اعلان 1 اعلان 1 اعلان 1 اعلان 1 اعلان 1 اعلان 1


جهازي يتعرض لمحاولة تطفل ماذا أفعل ؟؟

الموضوع في 'الملتقى العام' بواسطة Rodina, بتاريخ ‏2012-03-15.


حالة الموضوع:
مغلق
  1. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    السلام عليكم ورحمة الله وبركاته

    أسعد الله جميع أوقاتك أخوي البارون بالخير والمسرات

    جزاك الله الفردوس الأعلى من الجنة على كل ماتبذله في خدمة الأعضاء

    أخوي ماهي الخطوات التالية ؟

    وماذا أفعل ؟؟

    كيف أقدر أتغلب على هذه المشكلة ؟؟



     
  2. سديم فرح

    سديم فرح عضوية تميّز عضو مميز

    5,557
    0
    0
    ‏2009-03-11
    معلمة
    سؤال مهم ردينه ننتظر الحل من الاخوان ...
     
  3. وكيلة 26

    وكيلة 26 مراقبة إدارية مراقبة عامة

    10,049
    35
    48
    ‏2011-02-25
    .......
    بس كيف تعرفي انه اخترق او هناك محاولة اختراق ؟؟؟
     
  4. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
    وعليكم السلام

    اختي ردينة الموضوع يحتاج الى خطوات

    مشكلتك الاساسية كان وجود برنامج حماية لافائدة له مما تسبب في اصابة جهازك باصابات مختلفة

    واهم الاصابات اللزم علاجها هي عائلة معروفة من التروجونات تتسبب في السيطرة على جهاز المستخدم ومحاولة ايهامه انه ارتكب محظور ودخل موقع محظور والى ذلك من هالخرابيط

    صعوبة التعامل مع هالاصابة بالنسبة للمستخدم انها خفية وتزرع نفسها في اماكن حساسة في داخل النظام

    رجاء اتبعي التعليمات بالضبط واذا فيه شيء ماهو واضح اسألي قبل التنفيذ

    اولا نزلي هالاداة واحفظيها على سطح المكتب

    http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    ثم عطلي برنامج الحماية عن العمل (( الاداة لن تعمل بشكل صحيح وسيمنعها النورتن من العمل )) لا سباب امنية لا يتسع المجال لشرحها

    تعطيل النورتن من هنا

    http://www.zyzoom.org/vb/showpost.php?p=1205971&postcount=18

    يجب ان يكون الجهاز متصل بالنت

    بعد تعطيل برنامج الحماية تشغلين الاداة ComboFix اللي حفظتيها على سطح المكتب (( الاداة رح تركب
    Console Recovery Windows )) وهذا يتطلب اتصال الجهاز بالانترنت

    تتركين الادا تركب الوندوز كنسول ريكوفري وتكمل عملها دعي الاداة تعمل حتى تنتهي ورح يظهر لك تقرير في المفكرة انسخيه والصقيه في ردك القادم


    تنبيه لا توقفي الاداة او تغلقيها ولا تعملي على الجهاز دعيها تعمل حتى تنتهي ويخرج التقرير
     
  5. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة

    تطلع عندي رسالة تنبيه من نفس برنامج الحماية

    وفيها التفاصيل كاملة
     
  6. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    ComboFix 12-03-15.03 - ABS 03/15/2012 20:03:53.1.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1256.966.1025.18.2037.1115 [GMT 3:00]
    Running from: c:\documents and settings\ABS\My Documents\Downloads\Programs\ComboFix.exe
    AV: Norton Internet Security *Disabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
    FW: Norton Internet Security *Enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\ABS\Application Data\PriceGong
    c:\documents and settings\ABS\Application Data\PriceGong\Data\1.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\a.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\b.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\c.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\d.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\e.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\f.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\g.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\h.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\i.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\J.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\k.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\l.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\m.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\mru.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\n.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\o.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\p.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\q.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\r.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\s.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\t.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\u.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\v.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\w.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\x.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\y.xml
    c:\documents and settings\ABS\Application Data\PriceGong\Data\z.xml
    c:\documents and settings\ABS\Recent\قائمة ابدأ.rar
    c:\documents and settings\ABS\WINDOWS
    c:\documents and settings\All Users\Application Data\TEMP
    c:\program files\Shared
    c:\windows\Downloaded Program Files\f3initialsetup1.0.1.1.inf
    c:\windows\EventSystem.log
    c:\windows\iun6002.exe
    c:\windows\msmqinst.log
    c:\windows\regsvr32.exe
    c:\windows\system32\Cache
    c:\windows\system32\CddbCdda.dll
    c:\windows\system32\config\systemprofile\Application Data\PriceGong
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\1.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\a.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\b.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\c.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\d.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\e.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\f.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\g.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\h.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\i.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\J.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\k.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\l.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\m.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\mru.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\n.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\o.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\p.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\q.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\r.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\s.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\t.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\u.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\v.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\w.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\x.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\y.xml
    c:\windows\system32\config\systemprofile\Application Data\PriceGong\Data\z.xml
    c:\windows\system32\cseDVH.dll
    c:\windows\SYSTEM32\RtlGina\RtlGina.DLL
    D:\AUTORUN.INF
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    -------\Legacy_MYWEBSEARCHSERVICE
    .
    .
    ((((((((((((((((((((((((( Files Created from 2012-02-15 to 2012-03-15 )))))))))))))))))))))))))))))))
    .
    .
    2012-03-11 10:36 . 2012-03-15 14:51 -------- d-----w- c:\program files\Symantec
    2012-03-11 10:36 . 2012-03-15 14:51 60872 ----a-w- c:\windows\system32\S32EVNT1.DLL
    2012-03-11 10:36 . 2012-03-15 14:51 141944 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS
    2012-03-11 10:36 . 2012-03-15 16:11 -------- d-----w- c:\windows\system32\drivers\NIS
    2012-03-11 10:36 . 2012-03-11 10:36 -------- d-----w- c:\program files\Norton Internet Security
    2012-03-11 10:36 . 2012-03-11 10:36 -------- d-----w- c:\program files\Windows Sidebar
    2012-03-11 10:36 . 2012-03-11 10:36 -------- d-----w- c:\program files\NortonInstaller
    2012-03-07 15:23 . 2012-03-07 15:23 -------- d-----w- c:\documents and settings\ABS\Local Settings\Application Data\Babylon
    2012-03-07 15:23 . 2012-03-07 15:23 -------- d-----w- c:\documents and settings\ABS\Application Data\URSoft
    2012-03-07 15:23 . 2012-03-07 15:23 -------- d-----w- c:\documents and settings\All Users\Application Data\Babylon
    2012-03-07 15:23 . 2012-03-07 15:23 -------- d-----w- c:\documents and settings\ABS\Application Data\Babylon
    2012-03-07 15:23 . 2012-03-07 15:23 -------- d-----w- c:\program files\Your Uninstaller! 7
    2012-03-07 14:36 . 2012-03-07 14:36 -------- d-sh--w- c:\documents and settings\ABS\IECompatCache
    2012-03-07 14:09 . 2012-03-07 14:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
    2012-03-07 14:09 . 2011-12-10 12:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
    2012-02-22 12:09 . 2012-02-22 12:09 -------- d-sh--w- c:\documents and settings\ABS\PrivacIE
    2012-02-17 23:05 . 2012-02-17 23:05 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
    2012-02-15 12:53 . 2012-01-11 19:06 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
    2012-02-15 12:53 . 2012-01-11 19:06 3072 ------w- c:\windows\system32\iacenc.dll
    2012-02-15 11:31 . 2012-02-15 11:31 -------- d-sh--w- c:\documents and settings\ABS\IETldCache
    2012-02-15 00:56 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
    2012-02-15 00:56 . 2011-12-17 19:44 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
    2012-02-15 00:56 . 2011-12-17 19:44 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
    2012-02-15 00:56 . 2011-12-17 19:44 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
    2012-02-15 00:54 . 2012-02-15 00:55 -------- dc-h--w- c:\windows\ie8
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-03-15 17:10 . 2009-03-17 18:35 16608 ----a-w- c:\windows\gdrv.sys
    2012-02-03 09:57 . 2008-04-14 20:07 1859968 ----a-w- c:\windows\system32\win32k.sys
    2012-01-27 00:48 . 2012-01-26 13:42 104072 ----a-w- c:\windows\system32\drivers\idmtdi.sys
    2012-01-09 16:20 . 2007-12-31 22:41 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
    2011-12-17 19:44 . 2009-01-30 22:53 916992 ----a-w- c:\windows\system32\wininet.dll
    2011-12-17 19:44 . 2009-01-30 22:52 43520 ------w- c:\windows\system32\licmgr10.dll
    2011-12-17 19:44 . 2009-01-30 22:52 1469440 ------w- c:\windows\system32\inetcpl.cpl
    2012-02-16 14:50 . 2012-03-08 20:54 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ------- Sigcheck -------
    Note: Unsigned files aren't necessarily malware.
    .
    [-] 2009-03-13 . A750404CE18132D8D6470F8719C9FC69 . 1571328 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
    @="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
    [HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
    2011-12-19 19:46 21864 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "PC Suite Tray"="c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe" [2008-12-03 1205760]
    "uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-08-06 327472]
    "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2012-01-26 3462552]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RTHDCPL"="RTHDCPL.EXE" [2008-02-13 16857600]
    "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-04-06 198160]
    "BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
    "FAHESS_McciTrayApp"="c:\program files\FAHESS\McciTrayApp.exe" [2010-05-12 1587456]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
    "QuickTime Task"="c:\program files\QT Lite\QTTask.exe" [2010-09-08 421888]
    "PlusService"="c:\program files\Yuna Software\Messenger Plus!\PlusService.exe" [2011-10-24 801792]
    "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "nltide_2"="shell32" [X]
    "nltide_3"="advpack.dll" [2009-03-08 128512]
    "FlashPlayerUpdate"="c:\windows\system32\Macromed\Flash\FlashUtil10b.exe" [2009-02-03 240544]
    .
    c:\documents and settings\ABS\قائمة ابدأ\البرامج\بدء التشغيل\
    OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2006-10-26 98632]
    Picture Motion Browser Media Check Tool.lnk - c:\program files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe [2009-5-3 385024]
    .
    c:\documents and settings\All Users\قائمة ابدأ\البرامج\بدء التشغيل\
    ALFA AWUS036H Wireless LAN Utility.lnk - c:\program files\ALFA\AWUS036H Wireless LAN Utility\RtWLan.exe [2010-8-23 942080]
    Ralink Wireless Utility.lnk - c:\program files\RALINK\Common\RaUI.exe [2009-5-16 1531904]
    TL-WN321G Wireless Utility.lnk - c:\program files\TP-LINK\TL-WN321G\COMMON\TWCU.exe [2011-10-12 1298432]
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Authentication Packages REG_MULTI_SZ msv1_0 nwprovau
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
    @="Driver"
    .
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^قائمة ابدأ^البرامج^بدء التشغيل^Adobe Gamma Loader.lnk]
    path=c:\documents and settings\All Users\قائمة ابدأ\البرامج\بدء التشغيل\Adobe Gamma Loader.lnk
    backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
    2008-06-11 23:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
    2006-10-26 21:47 31016 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
    2006-04-13 08:09 49152 ----a-w- c:\program files\CyberLink\PowerDVD\Language\Language.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
    2008-12-03 09:47 1205760 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
    2005-12-07 19:57 30208 ------w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
    2009-04-06 12:15 198160 ----a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    "c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
    "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
    "c:\\Program Files\\Messenger\\msmsgs.exe"=
    "c:\\Program Files\\uTorrent\\uTorrent.exe"=
    "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
    "c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
    "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
    "c:\\Program Files\\ALFA\\AWUS036H Wireless LAN Utility\\RtWLan.exe"=
    "c:\\Program Files\\Skype\\Phone\\Skype.exe"=
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "1542:TCP"= 1542:TCP:Realtek WPS TCP Prot
    "1542:UDP"= 1542:UDP:Realtek WPS UDP Prot
    "53:UDP"= 53:UDP:Realtek AP UDP Prot
    .
    R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1306010.008\symds.sys [13/03/2012 04:42 م 340088]
    R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1306010.008\symefa.sys [13/03/2012 04:42 م 905336]
    R1 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120302.001\BHDrvx86.sys [02/03/2012 06:59 م 820856]
    R1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NIS\1306010.008\ccsetx86.sys [13/03/2012 04:42 م 132744]
    R1 cdrblock;cdrblock;c:\windows\system32\drivers\cdrblock.sys [30/05/2008 08:13 ص 27704]
    R1 IDMTDI;IDMTDI;c:\windows\system32\drivers\idmtdi.sys [26/01/2012 04:42 م 104072]
    R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1306010.008\ironx86.sys [13/03/2012 04:42 م 149624]
    R2 ES lite Service;ES lite Service for program management.;c:\program files\Gigabyte\EasySaver\essvr.exe [17/03/2009 09:37 م 80392]
    R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [07/03/2012 05:09 م 652360]
    R2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\19.6.1.8\ccsvchst.exe [13/03/2012 04:42 م 138232]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [13/03/2012 04:43 م 106104]
    R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120315.002\IDSXpx86.sys [15/03/2012 05:51 م 356280]
    R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [07/03/2012 05:09 م 20464]
    S2 gupdate1c9b6351c1989fa;Google Update Service (gupdate1c9b6351c1989fa);c:\program files\Google\Update\GoogleUpdate.exe [06/04/2009 12:25 ص 133104]
    S3 gupdatem;خدمة Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [06/04/2009 12:25 ص 133104]
    S3 RTLWUSB;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187.sys [23/08/2010 12:51 ص 323328]
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - WS2IFSL
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2012-03-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2009-04-05 21:25]
    .
    2012-03-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2009-04-05 21:25]
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = about:blank
    uInternet Connection Wizard,ShellNext = iexplore
    IE: ت&صدير إلى Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
    IE: تحميل الكل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
    IE: تحميل بواسطة Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
    TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
    DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
    FF - ProfilePath - c:\documents and settings\ABS\Application Data\Mozilla\Firefox\Profiles\7lw489zp.default\
    FF - prefs.js: browser.search.selectedEngine - Plus! Network
    FF - prefs.js: browser.startup.homepage - hxxp://www.plusnetwork.com/?sp=hp
    FF - prefs.js: keyword.URL - hxxp://www.plusnetwork.com/?sp=faddr&q=
    FF - prefs.js: network.proxy.type - 0
    .
    - - - - ORPHANS REMOVED - - - -
    .
    MSConfigStartUp-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
    AddRemove-Macromedia Flash MX Full Arabic - c:\windows\iun6002.exe
    AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\documents and settings\All Users\Application Data\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}\bm_installer.exe
    .
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2012-03-15 20:11
    Windows 5.1.2600 Service Pack 3 NTFS
    .
    scanning hidden processes ...
    .
    scanning hidden autostart entries ...
    .
    scanning hidden files ...
    .
    scan completed successfully
    hidden files: 0
    .
    **************************************************************************
    .
    Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
    Windows 5.1.2600 Disk: WDC_WD1600AABS-00H4A0 rev.01.03A01 -> Harddisk0\DR0 -> \Device\Ide\IdePort1 P1T0L0-6
    .
    device: opened successfully
    user: MBR read successfully
    .
    Disk trace:
    called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x896EFECC]<<
    _asm { PUSH EBP; MOV EBP, ESP; SUB ESP, 0x1c; PUSH EBX; PUSH ESI; MOV DWORD [EBP-0x4], 0xb6979879; SUB DWORD [EBP-0x4], 0xb6979135; PUSH EDI; CALL 0xffffffffffffdf2c; }
    1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8A3AFAB8]
    3 CLASSPNP[0xBA0E8FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\00000088[0x8A42B1E0]
    5 ACPI[0xB9F7F620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> [0x8A3D7D98]
    [0x89E2C260] -> IRP_MJ_CREATE -> 0x896EFECC
    kernel: MBR read successfully
    _asm { XOR AX, AX; MOV SS, AX; MOV SP, 0x7c00; STI ; PUSH AX; POP ES; PUSH AX; POP DS; CLD ; MOV SI, 0x7c1b; MOV DI, 0x61b; PUSH AX; PUSH DI; MOV CX, 0x1e5; REP MOVSB ; RETF ; MOV BP, 0x7be; MOV CL, 0x4; CMP [BP+0x0], CH; JL 0x2e; JNZ 0x3a; }
    detected disk devices:
    \Device\Ide\IdeDeviceP1T0L0-6 -> \??\IDE#DiskWDC_WD1600AABS-00H4A0___________________01.03A01#5&2aa92c33&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} device not found
    detected hooks:
    \Driver\atapi DriverStartIo -> 0x896EFAF1
    user & kernel MBR OK
    sectors 312579693 (+255): user != kernel
    Warning: possible TDL3 rootkit infection !
    .
    **************************************************************************
    .
    [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NIS]
    "ImagePath"="\"c:\program files\Norton Internet Security\Engine\19.6.1.8\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\19.6.1.8\diMaster.dll\" /prefetch:1"
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_USERS\S-1-5-21-343818398-1214440339-1801674531-1005\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{2F7C27BE-CC16-A84F-51E7-2ADD07901A6A}*]
    @Allowed: (Read) (RestrictedCode)
    @Allowed: (Read) (RestrictedCode)
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{1b1269bc-f679-4d8b-9f66-c91913561ee4}]
    @Denied: (Full) (Everyone)
    "Model"=dword:000000b8
    "Therad"=dword:0000001e
    "MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26,
    38,95,44,88,79,0d,22,8e,33,17,75,6e,64,4a,c3,17,2e,fc,cc,15,dc,54,3c,e2,49,\
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
    @Denied: (Full) (Everyone)
    "scansk"=hex(0):5e,7b,96,b1,ed,30,1f,41,5d,33,4f,62,a8,64,8f,2e,50,a8,6b,af,72,
    1c,7b,1f,4d,f7,d7,b2,67,66,b8,7a,7d,fe,58,d0,55,18,41,e9,00,00,00,00,00,00,\
    .
    --------------------- DLLs Loaded Under Running Processes ---------------------
    .
    - - - - - - - > 'explorer.exe'(3676)
    c:\windows\system32\WININET.dll
    c:\program files\Internet Download Manager\IDMShellExt.dll
    c:\program files\Internet Download Manager\IDMNetMon.DLL
    c:\windows\system32\ieframe.dll
    c:\windows\system32\webcheck.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
    c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
    c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_ara.nlr
    c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\windows\system32\inetsrv\inetinfo.exe
    c:\program files\Java\jre6\bin\jqs.exe
    c:\program files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe
    c:\program files\CyberLink\Shared files\RichVideo.exe
    c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    c:\windows\RTHDCPL.EXE
    c:\windows\system32\rundll32.exe
    c:\windows\system32\wscntfy.exe
    c:\program files\PC Connectivity Solution\ServiceLayer.exe
    c:\program files\PC Connectivity Solution\Transports\NclUSBSrv.exe
    c:\program files\PC Connectivity Solution\Transports\NclRSSrv.exe
    .
    **************************************************************************
    .
    Completion time: 2012-03-15 20:15:47 - machine was rebooted
    ComboFix-quarantined-files.txt 2012-03-15 17:15
    .
    Pre-Run: 12,840,177,664 bytes free
    Post-Run: 12,942,929,920 bytes free
    .
    WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    UnsupportedDebug="do not select this" /debug
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
    .
    - - End Of File - - FBFB4F3C63B05EC1C6A72AFDE1556EF8

     
  7. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    طيب أخوي بالنسبة للنورتن أشغله الحين أو أتركه معطل
     
  8. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
  9. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    أخوي طريقة التقرير صح أو غلط



    Malwarebytes Anti-Malware 1.60.1.1000
    www.malwarebytes.org

    نسخة قاعدة البيانات : v2012.03.07.02

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 8.0.6001.18702
    ABS :: ABS1 [مدير]

    الحماية: ممكنة

    22/04/1433 10:19:13 م
    mbam-log-2012-03-15 (22-19-13).txt

    نوع الفحص : فحص مخصص
    خيارت الفحص الممكنة: نظام الملفات | Shuriken/أساليب بحثية | PUP | PUM
    خيارات الفحص المعطلة: الذاكرة | بدء التشغيل | الريجستري | أساليب بحثية/غير ذلك | P2P
    الكائنات المفحوصة : 1
    الوقت المنقضي : 7 ثانية

    عمليات الذاكرة المصابة : 0
    (لم يتم إكتشاف مواد ضارة)

    وحدات الذاكرة المصابة : 0
    (لم يتم إكتشاف مواد ضارة)

    مفاتيح الريجستري المصابة : 0
    (لم يتم إكتشاف مواد ضارة)

    قيم الريجستري المصابة : 0
    (لم يتم إكتشاف مواد ضارة)

    مواد بيانات الريجستري المصابة : 0
    (لم يتم إكتشاف مواد ضارة)

    المجلدات المصابة : 0
    (لم يتم إكتشاف مواد ضارة)

    الملفات المصابة : 0
    (لم يتم إكتشاف مواد ضارة)

    (و)

     
  10. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
    اختي افحصي لي بالاداة اللي في الموضوع هذي خاصه بالاشياء هذي
     
  11. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    أخوي أنا عملت التقرير

    لكن ما أدري فين أحصله؟؟

    فين بالضبط بالمستندات أو لا
     
  12. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
    تحصلينه هنا

    C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt

     
  13. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    أخوي طيب المسار فين أحصله في نفس الأداة والا كيف ؟؟
     
  14. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
    في مجلد السي تلاقين ملف نصي
     
  15. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    22:16:11.0703 0600 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43
    22:16:12.0343 0600 ============================================================
    22:16:12.0343 0600 Current date / time: 2012/03/15 22:16:12.0343
    22:16:12.0343 0600 SystemInfo:
    22:16:12.0343 0600
    22:16:12.0343 0600 OS Version: 5.1.2600 ServicePack: 3.0
    22:16:12.0343 0600 Product type: Workstation
    22:16:12.0343 0600 ComputerName: ABS1
    22:16:12.0343 0600 UserName: ABS
    22:16:12.0343 0600 Windows directory: C:\WINDOWS
    22:16:12.0343 0600 System windows directory: C:\WINDOWS
    22:16:12.0343 0600 Processor architecture: Intel x86
    22:16:12.0343 0600 Number of processors: 2
    22:16:12.0343 0600 Page size: 0x1000
    22:16:12.0343 0600 Boot type: Normal boot
    22:16:12.0343 0600 ============================================================
    22:16:18.0187 0600 Drive \Device\Harddisk0\DR0 - Size: 0x25432CDE00 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
    22:16:18.0687 0600 \Device\Harddisk0\DR0:
    22:16:18.0765 0600 MBR used
    22:16:18.0781 0600 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x518D74A, BlocksNum 0xD88B377
    22:16:18.0781 0600 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x518D6CC
    22:16:19.0078 0600 Initialize success
    22:16:19.0078 0600 ============================================================
    22:16:40.0421 3372 ============================================================
    22:16:40.0421 3372 Scan started
    22:16:40.0421 3372 Mode: Manual;
    22:16:40.0421 3372 ============================================================
    22:16:41.0453 3372 Abiosdsk - ok
    22:16:41.0468 3372 abp480n5 - ok
    22:16:41.0500 3372 ACPI (29dd2c058bdc1d4ab75d9e5e2ed81907) C:\WINDOWS\system32\DRIVERS\ACPI.sys
    22:16:41.0500 3372 ACPI - ok
    22:16:41.0515 3372 ACPIEC (3837d7349b1749d55d8ec6c5b490b8a8) C:\WINDOWS\system32\drivers\ACPIEC.sys
    22:16:41.0515 3372 ACPIEC - ok
    22:16:41.0531 3372 adpu160m - ok
    22:16:41.0578 3372 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
    22:16:41.0578 3372 aec - ok
    22:16:41.0609 3372 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
    22:16:41.0609 3372 AegisP - ok
    22:16:41.0656 3372 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
    22:16:41.0656 3372 AFD - ok
    22:16:41.0671 3372 Aha154x - ok
    22:16:41.0687 3372 aic78u2 - ok
    22:16:41.0703 3372 aic78xx - ok
    22:16:41.0734 3372 AliIde - ok
    22:16:41.0750 3372 amsint - ok
    22:16:41.0765 3372 asc - ok
    22:16:41.0781 3372 asc3350p - ok
    22:16:41.0812 3372 asc3550 - ok
    22:16:41.0875 3372 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    22:16:41.0875 3372 AsyncMac - ok
    22:16:41.0890 3372 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
    22:16:41.0890 3372 atapi - ok
    22:16:41.0906 3372 Atdisk - ok
    22:16:41.0921 3372 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    22:16:41.0937 3372 Atmarpc - ok
    22:16:41.0984 3372 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
    22:16:41.0984 3372 audstub - ok
    22:16:42.0031 3372 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
    22:16:42.0031 3372 Beep - ok
    22:16:42.0156 3372 BHDrvx86 (eb7f1f1dfa95c25d762c22d3cf13d4e0) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120302.001\BHDrvx86.sys
    22:16:42.0156 3372 BHDrvx86 - ok
    22:16:42.0203 3372 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
    22:16:42.0203 3372 BthEnum - ok
    22:16:42.0234 3372 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
    22:16:42.0234 3372 BthPan - ok
    22:16:42.0265 3372 BTHPORT (c32a38535bd714cedd0205ac8b65e195) C:\WINDOWS\system32\Drivers\BTHport.sys
    22:16:42.0281 3372 BTHPORT - ok
    22:16:42.0312 3372 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
    22:16:42.0312 3372 BTHUSB - ok
    22:16:42.0312 3372 catchme - ok
    22:16:42.0343 3372 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
    22:16:42.0343 3372 cbidf2k - ok
    22:16:42.0390 3372 ccSet_NIS (599e7f6259a127c174c49938d2aa6a60) C:\WINDOWS\system32\drivers\NIS\1306010.008\ccSetx86.sys
    22:16:42.0390 3372 ccSet_NIS - ok
    22:16:42.0406 3372 cd20xrnt - ok
    22:16:42.0421 3372 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
    22:16:42.0421 3372 Cdaudio - ok
    22:16:42.0453 3372 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
    22:16:42.0468 3372 Cdfs - ok
    22:16:42.0484 3372 cdrblock (15e3e2920adac7450e0c7ae5f23a5f53) C:\WINDOWS\system32\DRIVERS\cdrblock.sys
    22:16:42.0484 3372 cdrblock - ok
    22:16:42.0515 3372 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
    22:16:42.0515 3372 Cdrom - ok
    22:16:42.0531 3372 Changer - ok
    22:16:42.0562 3372 CmdIde - ok
    22:16:42.0609 3372 Cpqarray - ok
    22:16:42.0625 3372 dac2w2k - ok
    22:16:42.0656 3372 dac960nt - ok
    22:16:42.0671 3372 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
    22:16:42.0671 3372 Disk - ok
    22:16:42.0718 3372 dmboot (0f4f942d622b0d9fd4213431b729e993) C:\WINDOWS\system32\drivers\dmboot.sys
    22:16:42.0734 3372 dmboot - ok
    22:16:42.0750 3372 dmio (86eb492c80a43418685d88da3d6cedc7) C:\WINDOWS\system32\drivers\dmio.sys
    22:16:42.0750 3372 dmio - ok
    22:16:42.0765 3372 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
    22:16:42.0765 3372 dmload - ok
    22:16:42.0812 3372 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
    22:16:42.0812 3372 DMusic - ok
    22:16:42.0828 3372 dpti2o - ok
    22:16:42.0859 3372 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
    22:16:42.0859 3372 drmkaud - ok
    22:16:42.0937 3372 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
    22:16:42.0937 3372 eeCtrl - ok
    22:16:42.0968 3372 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
    22:16:42.0968 3372 EraserUtilRebootDrv - ok
    22:16:43.0046 3372 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
    22:16:43.0046 3372 Fastfat - ok
    22:16:43.0078 3372 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
    22:16:43.0078 3372 Fdc - ok
    22:16:43.0109 3372 Fips (9b6af9e7e172249afc4af5576b506233) C:\WINDOWS\system32\drivers\Fips.sys
    22:16:43.0109 3372 Fips - ok
    22:16:43.0125 3372 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
    22:16:43.0125 3372 Flpydisk - ok
    22:16:43.0156 3372 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
    22:16:43.0156 3372 FltMgr - ok
    22:16:43.0203 3372 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
    22:16:43.0203 3372 fssfltr - ok
    22:16:43.0234 3372 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
    22:16:43.0234 3372 Fs_Rec - ok
    22:16:43.0250 3372 Ftdisk (0f47404101e488d7d49e45a8af4cdf90) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    22:16:43.0250 3372 Ftdisk - ok
    22:16:43.0281 3372 gdrv (5c230948dd6652228f88ca7ae6cb276c) C:\WINDOWS\gdrv.sys
    22:16:43.0281 3372 gdrv - ok
    22:16:43.0296 3372 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
    22:16:43.0296 3372 Gpc - ok
    22:16:43.0328 3372 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    22:16:43.0343 3372 HDAudBus - ok
    22:16:43.0390 3372 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
    22:16:43.0390 3372 HidUsb - ok
    22:16:43.0406 3372 hpn - ok
    22:16:43.0421 3372 HSFHWBS2 (f3e718604c5a8a28003280d861d96c19) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
    22:16:43.0437 3372 HSFHWBS2 - ok
    22:16:43.0453 3372 HSF_DPV (4290713b7c3289ef87ee5ca474b21221) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
    22:16:43.0468 3372 HSF_DPV - ok
    22:16:43.0500 3372 HssDrv (30858b2d6dc0d8ed044dc28011ade6a2) C:\WINDOWS\system32\DRIVERS\HssDrv.sys
    22:16:43.0515 3372 HssDrv - ok
    22:16:43.0546 3372 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
    22:16:43.0546 3372 HTTP - ok
    22:16:43.0562 3372 i2omgmt - ok
    22:16:43.0578 3372 i2omp - ok
    22:16:43.0609 3372 i8042prt (9354faa5f4084ccb31a868bfa4bc2ed0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    22:16:43.0609 3372 i8042prt - ok
    22:16:43.0625 3372 ialm - ok
    22:16:43.0671 3372 IDMTDI (505c3e797a9dcfb73b48d8eab60ddeb8) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
    22:16:43.0671 3372 IDMTDI - ok
    22:16:43.0796 3372 IDSxpx86 (cfbc1ce72e5353d428704659199147b1) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120315.002\IDSxpx86.sys
    22:16:43.0812 3372 IDSxpx86 - ok
    22:16:43.0828 3372 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
    22:16:43.0828 3372 Imapi - ok
    22:16:43.0875 3372 ini910u - ok
    22:16:43.0968 3372 IntcAzAudAddService (08baf30f6de95814f58af9ce7bbc5614) C:\WINDOWS\system32\drivers\RtkHDAud.sys
    22:16:44.0000 3372 IntcAzAudAddService - ok
    22:16:44.0000 3372 IntelIde - ok
    22:16:44.0015 3372 intelppm (40c589797cb66da0c1fe305f3bfcfdaf) C:\WINDOWS\system32\DRIVERS\intelppm.sys
    22:16:44.0031 3372 intelppm - ok
    22:16:44.0046 3372 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
    22:16:44.0062 3372 Ip6Fw - ok
    22:16:44.0078 3372 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    22:16:44.0078 3372 IpFilterDriver - ok
    22:16:44.0093 3372 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
    22:16:44.0093 3372 IpInIp - ok
    22:16:44.0109 3372 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
    22:16:44.0125 3372 IpNat - ok
    22:16:44.0125 3372 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
    22:16:44.0125 3372 IPSec - ok
    22:16:44.0171 3372 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
    22:16:44.0171 3372 IRENUM - ok
    22:16:44.0218 3372 isapnp (338ac2ebb3e3410b7e95185da8e73a41) C:\WINDOWS\system32\DRIVERS\isapnp.sys
    22:16:44.0218 3372 isapnp - ok
    22:16:44.0250 3372 Kbdclass (9c1c146fa88a622fe5a7bc526e2e1289) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    22:16:44.0250 3372 Kbdclass - ok
    22:16:44.0265 3372 kbdhid (5d09146fe29f181434f3419e65baf17c) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    22:16:44.0265 3372 kbdhid - ok
    22:16:44.0296 3372 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
    22:16:44.0296 3372 kmixer - ok
    22:16:44.0328 3372 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
    22:16:44.0328 3372 KSecDD - ok
    22:16:44.0359 3372 lbrtfdc - ok
    22:16:44.0406 3372 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
    22:16:44.0406 3372 MBAMProtector - ok
    22:16:44.0453 3372 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
    22:16:44.0453 3372 mdmxsdk - ok
    22:16:44.0500 3372 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
    22:16:44.0500 3372 mnmdd - ok
    22:16:44.0531 3372 Modem (829696409b58694b97f9dcaa4053c559) C:\WINDOWS\system32\drivers\Modem.sys
    22:16:44.0531 3372 Modem - ok
    22:16:44.0546 3372 mohfilt (d306abcc26f8cedb0404153264c4e914) C:\WINDOWS\system32\drivers\mohfilt.sys
    22:16:44.0546 3372 mohfilt - ok
    22:16:44.0562 3372 Mouclass (a08eaf51779f54ed303650d1d42ecd90) C:\WINDOWS\system32\DRIVERS\mouclass.sys
    22:16:44.0562 3372 Mouclass - ok
    22:16:44.0609 3372 mouhid (bb04bb4d7fe1a38bdc61f0a174198e69) C:\WINDOWS\system32\DRIVERS\mouhid.sys
    22:16:44.0609 3372 mouhid - ok
    22:16:44.0625 3372 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
    22:16:44.0625 3372 MountMgr - ok
    22:16:44.0640 3372 mraid35x - ok
    22:16:44.0687 3372 MREMP50 (80b2ec735495823ae5771a5f603e73bd) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
    22:16:44.0687 3372 MREMP50 - ok
    22:16:44.0703 3372 MRESP50 (37d7c22f7e26da90e2d2d260e5d27846) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
    22:16:44.0703 3372 MRESP50 - ok
    22:16:44.0718 3372 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    22:16:44.0718 3372 MRxDAV - ok
    22:16:44.0765 3372 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    22:16:44.0781 3372 MRxSmb - ok
    22:16:44.0812 3372 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
    22:16:44.0812 3372 Msfs - ok
    22:16:44.0843 3372 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    22:16:44.0843 3372 mssmbios - ok
    22:16:44.0875 3372 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
    22:16:44.0875 3372 Mup - ok
    22:16:45.0015 3372 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVENG.SYS
    22:16:45.0015 3372 NAVENG - ok
    22:16:45.0062 3372 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVEX15.SYS
    22:16:45.0093 3372 NAVEX15 - ok
    22:16:45.0171 3372 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
    22:16:45.0171 3372 NDIS - ok
    22:16:45.0203 3372 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    22:16:45.0203 3372 NdisTapi - ok
    22:16:45.0218 3372 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    22:16:45.0218 3372 Ndisuio - ok
    22:16:45.0250 3372 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    22:16:45.0250 3372 NdisWan - ok
    22:16:45.0296 3372 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
    22:16:45.0296 3372 NDProxy - ok
    22:16:45.0312 3372 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
    22:16:45.0312 3372 NetBIOS - ok
    22:16:45.0328 3372 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
    22:16:45.0328 3372 NetBT - ok
    22:16:45.0421 3372 nmwcd (9a908a9bb857c2cceb2907eb9dcaeb8b) C:\WINDOWS\system32\drivers\ccdcmb.sys
    22:16:45.0421 3372 nmwcd - ok
    22:16:45.0453 3372 nmwcdc (68ec3ee2348e475ea62c66e6aafcfc9b) C:\WINDOWS\system32\drivers\ccdcmbo.sys
    22:16:45.0453 3372 nmwcdc - ok
    22:16:45.0453 3372 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
    22:16:45.0468 3372 Npfs - ok
    22:16:45.0500 3372 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
    22:16:45.0515 3372 Ntfs - ok
    22:16:45.0593 3372 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
    22:16:45.0609 3372 Null - ok
    22:16:45.0640 3372 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    22:16:45.0656 3372 NwlnkFlt - ok
    22:16:45.0765 3372 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    22:16:45.0781 3372 NwlnkFwd - ok
    22:16:45.0828 3372 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
    22:16:45.0828 3372 NwlnkIpx - ok
    22:16:45.0859 3372 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
    22:16:45.0859 3372 NwlnkNb - ok
    22:16:45.0859 3372 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
    22:16:45.0859 3372 NwlnkSpx - ok
    22:16:45.0906 3372 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
    22:16:45.0906 3372 NWRDR - ok
    22:16:45.0953 3372 Parport (88ffa60e94ca89c489db4c6a38994ebf) C:\WINDOWS\system32\DRIVERS\parport.sys
    22:16:45.0968 3372 Parport - ok
    22:16:46.0031 3372 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
    22:16:46.0046 3372 PartMgr - ok
    22:16:46.0140 3372 ParVdm (b3239c7d0ab1346afa76076ee76778d3) C:\WINDOWS\system32\drivers\ParVdm.sys
    22:16:46.0156 3372 ParVdm - ok
    22:16:46.0281 3372 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
    22:16:46.0296 3372 pccsmcfd - ok
    22:16:46.0453 3372 PCI (542690f2e4d5840202b0f13ea1bada05) C:\WINDOWS\system32\DRIVERS\pci.sys
    22:16:46.0484 3372 PCI - ok
    22:16:46.0562 3372 PCIDump - ok
    22:16:46.0671 3372 PCIIde (b928ca32fd2294eedd7df3bd9528d24c) C:\WINDOWS\system32\DRIVERS\pciide.sys
    22:16:46.0671 3372 PCIIde - ok
    22:16:46.0875 3372 Pcmcia (5d631c4c0270a9982423db089afe7621) C:\WINDOWS\system32\drivers\Pcmcia.sys
    22:16:46.0890 3372 Pcmcia - ok
    22:16:47.0078 3372 PDCOMP - ok
    22:16:47.0093 3372 PDFRAME - ok
    22:16:47.0156 3372 PDRELI - ok
    22:16:47.0218 3372 PDRFRAME - ok
    22:16:47.0250 3372 perc2 - ok
    22:16:47.0281 3372 perc2hib - ok
    22:16:47.0375 3372 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
    22:16:47.0375 3372 PptpMiniport - ok
    22:16:47.0421 3372 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
    22:16:47.0421 3372 PSched - ok
    22:16:47.0484 3372 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
    22:16:47.0484 3372 Ptilink - ok
    22:16:47.0515 3372 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
    22:16:47.0531 3372 PxHelp20 - ok
    22:16:47.0531 3372 ql1080 - ok
    22:16:47.0593 3372 Ql10wnt - ok
    22:16:47.0609 3372 ql12160 - ok
    22:16:47.0625 3372 ql1240 - ok
    22:16:47.0687 3372 ql1280 - ok
    22:16:47.0734 3372 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
    22:16:47.0750 3372 RasAcd - ok
    22:16:47.0812 3372 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    22:16:47.0812 3372 Rasl2tp - ok
    22:16:47.0921 3372 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    22:16:47.0937 3372 RasPppoe - ok
    22:16:47.0984 3372 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
    22:16:48.0000 3372 Raspti - ok
    22:16:48.0015 3372 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
    22:16:48.0031 3372 Rdbss - ok
    22:16:48.0062 3372 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    22:16:48.0062 3372 RDPCDD - ok
    22:16:48.0109 3372 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    22:16:48.0109 3372 rdpdr - ok
    22:16:48.0156 3372 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
    22:16:48.0156 3372 RDPWD - ok
    22:16:48.0187 3372 redbook (1aafcaeed86cd38db3c501610f28f131) C:\WINDOWS\system32\DRIVERS\redbook.sys
    22:16:48.0187 3372 redbook - ok
    22:16:48.0234 3372 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
    22:16:48.0234 3372 RFCOMM - ok
    22:16:48.0265 3372 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
    22:16:48.0265 3372 ROOTMODEM - ok
    22:16:48.0328 3372 RT73 (c7bcf9808e2a1b4cabe16ff7fbce5fab) C:\WINDOWS\system32\DRIVERS\rt73.sys
    22:16:48.0328 3372 RT73 - ok
    22:16:48.0375 3372 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
    22:16:48.0375 3372 RTLE8023xp - ok
    22:16:48.0421 3372 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
    22:16:48.0421 3372 RTLWUSB - ok
    22:16:48.0484 3372 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
    22:16:48.0484 3372 Secdrv - ok
    22:16:48.0515 3372 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
    22:16:48.0515 3372 serenum - ok
    22:16:48.0531 3372 Serial (cf89293b8d37cbc287b13a079afd7c5c) C:\WINDOWS\system32\DRIVERS\serial.sys
    22:16:48.0531 3372 Serial - ok
    22:16:48.0578 3372 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
    22:16:48.0593 3372 Sfloppy - ok
    22:16:48.0609 3372 Simbad - ok
    22:16:48.0656 3372 Sparrow - ok
    22:16:48.0687 3372 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
    22:16:48.0687 3372 splitter - ok
    22:16:48.0718 3372 sr (b57e685c65d8a5cb53dfc0db97e3a590) C:\WINDOWS\system32\DRIVERS\sr.sys
    22:16:48.0718 3372 sr - ok
    22:16:48.0796 3372 SRTSP (c16d048faf2978d2121f9f40594a6bdc) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SRTSP.SYS
    22:16:48.0812 3372 SRTSP - ok
    22:16:48.0828 3372 SRTSPX (f0d02c2e25970c9c72a5cd278c17cdb6) C:\WINDOWS\system32\drivers\NIS\1306010.008\SRTSPX.SYS
    22:16:48.0828 3372 SRTSPX - ok
    22:16:48.0859 3372 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
    22:16:48.0875 3372 Srv - ok
    22:16:48.0890 3372 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
    22:16:48.0890 3372 swenum - ok
    22:16:48.0921 3372 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
    22:16:48.0921 3372 swmidi - ok
    22:16:48.0937 3372 symc810 - ok
    22:16:48.0968 3372 symc8xx - ok
    22:16:49.0015 3372 SymDS (690fa0e61b90084c4d9a721bd4f3d779) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMDS.SYS
    22:16:49.0015 3372 SymDS - ok
    22:16:49.0046 3372 SymEFA (4e55148a2e044d02245cbcdbb266b98c) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMEFA.SYS
    22:16:49.0062 3372 SymEFA - ok
    22:16:49.0093 3372 SymEvent (555fb450fe6908600310e990738b41d6) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
    22:16:49.0093 3372 SymEvent - ok
    22:16:49.0125 3372 SymIRON (2c356cca706505cf63cbe39d532b9236) C:\WINDOWS\system32\drivers\NIS\1306010.008\Ironx86.SYS
    22:16:49.0125 3372 SymIRON - ok
    22:16:49.0156 3372 SYMTDI (508bd882040f9cb12319e3a4fc78edb9) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SYMTDI.SYS
    22:16:49.0156 3372 SYMTDI - ok
    22:16:49.0171 3372 sym_hi - ok
    22:16:49.0187 3372 sym_u3 - ok
    22:16:49.0218 3372 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
    22:16:49.0218 3372 sysaudio - ok
    22:16:49.0265 3372 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
    22:16:49.0281 3372 Tcpip - ok
    22:16:49.0296 3372 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
    22:16:49.0296 3372 TDPIPE - ok
    22:16:49.0312 3372 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
    22:16:49.0312 3372 TDTCP - ok
    22:16:49.0343 3372 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
    22:16:49.0343 3372 TermDD - ok
    22:16:49.0375 3372 TosIde - ok
    22:16:49.0437 3372 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
    22:16:49.0437 3372 Udfs - ok
    22:16:49.0453 3372 ultra - ok
    22:16:49.0484 3372 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
    22:16:49.0484 3372 Update - ok
    22:16:49.0531 3372 upperdev (a34560a5d516a2f5240180370866b99d) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
    22:16:49.0531 3372 upperdev - ok
    22:16:49.0578 3372 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    22:16:49.0578 3372 usbccgp - ok
    22:16:49.0609 3372 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
    22:16:49.0609 3372 usbehci - ok
    22:16:49.0640 3372 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
    22:16:49.0640 3372 usbhub - ok
    22:16:49.0656 3372 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
    22:16:49.0656 3372 usbprint - ok
    22:16:49.0703 3372 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
    22:16:49.0703 3372 usbscan - ok
    22:16:49.0718 3372 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
    22:16:49.0718 3372 usbser - ok
    22:16:49.0750 3372 UsbserFilt (6410eebd6e0427466812858ee84c8467) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
    22:16:49.0750 3372 UsbserFilt - ok
    22:16:49.0781 3372 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    22:16:49.0781 3372 USBSTOR - ok
    22:16:49.0796 3372 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    22:16:49.0796 3372 usbuhci - ok
    22:16:49.0828 3372 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
    22:16:49.0828 3372 VgaSave - ok
    22:16:49.0828 3372 ViaIde - ok
    22:16:49.0859 3372 VolSnap (e3eed80adea08f324a3722ab81e136d0) C:\WINDOWS\system32\drivers\VolSnap.sys
    22:16:49.0859 3372 VolSnap - ok
    22:16:49.0906 3372 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
    22:16:49.0906 3372 Wanarp - ok
    22:16:49.0937 3372 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
    22:16:49.0937 3372 Wdf01000 - ok
    22:16:49.0953 3372 WDICA - ok
    22:16:49.0984 3372 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
    22:16:49.0984 3372 wdmaud - ok
    22:16:50.0031 3372 winachsf (cb2dc26de2c815fc2309566f92d22ed4) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
    22:16:50.0046 3372 winachsf - ok
    22:16:50.0171 3372 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    22:16:50.0171 3372 WpdUsb - ok
    22:16:50.0203 3372 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
    22:16:50.0203 3372 WS2IFSL - ok
    22:16:50.0234 3372 WudfPf (50eb9e21963b4f06fd010d007d54351b) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    22:16:50.0234 3372 WudfPf - ok
    22:16:50.0250 3372 WudfRd (6e209664bdea8a15b5e8e480d6c607c2) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    22:16:50.0250 3372 WudfRd - ok
    22:16:50.0375 3372 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
    22:16:50.0531 3372 \Device\Harddisk0\DR0 - ok
    22:16:50.0546 3372 Boot (0x1200) (4ef9d679b2be2298513b87a341738062) \Device\Harddisk0\DR0\Partition0
    22:16:50.0546 3372 \Device\Harddisk0\DR0\Partition0 - ok
    22:16:50.0562 3372 Boot (0x1200) (5d9a861c5259a8684d647ba210366bef) \Device\Harddisk0\DR0\Partition1
    22:16:50.0562 3372 \Device\Harddisk0\DR0\Partition1 - ok
    22:16:50.0562 3372 ============================================================
    22:16:50.0562 3372 Scan finished
    22:16:50.0562 3372 ============================================================
    22:16:50.0609 3364 Detected object count: 0
    22:16:50.0609 3364 Actual detected object count: 0
    22:17:01.0734 3288 ============================================================
    22:17:01.0734 3288 Scan started
    22:17:01.0734 3288 Mode: Manual;
    22:17:01.0734 3288 ============================================================
    22:17:02.0250 3288 Abiosdsk - ok
    22:17:02.0265 3288 abp480n5 - ok
    22:17:02.0312 3288 ACPI (29dd2c058bdc1d4ab75d9e5e2ed81907) C:\WINDOWS\system32\DRIVERS\ACPI.sys
    22:17:02.0312 3288 ACPI - ok
    22:17:02.0437 3288 ACPIEC (3837d7349b1749d55d8ec6c5b490b8a8) C:\WINDOWS\system32\drivers\ACPIEC.sys
    22:17:02.0453 3288 ACPIEC - ok
    22:17:02.0515 3288 adpu160m - ok
    22:17:02.0562 3288 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
    22:17:02.0562 3288 aec - ok
    22:17:02.0609 3288 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
    22:17:02.0609 3288 AegisP - ok
    22:17:02.0656 3288 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
    22:17:02.0656 3288 AFD - ok
    22:17:02.0656 3288 Aha154x - ok
    22:17:02.0671 3288 aic78u2 - ok
    22:17:02.0703 3288 aic78xx - ok
    22:17:02.0734 3288 AliIde - ok
    22:17:02.0750 3288 amsint - ok
    22:17:02.0828 3288 asc - ok
    22:17:02.0843 3288 asc3350p - ok
    22:17:02.0859 3288 asc3550 - ok
    22:17:02.0937 3288 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    22:17:02.0937 3288 AsyncMac - ok
    22:17:02.0984 3288 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
    22:17:02.0984 3288 atapi - ok
    22:17:03.0000 3288 Atdisk - ok
    22:17:03.0453 3288 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    22:17:03.0453 3288 Atmarpc - ok
    22:17:03.0593 3288 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
    22:17:03.0593 3288 audstub - ok
    22:17:03.0640 3288 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
    22:17:03.0640 3288 Beep - ok
    22:17:03.0937 3288 BHDrvx86 (eb7f1f1dfa95c25d762c22d3cf13d4e0) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120302.001\BHDrvx86.sys
    22:17:03.0937 3288 BHDrvx86 - ok
    22:17:04.0046 3288 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
    22:17:04.0046 3288 BthEnum - ok
    22:17:04.0218 3288 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
    22:17:04.0218 3288 BthPan - ok
    22:17:04.0296 3288 BTHPORT (c32a38535bd714cedd0205ac8b65e195) C:\WINDOWS\system32\Drivers\BTHport.sys
    22:17:04.0312 3288 BTHPORT - ok
    22:17:04.0421 3288 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
    22:17:04.0421 3288 BTHUSB - ok
    22:17:04.0437 3288 catchme - ok
    22:17:04.0484 3288 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
    22:17:04.0484 3288 cbidf2k - ok
    22:17:04.0609 3288 ccSet_NIS (599e7f6259a127c174c49938d2aa6a60) C:\WINDOWS\system32\drivers\NIS\1306010.008\ccSetx86.sys
    22:17:04.0609 3288 ccSet_NIS - ok
    22:17:04.0625 3288 cd20xrnt - ok
    22:17:04.0656 3288 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
    22:17:04.0656 3288 Cdaudio - ok
    22:17:04.0750 3288 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
    22:17:04.0750 3288 Cdfs - ok
    22:17:04.0796 3288 cdrblock (15e3e2920adac7450e0c7ae5f23a5f53) C:\WINDOWS\system32\DRIVERS\cdrblock.sys
    22:17:04.0796 3288 cdrblock - ok
    22:17:05.0015 3288 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
    22:17:05.0031 3288 Cdrom - ok
    22:17:05.0078 3288 Changer - ok
    22:17:05.0156 3288 CmdIde - ok
    22:17:05.0359 3288 Cpqarray - ok
    22:17:05.0421 3288 dac2w2k - ok
    22:17:05.0437 3288 dac960nt - ok
    22:17:05.0546 3288 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
    22:17:05.0546 3288 Disk - ok
    22:17:05.0703 3288 dmboot (0f4f942d622b0d9fd4213431b729e993) C:\WINDOWS\system32\drivers\dmboot.sys
    22:17:05.0718 3288 dmboot - ok
    22:17:06.0140 3288 dmio (86eb492c80a43418685d88da3d6cedc7) C:\WINDOWS\system32\drivers\dmio.sys
    22:17:06.0156 3288 dmio - ok
    22:17:06.0546 3288 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
    22:17:06.0546 3288 dmload - ok
    22:17:06.0687 3288 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
    22:17:06.0687 3288 DMusic - ok
    22:17:06.0921 3288 dpti2o - ok
    22:17:07.0031 3288 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
    22:17:07.0031 3288 drmkaud - ok
    22:17:07.0562 3288 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
    22:17:07.0562 3288 eeCtrl - ok
    22:17:07.0750 3288 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
    22:17:07.0750 3288 EraserUtilRebootDrv - ok
    22:17:08.0375 3288 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
    22:17:08.0375 3288 Fastfat - ok
    22:17:08.0890 3288 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
    22:17:08.0890 3288 Fdc - ok
    22:17:09.0453 3288 Fips (9b6af9e7e172249afc4af5576b506233) C:\WINDOWS\system32\drivers\Fips.sys
    22:17:09.0453 3288 Fips - ok
    22:17:10.0265 3288 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
    22:17:10.0265 3288 Flpydisk - ok
    22:17:10.0500 3288 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
    22:17:10.0500 3288 FltMgr - ok
    22:17:10.0656 3288 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
    22:17:10.0656 3288 fssfltr - ok
    22:17:11.0000 3288 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
    22:17:11.0000 3288 Fs_Rec - ok
    22:17:11.0218 3288 Ftdisk (0f47404101e488d7d49e45a8af4cdf90) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    22:17:11.0218 3288 Ftdisk - ok
    22:17:11.0281 3288 gdrv (5c230948dd6652228f88ca7ae6cb276c) C:\WINDOWS\gdrv.sys
    22:17:11.0281 3288 gdrv - ok
    22:17:11.0312 3288 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
    22:17:11.0312 3288 Gpc - ok
    22:17:11.0421 3288 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    22:17:11.0421 3288 HDAudBus - ok
    22:17:11.0484 3288 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
    22:17:11.0484 3288 HidUsb - ok
    22:17:11.0515 3288 hpn - ok
    22:17:11.0671 3288 HSFHWBS2 (f3e718604c5a8a28003280d861d96c19) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
    22:17:11.0671 3288 HSFHWBS2 - ok
    22:17:12.0171 3288 HSF_DPV (4290713b7c3289ef87ee5ca474b21221) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
    22:17:12.0171 3288 HSF_DPV - ok
    22:17:12.0375 3288 HssDrv (30858b2d6dc0d8ed044dc28011ade6a2) C:\WINDOWS\system32\DRIVERS\HssDrv.sys
    22:17:12.0375 3288 HssDrv - ok
    22:17:12.0484 3288 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
    22:17:12.0484 3288 HTTP - ok
    22:17:13.0046 3288 i2omgmt - ok
    22:17:13.0718 3288 i2omp - ok
    22:17:13.0796 3288 i8042prt (9354faa5f4084ccb31a868bfa4bc2ed0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    22:17:13.0796 3288 i8042prt - ok
    22:17:13.0828 3288 ialm - ok
    22:17:13.0937 3288 IDMTDI (505c3e797a9dcfb73b48d8eab60ddeb8) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
    22:17:13.0937 3288 IDMTDI - ok
    22:17:14.0406 3288 IDSxpx86 (cfbc1ce72e5353d428704659199147b1) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120315.002\IDSxpx86.sys
    22:17:14.0406 3288 IDSxpx86 - ok
    22:17:14.0578 3288 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
    22:17:14.0578 3288 Imapi - ok
    22:17:14.0718 3288 ini910u - ok
    22:17:15.0703 3288 IntcAzAudAddService (08baf30f6de95814f58af9ce7bbc5614) C:\WINDOWS\system32\drivers\RtkHDAud.sys
    22:17:15.0734 3288 IntcAzAudAddService - ok
    22:17:15.0828 3288 IntelIde - ok
    22:17:15.0875 3288 intelppm (40c589797cb66da0c1fe305f3bfcfdaf) C:\WINDOWS\system32\DRIVERS\intelppm.sys
    22:17:15.0875 3288 intelppm - ok
    22:17:15.0984 3288 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
    22:17:15.0984 3288 Ip6Fw - ok
    22:17:16.0046 3288 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    22:17:16.0046 3288 IpFilterDriver - ok
    22:17:16.0078 3288 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
    22:17:16.0078 3288 IpInIp - ok
    22:17:16.0140 3288 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
    22:17:16.0140 3288 IpNat - ok
    22:17:16.0171 3288 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
    22:17:16.0187 3288 IPSec - ok
    22:17:16.0203 3288 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
    22:17:16.0203 3288 IRENUM - ok
    22:17:16.0250 3288 isapnp (338ac2ebb3e3410b7e95185da8e73a41) C:\WINDOWS\system32\DRIVERS\isapnp.sys
    22:17:16.0250 3288 isapnp - ok
    22:17:16.0343 3288 Kbdclass (9c1c146fa88a622fe5a7bc526e2e1289) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    22:17:16.0359 3288 Kbdclass - ok
    22:17:16.0421 3288 kbdhid (5d09146fe29f181434f3419e65baf17c) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    22:17:16.0421 3288 kbdhid - ok
    22:17:16.0453 3288 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
    22:17:16.0453 3288 kmixer - ok
    22:17:16.0468 3288 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
    22:17:16.0468 3288 KSecDD - ok
    22:17:16.0500 3288 lbrtfdc - ok
    22:17:16.0562 3288 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
    22:17:16.0562 3288 MBAMProtector - ok
    22:17:16.0593 3288 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
    22:17:16.0593 3288 mdmxsdk - ok
    22:17:16.0640 3288 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
    22:17:16.0640 3288 mnmdd - ok
    22:17:16.0671 3288 Modem (829696409b58694b97f9dcaa4053c559) C:\WINDOWS\system32\drivers\Modem.sys
    22:17:16.0671 3288 Modem - ok
    22:17:16.0687 3288 mohfilt (d306abcc26f8cedb0404153264c4e914) C:\WINDOWS\system32\drivers\mohfilt.sys
    22:17:16.0687 3288 mohfilt - ok
    22:17:16.0703 3288 Mouclass (a08eaf51779f54ed303650d1d42ecd90) C:\WINDOWS\system32\DRIVERS\mouclass.sys
    22:17:16.0703 3288 Mouclass - ok
    22:17:16.0734 3288 mouhid (bb04bb4d7fe1a38bdc61f0a174198e69) C:\WINDOWS\system32\DRIVERS\mouhid.sys
    22:17:16.0734 3288 mouhid - ok
    22:17:16.0765 3288 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
    22:17:16.0765 3288 MountMgr - ok
    22:17:16.0765 3288 mraid35x - ok
    22:17:16.0812 3288 MREMP50 (80b2ec735495823ae5771a5f603e73bd) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
    22:17:16.0812 3288 MREMP50 - ok
    22:17:16.0828 3288 MRESP50 (37d7c22f7e26da90e2d2d260e5d27846) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
    22:17:16.0828 3288 MRESP50 - ok
    22:17:16.0859 3288 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    22:17:16.0859 3288 MRxDAV - ok
    22:17:16.0890 3288 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    22:17:16.0890 3288 MRxSmb - ok
    22:17:16.0921 3288 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
    22:17:16.0921 3288 Msfs - ok
    22:17:16.0968 3288 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    22:17:16.0968 3288 mssmbios - ok
    22:17:17.0000 3288 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
    22:17:17.0000 3288 Mup - ok
    22:17:17.0140 3288 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVENG.SYS
    22:17:17.0140 3288 NAVENG - ok
    22:17:17.0187 3288 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVEX15.SYS
    22:17:17.0187 3288 NAVEX15 - ok
    22:17:17.0250 3288 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
    22:17:17.0265 3288 NDIS - ok
    22:17:17.0296 3288 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    22:17:17.0296 3288 NdisTapi - ok
    22:17:17.0312 3288 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    22:17:17.0312 3288 Ndisuio - ok
    22:17:17.0328 3288 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    22:17:17.0328 3288 NdisWan - ok
    22:17:17.0359 3288 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
    22:17:17.0375 3288 NDProxy - ok
    22:17:17.0390 3288 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
    22:17:17.0390 3288 NetBIOS - ok
    22:17:17.0421 3288 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
    22:17:17.0421 3288 NetBT - ok
    22:17:17.0546 3288 nmwcd (9a908a9bb857c2cceb2907eb9dcaeb8b) C:\WINDOWS\system32\drivers\ccdcmb.sys
    22:17:17.0546 3288 nmwcd - ok
    22:17:17.0578 3288 nmwcdc (68ec3ee2348e475ea62c66e6aafcfc9b) C:\WINDOWS\system32\drivers\ccdcmbo.sys
    22:17:17.0578 3288 nmwcdc - ok
    22:17:17.0578 3288 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
    22:17:17.0578 3288 Npfs - ok
    22:17:17.0609 3288 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
    22:17:17.0625 3288 Ntfs - ok
    22:17:17.0671 3288 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
    22:17:17.0671 3288 Null - ok
    22:17:17.0703 3288 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    22:17:17.0703 3288 NwlnkFlt - ok
    22:17:17.0703 3288 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    22:17:17.0703 3288 NwlnkFwd - ok
    22:17:17.0734 3288 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
    22:17:17.0734 3288 NwlnkIpx - ok
    22:17:17.0750 3288 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
    22:17:17.0750 3288 NwlnkNb - ok
    22:17:17.0765 3288 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
    22:17:17.0765 3288 NwlnkSpx - ok
    22:17:17.0781 3288 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
    22:17:17.0781 3288 NWRDR - ok
    22:17:17.0828 3288 Parport (88ffa60e94ca89c489db4c6a38994ebf) C:\WINDOWS\system32\DRIVERS\parport.sys
    22:17:17.0828 3288 Parport - ok
    22:17:17.0843 3288 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
    22:17:17.0843 3288 PartMgr - ok
    22:17:17.0859 3288 ParVdm (b3239c7d0ab1346afa76076ee76778d3) C:\WINDOWS\system32\drivers\ParVdm.sys
    22:17:17.0859 3288 ParVdm - ok
    22:17:17.0890 3288 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
    22:17:17.0890 3288 pccsmcfd - ok
    22:17:17.0906 3288 PCI (542690f2e4d5840202b0f13ea1bada05) C:\WINDOWS\system32\DRIVERS\pci.sys
    22:17:17.0906 3288 PCI - ok
    22:17:17.0921 3288 PCIDump - ok
    22:17:17.0953 3288 PCIIde (b928ca32fd2294eedd7df3bd9528d24c) C:\WINDOWS\system32\DRIVERS\pciide.sys
    22:17:17.0953 3288 PCIIde - ok
    22:17:17.0984 3288 Pcmcia (5d631c4c0270a9982423db089afe7621) C:\WINDOWS\system32\drivers\Pcmcia.sys
    22:17:17.0984 3288 Pcmcia - ok
    22:17:18.0000 3288 PDCOMP - ok
    22:17:18.0015 3288 PDFRAME - ok
    22:17:18.0031 3288 PDRELI - ok
    22:17:18.0046 3288 PDRFRAME - ok
    22:17:18.0062 3288 perc2 - ok
    22:17:18.0078 3288 perc2hib - ok
    22:17:18.0156 3288 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
    22:17:18.0156 3288 PptpMiniport - ok
    22:17:18.0171 3288 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
    22:17:18.0171 3288 PSched - ok
    22:17:18.0203 3288 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
    22:17:18.0203 3288 Ptilink - ok
    22:17:18.0234 3288 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
    22:17:18.0234 3288 PxHelp20 - ok
    22:17:18.0234 3288 ql1080 - ok
    22:17:18.0250 3288 Ql10wnt - ok
    22:17:18.0265 3288 ql12160 - ok
    22:17:18.0281 3288 ql1240 - ok
    22:17:18.0312 3288 ql1280 - ok
    22:17:18.0328 3288 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
    22:17:18.0343 3288 RasAcd - ok
    22:17:18.0359 3288 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    22:17:18.0359 3288 Rasl2tp - ok
    22:17:18.0390 3288 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    22:17:18.0390 3288 RasPppoe - ok
    22:17:18.0406 3288 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
    22:17:18.0406 3288 Raspti - ok
    22:17:18.0421 3288 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
    22:17:18.0437 3288 Rdbss - ok
    22:17:18.0437 3288 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    22:17:18.0437 3288 RDPCDD - ok
    22:17:18.0484 3288 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    22:17:18.0484 3288 rdpdr - ok
    22:17:18.0531 3288 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
    22:17:18.0531 3288 RDPWD - ok
    22:17:18.0562 3288 redbook (1aafcaeed86cd38db3c501610f28f131) C:\WINDOWS\system32\DRIVERS\redbook.sys
    22:17:18.0562 3288 redbook - ok
    22:17:18.0609 3288 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
    22:17:18.0609 3288 RFCOMM - ok
    22:17:18.0734 3288 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
    22:17:18.0734 3288 ROOTMODEM - ok
    22:17:18.0781 3288 RT73 (c7bcf9808e2a1b4cabe16ff7fbce5fab) C:\WINDOWS\system32\DRIVERS\rt73.sys
    22:17:18.0781 3288 RT73 - ok
    22:17:18.0812 3288 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
    22:17:18.0812 3288 RTLE8023xp - ok
    22:17:18.0843 3288 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
    22:17:18.0843 3288 RTLWUSB - ok
    22:17:18.0906 3288 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
    22:17:18.0906 3288 Secdrv - ok
    22:17:18.0937 3288 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
    22:17:18.0937 3288 serenum - ok
    22:17:18.0953 3288 Serial (cf89293b8d37cbc287b13a079afd7c5c) C:\WINDOWS\system32\DRIVERS\serial.sys
    22:17:18.0953 3288 Serial - ok
    22:17:19.0000 3288 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
    22:17:19.0000 3288 Sfloppy - ok
    22:17:19.0031 3288 Simbad - ok
    22:17:19.0078 3288 Sparrow - ok
    22:17:19.0109 3288 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
    22:17:19.0109 3288 splitter - ok
    22:17:19.0140 3288 sr (b57e685c65d8a5cb53dfc0db97e3a590) C:\WINDOWS\system32\DRIVERS\sr.sys
    22:17:19.0156 3288 sr - ok
    22:17:19.0218 3288 SRTSP (c16d048faf2978d2121f9f40594a6bdc) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SRTSP.SYS
    22:17:19.0218 3288 SRTSP - ok
    22:17:19.0250 3288 SRTSPX (f0d02c2e25970c9c72a5cd278c17cdb6) C:\WINDOWS\system32\drivers\NIS\1306010.008\SRTSPX.SYS
    22:17:19.0250 3288 SRTSPX - ok
    22:17:19.0281 3288 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
    22:17:19.0281 3288 Srv - ok
    22:17:19.0328 3288 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
    22:17:19.0328 3288 swenum - ok
    22:17:19.0359 3288 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
    22:17:19.0359 3288 swmidi - ok
    22:17:19.0375 3288 symc810 - ok
    22:17:19.0390 3288 symc8xx - ok
    22:17:19.0437 3288 SymDS (690fa0e61b90084c4d9a721bd4f3d779) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMDS.SYS
    22:17:19.0437 3288 SymDS - ok
    22:17:19.0484 3288 SymEFA (4e55148a2e044d02245cbcdbb266b98c) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMEFA.SYS
    22:17:19.0484 3288 SymEFA - ok
    22:17:19.0531 3288 SymEvent (555fb450fe6908600310e990738b41d6) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
    22:17:19.0531 3288 SymEvent - ok
    22:17:19.0546 3288 SymIRON (2c356cca706505cf63cbe39d532b9236) C:\WINDOWS\system32\drivers\NIS\1306010.008\Ironx86.SYS
    22:17:19.0546 3288 SymIRON - ok
    22:17:19.0593 3288 SYMTDI (508bd882040f9cb12319e3a4fc78edb9) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SYMTDI.SYS
    22:17:19.0593 3288 SYMTDI - ok
    22:17:19.0609 3288 sym_hi - ok
    22:17:19.0625 3288 sym_u3 - ok
    22:17:19.0656 3288 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
    22:17:19.0656 3288 sysaudio - ok
    22:17:19.0703 3288 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
    22:17:19.0718 3288 Tcpip - ok
    22:17:19.0734 3288 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
    22:17:19.0734 3288 TDPIPE - ok
    22:17:19.0750 3288 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
    22:17:19.0750 3288 TDTCP - ok
    22:17:19.0781 3288 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
    22:17:19.0781 3288 TermDD - ok
    22:17:19.0812 3288 TosIde - ok
    22:17:19.0875 3288 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
    22:17:19.0875 3288 Udfs - ok
    22:17:19.0875 3288 ultra - ok
    22:17:19.0906 3288 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
    22:17:19.0921 3288 Update - ok
    22:17:19.0953 3288 upperdev (a34560a5d516a2f5240180370866b99d) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
    22:17:19.0953 3288 upperdev - ok
    22:17:20.0000 3288 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    22:17:20.0000 3288 usbccgp - ok
    22:17:20.0015 3288 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
    22:17:20.0015 3288 usbehci - ok
    22:17:20.0046 3288 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
    22:17:20.0046 3288 usbhub - ok
    22:17:20.0062 3288 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
    22:17:20.0062 3288 usbprint - ok
    22:17:20.0093 3288 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
    22:17:20.0093 3288 usbscan - ok
    22:17:20.0109 3288 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
    22:17:20.0109 3288 usbser - ok
    22:17:20.0140 3288 UsbserFilt (6410eebd6e0427466812858ee84c8467) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
    22:17:20.0140 3288 UsbserFilt - ok
    22:17:20.0171 3288 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    22:17:20.0171 3288 USBSTOR - ok
    22:17:20.0203 3288 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    22:17:20.0203 3288 usbuhci - ok
    22:17:20.0234 3288 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
    22:17:20.0234 3288 VgaSave - ok
    22:17:20.0234 3288 ViaIde - ok
    22:17:20.0265 3288 VolSnap (e3eed80adea08f324a3722ab81e136d0) C:\WINDOWS\system32\drivers\VolSnap.sys
    22:17:20.0265 3288 VolSnap - ok
    22:17:20.0312 3288 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
    22:17:20.0312 3288 Wanarp - ok
    22:17:20.0359 3288 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
    22:17:20.0359 3288 Wdf01000 - ok
    22:17:20.0375 3288 WDICA - ok
    22:17:20.0421 3288 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
    22:17:20.0421 3288 wdmaud - ok
    22:17:20.0500 3288 winachsf (cb2dc26de2c815fc2309566f92d22ed4) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
    22:17:20.0500 3288 winachsf - ok
    22:17:20.0609 3288 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    22:17:20.0609 3288 WpdUsb - ok
    22:17:20.0640 3288 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
    22:17:20.0640 3288 WS2IFSL - ok
    22:17:20.0687 3288 WudfPf (50eb9e21963b4f06fd010d007d54351b) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    22:17:20.0687 3288 WudfPf - ok
    22:17:20.0703 3288 WudfRd (6e209664bdea8a15b5e8e480d6c607c2) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    22:17:20.0703 3288 WudfRd - ok
    22:17:20.0812 3288 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
    22:17:20.0968 3288 \Device\Harddisk0\DR0 - ok
    22:17:21.0000 3288 Boot (0x1200) (4ef9d679b2be2298513b87a341738062) \Device\Harddisk0\DR0\Partition0
    22:17:21.0000 3288 \Device\Harddisk0\DR0\Partition0 - ok
    22:17:21.0015 3288 Boot (0x1200) (5d9a861c5259a8684d647ba210366bef) \Device\Harddisk0\DR0\Partition1
    22:17:21.0015 3288 \Device\Harddisk0\DR0\Partition1 - ok
    22:17:21.0015 3288 ============================================================
    22:17:21.0015 3288 Scan finished
    22:17:21.0015 3288 ============================================================
    22:17:21.0046 3264 Detected object count: 0
    22:17:21.0046 3264 Actual detected object count: 0
    22:17:32.0546 2272 ============================================================
    22:17:32.0546 2272 Scan started
    22:17:32.0546 2272 Mode: Manual;
    22:17:32.0546 2272 ============================================================
    22:17:32.0890 2272 Scan interrupted by user!
    22:17:32.0890 2272 Scan interrupted by user!
    22:17:32.0890 2272 Scan interrupted by user!
    22:17:32.0890 2272 ============================================================
    22:17:32.0890 2272 Scan finished
    22:17:32.0890 2272 ============================================================
    22:17:32.0906 2000 Detected object count: 0
    22:17:32.0906 2000 Actual detected object count: 0
    22:17:36.0453 0456 ============================================================
    22:17:36.0453 0456 Scan started
    22:17:36.0453 0456 Mode: Manual;
    22:17:36.0453 0456 ============================================================
    22:17:36.0812 0456 Abiosdsk - ok
    22:17:36.0828 0456 abp480n5 - ok
    22:17:36.0859 0456 ACPI (29dd2c058bdc1d4ab75d9e5e2ed81907) C:\WINDOWS\system32\DRIVERS\ACPI.sys
    22:17:36.0859 0456 ACPI - ok
    22:17:36.0890 0456 ACPIEC (3837d7349b1749d55d8ec6c5b490b8a8) C:\WINDOWS\system32\drivers\ACPIEC.sys
    22:17:36.0890 0456 ACPIEC - ok
    22:17:36.0890 0456 adpu160m - ok
    22:17:36.0921 0456 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
    22:17:36.0921 0456 aec - ok
    22:17:36.0953 0456 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
    22:17:36.0953 0456 AegisP - ok
    22:17:36.0984 0456 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
    22:17:36.0984 0456 AFD - ok
    22:17:37.0000 0456 Aha154x - ok
    22:17:37.0015 0456 aic78u2 - ok
    22:17:37.0031 0456 aic78xx - ok
    22:17:37.0062 0456 AliIde - ok
    22:17:37.0078 0456 amsint - ok
    22:17:37.0109 0456 asc - ok
    22:17:37.0125 0456 asc3350p - ok
    22:17:37.0140 0456 asc3550 - ok
    22:17:37.0187 0456 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    22:17:37.0187 0456 AsyncMac - ok
    22:17:37.0218 0456 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
    22:17:37.0218 0456 atapi - ok
    22:17:37.0218 0456 Atdisk - ok
    22:17:37.0250 0456 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    22:17:37.0250 0456 Atmarpc - ok
    22:17:37.0281 0456 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
    22:17:37.0281 0456 audstub - ok
    22:17:37.0328 0456 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
    22:17:37.0328 0456 Beep - ok
    22:17:37.0468 0456 BHDrvx86 (eb7f1f1dfa95c25d762c22d3cf13d4e0) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120302.001\BHDrvx86.sys
    22:17:37.0468 0456 BHDrvx86 - ok
    22:17:37.0515 0456 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
    22:17:37.0515 0456 BthEnum - ok
    22:17:37.0531 0456 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
    22:17:37.0531 0456 BthPan - ok
    22:17:37.0578 0456 BTHPORT (c32a38535bd714cedd0205ac8b65e195) C:\WINDOWS\system32\Drivers\BTHport.sys
    22:17:37.0578 0456 BTHPORT - ok
    22:17:37.0609 0456 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
    22:17:37.0609 0456 BTHUSB - ok
    22:17:37.0625 0456 catchme - ok
    22:17:37.0656 0456 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
    22:17:37.0656 0456 cbidf2k - ok
    22:17:37.0703 0456 ccSet_NIS (599e7f6259a127c174c49938d2aa6a60) C:\WINDOWS\system32\drivers\NIS\1306010.008\ccSetx86.sys
    22:17:37.0703 0456 ccSet_NIS - ok
    22:17:37.0703 0456 cd20xrnt - ok
    22:17:37.0734 0456 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
    22:17:37.0734 0456 Cdaudio - ok
    22:17:37.0765 0456 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
    22:17:37.0765 0456 Cdfs - ok
    22:17:37.0781 0456 cdrblock (15e3e2920adac7450e0c7ae5f23a5f53) C:\WINDOWS\system32\DRIVERS\cdrblock.sys
    22:17:37.0781 0456 cdrblock - ok
    22:17:37.0812 0456 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
    22:17:37.0812 0456 Cdrom - ok
    22:17:37.0828 0456 Changer - ok
    22:17:37.0859 0456 CmdIde - ok
    22:17:37.0890 0456 Cpqarray - ok
    22:17:37.0921 0456 dac2w2k - ok
    22:17:37.0937 0456 dac960nt - ok
    22:17:37.0968 0456 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
    22:17:37.0968 0456 Disk - ok
    22:17:38.0015 0456 dmboot (0f4f942d622b0d9fd4213431b729e993) C:\WINDOWS\system32\drivers\dmboot.sys
    22:17:38.0015 0456 dmboot - ok
    22:17:38.0031 0456 dmio (86eb492c80a43418685d88da3d6cedc7) C:\WINDOWS\system32\drivers\dmio.sys
    22:17:38.0031 0456 dmio - ok
    22:17:38.0062 0456 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
    22:17:38.0062 0456 dmload - ok
    22:17:38.0109 0456 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
    22:17:38.0109 0456 DMusic - ok
    22:17:38.0125 0456 dpti2o - ok
    22:17:38.0156 0456 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
    22:17:38.0156 0456 drmkaud - ok
    22:17:38.0234 0456 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
    22:17:38.0234 0456 eeCtrl - ok
    22:17:38.0250 0456 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
    22:17:38.0265 0456 EraserUtilRebootDrv - ok
    22:17:38.0343 0456 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
    22:17:38.0343 0456 Fastfat - ok
    22:17:38.0359 0456 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
    22:17:38.0359 0456 Fdc - ok
    22:17:38.0390 0456 Fips (9b6af9e7e172249afc4af5576b506233) C:\WINDOWS\system32\drivers\Fips.sys
    22:17:38.0390 0456 Fips - ok
    22:17:38.0421 0456 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
    22:17:38.0421 0456 Flpydisk - ok
    22:17:38.0437 0456 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
    22:17:38.0453 0456 FltMgr - ok
    22:17:38.0484 0456 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
    22:17:38.0484 0456 fssfltr - ok
    22:17:38.0515 0456 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
    22:17:38.0515 0456 Fs_Rec - ok
    22:17:38.0531 0456 Ftdisk (0f47404101e488d7d49e45a8af4cdf90) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    22:17:38.0531 0456 Ftdisk - ok
    22:17:38.0562 0456 gdrv (5c230948dd6652228f88ca7ae6cb276c) C:\WINDOWS\gdrv.sys
    22:17:38.0562 0456 gdrv - ok
    22:17:38.0593 0456 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
    22:17:38.0593 0456 Gpc - ok
    22:17:38.0625 0456 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    22:17:38.0625 0456 HDAudBus - ok
    22:17:38.0671 0456 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
    22:17:38.0671 0456 HidUsb - ok
    22:17:38.0687 0456 hpn - ok
    22:17:38.0718 0456 HSFHWBS2 (f3e718604c5a8a28003280d861d96c19) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
    22:17:38.0734 0456 HSFHWBS2 - ok
    22:17:38.0750 0456 HSF_DPV (4290713b7c3289ef87ee5ca474b21221) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
    22:17:38.0765 0456 HSF_DPV - ok
    22:17:38.0796 0456 HssDrv (30858b2d6dc0d8ed044dc28011ade6a2) C:\WINDOWS\system32\DRIVERS\HssDrv.sys
    22:17:38.0796 0456 HssDrv - ok
    22:17:38.0828 0456 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
    22:17:38.0828 0456 HTTP - ok
    22:17:38.0843 0456 i2omgmt - ok
    22:17:38.0859 0456 i2omp - ok
    22:17:38.0906 0456 i8042prt (9354faa5f4084ccb31a868bfa4bc2ed0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    22:17:38.0906 0456 i8042prt - ok
    22:17:38.0906 0456 ialm - ok
    22:17:38.0953 0456 IDMTDI (505c3e797a9dcfb73b48d8eab60ddeb8) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
    22:17:38.0953 0456 IDMTDI - ok
    22:17:39.0109 0456 IDSxpx86 (cfbc1ce72e5353d428704659199147b1) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120315.002\IDSxpx86.sys
    22:17:39.0109 0456 IDSxpx86 - ok
    22:17:39.0140 0456 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
    22:17:39.0140 0456 Imapi - ok
    22:17:39.0171 0456 ini910u - ok
    22:17:39.0281 0456 IntcAzAudAddService (08baf30f6de95814f58af9ce7bbc5614) C:\WINDOWS\system32\drivers\RtkHDAud.sys
    22:17:39.0296 0456 IntcAzAudAddService - ok
    22:17:39.0312 0456 IntelIde - ok
    22:17:39.0328 0456 intelppm (40c589797cb66da0c1fe305f3bfcfdaf) C:\WINDOWS\system32\DRIVERS\intelppm.sys
    22:17:39.0328 0456 intelppm - ok
    22:17:39.0359 0456 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
    22:17:39.0359 0456 Ip6Fw - ok
    22:17:39.0375 0456 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    22:17:39.0375 0456 IpFilterDriver - ok
    22:17:39.0406 0456 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
    22:17:39.0406 0456 IpInIp - ok
    22:17:39.0421 0456 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
    22:17:39.0437 0456 IpNat - ok
    22:17:39.0437 0456 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
    22:17:39.0437 0456 IPSec - ok
    22:17:39.0468 0456 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
    22:17:39.0468 0456 IRENUM - ok
    22:17:39.0500 0456 isapnp (338ac2ebb3e3410b7e95185da8e73a41) C:\WINDOWS\system32\DRIVERS\isapnp.sys
    22:17:39.0500 0456 isapnp - ok
    22:17:39.0531 0456 Kbdclass (9c1c146fa88a622fe5a7bc526e2e1289) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    22:17:39.0531 0456 Kbdclass - ok
    22:17:39.0562 0456 kbdhid (5d09146fe29f181434f3419e65baf17c) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    22:17:39.0562 0456 kbdhid - ok
    22:17:39.0593 0456 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
    22:17:39.0593 0456 kmixer - ok
    22:17:39.0609 0456 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
    22:17:39.0609 0456 KSecDD - ok
    22:17:39.0640 0456 lbrtfdc - ok
    22:17:39.0703 0456 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
    22:17:39.0703 0456 MBAMProtector - ok
    22:17:39.0734 0456 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
    22:17:39.0734 0456 mdmxsdk - ok
    22:17:39.0781 0456 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
    22:17:39.0781 0456 mnmdd - ok
    22:17:39.0812 0456 Modem (829696409b58694b97f9dcaa4053c559) C:\WINDOWS\system32\drivers\Modem.sys
    22:17:39.0812 0456 Modem - ok
    22:17:39.0828 0456 mohfilt (d306abcc26f8cedb0404153264c4e914) C:\WINDOWS\system32\drivers\mohfilt.sys
    22:17:39.0828 0456 mohfilt - ok
    22:17:39.0843 0456 Mouclass (a08eaf51779f54ed303650d1d42ecd90) C:\WINDOWS\system32\DRIVERS\mouclass.sys
    22:17:39.0843 0456 Mouclass - ok
    22:17:39.0875 0456 mouhid (bb04bb4d7fe1a38bdc61f0a174198e69) C:\WINDOWS\system32\DRIVERS\mouhid.sys
    22:17:39.0875 0456 mouhid - ok
    22:17:39.0890 0456 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
    22:17:39.0890 0456 MountMgr - ok
    22:17:39.0906 0456 mraid35x - ok
    22:17:39.0953 0456 MREMP50 (80b2ec735495823ae5771a5f603e73bd) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
    22:17:39.0953 0456 MREMP50 - ok
    22:17:39.0968 0456 MRESP50 (37d7c22f7e26da90e2d2d260e5d27846) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
    22:17:39.0968 0456 MRESP50 - ok
    22:17:39.0984 0456 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    22:17:39.0984 0456 MRxDAV - ok
    22:17:40.0031 0456 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    22:17:40.0031 0456 MRxSmb - ok
    22:17:40.0062 0456 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
    22:17:40.0062 0456 Msfs - ok
    22:17:40.0093 0456 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    22:17:40.0109 0456 mssmbios - ok
    22:17:40.0125 0456 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
    22:17:40.0125 0456 Mup - ok
    22:17:40.0265 0456 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVENG.SYS
    22:17:40.0265 0456 NAVENG - ok
    22:17:40.0312 0456 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVEX15.SYS
    22:17:40.0328 0456 NAVEX15 - ok
    22:17:40.0390 0456 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
    22:17:40.0390 0456 NDIS - ok
    22:17:40.0421 0456 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    22:17:40.0421 0456 NdisTapi - ok
    22:17:40.0437 0456 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    22:17:40.0437 0456 Ndisuio - ok
    22:17:40.0453 0456 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    22:17:40.0453 0456 NdisWan - ok
    22:17:40.0500 0456 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
    22:17:40.0500 0456 NDProxy - ok
    22:17:40.0531 0456 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
    22:17:40.0531 0456 NetBIOS - ok
    22:17:40.0546 0456 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
    22:17:40.0546 0456 NetBT - ok
    22:17:40.0625 0456 nmwcd (9a908a9bb857c2cceb2907eb9dcaeb8b) C:\WINDOWS\system32\drivers\ccdcmb.sys
    22:17:40.0625 0456 nmwcd - ok
    22:17:40.0640 0456 nmwcdc (68ec3ee2348e475ea62c66e6aafcfc9b) C:\WINDOWS\system32\drivers\ccdcmbo.sys
    22:17:40.0640 0456 nmwcdc - ok
    22:17:40.0656 0456 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
    22:17:40.0656 0456 Npfs - ok
    22:17:40.0687 0456 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
    22:17:40.0687 0456 Ntfs - ok
    22:17:40.0750 0456 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
    22:17:40.0750 0456 Null - ok
    22:17:40.0765 0456 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    22:17:40.0765 0456 NwlnkFlt - ok
    22:17:40.0796 0456 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    22:17:40.0796 0456 NwlnkFwd - ok
    22:17:40.0812 0456 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
    22:17:40.0812 0456 NwlnkIpx - ok
    22:17:40.0828 0456 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
    22:17:40.0828 0456 NwlnkNb - ok
    22:17:40.0843 0456 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
    22:17:40.0843 0456 NwlnkSpx - ok
    22:17:40.0859 0456 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
    22:17:40.0859 0456 NWRDR - ok
    22:17:40.0921 0456 Parport (88ffa60e94ca89c489db4c6a38994ebf) C:\WINDOWS\system32\DRIVERS\parport.sys
    22:17:40.0921 0456 Parport - ok
    22:17:40.0937 0456 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
    22:17:40.0937 0456 PartMgr - ok
    22:17:40.0953 0456 ParVdm (b3239c7d0ab1346afa76076ee76778d3) C:\WINDOWS\system32\drivers\ParVdm.sys
    22:17:40.0953 0456 ParVdm - ok
    22:17:40.0984 0456 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
    22:17:40.0984 0456 pccsmcfd - ok
    22:17:41.0000 0456 PCI (542690f2e4d5840202b0f13ea1bada05) C:\WINDOWS\system32\DRIVERS\pci.sys
    22:17:41.0000 0456 PCI - ok
    22:17:41.0015 0456 PCIDump - ok
    22:17:41.0031 0456 PCIIde (b928ca32fd2294eedd7df3bd9528d24c) C:\WINDOWS\system32\DRIVERS\pciide.sys
    22:17:41.0031 0456 PCIIde - ok
    22:17:41.0062 0456 Pcmcia (5d631c4c0270a9982423db089afe7621) C:\WINDOWS\system32\drivers\Pcmcia.sys
    22:17:41.0062 0456 Pcmcia - ok
    22:17:41.0078 0456 PDCOMP - ok
    22:17:41.0093 0456 PDFRAME - ok
    22:17:41.0109 0456 PDRELI - ok
    22:17:41.0140 0456 PDRFRAME - ok
    22:17:41.0156 0456 perc2 - ok
    22:17:41.0171 0456 perc2hib - ok
    22:17:41.0250 0456 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
    22:17:41.0250 0456 PptpMiniport - ok
    22:17:41.0265 0456 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
    22:17:41.0265 0456 PSched - ok
    22:17:41.0281 0456 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
    22:17:41.0281 0456 Ptilink - ok
    22:17:41.0312 0456 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
    22:17:41.0328 0456 PxHelp20 - ok
    22:17:41.0328 0456 ql1080 - ok
    22:17:41.0343 0456 Ql10wnt - ok
    22:17:41.0359 0456 ql12160 - ok
    22:17:41.0375 0456 ql1240 - ok
    22:17:41.0390 0456 ql1280 - ok
    22:17:41.0421 0456 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
    22:17:41.0421 0456 RasAcd - ok
    22:17:41.0453 0456 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    22:17:41.0453 0456 Rasl2tp - ok
    22:17:41.0468 0456 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    22:17:41.0468 0456 RasPppoe - ok
    22:17:41.0500 0456 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
    22:17:41.0500 0456 Raspti - ok
    22:17:41.0515 0456 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
    22:17:41.0515 0456 Rdbss - ok
    22:17:41.0546 0456 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    22:17:41.0546 0456 RDPCDD - ok
    22:17:41.0578 0456 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    22:17:41.0578 0456 rdpdr - ok
    22:17:41.0609 0456 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
    22:17:41.0609 0456 RDPWD - ok
    22:17:41.0640 0456 redbook (1aafcaeed86cd38db3c501610f28f131) C:\WINDOWS\system32\DRIVERS\redbook.sys
    22:17:41.0640 0456 redbook - ok
    22:17:41.0687 0456 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
    22:17:41.0687 0456 RFCOMM - ok
    22:17:41.0718 0456 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
    22:17:41.0718 0456 ROOTMODEM - ok
    22:17:41.0781 0456 RT73 (c7bcf9808e2a1b4cabe16ff7fbce5fab) C:\WINDOWS\system32\DRIVERS\rt73.sys
    22:17:41.0781 0456 RT73 - ok
    22:17:41.0812 0456 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
    22:17:41.0812 0456 RTLE8023xp - ok
    22:17:41.0843 0456 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
    22:17:41.0843 0456 RTLWUSB - ok
    22:17:41.0906 0456 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
    22:17:41.0906 0456 Secdrv - ok
    22:17:41.0937 0456 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
    22:17:41.0937 0456 serenum - ok
    22:17:41.0953 0456 Serial (cf89293b8d37cbc287b13a079afd7c5c) C:\WINDOWS\system32\DRIVERS\serial.sys
    22:17:41.0953 0456 Serial - ok
    22:17:42.0000 0456 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
    22:17:42.0000 0456 Sfloppy - ok
    22:17:42.0031 0456 Simbad - ok
    22:17:42.0078 0456 Sparrow - ok
    22:17:42.0109 0456 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
    22:17:42.0109 0456 splitter - ok
    22:17:42.0125 0456 sr (b57e685c65d8a5cb53dfc0db97e3a590) C:\WINDOWS\system32\DRIVERS\sr.sys
    22:17:42.0125 0456 sr - ok
    22:17:42.0203 0456 SRTSP (c16d048faf2978d2121f9f40594a6bdc) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SRTSP.SYS
    22:17:42.0203 0456 SRTSP - ok
    22:17:42.0218 0456 SRTSPX (f0d02c2e25970c9c72a5cd278c17cdb6) C:\WINDOWS\system32\drivers\NIS\1306010.008\SRTSPX.SYS
    22:17:42.0218 0456 SRTSPX - ok
    22:17:42.0265 0456 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
    22:17:42.0265 0456 Srv - ok
    22:17:42.0296 0456 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
    22:17:42.0296 0456 swenum - ok
    22:17:42.0312 0456 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
    22:17:42.0312 0456 swmidi - ok
    22:17:42.0328 0456 symc810 - ok
    22:17:42.0343 0456 symc8xx - ok
    22:17:42.0375 0456 SymDS (690fa0e61b90084c4d9a721bd4f3d779) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMDS.SYS
    22:17:42.0375 0456 SymDS - ok
    22:17:42.0437 0456 SymEFA (4e55148a2e044d02245cbcdbb266b98c) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMEFA.SYS
    22:17:42.0437 0456 SymEFA - ok
    22:17:42.0468 0456 SymEvent (555fb450fe6908600310e990738b41d6) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
    22:17:42.0468 0456 SymEvent - ok
    22:17:42.0484 0456 SymIRON (2c356cca706505cf63cbe39d532b9236) C:\WINDOWS\system32\drivers\NIS\1306010.008\Ironx86.SYS
    22:17:42.0484 0456 SymIRON - ok
    22:17:42.0515 0456 SYMTDI (508bd882040f9cb12319e3a4fc78edb9) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SYMTDI.SYS
    22:17:42.0515 0456 SYMTDI - ok
    22:17:42.0531 0456 sym_hi - ok
    22:17:42.0546 0456 sym_u3 - ok
    22:17:42.0562 0456 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
    22:17:42.0562 0456 sysaudio - ok
    22:17:42.0625 0456 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
    22:17:42.0625 0456 Tcpip - ok
    22:17:42.0656 0456 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
    22:17:42.0656 0456 TDPIPE - ok
    22:17:42.0656 0456 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
    22:17:42.0656 0456 TDTCP - ok
    22:17:42.0687 0456 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
    22:17:42.0687 0456 TermDD - ok
    22:17:42.0734 0456 TosIde - ok
    22:17:42.0781 0456 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
    22:17:42.0781 0456 Udfs - ok
    22:17:42.0781 0456 ultra - ok
    22:17:42.0812 0456 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
    22:17:42.0828 0456 Update - ok
    22:17:42.0859 0456 upperdev (a34560a5d516a2f5240180370866b99d) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
    22:17:42.0859 0456 upperdev - ok
    22:17:42.0906 0456 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    22:17:42.0906 0456 usbccgp - ok
    22:17:42.0921 0456 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
    22:17:42.0921 0456 usbehci - ok
    22:17:42.0953 0456 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
    22:17:42.0953 0456 usbhub - ok
    22:17:42.0984 0456 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
    22:17:42.0984 0456 usbprint - ok
    22:17:43.0015 0456 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
    22:17:43.0015 0456 usbscan - ok
    22:17:43.0031 0456 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
    22:17:43.0031 0456 usbser - ok
    22:17:43.0062 0456 UsbserFilt (6410eebd6e0427466812858ee84c8467) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
    22:17:43.0062 0456 UsbserFilt - ok
    22:17:43.0125 0456 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    22:17:43.0125 0456 USBSTOR - ok
    22:17:43.0140 0456 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    22:17:43.0140 0456 usbuhci - ok
    22:17:43.0171 0456 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
    22:17:43.0171 0456 VgaSave - ok
    22:17:43.0187 0456 ViaIde - ok
    22:17:43.0203 0456 VolSnap (e3eed80adea08f324a3722ab81e136d0) C:\WINDOWS\system32\drivers\VolSnap.sys
    22:17:43.0203 0456 VolSnap - ok
    22:17:43.0250 0456 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
    22:17:43.0250 0456 Wanarp - ok
    22:17:43.0281 0456 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
    22:17:43.0281 0456 Wdf01000 - ok
    22:17:43.0281 0456 WDICA - ok
    22:17:43.0312 0456 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
    22:17:43.0312 0456 wdmaud - ok
    22:17:43.0359 0456 winachsf (cb2dc26de2c815fc2309566f92d22ed4) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
    22:17:43.0359 0456 winachsf - ok
    22:17:43.0468 0456 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    22:17:43.0468 0456 WpdUsb - ok
    22:17:43.0500 0456 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
    22:17:43.0500 0456 WS2IFSL - ok
    22:17:43.0546 0456 WudfPf (50eb9e21963b4f06fd010d007d54351b) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    22:17:43.0546 0456 WudfPf - ok
    22:17:43.0562 0456 WudfRd (6e209664bdea8a15b5e8e480d6c607c2) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    22:17:43.0562 0456 WudfRd - ok
    22:17:43.0671 0456 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
    22:17:43.0828 0456 \Device\Harddisk0\DR0 - ok
    22:17:43.0859 0456 Boot (0x1200) (4ef9d679b2be2298513b87a341738062) \Device\Harddisk0\DR0\Partition0
    22:17:43.0859 0456 \Device\Harddisk0\DR0\Partition0 - ok
    22:17:43.0859 0456 Boot (0x1200) (5d9a861c5259a8684d647ba210366bef) \Device\Harddisk0\DR0\Partition1
    22:17:43.0875 0456 \Device\Harddisk0\DR0\Partition1 - ok
    22:17:43.0875 0456 ============================================================
    22:17:43.0875 0456 Scan finished
    22:17:43.0875 0456 ============================================================
    22:17:43.0906 1780 Detected object count: 0
    22:17:43.0906 1780 Actual detected object count: 0
    22:18:04.0453 0492 ============================================================
    22:18:04.0453 0492 Scan started
    22:18:04.0453 0492 Mode: Manual;
    22:18:04.0453 0492 ============================================================
    22:18:04.0703 0492 Scan interrupted by user!
    22:18:04.0703 0492 Scan interrupted by user!
    22:18:04.0703 0492 Scan interrupted by user!
    22:18:04.0703 0492 ============================================================
    22:18:04.0703 0492 Scan finished
    22:18:04.0703 0492 ============================================================
    22:18:04.0718 3600 Detected object count: 0
    22:18:04.0718 3600 Actual detected object count: 0
    22:18:06.0062 2440 ============================================================
    22:18:06.0062 2440 Scan started
    22:18:06.0062 2440 Mode: Manual;
    22:18:06.0062 2440 ============================================================
    22:18:06.0390 2440 Abiosdsk - ok
    22:18:06.0406 2440 abp480n5 - ok
    22:18:06.0437 2440 ACPI (29dd2c058bdc1d4ab75d9e5e2ed81907) C:\WINDOWS\system32\DRIVERS\ACPI.sys
    22:18:06.0437 2440 ACPI - ok
    22:18:06.0453 2440 ACPIEC (3837d7349b1749d55d8ec6c5b490b8a8) C:\WINDOWS\system32\drivers\ACPIEC.sys
    22:18:06.0453 2440 ACPIEC - ok
    22:18:06.0453 2440 adpu160m - ok
    22:18:06.0484 2440 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
    22:18:06.0484 2440 aec - ok
    22:18:06.0500 2440 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
    22:18:06.0500 2440 AegisP - ok
    22:18:06.0546 2440 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
    22:18:06.0546 2440 AFD - ok
    22:18:06.0562 2440 Aha154x - ok
    22:18:06.0578 2440 aic78u2 - ok
    22:18:06.0593 2440 aic78xx - ok
    22:18:06.0625 2440 AliIde - ok
    22:18:06.0640 2440 amsint - ok
    22:18:06.0671 2440 asc - ok
    22:18:06.0687 2440 asc3350p - ok
    22:18:06.0703 2440 asc3550 - ok
    22:18:06.0765 2440 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
    22:18:06.0765 2440 AsyncMac - ok
    22:18:06.0781 2440 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
    22:18:06.0781 2440 atapi - ok
    22:18:06.0796 2440 Atdisk - ok
    22:18:06.0828 2440 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
    22:18:06.0828 2440 Atmarpc - ok
    22:18:06.0859 2440 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
    22:18:06.0859 2440 audstub - ok
    22:18:06.0890 2440 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
    22:18:06.0890 2440 Beep - ok
    22:18:07.0031 2440 BHDrvx86 (eb7f1f1dfa95c25d762c22d3cf13d4e0) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20120302.001\BHDrvx86.sys
    22:18:07.0046 2440 BHDrvx86 - ok
    22:18:07.0093 2440 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
    22:18:07.0093 2440 BthEnum - ok
    22:18:07.0125 2440 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
    22:18:07.0125 2440 BthPan - ok
    22:18:07.0171 2440 BTHPORT (c32a38535bd714cedd0205ac8b65e195) C:\WINDOWS\system32\Drivers\BTHport.sys
    22:18:07.0171 2440 BTHPORT - ok
    22:18:07.0203 2440 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
    22:18:07.0203 2440 BTHUSB - ok
    22:18:07.0218 2440 catchme - ok
    22:18:07.0250 2440 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
    22:18:07.0250 2440 cbidf2k - ok
    22:18:07.0296 2440 ccSet_NIS (599e7f6259a127c174c49938d2aa6a60) C:\WINDOWS\system32\drivers\NIS\1306010.008\ccSetx86.sys
    22:18:07.0296 2440 ccSet_NIS - ok
    22:18:07.0312 2440 cd20xrnt - ok
    22:18:07.0328 2440 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
    22:18:07.0328 2440 Cdaudio - ok
    22:18:07.0359 2440 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
    22:18:07.0359 2440 Cdfs - ok
    22:18:07.0390 2440 cdrblock (15e3e2920adac7450e0c7ae5f23a5f53) C:\WINDOWS\system32\DRIVERS\cdrblock.sys
    22:18:07.0390 2440 cdrblock - ok
    22:18:07.0421 2440 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
    22:18:07.0421 2440 Cdrom - ok
    22:18:07.0421 2440 Changer - ok
    22:18:07.0468 2440 CmdIde - ok
    22:18:07.0515 2440 Cpqarray - ok
    22:18:07.0531 2440 dac2w2k - ok
    22:18:07.0546 2440 dac960nt - ok
    22:18:07.0578 2440 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
    22:18:07.0578 2440 Disk - ok
    22:18:07.0625 2440 dmboot (0f4f942d622b0d9fd4213431b729e993) C:\WINDOWS\system32\drivers\dmboot.sys
    22:18:07.0640 2440 dmboot - ok
    22:18:07.0640 2440 dmio (86eb492c80a43418685d88da3d6cedc7) C:\WINDOWS\system32\drivers\dmio.sys
    22:18:07.0656 2440 dmio - ok
    22:18:07.0671 2440 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
    22:18:07.0671 2440 dmload - ok
    22:18:07.0703 2440 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
    22:18:07.0703 2440 DMusic - ok
    22:18:07.0734 2440 dpti2o - ok
    22:18:07.0750 2440 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
    22:18:07.0750 2440 drmkaud - ok
    22:18:07.0843 2440 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
    22:18:07.0843 2440 eeCtrl - ok
    22:18:07.0859 2440 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
    22:18:07.0859 2440 EraserUtilRebootDrv - ok
    22:18:07.0953 2440 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
    22:18:07.0953 2440 Fastfat - ok
    22:18:07.0968 2440 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
    22:18:07.0968 2440 Fdc - ok
    22:18:08.0000 2440 Fips (9b6af9e7e172249afc4af5576b506233) C:\WINDOWS\system32\drivers\Fips.sys
    22:18:08.0000 2440 Fips - ok
    22:18:08.0015 2440 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
    22:18:08.0015 2440 Flpydisk - ok
    22:18:08.0046 2440 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
    22:18:08.0046 2440 FltMgr - ok
    22:18:08.0093 2440 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
    22:18:08.0093 2440 fssfltr - ok
    22:18:08.0140 2440 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
    22:18:08.0140 2440 Fs_Rec - ok
    22:18:08.0156 2440 Ftdisk (0f47404101e488d7d49e45a8af4cdf90) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
    22:18:08.0156 2440 Ftdisk - ok
    22:18:08.0203 2440 gdrv (5c230948dd6652228f88ca7ae6cb276c) C:\WINDOWS\gdrv.sys
    22:18:08.0203 2440 gdrv - ok
    22:18:08.0218 2440 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
    22:18:08.0218 2440 Gpc - ok
    22:18:08.0250 2440 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
    22:18:08.0250 2440 HDAudBus - ok
    22:18:08.0296 2440 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
    22:18:08.0312 2440 HidUsb - ok
    22:18:08.0328 2440 hpn - ok
    22:18:08.0359 2440 HSFHWBS2 (f3e718604c5a8a28003280d861d96c19) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
    22:18:08.0359 2440 HSFHWBS2 - ok
    22:18:08.0390 2440 HSF_DPV (4290713b7c3289ef87ee5ca474b21221) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
    22:18:08.0390 2440 HSF_DPV - ok
    22:18:08.0437 2440 HssDrv (30858b2d6dc0d8ed044dc28011ade6a2) C:\WINDOWS\system32\DRIVERS\HssDrv.sys
    22:18:08.0437 2440 HssDrv - ok
    22:18:08.0468 2440 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
    22:18:08.0468 2440 HTTP - ok
    22:18:08.0484 2440 i2omgmt - ok
    22:18:08.0500 2440 i2omp - ok
    22:18:08.0546 2440 i8042prt (9354faa5f4084ccb31a868bfa4bc2ed0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
    22:18:08.0546 2440 i8042prt - ok
    22:18:08.0562 2440 ialm - ok
    22:18:08.0609 2440 IDMTDI (505c3e797a9dcfb73b48d8eab60ddeb8) C:\WINDOWS\system32\DRIVERS\idmtdi.sys
    22:18:08.0609 2440 IDMTDI - ok
    22:18:08.0750 2440 IDSxpx86 (cfbc1ce72e5353d428704659199147b1) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20120315.002\IDSxpx86.sys
    22:18:08.0765 2440 IDSxpx86 - ok
    22:18:08.0781 2440 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
    22:18:08.0781 2440 Imapi - ok
    22:18:08.0828 2440 ini910u - ok
    22:18:08.0921 2440 IntcAzAudAddService (08baf30f6de95814f58af9ce7bbc5614) C:\WINDOWS\system32\drivers\RtkHDAud.sys
    22:18:08.0953 2440 IntcAzAudAddService - ok
    22:18:08.0968 2440 IntelIde - ok
    22:18:08.0984 2440 intelppm (40c589797cb66da0c1fe305f3bfcfdaf) C:\WINDOWS\system32\DRIVERS\intelppm.sys
    22:18:08.0984 2440 intelppm - ok
    22:18:09.0015 2440 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
    22:18:09.0015 2440 Ip6Fw - ok
    22:18:09.0031 2440 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
    22:18:09.0031 2440 IpFilterDriver - ok
    22:18:09.0062 2440 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
    22:18:09.0062 2440 IpInIp - ok
    22:18:09.0078 2440 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
    22:18:09.0078 2440 IpNat - ok
    22:18:09.0093 2440 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
    22:18:09.0093 2440 IPSec - ok
    22:18:09.0109 2440 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
    22:18:09.0109 2440 IRENUM - ok
    22:18:09.0156 2440 isapnp (338ac2ebb3e3410b7e95185da8e73a41) C:\WINDOWS\system32\DRIVERS\isapnp.sys
    22:18:09.0156 2440 isapnp - ok
    22:18:09.0187 2440 Kbdclass (9c1c146fa88a622fe5a7bc526e2e1289) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
    22:18:09.0187 2440 Kbdclass - ok
    22:18:09.0203 2440 kbdhid (5d09146fe29f181434f3419e65baf17c) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
    22:18:09.0203 2440 kbdhid - ok
    22:18:09.0250 2440 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
    22:18:09.0250 2440 kmixer - ok
    22:18:09.0265 2440 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
    22:18:09.0265 2440 KSecDD - ok
    22:18:09.0296 2440 lbrtfdc - ok
    22:18:09.0359 2440 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
    22:18:09.0359 2440 MBAMProtector - ok
    22:18:09.0390 2440 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
    22:18:09.0390 2440 mdmxsdk - ok
    22:18:09.0437 2440 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
    22:18:09.0437 2440 mnmdd - ok
    22:18:09.0468 2440 Modem (829696409b58694b97f9dcaa4053c559) C:\WINDOWS\system32\drivers\Modem.sys
    22:18:09.0468 2440 Modem - ok
    22:18:09.0484 2440 mohfilt (d306abcc26f8cedb0404153264c4e914) C:\WINDOWS\system32\drivers\mohfilt.sys
    22:18:09.0484 2440 mohfilt - ok
    22:18:09.0500 2440 Mouclass (a08eaf51779f54ed303650d1d42ecd90) C:\WINDOWS\system32\DRIVERS\mouclass.sys
    22:18:09.0500 2440 Mouclass - ok
    22:18:09.0531 2440 mouhid (bb04bb4d7fe1a38bdc61f0a174198e69) C:\WINDOWS\system32\DRIVERS\mouhid.sys
    22:18:09.0531 2440 mouhid - ok
    22:18:09.0562 2440 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
    22:18:09.0562 2440 MountMgr - ok
    22:18:09.0578 2440 mraid35x - ok
    22:18:09.0625 2440 MREMP50 (80b2ec735495823ae5771a5f603e73bd) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
    22:18:09.0625 2440 MREMP50 - ok
    22:18:09.0640 2440 MRESP50 (37d7c22f7e26da90e2d2d260e5d27846) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
    22:18:09.0640 2440 MRESP50 - ok
    22:18:09.0656 2440 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
    22:18:09.0656 2440 MRxDAV - ok
    22:18:09.0703 2440 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
    22:18:09.0703 2440 MRxSmb - ok
    22:18:09.0734 2440 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
    22:18:09.0734 2440 Msfs - ok
    22:18:09.0765 2440 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
    22:18:09.0765 2440 mssmbios - ok
    22:18:09.0781 2440 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
    22:18:09.0781 2440 Mup - ok
    22:18:09.0921 2440 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVENG.SYS
    22:18:09.0921 2440 NAVENG - ok
    22:18:09.0968 2440 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20120315.002\NAVEX15.SYS
    22:18:09.0968 2440 NAVEX15 - ok
    22:18:10.0031 2440 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
    22:18:10.0046 2440 NDIS - ok
    22:18:10.0093 2440 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
    22:18:10.0093 2440 NdisTapi - ok
    22:18:10.0109 2440 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
    22:18:10.0109 2440 Ndisuio - ok
    22:18:10.0125 2440 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
    22:18:10.0125 2440 NdisWan - ok
    22:18:10.0156 2440 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
    22:18:10.0171 2440 NDProxy - ok
    22:18:10.0187 2440 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
    22:18:10.0187 2440 NetBIOS - ok
    22:18:10.0218 2440 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
    22:18:10.0218 2440 NetBT - ok
    22:18:10.0312 2440 nmwcd (9a908a9bb857c2cceb2907eb9dcaeb8b) C:\WINDOWS\system32\drivers\ccdcmb.sys
    22:18:10.0312 2440 nmwcd - ok
    22:18:10.0328 2440 nmwcdc (68ec3ee2348e475ea62c66e6aafcfc9b) C:\WINDOWS\system32\drivers\ccdcmbo.sys
    22:18:10.0328 2440 nmwcdc - ok
    22:18:10.0343 2440 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
    22:18:10.0343 2440 Npfs - ok
    22:18:10.0375 2440 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
    22:18:10.0375 2440 Ntfs - ok
    22:18:10.0421 2440 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
    22:18:10.0421 2440 Null - ok
    22:18:10.0453 2440 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
    22:18:10.0453 2440 NwlnkFlt - ok
    22:18:10.0468 2440 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
    22:18:10.0468 2440 NwlnkFwd - ok
    22:18:10.0484 2440 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
    22:18:10.0484 2440 NwlnkIpx - ok
    22:18:10.0500 2440 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
    22:18:10.0500 2440 NwlnkNb - ok
    22:18:10.0515 2440 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
    22:18:10.0515 2440 NwlnkSpx - ok
    22:18:10.0531 2440 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
    22:18:10.0546 2440 NWRDR - ok
    22:18:10.0578 2440 Parport (88ffa60e94ca89c489db4c6a38994ebf) C:\WINDOWS\system32\DRIVERS\parport.sys
    22:18:10.0578 2440 Parport - ok
    22:18:10.0609 2440 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
    22:18:10.0609 2440 PartMgr - ok
    22:18:10.0625 2440 ParVdm (b3239c7d0ab1346afa76076ee76778d3) C:\WINDOWS\system32\drivers\ParVdm.sys
    22:18:10.0625 2440 ParVdm - ok
    22:18:10.0656 2440 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
    22:18:10.0656 2440 pccsmcfd - ok
    22:18:10.0671 2440 PCI (542690f2e4d5840202b0f13ea1bada05) C:\WINDOWS\system32\DRIVERS\pci.sys
    22:18:10.0671 2440 PCI - ok
    22:18:10.0687 2440 PCIDump - ok
    22:18:10.0703 2440 PCIIde (b928ca32fd2294eedd7df3bd9528d24c) C:\WINDOWS\system32\DRIVERS\pciide.sys
    22:18:10.0703 2440 PCIIde - ok
    22:18:10.0734 2440 Pcmcia (5d631c4c0270a9982423db089afe7621) C:\WINDOWS\system32\drivers\Pcmcia.sys
    22:18:10.0734 2440 Pcmcia - ok
    22:18:10.0750 2440 PDCOMP - ok
    22:18:10.0765 2440 PDFRAME - ok
    22:18:10.0781 2440 PDRELI - ok
    22:18:10.0796 2440 PDRFRAME - ok
    22:18:10.0812 2440 perc2 - ok
    22:18:10.0828 2440 perc2hib - ok
    22:18:10.0906 2440 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
    22:18:10.0906 2440 PptpMiniport - ok
    22:18:10.0921 2440 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
    22:18:10.0921 2440 PSched - ok
    22:18:10.0937 2440 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
    22:18:10.0937 2440 Ptilink - ok
    22:18:10.0984 2440 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
    22:18:10.0984 2440 PxHelp20 - ok
    22:18:10.0984 2440 ql1080 - ok
    22:18:11.0000 2440 Ql10wnt - ok
    22:18:11.0015 2440 ql12160 - ok
    22:18:11.0031 2440 ql1240 - ok
    22:18:11.0046 2440 ql1280 - ok
    22:18:11.0078 2440 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
    22:18:11.0078 2440 RasAcd - ok
    22:18:11.0109 2440 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
    22:18:11.0109 2440 Rasl2tp - ok
    22:18:11.0125 2440 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
    22:18:11.0125 2440 RasPppoe - ok
    22:18:11.0171 2440 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
    22:18:11.0171 2440 Raspti - ok
    22:18:11.0187 2440 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
    22:18:11.0187 2440 Rdbss - ok
    22:18:11.0203 2440 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
    22:18:11.0203 2440 RDPCDD - ok
    22:18:11.0234 2440 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
    22:18:11.0250 2440 rdpdr - ok
    22:18:11.0281 2440 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
    22:18:11.0281 2440 RDPWD - ok
    22:18:11.0296 2440 redbook (1aafcaeed86cd38db3c501610f28f131) C:\WINDOWS\system32\DRIVERS\redbook.sys
    22:18:11.0312 2440 redbook - ok
    22:18:11.0343 2440 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
    22:18:11.0343 2440 RFCOMM - ok
    22:18:11.0375 2440 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
    22:18:11.0375 2440 ROOTMODEM - ok
    22:18:11.0437 2440 RT73 (c7bcf9808e2a1b4cabe16ff7fbce5fab) C:\WINDOWS\system32\DRIVERS\rt73.sys
    22:18:11.0437 2440 RT73 - ok
    22:18:11.0453 2440 RTLE8023xp (89619ef503f949fae09252a8b883ee11) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
    22:18:11.0453 2440 RTLE8023xp - ok
    22:18:11.0484 2440 RTLWUSB (0534004db838fd5ae5f64e8d78a544dd) C:\WINDOWS\system32\DRIVERS\RTL8187.sys
    22:18:11.0484 2440 RTLWUSB - ok
    22:18:11.0562 2440 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
    22:18:11.0562 2440 Secdrv - ok
    22:18:11.0593 2440 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
    22:18:11.0593 2440 serenum - ok
    22:18:11.0609 2440 Serial (cf89293b8d37cbc287b13a079afd7c5c) C:\WINDOWS\system32\DRIVERS\serial.sys
    22:18:11.0609 2440 Serial - ok
    22:18:11.0656 2440 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
    22:18:11.0656 2440 Sfloppy - ok
    22:18:11.0687 2440 Simbad - ok
    22:18:11.0734 2440 Sparrow - ok
    22:18:11.0765 2440 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
    22:18:11.0765 2440 splitter - ok
    22:18:11.0796 2440 sr (b57e685c65d8a5cb53dfc0db97e3a590) C:\WINDOWS\system32\DRIVERS\sr.sys
    22:18:11.0796 2440 sr - ok
    22:18:11.0859 2440 SRTSP (c16d048faf2978d2121f9f40594a6bdc) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SRTSP.SYS
    22:18:11.0859 2440 SRTSP - ok
    22:18:11.0890 2440 SRTSPX (f0d02c2e25970c9c72a5cd278c17cdb6) C:\WINDOWS\system32\drivers\NIS\1306010.008\SRTSPX.SYS
    22:18:11.0890 2440 SRTSPX - ok
    22:18:11.0921 2440 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
    22:18:11.0921 2440 Srv - ok
    22:18:11.0968 2440 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
    22:18:11.0968 2440 swenum - ok
    22:18:12.0000 2440 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
    22:18:12.0000 2440 swmidi - ok
    22:18:12.0015 2440 symc810 - ok
    22:18:12.0031 2440 symc8xx - ok
    22:18:12.0062 2440 SymDS (690fa0e61b90084c4d9a721bd4f3d779) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMDS.SYS
    22:18:12.0062 2440 SymDS - ok
    22:18:12.0093 2440 SymEFA (4e55148a2e044d02245cbcdbb266b98c) C:\WINDOWS\system32\drivers\NIS\1306010.008\SYMEFA.SYS
    22:18:12.0093 2440 SymEFA - ok
    22:18:12.0125 2440 SymEvent (555fb450fe6908600310e990738b41d6) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
    22:18:12.0125 2440 SymEvent - ok
    22:18:12.0140 2440 SymIRON (2c356cca706505cf63cbe39d532b9236) C:\WINDOWS\system32\drivers\NIS\1306010.008\Ironx86.SYS
    22:18:12.0140 2440 SymIRON - ok
    22:18:12.0171 2440 SYMTDI (508bd882040f9cb12319e3a4fc78edb9) C:\WINDOWS\System32\Drivers\NIS\1306010.008\SYMTDI.SYS
    22:18:12.0171 2440 SYMTDI - ok
    22:18:12.0187 2440 sym_hi - ok
    22:18:12.0203 2440 sym_u3 - ok
    22:18:12.0234 2440 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
    22:18:12.0234 2440 sysaudio - ok
    22:18:12.0296 2440 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
    22:18:12.0296 2440 Tcpip - ok
    22:18:12.0328 2440 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
    22:18:12.0328 2440 TDPIPE - ok
    22:18:12.0343 2440 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
    22:18:12.0343 2440 TDTCP - ok
    22:18:12.0375 2440 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
    22:18:12.0375 2440 TermDD - ok
    22:18:12.0406 2440 TosIde - ok
    22:18:12.0546 2440 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
    22:18:12.0546 2440 Udfs - ok
    22:18:12.0562 2440 ultra - ok
    22:18:12.0593 2440 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
    22:18:12.0593 2440 Update - ok
    22:18:12.0625 2440 upperdev (a34560a5d516a2f5240180370866b99d) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
    22:18:12.0625 2440 upperdev - ok
    22:18:12.0671 2440 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
    22:18:12.0671 2440 usbccgp - ok
    22:18:12.0703 2440 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
    22:18:12.0703 2440 usbehci - ok
    22:18:12.0718 2440 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
    22:18:12.0718 2440 usbhub - ok
    22:18:12.0750 2440 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
    22:18:12.0750 2440 usbprint - ok
    22:18:12.0781 2440 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
    22:18:12.0781 2440 usbscan - ok
    22:18:12.0796 2440 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
    22:18:12.0796 2440 usbser - ok
    22:18:12.0812 2440 UsbserFilt (6410eebd6e0427466812858ee84c8467) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
    22:18:12.0812 2440 UsbserFilt - ok
    22:18:12.0843 2440 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
    22:18:12.0843 2440 USBSTOR - ok
    22:18:12.0875 2440 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
    22:18:12.0875 2440 usbuhci - ok
    22:18:12.0890 2440 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
    22:18:12.0890 2440 VgaSave - ok
    22:18:12.0906 2440 ViaIde - ok
    22:18:12.0937 2440 VolSnap (e3eed80adea08f324a3722ab81e136d0) C:\WINDOWS\system32\drivers\VolSnap.sys
    22:18:12.0937 2440 VolSnap - ok
    22:18:12.0984 2440 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
    22:18:12.0984 2440 Wanarp - ok
    22:18:13.0015 2440 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys
    22:18:13.0015 2440 Wdf01000 - ok
    22:18:13.0015 2440 WDICA - ok
    22:18:13.0062 2440 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
    22:18:13.0062 2440 wdmaud - ok
    22:18:13.0093 2440 winachsf (cb2dc26de2c815fc2309566f92d22ed4) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
    22:18:13.0109 2440 winachsf - ok
    22:18:13.0218 2440 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
    22:18:13.0218 2440 WpdUsb - ok
    22:18:13.0250 2440 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
    22:18:13.0250 2440 WS2IFSL - ok
    22:18:13.0281 2440 WudfPf (50eb9e21963b4f06fd010d007d54351b) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
    22:18:13.0281 2440 WudfPf - ok
    22:18:13.0296 2440 WudfRd (6e209664bdea8a15b5e8e480d6c607c2) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
    22:18:13.0296 2440 WudfRd - ok
    22:18:13.0421 2440 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
    22:18:13.0578 2440 \Device\Harddisk0\DR0 - ok
    22:18:13.0609 2440 Boot (0x1200) (4ef9d679b2be2298513b87a341738062) \Device\Harddisk0\DR0\Partition0
    22:18:13.0609 2440 \Device\Harddisk0\DR0\Partition0 - ok
    22:18:13.0625 2440 Boot (0x1200) (5d9a861c5259a8684d647ba210366bef) \Device\Harddisk0\DR0\Partition1
    22:18:13.0625 2440 \Device\Harddisk0\DR0\Partition1 - ok
    22:18:13.0625 2440 ============================================================
    22:18:13.0625 2440 Scan finished
    22:18:13.0625 2440 ============================================================
    22:18:13.0656 0860 Detected object count: 0
    22:18:13.0656 0860 Actual detected object count: 0
    22:18:18.0593 3556 Deinitialize success

     
  16. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
    الان في تشغيل اكتبي الامر التالي

    combofix /uninstall


    ثم عيدي تشغيل الجهاز وارجعي فعلي النورتن ​

     
  17. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة
    تم عمل المشاركة السابقة وإعادة تشغيل الجهاز
     
  18. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
    الان ارجعي شغلي النورتن واعملي تحديث + فحص شامل للجهاز
     
  19. Rodina

    Rodina مراقبة إدارية مراقبة عامة

    4,215
    0
    36
    ‏2012-01-03
    معلمة

    أخوي شغلت النورتن لكن آيش المقصود بالتحديث؟

    فحص شامل للجهاز هل تقصد :

    QuicK Scan

    أو فحص كامل للنظام

    أو فحص مخصص

    أو من الإعدادات

    ما فهمت عليك !
     
  20. البارون

    البارون عضو مجلس إدارة الموقع عضو مجلس الإدارة

    754
    0
    16
    ‏2011-11-06
    معلم
    فحص كامل للنظام
     
حالة الموضوع:
مغلق