 Cdaudio - ok
15:40:50.0843 1436 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:40:50.0843 1436 Cdfs - ok
15:40:50.0875 1436 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:40:50.0875 1436 Cdrom - ok
15:40:50.0937 1436 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
15:40:50.0937 1436 cercsr6 - ok
15:40:50.0953 1436 Changer - ok
15:40:50.0984 1436 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:40:50.0984 1436 CiSvc - ok
15:40:51.0015 1436 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:40:51.0015 1436 ClipSrv - ok
15:40:51.0046 1436 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:40:51.0046 1436 clr_optimization_v2.0.50727_32 - ok
15:40:51.0078 1436 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
15:40:51.0078 1436 CmBatt - ok
15:40:51.0093 1436 CmdIde - ok
15:40:51.0140 1436 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
15:40:51.0156 1436 Compbatt - ok
15:40:51.0171 1436 COMSysApp - ok
15:40:51.0187 1436 Cpqarray - ok
15:40:51.0218 1436 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:40:51.0218 1436 CryptSvc - ok
15:40:51.0234 1436 dac2w2k - ok
15:40:51.0250 1436 dac960nt - ok
15:40:51.0312 1436 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:40:51.0328 1436 DcomLaunch - ok
15:40:51.0375 1436 [ D7AC073BAFCF98786D3B85100D4288AB ] DefragFS C:\WINDOWS\system32\drivers\DefragFS.sys
15:40:51.0375 1436 DefragFS - ok
15:40:51.0421 1436 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:40:51.0421 1436 Dhcp - ok
15:40:51.0437 1436 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:40:51.0437 1436 Disk - ok
15:40:51.0453 1436 dmadmin - ok
15:40:51.0515 1436 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:40:51.0531 1436 dmboot - ok
15:40:51.0562 1436 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:40:51.0578 1436 dmio - ok
15:40:51.0609 1436 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:40:51.0609 1436 dmload - ok
15:40:51.0656 1436 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:40:51.0656 1436 dmserver - ok
15:40:51.0687 1436 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:40:51.0687 1436 DMusic - ok
15:40:51.0750 1436 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:40:51.0750 1436 Dnscache - ok
15:40:51.0796 1436 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:40:51.0796 1436 Dot3svc - ok
15:40:51.0812 1436 dpti2o - ok
15:40:51.0843 1436 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:40:51.0843 1436 drmkaud - ok
15:40:51.0875 1436 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:40:51.0890 1436 EapHost - ok
15:40:52.0031 1436 [ 85B8B4032A895A746D46A288A9B30DED ] eeCtrl C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
15:40:52.0031 1436 eeCtrl - ok
15:40:52.0046 1436 EraserUtilDrv11210 - ok
15:40:52.0093 1436 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:40:52.0093 1436 EraserUtilRebootDrv - ok
15:40:52.0125 1436 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:40:52.0125 1436 ERSvc - ok
15:40:52.0171 1436 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
15:40:52.0187 1436 Eventlog - ok
15:40:52.0250 1436 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
15:40:52.0250 1436 EventSystem - ok
15:40:52.0343 1436 [ D335183519E6814DFAB4ED3DD806A943 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
15:40:52.0343 1436 EvtEng - ok
15:40:52.0390 1436 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:40:52.0390 1436 Fastfat - ok
15:40:52.0437 1436 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:40:52.0437 1436 FastUserSwitchingCompatibility - ok
15:40:52.0468 1436 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
15:40:52.0468 1436 Fdc - ok
15:40:52.0515 1436 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:40:52.0531 1436 Fips - ok
15:40:52.0546 1436 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
15:40:52.0546 1436 Flpydisk - ok
15:40:52.0593 1436 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:40:52.0593 1436 FltMgr - ok
15:40:52.0671 1436 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:40:52.0671 1436 FontCache3.0.0.0 - ok
15:40:52.0687 1436 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:40:52.0687 1436 Fs_Rec - ok
15:40:52.0703 1436 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:40:52.0718 1436 Ftdisk - ok
15:40:52.0750 1436 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:40:52.0750 1436 Gpc - ok
15:40:52.0765 1436 [ B6B1F53F585B41091EB3586F8297A379 ] GTIPCI21 C:\WINDOWS\system32\DRIVERS\gtipci21.sys
15:40:52.0781 1436 GTIPCI21 - ok
15:40:52.0843 1436 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
15:40:52.0843 1436 gupdate - ok
15:40:52.0859 1436 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:40:52.0859 1436 gupdatem - ok
15:40:52.0937 1436 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:40:52.0937 1436 gusvc - ok
15:40:53.0015 1436 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:40:53.0015 1436 helpsvc - ok
15:40:53.0062 1436 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
15:40:53.0062 1436 HidServ - ok
15:40:53.0109 1436 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:40:53.0109 1436 HidUsb - ok
15:40:53.0156 1436 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:40:53.0156 1436 hkmsvc - ok
15:40:53.0171 1436 hpn - ok
15:40:53.0203 1436 [ D03D10F7DED688FECF50F8FBF1EA9B8A ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
15:40:53.0203 1436 HPZid412 - ok
15:40:53.0234 1436 [ 89F41658929393487B6B7D13C8528CE3 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
15:40:53.0234 1436 HPZipr12 - ok
15:40:53.0265 1436 [ ABCB05CCDBF03000354B9553820E39F8 ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
15:40:53.0265 1436 HPZius12 - ok
15:40:53.0328 1436 [ 140BA850417896B6B3322048DE280368 ] HSFHWICH C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
15:40:53.0328 1436 HSFHWICH - ok
15:40:53.0390 1436 [ B2DFC168D6F7512FAEA085253C5A37AD ] HSF_DP C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
15:40:53.0406 1436 HSF_DP - ok
15:40:53.0468 1436 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:40:53.0468 1436 HTTP - ok
15:40:53.0500 1436 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:40:53.0515 1436 HTTPFilter - ok
15:40:53.0515 1436 i2omgmt - ok
15:40:53.0531 1436 i2omp - ok
15:40:53.0562 1436 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:40:53.0562 1436 i8042prt - ok
15:40:53.0640 1436 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
15:40:53.0640 1436 IDriverT - ok
15:40:53.0750 1436 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:40:53.0765 1436 idsvc - ok
15:40:53.0984 1436 [ C19BF2A07BE972A110220DF6B1E89D14 ] IDSxpx86 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\IPSDefs\20130111.002\IDSxpx86.sys
15:40:54.0000 1436 IDSxpx86 - ok
15:40:54.0031 1436 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:40:54.0031 1436 Imapi - ok
15:40:54.0093 1436 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:40:54.0093 1436 ImapiService - ok
15:40:54.0109 1436 ini910u - ok
15:40:54.0156 1436 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
15:40:54.0156 1436 IntelIde - ok
15:40:54.0203 1436 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:40:54.0203 1436 intelppm - ok
15:40:54.0234 1436 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:40:54.0234 1436 Ip6Fw - ok
15:40:54.0265 1436 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:40:54.0265 1436 IpFilterDriver - ok
15:40:54.0296 1436 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:40:54.0296 1436 IpInIp - ok
15:40:54.0328 1436 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:40:54.0343 1436 IpNat - ok
15:40:54.0359 1436 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:40:54.0359 1436 IPSec - ok
15:40:54.0390 1436 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:40:54.0390 1436 IRENUM - ok
15:40:54.0437 1436 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:40:54.0437 1436 isapnp - ok
15:40:54.0500 1436 [ 872D090CA5C306F62D1982BCE6302376 ] IWCA C:\WINDOWS\system32\DRIVERS\iwca.sys
15:40:54.0500 1436 IWCA - ok
15:40:54.0531 1436 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:40:54.0531 1436 Kbdclass - ok
15:40:54.0562 1436 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:40:54.0562 1436 kbdhid - ok
15:40:54.0593 1436 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:40:54.0593 1436 kmixer - ok
15:40:54.0640 1436 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:40:54.0640 1436 KSecDD - ok
15:40:54.0671 1436 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:40:54.0687 1436 lanmanserver - ok
15:40:54.0734 1436 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:40:54.0734 1436 lanmanworkstation - ok
15:40:54.0750 1436 lbrtfdc - ok
15:40:54.0781 1436 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:40:54.0796 1436 LmHosts - ok
15:40:54.0812 1436 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:40:54.0812 1436 mdmxsdk - ok
15:40:54.0843 1436 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:40:54.0859 1436 Messenger - ok
15:40:54.0937 1436 [ 7C4C76B39D5525C4A465E0BE32528E19 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
15:40:54.0953 1436 Microsoft Office Groove Audit Service - ok
15:40:54.0984 1436 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:40:54.0984 1436 mnmdd - ok
15:40:55.0031 1436 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:40:55.0031 1436 mnmsrvc - ok
15:40:55.0078 1436 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:40:55.0078 1436 Modem - ok
15:40:55.0093 1436 motccgp - ok
15:40:55.0109 1436 motccgpfl - ok
15:40:55.0125 1436 MotDev - ok
15:40:55.0140 1436 motmodem - ok
15:40:55.0140 1436 MotoSwitchService - ok
15:40:55.0156 1436 Motousbnet - ok
15:40:55.0187 1436 motport - ok
15:40:55.0203 1436 motusbdevice - ok
15:40:55.0218 1436 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:40:55.0218 1436 Mouclass - ok
15:40:55.0250 1436 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:40:55.0265 1436 mouhid - ok
15:40:55.0296 1436 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:40:55.0296 1436 MountMgr - ok
15:40:55.0296 1436 mraid35x - ok
15:40:55.0312 1436 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:40:55.0312 1436 MRxDAV - ok
15:40:55.0375 1436 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:40:55.0375 1436 MRxSmb - ok
15:40:55.0406 1436 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:40:55.0421 1436 MSDTC - ok
15:40:55.0437 1436 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:40:55.0437 1436 Msfs - ok
15:40:55.0453 1436 MSIServer - ok
15:40:55.0468 1436 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:40:55.0484 1436 MSKSSRV - ok
15:40:55.0500 1436 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:40:55.0500 1436 MSPCLOCK - ok
15:40:55.0515 1436 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:40:55.0515 1436 MSPQM - ok
15:40:55.0546 1436 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:40:55.0546 1436 mssmbios - ok
15:40:55.0593 1436 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:40:55.0593 1436 Mup - ok
15:40:55.0640 1436 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:40:55.0640 1436 napagent - ok
15:40:55.0750 1436 [ 8E4C77AD9BB279900C00F870CC0C674B ] NAVENG C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\VirusDefs\20130112.007\NAVENG.SYS
15:40:55.0750 1436 NAVENG - ok
15:40:55.0890 1436 [ 826F699B69E88A3920C70F344DD42D88 ] NAVEX15 C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.7.1.5\Definitions\VirusDefs\20130112.007\NAVEX15.SYS
15:40:55.0921 1436 NAVEX15 - ok
15:40:56.0000 1436 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:40:56.0000 1436 NDIS - ok
15:40:56.0046 1436 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:40:56.0046 1436 NdisTapi - ok
15:40:56.0078 1436 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:40:56.0078 1436 Ndisuio - ok
15:40:56.0109 1436 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:40:56.0109 1436 NdisWan - ok
15:40:56.0171 1436 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:40:56.0171 1436 NDProxy - ok
15:40:56.0218 1436 [ 2969D26EEE289BE7422AA46FC55F4E38 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
15:40:56.0218 1436 Net Driver HPZ12 - ok
15:40:56.0234 1436 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:40:56.0250 1436 NetBIOS - ok
15:40:56.0265 1436 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:40:56.0281 1436 NetBT - ok
15:40:56.0328 1436 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
15:40:56.0328 1436 NetDDE - ok
15:40:56.0343 1436 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:40:56.0359 1436 NetDDEdsdm - ok
15:40:56.0375 1436 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:40:56.0375 1436 Netlogon - ok
15:40:56.0421 1436 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
15:40:56.0421 1436 Netman - ok
15:40:56.0484 1436 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:40:56.0484 1436 NetTcpPortSharing - ok
15:40:56.0718 1436 [ F2840DBFE9322F35557219AE82CC4597 ] NIS C:\Program Files\Norton Internet Security\Engine\19.9.0.9\ccSvcHst.exe
15:40:56.0718 1436 NIS - ok
15:40:56.0750 1436 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
15:40:56.0765 1436 Nla - ok
15:40:56.0796 1436 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:40:56.0796 1436 Npfs - ok
15:40:56.0859 1436 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:40:56.0859 1436 Ntfs - ok
15:40:56.0890 1436 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:40:56.0890 1436 NtLmSsp - ok
15:40:56.0953 1436 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:40:56.0984 1436 NtmsSvc - ok
15:40:57.0015 1436 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
15:40:57.0015 1436 Null - ok
15:40:57.0062 1436 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:40:57.0062 1436 NwlnkFlt - ok
15:40:57.0093 1436 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:40:57.0093 1436 NwlnkFwd - ok
15:40:57.0218 1436 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:40:57.0234 1436 odserv - ok
15:40:57.0281 1436 [ CEC7E2C6C1FA00C7AB2F5434F848AE51 ] OMCI C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS
15:40:57.0281 1436 OMCI - ok
15:40:57.0328 1436 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:40:57.0328 1436 ose - ok
15:40:57.0390 1436 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:40:57.0390 1436 Parport - ok
15:40:57.0421 1436 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:40:57.0421 1436 PartMgr - ok
15:40:57.0468 1436 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:40:57.0468 1436 ParVdm - ok
15:40:57.0484 1436 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:40:57.0500 1436 PCI - ok
15:40:57.0515 1436 PCIDump - ok
15:40:57.0531 1436 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\drivers\PCIIde.sys
15:40:57.0531 1436 PCIIde - ok
15:40:57.0562 1436 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
15:40:57.0562 1436 Pcmcia - ok
15:40:57.0671 1436 [ 517A2D39B4D34631B2515A1006F0D096 ] PDAgent C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
15:40:57.0671 1436 PDAgent - ok
15:40:57.0687 1436 PDCOMP - ok
15:40:57.0734 1436 [ A0A36B4827BBFC030663664EE945EF6A ] PDEngine C:\Program Files\Raxco\PerfectDisk\PDEngine.exe
15:40:57.0750 1436 PDEngine - ok
15:40:57.0765 1436 PDFRAME - ok
15:40:57.0781 1436 PDRELI - ok
15:40:57.0796 1436 PDRFRAME - ok
15:40:57.0812 1436 perc2 - ok
15:40:57.0828 1436 perc2hib - ok
15:40:57.0953 1436 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
15:40:57.0953 1436 PlugPlay - ok
15:40:58.0000 1436 [ BAFC9706BDF425A02B66468AB2605C59 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
15:40:58.0000 1436 Pml Driver HPZ12 - ok
15:40:58.0046 1436 [ DA19E3401F39C10DF193BE029C7E7BBA ] pnetmdm C:\WINDOWS\system32\DRIVERS\pnetmdm.sys
15:40:58.0046 1436 pnetmdm - ok
15:40:58.0062 1436 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:40:58.0078 1436 PolicyAgent - ok
15:40:58.0109 1436 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:40:58.0109 1436 PptpMiniport - ok
15:40:58.0125 1436 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:40:58.0125 1436 ProtectedStorage - ok
15:40:58.0140 1436 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
15:40:58.0140 1436 PSched - ok
15:40:58.0156 1436 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:40:58.0171 1436 Ptilink - ok
15:40:58.0187 1436 ql1080 - ok
15:40:58.0187 1436 Ql10wnt - ok
15:40:58.0203 1436 ql12160 - ok
15:40:58.0234 1436 ql1240 - ok
15:40:58.0250 1436 ql1280 - ok
15:40:58.0281 1436 [ 3B68696914E467BBE827D2552B5B85EF ] qrkis C:\WINDOWS\system32\DRIVERS\qrkis.sys
15:40:58.0281 1436 qrkis - ok
15:40:58.0296 1436 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:40:58.0296 1436 RasAcd - ok
15:40:58.0328 1436 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:40:58.0328 1436 RasAuto - ok
15:40:58.0343 1436 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:40:58.0359 1436 Rasl2tp - ok
15:40:58.0406 1436 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:40:58.0406 1436 RasMan - ok
15:40:58.0406 1436 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:40:58.0406 1436 RasPppoe - ok
15:40:58.0421 1436 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:40:58.0421 1436 Raspti - ok
15:40:58.0453 1436 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:40:58.0453 1436 Rdbss - ok
15:40:58.0453 1436 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:40:58.0453 1436 RDPCDD - ok
15:40:58.0484 1436 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:40:58.0484 1436 rdpdr - ok
15:40:58.0515 1436 [ FC105DD312ED64EB66BFF111E8EC6EAC ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:40:58.0515 1436 RDPWD - ok
15:40:58.0546 1436 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:40:58.0546 1436 RDSessMgr - ok
15:40:58.0578 1436 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:40:58.0578 1436 redbook - ok
15:40:58.0593 1436 [ 15BA3BCEEB32C4279B27F5C3389E4847 ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
15:40:58.0593 1436 RegSrvc - ok
15:40:58.0640 1436 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:40:58.0640 1436 RemoteAccess - ok
15:40:58.0671 1436 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
15:40:58.0671 1436 RemoteRegistry - ok
15:40:58.0687 1436 RimUsb - ok
15:40:58.0718 1436 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
15:40:58.0718 1436 RimVSerPort - ok
15:40:58.0750 1436 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
15:40:58.0750 1436 ROOTMODEM - ok
15:40:58.0812 1436 RoxLiveShare9 - ok
15:40:58.0843 1436 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
15:40:58.0843 1436 RpcLocator - ok
15:40:58.0890 1436 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
15:40:58.0906 1436 RpcSs - ok
15:40:58.0937 1436 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:40:58.0937 1436 RSVP - ok
15:40:59.0000 1436 [ 79A647519CA3E700E9738153F788FB7D ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
15:40:59.0015 1436 S24EventMonitor - ok
15:40:59.0046 1436 [ 81AA6F0D6A2BE1C550F814B036215888 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
15:40:59.0046 1436 s24trans - ok
15:40:59.0062 1436 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
15:40:59.0062 1436 SamSs - ok
15:40:59.0109 1436 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:40:59.0109 1436 SASDIFSV - ok
15:40:59.0156 1436 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:40:59.0156 1436 SASKUTIL - ok
15:40:59.0234 1436 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:40:59.0234 1436 SCardSvr - ok
15:40:59.0281 1436 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:40:59.0296 1436 Schedule - ok
15:40:59.0328 1436 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:40:59.0328 1436 Secdrv - ok
15:40:59.0375 1436 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
15:40:59.0375 1436 seclogon - ok
15:40:59.0421 1436 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
15:40:59.0421 1436 SENS - ok
15:40:59.0437 1436 Ser2pl - ok
15:40:59.0468 1436 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:40:59.0468 1436 serenum - ok
15:40:59.0500 1436 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:40:59.0500 1436 Serial - ok
15:40:59.0531 1436 [ 1F16931C722C69E4A7866244796C66A0 ] sermouse C:\WINDOWS\system32\DRIVERS\sermouse.sys
15:40:59.0546 1436 sermouse - ok
15:40:59.0593 1436 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
15:40:59.0593 1436 Sfloppy - ok
15:40:59.0671 1436 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:40:59.0671 1436 SharedAccess - ok
15:40:59.0703 1436 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:40:59.0718 1436 ShellHWDetection - ok
15:40:59.0718 1436 Simbad - ok
15:40:59.0734 1436 Sparrow - ok
15:40:59.0765 1436 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:40:59.0765 1436 splitter - ok
15:40:59.0812 1436 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:40:59.0812 1436 Spooler - ok
15:40:59.0859 1436 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:40:59.0859 1436 sr - ok
15:40:59.0921 1436 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
15:40:59.0921 1436 srservice - ok
15:41:00.0015 1436 [ 7BB297CADA42903328E92425D9761DA6 ] SRTSP C:\WINDOWS\System32\Drivers\NIS\1309000.009\SRTSP.SYS
15:41:00.0015 1436 SRTSP - ok
15:41:00.0046 1436 [ 475FCF0F28D845BF1C8ABAC27F19003E ] SRTSPX C:\WINDOWS\system32\drivers\NIS\1309000.009\SRTSPX.SYS
15:41:00.0046 1436 SRTSPX - ok
15:41:00.0109 1436 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:41:00.0109 1436 Srv - ok
15:41:00.0140 1436 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:41:00.0156 1436 SSDPSRV - ok
15:41:00.0203 1436 [ 305CC42945A713347F978D78566113F3 ] STAC97 C:\WINDOWS\system32\drivers\STAC97.sys
15:41:00.0218 1436 STAC97 - ok
15:41:00.0265 1436 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
15:41:00.0265 1436 StillCam - ok
15:41:00.0312 1436 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:41:00.0312 1436 stisvc - ok
15:41:00.0375 1436 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:41:00.0375 1436 swenum - ok
15:41:00.0390 1436 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:41:00.0390 1436 swmidi - ok
15:41:00.0406 1436 SwPrv - ok
15:41:00.0437 1436 symc810 - ok
15:41:00.0453 1436 symc8xx - ok
15:41:00.0531 1436 [ 690FA0E61B90084C4D9A721BD4F3D779 ] SymDS C:\WINDOWS\system32\drivers\NIS\1309000.009\SYMDS.SYS
15:41:00.0531 1436 SymDS - ok
15:41:00.0609 1436 [ 8F88EDB211B12537D2DC2A6D73D6067C ] SymEFA C:\WINDOWS\system32\drivers\NIS\1309000.009\SYMEFA.SYS
15:41:00.0625 1436 SymEFA - ok
15:41:00.0703 1436 [ 74E2521E96176A4449570E50BE91954D ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
15:41:00.0703 1436 SymEvent - ok
15:41:00.0750 1436 [ 2C356CCA706505CF63CBE39D532B9236 ] SymIRON C:\WINDOWS\system32\drivers\NIS\1309000.009\Ironx86.SYS
15:41:00.0750 1436 SymIRON - ok
15:41:00.0812 1436 [ 508BD882040F9CB12319E3A4FC78EDB9 ] SYMTDI C:\WINDOWS\System32\Drivers\NIS\1309000.009\SYMTDI.SYS
15:41:00.0828 1436 SYMTDI - ok
15:41:00.0843 1436 sym_hi - ok
15:41:00.0859 1436 sym_u3 - ok
15:41:00.0890 1436 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:41:00.0890 1436 sysaudio - ok
15:41:00.0953 1436 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:41:00.0953 1436 SysmonLog - ok
15:41:01.0000 1436 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:41:01.0000 1436 TapiSrv - ok
15:41:01.0062 1436 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:41:01.0078 1436 Tcpip - ok
15:41:01.0109 1436 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:41:01.0125 1436 TDPIPE - ok
15:41:01.0156 1436 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:41:01.0156 1436 TDTCP - ok
15:41:01.0187 1436 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:41:01.0187 1436 TermDD - ok
15:41:01.0218 1436 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
15:41:01.0234 1436 TermService - ok
15:41:01.0281 1436 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
15:41:01.0281 1436 Themes - ok
15:41:01.0343 1436 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
15:41:01.0343 1436 TlntSvr - ok
15:41:01.0359 1436 TosIde - ok
15:41:01.0390 1436 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:41:01.0390 1436 TrkWks - ok
15:41:01.0421 1436 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:41:01.0421 1436 Udfs - ok
15:41:01.0453 1436 UIUSys - ok
15:41:01.0468 1436 ultra - ok
15:41:01.0531 1436 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:41:01.0546 1436 Update - ok
15:41:01.0578 1436 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:41:01.0578 1436 upnphost - ok
15:41:01.0625 1436 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
15:41:01.0625 1436 UPS - ok
15:41:01.0671 1436 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:41:01.0671 1436 usbccgp - ok
15:41:01.0703 1436 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:41:01.0703 1436 usbehci - ok
15:41:01.0718 1436 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:41:01.0718 1436 usbhub - ok
15:41:01.0765 1436 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:41:01.0765 1436 usbprint - ok
15:41:01.0812 1436 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:41:01.0812 1436 usbscan - ok
15:41:01.0843 1436 [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser C:\WINDOWS\system32\DRIVERS\usbser.sys
15:41:01.0843 1436 usbser - ok
15:41:01.0890 1436 [ AF4B8CC5EA40C57208796920068DDCD5 ] usbsermptxp C:\WINDOWS\system32\DRIVERS\usbsermptxp.sys
15:41:01.0890 1436 usbsermptxp - ok
15:41:01.0921 1436 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:41:01.0921 1436 USBSTOR - ok
15:41:01.0968 1436 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:41:01.0968 1436 usbuhci - ok
15:41:01.0984 1436 [ B6CC50279D6CD28E090A5D33244ADC9A ] usb_rndisx C:\WINDOWS\system32\DRIVERS\usb8023x.sys
15:41:01.0984 1436 usb_rndisx - ok
15:41:02.0015 1436 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:41:02.0015 1436 VgaSave - ok
15:41:02.0031 1436 ViaIde - ok
15:41:02.0062 1436 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:41:02.0062 1436 VolSnap - ok
15:41:02.0125 1436 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
15:41:02.0125 1436 VSS - ok
15:41:02.0343 1436 [ F0F902220910C4FBE42A51964BD33599 ] w29n51 C:\WINDOWS\system32\DRIVERS\w29n51.sys
15:41:02.0390 1436 w29n51 - ok
15:41:02.0421 1436 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
15:41:02.0421 1436 W32Time - ok
15:41:02.0453 1436 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:41:02.0453 1436 Wanarp - ok
15:41:02.0515 1436 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
15:41:02.0531 1436 Wdf01000 - ok
15:41:02.0546 1436 WDICA - ok
15:41:02.0578 1436 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:41:02.0578 1436 wdmaud - ok
15:41:02.0640 1436 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
15:41:02.0656 1436 WebClient - ok
15:41:02.0718 1436 [ 2DC7C0B6175A0A8ED84A4F70199C93B5 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:41:02.0734 1436 winachsf - ok
15:41:02.0843 1436 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:41:02.0843 1436 winmgmt - ok
15:41:02.0875 1436 [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB C:\WINDOWS\system32\DRIVERS\WinUSB.sys
15:41:02.0890 1436 WinUSB - ok
15:41:02.0953 1436 [ 43ED73F10DE96E0A23244BD9CF04F5C2 ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
15:41:02.0953 1436 WLANKEEPER - ok
15:41:03.0015 1436 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:41:03.0015 1436 WmdmPmSN - ok
15:41:03.0093 1436 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
15:41:03.0109 1436 Wmi - ok
15:41:03.0140 1436 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:41:03.0140 1436 WmiApSrv - ok
15:41:03.0281 1436 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
15:41:03.0296 1436 WMPNetworkSvc - ok
15:41:03.0343 1436 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:41:03.0343 1436 WpdUsb - ok
15:41:03.0406 1436 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:41:03.0406 1436 wscsvc - ok
15:41:03.0421 1436 WSearch - ok
15:41:03.0453 1436 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:41:03.0453 1436 wuauserv - ok
15:41:03.0500 1436 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:41:03.0500 1436 WudfPf - ok
15:41:03.0546 1436 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:41:03.0546 1436 WudfRd - ok
15:41:03.0578 1436 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:41:03.0578 1436 WudfSvc - ok
15:41:03.0656 1436 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:41:03.0656 1436 WZCSVC - ok
15:41:03.0703 1436 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:41:03.0703 1436 xmlprov - ok
15:41:03.0750 1436 ================ Scan global ===============================
15:41:03.0796 1436 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
15:41:03.0859 1436 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
15:41:03.0890 1436 [ 95CF3446911A6E25EE4086DF8A45B2AA ] C:\WINDOWS\system32\winsrv.dll
15:41:03.0937 1436 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
15:41:03.0937 1436 [Global] - ok
15:41:03.0937 1436 ================ Scan MBR ==================================
15:41:03.0968 1436 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
15:41:04.0234 1436 \Device\Harddisk0\DR0 - ok
15:41:04.0265 1436 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR2
15:41:06.0171 1436 \Device\Harddisk1\DR2 - ok
15:41:06.0187 1436 ================ Scan VBR ==================================
15:41:06.0187 1436 [ C8DF50684514547DEA64CBA5CBFDFF67 ] \Device\Harddisk0\DR0\Partition1
15:41:06.0187 1436 \Device\Harddisk0\DR0\Partition1 - ok
15:41:06.0203 1436 [ B132C36C57DD96F78545E8821B52EC19 ] \Device\Harddisk1\DR2\Partition1
15:41:06.0218 1436 \Device\Harddisk1\DR2\Partition1 - ok
15:41:06.0218 1436 ============================================================
15:41:06.0218 1436 Scan finished
15:41:06.0218 1436 ============================================================
15:41:06.0234 3080 Detected object count: 0
15:41:06.0234 3080 Actual detected object count: 0

#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 PM

Posted 12 January 2013 - 07:07 PM

Ok onto the other logs when ready. :thumbup2:

#10 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 12 January 2013 - 08:51 PM

Malware Log:
Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2013.01.12.10

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 7.0.5730.13
User :: PREFERRE-D4D022 [administrator]

Protection: Enabled

1/12/2013 3:53:13 PM
mbam-log-2013-01-12 (15-53-13).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 245324
Time elapsed: 28 minute(s), 8 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKCR\AppID\activex.DLL (Adware.180Solutions) -> Quarantined and deleted successfully.
HKLM\System\CurrentControlSet\Services\SfX (Rootkit.Agent) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 2
C:\Program Files\BrowserCtl (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\websrvx (Trojan.Downloader) -> Quarantined and deleted successfully.

Files Detected: 8
C:\WINDOWS\system32\certstore.dat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\010112010146120114.fx (Worm.KoobFace) -> Quarantined and deleted successfully.
C:\WINDOWS\01011201014650120.fx (Worm.KoobFace) -> Quarantined and deleted successfully.
C:\WINDOWS\0101120101465653.fx (Worm.KoobFace) -> Quarantined and deleted successfully.
C:\WINDOWS\934fdfg34fgjf23 (Worm.KoobFace) -> Quarantined and deleted successfully.
C:\WINDOWS\ectbbyn.dat (KoobFace.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\prxid93ps.dat (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\th823567.dat (Worm.KoobFace) -> Quarantined and deleted successfully.

(end)

#11 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 13 January 2013 - 02:39 AM

Sorry for the delay! I had previously installed Superantispyware and the oldest definitions were over a year old. It kept trying to update and got stuck in a loop. I had to uninstall and reinstall. It took 3 reboots, but it finally worked! Anyway, here is the scan...completely clean!

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 01/12/2013 at 11:29 PM

Application Version : 5.6.1014

Core Rules Database Version : 9864
Trace Rules Database Version: 7676

Scan type : Quick Scan
Total Scan Time : 00:17:44

Operating System Information
Windows XP Professional 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 536
Memory threats detected : 0
Registry items scanned : 32400
Registry threats detected : 0
File items scanned : 10776
File threats detected : 0


Now I will do the eset.

#12 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 PM

Posted 13 January 2013 - 01:53 PM

Along with the ese scan please also do the following.

  • Please download Malwarebytes Anti-Rootkit and save it to your desktop.
  • http://www.malwarebytes.org/products/mbar/
  • Be sure to print out and follow the instructions provided on that same page for performing a scan.
  • Caution: This is a beta version so also read the disclaimer and back up all your data before using.
  • When the scan completes, click on the Cleanup button to remove any threats found and reboot the computer if prompted to do so.
  • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
  • If there are problems with Internet access, Windows Update, Windows Firewall or other system issues, run the fixdamage tool located in the folder Malwarebytes Anti-Rootkit was run from and reboot your computer.
  • Two files (mbar-log-YYYY-MM-DD, system-log.txt) will be created and saved within that same folder.
  • Copy and paste the contents of these two log files in your next reply.



Download Adware Cleaner run it Click the delete button allow it to run and post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner

#13 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 13 January 2013 - 06:00 PM

I've been working at this since last night. I've run eset 3 times now. The first time, which took an hour and a half, I forgot to check the archives box. Since then, I've tried to run it 2 more time, only for it to get hung up each time at over an hour into it. It was running fine last night up until I ran superantispyware, but now seems bogged down.

One of the things I was planning on doing with this computer anyway, before using it again, was to delete everything but MS Office. All the pics, docs, etc., I have backed up and I wanted to get rid of everything and start fresh. Would cleaning it up now make the process go faster?

I'm sorry each step is taking so long. I think this computer is just cranky at being "awakened" after a year of slumber. Everything is wanting to update and isn't running as smoothly as it could.

I really appreciate all the help you're giving me! You're very kind (not to mention VERY knowledgeable!). You're a lifesaver!!

#14 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:49 PM

Posted 13 January 2013 - 06:33 PM

To delete all of the personal files from the machine there is an easy way to do that since you have everything backed up then just create a new admin user.

Hit the start button.
Control Panel.
User Accounts.
Create a new account.
Name it what you wish.
Hit Next.
Make sure computer Admin is ticked.

log off the machine and log back into the new account.


Hit the start button.
Control Panel.
User Accounts.
Change and Account.
Select your old Account.
Delete the account.
It will ask you if you wish to keep the files.
Select delete files then.
Delete Account.

Reboot your machine.

Open the copy of Ccleaner that is on the machine.
Hit the tools button then the start up button and disable all items.
Run the Cleaner of ccleaner close it then reboot.

Then open your add remove programs and un install Norton.
Run the Norton Removal tool.
http://download1us.softpedia.com/dl/0c6fc027db79f8dcb5843147e4651c0f/50f3430b/100026173/software/tweak/Norton_Removal_Tool.exe

Reboot the machine.

Hit the start button then Right Click My computer>>>>>>>>>>>>>>Properties>>>>>>>>>>>
Harwdare Tab>>>>>>>>>>>>>Device Manager.
Scroll down to the IDE ATA/ATAPI Controlers Left click the + to the left of the drivers.
Right Click and uninstall all of your Primary IDE drivers there most likely will be more than one of the Primary IDE Drivers Make sure and un-install All of them prior to rebooting.



Then run this .vbs on your machine please right click the link below and select save as and save it to your desktop double click it after saving allow it to run and a request to reboot the machine will be made please do so and check the issue.

http://winhlp.com/tools/resetdma.vbs

After you complete this tell me how the machine is running.

Edit: Also you may want to replace Norton with Avast unless the license is still good for norton.
http://www.filehippo.com/download_avast_antivirus/


If eset has found something that it can not remove or malwarebytes rootkit finds something that it can not remove then I am going to turn you over to the Malware removal forum so that more advanced tools can be used.
:thumbup2:

Edited by InadequateInfirmity, 13 January 2013 - 06:38 PM.


#15 treehigg

treehigg
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:49 PM

Posted 14 January 2013 - 11:39 AM

Yay! Good news...eset ran last night and there were ZERO threats found! It also ran in half the time and completed the full scan. The computer is running much smoother!!

Now for the bad news, upon rebooting, the computer "found new device" and keeps trying to find a driver for unknown device. In running the minitoolbox, I think I figured out it was from "Glary Utitlites". It was a program I briefly installed yesterday while trying to clean up this computer (before I got your oh-so-helpful post that got this thing cleaned up!). Anyway, I uninstalled it using Add/Remove Programs, yet it seems to have generated an error in the report.

Here is the report:

MiniToolBox by Farbar Version:10-01-2013
Ran by RJ (administrator) on 14-01-2013 at 08:22:56
Running from "E:\"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
Hosts file not detected in the default directory
========================= IP Configuration: ================================

Intel® PRO/Wireless 2200BG Network Connection = Wireless Network Connection (Connected)
Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : preferre-d4d022

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : westell.com



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . : westell.com

Description . . . . . . . . . . . : Intel® PRO/Wireless 2200BG Network Connection

Physical Address. . . . . . . . . : 00-16-6F-7F-4D-FB

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 10.0.0.29

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.0.0.1

DHCP Server . . . . . . . . . . . : 10.0.0.1

DNS Servers . . . . . . . . . . . : 10.0.0.1

Lease Obtained. . . . . . . . . . : Monday, January 14, 2013 8:10:15 AM

Lease Expires . . . . . . . . . . : Tuesday, January 15, 2013 8:10:15 AM



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller

Physical Address. . . . . . . . . : 00-15-C5-0D-B8-9A

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 10.0.0.1

Name: google.com
Addresses: 173.194.33.38, 173.194.33.39, 173.194.33.40, 173.194.33.41
173.194.33.46, 173.194.33.32, 173.194.33.33, 173.194.33.34, 173.194.33.35
173.194.33.36, 173.194.33.37



Pinging google.com [173.194.33.37] with 32 bytes of data:



Reply from 173.194.33.37: bytes=32 time=49ms TTL=57

Reply from 173.194.33.37: bytes=32 time=49ms TTL=57



Ping statistics for 173.194.33.37:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 49ms, Maximum = 49ms, Average = 49ms

Server: dslrouter.westell.com
Address: 10.0.0.1

Name: yahoo.com
Addresses: 98.138.253.109, 98.139.183.24, 72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:



Reply from 72.30.38.140: bytes=32 time=107ms TTL=55

Reply from 72.30.38.140: bytes=32 time=88ms TTL=55



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 88ms, Maximum = 107ms, Average = 97ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 16 6f 7f 4d fb ...... Intel® PRO/Wireless 2200BG Network Connection - Packet Scheduler Miniport
0x3 ...00 15 c5 0d b8 9a ...... Broadcom NetXtreme 57xx Gigabit Controller - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.0.0.1 10.0.0.29 25
10.0.0.0 255.255.255.0 10.0.0.29 10.0.0.29 25
10.0.0.29 255.255.255.255 127.0.0.1 127.0.0.1 25
10.255.255.255 255.255.255.255 10.0.0.29 10.0.0.29 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
224.0.0.0 240.0.0.0 10.0.0.29 10.0.0.29 25
255.255.255.255 255.255.255.255 10.0.0.29 3 1
255.255.255.255 255.255.255.255 10.0.0.29 10.0.0.29 1
Default Gateway: 10.0.0.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/13/2013 08:59:46 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\RJ HIGGINS\RECENT\DESKTOP.INI> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (01/13/2013 07:42:51 PM) (Source: Application Hang) (User: )
Description: Hanging application inststub.exe, version 19.9.0.9, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (01/13/2013 06:44:10 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.


Details:
This operation returned because the timeout period expired. (0x800705b4)

Error: (01/13/2013 06:32:09 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\USER\DESKTOP\GLARY UTILITIES.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (01/13/2013 06:32:09 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\USER\DESKTOP\GLARY UTILITIES.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (01/13/2013 06:18:44 PM) (Source: ESENT) (User: )
Description: SearchIndexer (2820) The database engine is rejecting update operations due to low free disk space on the log disk.

Error: (01/13/2013 06:18:44 PM) (Source: ESENT) (User: )
Description: SearchIndexer (2820) An attempt to create the file "C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\MSStmp.log" failed with system error 1450 (0x000005aa): "Insufficient system resources exist to complete the requested service. ". The create file operation will fail with error -1011 (0xfffffc0d).

Error: (01/13/2013 06:18:39 PM) (Source: ESENT) (User: )
Description: SearchIndexer (2820) The database engine is rejecting update operations due to low free disk space on the log disk.

Error: (01/13/2013 06:18:39 PM) (Source: ESENT) (User: )
Description: SearchIndexer (2820) An attempt to create the file "C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\MSStmp.log" failed with system error 1450 (0x000005aa): "Insufficient system resources exist to complete the requested service. ". The create file operation will fail with error -1011 (0xfffffc0d).

Error: (01/13/2013 06:18:31 PM) (Source: ESENT) (User: )
Description: SearchIndexer (2820) An attempt to create the file "C:\Documents and Settings\All Users\Application Data\Microsoft\Search\Data\Applications\Windows\res2.log" failed with system error 1450 (0x000005aa): "Insufficient system resources exist to complete the requested service. ". The create file operation will fail with error -1011 (0xfffffc0d).


System errors:
=============
Error: (01/13/2013 11:56:00 PM) (Source: Schedule) (User: )
Description: The At48.job command failed to start due to the following error:
%%2147942402

Error: (01/13/2013 11:56:00 PM) (Source: Schedule) (User: )
Description: The At47.job command failed to start due to the following error:
%%2147942402

Error: (01/13/2013 10:56:02 PM) (Source: Schedule) (User: )
Description: The At46.job command failed to start due to the following error:
%%2147942402

Error: (01/13/2013 10:56:02 PM) (Source: Schedule) (User: )
Description: The At45.job command failed to start due to the following error:
%%2147942402

Error: (01/13/2013 09:56:01 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout.

Error: (01/13/2013 09:56:00 PM) (Source: Schedule) (User: )
Description: The At44.job command failed to start due to the following error:
%%2147942402

Error: (01/13/2013 09:56:00 PM) (Source: Schedule) (User: )
Description: The At43.job command failed to start due to the following error:
%%2147942402

Error: (01/13/2013 09:54:26 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {4BEE36D7-DF28-49C1-8B85-1F3AED830E66} did not register with DCOM within the required timeout.

Error: (01/13/2013 09:53:46 PM) (Source: DCOM) (User: PREFERRE-D4D022)
Description: The server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} did not register with DCOM within the required timeout.

Error: (01/13/2013 08:56:00 PM) (Source: Schedule) (User: )
Description: The At42.job command failed to start due to the following error:
%%2147942402


Microsoft Office Sessions:
=========================
Error: (06/28/2010 08:43:32 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6514.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 27 seconds with 0 seconds of active time. This session ended with a crash.

Error: (10/13/2009 08:11:06 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.

Error: (10/13/2009 08:10:55 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash.

Error: (09/22/2009 11:16:11 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.

Error: (09/18/2009 05:20:08 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 22 seconds with 0 seconds of active time. This session ended with a crash.

Error: (09/14/2009 06:28:20 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 7 seconds with 0 seconds of active time. This session ended with a crash.

Error: (09/14/2009 09:28:51 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash.

Error: (09/10/2009 09:23:52 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash.

Error: (08/26/2009 09:40:48 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.

Error: (08/26/2009 09:40:37 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 3.1.1)
Adobe AIR (Version: 3.3.0.3650)
Adobe Flash Player 10 Plugin (Version: 10.1.82.76)
Adobe Flash Player 11 ActiveX (Version: 11.0.1.152)
Adobe Reader 9 (Version: 9.0.0)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
ATI - Software Uninstall Utility (Version: 6.14.10.1010)
ATI Control Panel (Version: 6.14.10.5125)
ATI Display Driver (Version: 8.063.2.1.1-050111a-020427C-Dell)
Broadcom Gigabit Integrated Controller (Version: 7.53.02)
C-Major Audio (Version: 42xx)
CCleaner (Version: 3.26)
Cole2k Media - Codec Pack (Advanced) 7.9.1
Conexant D110 MDC V.9x Modem
Dell ResourceCD
DocProc (Version: 12.0.0.0)
ESET Online Scanner v3
Google Update Helper (Version: 1.3.21.123)
HPDiagnosticAlert (Version: 1.00.0000)
Intel® PROSet/Wireless Software (Version: 9.00.0000)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
mCore (Version: 1.19.0000)
mDriver (Version: 1.19.0000)
mDrWiFi (Version: 1.19.0000)
mHlpDell (Version: 1.19.0000)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft English TTS Engine (Version: 2.0.1000.0)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook Connector (Version: 12.0.6423.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6425.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft WinUsb 1.0
mIWA (Version: 1.19.0000)
mIWCA (Version: 1.19.0000)
mLogView (Version: 1.19.0000)
mMHouse (Version: 1.19.0000)
MotoHelper MergeModules (Version: 1.2.0)
mPfMgr (Version: 1.19.0000)
mPfWiz (Version: 1.19.0000)
mProSafe (Version: 9.00.0000)
mSSO (Version: 1.19.0000)
MSVCSetup (Version: 1.00.0000)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
mToolkit (Version: 1.19.0000)
mWlsSafe (Version: 9.00.0000)
mXML (Version: 1.19.0000)
mZConfig (Version: 1.19.0000)
Norton Internet Security (Version: 20.2.0.19)
OCR Software by I.R.I.S. 12.0 (Version: 12.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PerfectDisk (Version: 8.00)
QuickTime (Version: 7.66.71.0)
SAPI Wrapper (Version: 1.0.0.0)
swMSM (Version: 12.0.0.1)
Texas Instruments PCIxx21/x515 drivers. (Version: 1.03.0001)
TI_Inst (Version: 1.03.0001)
TTS Wrapper (Version: 1.0.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Outlook 2007 Junk Email Filter (KB2596560)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 7 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB961503) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
WebFldrs XP (Version: 9.50.7523)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0 (Version: 04.00.6001.503)
Windows XP Service Pack 3 (Version: 20080414.031525)
WinX DVD Ripper 5.0.0

========================= Memory info: ===================================

Percentage of memory in use: 62%
Total physical RAM: 1023.36 MB
Available physical RAM: 381.18 MB
Total Pagefile: 2459.24 MB
Available Pagefile: 1938.26 MB
Total Virtual: 2047.88 MB
Available Virtual: 1968 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:37.26 GB) (Free:17.73 GB) NTFS
3 Drive e: (RJ USB 2) (Removable) (Total:0.96 GB) (Free:0.92 GB) FAT

========================= Users: ========================================

User accounts for \\PREFERRE-D4D022

Administrator Guest HelpAssistant
RJ SUPPORT_388945a0


**** End of log ****


Other than that, everything seems fixed!! I'm so thankful for your help. You're awesome!! :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users