Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Antivirus 2012 removal help needed


  • Please log in to reply

#1
anon1248

anon1248

    Member

  • Member
  • PipPip
  • 18 posts
this is the infomation about my virus http://www.geekstogo...83#entry2115183
p.s they told me to go to this forum and follow instrustions

OTL logfile created on: 3/4/2012 3:30:32 PM - Run 1
OTL by OldTimer - Version 3.2.35.1 Folder = C:\Users\Mark\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

2.93 Gb Total Physical Memory | 1.80 Gb Available Physical Memory | 61.30% Memory free
5.86 Gb Paging File | 4.62 Gb Available in Paging File | 78.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 220.08 Gb Total Space | 172.67 Gb Free Space | 78.46% Space Free | Partition Type: NTFS
Drive D: | 12.61 Gb Total Space | 2.11 Gb Free Space | 16.71% Space Free | Partition Type: NTFS

Computer Name: MARK-PC | User Name: Mark | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/03/04 15:24:54 | 000,584,704 | ---- | M] (OldTimer Tools) -- C:\Users\Mark\Downloads\OTL.exe
PRC - [2012/02/25 10:35:12 | 000,250,016 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11f_ActiveX.exe
PRC - [2011/11/30 02:17:50 | 000,138,248 | R--- | M] (Symantec Corporation) -- C:\Program Files (x86)\Norton Internet Security\Engine\19.5.1.2\ccSvcHst.exe
PRC - [2011/03/28 11:21:16 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe


========== Modules (No Company Name) ==========

MOD - [2009/06/17 19:40:16 | 007,745,536 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
MOD - [2009/06/17 19:40:16 | 002,121,728 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
MOD - [2009/06/17 19:40:16 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/09/22 18:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/03/23 14:53:06 | 000,247,808 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\stacsv64.exe -- (STacSV)
SRV:64bit: - [2009/07/14 01:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/02 18:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe -- (AESTFilters)
SRV - [2011/11/30 02:17:50 | 000,138,248 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Norton Internet Security\Engine\19.5.1.2\ccSvcHst.exe -- (NIS)
SRV - [2011/10/12 17:06:48 | 004,700,824 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe -- (NOBU)
SRV - [2011/04/01 11:14:30 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/03/28 11:21:16 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/05/22 18:02:20 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2009/02/22 19:00:00 | 000,129,584 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\SysWOW64\ezsvc7.dll -- (ezSharedSvc)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/02/25 08:56:57 | 000,175,736 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS -- (SymEvent)
DRV:64bit: - [2011/11/24 02:23:47 | 001,092,728 | R--- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\NISx64\1305010.002\SymEFA64.sys -- (SymEFA)
DRV:64bit: - [2011/11/24 01:50:27 | 000,738,936 | R--- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\NISx64\1305010.002\srtsp64.sys -- (SRTSP)
DRV:64bit: - [2011/11/24 01:50:27 | 000,037,496 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1305010.002\srtspx64.sys -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV:64bit: - [2011/11/17 03:37:59 | 000,405,624 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1305010.002\symnets.sys -- (SymNetS)
DRV:64bit: - [2011/11/17 03:17:49 | 000,190,072 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1305010.002\Ironx64.sys -- (SymIRON)
DRV:64bit: - [2011/11/04 23:59:30 | 000,167,048 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NISx64\1305010.002\ccSetx64.sys -- (ccSet_NIS)
DRV:64bit: - [2011/08/16 06:51:40 | 000,451,192 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\NISx64\1305010.002\SymDS64.sys -- (SymDS)
DRV:64bit: - [2011/05/13 15:37:54 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2011/03/11 06:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 06:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/02/11 19:16:38 | 010,628,640 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/11/20 13:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 11:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 09:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/05/27 22:32:56 | 000,320,560 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2010/03/23 14:53:06 | 000,505,344 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010/03/02 16:45:24 | 001,594,368 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/07/14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 01:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/24 19:00:18 | 000,216,576 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV:64bit: - [2009/06/10 21:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 21:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 21:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 21:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
DRV:64bit: - [2009/06/10 20:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 20:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel®
DRV:64bit: - [2009/06/10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/26 12:13:10 | 000,138,752 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel®
DRV:64bit: - [2009/04/29 15:48:32 | 000,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV:64bit: - [2009/03/01 23:05:32 | 000,187,392 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV - [2012/03/04 12:35:51 | 002,048,632 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120303.009\ex64.sys -- (NAVEX15)
DRV - [2012/03/04 12:35:51 | 000,117,880 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120303.009\eng64.sys -- (NAVENG)
DRV - [2012/03/01 17:50:52 | 000,138,360 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2012/02/27 16:39:04 | 000,482,936 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys -- (eeCtrl)
DRV - [2012/02/24 16:26:06 | 000,488,568 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\IPSDefs\20120229.002\IDSviA64.sys -- (IDSVia64)
DRV - [2011/11/29 04:48:55 | 001,157,240 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\BASHDefs\20120215.001\BHDrvx64.sys -- (BHDrvx64)
DRV - [2009/07/14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...resario&pf=cnnb
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...resario&pf=cnnb
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {C1D5EC18-B665-4AA3-ADFD-9E466629E6D1}
IE:64bit: - HKLM\..\SearchScopes\{AC3F49B1-2912-4F76-81AB-624EA7E8F491}: "URL" = http://uk.kelkoopart...tnerId=96913936
IE:64bit: - HKLM\..\SearchScopes\{C1D5EC18-B665-4AA3-ADFD-9E466629E6D1}: "URL" = http://slirsredirect...hpcnnbie7-en-gb
IE:64bit: - HKLM\..\SearchScopes\{F9FC1670-8AD8-4BDC-8E58-56EB224739CA}: "URL" = http://uk.search.yah...p06&type=ie2008
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...resario&pf=cnnb
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...resario&pf=cnnb
IE - HKLM\..\SearchScopes,DefaultScope = {C1D5EC18-B665-4AA3-ADFD-9E466629E6D1}
IE - HKLM\..\SearchScopes\{AC3F49B1-2912-4F76-81AB-624EA7E8F491}: "URL" = http://uk.kelkoopart...tnerId=96913936
IE - HKLM\..\SearchScopes\{C1D5EC18-B665-4AA3-ADFD-9E466629E6D1}: "URL" = http://slirsredirect...hpcnnbie7-en-gb
IE - HKLM\..\SearchScopes\{F9FC1670-8AD8-4BDC-8E58-56EB224739CA}: "URL" = http://uk.search.yah...p06&type=ie2008

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://uk.msn.com/?ocid=ie9fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
IE - HKCU\..\SearchScopes,DefaultScope = {B5CA72A8-FE4F-4D69-8330-F55B358A1664}
IE - HKCU\..\SearchScopes\{AC3F49B1-2912-4F76-81AB-624EA7E8F491}: "URL" = http://uk.kelkoopart...tnerId=96913936
IE - HKCU\..\SearchScopes\{B5CA72A8-FE4F-4D69-8330-F55B358A1664}: "URL" = http://www.bing.com/...c=BIE9&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{C1D5EC18-B665-4AA3-ADFD-9E466629E6D1}: "URL" = http://slirsredirect...hpcnnbie7-en-gb
IE - HKCU\..\SearchScopes\{F9FC1670-8AD8-4BDC-8E58-56EB224739CA}: "URL" = http://uk.search.yah...p06&type=ie2008
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\IPSFFPlgn\ [2012/02/25 09:09:39 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\coFFPlgn\ [2012/03/04 13:58:05 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2009/06/10 21:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (Norton Identity Protection) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.1.2\CoIEPlg.dll (Symantec Corporation)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.1.2\IPS\IPSBHO.dll (Symantec Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AOL Toolbar BHO) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.5.1.2\CoIEPlg.dll (Symantec Corporation)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O3 - HKCU\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (Symantec Corporation)
O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe (Symantec Corporation)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: WallpaperStyle = 2
O8:64bit: - Extra context menu item: &AOL Toolbar Search - C:\ProgramData\AOL\ieToolbar\resources\en-GB\local\search.html ()
O8 - Extra context menu item: &AOL Toolbar Search - C:\ProgramData\AOL\ieToolbar\resources\en-GB\local\search.html ()
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: pixlr.com ([]https in Trusted sites)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.168.4.100 194.168.8.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{3C990A9B-BB12-424C-B447-CC5ADF365E53}: DhcpNameServer = 194.168.4.100 194.168.8.100
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/27 18:19:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2012/02/27 18:19:21 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\Google
[2012/02/27 18:17:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google SketchUp 8
[2012/02/27 18:16:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2012/02/26 19:50:10 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\Apple Computer
[2012/02/26 19:41:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
[2012/02/26 19:41:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\QuickTime
[2012/02/26 19:41:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/02/26 18:48:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple
[2012/02/26 18:47:58 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\Apple
[2012/02/26 18:47:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update
[2012/02/26 18:47:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/02/26 15:28:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAXON
[2012/02/26 15:13:55 | 000,000,000 | ---D | C] -- C:\Program Files\MAXON
[2012/02/26 15:13:09 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\MAXON
[2012/02/26 15:09:26 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\WinRAR
[2012/02/26 15:09:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/02/26 15:09:15 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2012/02/26 15:08:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2012/02/26 13:05:31 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\%LOCALAPPDATA%
[2012/02/26 09:55:01 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\CrashDumps
[2012/02/25 10:34:36 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012/02/25 10:07:26 | 000,000,000 | ---D | C] -- C:\Intel
[2012/02/25 09:42:22 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2012/02/25 09:42:04 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2012/02/25 09:32:42 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\nn-NO
[2012/02/25 09:32:41 | 000,439,808 | ---- | C] (Atheros) -- C:\Windows\SysNative\athihvs.dll
[2012/02/25 09:32:41 | 000,060,416 | ---- | C] (Atheros) -- C:\Windows\SysNative\athihvui.dll
[2012/02/25 09:31:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2012/02/25 09:30:32 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\InstallShield
[2012/02/25 09:17:10 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\HP Support Assistant
[2012/02/25 08:59:03 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2012/02/25 08:51:20 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
[2012/02/24 21:54:39 | 000,116,224 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2012/02/24 21:54:02 | 000,093,696 | ---- | C] (Windows ® Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2012/02/24 21:46:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/02/24 18:22:45 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\.minecraft
[2012/02/24 18:21:31 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{9B0D9B12-6B1C-4E6F-BEA8-E5AFAF3CE37D}
[2012/02/24 18:21:18 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{8858F735-C023-4C0D-9A01-058862DEF540}
[2012/02/24 16:37:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2012/02/24 16:22:06 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2012/02/24 16:22:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2012/02/22 19:59:13 | 000,000,000 | ---D | C] -- C:\Users\Mark\Documents\VideoPad Projects
[2012/02/22 18:02:58 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Software
[2012/02/22 18:02:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Related Programs
[2012/02/22 18:02:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite
[2012/02/22 18:02:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NCH Software
[2012/02/22 18:02:26 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\NCH Software
[2012/02/22 17:43:49 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{B078C127-ADFD-48F6-AD4F-199AD6128E19}
[2012/02/22 17:43:35 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{B8531E79-1C31-4DB8-B3AC-EE73571675CA}
[2012/02/22 17:03:37 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\Symantec
[2012/02/21 16:24:19 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{00AADF3E-F3E4-41D6-8436-BA12E6E7AAA6}
[2012/02/21 16:23:44 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{C29D40F8-DA5A-4417-A226-052F8731AFDC}
[2012/02/20 20:58:19 | 000,000,000 | ---D | C] -- C:\Users\Mark\Documents\My Received Files
[2012/02/20 20:51:40 | 000,000,000 | ---D | C] -- C:\Users\Mark\Desktop\Movies
[2012/02/20 20:51:04 | 000,000,000 | ---D | C] -- C:\Users\Mark\Desktop\Projects
[2012/02/20 18:12:03 | 000,000,000 | ---D | C] -- C:\Users\Mark\Documents\AVS4YOU
[2012/02/20 18:04:14 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\AVS4YOU
[2012/02/20 18:01:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AVSMedia
[2012/02/20 18:00:34 | 000,000,000 | ---D | C] -- C:\ProgramData\AVS4YOU
[2012/02/20 18:00:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVS4YOU
[2012/02/20 17:26:17 | 000,000,000 | ---D | C] -- C:\a7c0992421a612fe4ae3a7fb07e57095
[2012/02/20 17:25:04 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
[2012/02/20 17:23:00 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\Diagnostics
[2012/02/20 16:20:21 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{9A37CD0F-A094-494F-8153-D1C8B8D71DB2}
[2012/02/20 16:20:06 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{6AC7A74F-C4BB-4DAD-8879-4C4ADFDA4EF2}
[2012/02/20 16:19:50 | 000,000,000 | ---D | C] -- C:\Users\Mark\AppData\Local\{AFA0DC9F-2A43-4741-A52B-ABEE0D5CCF0C}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/03/04 14:20:50 | 000,000,292 | ---- | M] () -- C:\ProgramData\hpqp.ini
[2012/03/04 13:44:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/04 11:47:04 | 2361,593,856 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/01 17:31:46 | 000,023,024 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/01 17:31:26 | 000,023,024 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/02/27 21:08:58 | 000,474,287 | ---- | M] () -- C:\Users\Mark\Documents\My neighbour hood.skp
[2012/02/27 21:08:22 | 000,474,287 | ---- | M] () -- C:\Users\Mark\Documents\My neighbour hood.skb
[2012/02/27 18:17:32 | 000,002,025 | ---- | M] () -- C:\Users\Public\Desktop\Google SketchUp 8.lnk
[2012/02/27 18:16:13 | 000,000,330 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForMark.job
[2012/02/26 19:48:36 | 000,354,568 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/02/26 19:41:46 | 000,001,845 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/02/26 15:29:01 | 000,001,018 | ---- | M] () -- C:\Users\Mark\Desktop\CINEMA 4D Demo.lnk
[2012/02/26 15:29:00 | 000,001,053 | ---- | M] () -- C:\Users\Mark\Desktop\CINEMA 4D Demo 64 Bit.lnk
[2012/02/26 15:09:56 | 000,732,070 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/02/26 15:09:56 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/02/26 15:09:56 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/02/25 17:44:55 | 000,004,782 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1305010.002\VT20111023.022
[2012/02/25 13:27:03 | 001,745,302 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1305010.002\Cat.DB
[2012/02/25 10:09:33 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2012/02/25 09:06:42 | 000,002,492 | ---- | M] () -- C:\Users\Public\Desktop\Norton Internet Security.lnk
[2012/02/25 08:59:00 | 000,001,998 | ---- | M] () -- C:\Users\Public\Desktop\Norton Online Backup.lnk
[2012/02/25 08:56:57 | 000,175,736 | ---- | M] (Symantec Corporation) -- C:\Windows\SysNative\drivers\SYMEVENT64x86.SYS
[2012/02/25 08:56:57 | 000,007,488 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.CAT
[2012/02/25 08:56:57 | 000,000,855 | ---- | M] () -- C:\Windows\SysNative\drivers\SYMEVENT64x86.INF
[2012/02/24 16:29:42 | 000,001,750 | ---- | M] () -- C:\Users\Public\Desktop\Browser Choice.lnk
[2012/02/22 18:14:41 | 000,001,106 | ---- | M] () -- C:\Users\Public\Desktop\Prism Video File Converter.lnk
[2012/02/22 18:02:34 | 000,001,134 | ---- | M] () -- C:\Users\Public\Desktop\VideoPad Video Editor.lnk
[2012/02/22 17:03:24 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/02/20 16:18:36 | 000,000,056 | -H-- | M] () -- C:\Windows\SysWow64\ezsidmv.dat
[2012/02/07 07:06:08 | 000,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NISx64\1305010.002\isolate.ini
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/02/27 18:49:28 | 000,474,287 | ---- | C] () -- C:\Users\Mark\Documents\My neighbour hood.skb
[2012/02/27 18:46:56 | 000,474,287 | ---- | C] () -- C:\Users\Mark\Documents\My neighbour hood.skp
[2012/02/27 18:17:31 | 000,002,025 | ---- | C] () -- C:\Users\Public\Desktop\Google SketchUp 8.lnk
[2012/02/26 19:41:46 | 000,001,845 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk
[2012/02/26 18:47:52 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/02/26 15:29:00 | 000,001,053 | ---- | C] () -- C:\Users\Mark\Desktop\CINEMA 4D Demo 64 Bit.lnk
[2012/02/26 15:29:00 | 000,001,018 | ---- | C] () -- C:\Users\Mark\Desktop\CINEMA 4D Demo.lnk
[2012/02/25 10:09:33 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2012/02/25 08:59:00 | 000,001,998 | ---- | C] () -- C:\Users\Public\Desktop\Norton Online Backup.lnk
[2012/02/24 21:56:10 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2012/02/24 21:53:34 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2012/02/24 21:53:15 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2012/02/24 21:53:15 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2012/02/24 21:52:50 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2012/02/24 16:29:42 | 000,001,750 | ---- | C] () -- C:\Users\Public\Desktop\Browser Choice.lnk
[2012/02/22 18:14:41 | 000,001,118 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prism Video File Converter.lnk
[2012/02/22 18:14:41 | 000,001,106 | ---- | C] () -- C:\Users\Public\Desktop\Prism Video File Converter.lnk
[2012/02/22 18:02:34 | 000,001,146 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad Video Editor.lnk
[2012/02/22 18:02:34 | 000,001,134 | ---- | C] () -- C:\Users\Public\Desktop\VideoPad Video Editor.lnk
[2012/02/22 17:04:47 | 003,007,800 | ---- | C] () -- C:\Users\Mark\Desktop\PlantsVsZombies.exe
[2012/02/22 17:03:24 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2012/02/20 16:18:36 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2012/01/28 19:27:46 | 000,000,292 | ---- | C] () -- C:\ProgramData\hpqp.ini
[2011/02/11 19:15:08 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2011/02/11 19:15:08 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2011/02/11 19:15:08 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin

========== LOP Check ==========

[2012/02/27 16:20:24 | 000,000,000 | ---D | M] -- C:\Users\Mark\AppData\Roaming\.minecraft
[2012/02/26 15:29:07 | 000,000,000 | ---D | M] -- C:\Users\Mark\AppData\Roaming\MAXON
[2012/03/04 13:17:20 | 000,013,056 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
anon1248

anon1248

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
dont read acidental post

Edited by Mark81220, 28 March 2012 - 02:06 PM.

  • 0

#3
anon1248

anon1248

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
i ran tdsskiller and 2 threats apperead it did not give me the option to fix it the threats were
HP Health Check Service ( unsignedfile.multi.generic )
LightScribeService ( unsignedfile.multi.generic )
  • 0

#4
anon1248

anon1248

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
heres the log
21:04:49.0971 4004 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
21:04:50.0096 4004 ============================================================
21:04:50.0096 4004 Current date / time: 2012/03/28 21:04:50.0096
21:04:50.0096 4004 SystemInfo:
21:04:50.0096 4004
21:04:50.0096 4004 OS Version: 6.1.7601 ServicePack: 1.0
21:04:50.0096 4004 Product type: Workstation
21:04:50.0096 4004 ComputerName: MARK-PC
21:04:50.0096 4004 UserName: Mark
21:04:50.0096 4004 Windows directory: C:\Windows
21:04:50.0096 4004 System windows directory: C:\Windows
21:04:50.0096 4004 Running under WOW64
21:04:50.0096 4004 Processor architecture: Intel x64
21:04:50.0096 4004 Number of processors: 2
21:04:50.0096 4004 Page size: 0x1000
21:04:50.0096 4004 Boot type: Normal boot
21:04:50.0096 4004 ============================================================
21:05:18.0083 4004 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:05:18.0098 4004 \Device\Harddisk0\DR0:
21:05:18.0098 4004 MBR used
21:05:18.0098 4004 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
21:05:18.0098 4004 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x1B82B000
21:05:18.0098 4004 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B88F000, BlocksNum 0x1936000
21:05:18.0363 4004 Initialize success
21:05:18.0363 4004 ============================================================
21:05:41.0311 4712 ============================================================
21:05:41.0311 4712 Scan started
21:05:41.0311 4712 Mode: Manual; SigCheck; TDLFS;
21:05:41.0311 4712 ============================================================
21:05:58.0768 4712 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:06:00.0234 4712 1394ohci - ok
21:06:01.0934 4712 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:06:01.0966 4712 ACPI - ok
21:06:03.0650 4712 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:06:05.0070 4712 AcpiPmi - ok
21:06:06.0848 4712 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:06:06.0880 4712 adp94xx - ok
21:06:07.0316 4712 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:06:07.0363 4712 adpahci - ok
21:06:10.0514 4712 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:06:10.0530 4712 adpu320 - ok
21:06:12.0106 4712 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:06:12.0152 4712 AeLookupSvc - ok
21:06:15.0304 4712 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
21:06:15.0350 4712 AESTFilters - ok
21:06:17.0020 4712 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:06:18.0424 4712 AFD - ok
21:06:23.0057 4712 AgereSoftModem (98022774d9930ecbb292e70db7601df6) C:\Windows\system32\DRIVERS\agrsm64.sys
21:06:23.0135 4712 AgereSoftModem - ok
21:06:27.0924 4712 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:06:27.0940 4712 agp440 - ok
21:06:29.0546 4712 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:06:29.0593 4712 ALG - ok
21:06:32.0557 4712 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:06:32.0573 4712 aliide - ok
21:06:32.0838 4712 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:06:32.0854 4712 amdide - ok
21:06:34.0554 4712 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:06:34.0616 4712 AmdK8 - ok
21:06:36.0364 4712 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:06:36.0426 4712 AmdPPM - ok
21:06:38.0189 4712 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:06:38.0314 4712 amdsata - ok
21:06:39.0998 4712 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:06:40.0014 4712 amdsbs - ok
21:06:41.0761 4712 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:06:41.0777 4712 amdxata - ok
21:06:43.0430 4712 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:06:43.0493 4712 AppID - ok
21:06:46.0363 4712 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:06:47.0845 4712 AppIDSvc - ok
21:06:50.0809 4712 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:06:52.0182 4712 Appinfo - ok
21:06:55.0099 4712 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:06:55.0115 4712 arc - ok
21:06:57.0985 4712 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:06:58.0001 4712 arcsas - ok
21:07:00.0934 4712 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:07:01.0043 4712 AsyncMac - ok
21:07:03.0882 4712 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:07:03.0898 4712 atapi - ok
21:07:08.0344 4712 athr (f8633cdd09647a64ee8db550630427ff) C:\Windows\system32\DRIVERS\athrx.sys
21:07:08.0390 4712 athr - ok
21:07:11.0401 4712 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:07:11.0464 4712 AudioEndpointBuilder - ok
21:07:12.0930 4712 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:07:12.0977 4712 AudioSrv - ok
21:07:16.0003 4712 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:07:32.0196 4712 AxInstSV - ok
21:07:32.0461 4712 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:07:49.0372 4712 b06bdrv - ok
21:07:49.0590 4712 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:07:54.0473 4712 b57nd60a - ok
21:07:54.0645 4712 BBSvc (0d1ea7509f394d8b705b239ee71f5118) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
21:07:54.0660 4712 BBSvc - ok
21:07:54.0910 4712 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:07:54.0972 4712 BDESVC - ok
21:07:55.0315 4712 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:07:56.0017 4712 Beep - ok
21:07:57.0796 4712 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:07:57.0858 4712 BFE - ok
21:07:58.0404 4712 BHDrvx64 (1d757a7e020c577c4259a755f21b7152) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\BASHDefs\20120215.001\BHDrvx64.sys
21:07:58.0451 4712 BHDrvx64 - ok
21:07:58.0576 4712 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:07:58.0685 4712 BITS - ok
21:07:58.0966 4712 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:07:58.0997 4712 blbdrive - ok
21:07:59.0247 4712 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:07:59.0262 4712 bowser - ok
21:07:59.0481 4712 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:07:59.0559 4712 BrFiltLo - ok
21:07:59.0715 4712 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:07:59.0730 4712 BrFiltUp - ok
21:07:59.0980 4712 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:08:00.0027 4712 Browser - ok
21:08:00.0292 4712 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:08:00.0323 4712 Brserid - ok
21:08:00.0557 4712 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:08:00.0604 4712 BrSerWdm - ok
21:08:00.0869 4712 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:08:00.0916 4712 BrUsbMdm - ok
21:08:01.0197 4712 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:08:01.0259 4712 BrUsbSer - ok
21:08:01.0493 4712 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:08:01.0540 4712 BTHMODEM - ok
21:08:01.0727 4712 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:08:01.0805 4712 bthserv - ok
21:08:02.0179 4712 ccSet_NIS (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\NISx64\1306020.00A\ccSetx64.sys
21:08:02.0195 4712 ccSet_NIS - ok
21:08:02.0413 4712 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:08:02.0507 4712 cdfs - ok
21:08:02.0819 4712 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
21:08:02.0866 4712 cdrom - ok
21:08:03.0084 4712 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:08:04.0519 4712 CertPropSvc - ok
21:08:08.0887 4712 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:08:10.0213 4712 circlass - ok
21:08:11.0820 4712 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:08:11.0836 4712 CLFS - ok
21:08:13.0396 4712 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:08:13.0411 4712 clr_optimization_v2.0.50727_32 - ok
21:08:14.0971 4712 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:08:14.0987 4712 clr_optimization_v2.0.50727_64 - ok
21:08:15.0283 4712 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:08:15.0299 4712 clr_optimization_v4.0.30319_32 - ok
21:08:15.0564 4712 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:08:15.0580 4712 clr_optimization_v4.0.30319_64 - ok
21:08:15.0829 4712 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:08:15.0876 4712 CmBatt - ok
21:08:16.0110 4712 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:08:16.0126 4712 cmdide - ok
21:08:16.0329 4712 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:08:16.0360 4712 CNG - ok
21:08:16.0672 4712 Com4QLBEx (f9a79c5b27037821112c50a9c8fb367a) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
21:08:16.0687 4712 Com4QLBEx - ok
21:08:16.0984 4712 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:08:16.0999 4712 Compbatt - ok
21:08:18.0591 4712 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:08:18.0684 4712 CompositeBus - ok
21:08:18.0856 4712 COMSysApp - ok
21:08:19.0012 4712 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:08:19.0027 4712 crcdisk - ok
21:08:19.0230 4712 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
21:08:19.0308 4712 CryptSvc - ok
21:08:19.0542 4712 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:08:19.0605 4712 DcomLaunch - ok
21:08:19.0761 4712 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:08:19.0823 4712 defragsvc - ok
21:08:20.0151 4712 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:08:20.0213 4712 DfsC - ok
21:08:20.0463 4712 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:08:20.0541 4712 Dhcp - ok
21:08:20.0697 4712 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:08:20.0743 4712 discache - ok
21:08:21.0024 4712 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:08:21.0040 4712 Disk - ok
21:08:21.0243 4712 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:08:21.0305 4712 Dnscache - ok
21:08:21.0508 4712 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:08:21.0570 4712 dot3svc - ok
21:08:21.0757 4712 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:08:21.0820 4712 DPS - ok
21:08:23.0536 4712 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:08:23.0567 4712 drmkaud - ok
21:08:25.0267 4712 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:08:25.0299 4712 DXGKrnl - ok
21:08:28.0200 4712 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:08:28.0278 4712 EapHost - ok
21:08:31.0414 4712 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:08:31.0476 4712 ebdrv - ok
21:08:31.0648 4712 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:08:31.0679 4712 eeCtrl - ok
21:08:31.0835 4712 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:08:31.0882 4712 EFS - ok
21:08:32.0038 4712 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:08:32.0147 4712 ehRecvr - ok
21:08:32.0225 4712 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:08:32.0241 4712 ehSched - ok
21:08:32.0428 4712 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:08:32.0443 4712 elxstor - ok
21:08:34.0035 4712 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:08:34.0066 4712 ErrDev - ok
21:08:34.0331 4712 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:08:34.0393 4712 EventSystem - ok
21:08:34.0612 4712 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:08:34.0659 4712 exfat - ok
21:08:34.0799 4712 ezSharedSvc - ok
21:08:35.0017 4712 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:08:35.0064 4712 fastfat - ok
21:08:37.0888 4712 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:08:37.0935 4712 Fax - ok
21:08:39.0417 4712 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:08:39.0479 4712 fdc - ok
21:08:39.0666 4712 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:08:39.0869 4712 fdPHost - ok
21:08:42.0615 4712 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:08:42.0677 4712 FDResPub - ok
21:08:42.0786 4712 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:08:42.0802 4712 FileInfo - ok
21:08:42.0973 4712 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:08:43.0083 4712 Filetrace - ok
21:08:43.0239 4712 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:08:43.0254 4712 flpydisk - ok
21:08:43.0504 4712 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:08:43.0519 4712 FltMgr - ok
21:08:43.0722 4712 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:08:43.0753 4712 FontCache - ok
21:08:43.0941 4712 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:08:43.0941 4712 FontCache3.0.0.0 - ok
21:08:44.0128 4712 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:08:44.0143 4712 FsDepends - ok
21:08:44.0315 4712 fssfltr (dc0dce4ec2c5d2cf6472f9fd6aa9a7dc) C:\Windows\system32\DRIVERS\fssfltr.sys
21:08:44.0331 4712 fssfltr - ok
21:08:44.0580 4712 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:08:44.0611 4712 fsssvc - ok
21:08:44.0799 4712 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
21:08:44.0814 4712 Fs_Rec - ok
21:08:45.0079 4712 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:08:45.0095 4712 fvevol - ok
21:08:45.0329 4712 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:08:45.0345 4712 gagp30kx - ok
21:08:45.0454 4712 GameConsoleService (c44d560e441f091ea3b72f778ec60de2) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
21:08:45.0469 4712 GameConsoleService - ok
21:08:45.0735 4712 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:08:45.0797 4712 gpsvc - ok
21:08:45.0906 4712 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:08:45.0937 4712 hcw85cir - ok
21:08:46.0203 4712 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:08:46.0249 4712 HdAudAddService - ok
21:08:46.0421 4712 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:08:46.0468 4712 HDAudBus - ok
21:08:46.0639 4712 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:08:46.0686 4712 HidBatt - ok
21:08:48.0153 4712 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:08:48.0168 4712 HidBth - ok
21:08:48.0340 4712 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:08:48.0387 4712 HidIr - ok
21:08:49.0884 4712 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:08:51.0226 4712 hidserv - ok
21:08:52.0801 4712 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
21:08:52.0817 4712 HidUsb - ok
21:08:53.0004 4712 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:08:53.0067 4712 hkmsvc - ok
21:08:53.0207 4712 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:08:53.0254 4712 HomeGroupListener - ok
21:08:53.0503 4712 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:08:53.0535 4712 HomeGroupProvider - ok
21:08:53.0659 4712 HP Health Check Service (0141816a095a3f5a83ffa5b4a47b8023) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
21:08:53.0691 4712 HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
21:08:53.0691 4712 HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
21:08:53.0940 4712 HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
21:08:53.0971 4712 HpqKbFiltr - ok
21:08:54.0143 4712 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:08:54.0159 4712 hpqwmiex - ok
21:08:54.0424 4712 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:08:54.0439 4712 HpSAMD - ok
21:08:54.0736 4712 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:08:54.0814 4712 HTTP - ok
21:08:55.0032 4712 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:08:55.0048 4712 hwpolicy - ok
21:08:55.0251 4712 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:08:55.0266 4712 i8042prt - ok
21:08:55.0547 4712 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:08:55.0578 4712 iaStorV - ok
21:08:55.0859 4712 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:08:55.0890 4712 idsvc - ok
21:08:56.0171 4712 IDSVia64 (18c40c3f368323b203ace403cb430db1) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\IPSDefs\20120305.001\IDSvia64.sys
21:08:56.0202 4712 IDSVia64 - ok
21:09:01.0272 4712 igfx (c6238c6abd6ac99f5d152da4e9439a3d) C:\Windows\system32\DRIVERS\igdkmd64.sys
21:09:02.0629 4712 igfx - ok
21:09:02.0832 4712 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:09:02.0848 4712 iirsp - ok
21:09:03.0035 4712 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:09:03.0113 4712 IKEEXT - ok
21:09:03.0378 4712 IntcHdmiAddService (d485d3bd3e2179aa86853a182f70699f) C:\Windows\system32\drivers\IntcHdmi.sys
21:09:03.0409 4712 IntcHdmiAddService - ok
21:09:04.0938 4712 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:09:05.0001 4712 intelide - ok
21:09:05.0219 4712 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:09:05.0266 4712 intelppm - ok
21:09:05.0391 4712 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:09:05.0453 4712 IPBusEnum - ok
21:09:05.0609 4712 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:09:05.0671 4712 IpFilterDriver - ok
21:09:05.0843 4712 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:09:05.0905 4712 iphlpsvc - ok
21:09:07.0372 4712 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:09:07.0419 4712 IPMIDRV - ok
21:09:08.0979 4712 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:09:09.0041 4712 IPNAT - ok
21:09:11.0802 4712 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:09:11.0849 4712 IRENUM - ok
21:09:13.0394 4712 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:09:13.0409 4712 isapnp - ok
21:09:14.0922 4712 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:09:14.0938 4712 iScsiPrt - ok
21:09:16.0482 4712 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:09:16.0498 4712 kbdclass - ok
21:09:19.0446 4712 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:09:19.0478 4712 kbdhid - ok
21:09:21.0022 4712 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:09:21.0038 4712 KeyIso - ok
21:09:22.0629 4712 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:09:22.0644 4712 KSecDD - ok
21:09:23.0003 4712 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:09:23.0019 4712 KSecPkg - ok
21:09:24.0735 4712 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:09:24.0813 4712 ksthunk - ok
21:09:24.0953 4712 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:09:25.0016 4712 KtmRm - ok
21:09:25.0187 4712 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:09:25.0250 4712 LanmanServer - ok
21:09:25.0484 4712 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:09:25.0546 4712 LanmanWorkstation - ok
21:09:25.0842 4712 LightScribeService (83d8be94e1cbcbe2ea8372db1a95a159) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:09:25.0874 4712 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
21:09:25.0874 4712 LightScribeService - detected UnsignedFile.Multi.Generic (1)
21:09:26.0279 4712 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:09:26.0342 4712 lltdio - ok
21:09:26.0607 4712 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:09:26.0685 4712 lltdsvc - ok
21:09:26.0919 4712 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:09:26.0966 4712 lmhosts - ok
21:09:27.0371 4712 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:09:27.0387 4712 LSI_FC - ok
21:09:27.0699 4712 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:09:27.0714 4712 LSI_SAS - ok
21:09:27.0980 4712 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:09:27.0995 4712 LSI_SAS2 - ok
21:09:28.0354 4712 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:09:28.0432 4712 LSI_SCSI - ok
21:09:30.0117 4712 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:09:30.0179 4712 luafv - ok
21:09:33.0128 4712 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:09:34.0469 4712 Mcx2Svc - ok
21:09:36.0092 4712 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:09:36.0107 4712 megasas - ok
21:09:37.0839 4712 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:09:37.0854 4712 MegaSR - ok
21:09:38.0120 4712 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:09:38.0182 4712 MMCSS - ok
21:09:38.0510 4712 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:09:38.0588 4712 Modem - ok
21:09:38.0946 4712 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:09:38.0993 4712 monitor - ok
21:09:39.0274 4712 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
21:09:39.0290 4712 mouclass - ok
21:09:39.0586 4712 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:09:39.0602 4712 mouhid - ok
21:09:39.0867 4712 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:09:39.0882 4712 mountmgr - ok
21:09:40.0101 4712 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:09:40.0116 4712 mpio - ok
21:09:40.0413 4712 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:09:40.0491 4712 mpsdrv - ok
21:09:40.0834 4712 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:09:40.0912 4712 MpsSvc - ok
21:09:41.0177 4712 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:09:41.0224 4712 MRxDAV - ok
21:09:41.0520 4712 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:09:41.0552 4712 mrxsmb - ok
21:09:43.0143 4712 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:09:43.0158 4712 mrxsmb10 - ok
21:09:43.0408 4712 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:09:43.0424 4712 mrxsmb20 - ok
21:09:43.0642 4712 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:09:43.0658 4712 msahci - ok
21:09:43.0892 4712 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:09:43.0907 4712 msdsm - ok
21:09:44.0094 4712 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:09:44.0110 4712 MSDTC - ok
21:09:44.0375 4712 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:09:44.0422 4712 Msfs - ok
21:09:44.0656 4712 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:09:44.0718 4712 mshidkmdf - ok
21:09:45.0015 4712 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:09:45.0030 4712 msisadrv - ok
21:09:45.0280 4712 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:09:45.0358 4712 MSiSCSI - ok
21:09:45.0483 4712 msiserver - ok
21:09:45.0826 4712 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:09:45.0904 4712 MSKSSRV - ok
21:09:46.0138 4712 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:09:46.0216 4712 MSPCLOCK - ok
21:09:46.0559 4712 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:09:46.0778 4712 MSPQM - ok
21:09:48.0400 4712 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:09:48.0431 4712 MsRPC - ok
21:09:48.0681 4712 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:09:48.0696 4712 mssmbios - ok
21:09:48.0946 4712 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:09:48.0977 4712 MSTEE - ok
21:09:49.0180 4712 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:09:49.0227 4712 MTConfig - ok
21:09:49.0476 4712 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:09:49.0492 4712 Mup - ok
21:09:49.0632 4712 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:09:49.0679 4712 napagent - ok
21:09:49.0882 4712 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:09:49.0929 4712 NativeWifiP - ok
21:09:50.0194 4712 NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120306.003\ENG64.SYS
21:09:50.0210 4712 NAVENG - ok
21:09:50.0802 4712 NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120306.003\EX64.SYS
21:09:50.0849 4712 NAVEX15 - ok
21:09:51.0099 4712 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:09:51.0130 4712 NDIS - ok
21:09:51.0317 4712 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:09:51.0380 4712 NdisCap - ok
21:09:51.0567 4712 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:09:51.0660 4712 NdisTapi - ok
21:09:51.0957 4712 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:09:52.0019 4712 Ndisuio - ok
21:09:52.0222 4712 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:09:52.0284 4712 NdisWan - ok
21:09:52.0503 4712 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:09:52.0550 4712 NDProxy - ok
21:09:52.0674 4712 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:09:52.0737 4712 NetBIOS - ok
21:09:53.0033 4712 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:09:53.0111 4712 NetBT - ok
21:09:53.0252 4712 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:09:53.0267 4712 Netlogon - ok
21:09:53.0454 4712 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:09:53.0517 4712 Netman - ok
21:09:53.0688 4712 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:09:55.0077 4712 netprofm - ok
21:09:55.0264 4712 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:09:55.0280 4712 NetTcpPortSharing - ok
21:09:56.0060 4712 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
21:09:56.0153 4712 netw5v64 - ok
21:09:56.0325 4712 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:09:56.0340 4712 nfrd960 - ok
21:09:56.0777 4712 NIS (7a02f128a454bb22e300f3f80bc1bd22) C:\Program Files (x86)\Norton Internet Security\Engine\19.6.2.10\ccSvcHst.exe
21:09:56.0777 4712 NIS - ok
21:09:57.0011 4712 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:09:57.0074 4712 NlaSvc - ok
21:09:57.0526 4712 NOBU (f5f03fabef7df53a1c78ee6cd8e7ae41) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
21:09:57.0620 4712 NOBU - ok
21:09:57.0869 4712 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:09:57.0900 4712 Npfs - ok
21:09:58.0041 4712 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:09:58.0088 4712 nsi - ok
21:09:58.0244 4712 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:09:58.0337 4712 nsiproxy - ok
21:09:58.0540 4712 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:09:58.0571 4712 Ntfs - ok
21:09:58.0758 4712 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:09:58.0805 4712 Null - ok
21:09:58.0977 4712 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:09:58.0992 4712 nvraid - ok
21:09:59.0195 4712 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:09:59.0211 4712 nvstor - ok
21:09:59.0351 4712 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:09:59.0367 4712 nv_agp - ok
21:09:59.0492 4712 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:09:59.0507 4712 odserv - ok
21:09:59.0648 4712 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:09:59.0679 4712 ohci1394 - ok
21:09:59.0772 4712 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:09:59.0788 4712 ose - ok
21:09:59.0913 4712 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:09:59.0960 4712 p2pimsvc - ok
21:10:00.0131 4712 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:10:00.0162 4712 p2psvc - ok
21:10:00.0396 4712 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:10:00.0412 4712 Parport - ok
21:10:01.0910 4712 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:10:01.0925 4712 partmgr - ok
21:10:02.0112 4712 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:10:02.0144 4712 PcaSvc - ok
21:10:02.0300 4712 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:10:02.0331 4712 pci - ok
21:10:02.0518 4712 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:10:02.0534 4712 pciide - ok
21:10:02.0752 4712 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:10:02.0768 4712 pcmcia - ok
21:10:02.0986 4712 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:10:03.0002 4712 pcw - ok
21:10:03.0173 4712 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:10:03.0251 4712 PEAUTH - ok
21:10:03.0501 4712 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:10:03.0532 4712 PerfHost - ok
21:10:03.0813 4712 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:10:03.0891 4712 pla - ok
21:10:04.0125 4712 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:10:04.0156 4712 PlugPlay - ok
21:10:04.0328 4712 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:10:04.0374 4712 PNRPAutoReg - ok
21:10:04.0608 4712 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:10:04.0624 4712 PNRPsvc - ok
21:10:04.0811 4712 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:10:04.0889 4712 PolicyAgent - ok
21:10:05.0045 4712 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:10:05.0123 4712 Power - ok
21:10:05.0342 4712 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:10:05.0404 4712 PptpMiniport - ok
21:10:05.0591 4712 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:10:05.0622 4712 Processor - ok
21:10:05.0841 4712 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:10:05.0903 4712 ProfSvc - ok
21:10:06.0075 4712 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:10:06.0106 4712 ProtectedStorage - ok
21:10:06.0356 4712 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:10:06.0402 4712 Psched - ok
21:10:06.0714 4712 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:10:06.0761 4712 ql2300 - ok
21:10:06.0948 4712 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:10:06.0964 4712 ql40xx - ok
21:10:07.0167 4712 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:10:07.0198 4712 QWAVE - ok
21:10:07.0432 4712 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:10:07.0463 4712 QWAVEdrv - ok
21:10:07.0619 4712 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:10:07.0682 4712 RasAcd - ok
21:10:07.0853 4712 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:10:07.0900 4712 RasAgileVpn - ok
21:10:08.0056 4712 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:10:08.0150 4712 RasAuto - ok
21:10:08.0368 4712 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:10:08.0446 4712 Rasl2tp - ok
21:10:08.0618 4712 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:10:08.0680 4712 RasMan - ok
21:10:08.0898 4712 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:10:08.0945 4712 RasPppoe - ok
21:10:09.0195 4712 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:10:09.0242 4712 RasSstp - ok
21:10:09.0460 4712 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:10:09.0538 4712 rdbss - ok
21:10:09.0710 4712 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:10:09.0741 4712 rdpbus - ok
21:10:09.0881 4712 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:10:09.0959 4712 RDPCDD - ok
21:10:10.0115 4712 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:10:10.0193 4712 RDPENCDD - ok
21:10:10.0412 4712 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:10:10.0458 4712 RDPREFMP - ok
21:10:10.0614 4712 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
21:10:10.0661 4712 RDPWD - ok
21:10:10.0848 4712 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:10:10.0864 4712 rdyboost - ok
21:10:11.0082 4712 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:10:11.0145 4712 RemoteAccess - ok
21:10:11.0316 4712 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:10:11.0379 4712 RemoteRegistry - ok
21:10:11.0566 4712 RichVideo (498eb62a160674e793fa40fd65390625) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
21:10:11.0582 4712 RichVideo - ok
21:10:11.0769 4712 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:10:11.0847 4712 RpcEptMapper - ok
21:10:12.0050 4712 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:10:12.0065 4712 RpcLocator - ok
21:10:12.0377 4712 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:10:12.0424 4712 RpcSs - ok
21:10:12.0642 4712 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:10:12.0689 4712 rspndr - ok
21:10:12.0986 4712 RSUSBSTOR (a5df2f732a6c95554e548fcb6932bd31) C:\Windows\system32\Drivers\RtsUStor.sys
21:10:13.0001 4712 RSUSBSTOR - ok
21:10:13.0220 4712 RTL8167 (abcb5a38a0d85bdf69b7877e1ad1eed5) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:10:13.0251 4712 RTL8167 - ok
21:10:13.0360 4712 RtsUIR - ok
21:10:13.0563 4712 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:10:13.0578 4712 SamSs - ok
21:10:13.0750 4712 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:10:13.0766 4712 sbp2port - ok
21:10:13.0953 4712 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:10:14.0031 4712 SCardSvr - ok
21:10:14.0280 4712 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:10:14.0327 4712 scfilter - ok
21:10:14.0670 4712 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:10:14.0748 4712 Schedule - ok
21:10:14.0951 4712 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:10:14.0998 4712 SCPolicySvc - ok
21:10:15.0294 4712 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
21:10:15.0310 4712 sdbus - ok
21:10:15.0513 4712 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:10:15.0544 4712 SDRSVC - ok
21:10:15.0778 4712 SeaPort (78779ee07231c658b483b1f38b5088df) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
21:10:15.0794 4712 SeaPort - ok
21:10:16.0028 4712 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:10:16.0074 4712 secdrv - ok
21:10:16.0246 4712 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:10:16.0308 4712 seclogon - ok
21:10:16.0496 4712 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:10:16.0574 4712 SENS - ok
21:10:16.0730 4712 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:10:16.0745 4712 SensrSvc - ok
21:10:17.0010 4712 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:10:17.0042 4712 Serenum - ok
21:10:17.0213 4712 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:10:17.0229 4712 Serial - ok
21:10:17.0447 4712 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:10:17.0463 4712 sermouse - ok
21:10:17.0650 4712 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:10:17.0712 4712 SessionEnv - ok
21:10:17.0853 4712 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:10:17.0900 4712 sffdisk - ok
21:10:18.0102 4712 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:10:18.0165 4712 sffp_mmc - ok
21:10:18.0321 4712 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:10:18.0368 4712 sffp_sd - ok
21:10:18.0570 4712 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:10:18.0586 4712 sfloppy - ok
21:10:18.0789 4712 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:10:18.0851 4712 SharedAccess - ok
21:10:19.0054 4712 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:10:19.0132 4712 ShellHWDetection - ok
21:10:19.0319 4712 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:10:19.0335 4712 SiSRaid2 - ok
21:10:19.0538 4712 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:10:19.0553 4712 SiSRaid4 - ok
21:10:19.0818 4712 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:10:19.0896 4712 Smb - ok
21:10:20.0099 4712 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:10:20.0146 4712 SNMPTRAP - ok
21:10:20.0302 4712 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:10:20.0318 4712 spldr - ok
21:10:20.0489 4712 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:10:20.0552 4712 Spooler - ok
21:10:20.0864 4712 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:10:20.0973 4712 sppsvc - ok
21:10:21.0098 4712 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:10:21.0160 4712 sppuinotify - ok
21:10:21.0488 4712 SRTSP (4d56f175f76c685a06471800a03219b2) C:\Windows\System32\Drivers\NISx64\1305010.002\SRTSP64.SYS
21:10:21.0519 4712 SRTSP - ok
21:10:21.0753 4712 SRTSPX (7b02f64dc80c0ec7300af302ed5d1cb3) C:\Windows\system32\drivers\NISx64\1306020.00A\SRTSPX64.SYS
21:10:21.0753 4712 SRTSPX - ok
21:10:22.0018 4712 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:10:22.0049 4712 srv - ok
21:10:22.0283 4712 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:10:22.0314 4712 srv2 - ok
21:10:22.0595 4712 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
21:10:22.0611 4712 SrvHsfHDA - ok
21:10:22.0876 4712 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
21:10:22.0938 4712 SrvHsfV92 - ok
21:10:23.0266 4712 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
21:10:23.0297 4712 SrvHsfWinac - ok
21:10:23.0594 4712 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:10:23.0609 4712 srvnet - ok
21:10:23.0843 4712 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:10:23.0921 4712 SSDPSRV - ok
21:10:25.0622 4712 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:10:25.0684 4712 SstpSvc - ok
21:10:27.0400 4712 STacSV (7595d53ee8e8b0baa9a2ddde867ebb0c) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
21:10:27.0447 4712 STacSV - ok
21:10:28.0976 4712 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:10:28.0991 4712 stexstor - ok
21:10:31.0924 4712 STHDA (dffbc024dfc7bb05b2129e05cbc7a201) C:\Windows\system32\DRIVERS\stwrt64.sys
21:10:33.0328 4712 STHDA - ok
21:10:34.0826 4712 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:10:34.0872 4712 stisvc - ok
21:10:35.0060 4712 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:10:35.0075 4712 swenum - ok
21:10:35.0216 4712 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:10:35.0262 4712 swprv - ok
21:10:35.0559 4712 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\NISx64\1306020.00A\SYMDS64.SYS
21:10:35.0574 4712 SymDS - ok
21:10:35.0933 4712 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\NISx64\1306020.00A\SYMEFA64.SYS
21:10:35.0964 4712 SymEFA - ok
21:10:36.0183 4712 SymEvent (898bb48c797483420df523b2bbc1ecdb) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:10:36.0198 4712 SymEvent - ok
21:10:36.0448 4712 SYMFW - ok
21:10:36.0822 4712 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\NISx64\1306020.00A\Ironx64.SYS
21:10:36.0838 4712 SymIRON - ok
21:10:36.0963 4712 SYMNDISV - ok
21:10:37.0400 4712 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\system32\drivers\NISx64\1305010.002\SYMNETS.SYS
21:10:37.0415 4712 SymNetS - ok
21:10:37.0680 4712 SynTP (3a706a967295e16511e40842b1a2761d) C:\Windows\system32\DRIVERS\SynTP.sys
21:10:37.0696 4712 SynTP - ok
21:10:37.0914 4712 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:10:37.0977 4712 SysMain - ok
21:10:38.0070 4712 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:10:38.0117 4712 TabletInputService - ok
21:10:38.0258 4712 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:10:38.0320 4712 TapiSrv - ok
21:10:38.0476 4712 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:10:38.0523 4712 TBS - ok
21:10:41.0502 4712 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:10:41.0549 4712 Tcpip - ok
21:10:44.0716 4712 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:10:44.0763 4712 TCPIP6 - ok
21:10:45.0012 4712 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:10:45.0075 4712 tcpipreg - ok
21:10:45.0309 4712 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:10:45.0324 4712 TDPIPE - ok
21:10:45.0480 4712 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
21:10:45.0543 4712 TDTCP - ok
21:10:45.0730 4712 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:10:45.0761 4712 tdx - ok
21:10:46.0026 4712 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:10:46.0026 4712 TermDD - ok
21:10:47.0586 4712 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:10:47.0664 4712 TermService - ok
21:10:47.0836 4712 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:10:47.0867 4712 Themes - ok
21:10:48.0070 4712 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:10:48.0117 4712 THREADORDER - ok
21:10:48.0257 4712 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:10:48.0320 4712 TrkWks - ok
21:10:49.0833 4712 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:10:49.0895 4712 TrustedInstaller - ok
21:10:50.0145 4712 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:10:50.0192 4712 tssecsrv - ok
21:10:50.0488 4712 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:10:50.0504 4712 TsUsbFlt - ok
21:10:50.0769 4712 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:10:50.0800 4712 tunnel - ok
21:10:50.0940 4712 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:10:50.0956 4712 uagp35 - ok
21:10:51.0206 4712 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:10:51.0252 4712 udfs - ok
21:10:51.0393 4712 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:10:51.0408 4712 UI0Detect - ok
21:10:51.0596 4712 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:10:51.0611 4712 uliagpkx - ok
21:10:51.0783 4712 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:10:51.0830 4712 umbus - ok
21:10:52.0001 4712 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:10:52.0032 4712 UmPass - ok
21:10:52.0266 4712 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:10:52.0344 4712 upnphost - ok
21:10:52.0547 4712 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:10:52.0563 4712 usbccgp - ok
21:10:52.0734 4712 USBCCID - ok
21:10:52.0859 4712 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:10:52.0890 4712 usbcir - ok
21:10:53.0000 4712 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:10:53.0046 4712 usbehci - ok
21:10:53.0249 4712 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:10:53.0280 4712 usbhub - ok
21:10:53.0405 4712 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:10:53.0436 4712 usbohci - ok
21:10:53.0608 4712 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:10:53.0655 4712 usbprint - ok
21:10:53.0811 4712 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
21:10:53.0826 4712 USBSTOR - ok
21:10:53.0951 4712 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:10:53.0998 4712 usbuhci - ok
21:10:54.0216 4712 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:10:54.0248 4712 usbvideo - ok
21:10:54.0372 4712 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:10:54.0497 4712 UxSms - ok
21:10:54.0591 4712 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:10:54.0606 4712 VaultSvc - ok
21:10:54.0794 4712 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:10:54.0809 4712 vdrvroot - ok
21:10:55.0012 4712 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:10:55.0059 4712 vds - ok
21:10:55.0277 4712 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:10:55.0293 4712 vga - ok
21:10:55.0464 4712 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:10:55.0527 4712 VgaSave - ok
21:10:55.0761 4712 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:10:55.0776 4712 vhdmp - ok
21:10:55.0995 4712 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:10:56.0010 4712 viaide - ok
21:10:56.0104 4712 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:10:56.0135 4712 volmgr - ok
21:10:56.0416 4712 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:10:56.0432 4712 volmgrx - ok
21:10:56.0666 4712 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:10:56.0681 4712 volsnap - ok
21:10:56.0884 4712 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:10:56.0900 4712 vsmraid - ok
21:10:57.0149 4712 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:10:57.0243 4712 VSS - ok
21:10:57.0414 4712 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:10:57.0461 4712 vwifibus - ok
21:10:59.0068 4712 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:10:59.0115 4712 vwififlt - ok
21:10:59.0255 4712 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:10:59.0302 4712 W32Time - ok
21:10:59.0442 4712 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:10:59.0458 4712 WacomPen - ok
21:10:59.0676 4712 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:10:59.0739 4712 WANARP - ok
21:10:59.0817 4712 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:10:59.0864 4712 Wanarpv6 - ok
21:11:00.0129 4712 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:11:00.0160 4712 WatAdminSvc - ok
21:11:00.0363 4712 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:11:00.0425 4712 wbengine - ok
21:11:00.0581 4712 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:11:00.0612 4712 WbioSrvc - ok
21:11:00.0784 4712 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:11:00.0815 4712 wcncsvc - ok
21:11:01.0002 4712 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:11:01.0018 4712 WcsPlugInService - ok
21:11:01.0236 4712 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:11:01.0252 4712 Wd - ok
21:11:01.0408 4712 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:11:01.0424 4712 Wdf01000 - ok
21:11:01.0595 4712 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:11:01.0642 4712 WdiServiceHost - ok
21:11:01.0658 4712 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:11:01.0673 4712 WdiSystemHost - ok
21:11:01.0845 4712 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:11:01.0876 4712 WebClient - ok
21:11:02.0032 4712 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:11:02.0110 4712 Wecsvc - ok
21:11:02.0251 4712 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:11:02.0329 4712 wercplsupport - ok
21:11:02.0531 4712 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:11:02.0578 4712 WerSvc - ok
21:11:02.0703 4712 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:11:02.0750 4712 WfpLwf - ok
21:11:02.0890 4712 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:11:02.0906 4712 WIMMount - ok
21:11:02.0968 4712 WinDefend - ok
21:11:02.0984 4712 WinHttpAutoProxySvc - ok
21:11:03.0187 4712 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:11:03.0233 4712 Winmgmt - ok
21:11:03.0514 4712 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:11:03.0577 4712 WinRM - ok
21:11:03.0889 4712 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:11:03.0935 4712 Wlansvc - ok
21:11:04.0060 4712 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:11:04.0076 4712 wlcrasvc - ok
21:11:05.0839 4712 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:11:05.0885 4712 wlidsvc - ok
21:11:06.0151 4712 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:11:06.0182 4712 WmiAcpi - ok
21:11:07.0757 4712 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:11:07.0804 4712 wmiApSrv - ok
21:11:07.0882 4712 WMPNetworkSvc - ok
21:11:08.0116 4712 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:11:08.0132 4712 WPCSvc - ok
21:11:08.0428 4712 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:11:08.0459 4712 WPDBusEnum - ok
21:11:08.0771 4712 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:11:08.0818 4712 ws2ifsl - ok
21:11:08.0990 4712 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:11:09.0037 4712 wscsvc - ok
21:11:09.0177 4712 WSearch - ok
21:11:09.0614 4712 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
21:11:09.0723 4712 wuauserv - ok
21:11:09.0910 4712 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:11:09.0988 4712 WudfPf - ok
21:11:10.0300 4712 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:11:10.0347 4712 WUDFRd - ok
21:11:10.0519 4712 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:11:10.0550 4712 wudfsvc - ok
21:11:10.0737 4712 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:11:10.0799 4712 WwanSvc - ok
21:11:11.0111 4712 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
21:11:11.0143 4712 yukonw7 - ok
21:11:11.0221 4712 MBR (0x1B8) (d7d585bad969c34f0903cab8f2561af6) \Device\Harddisk0\DR0
21:11:13.0857 4712 \Device\Harddisk0\DR0 - ok
21:11:13.0888 4712 Boot (0x1200) (cef3fc7ced68cd9256b09a1a6be8290a) \Device\Harddisk0\DR0\Partition0
21:11:13.0888 4712 \Device\Harddisk0\DR0\Partition0 - ok
21:11:13.0935 4712 Boot (0x1200) (fdd92356775ebb1343a409fd1eaeac49) \Device\Harddisk0\DR0\Partition1
21:11:13.0951 4712 \Device\Harddisk0\DR0\Partition1 - ok
21:11:13.0982 4712 Boot (0x1200) (8c9c4aee134880691de60747c075526e) \Device\Harddisk0\DR0\Partition2
21:11:14.0044 4712 \Device\Harddisk0\DR0\Partition2 - ok
21:11:14.0044 4712 ============================================================
21:11:14.0044 4712 Scan finished
21:11:14.0044 4712 ============================================================
21:11:14.0075 3328 Detected object count: 2
21:11:14.0075 3328 Actual detected object count: 2
21:11:19.0910 3328 HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:11:19.0910 3328 HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:11:19.0910 3328 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
21:11:19.0910 3328 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:20:19.0303 3740 Deinitialize success
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP