Ran by Gene Fulks (administrator) on KEVIN on 25-11-2013 11:18:19
Running from C:\Documents and Settings\Gene Fulks\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
(Acer Inc.) C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
(Sprint) C:\Program Files\Sprint\Sprint SmartView\SprintSV.exe
(C-motech Co.,Ltd) C:\Program Files\Sprint\Sprint SmartView\RDVCHG.exe
() C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Amazon.com) C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Alcatel-Lucent) C:\Program Files\ATT-SST\pcTrayApp.exe
(Microsoft Corporation) C:\WINDOWS\eHome\ehRecvr.exe
(Apple Inc.) D:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\WINDOWS\eHome\ehSched.exe
(NDS Technologies) C:\Documents and Settings\Gene Fulks\Local Settings\Application Data\DIRECTV Player\PCShowServerPMWrapper.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Documents and Settings\Gene Fulks\Local Settings\Application Data\DIRECTV Player\NDSPCShowServer.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
() C:\Program Files\Novatel Wireless\Novacore\Server\NvtlSrvr.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\pcCMService.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\pcServiceHost.exe
(HP) C:\WINDOWS\system32\HPZipm12.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corporation) C:\WINDOWS\ehome\mcrdsvc.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Symantec Corporation) C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ccSvcHst.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ATICCC] - C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe [90112 2006-05-10] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [761946 2006-03-03] (Synaptics, Inc.)
HKLM\...\Run: [Sprint SmartView] - C:\Program Files\Sprint\Sprint SmartView\SprintSV.exe [75072 2010-12-15] (Sprint)
HKLM\...\Run: [RDVCHG] - C:\Program Files\Sprint\Sprint SmartView\RDVCHG.exe [316736 2010-12-15] (C-motech Co.,Ltd)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-10-06] (Apple Inc.)
HKLM\...\Run: [ePower_DMC] - C:\Acer\Empowering Technology\ePower\ePower_DMC.exe [421888 2006-05-30] ()
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-11-28] (Apple Inc.)
HKLM\...\Run: [ATT-SST_McciTrayApp] - C:\Program Files\ATT-SST\pcTrayApp.exe [1939968 2012-06-07] (Alcatel-Lucent)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2012-10-25] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - D:\Program Files\iTunes\iTunesHelper.exe [152544 2012-12-12] (Apple Inc.)
Winlogon\Notify\AtiExtEvent: C:\Windows\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [PCShowServer] - C:\Documents and Settings\Gene Fulks\Local Settings\Application Data\DIRECTV Player\PCShowServerPMWrapper.exe [525240 2012-10-15] (NDS Technologies)
HKCU\...\Policies\Explorer: [NofolderOptions] 0
MountPoints2: {09c3fda7-7eae-11e2-9ac1-0016d418b79d} - F:\HTC_Sync_Manager_PC.exe
MountPoints2: {b4f25e51-0c82-11df-9887-0016d418b79d} - F:\LaunchU3.exe -a
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c.../search/ie.html
HKCU\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
URLSearchHook: HKCU - YTNavAssist.YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTNavAssist.dll (Yahoo! Inc.)
SearchScopes: HKCU - {080FBDF6-B230-4e4d-A4E7-7C7A56D7BABC} URL = http://searchservice...b&orig=IMC-IEDS
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = http://supertoolbar....s}&locale=en_US
SearchScopes: HKCU - {180780f0-b348-4b44-8210-94a8f3ee15b2} URL = http://search.comcas...q={searchTerms}
SearchScopes: HKCU - {A6C8386C-68BC-43DB-B5B9-6404A2756857} URL = http://search.yahoo....p={searchTerms}
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://www.ask.com/w...l&geo=US&ver=18
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.condui...&ctid=CT2801948
SearchScopes: HKCU - {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = http://search.yahoo....ms}&fr=chr-atty
BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\ips\ipsbho.dll (Symantec Corporation)
BHO: ALOT eMusic Toolbar - {8260C2B8-E0D1-448a-B062-33D12D468BF0} - No File
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - No File
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
Toolbar: HKLM - ALOT eMusic Toolbar - {8260C2B8-E0D1-448a-B062-33D12D468BF0} - No File
Toolbar: HKLM - att.net Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\18.6.0.29\coieplg.dll (Symantec Corporation)
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: text/html - {734528fd-47b8-45a7-bef3-6a28f745648e} - No File
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default
FF Homepage: hxxp://www.yahoo.com/
FF DefaultSearchEngine: Yahoo
FF SelectedSearchEngine: Yahoo
FF Homepage: hxxp://xfinity.comcast.net/?cid=insDate02092013|hxxp://www.comcast.net/xfinity/?cid=insdate02092013&cid=ffpintab|hxxp://xfinitytv.comcast.net/?cid=xfactiv_tv&cid=ffpintab|hxxp://www.comcast.net/qry/goto?app=mail&cid=xfactiv_email&cid=ffpin
FF SelectedSearchEngine: XFINITY
FF DefaultSearchEngine: XFINITY
FF Homepage: hxxp://xfinity.comcast.net/?cid=insDate02092013|hxxp://www.comcast.net/xfinity/?cid=insdate02092013&cid=ffpintab|hxxp://xfinitytv.comcast.net/?cid=xfactiv_tv&cid=ffpintab|hxxp://www.comcast.net/qry/goto?app=mail&cid=xfactiv_email&cid=ffpin
FF SelectedSearchEngine: XFINITY
FF DefaultSearchEngine: XFINITY
FF Plugin: @Apple.com/iTunes,version=1.0 - D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @Motive.com/NpMotive,version=1.0 - C:\Program Files\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
FF Plugin: @real.com/RhapsodyPlayerEngine,version=1.0 - C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
FF Plugin: [email protected]/YahooActiveXPluginBridge;version=1.0.0.1 - C:\Program Files\Yahoo!\common\npyaxmpb.dll No File
FF Plugin HKCU: @nds.com/PCShowPlugin - C:\Documents and Settings\Gene Fulks\Local Settings\Application Data\DIRECTV Player\npPCShowPlugin.dll No File
FF Plugin HKCU: @nds.com/PlayerPlugin - C:\Documents and Settings\Gene Fulks\Local Settings\Application Data\DIRECTV Player\npPlayerPlugin.dll (NDS)
FF Plugin HKCU: @yahoo.com/BrowserPlus,version=2.9.8 - C:\Documents and Settings\Gene Fulks\Local Settings\Application Data\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll (Yahoo! Inc.)
FF SearchPlugin: C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default\searchplugins\MySpace.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\onestep.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\xfinity.xml
FF Extension: No Name - C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default\Extensions\staged-xpis
FF Extension: No Name - C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default\Extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
FF Extension: Yahoo! Toolbar - C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
FF Extension: NCH EN Community Toolbar - C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default\Extensions\{37483b40-c254-4a72-bda4-22ee90182c1e}
FF Extension: Conduit Engine - C:\Documents and Settings\Gene Fulks\Application Data\Mozilla\Firefox\Profiles\ahld8p4b.default\Extensions\[email protected]
FF Extension: Real Networks Settings - C:\Program Files\Mozilla Firefox\extensions\[email protected]
FF Extension: Talkback - C:\Program Files\Mozilla Firefox\extensions\[email protected]
FF Extension: Google Toolbar for Firefox - C:\Program Files\Mozilla Firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFFPlgn\
FF Extension: Symantec IPS - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\IPSFFPlgn\
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn_2011_7_4_3
FF Extension: Norton Toolbar - C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\coFFPlgn_2011_7_4_3
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
========================== Services (Whitelisted) =================
R2 AcerMemUsageCheckService; C:\Acer\Empowering Technology\ePerformance\MemCheck.exe [28672 2006-03-29] (Acer Inc.)
R2 Amazon Download Agent; C:\Program Files\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe [401920 2009-10-23] (Amazon.com)
S2 LVSrvLauncher; C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe [101152 2006-11-28] (Logitech Inc.)
R2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
R2 NIS; C:\Program Files\Norton Internet Security\Engine\18.6.0.29\diMaster.dll [262584 2011-03-31] (Symantec Corporation)
R2 NvtlService; C:\Program Files\Novatel Wireless\Novacore\Server\NvtlSrvr.exe [82944 2010-01-11] ()
R2 pcServiceHost; C:\Program Files\Common Files\Motive\pcServiceHost.exe [342016 2012-06-14] (Alcatel-Lucent)
S3 SprintRcAppSvc; C:\Program Files\Sprint\Sprint SmartView\RcAppSvc.exe [120128 2010-12-15] (SmithMicro Inc.)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"
S2 RoxLiveShare9; "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe" [x]
==================== Drivers (Whitelisted) ====================
R0 abp480n5; C:\Windows\System32\DRIVERS\ABP480N5.SYS [23552 2004-08-10] (Microsoft Corporation)
R1 AmdK8; C:\Windows\System32\DRIVERS\AmdK8.sys [36864 2006-05-10] (Advanced Micro Devices)
R3 AR5211; C:\Windows\System32\DRIVERS\ar5211.sys [488448 2006-01-24] (Atheros Communications, Inc.)
S3 bcm; C:\Windows\System32\DRIVERS\drxvi314.sys [319488 2010-03-26] (Beceem communications pvt ltd.)
S3 bcmbusctr; C:\Windows\System32\DRIVERS\BcmBusCtr.sys [51456 2010-03-26] (Beceem communications pvt ltd.)
R1 BHDrvx86; C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20111221.003\BHDrvx86.sys [819320 2011-11-14] (Symantec Corporation)
R3 Cam5603D; C:\Windows\System32\Drivers\BisonCam.sys [806272 2006-05-12] (Bison Electronics. Inc. )
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [374392 2011-11-09] (Symantec Corporation)
R3 EMSCR; C:\Windows\System32\DRIVERS\EMS7SK.sys [61056 2006-05-24] (ENE Technology Inc.)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [106104 2013-11-25] (Symantec Corporation)
R3 ESDCR; C:\Windows\System32\DRIVERS\ESD7SK.sys [40064 2006-05-24] (ENE Technology Inc.)
R3 ESMCR; C:\Windows\System32\DRIVERS\ESM7SK.sys [74752 2006-05-24] (ENE Technology Inc.)
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [51120 2005-03-07] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2005-03-07] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21744 2005-03-07] (HP)
R3 HSFHWAZL; C:\Windows\System32\DRIVERS\HSFHWAZL.sys [208384 2006-06-12] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\Windows\System32\DRIVERS\HSF_DPV.sys [990592 2006-06-12] (Conexant Systems, Inc.)
S3 IDSxpx86; C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20120106.002\IDSxpx86.sys [356280 2011-08-23] (Symantec Corporation)
R2 int15; C:\WINDOWS\system32\drivers\int15.sys [69632 2006-06-02] ()
S3 irsir; C:\Windows\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Corporation)
S3 LVMVDrv; C:\Windows\System32\DRIVERS\LVMVDrv.sys [1962784 2006-11-28] (Logitech Inc.)
S3 MREMP50; C:\Program Files\Common Files\Motive\MREMP50.sys [21248 2012-06-14] (Printing Communications Assoc., Inc. (PCAUSA))
R3 MRESP50; C:\Program Files\Common Files\Motive\MRESP50.sys [20096 2012-06-14] (Printing Communications Assoc., Inc. (PCAUSA))
S3 NAVENG; C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20120107.009\NAVENG.SYS [86136 2011-12-24] (Symantec Corporation)
S3 NAVEX15; C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20120107.009\NAVEX15.SYS [1576312 2011-12-24] (Symantec Corporation)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [27072 2010-01-11] (Printing Communications Assoc., Inc. (PCAUSA))
R3 Rasirda; C:\Windows\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Corporation)
S3 SMCIRDA; C:\Windows\System32\DRIVERS\smcirda.sys [46592 2004-12-09] (SMSC)
S3 SRTSP; C:\Windows\System32\Drivers\NIS\1206000.01D\SRTSP.SYS [516216 2011-03-30] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NIS\1206000.01D\SRTSPX.SYS [50168 2011-03-30] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NIS\1206000.01D\SYMDS.SYS [340088 2011-01-27] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NIS\1206000.01D\SYMEFA.SYS [744568 2011-03-14] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [126584 2011-05-10] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NIS\1206000.01D\Ironx86.SYS [136312 2011-01-27] (Symantec Corporation)
R1 SYMTDI; C:\Windows\System32\Drivers\NIS\1206000.01D\SYMTDI.SYS [369784 2011-03-21] (Symantec Corporation)
R0 UBHelper; C:\Windows\System32\Drivers\UBHelper.sys [13952 2004-12-17] ()
S3 wandrv; C:\Windows\System32\DRIVERS\wandrv.sys [22608 2001-08-09] (America Online, Inc.)
S2 eLock2BurnerLockDriver; \??\C:\WINDOWS\system32\eLock2BurnerLockDriver.sys [x]
S2 eLock2FSCTLDriver; \??\C:\WINDOWS\system32\eLock2FSCTLDriver.sys [x]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [x]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [x]
S3 Nmea; system32\DRIVERS\pctnullport.sys [x]
S3 RimUsb; System32\Drivers\RimUsb.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
NETSVC: MHN -> C:\Windows\System32\mhn.dll (Microsoft Corporation)
==================== One Month Created Files and Folders ========
2013-11-25 11:18 - 2013-11-25 11:18 - 00022595 _____ C:\Documents and Settings\Gene Fulks\Desktop\FRST.txt
2013-11-25 11:13 - 2013-11-19 09:36 - 01090881 _____ (Farbar) C:\Documents and Settings\Gene Fulks\Desktop\FRST.exe
2013-11-24 20:05 - 2012-08-21 08:33 - 02148864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-11-24 20:05 - 2012-08-21 07:58 - 02027520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntkrnlpa.exe
2013-11-24 19:39 - 2013-11-24 19:45 - 33423360 _____ C:\WINDOWS\system32\config\software.ntb
2013-11-18 04:41 - 2013-11-18 04:41 - 00000000 __SHD C:\FOUND.069
2013-11-18 03:35 - 2013-11-18 03:35 - 00000000 ____D C:\FRST
2013-11-17 12:38 - 2013-11-17 12:38 - 00000000 __SHD C:\FOUND.071
2013-11-17 08:44 - 2013-11-17 08:44 - 00000000 __SHD C:\FOUND.070
2013-11-15 12:01 - 2013-11-15 12:01 - 00000000 __SHD C:\FOUND.068
2013-11-15 11:52 - 2013-11-15 11:52 - 00000000 __SHD C:\FOUND.067
2013-11-15 10:57 - 2013-11-15 10:57 - 00000000 __SHD C:\FOUND.066
2013-11-15 10:20 - 2013-11-15 10:20 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\HitmanPro
2013-11-15 10:18 - 2013-11-15 10:18 - 00000000 __SHD C:\FOUND.065
2013-11-13 07:42 - 2013-11-13 07:42 - 00000000 __SHD C:\FOUND.064
2013-11-13 07:04 - 2013-11-13 07:04 - 00000000 __SHD C:\FOUND.063
==================== One Month Modified Files and Folders =======
2013-11-25 11:18 - 2013-11-25 11:18 - 00022595 _____ C:\Documents and Settings\Gene Fulks\Desktop\FRST.txt
2013-11-25 10:55 - 2012-07-25 10:28 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-11-25 10:47 - 2006-06-01 18:30 - 00001158 _____ C:\WINDOWS\system32\wpa.dbl
2013-11-25 10:46 - 2013-02-08 08:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-11-25 10:46 - 2013-01-20 12:32 - 00000480 _____ C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job
2013-11-25 10:46 - 2010-02-06 04:02 - 00000882 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-25 10:46 - 2006-06-01 16:19 - 00000159 _____ C:\WINDOWS\wiadebug.log
2013-11-25 10:39 - 2010-02-06 04:02 - 00000886 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-25 10:24 - 2006-06-01 18:30 - 01319321 _____ C:\WINDOWS\WindowsUpdate.log
2013-11-25 10:18 - 2013-02-13 19:41 - 00158230 _____ C:\WINDOWS\KB2778344.log
2013-11-25 10:17 - 2013-02-13 19:41 - 00749404 _____ C:\WINDOWS\KB2799494.log
2013-11-25 02:39 - 2006-06-01 18:30 - 00032050 _____ C:\WINDOWS\SchedLgU.Txt
2013-11-25 02:39 - 2006-06-01 16:19 - 00000050 _____ C:\WINDOWS\wiaservc.log
2013-11-24 20:52 - 2006-06-01 17:07 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2013-11-24 20:05 - 2013-02-14 03:09 - 00247575 _____ C:\WINDOWS\KB2799494Uninst.log
2013-11-24 20:05 - 2013-02-14 03:07 - 00020708 _____ C:\WINDOWS\updspapi.log
2013-11-24 19:45 - 2013-11-24 19:39 - 33423360 _____ C:\WINDOWS\system32\config\software.ntb
2013-11-22 19:52 - 2013-02-10 09:27 - 00167654 _____ C:\WINDOWS\setupapi.log
2013-11-22 15:43 - 2006-06-01 21:31 - 33554432 _____ C:\WINDOWS\system32\config\software.orig
2013-11-22 15:43 - 2006-06-01 21:31 - 16777216 _____ C:\WINDOWS\system32\config\system.orig
2013-11-22 15:43 - 2006-06-01 21:31 - 00262144 _____ C:\WINDOWS\system32\config\security.orig
2013-11-22 15:43 - 2006-06-01 21:31 - 00262144 _____ C:\WINDOWS\system32\config\sam.orig
2013-11-19 18:00 - 2013-01-20 12:34 - 00000454 _____ C:\WINDOWS\Tasks\ParetoLogic Registration3.job
2013-11-19 09:36 - 2013-11-25 11:13 - 01090881 _____ (Farbar) C:\Documents and Settings\Gene Fulks\Desktop\FRST.exe
2013-11-18 04:41 - 2013-11-18 04:41 - 00000000 __SHD C:\FOUND.069
2013-11-18 03:35 - 2013-11-18 03:35 - 00000000 ____D C:\FRST
2013-11-17 12:38 - 2013-11-17 12:38 - 00000000 __SHD C:\FOUND.071
2013-11-17 08:44 - 2013-11-17 08:44 - 00000000 __SHD C:\FOUND.070
2013-11-15 12:01 - 2013-11-15 12:01 - 00000000 __SHD C:\FOUND.068
2013-11-15 11:52 - 2013-11-15 11:52 - 00000000 __SHD C:\FOUND.067
2013-11-15 10:57 - 2013-11-15 10:57 - 00000000 __SHD C:\FOUND.066
2013-11-15 10:20 - 2013-11-15 10:20 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\HitmanPro
2013-11-15 10:18 - 2013-11-15 10:18 - 00000000 __SHD C:\FOUND.065
2013-11-13 07:45 - 2006-12-02 08:45 - 00000178 ___SH C:\Documents and Settings\Gene Fulks\ntuser.ini
2013-11-13 07:42 - 2013-11-13 07:42 - 00000000 __SHD C:\FOUND.064
2013-11-13 07:04 - 2013-11-13 07:04 - 00000000 __SHD C:\FOUND.063
2013-11-13 07:04 - 2006-06-01 18:19 - 00196160 _____ C:\WINDOWS\system32\FNTCACHE.DAT