MitchDA

Hello, I ran ESET and the results were 0 infected, 0 cleaned. There was no report. Everything is ok, thanks so much, you are greatly appreciated.

I removed norton and did a reinstall via download and it now works fine. I also removed mbam and reinstalled, updates now work and so does scan. Thank you so very much. You guys are great. Not that it really matters but what do you think it was that was on my system? Thanks again.

I booted in regular mode and the results are the same for both mbam and norton.

By the way, I am still booted in safe mode and will wait to here from you if I should attempt a regular boot.

Yea, in the privious tasks I booted in safe mode "with networking" and was able to access internet and download from bleepingcomputer and run. So, for the sake of progress I went to my desktop (a different comp) and downloaded to a flash drive. I then ran combofix on the infected laptop, in safe mode and it ran to the poin of warning me that NIS(Norton Internet Securing) needs to be disabled. Used Admin Services and it said NIS was stopped, looked in Task Manager Processes and NIS is not running anywhere. I then said yes to the combofix warnings. Got to the point of needing to install Recovery Console, said yes, installed ok and continued running combofix. Report attached. Thanks again for your assistance. ComboFix 12-05-12.01 - The Laptop 05/12/2012 14:41:56.1.2 - x86 NETWORK Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2038.1766 [GMT -6:00] Running from: F:\ComboFix.exe AV: Norton Internet Security *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8} FW: Norton Internet Security *Enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\The Laptop\Desktop\Internet Explorer.lnk c:\documents and settings\The Laptop\WINDOWS . . ((((((((((((((((((((((((( Files Created from 2012-04-12 to 2012-05-12 ))))))))))))))))))))))))))))))) . . 2012-05-10 21:14 . 2012-05-10 21:59 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-05-10 21:14 . 2012-04-04 21:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-05-10 21:10 . 2012-05-10 21:10 -------- d-----w- c:\documents and settings\The Laptop\Application Data\Malwarebytes 2012-05-10 21:10 . 2012-05-10 21:10 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2012-05-06 21:17 . 2012-05-06 21:17 -------- d-----w- c:\windows\system32\drivers\NBRTWizard 2012-05-06 21:17 . 2012-05-06 21:17 -------- d-----w- c:\program files\Norton Bootable Recovery Tool Wizard 2012-05-06 19:10 . 2012-05-06 19:14 -------- d-----w- c:\documents and settings\The Laptop\Local Settings\Application Data\NPE . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-04-11 13:14 . 2008-04-14 07:00 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-04-11 13:12 . 2008-04-14 07:00 1862272 ----a-w- c:\windows\system32\win32k.sys 2012-04-11 12:35 . 2008-04-14 00:01 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe 2012-03-01 11:01 . 2008-04-14 07:00 916992 ----a-w- c:\windows\system32\wininet.dll 2012-03-01 11:01 . 2008-04-14 07:00 43520 ------w- c:\windows\system32\licmgr10.dll 2012-03-01 11:01 . 2008-04-14 07:00 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-02-29 14:10 . 2008-04-14 07:00 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-02-29 14:10 . 2008-04-14 07:00 148480 ----a-w- c:\windows\system32\imagehlp.dll 2012-02-29 12:17 . 2008-04-14 07:00 385024 ------w- c:\windows\system32\html.iec 2011-03-18 17:53 . 2011-04-04 14:41 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AdobeBridge"="c:\program files\Adobe\Adobe Bridge CS4\Bridge.exe" [2008-08-29 13145448] "Facebook Update"="c:\documents and settings\The Laptop\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" [2011-09-15 137536] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2008-11-20 128296] "Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2008-11-26 2289664] "RTHDCPL"="RTHDCPL.EXE" [2007-11-06 16855552] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752] "DELL Webcam Manager"="c:\program files\Dell\Dell Webcam Manager\DellWMgr.exe" [2007-07-27 118784] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840] "OEM13Mon.exe"="c:\windows\OEM13Mon.exe" [2008-01-08 36864] "AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712] "AmazonGSDownloaderTray"="c:\program files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderTray.exe" [2009-10-23 326144] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-04-11 56080] "Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-04-11 56080] "AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-04-20 58656] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2011-07-06 421888] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-10-10 421736] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-04 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408] . c:\documents and settings\The Laptop\Start Menu\Programs\Startup\ Product Registration.lnk - c:\program files\Common Files\LogiShared\eReg\SetPoint\eReg.exe [N/A] . c:\documents and settings\All Users\Start Menu\Programs\Startup\ ExifLauncher2.lnk - c:\program files\FinePixViewer\QuickDCF2.exe [2011-4-8 303104] HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2008-10-16 214360] Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2011-4-4 692224] Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToAssist] 2010-12-16 18:10 10536 ----a-w- c:\program files\Citrix\GoToAssist\514\g2awinlogon.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup] @="" . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"= "c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"= "c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Documents and Settings\\The Laptop\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "5353:TCP"= 5353:TCP:Adobe CSI CS4 . R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1305000.091\symds.sys [2/6/2012 5:21 PM 340088] R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1305000.091\symefa.sys [2/6/2012 5:21 PM 905336] R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [12/16/2010 12:51 PM 51288] R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [12/16/2010 12:51 PM 43608] S0 cerc6;cerc6; [x] S1 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20120121.002\BHDrvx86.sys [1/23/2012 9:02 PM 820344] S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NIS\1305000.091\ccsetx86.sys [2/6/2012 5:21 PM 132744] S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1305000.091\ironx86.sys [2/6/2012 5:21 PM 149624] S2 Amazon Download Agent;Amazon Download Agent;c:\program files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe [2/10/2011 10:02 AM 401920] S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [5/8/2011 11:43 AM 136176] S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [5/10/2012 3:14 PM 654408] S2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\19.5.0.145\ccsvchst.exe [2/6/2012 5:21 PM 138248] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2/7/2012 6:36 PM 106104] S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [5/8/2011 11:43 AM 136176] S3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20120207.005\IDSXpx86.sys [2/7/2012 6:36 PM 356280] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [5/10/2012 3:14 PM 22344] S3 OEM13Afx;Provides a software interface to control audio effects of OEM013 camera.;c:\windows\system32\drivers\OEM13Afx.sys [12/18/2010 10:59 AM 141376] S3 OEM13Vfx;Creative Camera OEM013 Video VFX Driver;c:\windows\system32\drivers\OEM13Vfx.sys [12/18/2010 10:59 AM 7424] S3 OEM13Vid;Creative Camera OEM013 Driver;c:\windows\system32\drivers\OEM13Vid.sys [12/18/2010 10:59 AM 235840] . --- Other Services/Drivers In Memory --- . *NewlyCreated* - NTLMSSP . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Contents of the 'Scheduled Tasks' folder . 2012-05-07 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 23:57] . 2012-05-07 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1409082233-343818398-1177238915-1003Core.job - c:\documents and settings\The Laptop\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-09-15 23:49] . 2012-05-12 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1409082233-343818398-1177238915-1003UA.job - c:\documents and settings\The Laptop\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-09-15 23:49] . 2012-05-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-05-08 17:43] . 2012-05-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-05-08 17:43] . . ------- Supplementary Scan ------- . uStart Page = hxxp://forecast.weather.gov/MapClick.php?lat=37.32570371143586&lon=-107.8009843826294&site=gjt&smap=1&unit=0&lg=en&FcstType=text uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = *.local TCP: DhcpNameServer = 192.168.0.1 FF - ProfilePath - c:\documents and settings\The Laptop\Application Data\Mozilla\Firefox\Profiles\fmf003j7.default\ . - - - - ORPHANS REMOVED - - - - . HKLM-Run-PRISMSVR.EXE - c:\windows\system32\PRISMSVR.EXE AddRemove-NIS - c:\program files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\562C4DD5\19.2.0.10\InstStub.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2012-05-12 14:45 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NIS] "ImagePath"="\"c:\program files\Norton Internet Security\Engine\19.5.0.145\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\19.5.0.145\diMaster.dll\" /prefetch:1" . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(828) c:\program files\Citrix\GoToAssist\514\G2AWinLogon.dll c:\windows\System32\BCMLogon.dll . Completion time: 2012-05-12 14:46:13 ComboFix-quarantined-files.txt 2012-05-12 20:46 . Pre-Run: 92,323,577,856 bytes free Post-Run: 93,416,607,744 bytes free . WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect . - - End Of File - - 31C1666C39813A8E09EFB9C53D059D9C

I booted in safe mode, same results from both sites.

Hello, I ran combofix from bleepingcomputer and wen't through the initial prompts and it started running a script and then the box disappeared and nothing else happened. I then wen't to forospyware, hit download, it brought up a screen of unreadable text and sat in "waiting for" mode forever. Then I tried running from bleepingcomputer again with same results. No prompts, no files created. Thank You

Hello, I downloaded tdsskiller, it ran ok and found no results. Following is the report. Thank You 09:01:49.0484 0932 TDSS rootkit removing tool 2.7.34.0 May 2 2012 09:59:18 09:01:49.0609 0932 ============================================================ 09:01:49.0609 0932 Current date / time: 2012/05/12 09:01:49.0609 09:01:49.0609 0932 SystemInfo: 09:01:49.0609 0932 09:01:49.0609 0932 OS Version: 5.1.2600 ServicePack: 3.0 09:01:49.0609 0932 Product type: Workstation 09:01:49.0609 0932 ComputerName: LAPTOP 09:01:49.0609 0932 UserName: The Laptop 09:01:49.0609 0932 Windows directory: C:\WINDOWS 09:01:49.0609 0932 System windows directory: C:\WINDOWS 09:01:49.0609 0932 Processor architecture: Intel x86 09:01:49.0609 0932 Number of processors: 2 09:01:49.0609 0932 Page size: 0x1000 09:01:49.0609 0932 Boot type: Normal boot 09:01:49.0609 0932 ============================================================ 09:01:50.0000 0932 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 09:01:50.0000 0932 Drive \Device\Harddisk1\DR2 - Size: 0x3F240000 (0.99 Gb), SectorSize: 0x200, Cylinders: 0x80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 09:01:50.0015 0932 ============================================================ 09:01:50.0015 0932 \Device\Harddisk0\DR0: 09:01:50.0015 0932 MBR partitions: 09:01:50.0015 0932 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1 09:01:50.0015 0932 \Device\Harddisk1\DR2: 09:01:50.0015 0932 MBR partitions: 09:01:50.0015 0932 \Device\Harddisk1\DR2\Partition0: MBR, Type 0xB, StartLBA 0x80, BlocksNum 0x1F6080 09:01:50.0015 0932 ============================================================ 09:01:50.0046 0932 C: <-> \Device\Harddisk0\DR0\Partition0 09:01:50.0046 0932 ============================================================ 09:01:50.0046 0932 Initialize success 09:01:50.0046 0932 ============================================================ 09:01:53.0593 0904 ============================================================ 09:01:53.0593 0904 Scan started 09:01:53.0593 0904 Mode: Manual; 09:01:53.0593 0904 ============================================================ 09:01:54.0203 0904 2WIREPCP (6551c1cf190df3e12c435a085987fba0) C:\WINDOWS\system32\DRIVERS\2WirePCP.sys 09:01:54.0218 0904 2WIREPCP - ok 09:01:54.0218 0904 Abiosdsk - ok 09:01:54.0234 0904 abp480n5 - ok 09:01:54.0296 0904 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys 09:01:54.0296 0904 ACPI - ok 09:01:54.0328 0904 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys 09:01:54.0328 0904 ACPIEC - ok 09:01:54.0328 0904 adpu160m - ok 09:01:54.0390 0904 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 09:01:54.0406 0904 aec - ok 09:01:54.0468 0904 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 09:01:54.0468 0904 AFD - ok 09:01:54.0484 0904 Aha154x - ok 09:01:54.0500 0904 aic78u2 - ok 09:01:54.0500 0904 aic78xx - ok 09:01:54.0531 0904 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll 09:01:54.0531 0904 Alerter - ok 09:01:54.0562 0904 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe 09:01:54.0562 0904 ALG - ok 09:01:54.0578 0904 AliIde - ok 09:01:54.0703 0904 Amazon Download Agent (ff6f0f6a2d72065ae4300426fa414693) C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe 09:01:54.0703 0904 Amazon Download Agent - ok 09:01:54.0718 0904 amsint - ok 09:01:54.0828 0904 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 09:01:54.0828 0904 Apple Mobile Device - ok 09:01:54.0859 0904 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll 09:01:54.0875 0904 AppMgmt - ok 09:01:54.0906 0904 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys 09:01:54.0906 0904 Arp1394 - ok 09:01:54.0921 0904 asc - ok 09:01:54.0921 0904 asc3350p - ok 09:01:54.0937 0904 asc3550 - ok 09:01:55.0046 0904 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 09:01:55.0078 0904 aspnet_state - ok 09:01:55.0093 0904 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 09:01:55.0093 0904 AsyncMac - ok 09:01:55.0140 0904 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 09:01:55.0140 0904 atapi - ok 09:01:55.0156 0904 Atdisk - ok 09:01:55.0187 0904 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 09:01:55.0187 0904 Atmarpc - ok 09:01:55.0218 0904 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll 09:01:55.0234 0904 AudioSrv - ok 09:01:55.0265 0904 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 09:01:55.0281 0904 audstub - ok 09:01:55.0406 0904 BCM43XX (37f385a93c620cbe0f89c17e45f697a1) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys 09:01:55.0421 0904 BCM43XX - ok 09:01:55.0468 0904 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 09:01:55.0468 0904 Beep - ok 09:01:55.0656 0904 BHDrvx86 (e685ba3267c5a4ec4ce9e2b4a1481725) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20120121.002\BHDrvx86.sys 09:01:55.0671 0904 BHDrvx86 - ok 09:01:55.0734 0904 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll 09:01:55.0750 0904 BITS - ok 09:01:55.0843 0904 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 09:01:55.0859 0904 Bonjour Service - ok 09:01:55.0906 0904 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll 09:01:55.0906 0904 Browser - ok 09:01:55.0953 0904 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 09:01:55.0968 0904 cbidf2k - ok 09:01:55.0984 0904 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 09:01:55.0984 0904 CCDECODE - ok 09:01:56.0093 0904 ccSet_NIS (599e7f6259a127c174c49938d2aa6a60) C:\WINDOWS\system32\drivers\NIS\1305000.091\ccSetx86.sys 09:01:56.0093 0904 ccSet_NIS - ok 09:01:56.0109 0904 cd20xrnt - ok 09:01:56.0140 0904 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 09:01:56.0140 0904 Cdaudio - ok 09:01:56.0156 0904 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 09:01:56.0171 0904 Cdfs - ok 09:01:56.0218 0904 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 09:01:56.0218 0904 Cdrom - ok 09:01:56.0218 0904 cerc6 - ok 09:01:56.0234 0904 Changer - ok 09:01:56.0265 0904 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe 09:01:56.0265 0904 CiSvc - ok 09:01:56.0281 0904 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe 09:01:56.0281 0904 ClipSrv - ok 09:01:56.0375 0904 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 09:01:56.0390 0904 clr_optimization_v2.0.50727_32 - ok 09:01:56.0421 0904 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys 09:01:56.0421 0904 CmBatt - ok 09:01:56.0421 0904 CmdIde - ok 09:01:56.0437 0904 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys 09:01:56.0437 0904 Compbatt - ok 09:01:56.0453 0904 COMSysApp - ok 09:01:56.0468 0904 Cpqarray - ok 09:01:56.0484 0904 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll 09:01:56.0484 0904 CryptSvc - ok 09:01:56.0500 0904 dac2w2k - ok 09:01:56.0515 0904 dac960nt - ok 09:01:56.0578 0904 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll 09:01:56.0593 0904 DcomLaunch - ok 09:01:56.0609 0904 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll 09:01:56.0625 0904 Dhcp - ok 09:01:56.0625 0904 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 09:01:56.0625 0904 Disk - ok 09:01:56.0640 0904 dmadmin - ok 09:01:56.0718 0904 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys 09:01:56.0734 0904 dmboot - ok 09:01:56.0750 0904 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys 09:01:56.0750 0904 dmio - ok 09:01:56.0796 0904 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 09:01:56.0796 0904 dmload - ok 09:01:56.0812 0904 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll 09:01:56.0812 0904 dmserver - ok 09:01:56.0859 0904 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 09:01:56.0859 0904 DMusic - ok 09:01:56.0890 0904 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll 09:01:56.0890 0904 Dnscache - ok 09:01:56.0906 0904 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll 09:01:56.0921 0904 Dot3svc - ok 09:01:56.0921 0904 dpti2o - ok 09:01:56.0953 0904 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 09:01:56.0953 0904 drmkaud - ok 09:01:56.0984 0904 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll 09:01:56.0984 0904 EapHost - ok 09:01:57.0093 0904 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 09:01:57.0093 0904 eeCtrl - ok 09:01:57.0125 0904 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 09:01:57.0140 0904 EraserUtilRebootDrv - ok 09:01:57.0156 0904 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll 09:01:57.0156 0904 ERSvc - ok 09:01:57.0203 0904 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe 09:01:57.0234 0904 Eventlog - ok 09:01:57.0281 0904 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll 09:01:57.0281 0904 EventSystem - ok 09:01:57.0328 0904 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 09:01:57.0328 0904 Fastfat - ok 09:01:57.0375 0904 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 09:01:57.0375 0904 FastUserSwitchingCompatibility - ok 09:01:57.0390 0904 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys 09:01:57.0390 0904 Fdc - ok 09:01:57.0406 0904 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys 09:01:57.0421 0904 Fips - ok 09:01:57.0515 0904 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 09:01:57.0531 0904 FLEXnet Licensing Service - ok 09:01:57.0531 0904 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 09:01:57.0531 0904 Flpydisk - ok 09:01:57.0578 0904 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys 09:01:57.0593 0904 FltMgr - ok 09:01:57.0687 0904 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 09:01:57.0687 0904 FontCache3.0.0.0 - ok 09:01:57.0718 0904 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 09:01:57.0718 0904 Fs_Rec - ok 09:01:57.0734 0904 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 09:01:57.0750 0904 Ftdisk - ok 09:01:57.0781 0904 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 09:01:57.0781 0904 GEARAspiWDM - ok 09:01:57.0843 0904 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe 09:01:57.0843 0904 GoToAssist - ok 09:01:57.0875 0904 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 09:01:57.0890 0904 Gpc - ok 09:01:57.0984 0904 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 09:01:57.0984 0904 gupdate - ok 09:01:57.0984 0904 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 09:01:57.0984 0904 gupdatem - ok 09:01:58.0046 0904 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 09:01:58.0046 0904 HDAudBus - ok 09:01:58.0109 0904 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 09:01:58.0109 0904 helpsvc - ok 09:01:58.0140 0904 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll 09:01:58.0140 0904 HidServ - ok 09:01:58.0156 0904 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 09:01:58.0156 0904 hidusb - ok 09:01:58.0171 0904 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll 09:01:58.0171 0904 hkmsvc - ok 09:01:58.0187 0904 hpn - ok 09:01:58.0281 0904 hpqcxs08 (ce0fcec4d4d860f36d972759b11eaf0f) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll 09:01:58.0296 0904 hpqcxs08 - ok 09:01:58.0312 0904 hpqddsvc (7da3211ac63edd90b8eca1ca1abfd43b) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll 09:01:58.0328 0904 hpqddsvc - ok 09:01:58.0406 0904 HPSLPSVC (14229263aa19c704e0d6d2e7404a8455) C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL 09:01:58.0406 0904 HPSLPSVC - ok 09:01:58.0484 0904 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 09:01:58.0484 0904 HTTP - ok 09:01:58.0531 0904 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll 09:01:58.0531 0904 HTTPFilter - ok 09:01:58.0546 0904 i2omgmt - ok 09:01:58.0546 0904 i2omp - ok 09:01:58.0593 0904 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 09:01:58.0593 0904 i8042prt - ok 09:01:59.0140 0904 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 09:01:59.0265 0904 ialm - ok 09:01:59.0406 0904 iastor (d483687eace0c065ee772481a96e05f5) C:\WINDOWS\system32\drivers\iastor.sys 09:01:59.0421 0904 iastor - ok 09:01:59.0593 0904 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 09:01:59.0609 0904 idsvc - ok 09:01:59.0750 0904 IDSxpx86 (cfbc1ce72e5353d428704659199147b1) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20120207.005\IDSxpx86.sys 09:01:59.0750 0904 IDSxpx86 - ok 09:01:59.0843 0904 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 09:01:59.0843 0904 Imapi - ok 09:01:59.0875 0904 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe 09:01:59.0875 0904 ImapiService - ok 09:01:59.0890 0904 ini910u - ok 09:02:00.0265 0904 IntcAzAudAddService (613a2b00da1d4a80de1ec8cfb52c0d89) C:\WINDOWS\system32\drivers\RtkHDAud.sys 09:02:00.0328 0904 IntcAzAudAddService - ok 09:02:00.0406 0904 IntelIde - ok 09:02:00.0437 0904 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys 09:02:00.0437 0904 intelppm - ok 09:02:00.0468 0904 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys 09:02:00.0468 0904 Ip6Fw - ok 09:02:00.0500 0904 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 09:02:00.0500 0904 IpFilterDriver - ok 09:02:00.0500 0904 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 09:02:00.0500 0904 IpInIp - ok 09:02:00.0531 0904 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 09:02:00.0531 0904 IpNat - ok 09:02:00.0656 0904 iPod Service (33642c17c232aa272c68e446a2619899) C:\Program Files\iPod\bin\iPodService.exe 09:02:00.0656 0904 iPod Service - ok 09:02:00.0703 0904 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 09:02:00.0703 0904 IPSec - ok 09:02:00.0734 0904 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 09:02:00.0734 0904 IRENUM - ok 09:02:00.0781 0904 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys 09:02:00.0781 0904 isapnp - ok 09:02:00.0828 0904 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 09:02:00.0828 0904 Kbdclass - ok 09:02:00.0843 0904 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 09:02:00.0859 0904 kbdhid - ok 09:02:00.0890 0904 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 09:02:00.0906 0904 kmixer - ok 09:02:00.0937 0904 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 09:02:00.0937 0904 KSecDD - ok 09:02:00.0984 0904 L8042Kbd (d88846f9f4f27ae9be584a6e5b6b8753) C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys 09:02:00.0984 0904 L8042Kbd - ok 09:02:01.0000 0904 L8042mou (bea61fda2103f6f51b14eb0872e8a050) C:\WINDOWS\system32\DRIVERS\L8042mou.Sys 09:02:01.0000 0904 L8042mou - ok 09:02:01.0031 0904 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll 09:02:01.0046 0904 LanmanServer - ok 09:02:01.0125 0904 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll 09:02:01.0125 0904 lanmanworkstation - ok 09:02:01.0140 0904 lbrtfdc - ok 09:02:01.0187 0904 LHidFilt (3fa98339e8d9e007726be62f231e2015) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys 09:02:01.0187 0904 LHidFilt - ok 09:02:01.0218 0904 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll 09:02:01.0234 0904 LmHosts - ok 09:02:01.0265 0904 LMouFilt (f259f758e04d8fb8d48c6cdbe45223e8) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys 09:02:01.0265 0904 LMouFilt - ok 09:02:01.0281 0904 LMouKE (cab504e38fced9a56d87d838e9ba13e9) C:\WINDOWS\system32\DRIVERS\LMouKE.Sys 09:02:01.0281 0904 LMouKE - ok 09:02:01.0312 0904 LUsbFilt (ca26e46ec8891058c9e10363df4e4650) C:\WINDOWS\system32\Drivers\LUsbFilt.Sys 09:02:01.0312 0904 LUsbFilt - ok 09:02:01.0343 0904 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\WINDOWS\system32\drivers\mbam.sys 09:02:01.0343 0904 MBAMProtector - ok 09:02:01.0500 0904 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe 09:02:01.0515 0904 MBAMService - ok 09:02:01.0562 0904 MDC8021X (d7010580bf4e45d5e793a1fe75758c69) C:\WINDOWS\system32\DRIVERS\mdc8021x.sys 09:02:01.0562 0904 MDC8021X - ok 09:02:01.0593 0904 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll 09:02:01.0609 0904 Messenger - ok 09:02:01.0625 0904 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 09:02:01.0625 0904 mnmdd - ok 09:02:01.0671 0904 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe 09:02:01.0671 0904 mnmsrvc - ok 09:02:01.0687 0904 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys 09:02:01.0687 0904 Modem - ok 09:02:01.0734 0904 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys 09:02:01.0734 0904 Mouclass - ok 09:02:01.0765 0904 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys 09:02:01.0781 0904 mouhid - ok 09:02:01.0812 0904 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 09:02:01.0812 0904 MountMgr - ok 09:02:01.0812 0904 mraid35x - ok 09:02:01.0843 0904 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 09:02:01.0843 0904 MRxDAV - ok 09:02:01.0921 0904 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 09:02:01.0937 0904 MRxSmb - ok 09:02:01.0968 0904 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe 09:02:01.0968 0904 MSDTC - ok 09:02:02.0000 0904 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 09:02:02.0000 0904 Msfs - ok 09:02:02.0000 0904 MSIServer - ok 09:02:02.0046 0904 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 09:02:02.0046 0904 MSKSSRV - ok 09:02:02.0062 0904 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 09:02:02.0062 0904 MSPCLOCK - ok 09:02:02.0078 0904 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 09:02:02.0078 0904 MSPQM - ok 09:02:02.0109 0904 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 09:02:02.0109 0904 mssmbios - ok 09:02:02.0140 0904 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 09:02:02.0140 0904 MSTEE - ok 09:02:02.0156 0904 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 09:02:02.0156 0904 Mup - ok 09:02:02.0187 0904 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 09:02:02.0187 0904 NABTSFEC - ok 09:02:02.0265 0904 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll 09:02:02.0265 0904 napagent - ok 09:02:02.0390 0904 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120207.005\NAVENG.SYS 09:02:02.0390 0904 NAVENG - ok 09:02:02.0578 0904 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20120207.005\NAVEX15.SYS 09:02:02.0609 0904 NAVEX15 - ok 09:02:02.0750 0904 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 09:02:02.0765 0904 NDIS - ok 09:02:02.0781 0904 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 09:02:02.0781 0904 NdisIP - ok 09:02:02.0812 0904 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 09:02:02.0812 0904 NdisTapi - ok 09:02:02.0843 0904 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 09:02:02.0859 0904 Ndisuio - ok 09:02:02.0859 0904 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 09:02:02.0875 0904 NdisWan - ok 09:02:02.0906 0904 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 09:02:02.0906 0904 NDProxy - ok 09:02:02.0953 0904 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\WINDOWS\system32\HPZinw12.dll 09:02:02.0953 0904 Net Driver HPZ12 - ok 09:02:02.0968 0904 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 09:02:02.0968 0904 NetBIOS - ok 09:02:03.0000 0904 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 09:02:03.0000 0904 NetBT - ok 09:02:03.0046 0904 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe 09:02:03.0046 0904 NetDDE - ok 09:02:03.0062 0904 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe 09:02:03.0062 0904 NetDDEdsdm - ok 09:02:03.0078 0904 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 09:02:03.0093 0904 Netlogon - ok 09:02:03.0125 0904 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll 09:02:03.0125 0904 Netman - ok 09:02:03.0234 0904 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 09:02:03.0234 0904 NetTcpPortSharing - ok 09:02:03.0265 0904 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys 09:02:03.0265 0904 NIC1394 - ok 09:02:03.0390 0904 NIS (9d0f43b1d0434b44183d4795e89f6c14) C:\Program Files\Norton Internet Security\Engine\19.5.0.145\ccSvcHst.exe 09:02:03.0390 0904 NIS - ok 09:02:03.0437 0904 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll 09:02:03.0453 0904 Nla - ok 09:02:03.0453 0904 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 09:02:03.0468 0904 Npfs - ok 09:02:03.0531 0904 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 09:02:03.0546 0904 Ntfs - ok 09:02:03.0578 0904 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 09:02:03.0578 0904 NtLmSsp - ok 09:02:03.0609 0904 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll 09:02:03.0625 0904 NtmsSvc - ok 09:02:03.0656 0904 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 09:02:03.0656 0904 Null - ok 09:02:03.0687 0904 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 09:02:03.0687 0904 NwlnkFlt - ok 09:02:03.0718 0904 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 09:02:03.0718 0904 NwlnkFwd - ok 09:02:03.0750 0904 o2flash (bbd5503999f331278db39046888d559c) C:\WINDOWS\system32\DRIVERS\o2flash.exe 09:02:03.0750 0904 o2flash - ok 09:02:03.0781 0904 O2MDRDR (948aefc4db1e6cc5a8d9fc5740aee392) C:\WINDOWS\system32\DRIVERS\o2media.sys 09:02:03.0781 0904 O2MDRDR - ok 09:02:03.0796 0904 O2SDRDR (5472c48f44b49f07b16b421899e550f8) C:\WINDOWS\system32\DRIVERS\o2sd.sys 09:02:03.0796 0904 O2SDRDR - ok 09:02:03.0843 0904 OEM13Afx (58f478fd0115012ceec75fb73628901c) C:\WINDOWS\system32\Drivers\OEM13Afx.sys 09:02:03.0843 0904 OEM13Afx - ok 09:02:03.0875 0904 OEM13Vfx (86326062a90494bdd79ce383511d7d69) C:\WINDOWS\system32\DRIVERS\OEM13Vfx.sys 09:02:03.0875 0904 OEM13Vfx - ok 09:02:03.0921 0904 OEM13Vid (12539b57ed05de7552403a12b3e0161c) C:\WINDOWS\system32\DRIVERS\OEM13Vid.sys 09:02:03.0937 0904 OEM13Vid - ok 09:02:03.0953 0904 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys 09:02:03.0953 0904 ohci1394 - ok 09:02:04.0000 0904 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys 09:02:04.0000 0904 Parport - ok 09:02:04.0000 0904 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 09:02:04.0000 0904 PartMgr - ok 09:02:04.0031 0904 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys 09:02:04.0031 0904 ParVdm - ok 09:02:04.0046 0904 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys 09:02:04.0046 0904 PCI - ok 09:02:04.0062 0904 PCIDump - ok 09:02:04.0062 0904 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys 09:02:04.0062 0904 PCIIde - ok 09:02:04.0109 0904 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys 09:02:04.0109 0904 Pcmcia - ok 09:02:04.0109 0904 PDCOMP - ok 09:02:04.0125 0904 PDFRAME - ok 09:02:04.0140 0904 PDRELI - ok 09:02:04.0140 0904 PDRFRAME - ok 09:02:04.0156 0904 perc2 - ok 09:02:04.0156 0904 perc2hib - ok 09:02:04.0218 0904 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe 09:02:04.0218 0904 PlugPlay - ok 09:02:04.0250 0904 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\WINDOWS\system32\HPZipm12.dll 09:02:04.0265 0904 Pml Driver HPZ12 - ok 09:02:04.0265 0904 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 09:02:04.0281 0904 PolicyAgent - ok 09:02:04.0312 0904 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 09:02:04.0312 0904 PptpMiniport - ok 09:02:04.0312 0904 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 09:02:04.0312 0904 ProtectedStorage - ok 09:02:04.0328 0904 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 09:02:04.0328 0904 PSched - ok 09:02:04.0359 0904 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 09:02:04.0359 0904 Ptilink - ok 09:02:04.0390 0904 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\WINDOWS\system32\Drivers\PxHelp20.sys 09:02:04.0390 0904 PxHelp20 - ok 09:02:04.0406 0904 ql1080 - ok 09:02:04.0406 0904 Ql10wnt - ok 09:02:04.0421 0904 ql12160 - ok 09:02:04.0421 0904 ql1240 - ok 09:02:04.0437 0904 ql1280 - ok 09:02:04.0453 0904 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 09:02:04.0453 0904 RasAcd - ok 09:02:04.0484 0904 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll 09:02:04.0484 0904 RasAuto - ok 09:02:04.0515 0904 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 09:02:04.0515 0904 Rasl2tp - ok 09:02:04.0546 0904 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll 09:02:04.0562 0904 RasMan - ok 09:02:04.0562 0904 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 09:02:04.0562 0904 RasPppoe - ok 09:02:04.0578 0904 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 09:02:04.0578 0904 Raspti - ok 09:02:04.0640 0904 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 09:02:04.0640 0904 Rdbss - ok 09:02:04.0656 0904 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 09:02:04.0656 0904 RDPCDD - ok 09:02:04.0703 0904 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 09:02:04.0703 0904 rdpdr - ok 09:02:04.0750 0904 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys 09:02:04.0765 0904 RDPWD - ok 09:02:04.0812 0904 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe 09:02:04.0828 0904 RDSessMgr - ok 09:02:04.0859 0904 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys 09:02:04.0859 0904 redbook - ok 09:02:04.0906 0904 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll 09:02:04.0906 0904 RemoteAccess - ok 09:02:04.0937 0904 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll 09:02:04.0953 0904 RemoteRegistry - ok 09:02:04.0968 0904 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe 09:02:04.0984 0904 RpcLocator - ok 09:02:05.0046 0904 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll 09:02:05.0062 0904 RpcSs - ok 09:02:05.0109 0904 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe 09:02:05.0109 0904 RSVP - ok 09:02:05.0156 0904 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys 09:02:05.0156 0904 RTLE8023xp - ok 09:02:05.0171 0904 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 09:02:05.0187 0904 SamSs - ok 09:02:05.0203 0904 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe 09:02:05.0218 0904 SCardSvr - ok 09:02:05.0265 0904 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll 09:02:05.0265 0904 Schedule - ok 09:02:05.0312 0904 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys 09:02:05.0312 0904 sdbus - ok 09:02:05.0328 0904 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 09:02:05.0328 0904 Secdrv - ok 09:02:05.0343 0904 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll 09:02:05.0343 0904 seclogon - ok 09:02:05.0359 0904 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll 09:02:05.0359 0904 SENS - ok 09:02:05.0390 0904 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys 09:02:05.0390 0904 Serial - ok 09:02:05.0421 0904 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 09:02:05.0421 0904 Sfloppy - ok 09:02:05.0500 0904 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll 09:02:05.0515 0904 SharedAccess - ok 09:02:05.0578 0904 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 09:02:05.0578 0904 ShellHWDetection - ok 09:02:05.0578 0904 Simbad - ok 09:02:05.0625 0904 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 09:02:05.0625 0904 SLIP - ok 09:02:05.0640 0904 Sparrow - ok 09:02:05.0687 0904 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 09:02:05.0687 0904 splitter - ok 09:02:05.0703 0904 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe 09:02:05.0718 0904 Spooler - ok 09:02:05.0750 0904 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys 09:02:05.0750 0904 sr - ok 09:02:05.0875 0904 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll 09:02:05.0890 0904 srservice - ok 09:02:06.0046 0904 SRTSP (c16d048faf2978d2121f9f40594a6bdc) C:\WINDOWS\System32\Drivers\NIS\1305000.091\SRTSP.SYS 09:02:06.0062 0904 SRTSP - ok 09:02:06.0093 0904 SRTSPX (f0d02c2e25970c9c72a5cd278c17cdb6) C:\WINDOWS\system32\drivers\NIS\1305000.091\SRTSPX.SYS 09:02:06.0093 0904 SRTSPX - ok 09:02:06.0140 0904 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 09:02:06.0156 0904 Srv - ok 09:02:06.0187 0904 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll 09:02:06.0203 0904 SSDPSRV - ok 09:02:06.0234 0904 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys 09:02:06.0234 0904 StillCam - ok 09:02:06.0281 0904 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll 09:02:06.0296 0904 stisvc - ok 09:02:06.0375 0904 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe 09:02:06.0375 0904 stllssvr - ok 09:02:06.0406 0904 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 09:02:06.0406 0904 streamip - ok 09:02:06.0437 0904 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 09:02:06.0437 0904 swenum - ok 09:02:06.0500 0904 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 09:02:06.0500 0904 swmidi - ok 09:02:06.0500 0904 SwPrv - ok 09:02:06.0515 0904 symc810 - ok 09:02:06.0515 0904 symc8xx - ok 09:02:06.0578 0904 SymDS (690fa0e61b90084c4d9a721bd4f3d779) C:\WINDOWS\system32\drivers\NIS\1305000.091\SYMDS.SYS 09:02:06.0578 0904 SymDS - ok 09:02:06.0656 0904 SymEFA (4e55148a2e044d02245cbcdbb266b98c) C:\WINDOWS\system32\drivers\NIS\1305000.091\SYMEFA.SYS 09:02:06.0671 0904 SymEFA - ok 09:02:06.0734 0904 SymEvent (74e2521e96176a4449570e50be91954d) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS 09:02:06.0750 0904 SymEvent - ok 09:02:06.0812 0904 SymIRON (2c356cca706505cf63cbe39d532b9236) C:\WINDOWS\system32\drivers\NIS\1305000.091\Ironx86.SYS 09:02:06.0812 0904 SymIRON - ok 09:02:06.0859 0904 SYMTDI (508bd882040f9cb12319e3a4fc78edb9) C:\WINDOWS\System32\Drivers\NIS\1305000.091\SYMTDI.SYS 09:02:06.0875 0904 SYMTDI - ok 09:02:06.0875 0904 sym_hi - ok 09:02:06.0890 0904 sym_u3 - ok 09:02:06.0921 0904 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 09:02:06.0921 0904 sysaudio - ok 09:02:06.0953 0904 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe 09:02:06.0968 0904 SysmonLog - ok 09:02:07.0015 0904 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll 09:02:07.0031 0904 TapiSrv - ok 09:02:07.0093 0904 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 09:02:07.0109 0904 Tcpip - ok 09:02:07.0140 0904 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 09:02:07.0140 0904 TDPIPE - ok 09:02:07.0156 0904 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 09:02:07.0156 0904 TDTCP - ok 09:02:07.0203 0904 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 09:02:07.0203 0904 TermDD - ok 09:02:07.0234 0904 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll 09:02:07.0250 0904 TermService - ok 09:02:07.0312 0904 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 09:02:07.0312 0904 Themes - ok 09:02:07.0343 0904 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe 09:02:07.0343 0904 TlntSvr - ok 09:02:07.0343 0904 TosIde - ok 09:02:07.0390 0904 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll 09:02:07.0406 0904 TrkWks - ok 09:02:07.0437 0904 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 09:02:07.0437 0904 Udfs - ok 09:02:07.0453 0904 ultra - ok 09:02:07.0500 0904 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 09:02:07.0515 0904 Update - ok 09:02:07.0546 0904 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll 09:02:07.0562 0904 upnphost - ok 09:02:07.0578 0904 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe 09:02:07.0593 0904 UPS - ok 09:02:07.0625 0904 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys 09:02:07.0640 0904 USBAAPL - ok 09:02:07.0640 0904 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 09:02:07.0656 0904 usbccgp - ok 09:02:07.0687 0904 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 09:02:07.0687 0904 usbehci - ok 09:02:07.0750 0904 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 09:02:07.0750 0904 usbhub - ok 09:02:07.0781 0904 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 09:02:07.0796 0904 usbprint - ok 09:02:07.0812 0904 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 09:02:07.0812 0904 usbscan - ok 09:02:07.0843 0904 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 09:02:07.0843 0904 USBSTOR - ok 09:02:07.0875 0904 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 09:02:07.0875 0904 usbuhci - ok 09:02:07.0937 0904 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys 09:02:07.0937 0904 usbvideo - ok 09:02:07.0984 0904 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 09:02:07.0984 0904 VgaSave - ok 09:02:07.0984 0904 ViaIde - ok 09:02:08.0015 0904 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys 09:02:08.0015 0904 VolSnap - ok 09:02:08.0078 0904 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe 09:02:08.0093 0904 VSS - ok 09:02:08.0125 0904 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll 09:02:08.0140 0904 W32Time - ok 09:02:08.0171 0904 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 09:02:08.0171 0904 Wanarp - ok 09:02:08.0312 0904 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys 09:02:08.0312 0904 Wdf01000 - ok 09:02:08.0328 0904 WDICA - ok 09:02:08.0359 0904 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 09:02:08.0359 0904 wdmaud - ok 09:02:08.0375 0904 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll 09:02:08.0390 0904 WebClient - ok 09:02:08.0453 0904 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll 09:02:08.0453 0904 winmgmt - ok 09:02:08.0468 0904 wltrysvc - ok 09:02:08.0515 0904 WmdmPmSN (c7e39ea41233e9f5b86c8da3a9f1e4a8) C:\WINDOWS\system32\mspmsnsv.dll 09:02:08.0515 0904 WmdmPmSN - ok 09:02:08.0609 0904 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll 09:02:08.0609 0904 Wmi - ok 09:02:08.0656 0904 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys 09:02:08.0656 0904 WmiAcpi - ok 09:02:08.0703 0904 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe 09:02:08.0703 0904 WmiApSrv - ok 09:02:08.0765 0904 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll 09:02:08.0765 0904 wscsvc - ok 09:02:08.0796 0904 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 09:02:08.0796 0904 WSTCODEC - ok 09:02:08.0828 0904 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll 09:02:08.0828 0904 wuauserv - ok 09:02:08.0921 0904 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll 09:02:08.0937 0904 WZCSVC - ok 09:02:08.0953 0904 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll 09:02:08.0968 0904 xmlprov - ok 09:02:09.0000 0904 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 09:02:09.0203 0904 \Device\Harddisk0\DR0 - ok 09:02:09.0203 0904 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR2 09:02:09.0218 0904 \Device\Harddisk1\DR2 - ok 09:02:09.0218 0904 Boot (0x1200) (de11f7d2799dcb7472ab45b5b44d3482) \Device\Harddisk0\DR0\Partition0 09:02:09.0218 0904 \Device\Harddisk0\DR0\Partition0 - ok 09:02:09.0234 0904 Boot (0x1200) (0d6a047a58be36b088745caf5742af59) \Device\Harddisk1\DR2\Partition0 09:02:09.0234 0904 \Device\Harddisk1\DR2\Partition0 - ok 09:02:09.0234 0904 ============================================================ 09:02:09.0234 0904 Scan finished 09:02:09.0234 0904 ============================================================ 09:02:09.0250 1656 Detected object count: 0 09:02:09.0250 1656 Actual detected object count: 0

That's what I did. See the attached results from the original submission.

I downloaded mbam-clean and ran it. I then downloaded mbam and it says that my database is 31 days old "do you want to update?" I say yes and it gets an error "PROGRAM_ERROR_UPDATING (0,0, i/o error). In addition, I can't run Norton Internet Security from either the icon or from the start menu. You click on it and nothing happens. Any suggestions? Thank You dds.txt attach.txt