Sikre system32 filer på nettet...

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-06-2013 02
Ran by starman (administrator) on 08-06-2013 11:26:50
Running from C:\Users\starman\Desktop
Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: Danish
Internet Explorer Version 9
Boot Mode: Safe Mode (with Networking)

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide [1584184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SmartMenu] %ProgramFiles%\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [912688 2008-09-23] (Hewlett-Packard)
HKLM\...\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [x]
HKCU\...\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe [x]
HKCU\...\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [1555968 2009-04-11] (Microsoft Corporation)
HKCU\...\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [x]
HKCU\...\Run: [EPSON SX510W Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\Windows\TEMP\E_S563A.tmp" /EF "HKCU" [x]
HKLM-x32\...\Run: []  [x]
HKLM-x32\...\Run: [UpdatePSTShortCut] "c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" [210216 2008-09-11] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePDIRShortCut] "c:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0" [210216 2008-06-13] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] "c:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" [210216 2008-06-13] (CyberLink Corp.)
HKLM-x32\...\Run: [TSMAgent] "c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe" [1152296 2008-10-17] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [641704 2012-11-16] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [KBD] C:\Program Files (x86)\Hewlett-Packard\KBD\KbdStub.EXE [12288 2008-07-21] (Microsoft)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [152392 2013-05-15] (Apple Inc.)
HKLM-x32\...\Run: [iTunes] C:\iTunes\iTunesHelper.exe [822272 2011-09-15] (Apple Inc.)
HKLM-x32\...\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe [65536 2007-04-18] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-01-12] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM-x32\...\Run: [EEventManager] C:\PROGRA~2\EPSONS~1\EVENTM~1\EEventManager.exe [669520 2009-01-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DVDAgent] "c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe" [1148200 2008-09-26] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer for HP TouchSmart] "c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe" [189736 2008-10-17] (CyberLink)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-09-27] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [958576 2013-04-04] (Adobe Systems Incorporated)
Startup: C:\ProgramData\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
ShortcutTarget: WinZip Quick Pick.lnk -> C:\Program Files (x86)\WinZip\WZQKPICK.EXE (WinZip Computing, S.L.)
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\System32\webcheck.dll (Microsoft Corporation)
SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWOW64\webcheck.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.dk/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=sv_se&c=91&bd=Pavilion&pf=cndt
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=sv_se&c=91&bd=Pavilion&pf=cndt
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
SearchScopes: HKLM - {63E04CE7-2B55-404A-9E7A-BAC5D5E49768} URL = http://se.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM - {C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcndtie7-sv-se
SearchScopes: HKLM - {EB077C9A-9EC8-4F9E-84BA-71013AD375AB} URL = http://se.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913934
SearchScopes: HKLM-x32 - {63E04CE7-2B55-404A-9E7A-BAC5D5E49768} URL = http://se.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM-x32 - {C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1222&query={searchTerms}&invocationType=tb50hpcndtie7-sv-se
SearchScopes: HKLM-x32 - {EB077C9A-9EC8-4F9E-84BA-71013AD375AB} URL = http://se.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913934
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {63E04CE7-2B55-404A-9E7A-BAC5D5E49768} URL =
SearchScopes: HKCU - {C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} URL =
SearchScopes: HKCU - {EB077C9A-9EC8-4F9E-84BA-71013AD375AB} URL =
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\20.3.1.22\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\20.3.1.22\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\20.3.1.22\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.249.14.50 89.249.14.54

FireFox:
========
FF ProfilePath: C:\Users\starman\AppData\Roaming\Mozilla\Firefox\Profiles\bisbfw8q.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 - C:\Program Files (x86)\VLC Media Player\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "hxxp://www.google.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\pdf.dll ()
CHR Plugin: (Google Gears 0.5.33.0) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\gears.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.94\gcswf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.230.5) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U23) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.2.183.23\npGoogleOneClick8.dll No File
CHR Plugin: (Windows Presentation Foundation) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Default Plug-in) - default_plugin No File
CHR Extension: (Norton Identity Protection) - C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.13.5_0

==================== Services (Whitelisted) =================

S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2012-11-16] (Advanced Micro Devices, Inc.)
S2 Apache2.2; c:\xampp\apache\bin\httpd.exe [20549 2010-10-18] (Apache Software Foundation)
S3 FileZilla Server; c:\xampp\FileZillaFTP\FileZillaServer.exe [742912 2010-10-17] (FileZilla Project)
S2 HPBtnSrv; C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe [192512 2008-09-30] ()
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 mysql; c:\xampp\mysql\bin\my.ini [5371 2011-06-27] ()
S2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\20.3.1.22\diMaster.dll [554288 2013-03-29] (Symantec Corporation)
S2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [x]
S3 msiserver; %systemroot%\system32\msiexec /V [x]

==================== Drivers (Whitelisted) ====================

S2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
S1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130515.001\BHDrvx64.sys [1390680 2013-05-03] (Symantec Corporation)
S1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2012-11-02] (Symantec Corporation)
S3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2012-08-09] (Symantec Corporation)
S1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\IPSDefs\20130531.001\IDSvia64.sys [513184 2013-05-05] (Symantec Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\VirusDefs\20130603.003\ENG64.SYS [126040 2013-05-22] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\VirusDefs\20130603.003\EX64.SYS [2098776 2013-05-22] (Symantec Corporation)
S4 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [166944 2008-07-21] (NVIDIA Corporation)
S3 Ps2; C:\Windows\System32\DRIVERS\PS2.sys [21504 2006-09-07] ()
S3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-05-06] (Symantec Corporation)
S2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [27632 2008-09-26] (Cyberlink Corp.)
S3 AIDA64Driver; \??\J:\Test Tools\AIDA64\kerneld.amd64 [x]
S1 ccSet_NIS; \SystemRoot\system32\drivers\NISx64\1403010.016\ccSetx64.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S3 PCD5SRVC{8AAF211B-043E02A9-05040000}; \??\C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms [x]
S1 SRTSP; \SystemRoot\System32\Drivers\NISx64\1403010.016\SRTSP64.SYS [x]
S1 SRTSPX; \SystemRoot\system32\drivers\NISx64\1403010.016\SRTSPX64.SYS [x]
R0 SymDS; system32\drivers\NISx64\1403010.016\SYMDS64.SYS [x]
R0 SymEFA; system32\drivers\NISx64\1403010.016\SYMEFA64.SYS [x]
S1 SymIRON; \SystemRoot\system32\drivers\NISx64\1403010.016\Ironx64.SYS [x]
S1 SYMTDIv; \SystemRoot\System32\Drivers\NISx64\1403010.016\SYMTDIV.SYS [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-06-08 11:21 - 2013-06-08 11:21 - 00021146 ____A C:\Users\starman\Desktop\Addition.txt
2013-06-08 11:20 - 2013-06-08 11:20 - 00000000 ____D C:\FRST
2013-06-08 11:19 - 2013-06-08 11:18 - 01919218 ____A (Farbar) C:\Users\starman\Desktop\FRST64.exe
2013-06-08 11:18 - 2013-06-08 11:18 - 01919218 ____A (Farbar) C:\Users\starman\Downloads\FRST64.exe
2013-06-07 23:50 - 2013-06-08 00:17 - 00000000 ____D C:\Windows\pss
2013-06-06 22:20 - 2013-06-06 22:20 - 00000000 ____D C:\Users\starman\Desktop\Windows filer -- i Fejl sikret tilstand
2013-06-05 21:28 - 2013-06-08 11:16 - 00000732 ____A C:\Users\starman\AppData\Local\d3d9caps64.dat
2013-06-05 20:47 - 2013-06-05 20:47 - 00011294 ____A C:\Users\starman\Desktop\hijackthis2
2013-06-05 20:44 - 2013-06-05 20:44 - 00000000 ____D C:\Users\starman\Desktop\backups
2013-06-04 20:59 - 2013-06-04 20:59 - 00015998 ____A C:\Users\starman\Desktop\CClean_instal_progl.txt
2013-06-04 02:50 - 2013-06-04 02:50 - 00012412 ____A C:\Users\starman\Desktop\hijackthis2.log
2013-06-04 01:18 - 2013-06-04 01:18 - 00000950 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-06-04 01:18 - 2013-06-04 01:18 - 00000000 ____D C:\Users\starman\AppData\Roaming\Malwarebytes
2013-06-04 01:18 - 2013-06-04 01:18 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-06-04 01:18 - 2013-06-04 01:18 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-06-04 01:18 - 2013-04-04 14:50 - 00025928 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2013-06-04 01:09 - 2013-06-04 01:09 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\starman\Desktop\mbam-setup-1.75.0.1300.exe
2013-05-30 00:37 - 2013-05-30 00:37 - 00001213 ____A C:\AdwCleaner[R1].txt
2013-05-22 23:15 - 2013-05-22 23:16 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-05-22 23:15 - 2013-05-22 23:15 - 00001758 ____A C:\Users\Public\Desktop\QuickTime Player.lnk
2013-05-22 16:55 - 2013-05-22 16:55 - 00012859 ____A C:\Users\starman\Desktop\hijackthis.log
2013-05-21 21:31 - 2013-05-21 21:31 - 00001545 ____A C:\Users\starman\Desktop\AdwCleaner[S1].txt
2013-05-21 21:19 - 2013-05-21 21:19 - 00000178 ____A C:\Windows\DeleteOnReboot.bat
2013-05-21 21:18 - 2013-05-21 21:19 - 00001545 ____A C:\AdwCleaner[S1].txt
2013-05-21 21:18 - 2013-05-21 21:16 - 00632031 ____A C:\Users\starman\Desktop\adwcleaner.exe
2013-05-21 21:16 - 2013-05-21 21:16 - 00632031 ____A C:\Users\starman\Downloads\adwcleaner.exe
2013-05-20 23:44 - 2013-05-20 23:44 - 00012859 ____A C:\Users\starman\Desktop\hijackthis1.log
2013-05-20 23:44 - 2013-05-20 23:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\starman\Desktop\HijackThis.exe
2013-05-20 23:41 - 2013-05-20 23:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\starman\Downloads\HijackThis.exe
2013-05-16 22:40 - 2013-05-16 22:40 - 00001696 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\Program Files\iTunes
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\Program Files\iPod
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-05-15 01:38 - 2013-04-05 03:19 - 10926080 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-05-15 01:38 - 2013-04-05 03:08 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-05-15 01:38 - 2013-04-05 03:01 - 01346560 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-05-15 01:38 - 2013-04-05 03:00 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-05-15 01:38 - 2013-04-05 02:59 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-05-15 01:38 - 2013-04-05 02:58 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2013-05-15 01:38 - 2013-04-05 02:57 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-05-15 01:38 - 2013-04-05 02:56 - 00173056 ____A (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-05-15 01:38 - 2013-04-05 02:55 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-05-15 01:38 - 2013-04-05 02:55 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-05-15 01:38 - 2013-04-05 02:54 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-05-15 01:38 - 2013-04-05 02:54 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-05-15 01:38 - 2013-04-05 02:51 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-05-15 01:38 - 2013-04-05 02:46 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-05-15 01:38 - 2013-04-05 00:11 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-05-15 01:38 - 2013-04-05 00:09 - 09738752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-05-15 01:38 - 2013-04-05 00:02 - 01427968 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-05-15 01:38 - 2013-04-05 00:02 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-05-15 01:38 - 2013-04-05 00:02 - 01104384 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-05-15 01:38 - 2013-04-05 00:01 - 00231936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-05-15 01:38 - 2013-04-04 23:59 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-05-15 01:38 - 2013-04-04 23:58 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-05-15 01:38 - 2013-04-04 23:58 - 00142848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-05-15 01:38 - 2013-04-04 23:57 - 00420864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-05-15 01:38 - 2013-04-04 23:56 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-05-15 01:38 - 2013-04-04 23:55 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-05-15 01:38 - 2013-04-04 23:54 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-05-15 01:38 - 2013-04-04 23:50 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-05-15 01:20 - 2013-05-05 23:36 - 17818624 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-05-15 01:20 - 2013-05-05 23:16 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-05-15 01:20 - 2013-05-05 21:25 - 12324864 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-05-15 01:20 - 2013-05-05 21:12 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-05-15 00:23 - 2013-04-15 16:17 - 00901496 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2013-05-15 00:23 - 2013-04-13 05:34 - 00047104 ____A (Microsoft Corporation) C:\Windows\System32\cdd.dll
2013-05-15 00:23 - 2013-04-09 03:55 - 02774016 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys

==================== One Month Modified Files and Folders =======

2013-06-08 11:21 - 2013-06-08 11:21 - 00021146 ____A C:\Users\starman\Desktop\Addition.txt
2013-06-08 11:20 - 2013-06-08 11:20 - 00000000 ____D C:\FRST
2013-06-08 11:18 - 2013-06-08 11:19 - 01919218 ____A (Farbar) C:\Users\starman\Desktop\FRST64.exe
2013-06-08 11:18 - 2013-06-08 11:18 - 01919218 ____A (Farbar) C:\Users\starman\Downloads\FRST64.exe
2013-06-08 11:16 - 2013-06-05 21:28 - 00000732 ____A C:\Users\starman\AppData\Local\d3d9caps64.dat
2013-06-08 00:17 - 2013-06-07 23:50 - 00000000 ____D C:\Windows\pss
2013-06-08 00:08 - 2006-11-02 17:22 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-06-08 00:08 - 2006-11-02 17:22 - 00003616 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-06-07 22:38 - 2011-01-16 20:23 - 00000928 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cbb5aa7ba37d4d.job
2013-06-07 22:37 - 2006-11-02 17:42 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-06-06 22:20 - 2013-06-06 22:20 - 00000000 ____D C:\Users\starman\Desktop\Windows filer -- i Fejl sikret tilstand
2013-06-06 15:39 - 2011-01-14 15:16 - 00117396 ____A C:\Users\starman\danid.log
2013-06-05 20:47 - 2013-06-05 20:47 - 00011294 ____A C:\Users\starman\Desktop\hijackthis2
2013-06-05 20:44 - 2013-06-05 20:44 - 00000000 ____D C:\Users\starman\Desktop\backups
2013-06-04 21:07 - 2011-01-14 00:46 - 00045056 ____A C:\Users\starman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-06-04 20:59 - 2013-06-04 20:59 - 00015998 ____A C:\Users\starman\Desktop\CClean_instal_progl.txt
2013-06-04 03:12 - 2006-11-02 17:42 - 00032570 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-06-04 03:04 - 2012-11-06 00:38 - 01335278 ____A C:\Windows\SysWOW64\PerfStringBackup.INI
2013-06-04 03:04 - 2010-12-29 01:45 - 00511544 ____A C:\Windows\System32\perfh006.dat
2013-06-04 03:04 - 2010-12-29 01:45 - 00099246 ____A C:\Windows\System32\perfc006.dat
2013-06-04 03:04 - 2006-11-02 14:46 - 01335278 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-04 02:50 - 2013-06-04 02:50 - 00012412 ____A C:\Users\starman\Desktop\hijackthis2.log
2013-06-04 02:41 - 2006-11-02 17:21 - 00366600 ____A C:\Windows\System32\FNTCACHE.DAT
2013-06-04 01:18 - 2013-06-04 01:18 - 00000950 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-06-04 01:18 - 2013-06-04 01:18 - 00000000 ____D C:\Users\starman\AppData\Roaming\Malwarebytes
2013-06-04 01:18 - 2013-06-04 01:18 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-06-04 01:18 - 2013-06-04 01:18 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-06-04 01:09 - 2013-06-04 01:09 - 10285040 ____A (Malwarebytes Corporation                                    ) C:\Users\starman\Desktop\mbam-setup-1.75.0.1300.exe
2013-06-03 22:27 - 2012-03-29 20:52 - 00000830 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-06-03 22:18 - 2011-01-13 02:18 - 00000934 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-05-31 23:59 - 2013-02-19 22:14 - 00000000 ____D C:\Users\starman\Desktop\midlertidig billeder
2013-05-31 23:27 - 2011-01-14 17:10 - 00002669 ____A C:\Users\starman\Desktop\Microsoft Word 2010.lnk
2013-05-31 22:37 - 2011-01-13 00:05 - 00000000 ____D C:\users\starman
2013-05-30 00:37 - 2013-05-30 00:37 - 00001213 ____A C:\AdwCleaner[R1].txt
2013-05-29 22:22 - 2011-01-14 15:16 - 01051518 ____A C:\Users\starman\danid.log.1
2013-05-23 23:18 - 2011-01-14 03:36 - 00002027 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2013-05-22 23:16 - 2013-05-22 23:15 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-05-22 23:15 - 2013-05-22 23:15 - 00001758 ____A C:\Users\Public\Desktop\QuickTime Player.lnk
2013-05-22 16:55 - 2013-05-22 16:55 - 00012859 ____A C:\Users\starman\Desktop\hijackthis.log
2013-05-21 21:31 - 2013-05-21 21:31 - 00001545 ____A C:\Users\starman\Desktop\AdwCleaner[S1].txt
2013-05-21 21:19 - 2013-05-21 21:19 - 00000178 ____A C:\Windows\DeleteOnReboot.bat
2013-05-21 21:19 - 2013-05-21 21:18 - 00001545 ____A C:\AdwCleaner[S1].txt
2013-05-21 21:16 - 2013-05-21 21:18 - 00632031 ____A C:\Users\starman\Desktop\adwcleaner.exe
2013-05-21 21:16 - 2013-05-21 21:16 - 00632031 ____A C:\Users\starman\Downloads\adwcleaner.exe
2013-05-20 23:44 - 2013-05-20 23:44 - 00012859 ____A C:\Users\starman\Desktop\hijackthis1.log
2013-05-20 23:41 - 2013-05-20 23:44 - 00388608 ____A (Trend Micro Inc.) C:\Users\starman\Desktop\HijackThis.exe
2013-05-20 23:41 - 2013-05-20 23:41 - 00388608 ____A (Trend Micro Inc.) C:\Users\starman\Downloads\HijackThis.exe
2013-05-18 00:35 - 2011-11-18 02:15 - 00000000 ____D C:\Users\starman\AppData\Roaming\Vso
2013-05-18 00:35 - 2011-09-13 23:16 - 00000000 ____D C:\Users\starman\AppData\Local\CrashDumps
2013-05-18 00:35 - 2011-06-20 23:54 - 00000000 ____D C:\Users\starman\AppData\Roaming\FileZilla
2013-05-17 11:09 - 2011-01-21 12:09 - 00000256 ____A C:\Windows\Tasks\Epson Printer Software Downloader.job
2013-05-16 22:40 - 2013-05-16 22:40 - 00001696 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\Program Files\iTunes
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\Program Files\iPod
2013-05-16 22:39 - 2013-05-16 22:39 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-05-15 01:32 - 2011-01-14 05:15 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-05-15 01:24 - 2006-11-02 14:35 - 75016696 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2013-05-15 00:00 - 2010-12-29 10:36 - 00000456 ____A C:\Windows\Tasks\PCDRScheduledMaintenance.job
2013-05-14 23:27 - 2012-03-29 20:52 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-05-14 23:27 - 2011-05-17 10:10 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-05-10 00:51 - 2011-03-26 12:37 - 00174593 ____A C:\Users\starman\Documents\opskrifter.txt

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


Last Boot: 2013-06-08 00:33

==================== End Of Log ============================

Farbar Recovery Scan Tool (x64) Version: 07-06-2013 02
Ran by starman at 2013-06-08 11:28:05
Running from C:\Users\starman\Desktop
Boot Mode: Safe Mode (with Networking)

================== Search: "services.exe" ===================

C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe
[2011-01-15 13:26] - [2009-04-11 08:27] - 0279552 ____A (Microsoft Corporation) D4E6D91C1349B7BFB3599A6ADA56851B

C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[2008-01-21 04:50] - [2008-01-21 04:50] - 0279040 ____A (Microsoft Corporation) 2B336AB6286D6C81FA02CBAB914E3C6C

C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8c\services.exe
[2011-01-15 13:26] - [2009-04-11 09:10] - 0384512 ____A (Microsoft Corporation) 934E0B7D77FF78C18D9F8891221B6DE3

C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_2b7e5beb85a67240\services.exe
[2008-01-21 04:49] - [2008-01-21 04:49] - 0384512 ____A (Microsoft Corporation) DFAC660F0F139276CC9299812DE42719

C:\Windows\SysWOW64\services.exe
[2011-01-15 13:26] - [2009-04-11 08:27] - 0279552 ____A (Microsoft Corporation) D4E6D91C1349B7BFB3599A6ADA56851B

C:\Windows\System32\services.exe
[2011-01-15 13:26] - [2009-04-11 09:10] - 0384512 ____A (Microsoft Corporation) 934E0B7D77FF78C18D9F8891221B6DE3

====== End Of Search ======

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-06-2013 02
Ran by starman at 2013-06-08 11:21:38 Run:
Running from C:\Users\starman\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Installed Programs =======================

ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 2.7.1.19610)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.202)
Adobe Flash Player 11 Plugin (Version: 11.7.700.202)
Adobe Reader X (10.1.7) - Dansk (Version: 10.1.7)
Adobe Shockwave Player 11.6 (Version: 11.6.8.638)
AMD APP SDK Runtime (Version: 10.0.937.2)
AMD Catalyst Install Manager (Version: 8.0.877.0)
AMD Fuel (Version: 2012.1116.1515.27190)
AMD VISION Engine Control Center (Version: 2012.1116.1515.27190)
AoA Audio Extractor
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Apple-programunderstøttelse (Version: 2.3.4)
Audacity 1.3.14 (Unicode)
Audacity 2.0
Bigasoft Total Video Converter 3.5.0.4265
Bonjour (Version: 3.0.0.10)
Bättre Multimedia-tangentbord (Version: 1.0.9.2)
CamStudio OSS Desktop Recorder (Version: 2.6 Beta r294)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.1116.1515.27190)
Catalyst Control Center InstallProxy (Version: 2008.0910.2138.36940)
Catalyst Control Center InstallProxy (Version: 2012.1116.1515.27190)
Catalyst Control Center Localization All (Version: 2012.1116.1515.27190)
CCC Help Chinese Standard (Version: 2012.1116.1514.27190)
CCC Help Chinese Traditional (Version: 2012.1116.1514.27190)
CCC Help Czech (Version: 2012.1116.1514.27190)
CCC Help Danish (Version: 2012.1116.1514.27190)
CCC Help Dutch (Version: 2012.1116.1514.27190)
CCC Help English (Version: 2012.1116.1514.27190)
CCC Help Finnish (Version: 2012.1116.1514.27190)
CCC Help French (Version: 2012.1116.1514.27190)
CCC Help German (Version: 2012.1116.1514.27190)
CCC Help Greek (Version: 2012.1116.1514.27190)
CCC Help Hungarian (Version: 2012.1116.1514.27190)
CCC Help Italian (Version: 2012.1116.1514.27190)
CCC Help Japanese (Version: 2012.1116.1514.27190)
CCC Help Korean (Version: 2012.1116.1514.27190)
CCC Help Norwegian (Version: 2012.1116.1514.27190)
CCC Help Polish (Version: 2012.1116.1514.27190)
CCC Help Portuguese (Version: 2012.1116.1514.27190)
CCC Help Russian (Version: 2012.1116.1514.27190)
CCC Help Spanish (Version: 2012.1116.1514.27190)
CCC Help Swedish (Version: 2012.1116.1514.27190)
CCC Help Thai (Version: 2012.1116.1514.27190)
CCC Help Turkish (Version: 2012.1116.1514.27190)
ccc-utility64 (Version: 2012.1116.1515.27190)
CCleaner (Version: 3.19)
CodeBlocks (Version: 8.02)
Compatibility Pack för Office 2007-systemet (Version: 12.0.6612.1000)
ConvertXtoDVD 4.1.19.365 (Version: 4.1.19.365)
CyberLink DVD Suite Deluxe (Version: 6.0.2111)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Epson Easy Photo Print 2 (Version: 2.1.0.0)
Epson Event Manager (Version: 2.30.00)
Epson Printer Software Downloader
Epson Printer Software Downloader (Version: 2.0.0)
EPSON Scan
Epson Stylus SX510W_TX550W Håndbog
EPSON SX510W Series Printer Uninstall
EpsonNet Print (Version: 2.4i)
EpsonNet Setup (Version: 3.1a)
Fences (Version: 1.0)
FileZilla Client 3.6.0.2 (Version: 3.6.0.2)
Free Video to Flash Converter version 4.7.23.324
GameMaker 8.1
Google Chrome (Version: 27.0.1453.94)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.145)
Hauppauge MCE XP/Vista Software Encoder (2.0.26268) (Version: 2.0.26268)
HP Active Support Library (Version: 3.1.9.1)
HP Customer Experience Enhancements (Version: 5.7.0.2784)
HP Easy Backup (Version: 1.0.7.0)
HP Easy Setup - Frontend (Version: 5.7.0.2799)
HP MediaSmart DVD (Version: 2.0.2213)
HP MediaSmart Music/Photo/Video (Version: 2.0.2217)
HP MediaSmart SmartMenu (Version: 2.0.8)
HP On-Screen Cap/Num/Scroll Lock Indicator
HP Picasso Media Center Add-In (Version: 9.1.7.0)
HP Recovery Manager RSS (Version: 91.0.0.10)
HP Update (Version: 5.002.007.004)
HPAsset component for HP Active Support Library (Version: 3.0.0.7)
iCloud (Version: 2.1.2.8)
IETester v0.4.11 (remove only) (Version: 0.4.11)
iTunes (Version: 11.0.3.42)
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
Java(TM) 6 Update 37 (Version: 6.0.370)
Java(TM) 6 Update 7 (Version: 1.6.0.70)
LabelPrint (Version: 2.5.0904)
LightScribe System Software  1.14.25.1 (Version: 1.14.25.1)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 3.5 Language Pack SP1 - dan (Version: 3.5.30729)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft .NET Framework 4.5 DAN Language Pack (Version: 4.5.50709)
Microsoft .NET Framework 4.5 DAN sprogpakke (Version: 4.5.50709)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Swedish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (Danish) 2010 (Version: 14.0.6029.1000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
MIKSOFT Mobile AMR converter
MinGW 5.1.6 (Version: 5.1.6)
MobileMe Control Panel (Version: 3.1.8.0)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee Reveal (Version: 7.0.35.7315)
My HP Games (Version: 1.0.0.62)
Norton Bootable Recovery Tool Wizard (Version: 5.1.0.26)
Norton Internet Security (Version: 20.3.1.22)
Notepad++ (Version: 5.9)
NVIDIA Drivers
Opera 11.64 (Version: 11.64.1403)
PhotoFiltre
Power2Go (Version: 6.0.2112)
PowerDirector (Version: 7.0.2202)
Python 2.5.2 (Version: 2.5.2150)
Quick Startup 2.9.0.823
QuickTime (Version: 7.74.80.86)
Realtek High Definition Audio Driver (Version: 6.0.1.5708)
Safari (Version: 5.34.57.2)
SharpDevelop 4.2 (Version: 4.2.8818)
SoftMCE Encoder (Version: 2.0.26268)
sp44626
Speccy (Version: 1.09)
SPORE Creature Creator Trial Edition (Version: 1.00.0000)
Spotify (Version: 0.8.5.1333.g822e0de8)
Sprogpakke til Microsoft .NET Framework 3.5 SP1 - dansk
swMSM (Version: 12.0.0.1)
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2750147) (Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Verktyg för Hårdvarudiagnostik (Version: 5.1.4976.17)
VLC media player 2.0.4 (Version: 2.0.4)
Windows Movie Maker 2.6 (Version: 2.6.4040.0)
WinZip 14.5 (Version: 14.5.9095)
Wisdom-soft Set up ScreenHunter 5.1 Free
XAMPP 1.7.4
Xvid 1.2.2 final uninstall (Version: 1.2)

==================== Restore Points  =========================

14-05-2013 23:17:11 Windows Update
04-06-2013 01:00:11 Windows Update

==================== Hosts content: ==========================

::1            localhost

127.0.0.1      localhost


==================== Faulty Device Manager Devices =============

Name: eHome Infrarød modtager (USBCIR)
Description: eHome Infrarød modtager (USBCIR)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Microsoft
Service: usbcir
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: IR-brugerenheder
Description: IR-brugerenheder
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: circlass
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (06/08/2013 11:14:28 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/08/2013 11:13:34 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/08/2013 00:20:09 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/08/2013 00:19:12 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/07/2013 10:47:27 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2013 10:46:30 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/07/2013 10:45:09 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2013 10:44:15 AM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/06/2013 10:13:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2013 10:12:02 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


System errors:
=============
Error: (06/08/2013 11:14:28 AM) (Source: Service Control Manager) (User: )
Description: BHDrvx64
ccSet_NIS
eeCtrl
i8042prt
IDSVia64
spldr
SRTSP
SRTSPX
SymIRON
SYMTDIv
Wanarpv6

Error: (06/08/2013 11:14:28 AM) (Source: Service Control Manager) (User: )
Description: ComputerbrowserServer%%1068

Error: (06/08/2013 11:13:41 AM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (06/08/2013 11:13:41 AM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (06/08/2013 11:13:36 AM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (06/08/2013 11:13:34 AM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (06/08/2013 11:13:27 AM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (06/08/2013 00:20:09 AM) (Source: Service Control Manager) (User: )
Description: BHDrvx64
ccSet_NIS
eeCtrl
i8042prt
IDSVia64
spldr
SRTSP
SRTSPX
SymIRON
SYMTDIv
Wanarpv6

Error: (06/08/2013 00:20:09 AM) (Source: Service Control Manager) (User: )
Description: ComputerbrowserServer%%1068

Error: (06/08/2013 00:19:21 AM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Microsoft Office Sessions:
=========================
Error: (06/08/2013 11:14:28 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/08/2013 11:13:34 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/08/2013 00:20:09 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/08/2013 00:19:12 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/07/2013 10:47:27 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2013 10:46:30 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/07/2013 10:45:09 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/07/2013 10:44:15 AM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (06/06/2013 10:13:04 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/06/2013 10:12:02 PM) (Source: EventSystem)(User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c


CodeIntegrity Errors:
===================================
  Date: 2013-06-08 11:21:21.186
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 11:21:20.905
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 11:21:20.593
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 11:21:20.328
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\SYMEVENT64x86.SYS because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 11:21:16.257
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130515.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 11:21:15.991
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130515.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 11:21:15.757
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130515.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 11:21:15.477
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130515.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 00:59:53.780
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130515.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-08 00:59:53.546
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.3.1.22\Definitions\BASHDefs\20130515.001\BHDrvx64.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Percentage of memory in use: 19%
Total physical RAM: 5117.58 MB
Available physical RAM: 4134.42 MB
Total Pagefile: 10381.69 MB
Available Pagefile: 9537.9 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: (HP) (Fixed) (Total:915.7 GB) (Free:846.53 GB) NTFS (Disk=0 Partition=1) ==>[Drive with boot components (obtained from BCD)]
Drive d: (FACTORY_IMAGE) (Fixed) (Total:15.81 GB) (Free:2.19 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 14FE2EB3)
Partition 1: (Active) - (Size=916 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=16 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-06-2013 02
Ran by starman at 2013-06-08 14:55:39 Run:1
Running from C:\Users\starman\Desktop
Boot Mode: Safe Mode (with Networking)
==============================================

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Windows Defender => Value deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\EPSON SX510W Series => Value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{63E04CE7-2B55-404A-9E7A-BAC5D5E49768} => Key deleted successfully.
HKCR\CLSID\{63E04CE7-2B55-404A-9E7A-BAC5D5E49768} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} => Key deleted successfully.
HKCR\CLSID\{C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} => Key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EB077C9A-9EC8-4F9E-84BA-71013AD375AB} => Key deleted successfully.
HKCR\CLSID\{EB077C9A-9EC8-4F9E-84BA-71013AD375AB} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{63E04CE7-2B55-404A-9E7A-BAC5D5E49768} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{63E04CE7-2B55-404A-9E7A-BAC5D5E49768} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EB077C9A-9EC8-4F9E-84BA-71013AD375AB} => Key deleted successfully.
HKCR\Wow6432Node\CLSID\{EB077C9A-9EC8-4F9E-84BA-71013AD375AB} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key deleted successfully.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{63E04CE7-2B55-404A-9E7A-BAC5D5E49768} => Key deleted successfully.
HKCR\CLSID\{63E04CE7-2B55-404A-9E7A-BAC5D5E49768} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} => Key deleted successfully.
HKCR\CLSID\{C5B5E45A-A2F7-4809-AF33-3F75282D2CB7} => Key not found.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EB077C9A-9EC8-4F9E-84BA-71013AD375AB} => Key deleted successfully.
HKCR\CLSID\{EB077C9A-9EC8-4F9E-84BA-71013AD375AB} => Key not found.
MBAMScheduler => Service deleted successfully.
MBAMService => Service deleted successfully.

==== End of Fixlog ====

ComboFix 13-06-08.02 - starman 12-06-2013  22:47:29.2.3 - x64
Microsoft® Windows Vista™ Home Premium  6.0.6002.2.1252.45.1030.18.5118.2758 [GMT 2:00]
Kører fra: c:\users\starman\Desktop\ComboFix.exe
AV: Norton Internet Security *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((  Filer skabt fra 2013-05-12 til 2013-06-12  )))))))))))))))))))))))))))))))))))
.
.
2013-06-12 20:53 . 2013-06-12 20:53    --------    d-----w-    c:\users\Default\AppData\Local\temp
2013-06-12 18:36 . 2012-06-02 22:19    57880    ----a-w-    c:\windows\system32\wuauclt.exe
2013-06-12 18:36 . 2012-06-02 22:19    44056    ----a-w-    c:\windows\system32\wups2.dll
2013-06-12 18:36 . 2012-06-02 22:19    2428952    ----a-w-    c:\windows\system32\wuaueng.dll
2013-06-12 18:36 . 2012-06-02 22:15    2622464    ----a-w-    c:\windows\system32\wucltux.dll
2013-06-12 18:34 . 2012-06-02 13:19    186752    ----a-w-    c:\windows\system32\wuwebv.dll
2013-06-12 18:34 . 2012-06-02 13:19    171904    ----a-w-    c:\windows\SysWow64\wuwebv.dll
2013-06-12 18:34 . 2012-06-02 13:15    36864    ----a-w-    c:\windows\system32\wuapp.exe
2013-06-12 18:34 . 2012-06-02 13:12    33792    ----a-w-    c:\windows\SysWow64\wuapp.exe
2013-06-11 23:04 . 2013-06-11 23:04    174200    ----a-w-    c:\windows\system32\drivers\SYMEVENT64x86.SYS
2013-06-11 23:04 . 2013-06-11 23:04    --------    d-----w-    c:\program files\Symantec
2013-06-11 23:04 . 2013-06-11 23:04    --------    d-----w-    c:\program files\Common Files\Symantec Shared
2013-06-11 23:03 . 2013-06-12 19:52    --------    d-----w-    c:\windows\system32\drivers\NISx64
2013-06-11 23:03 . 2013-06-11 23:03    --------    d-----w-    c:\program files (x86)\Norton Internet Security
2013-06-11 22:35 . 2013-06-11 22:35    --------    d-----w-    c:\windows\SysWow64\spool
2013-06-11 22:33 . 2013-06-11 22:33    --------    d-----w-    c:\program files (x86)\Opera
2013-06-11 22:32 . 2013-06-11 22:32    --------    d-----w-    c:\program files (x86)\Mozilla Maintenance Service
2013-06-11 22:30 . 2013-06-11 22:30    --------    d-----w-    c:\program files (x86)\Google
2013-06-11 22:23 . 2013-06-11 22:23    98816    ----a-w-    c:\windows\SysWow64\mfps.dll
2013-06-11 22:20 . 2013-06-11 22:20    3584    ----a-w-    c:\windows\system32\drivers\sv-SE\dxgkrnl.sys.mui
2013-06-11 22:04 . 2013-06-11 22:07    --------    d-----w-    c:\windows\SysWow64\ca-ES
2013-06-11 22:04 . 2013-06-11 22:06    --------    d-----w-    c:\windows\SysWow64\eu-ES
2013-06-11 22:04 . 2013-06-11 22:06    --------    d-----w-    c:\windows\SysWow64\vi-VN
2013-06-11 22:04 . 2013-06-11 22:05    --------    d-----w-    c:\windows\system32\ca-ES
2013-06-11 22:04 . 2013-06-11 22:05    --------    d-----w-    c:\windows\system32\eu-ES
2013-06-11 22:04 . 2013-06-11 22:05    --------    d-----w-    c:\windows\system32\vi-VN
2013-06-11 21:56 . 2013-06-11 21:56    --------    d-----w-    c:\windows\system32\SPReview
2013-06-11 21:25 . 2009-04-10 22:11    946688    ----a-w-    c:\windows\system32\scavenge.dll
2013-06-11 21:25 . 2009-04-10 22:10    56320    ----a-w-    c:\windows\system32\compcln.exe
2013-06-11 21:25 . 2009-04-11 08:23    3584    ----a-w-    c:\windows\system32\drivers\nb-NO\hdaudbus.sys.mui
2013-06-11 21:25 . 2009-04-11 08:23    3584    ----a-w-    c:\windows\system32\drivers\fi-FI\hdaudbus.sys.mui
2013-06-11 21:25 . 2009-04-10 22:07    3584    ----a-w-    c:\windows\system32\drivers\en-US\hdaudbus.sys.mui
2013-06-11 21:25 . 2009-04-11 08:20    7680    ----a-w-    c:\windows\system32\drivers\nb-NO\bthport.sys.mui
2013-06-11 21:25 . 2009-04-11 08:20    7168    ----a-w-    c:\windows\system32\drivers\fi-FI\bthport.sys.mui
2013-06-11 21:25 . 2009-04-10 22:05    7680    ----a-w-    c:\windows\system32\drivers\en-US\bthport.sys.mui
2013-06-11 21:17 . 2009-04-11 08:27    3584    ----a-w-    c:\windows\system32\drivers\sv-SE\hdaudbus.sys.mui
2013-06-11 21:17 . 2009-04-11 08:23    3584    ----a-w-    c:\windows\system32\drivers\da-DK\hdaudbus.sys.mui
2013-06-11 21:17 . 2009-04-11 08:47    40960    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\sv\Microsoft.Ink.Resources.dll
2013-06-11 21:17 . 2009-04-11 08:45    40960    ----a-w-    c:\program files\Common Files\Microsoft Shared\ink\da\Microsoft.Ink.Resources.dll
2013-06-11 21:17 . 2009-04-11 08:20    7680    ----a-w-    c:\windows\system32\drivers\da-DK\bthport.sys.mui
2013-06-11 21:17 . 2009-04-11 08:25    7680    ----a-w-    c:\windows\system32\drivers\sv-SE\bthport.sys.mui
2013-06-11 21:11 . 2009-04-10 22:11    980480    ----a-w-    c:\windows\system32\printui.dll
2013-06-11 21:10 . 2009-04-10 22:11    547328    ----a-w-    c:\windows\system32\termsrv.dll
2013-06-11 21:09 . 2009-04-10 22:15    19432    ----a-w-    c:\windows\system32\drivers\spldr.sys
2013-06-11 20:19 . 2013-06-11 20:19    --------    d-----w-    c:\windows\system32\EventProviders
2013-06-11 19:14 . 2013-06-11 19:14    --------    d-----w-    c:\program files (x86)\MSXML 4.0
2013-06-11 19:09 . 2010-02-24 09:28    294912    ----a-w-    c:\windows\system32\browserchoice.exe
2013-06-11 19:07 . 2010-02-20 23:15    32768    ----a-w-    c:\windows\system32\nshhttp.dll
2013-06-11 19:07 . 2010-02-20 23:06    24064    ----a-w-    c:\windows\SysWow64\nshhttp.dll
2013-06-11 19:07 . 2010-02-20 23:14    33792    ----a-w-    c:\windows\system32\httpapi.dll
2013-06-11 19:07 . 2010-02-20 23:05    30720    ----a-w-    c:\windows\SysWow64\httpapi.dll
2013-06-11 19:07 . 2010-02-20 21:30    620032    ----a-w-    c:\windows\system32\drivers\http.sys
2013-06-11 17:11 . 2013-06-12 18:29    --------    d-----w-    c:\program files (x86)\Common Files\Symantec Shared
2013-06-11 16:41 . 2013-06-11 16:41    --------    d-----w-    c:\program files (x86)\Common Files\Java
2013-06-11 16:38 . 2013-06-11 16:38    866720    ----a-w-    c:\windows\SysWow64\npDeployJava1.dll
2013-06-11 16:38 . 2013-06-11 16:38    788896    ----a-w-    c:\windows\SysWow64\deployJava1.dll
2013-06-11 16:38 . 2013-06-11 16:38    95648    ----a-w-    c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-11 16:38 . 2013-06-11 16:38    --------    d-----w-    c:\program files (x86)\Java
2013-06-11 16:28 . 2013-05-02 00:06    278800    ------w-    c:\windows\system32\MpSigStub.exe
2013-06-11 16:16 . 2009-09-10 15:27    1486848    ----a-w-    c:\program files\Windows Media Player\setup_wm.exe
2013-06-11 16:16 . 2009-09-10 14:58    1418752    ----a-w-    c:\program files (x86)\Windows Media Player\setup_wm.exe
2013-06-11 16:16 . 2009-09-10 15:27    372736    ----a-w-    c:\windows\system32\unregmp2.exe
2013-06-11 16:16 . 2009-09-10 14:58    310784    ----a-w-    c:\windows\SysWow64\unregmp2.exe
2013-06-11 16:13 . 2011-01-21 16:50    12899840    ----a-w-    c:\windows\system32\shell32.dll
2013-06-11 16:13 . 2011-01-21 16:50    456192    ----a-w-    c:\windows\system32\shlwapi.dll
2013-06-11 16:11 . 2010-01-29 15:40    1616384    ----a-w-    c:\program files (x86)\Windows Mail\msoe.dll
2013-06-11 16:10 . 2009-07-15 14:47    368128    ----a-w-    c:\windows\system32\wmpdxm.dll
2013-06-11 16:09 . 2010-11-06 11:18    500224    ----a-w-    c:\windows\system32\wmicmiplugin.dll
2013-06-11 15:56 . 2013-06-11 15:57    --------    d-----w-    c:\program files (x86)\Microsoft Works
2013-06-11 15:53 . 2013-06-11 17:00    --------    d-----w-    c:\users\starman
.
.
.
((((((((((((((((((((((((((((((((((((((((  Find3M Rapport  ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-11 16:51 . 2010-12-28 17:18    588472    ----a-w-    c:\windows\SysWow64\ezsvc7x.dll
2013-06-03 16:16 . 2006-11-02 12:35    75898224    ----a-w-    c:\windows\system32\mrt.exe
.
.
(((((((((((((((((((((((((((((((((((  Start steder i reg.basen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Bemærk* tomme linier & lovlige standard linier vises ikke 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2007-04-18 65536]
"KBD"="c:\program files (x86)\Hewlett-Packard\KBD\KbdStub.EXE" [2008-07-21 12288]
"OsdMaestro"="c:\program files\Hewlett-Packard\On-Screen OSD Indicator\OSD64.exe" [2007-02-15 119296]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-01 61440]
"HP Health Check Scheduler"="c:\program files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-10-09 75008]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePDIRShortCut"="c:\program files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePSTShortCut"="c:\program files (x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe" [2008-09-11 210216]
"TSMAgent"="c:\program files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe" [2008-10-17 1152296]
"CLMLServer for HP TouchSmart"="c:\program files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe" [2008-10-17 189736]
"DVDAgent"="c:\program files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe" [2008-09-26 1148200]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
--- Andre Services/Drivers i Hukommelsen ---
.
*NewlyCreated* - WS2IFSL
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
Themes
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-11 22:30    1165776    ----a-w-    c:\program files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrmstp.exe
.
Indhold af mappen 'Planlagte Opgaver'
.
2013-06-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-11 22:30]
.
2013-06-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-06-11 22:30]
.
2013-06-11 c:\windows\Tasks\PCDRScheduledMaintenance.job
- c:\program files\PC-Doctor for Windows\pcdr5cuiw32.exe [2008-09-10 16:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OsdMaestro"="c:\program files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [BU]
"SmartMenu"="c:\program files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [BU]
.
------- Yderligere scanning -------
.
uStart Page = hxxp://www.google.dk/
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=da_dk&c=91&bd=Pavilion&pf=cndt
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=da_dk&c=91&bd=Pavilion&pf=cndt
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: &AOL Toolbar-søgning - c:\programdata\AOL\ieToolbar\resources\da-DK\local\search.html
TCP: DhcpNameServer = 89.249.14.50 89.249.14.54
FF - ProfilePath -
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\18.7.1.3\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\18.7.1.3\diMaster.dll\" /prefetch:1"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\PCD5SRVC{8AAF211B-043E02A9-05040000}]
"ImagePath"="\??\c:\progra~1\PC-DOC~1\PCD5SRVC_x64.pkms"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{55662437-DA8C-40c0-AADA-2C816A897A49}]
"ImagePath"="\??\c:\program files (x86)\Hewlett-Packard\Media\DVD\000.fcl"
.
--------------------- LÅSTE REGISTRERINGS NØGLER ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.9"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash9f.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil9f.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil9f.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D4304BCF-B8E9-4B35-BEA0-DC5B522670C2}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
  00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
Gennemført tid: 2013-06-12  22:55:45
ComboFix-quarantined-files.txt  2013-06-12 20:55
ComboFix2.txt  2013-06-12 20:42
.
Pre-Kørsel: 937.045.929.984 byte ledig
Post-Kørsel: 936.662.134.784 byte ledig
.
- - End Of File - - B52B93BA3FB80FCACD42517DC432F3BB
81CD5EC01DB0CE57EDD853F82462EF27

Farbar Service Scanner Version: 31-05-2013 01
Ran by starman (administrator) on 13-06-2013 at 14:05:04
Running from "C:\Users\starman\Desktop"
Windows Vista (TM) Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2013-06-11 23:11] - [2009-04-11 00:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-06-11 18:10] - [2010-06-16 19:11] - 1426816 ____A (Microsoft Corporation) 973658A2EA9C06B2976884B9046DFC6C

C:\Windows\System32\dnsrslvr.dll
[2013-06-11 18:09] - [2011-03-02 18:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2013-06-11 23:12] - [2009-04-11 00:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2013-06-11 23:11] - [2009-04-11 00:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2013-06-11 23:11] - [2009-04-11 00:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2013-06-11 23:10] - [2009-04-11 00:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2013-06-11 23:10] - [2009-04-11 00:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2013-06-11 23:12] - [2009-04-11 00:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2013-06-11 23:11] - [2009-04-11 00:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2013-06-11 23:11] - [2009-04-11 00:11] - 0166912 ____A (Microsoft Corporation) 18918613E63F387CDE4D95CA7D49DCF7

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2013-06-11 23:11] - [2009-04-11 00:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****

RogueKiller V8.6.0 [Jun 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows Vista
Started in : Normal mode
User : starman [Admin rights]
Mode : Scan -- Date : 06/14/2013 21:47:17
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1      localhost
::1            localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD10 01FAES-60Z2A SCSI Disk Device +++++
--- User ---
[MBR] b62502217ed42f5e45ed423d3358a6e6
[BSP] cafba195f8cd9772d5e1b3f4efb52686 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 937676 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1920361905 | Size: 16190 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[0]_S_06142013_214717.txt >>

RogueKiller V8.6.0 [Jun 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows Vista
Started in : Normal mode
User : starman [Admin rights]
Mode : HOSTSFix -- Date : 06/14/2013 21:49:05
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1      localhost
::1            localhost


¤¤¤ Reset HOSTS: ¤¤¤
127.0.0.1    localhost


Finished : << RKreport[1]_H_06142013_214905.txt >>
RKreport[0]_S_06142013_214717.txt

RogueKiller V8.6.0 [Jun 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows Vista
Started in : Normal mode
User : starman [Admin rights]
Mode : Scan -- Date : 06/14/2013 21:51:55
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1    localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD10 01FAES-60Z2A SCSI Disk Device +++++
--- User ---
[MBR] b62502217ed42f5e45ed423d3358a6e6
[BSP] cafba195f8cd9772d5e1b3f4efb52686 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 937676 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1920361905 | Size: 16190 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[2]_S_06142013_215155.txt >>
RKreport[0]_S_06142013_214717.txt;RKreport[1]_H_06142013_214905.txt

RogueKiller V8.6.0 [Jun 14 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows Vista
Started in : Normal mode
User : starman [Admin rights]
Mode : Remove -- Date : 06/14/2013 21:52:37
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> [0x2] Den angivne fil blev ikke fundet.
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection :  ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1    localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD10 01FAES-60Z2A SCSI Disk Device +++++
--- User ---
[MBR] b62502217ed42f5e45ed423d3358a6e6
[BSP] cafba195f8cd9772d5e1b3f4efb52686 : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 937676 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1920361905 | Size: 16190 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[3]_D_06142013_215237.txt >>
RKreport[0]_S_06142013_214717.txt;RKreport[1]_H_06142013_214905.txt;RKreport[2]_S_06142013_215155.txt

Malwarebytes Anti-Malware (Prøveversion) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.06.14.07

Windows Vista Service Pack 2 x64 NTFS
Internet Explorer 9.0.8112.16421
starman :: STARMAN-PC [administrator]

Beskyttelse: Slået til

14-06-2013 21:56:29
mbam-log-2013-06-14 (21-56-29).txt

Skanningstype: Fuldstændig skanning (C:\|D:\|)
Skanningsmuligheder valgt: Hukommelse | Opstart | Registreringsdatabasen | Filsystem | Heuristics/Ekstra | Heuristics/Shuriken | PUP | PUM
Skanningsmuligheder som er deaktiverede: P2P
Objekter skannet: 384690
Tid gået: 48 minut(ter), 31 sekund(er)

Hukommelses Processorer Inficeret: 0
(Ingen skadelige objekter blev fundet)

Hukommelses Moduler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasenøgler Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabaseværdier Inficeret: 0
(Ingen skadelige objekter blev fundet)

Registreringsdatabasedata Objekter Inficeret: 0
(Ingen skadelige objekter blev fundet)

Inficerede Mapper: 0
(Ingen skadelige objekter blev fundet)

Inficerede Filer: 0
(Ingen skadelige objekter blev fundet)

(færdig)

11:43:44.0536 4304  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:43:45.0354 4304  ============================================================
11:43:45.0354 4304  Current date / time: 2013/06/15 11:43:45.0354
11:43:45.0354 4304  SystemInfo:
11:43:45.0354 4304 
11:43:45.0354 4304  OS Version: 6.0.6002 ServicePack: 2.0
11:43:45.0354 4304  Product type: Workstation
11:43:45.0354 4304  ComputerName: STARMAN-PC
11:43:45.0354 4304  UserName: starman
11:43:45.0354 4304  Windows directory: C:\Windows
11:43:45.0354 4304  System windows directory: C:\Windows
11:43:45.0354 4304  Running under WOW64
11:43:45.0354 4304  Processor architecture: Intel x64
11:43:45.0354 4304  Number of processors: 3
11:43:45.0354 4304  Page size: 0x1000
11:43:45.0354 4304  Boot type: Normal boot
11:43:45.0354 4304  ============================================================
11:43:45.0928 4304  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:43:45.0949 4304  ============================================================
11:43:45.0949 4304  \Device\Harddisk0\DR0:
11:43:45.0949 4304  MBR partitions:
11:43:45.0949 4304  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x72766572
11:43:45.0949 4304  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x727665B1, BlocksNum 0x1F9F410
11:43:45.0949 4304  ============================================================
11:43:45.0990 4304  C: <-> \Device\Harddisk0\DR0\Partition1
11:43:46.0038 4304  D: <-> \Device\Harddisk0\DR0\Partition2
11:43:46.0038 4304  ============================================================
11:43:46.0038 4304  Initialize success
11:43:46.0038 4304  ============================================================
11:44:42.0480 4460  ============================================================
11:44:42.0480 4460  Scan started
11:44:42.0480 4460  Mode: Manual;
11:44:42.0480 4460  ============================================================
11:44:43.0162 4460  ================ Scan system memory ========================
11:44:43.0162 4460  System memory - ok
11:44:43.0163 4460  ================ Scan services =============================
11:44:43.0497 4460  [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI            C:\Windows\system32\drivers\acpi.sys
11:44:43.0501 4460  ACPI - ok
11:44:43.0555 4460  [ F14215E37CF124104575073F782111D2 ] adp94xx        C:\Windows\system32\drivers\adp94xx.sys
11:44:43.0564 4460  adp94xx - ok
11:44:43.0577 4460  [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci        C:\Windows\system32\drivers\adpahci.sys
11:44:43.0584 4460  adpahci - ok
11:44:43.0593 4460  [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
11:44:43.0596 4460  adpu160m - ok
11:44:43.0606 4460  [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320        C:\Windows\system32\drivers\adpu320.sys
11:44:43.0610 4460  adpu320 - ok
11:44:43.0636 4460  [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc    C:\Windows\System32\aelupsvc.dll
11:44:43.0637 4460  AeLookupSvc - ok
11:44:43.0686 4460  [ C4F6CE6087760AD70960C9EB130E7943 ] AFD            C:\Windows\system32\drivers\afd.sys
11:44:43.0690 4460  AFD - ok
11:44:43.0716 4460  [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440          C:\Windows\system32\drivers\agp440.sys
11:44:43.0718 4460  agp440 - ok
11:44:43.0746 4460  [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx        C:\Windows\system32\drivers\djsvs.sys
11:44:43.0748 4460  aic78xx - ok
11:44:43.0756 4460  [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG            C:\Windows\System32\alg.exe
11:44:43.0757 4460  ALG - ok
11:44:43.0764 4460  [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:44:43.0765 4460  aliide - ok
11:44:43.0773 4460  [ 970FA5059E61E30D25307B99903E991E ] amdide          C:\Windows\system32\drivers\amdide.sys
11:44:43.0776 4460  amdide - ok
11:44:43.0783 4460  [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8          C:\Windows\system32\drivers\amdk8.sys
11:44:43.0785 4460  AmdK8 - ok
11:44:43.0812 4460  [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo        C:\Windows\System32\appinfo.dll
11:44:43.0814 4460  Appinfo - ok
11:44:43.0835 4460  [ BA8417D4765F3988FF921F30F630E303 ] arc            C:\Windows\system32\drivers\arc.sys
11:44:43.0837 4460  arc - ok
11:44:43.0845 4460  [ 9D41C435619733B34CC16A511E644B11 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:44:43.0848 4460  arcsas - ok
11:44:43.0866 4460  [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:44:43.0867 4460  AsyncMac - ok
11:44:43.0889 4460  [ E68D9B3A3905619732F7FE039466A623 ] atapi          C:\Windows\system32\drivers\atapi.sys
11:44:43.0890 4460  atapi - ok
11:44:43.0936 4460  [ BC6AF5C637EB2381A38CC856726BD8C9 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
11:44:43.0946 4460  Ati External Event Utility - ok
11:44:44.0068 4460  [ 56160711B10AA0EF864340AABF1380AB ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:44:44.0170 4460  atikmdag - ok
11:44:44.0228 4460  [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:44:44.0234 4460  AudioEndpointBuilder - ok
11:44:44.0245 4460  [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:44:44.0250 4460  AudioSrv - ok
11:44:44.0276 4460  Beep - ok
11:44:44.0329 4460  [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE            C:\Windows\System32\bfe.dll
11:44:44.0334 4460  BFE - ok
11:44:44.0590 4460  [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\BASHDefs\20130531.001\BHDrvx64.sys
11:44:44.0605 4460  BHDrvx64 - ok
11:44:44.0667 4460  [ 6D316F4859634071CC25C4FD4589AD2C ] BITS            C:\Windows\system32\qmgr.dll
11:44:44.0682 4460  BITS - ok
11:44:44.0690 4460  [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
11:44:44.0692 4460  blbdrive - ok
11:44:44.0730 4460  [ 2348447A80920B2493A9B582A23E81E1 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:44:44.0732 4460  bowser - ok
11:44:44.0746 4460  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
11:44:44.0747 4460  BrFiltLo - ok
11:44:44.0755 4460  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
11:44:44.0757 4460  BrFiltUp - ok
11:44:44.0787 4460  [ A1B39DE453433B115B4EA69EE0343816 ] Browser        C:\Windows\System32\browser.dll
11:44:44.0789 4460  Browser - ok
11:44:44.0798 4460  [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid        C:\Windows\system32\drivers\brserid.sys
11:44:44.0801 4460  Brserid - ok
11:44:44.0808 4460  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
11:44:44.0810 4460  BrSerWdm - ok
11:44:44.0818 4460  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
11:44:44.0819 4460  BrUsbMdm - ok
11:44:44.0827 4460  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
11:44:44.0828 4460  BrUsbSer - ok
11:44:44.0837 4460  [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
11:44:44.0839 4460  BTHMODEM - ok
11:44:44.0852 4460  [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:44:44.0855 4460  cdfs - ok
11:44:44.0886 4460  [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom          C:\Windows\system32\DRIVERS\cdrom.sys
11:44:44.0888 4460  cdrom - ok
11:44:44.0929 4460  [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc    C:\Windows\System32\certprop.dll
11:44:44.0931 4460  CertPropSvc - ok
11:44:44.0938 4460  [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:44:44.0939 4460  circlass - ok
11:44:44.0985 4460  [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS            C:\Windows\system32\CLFS.sys
11:44:44.0993 4460  CLFS - ok
11:44:45.0133 4460  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:44:45.0135 4460  clr_optimization_v2.0.50727_32 - ok
11:44:45.0197 4460  [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:44:45.0199 4460  clr_optimization_v2.0.50727_64 - ok
11:44:45.0213 4460  [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:44:45.0214 4460  cmdide - ok
11:44:45.0220 4460  [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
11:44:45.0221 4460  Compbatt - ok
11:44:45.0226 4460  COMSysApp - ok
11:44:45.0232 4460  [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk        C:\Windows\system32\drivers\crcdisk.sys
11:44:45.0233 4460  crcdisk - ok
11:44:45.0259 4460  [ 1B22BC0B71F65001479DAB792C3F626C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:44:45.0261 4460  CryptSvc - ok
11:44:45.0307 4460  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:44:45.0317 4460  DcomLaunch - ok
11:44:45.0344 4460  [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:44:45.0347 4460  DfsC - ok
11:44:45.0456 4460  [ C647F468F7DE343DF8C143655C5557D4 ] DFSR            C:\Windows\system32\DFSR.exe
11:44:45.0492 4460  DFSR - ok
11:44:45.0510 4460  [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
11:44:45.0514 4460  Dhcp - ok
11:44:45.0561 4460  [ B0107E40ECDB5FA692EBF832F295D905 ] disk            C:\Windows\system32\drivers\disk.sys
11:44:45.0563 4460  disk - ok
11:44:45.0610 4460  [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:44:45.0612 4460  Dnscache - ok
11:44:45.0642 4460  [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc        C:\Windows\System32\dot3svc.dll
11:44:45.0646 4460  dot3svc - ok
11:44:45.0690 4460  [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS            C:\Windows\system32\dps.dll
11:44:45.0693 4460  DPS - ok
11:44:45.0721 4460  [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud        C:\Windows\system32\drivers\drmkaud.sys
11:44:45.0722 4460  drmkaud - ok
11:44:45.0783 4460  [ F3932288EEECD776FF1F9F653AD878F3 ] DXGKrnl        C:\Windows\System32\drivers\dxgkrnl.sys
11:44:45.0794 4460  DXGKrnl - ok
11:44:45.0826 4460  [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60          C:\Windows\system32\DRIVERS\E1G6032E.sys
11:44:45.0829 4460  E1G60 - ok
11:44:45.0850 4460  [ C2303883FD9BE49DC36A6400643002EA ] EapHost        C:\Windows\System32\eapsvc.dll
11:44:45.0852 4460  EapHost - ok
11:44:45.0894 4460  [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache          C:\Windows\system32\drivers\ecache.sys
11:44:45.0898 4460  Ecache - ok
11:44:46.0002 4460  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
11:44:46.0009 4460  eeCtrl - ok
11:44:46.0119 4460  [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr        C:\Windows\ehome\ehRecvr.exe
11:44:46.0124 4460  ehRecvr - ok
11:44:46.0140 4460  [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched        C:\Windows\ehome\ehsched.exe
11:44:46.0142 4460  ehSched - ok
11:44:46.0152 4460  [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart        C:\Windows\ehome\ehstart.dll
11:44:46.0153 4460  ehstart - ok
11:44:46.0169 4460  [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor        C:\Windows\system32\drivers\elxstor.sys
11:44:46.0176 4460  elxstor - ok
11:44:46.0218 4460  [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt        C:\Windows\system32\emdmgmt.dll
11:44:46.0223 4460  EMDMgmt - ok
11:44:46.0269 4460  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:44:46.0270 4460  EraserUtilRebootDrv - ok
11:44:46.0275 4460  [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:44:46.0277 4460  ErrDev - ok
11:44:46.0301 4460  [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem    C:\Windows\system32\es.dll
11:44:46.0304 4460  EventSystem - ok
11:44:46.0340 4460  [ 486844F47B6636044A42454614ED4523 ] exfat          C:\Windows\system32\drivers\exfat.sys
11:44:46.0344 4460  exfat - ok
11:44:46.0368 4460  ezSharedSvc - ok
11:44:46.0400 4460  [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat        C:\Windows\system32\drivers\fastfat.sys
11:44:46.0404 4460  fastfat - ok
11:44:46.0425 4460  [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc            C:\Windows\system32\DRIVERS\fdc.sys
11:44:46.0426 4460  fdc - ok
11:44:46.0443 4460  [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost        C:\Windows\system32\fdPHost.dll
11:44:46.0444 4460  fdPHost - ok
11:44:46.0449 4460  [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub        C:\Windows\system32\fdrespub.dll
11:44:46.0450 4460  FDResPub - ok
11:44:46.0455 4460  [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:44:46.0456 4460  FileInfo - ok
11:44:46.0461 4460  [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace      C:\Windows\system32\drivers\filetrace.sys
11:44:46.0462 4460  Filetrace - ok
11:44:46.0466 4460  [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:44:46.0467 4460  flpydisk - ok
11:44:46.0493 4460  [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:44:46.0495 4460  FltMgr - ok
11:44:46.0550 4460  [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache      C:\Windows\system32\FntCache.dll
11:44:46.0558 4460  FontCache - ok
11:44:46.0612 4460  [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:44:46.0612 4460  FontCache3.0.0.0 - ok
11:44:46.0645 4460  [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:44:46.0647 4460  Fs_Rec - ok
11:44:46.0662 4460  [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
11:44:46.0664 4460  gagp30kx - ok
11:44:46.0708 4460  [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
11:44:46.0710 4460  GameConsoleService - ok
11:44:46.0762 4460  [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc          C:\Windows\System32\gpsvc.dll
11:44:46.0771 4460  gpsvc - ok
11:44:46.0846 4460  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:44:46.0848 4460  gupdate - ok
11:44:46.0855 4460  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:44:46.0857 4460  gupdatem - ok
11:44:46.0928 4460  [ EBCCAF7D68E7878048D1F44A6325FB58 ] HCW85BDA        C:\Windows\system32\drivers\HCW85BDA.sys
11:44:46.0958 4460  HCW85BDA - ok
11:44:46.0976 4460  [ E55CA0624A437ECCB450C21E57BE46C4 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:44:46.0978 4460  hcw85cir - ok
11:44:47.0031 4460  [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:44:47.0036 4460  HdAudAddService - ok
11:44:47.0091 4460  [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:44:47.0101 4460  HDAudBus - ok
11:44:47.0139 4460  [ B4881C84A180E75B8C25DC1D726C375F ] HidBth          C:\Windows\system32\drivers\hidbth.sys
11:44:47.0141 4460  HidBth - ok
11:44:47.0149 4460  [ 5F47839455D01FF6403B008D481A6F5B ] HidIr          C:\Windows\system32\DRIVERS\hidir.sys
11:44:47.0150 4460  HidIr - ok
11:44:47.0174 4460  [ 59361D38A297755D46A540E450202B2A ] hidserv        C:\Windows\System32\hidserv.dll
11:44:47.0176 4460  hidserv - ok
11:44:47.0218 4460  [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:44:47.0219 4460  HidUsb - ok
11:44:47.0250 4460  [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:44:47.0252 4460  hkmsvc - ok
11:44:47.0285 4460  [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
11:44:47.0286 4460  HP Health Check Service - ok
11:44:47.0317 4460  [ DEAB3BF5AEFBDC3F9AC0E020926EC81D ] HPBtnSrv        C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe
11:44:47.0319 4460  HPBtnSrv - ok
11:44:47.0344 4460  [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs        C:\Windows\system32\drivers\hpcisss.sys
11:44:47.0346 4460  HpCISSs - ok
11:44:47.0400 4460  [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:44:47.0411 4460  HTTP - ok
11:44:47.0419 4460  [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp          C:\Windows\system32\drivers\i2omp.sys
11:44:47.0422 4460  i2omp - ok
11:44:47.0452 4460  [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
11:44:47.0453 4460  i8042prt - ok
11:44:47.0470 4460  [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV        C:\Windows\system32\drivers\iastorv.sys
11:44:47.0475 4460  iaStorV - ok
11:44:47.0532 4460  [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc          C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:44:47.0547 4460  idsvc - ok
11:44:47.0665 4460  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\IPSDefs\20130613.003\IDSvia64.sys
11:44:47.0673 4460  IDSVia64 - ok
11:44:47.0682 4460  [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp          C:\Windows\system32\drivers\iirsp.sys
11:44:47.0684 4460  iirsp - ok
11:44:47.0731 4460  [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT          C:\Windows\System32\ikeext.dll
11:44:47.0739 4460  IKEEXT - ok
11:44:47.0817 4460  [ 5F885046A7F420989C8366324FD2EF60 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:44:47.0834 4460  IntcAzAudAddService - ok
11:44:47.0842 4460  [ DF797A12176F11B2D301C5B234BB200E ] intelide        C:\Windows\system32\drivers\intelide.sys
11:44:47.0843 4460  intelide - ok
11:44:47.0851 4460  [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:44:47.0853 4460  intelppm - ok
11:44:47.0880 4460  [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum      C:\Windows\system32\ipbusenum.dll
11:44:47.0883 4460  IPBusEnum - ok
11:44:47.0922 4460  [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:44:47.0924 4460  IpFilterDriver - ok
11:44:47.0965 4460  [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:44:47.0969 4460  iphlpsvc - ok
11:44:47.0975 4460  IpInIp - ok
11:44:47.0986 4460  [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV        C:\Windows\system32\drivers\ipmidrv.sys
11:44:47.0988 4460  IPMIDRV - ok
11:44:47.0998 4460  [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT          C:\Windows\system32\DRIVERS\ipnat.sys
11:44:48.0001 4460  IPNAT - ok
11:44:48.0009 4460  [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:44:48.0010 4460  IRENUM - ok
11:44:48.0024 4460  [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:44:48.0025 4460  isapnp - ok
11:44:48.0067 4460  [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
11:44:48.0070 4460  iScsiPrt - ok
11:44:48.0077 4460  [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
11:44:48.0079 4460  iteatapi - ok
11:44:48.0106 4460  [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid        C:\Windows\system32\drivers\iteraid.sys
11:44:48.0107 4460  iteraid - ok
11:44:48.0115 4460  [ 423696F3BA6472DD17699209B933BC26 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:44:48.0117 4460  kbdclass - ok
11:44:48.0146 4460  [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:44:48.0148 4460  kbdhid - ok
11:44:48.0171 4460  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso          C:\Windows\system32\lsass.exe
11:44:48.0173 4460  KeyIso - ok
11:44:48.0210 4460  [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:44:48.0216 4460  KSecDD - ok
11:44:48.0231 4460  [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk        C:\Windows\system32\drivers\ksthunk.sys
11:44:48.0232 4460  ksthunk - ok
11:44:48.0276 4460  [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm          C:\Windows\system32\msdtckrm.dll
11:44:48.0282 4460  KtmRm - ok
11:44:48.0324 4460  [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer    C:\Windows\System32\srvsvc.dll
11:44:48.0327 4460  LanmanServer - ok
11:44:48.0365 4460  [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:44:48.0368 4460  LanmanWorkstation - ok
11:44:48.0445 4460  [ E75ADCFAFDEF3F4C3AF3332928D59926 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
11:44:48.0447 4460  LightScribeService - ok
11:44:48.0453 4460  [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:44:48.0454 4460  lltdio - ok
11:44:48.0476 4460  [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc        C:\Windows\System32\lltdsvc.dll
11:44:48.0480 4460  lltdsvc - ok
11:44:48.0486 4460  [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts        C:\Windows\System32\lmhsvc.dll
11:44:48.0487 4460  lmhosts - ok
11:44:48.0499 4460  [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
11:44:48.0501 4460  LSI_FC - ok
11:44:48.0510 4460  [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS        C:\Windows\system32\drivers\lsi_sas.sys
11:44:48.0513 4460  LSI_SAS - ok
11:44:48.0531 4460  [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
11:44:48.0533 4460  LSI_SCSI - ok
11:44:48.0541 4460  [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv          C:\Windows\system32\drivers\luafv.sys
11:44:48.0543 4460  luafv - ok
11:44:48.0571 4460  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector  C:\Windows\system32\drivers\mbam.sys
11:44:48.0572 4460  MBAMProtector - ok
11:44:48.0610 4460  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:44:48.0613 4460  MBAMScheduler - ok
11:44:48.0641 4460  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:44:48.0645 4460  MBAMService - ok
11:44:48.0664 4460  [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc        C:\Windows\system32\Mcx2Svc.dll
11:44:48.0667 4460  Mcx2Svc - ok
11:44:48.0675 4460  [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas        C:\Windows\system32\drivers\megasas.sys
11:44:48.0676 4460  megasas - ok
11:44:48.0693 4460  [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
11:44:48.0699 4460  MegaSR - ok
11:44:48.0723 4460  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS          C:\Windows\system32\mmcss.dll
11:44:48.0725 4460  MMCSS - ok
11:44:48.0731 4460  [ 59848D5CC74606F0EE7557983BB73C2E ] Modem          C:\Windows\system32\drivers\modem.sys
11:44:48.0732 4460  Modem - ok
11:44:48.0761 4460  [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor        C:\Windows\system32\DRIVERS\monitor.sys
11:44:48.0761 4460  monitor - ok
11:44:48.0766 4460  [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:44:48.0767 4460  mouclass - ok
11:44:48.0775 4460  [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:44:48.0776 4460  mouhid - ok
11:44:48.0781 4460  [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
11:44:48.0782 4460  MountMgr - ok
11:44:48.0824 4460  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:44:48.0825 4460  MozillaMaintenance - ok
11:44:48.0852 4460  [ F8276EB8698142884498A528DFEA8478 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:44:48.0854 4460  mpio - ok
11:44:48.0859 4460  [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:44:48.0861 4460  mpsdrv - ok
11:44:48.0901 4460  [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:44:48.0906 4460  MpsSvc - ok
11:44:48.0911 4460  [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
11:44:48.0912 4460  Mraid35x - ok
11:44:48.0922 4460  [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:44:48.0925 4460  MRxDAV - ok
11:44:48.0960 4460  [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:44:48.0962 4460  mrxsmb - ok
11:44:48.0979 4460  [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:44:48.0983 4460  mrxsmb10 - ok
11:44:49.0009 4460  [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:44:49.0011 4460  mrxsmb20 - ok
11:44:49.0016 4460  [ 1AC860612B85D8E85EE257D372E39F4D ] msahci          C:\Windows\system32\drivers\msahci.sys
11:44:49.0017 4460  msahci - ok
11:44:49.0022 4460  [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm          C:\Windows\system32\drivers\msdsm.sys
11:44:49.0024 4460  msdsm - ok
11:44:49.0037 4460  [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC          C:\Windows\System32\msdtc.exe
11:44:49.0040 4460  MSDTC - ok
11:44:49.0047 4460  [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:44:49.0048 4460  Msfs - ok
11:44:49.0053 4460  [ 00EBC952961664780D43DCA157E79B27 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:44:49.0053 4460  msisadrv - ok
11:44:49.0081 4460  [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI        C:\Windows\system32\iscsiexe.dll
11:44:49.0084 4460  MSiSCSI - ok
11:44:49.0089 4460  msiserver - ok
11:44:49.0103 4460  [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV        C:\Windows\system32\drivers\MSKSSRV.sys
11:44:49.0104 4460  MSKSSRV - ok
11:44:49.0108 4460  [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:44:49.0109 4460  MSPCLOCK - ok
11:44:49.0114 4460  [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM          C:\Windows\system32\drivers\MSPQM.sys
11:44:49.0114 4460  MSPQM - ok
11:44:49.0148 4460  [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC          C:\Windows\system32\drivers\MsRPC.sys
11:44:49.0153 4460  MsRPC - ok
11:44:49.0160 4460  [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
11:44:49.0161 4460  mssmbios - ok
11:44:49.0166 4460  [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE          C:\Windows\system32\drivers\MSTEE.sys
11:44:49.0167 4460  MSTEE - ok
11:44:49.0209 4460  [ 0CC49F78D8ACA0877D885F149084E543 ] Mup            C:\Windows\system32\Drivers\mup.sys
11:44:49.0210 4460  Mup - ok
11:44:49.0255 4460  [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent        C:\Windows\system32\qagentRT.dll
11:44:49.0263 4460  napagent - ok
11:44:49.0307 4460  [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP    C:\Windows\system32\DRIVERS\nwifi.sys
11:44:49.0311 4460  NativeWifiP - ok
11:44:49.0389 4460  [ 56540E526B46E379A476FB5BC381B290 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\VirusDefs\20130614.001\ENG64.SYS
11:44:49.0391 4460  NAVENG - ok
11:44:49.0445 4460  [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.6.0.29\Definitions\VirusDefs\20130614.001\EX64.SYS
11:44:49.0462 4460  NAVEX15 - ok
11:44:49.0526 4460  [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:44:49.0530 4460  NDIS - ok
11:44:49.0556 4460  [ 64DF698A425478E321981431AC171334 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:44:49.0557 4460  NdisTapi - ok
11:44:49.0565 4460  [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio        C:\Windows\system32\DRIVERS\ndisuio.sys
11:44:49.0566 4460  Ndisuio - ok
11:44:49.0591 4460  [ F8158771905260982CE724076419EF19 ] NdisWan        C:\Windows\system32\DRIVERS\ndiswan.sys
11:44:49.0593 4460  NdisWan - ok
11:44:49.0600 4460  [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy        C:\Windows\system32\drivers\NDProxy.sys
11:44:49.0602 4460  NDProxy - ok
11:44:49.0609 4460  [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS        C:\Windows\system32\DRIVERS\netbios.sys
11:44:49.0610 4460  NetBIOS - ok
11:44:49.0623 4460  [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt          C:\Windows\system32\DRIVERS\netbt.sys
11:44:49.0627 4460  netbt - ok
11:44:49.0654 4460  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon        C:\Windows\system32\lsass.exe
11:44:49.0656 4460  Netlogon - ok
11:44:49.0692 4460  [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman          C:\Windows\System32\netman.dll
11:44:49.0696 4460  Netman - ok
11:44:49.0705 4460  [ 7846D0136CC2B264926A73047BA7688A ] netprofm        C:\Windows\System32\netprofm.dll
11:44:49.0709 4460  netprofm - ok
11:44:49.0732 4460  [ 69993BF4A23BD6096D8DE5D2CF3011DB ] netr28x        C:\Windows\system32\DRIVERS\netr28x.sys
11:44:49.0741 4460  netr28x - ok
11:44:49.0770 4460  [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:44:49.0772 4460  NetTcpPortSharing - ok
11:44:49.0777 4460  [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960        C:\Windows\system32\drivers\nfrd960.sys
11:44:49.0778 4460  nfrd960 - ok
11:44:49.0919 4460  [ E78A365CC3E0FBFC018A33DCE01909F8 ] NIS            C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
11:44:49.0920 4460  NIS - ok
11:44:49.0947 4460  [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:44:49.0950 4460  NlaSvc - ok
11:44:49.0977 4460  [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:44:49.0978 4460  Npfs - ok
11:44:50.0007 4460  [ ACB62BAA1C319B17752553DF3026EEEB ] nsi            C:\Windows\system32\nsisvc.dll
11:44:50.0008 4460  nsi - ok
11:44:50.0013 4460  [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:44:50.0014 4460  nsiproxy - ok
11:44:50.0069 4460  [ 2ACCAA3C3C55370A32F17B3595E1A217 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:44:50.0101 4460  Ntfs - ok
11:44:50.0121 4460  [ DD5D684975352B85B52E3FD5347C20CB ] Null            C:\Windows\system32\drivers\Null.sys
11:44:50.0123 4460  Null - ok
11:44:50.0175 4460  [ 98350606682594521D56ECCB5D01ECF7 ] NVENETFD        C:\Windows\system32\DRIVERS\nvmfdx64.sys
11:44:50.0192 4460  NVENETFD - ok
11:44:50.0201 4460  [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:44:50.0204 4460  nvraid - ok
11:44:50.0237 4460  [ 011DB85AFFD2368348181C552E025D98 ] nvrd64          C:\Windows\system32\drivers\nvrd64.sys
11:44:50.0241 4460  nvrd64 - ok
11:44:50.0274 4460  [ 16D36074B84DA72D160233C8D132DC89 ] nvsmu          C:\Windows\system32\drivers\nvsmu.sys
11:44:50.0276 4460  nvsmu - ok
11:44:50.0283 4460  [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:44:50.0285 4460  nvstor - ok
11:44:50.0294 4460  [ FA6D13AA972967EB46862D0F0372A65A ] nvstor64        C:\Windows\system32\drivers\nvstor64.sys
11:44:50.0297 4460  nvstor64 - ok
11:44:50.0306 4460  [ 19067CA93075EF4823E3938A686F532F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:44:50.0309 4460  nv_agp - ok
11:44:50.0315 4460  NwlnkFlt - ok
11:44:50.0324 4460  NwlnkFwd - ok
11:44:50.0367 4460  [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
11:44:50.0368 4460  ohci1394 - ok
11:44:50.0432 4460  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc        C:\Windows\system32\p2psvc.dll
11:44:50.0443 4460  p2pimsvc - ok
11:44:50.0474 4460  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc          C:\Windows\system32\p2psvc.dll
11:44:50.0485 4460  p2psvc - ok
11:44:50.0494 4460  [ AECD57F94C887F58919F307C35498EA0 ] Parport        C:\Windows\system32\drivers\parport.sys
11:44:50.0496 4460  Parport - ok
11:44:50.0537 4460  [ B43751085E2ABE389DA466BC62A4B987 ] partmgr        C:\Windows\system32\drivers\partmgr.sys
11:44:50.0539 4460  partmgr - ok
11:44:50.0568 4460  [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:44:50.0572 4460  PcaSvc - ok
11:44:50.0771 4460  [ 7204F835A4355D1AB2853E57C9FF177C ] PCD5SRVC{8AAF211B-043E02A9-05040000} C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms
11:44:50.0774 4460  PCD5SRVC{8AAF211B-043E02A9-05040000} - ok
11:44:50.0813 4460  [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci            C:\Windows\system32\drivers\pci.sys
11:44:50.0815 4460  pci - ok
11:44:50.0848 4460  [ 2657F6C0B78C36D95034BE109336E382 ] pciide          C:\Windows\system32\drivers\pciide.sys
11:44:50.0849 4460  pciide - ok
11:44:50.0869 4460  [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:44:50.0873 4460  pcmcia - ok
11:44:50.0891 4460  [ 58865916F53592A61549B04941BFD80D ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:44:50.0913 4460  PEAUTH - ok
11:44:51.0062 4460  [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:44:51.0064 4460  PerfHost - ok
11:44:51.0117 4460  [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla            C:\Windows\system32\pla.dll
11:44:51.0133 4460  pla - ok
11:44:51.0197 4460  [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:44:51.0203 4460  PlugPlay - ok
11:44:51.0223 4460  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg    C:\Windows\system32\p2psvc.dll
11:44:51.0234 4460  PNRPAutoReg - ok
11:44:51.0254 4460  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc        C:\Windows\system32\p2psvc.dll
11:44:51.0264 4460  PNRPsvc - ok
11:44:51.0314 4460  [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent    C:\Windows\System32\ipsecsvc.dll
11:44:51.0321 4460  PolicyAgent - ok
11:44:51.0367 4460  [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:44:51.0370 4460  PptpMiniport - ok
11:44:51.0377 4460  [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor      C:\Windows\system32\DRIVERS\processr.sys
11:44:51.0379 4460  Processor - ok
11:44:51.0422 4460  [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc        C:\Windows\system32\profsvc.dll
11:44:51.0427 4460  ProfSvc - ok
11:44:51.0462 4460  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
11:44:51.0464 4460  ProtectedStorage - ok
11:44:51.0491 4460  [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
11:44:51.0492 4460  PSched - ok
11:44:51.0544 4460  [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300          C:\Windows\system32\drivers\ql2300.sys
11:44:51.0570 4460  ql2300 - ok
11:44:51.0579 4460  [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
11:44:51.0582 4460  ql40xx - ok
11:44:51.0606 4460  [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE          C:\Windows\system32\qwave.dll
11:44:51.0612 4460  QWAVE - ok
11:44:51.0620 4460  [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:44:51.0621 4460  QWAVEdrv - ok
11:44:51.0628 4460  [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:44:51.0630 4460  RasAcd - ok
11:44:51.0648 4460  [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto        C:\Windows\System32\rasauto.dll
11:44:51.0652 4460  RasAuto - ok
11:44:51.0678 4460  [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp        C:\Windows\system32\DRIVERS\rasl2tp.sys
11:44:51.0682 4460  Rasl2tp - ok
11:44:51.0698 4460  [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan          C:\Windows\System32\rasmans.dll
11:44:51.0704 4460  RasMan - ok
11:44:51.0716 4460  [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:44:51.0718 4460  RasPppoe - ok
11:44:51.0726 4460  [ C6A593B51F34C33E5474539544072527 ] RasSstp        C:\Windows\system32\DRIVERS\rassstp.sys
11:44:51.0729 4460  RasSstp - ok
11:44:51.0741 4460  [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss          C:\Windows\system32\DRIVERS\rdbss.sys
11:44:51.0747 4460  rdbss - ok
11:44:51.0774 4460  [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:44:51.0774 4460  RDPCDD - ok
11:44:51.0785 4460  [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr          C:\Windows\system32\drivers\rdpdr.sys
11:44:51.0790 4460  rdpdr - ok
11:44:51.0795 4460  [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:44:51.0796 4460  RDPENCDD - ok
11:44:51.0822 4460  [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD          C:\Windows\system32\drivers\RDPWD.sys
11:44:51.0834 4460  RDPWD - ok
11:44:51.0868 4460  [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:44:51.0869 4460  RemoteAccess - ok
11:44:51.0901 4460  [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:44:51.0904 4460  RemoteRegistry - ok
11:44:51.0936 4460  [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator      C:\Windows\system32\locator.exe
11:44:51.0938 4460  RpcLocator - ok
11:44:51.0979 4460  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs          C:\Windows\system32\rpcss.dll
11:44:51.0985 4460  RpcSs - ok
11:44:51.0993 4460  [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:44:51.0994 4460  rspndr - ok
11:44:52.0000 4460  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs          C:\Windows\system32\lsass.exe
11:44:52.0001 4460  SamSs - ok
11:44:52.0010 4460  [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:44:52.0012 4460  sbp2port - ok
11:44:52.0055 4460  [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:44:52.0059 4460  SCardSvr - ok
11:44:52.0099 4460  [ 0F838C811AD295D2A4489B9993096C63 ] Schedule        C:\Windows\system32\schedsvc.dll
11:44:52.0110 4460  Schedule - ok
11:44:52.0146 4460  [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc    C:\Windows\System32\certprop.dll
11:44:52.0147 4460  SCPolicySvc - ok
11:44:52.0179 4460  [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:44:52.0183 4460  SDRSVC - ok
11:44:52.0191 4460  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:44:52.0194 4460  secdrv - ok
11:44:52.0202 4460  [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon        C:\Windows\system32\seclogon.dll
11:44:52.0205 4460  seclogon - ok
11:44:52.0226 4460  [ 90973A64B96CD647FF81C79443618EED ] SENS            C:\Windows\system32\sens.dll
11:44:52.0229 4460  SENS - ok
11:44:52.0237 4460  [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum        C:\Windows\system32\drivers\serenum.sys
11:44:52.0238 4460  Serenum - ok
11:44:52.0246 4460  [ E62FAC91EE288DB29A9696A9D279929C ] Serial          C:\Windows\system32\drivers\serial.sys
11:44:52.0249 4460  Serial - ok
11:44:52.0258 4460  [ A842F04833684BCEEA7336211BE478DF ] sermouse        C:\Windows\system32\drivers\sermouse.sys
11:44:52.0259 4460  sermouse - ok
11:44:52.0278 4460  [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:44:52.0282 4460  SessionEnv - ok
11:44:52.0289 4460  [ 14D4B4465193A87C127933978E8C4106 ] sffdisk        C:\Windows\system32\drivers\sffdisk.sys
11:44:52.0290 4460  sffdisk - ok
11:44:52.0297 4460  [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:44:52.0298 4460  sffp_mmc - ok
11:44:52.0306 4460  [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd        C:\Windows\system32\drivers\sffp_sd.sys
11:44:52.0307 4460  sffp_sd - ok
11:44:52.0314 4460  [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy        C:\Windows\system32\drivers\sfloppy.sys
11:44:52.0316 4460  sfloppy - ok
11:44:52.0347 4460  [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:44:52.0352 4460  SharedAccess - ok
11:44:52.0386 4460  [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:44:52.0391 4460  ShellHWDetection - ok
11:44:52.0397 4460  [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
11:44:52.0399 4460  SiSRaid2 - ok
11:44:52.0417 4460  [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:44:52.0419 4460  SiSRaid4 - ok
11:44:52.0494 4460  [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc          C:\Windows\system32\SLsvc.exe
11:44:52.0524 4460  slsvc - ok
11:44:52.0530 4460  [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify      C:\Windows\system32\SLUINotify.dll
11:44:52.0534 4460  SLUINotify - ok
11:44:52.0576 4460  [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb            C:\Windows\system32\DRIVERS\smb.sys
11:44:52.0578 4460  Smb - ok
11:44:52.0616 4460  [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:44:52.0618 4460  SNMPTRAP - ok
11:44:52.0646 4460  [ 386C3C63F00A7040C7EC5E384217E89D ] spldr          C:\Windows\system32\drivers\spldr.sys
11:44:52.0647 4460  spldr - ok
11:44:52.0681 4460  [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler        C:\Windows\System32\spoolsv.exe
11:44:52.0686 4460  Spooler - ok
11:44:52.0771 4460  [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP          C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS
11:44:52.0776 4460  SRTSP - ok
11:44:52.0791 4460  [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX          C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS
11:44:52.0791 4460  SRTSPX - ok
11:44:52.0825 4460  [ 880A57FCCB571EBD063D4DD50E93E46D ] srv            C:\Windows\system32\DRIVERS\srv.sys
11:44:52.0831 4460  srv - ok
11:44:52.0856 4460  [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:44:52.0859 4460  srv2 - ok
11:44:52.0876 4460  [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:44:52.0878 4460  srvnet - ok
11:44:52.0894 4460  [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV        C:\Windows\System32\ssdpsrv.dll
11:44:52.0896 4460  SSDPSRV - ok
11:44:52.0915 4460  [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc        C:\Windows\system32\sstpsvc.dll
11:44:52.0918 4460  SstpSvc - ok
11:44:52.0950 4460  [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc          C:\Windows\System32\wiaservc.dll
11:44:52.0955 4460  stisvc - ok
11:44:52.0977 4460  [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
11:44:52.0978 4460  swenum - ok
11:44:53.0010 4460  [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv          C:\Windows\System32\swprv.dll
11:44:53.0014 4460  swprv - ok
11:44:53.0020 4460  [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx        C:\Windows\system32\drivers\symc8xx.sys
11:44:53.0021 4460  Symc8xx - ok
11:44:53.0063 4460  [ 6160145C7A87FC7672E8E3B886888176 ] SymDS          C:\Windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS
11:44:53.0069 4460  SymDS - ok
11:44:53.0099 4460  [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA          C:\Windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS
11:44:53.0110 4460  SymEFA - ok
11:44:53.0149 4460  [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
11:44:53.0150 4460  SymEvent - ok
11:44:53.0190 4460  [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON        C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS
11:44:53.0192 4460  SymIRON - ok
11:44:53.0214 4460  [ 61D06BE74FA23EBB7D816E4468EDD19E ] SYMTDIv        C:\Windows\System32\Drivers\NISx64\1207020.003\SYMTDIV.SYS
11:44:53.0219 4460  SYMTDIv - ok
11:44:53.0226 4460  [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
11:44:53.0228 4460  Sym_hi - ok
11:44:53.0235 4460  [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
11:44:53.0238 4460  Sym_u3 - ok
11:44:53.0299 4460  [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain        C:\Windows\system32\sysmain.dll
11:44:53.0311 4460  SysMain - ok
11:44:53.0354 4460  [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:44:53.0357 4460  TabletInputService - ok
11:44:53.0395 4460  [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv        C:\Windows\System32\tapisrv.dll
11:44:53.0402 4460  TapiSrv - ok
11:44:53.0425 4460  [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS            C:\Windows\System32\tbssvc.dll
11:44:53.0429 4460  TBS - ok
11:44:53.0484 4460  [ C7C60777592EEF169A11647AAE7A91C3 ] Tcpip          C:\Windows\system32\drivers\tcpip.sys
11:44:53.0500 4460  Tcpip - ok
11:44:53.0542 4460  [ C7C60777592EEF169A11647AAE7A91C3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
11:44:53.0558 4460  Tcpip6 - ok
11:44:53.0599 4460  [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:44:53.0600 4460  tcpipreg - ok
11:44:53.0619 4460  [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:44:53.0621 4460  TDPIPE - ok
11:44:53.0628 4460  [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP          C:\Windows\system32\drivers\tdtcp.sys
11:44:53.0630 4460  TDTCP - ok
11:44:53.0652 4460  [ 458919C8C42E398DC4802178D5FFEE27 ] tdx            C:\Windows\system32\DRIVERS\tdx.sys
11:44:53.0655 4460  tdx - ok
11:44:53.0696 4460  [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
11:44:53.0697 4460  TermDD - ok
11:44:53.0745 4460  [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService    C:\Windows\System32\termsrv.dll
11:44:53.0754 4460  TermService - ok
11:44:53.0785 4460  [ 56793271ECDEDD350C5ADD305603E963 ] Themes          C:\Windows\system32\shsvcs.dll
11:44:53.0791 4460  Themes - ok
11:44:53.0815 4460  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER    C:\Windows\system32\mmcss.dll
11:44:53.0818 4460  THREADORDER - ok
11:44:53.0831 4460  [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks          C:\Windows\System32\trkwks.dll
11:44:53.0835 4460  TrkWks - ok
11:44:53.0864 4460  [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:44:53.0865 4460  TrustedInstaller - ok
11:44:53.0876 4460  [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:44:53.0877 4460  tssecsrv - ok
11:44:53.0893 4460  [ 89EC74A9E602D16A75A4170511029B3C ] tunmp          C:\Windows\system32\DRIVERS\tunmp.sys
11:44:53.0895 4460  tunmp - ok
11:44:53.0908 4460  [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:44:53.0909 4460  tunnel - ok
11:44:53.0916 4460  [ FEC266EF401966311744BD0F359F7F56 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
11:44:53.0918 4460  uagp35 - ok
11:44:53.0944 4460  [ FAF2640A2A76ED03D449E443194C4C34 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:44:53.0950 4460  udfs - ok
11:44:53.0962 4460  [ 060507C4113391394478F6953A79EEDC ] UI0Detect      C:\Windows\system32\UI0Detect.exe
11:44:53.0964 4460  UI0Detect - ok
11:44:53.0972 4460  [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:44:53.0974 4460  uliagpkx - ok
11:44:54.0008 4460  [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci        C:\Windows\system32\drivers\uliahci.sys
11:44:54.0012 4460  uliahci - ok
11:44:54.0019 4460  [ 31707F09846056651EA2C37858F5DDB0 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
11:44:54.0021 4460  UlSata - ok
11:44:54.0029 4460  [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2        C:\Windows\system32\drivers\ulsata2.sys
11:44:54.0032 4460  ulsata2 - ok
11:44:54.0038 4460  [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus          C:\Windows\system32\DRIVERS\umbus.sys
11:44:54.0040 4460  umbus - ok
11:44:54.0067 4460  [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost        C:\Windows\System32\upnphost.dll
11:44:54.0070 4460  upnphost - ok
11:44:54.0085 4460  [ 07E3498FC60834219D2356293DA0FECC ] usbccgp        C:\Windows\system32\DRIVERS\usbccgp.sys
11:44:54.0087 4460  usbccgp - ok
11:44:54.0093 4460  [ 8C39D53E1A343F4C47EE8F3C052126D8 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
11:44:54.0095 4460  usbcir - ok
11:44:54.0118 4460  [ 827E44DE934A736EA31E91D353EB126F ] usbehci        C:\Windows\system32\DRIVERS\usbehci.sys
11:44:54.0119 4460  usbehci - ok
11:44:54.0156 4460  [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:44:54.0160 4460  usbhub - ok
11:44:54.0205 4460  [ E406B003A354776D317762694956B0FC ] usbohci        C:\Windows\system32\DRIVERS\usbohci.sys
11:44:54.0206 4460  usbohci - ok
11:44:54.0231 4460  [ ACFEE697AF477021BB3EC78C5431FED2 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
11:44:54.0232 4460  usbprint - ok
11:44:54.0257 4460  [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR        C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:44:54.0259 4460  USBSTOR - ok
11:44:54.0265 4460  [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci        C:\Windows\system32\DRIVERS\usbuhci.sys
11:44:54.0267 4460  usbuhci - ok
11:44:54.0314 4460  [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms          C:\Windows\System32\uxsms.dll
11:44:54.0316 4460  UxSms - ok
11:44:54.0367 4460  [ 294945381DFA7CE58CECF0A9896AF327 ] vds            C:\Windows\System32\vds.exe
11:44:54.0371 4460  vds - ok
11:44:54.0379 4460  [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga            C:\Windows\system32\DRIVERS\vgapnp.sys
11:44:54.0380 4460  vga - ok
11:44:54.0386 4460  [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave        C:\Windows\System32\drivers\vga.sys
11:44:54.0387 4460  VgaSave - ok
11:44:54.0394 4460  [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide          C:\Windows\system32\drivers\viaide.sys
11:44:54.0395 4460  viaide - ok
11:44:54.0421 4460  [ 2B7E885ED951519A12C450D24535DFCA ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:44:54.0422 4460  volmgr - ok
11:44:54.0473 4460  [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx        C:\Windows\system32\drivers\volmgrx.sys
11:44:54.0476 4460  volmgrx - ok
11:44:54.0508 4460  [ 582F710097B46140F5A89A19A6573D4B ] volsnap        C:\Windows\system32\drivers\volsnap.sys
11:44:54.0511 4460  volsnap - ok
11:44:54.0532 4460  [ A68F455ED2673835209318DD61BFBB0E ] vsmraid        C:\Windows\system32\drivers\vsmraid.sys
11:44:54.0534 4460  vsmraid - ok
11:44:54.0584 4460  [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS            C:\Windows\system32\vssvc.exe
11:44:54.0594 4460  VSS - ok
11:44:54.0607 4460  [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time        C:\Windows\system32\w32time.dll
11:44:54.0611 4460  W32Time - ok
11:44:54.0618 4460  [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
11:44:54.0619 4460  WacomPen - ok
11:44:54.0633 4460  [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
11:44:54.0635 4460  Wanarp - ok
11:44:54.0640 4460  [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:44:54.0641 4460  Wanarpv6 - ok
11:44:54.0665 4460  [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc        C:\Windows\System32\wcncsvc.dll
11:44:54.0671 4460  wcncsvc - ok
11:44:54.0699 4460  [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:44:54.0701 4460  WcsPlugInService - ok
11:44:54.0706 4460  [ 0C17A0816F65B89E362E682AD5E7266E ] Wd              C:\Windows\system32\drivers\wd.sys
11:44:54.0708 4460  Wd - ok
11:44:54.0745 4460  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:44:54.0750 4460  Wdf01000 - ok
11:44:54.0756 4460  [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:44:54.0758 4460  WdiServiceHost - ok
11:44:54.0762 4460  [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost  C:\Windows\system32\wdi.dll
11:44:54.0764 4460  WdiSystemHost - ok
11:44:54.0805 4460  [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient      C:\Windows\System32\webclnt.dll
11:44:54.0808 4460  WebClient - ok
11:44:54.0836 4460  [ BD9A749F36710FFA02E0E530F7451936 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:44:54.0839 4460  Wecsvc - ok
11:44:54.0849 4460  [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport  C:\Windows\System32\wercplsupport.dll
11:44:54.0852 4460  wercplsupport - ok
11:44:54.0863 4460  [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc          C:\Windows\System32\WerSvc.dll
11:44:54.0868 4460  WerSvc - ok
11:44:54.0929 4460  WinDefend - ok
11:44:54.0938 4460  WinHttpAutoProxySvc - ok
11:44:55.0051 4460  [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt        C:\Windows\system32\wbem\WMIsvc.dll
11:44:55.0054 4460  Winmgmt - ok
11:44:55.0117 4460  [ 42717DB2BE3A075D0F0CD5C927C27A43 ] WinRM          C:\Windows\system32\WsmSvc.dll
11:44:55.0131 4460  WinRM - ok
11:44:55.0174 4460  [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc        C:\Windows\System32\wlansvc.dll
11:44:55.0184 4460  Wlansvc - ok
11:44:55.0193 4460  [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi        C:\Windows\system32\drivers\wmiacpi.sys
11:44:55.0195 4460  WmiAcpi - ok
11:44:55.0246 4460  [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:44:55.0249 4460  wmiApSrv - ok
11:44:55.0256 4460  WMPNetworkSvc - ok
11:44:55.0292 4460  [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:44:55.0296 4460  WPCSvc - ok
11:44:55.0331 4460  [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:44:55.0335 4460  WPDBusEnum - ok
11:44:55.0340 4460  [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl        C:\Windows\system32\drivers\ws2ifsl.sys
11:44:55.0342 4460  ws2ifsl - ok
11:44:55.0390 4460  [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc          C:\Windows\system32\wscsvc.dll
11:44:55.0394 4460  wscsvc - ok
11:44:55.0398 4460  WSearch - ok
11:44:55.0485 4460  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:44:55.0514 4460  wuauserv - ok
11:44:55.0575 4460  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:44:55.0577 4460  WudfPf - ok
11:44:55.0624 4460  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:44:55.0628 4460  WUDFRd - ok
11:44:55.0640 4460  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc        C:\Windows\System32\WUDFSvc.dll
11:44:55.0644 4460  wudfsvc - ok
11:44:55.0716 4460  [ 15CC7077D2DC28776CD430ECABBFFD66 ] {55662437-DA8C-40c0-AADA-2C816A897A49} c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
11:44:55.0717 4460  {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
11:44:55.0726 4460  ================ Scan global ===============================
11:44:55.0751 4460  [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
11:44:55.0798 4460  [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll
11:44:55.0816 4460  [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll
11:44:55.0869 4460  [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
11:44:55.0875 4460  [Global] - ok
11:44:55.0876 4460  ================ Scan MBR ==================================
11:44:55.0895 4460  [ 81CD5EC01DB0CE57EDD853F82462EF27 ] \Device\Harddisk0\DR0
11:44:56.0130 4460  \Device\Harddisk0\DR0 - ok
11:44:56.0130 4460  ================ Scan VBR ==================================
11:44:56.0136 4460  [ 5DB0040E7773362022A5CD8A87AE60DB ] \Device\Harddisk0\DR0\Partition1
11:44:56.0137 4460  \Device\Harddisk0\DR0\Partition1 - ok
11:44:56.0144 4460  [ F8EFAA1C2CD2C0ACF78D0681990AF019 ] \Device\Harddisk0\DR0\Partition2
11:44:56.0147 4460  \Device\Harddisk0\DR0\Partition2 - ok
11:44:56.0148 4460  ============================================================
11:44:56.0148 4460  Scan finished
11:44:56.0148 4460  ============================================================
11:44:56.0165 0500  Detected object count: 0
11:44:56.0165 0500  Actual detected object count: 0

HD Tune Pro: WDC WD1001FAES-60Z2A Error Scan

Scanned data  : 1000 gB
Damaged Blocks : 0.0 %
Elapsed Time  : 0:34

          svchost.exe
  DiskLæsningsAktivitet:  628 MB(Ialt for denne proces).
  Proces ID:              344

c:\hp\bin\Python\Lib\doctest.py    101.589    10-12-2007 12:26    -a--
c:\hp\bin\Python\Lib\idlelib\WidgetRedirector.py    2.518    28-10-2005 20:07    -a--
c:\hp\bin\Python\Lib\site-packages\isapi\samples\redirector.py    5.750    17-03-2006 14:02    -a--
c:\hp\bin\Python\Lib\site-packages\win32\lib\win32traceutil.py    1.476    08-01-2002 18:41    -a--
c:\hp\bin\Python\Lib\site-packages\win32\lib\win32traceutil.pyc    997    28-12-2010 18:28    -a--
c:\hp\bin\Python\Lib\site-packages\win32\lib\win32traceutil.pyo    997    28-12-2010 18:28    -a--
c:\hp\bin\Python\Lib\subprocess.py    45.310    21-01-2008 17:51    -a--
c:\hp\bin\Python\NEWS.txt    119.048    21-02-2008 14:05    -a--
c:\Program Files (x86)\Cyberlink\PowerDirector\d3dx9_34.dll    3.497.832    15-09-2008 15:16    -a--
c:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\d3dcompiler_43.dll    2.106.216    29-05-2013 05:22    -a--
c:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\d3dcompiler_46.dll    3.231.688    29-05-2013 05:22    -a--
c:\Program Files (x86)\Google\Chrome\Application\27.0.1453.110\Installer\chrome.7z    125.385.688    29-05-2013 07:28    -a--
c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\Dump\CES\d3dx9_34.dll    3.493.672    17-10-2008 17:57    -a--
c:\Program Files (x86)\Mozilla Firefox\D3DCompiler_43.dll    2.106.216    26-05-2010 20:41    -a--
c:\Program Files (x86)\Mozilla Firefox\xul.dll    19.449.240    12-05-2013 00:27    -a--
c:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\tific.ocx    2.536.304    14-09-2010 19:40    ra--
c:\Program Files (x86)\Opera\D3DCompiler_43.dll    2.106.216    12-06-2013 00:33    -a--
c:\Program Files (x86)\Opera\locale\en\en.lng    196.105    12-06-2013 00:33    -a--
c:\Program Files (x86)\Opera\locale\en-GB\en-GB.lng    196.299    12-06-2013 00:33    -a--
c:\Program Files\PC-Doctor for Windows\D3DCompiler_37.dll    1.860.120    10-09-2008 03:19    -a--
c:\Program Files\PC-Doctor for Windows\d3dx9_32.dll    4.398.360    10-09-2008 03:19    -a--
c:\Program Files\PC-Doctor for Windows\d3dx9_35.dll    5.073.256    10-09-2008 03:19    -a--
c:\Program Files\PC-Doctor for Windows\d3dx9_37.dll    4.910.088    10-09-2008 03:19    -a--
c:\Program Files\PC-Doctor for Windows\DOS_SOLUTION_hp.iso    3.004.416    08-10-2008 11:59    -a--
c:\totalcmd\HISTORY.TXT    424.637    03-08-2012 08:01    -a--
c:\Windows\AppPatch\AcGenral.dll    2.159.616    03-03-2011 17:40    -a--
c:\Windows\AppPatch\AcLayers.dll    542.720    03-03-2011 17:40    -a--
c:\Windows\AppPatch\AcSpecfc.dll    458.752    03-03-2011 17:40    -a--
c:\Windows\AppPatch\AcXtrnal.dll    173.056    03-03-2011 17:40    -a--
c:\Windows\AppPatch\AppPatch64\AcGenral.dll    284.672    03-03-2011 17:59    -a--
c:\Windows\AppPatch\AppPatch64\AcLayers.dll    331.776    03-03-2011 17:59    -a--
c:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll    5.915.744    31-08-2012 13:01    -a--
c:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll    6.728.784    06-09-2012 08:50    -a--
c:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll    10.019.424    31-08-2012 13:00    -a--
c:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll    9.793.616    06-09-2012 09:38    -a--
c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\netfx_core.mzz    181.483.595    18-03-2010 23:38    -a--
c:\Windows\System32\d3d10.dll    1.268.224    12-06-2013 00:23    -a--
c:\Windows\System32\drivers\fltMgr.sys    275.432    11-04-2009 00:15    -a--
c:\Windows\System32\DriverStore\FileRepository\divacx64.inf_08a921bb\ditrace.exe    290.304    02-11-2006 13:15    -a--
c:\Windows\System32\DriverStore\FileRepository\divacx64.inf_08a921bb\xlog.exe    138.240    02-11-2006 13:16    -a--
c:\Windows\System32\DriverStore\FileRepository\divasx64.inf_da624dab\ditrace.exe    290.304    02-11-2006 13:15    -a--
c:\Windows\System32\DriverStore\FileRepository\divasx64.inf_da624dab\xlog.exe    138.240    02-11-2006 13:16    -a--
c:\Windows\System32\DriverStore\FileRepository\divasx64.inf_f85cc8ba\ditrace.exe    290.304    21-01-2008 04:46    -a--
c:\Windows\System32\DriverStore\FileRepository\divasx64.inf_f85cc8ba\xlog.exe    138.240    21-01-2008 04:46    -a--
c:\Windows\System32\en-US\ieframe.dll.mui    994.304    12-06-2013 00:25    -a--
c:\Windows\System32\en-US\iesetup.dll.mui    81.920    12-06-2013 00:25    -a--
c:\Windows\System32\tapi3.dll    990.720    02-11-2006 13:19    -a--
c:\Windows\System32\wbem\Repository\OBJECTS.DATA    33.095.680    17-06-2013 19:58    -a--
c:\Windows\System32\WindowsPowerShell\v1.0\da-DK\about_Comment_Based_Help.help.txt    23.427    16-07-2009 19:23    -a--
c:\Windows\SysWOW64\d3d10.dll    1.029.120    12-06-2013 00:23    -a--
c:\Windows\SysWOW64\en-US\ieframe.dll.mui    994.304    12-06-2013 00:25    -a--
c:\Windows\SysWOW64\en-US\iesetup.dll.mui    81.920    12-06-2013 00:25    -a--
c:\Windows\SysWOW64\msvbvm60.dll    1.386.496    21-01-2008 04:49    -a--
c:\Windows\SysWOW64\tapi3.dll    858.112    02-11-2006 11:46    -a--
c:\Windows\SysWOW64\WindowsPowerShell\v1.0\da-DK\about_Comment_Based_Help.help.txt    23.427    16-07-2009 19:23    -a--
c:\Windows\winsxs\amd64_divasx64.inf_31bf3856ad364e35_6.0.6001.18000_none_607ed84088ce5846\ditrace.exe    290.304    21-01-2008 04:46    -a--
c:\Windows\winsxs\amd64_divasx64.inf_31bf3856ad364e35_6.0.6001.18000_none_607ed84088ce5846\xlog.exe    138.240    21-01-2008 04:46    -a--
c:\Windows\winsxs\amd64_microsoft.web.manag..t.iisclient-nonmsil_31bf3856ad364e35_6.0.6001.18000_none_3ea1aab326c836a3\Microsoft.Web.Management.IisClient.dll    1.343.488    21-01-2008 04:51    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.16651_none_66278649ada923cc\AcGenral.dll    275.456    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.16721_none_6647f7f3ad90cd20\AcGenral.dll    275.456    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.20788_none_6697b556c6d8c8ca\AcGenral.dll    275.456    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.20885_none_6694b65ec6db79ec\AcGenral.dll    275.456    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18000_none_6842d441aaa80fb1\AcGenral.dll    281.600    21-01-2008 04:50    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18032_none_68246511aabe9632\AcGenral.dll    281.600    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18112_none_683a06cfaaae5b77\AcGenral.dll    281.600    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18612_none_683a104daaae4d3a\AcGenral.dll    281.600    03-03-2011 17:06    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22132_none_68ae01dcc3dc35fc\AcGenral.dll    281.600    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22233_none_68af040cc3db4c7a\AcGenral.dll    281.600    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22867_none_6892a0d4c3eff493\AcGenral.dll    284.672    03-03-2011 16:50    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.18005_none_6a2e4d4da7c9dafd\AcGenral.dll    284.672    11-04-2009 00:11    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.18417_none_6a25858da7d01e38\AcGenral.dll    284.672    03-03-2011 17:59    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.22601_none_6ab3f26ec0eb072e\AcGenral.dll    284.672    03-03-2011 18:08    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16651_none_662986ddada7567a\AcLayers.dll    327.680    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16721_none_6649f887ad8effce\AcLayers.dll    327.680    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.20788_none_6699b5eac6d6fb78\AcLayers.dll    328.192    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.20885_none_6696b6f2c6d9ac9a\AcLayers.dll    328.192    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18000_none_6844d4d5aaa6425f\AcLayers.dll    331.264    21-01-2008 04:50    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18032_none_682665a5aabcc8e0\AcLayers.dll    331.264    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18112_none_683c0763aaac8e25\AcLayers.dll    331.776    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18612_none_683c10e1aaac7fe8\AcLayers.dll    331.776    03-03-2011 17:06    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22132_none_68b00270c3da68aa\AcLayers.dll    331.264    29-12-2010 02:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22233_none_68b104a0c3d97f28\AcLayers.dll    331.776    29-12-2010 02:53    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22867_none_6894a168c3ee2741\AcLayers.dll    331.776    03-03-2011 16:50    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18005_none_6a304de1a7c80dab\AcLayers.dll    331.776    11-04-2009 00:11    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18417_none_6a278621a7ce50e6\AcLayers.dll    331.776    03-03-2011 17:59    -a--
c:\Windows\winsxs\amd64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.22601_none_6ab5f302c0e939dc\AcLayers.dll    331.776    03-03-2011 18:08    -a--
c:\Windows\winsxs\amd64_microsoft-windows-directx-direct3d10_31bf3856ad364e35_6.0.6001.18000_none_4bd7012286096ef7\d3d10.dll    1.268.224    21-01-2008 04:49    -a--
c:\Windows\winsxs\amd64_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.18107_none_3f34f8ee0e1012e7\d3d10.dll    1.269.248    12-06-2013 00:20    -a--
c:\Windows\winsxs\amd64_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.18392_none_3eceabfc0e5d89fb\d3d10.dll    1.268.224    12-06-2013 00:23    -a--
c:\Windows\winsxs\amd64_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.22573_none_3f6eeacf276a0861\d3d10.dll    1.268.224    12-06-2013 00:23    -a--
c:\Windows\winsxs\amd64_microsoft-windows-filtermanager-core_31bf3856ad364e35_6.0.6001.18000_none_6d280e75e32982bb\fltMgr.sys    275.512    21-01-2008 04:50    -a--
c:\Windows\winsxs\amd64_microsoft-windows-filtermanager-core_31bf3856ad364e35_6.0.6002.18005_none_6f138781e04b4e07\fltMgr.sys    275.432    11-04-2009 00:15    -a--
c:\Windows\winsxs\amd64_microsoft-windows-i..p-support.resources_31bf3856ad364e35_9.1.8112.16421_en-us_bb2301c747fbd3bd\iesetup.dll.mui    81.920    12-06-2013 00:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-ieframe.resources_31bf3856ad364e35_9.1.8112.16421_en-us_abd81ea4c3f00e30\ieframe.dll.mui    994.304    12-06-2013 00:25    -a--
c:\Windows\winsxs\amd64_microsoft-windows-p..ll-preloc.resources_31bf3856ad364e35_7.0.6001.18181_da-dk_68cf81bbf43d4c92\about_Comment_Based_Help.help.txt    23.427    16-07-2009 19:23    -a--
c:\Windows\winsxs\amd64_microsoft-windows-tapi3_31bf3856ad364e35_6.0.6001.18000_none_bd674d4e47eddef1\tapi3.dll    990.720    02-11-2006 13:19    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6000.16386_none_eadb9bc11a0f0b1e\mscorwks.dll    10.331.648    20-10-2006 03:12    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.18000_none_eab01d7d1a66b3ea\mscorwks.dll    10.540.544    21-01-2008 04:48    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.18082_none_eab7f23d1a5fb1e4\mscorwks.dll    10.476.880    20-05-2010 12:59    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.18083_none_eab7db751a5fcb85\mscorwks.dll    10.483.024    29-03-2011 12:52    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.22193_none_d3eb34ff340644e2\mscorwks.dll    10.476.880    20-05-2010 12:59    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.22194_none_d3eb1e3734065e83\mscorwks.dll    10.483.024    29-03-2011 12:51    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_ea8ba2b91ab847fe\mscorwks.dll    10.074.448    29-03-2009 21:39    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.18564_none_ea91ba891ab2c7fc\mscorwks.dll    10.021.648    03-01-2012 12:57    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.18690_none_ea9516631aafadce\mscorwks.dll    10.019.424    31-08-2012 13:00    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.22770_none_d3c56f0f3458db26\mscorwks.dll    9.991.952    03-01-2012 12:55    -a--
c:\Windows\winsxs\amd64_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.22934_none_d3c1127f345cdcf0\mscorwks.dll    9.991.264    10-09-2012 12:57    -a--
c:\Windows\winsxs\Backup\amd64_microsoft-windows-filtermanager-core_31bf3856ad364e35_6.0.6002.18005_none_6f138781e04b4e07_fltmgr.sys_c6e91b41    275.432    11-06-2013 23:48    -a--
c:\Windows\winsxs\Backup\amd64_microsoft-windows-rasbase-rassstp_31bf3856ad364e35_6.0.6002.18005_none_f7dbc4829d6bb976.manifest    41.181    11-06-2013 23:46    -a--
c:\Windows\winsxs\Manifests\amd64_microsoft-windows-rasbase-rassstp_31bf3856ad364e35_6.0.6001.18000_none_f5f04b76a049ee2a.manifest    41.226    21-01-2008 04:42    -a--
c:\Windows\winsxs\Manifests\amd64_microsoft-windows-rasbase-rassstp_31bf3856ad364e35_6.0.6002.18005_none_f7dbc4829d6bb976.manifest    41.181    11-04-2009 01:10    ----
c:\Windows\winsxs\msil_microsoft.tpm_31bf3856ad364e35_6.0.6000.16386_none_85b0abc4a2cf93a5\Microsoft.Tpm.dll    200.704    02-11-2006 13:19    -a--
c:\Windows\winsxs\msil_microsoft.web.management.iisclient_31bf3856ad364e35_6.0.6001.18000_none_91224f0afa35857d\Microsoft.Web.Management.IisClient.dll    1.343.488    21-01-2008 04:51    -a--
c:\Windows\winsxs\msil_microsoft.web.management.iisclient_31bf3856ad364e35_6.0.6002.18005_none_930dc816f75750c9\Microsoft.Web.Management.IisClient.dll    1.343.488    11-04-2009 00:13    -a--
c:\Windows\winsxs\wow64_microsoft.web.manag..ent.wow64.resources_31bf3856ad364e35_6.0.6000.16386_en-us_dde191220af18ebb\Microsoft.Web.Management.IisClient.resources.dll    221.184    02-11-2006 17:14    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16651_none_707e312fe2081875\AcLayers.dll    537.600    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16651_none_707e312fe2081875\AcXtrnal.dll    173.056    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16721_none_709ea2d9e1efc1c9\AcLayers.dll    537.600    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.16721_none_709ea2d9e1efc1c9\AcXtrnal.dll    173.056    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.20788_none_70ee603cfb37bd73\AcLayers.dll    537.600    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.20788_none_70ee603cfb37bd73\AcXtrnal.dll    173.056    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.20885_none_70eb6144fb3a6e95\AcLayers.dll    537.600    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6000.20885_none_70eb6144fb3a6e95\AcXtrnal.dll    173.056    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18000_none_72997f27df07045a\AcLayers.dll    540.672    21-01-2008 04:50    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18000_none_72997f27df07045a\AcXtrnal.dll    173.056    21-01-2008 04:50    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18032_none_727b0ff7df1d8adb\AcLayers.dll    540.672    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18032_none_727b0ff7df1d8adb\AcXtrnal.dll    173.056    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18112_none_7290b1b5df0d5020\AcLayers.dll    541.696    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18112_none_7290b1b5df0d5020\AcXtrnal.dll    173.056    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18612_none_7290bb33df0d41e3\AcLayers.dll    541.696    03-03-2011 16:56    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.18612_none_7290bb33df0d41e3\AcXtrnal.dll    173.056    03-03-2011 16:56    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22132_none_7304acc2f83b2aa5\AcLayers.dll    540.672    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22132_none_7304acc2f83b2aa5\AcXtrnal.dll    173.056    29-12-2010 02:25    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22233_none_7305aef2f83a4123\AcLayers.dll    541.696    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22233_none_7305aef2f83a4123\AcXtrnal.dll    173.056    29-12-2010 02:53    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22867_none_72e94bbaf84ee93c\AcLayers.dll    541.696    03-03-2011 16:23    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6001.22867_none_72e94bbaf84ee93c\AcXtrnal.dll    173.056    03-03-2011 16:23    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18005_none_7484f833dc28cfa6\AcLayers.dll    542.720    10-04-2009 23:28    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18005_none_7484f833dc28cfa6\AcXtrnal.dll    173.056    21-01-2008 04:50    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18417_none_747c3073dc2f12e1\AcLayers.dll    542.720    03-03-2011 17:40    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.18417_none_747c3073dc2f12e1\AcXtrnal.dll    173.056    03-03-2011 17:40    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.22601_none_750a9d54f549fbd7\AcLayers.dll    542.720    03-03-2011 20:15    -a--
c:\Windows\winsxs\wow64_microsoft-windows-a..ence-mitigations-c5_31bf3856ad364e35_6.0.6002.22601_none_750a9d54f549fbd7\AcXtrnal.dll    173.056    03-03-2011 20:15    -a--
c:\Windows\winsxs\x86_microsoft.web.manag..t.iisclient-nonmsil_31bf3856ad364e35_6.0.6001.18000_none_e2830f2f6e6ac56d\Microsoft.Web.Management.IisClient.dll    1.343.488    21-01-2008 04:51    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.16651_none_0a08eac5f54bb296\AcGenral.dll    2.144.256    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.16721_none_0a295c6ff5335bea\AcGenral.dll    2.144.256    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.20788_none_0a7919d30e7b5794\AcGenral.dll    2.144.768    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6000.20885_none_0a761adb0e7e08b6\AcGenral.dll    2.144.768    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18000_none_0c2438bdf24a9e7b\AcGenral.dll    2.154.496    21-01-2008 04:51    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18032_none_0c05c98df26124fc\AcGenral.dll    2.153.984    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18112_none_0c1b6b4bf250ea41\AcGenral.dll    2.154.496    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.18612_none_0c1b74c9f250dc04\AcGenral.dll    2.153.984    03-03-2011 16:56    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22132_none_0c8f66590b7ec4c6\AcGenral.dll    2.153.984    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22233_none_0c9068890b7ddb44\AcGenral.dll    2.153.984    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6001.22867_none_0c7405510b92835d\AcGenral.dll    2.157.056    03-03-2011 16:23    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.18005_none_0e0fb1c9ef6c69c7\AcGenral.dll    2.160.128    10-04-2009 23:28    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.18417_none_0e06ea09ef72ad02\AcGenral.dll    2.159.616    03-03-2011 17:40    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c3_31bf3856ad364e35_6.0.6002.22601_none_0e9556eb088d95f8\AcGenral.dll    2.159.616    03-03-2011 20:15    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.16651_none_0a09eb0ff54acbed\AcSpecfc.dll    449.536    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.16721_none_0a2a5cb9f5327541\AcSpecfc.dll    449.536    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.20788_none_0a7a1a1d0e7a70eb\AcSpecfc.dll    450.560    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6000.20885_none_0a771b250e7d220d\AcSpecfc.dll    450.560    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.18000_none_0c253907f249b7d2\AcSpecfc.dll    459.264    21-01-2008 04:51    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.18032_none_0c06c9d7f2603e53\AcSpecfc.dll    458.752    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.18112_none_0c1c6b95f2500398\AcSpecfc.dll    460.288    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.18612_none_0c1c7513f24ff55b\AcSpecfc.dll    459.776    03-03-2011 16:56    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.22132_none_0c9066a30b7dde1d\AcSpecfc.dll    458.752    29-12-2010 02:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.22233_none_0c9168d30b7cf49b\AcSpecfc.dll    459.776    29-12-2010 02:53    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6001.22867_none_0c75059b0b919cb4\AcSpecfc.dll    459.776    03-03-2011 16:23    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6002.18005_none_0e10b213ef6b831e\AcSpecfc.dll    459.264    10-04-2009 23:28    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6002.18417_none_0e07ea53ef71c659\AcSpecfc.dll    458.752    03-03-2011 17:40    -a--
c:\Windows\winsxs\x86_microsoft-windows-a..ence-mitigations-c4_31bf3856ad364e35_6.0.6002.22601_none_0e965735088caf4f\AcSpecfc.dll    458.752    03-03-2011 20:15    -a--
c:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_6.0.6001.18000_none_efb8659ecdabfdc1\d3d10.dll    1.029.120    21-01-2008 04:50    -a--
c:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.18107_none_e3165d6a55b2a1b1\d3d10.dll    1.030.144    12-06-2013 00:20    -a--
c:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.18392_none_e2b01078560018c5\d3d10.dll    1.029.120    12-06-2013 00:23    -a--
c:\Windows\winsxs\x86_microsoft-windows-directx-direct3d10_31bf3856ad364e35_7.0.6002.22573_none_e3504f4b6f0c972b\d3d10.dll    1.029.120    12-06-2013 00:23    -a--
c:\Windows\winsxs\x86_microsoft-windows-i..p-support.resources_31bf3856ad364e35_9.1.8112.16421_en-us_5f0466438f9e6287\iesetup.dll.mui    81.920    12-06-2013 00:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-ieframe.resources_31bf3856ad364e35_9.1.8112.16421_en-us_4fb983210b929cfa\ieframe.dll.mui    994.304    12-06-2013 00:25    -a--
c:\Windows\winsxs\x86_microsoft-windows-msvbvm60_31bf3856ad364e35_6.0.6001.18000_none_c283c4d351b9dd7d\msvbvm60.dll    1.386.496    21-01-2008 04:49    -a--
c:\Windows\winsxs\x86_microsoft-windows-p..ll-preloc.resources_31bf3856ad364e35_7.0.6001.18181_da-dk_0cb0e6383bdfdb5c\about_Comment_Based_Help.help.txt    23.427    16-07-2009 19:23    -a--
c:\Windows\winsxs\x86_microsoft-windows-tapi3_31bf3856ad364e35_6.0.6001.18000_none_6148b1ca8f906dbb\tapi3.dll    858.112    02-11-2006 11:46    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6000.16386_none_3288d2982e8b3424\mscorwks.dll    5.632.512    02-11-2006 08:34    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.18000_none_325d54542ee2dcf0\mscorwks.dll    5.814.784    21-01-2008 04:48    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.18082_none_326529142edbdaea\mscorwks.dll    5.849.424    20-05-2010 13:01    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.18083_none_3265124c2edbf48b\mscorwks.dll    5.949.264    29-03-2011 12:51    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.22193_none_1b986bd648826de8\mscorwks.dll    5.849.424    20-05-2010 13:02    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6001.22194_none_1b98550e48828789\mscorwks.dll    5.949.264    29-03-2011 12:52    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.18005_none_3238d9902f347104\mscorwks.dll    5.812.544    29-03-2009 21:42    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.18564_none_323ef1602f2ef102\mscorwks.dll    5.913.872    03-01-2012 12:57    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.18690_none_32424d3a2f2bd6d4\mscorwks.dll    5.915.744    31-08-2012 13:01    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.22770_none_1b72a5e648d5042c\mscorwks.dll    5.925.648    03-01-2012 12:55    -a--
c:\Windows\winsxs\x86_netfx-mscorwks_dll_b03f5f7f11d50a3a_6.0.6002.22934_none_1b6e495648d905f6\mscorwks.dll    5.927.520    10-09-2012 12:56    -a--

OTL logfile created on: 26-06-2013 21:36:37 - Run 1
OTL by OldTimer - Version 3.2.69.0    Folder = C:\Users\starman\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000406 | Country: Danmark | Language: DAN | Date Format: dd-MM-yyyy

5,00 Gb Total Physical Memory | 3,86 Gb Available Physical Memory | 77,29% Memory free
10,20 Gb Paging File | 8,97 Gb Available in Paging File | 87,97% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 915,70 Gb Total Space | 868,84 Gb Free Space | 94,88% Space Free | Partition Type: NTFS
Drive D: | 15,81 Gb Total Space | 2,19 Gb Free Space | 13,83% Space Free | Partition Type: NTFS

Computer Name: STARMAN-PC | User Name: starman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\starman\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe ()


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV:64bit: - (Ati External Event Utility) -- C:\Windows\SysNative\Ati2evxx.exe (ATI Technologies Inc.)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (HPBtnSrv) -- C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe ()
SRV - (ezSharedSvc) -- C:\Windows\SysWOW64\ezsvc7.dll (EasyBits Sofware AS)


========== Driver Services (SafeList) ==========

DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswSnx.sys (AVAST Software)
DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
DRV:64bit: - (aswVmm) -- C:\Windows\SysNative\drivers\aswVmm.sys ()
DRV:64bit: - (aswRvrt) -- C:\Windows\SysNative\drivers\aswRvrt.sys ()
DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software)
DRV:64bit: - (AswRdr) -- C:\Windows\SysNative\drivers\aswRdr.sys (AVAST Software)
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (netr28x) -- C:\Windows\SysNative\DRIVERS\netr28x.sys (Ralink Technology, Corp.)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\DRIVERS\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (HCW85BDA) -- C:\Windows\SysNative\drivers\HCW85BDA.sys (Hauppauge Computer Works)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - ({55662437-DA8C-40c0-AADA-2C816A897A49}) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl (Cyberlink Corp.)
DRV - (PCD5SRVC{8AAF211B-043E02A9-05040000}) -- C:\PROGRA~1\PC-DOC~1\PCD5SRVC_x64.pkms (PC-Doctor, Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=da_dk&c=91&bd=Pavilion&pf=cndt
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {304B45FB-64E8-48EC-842C-53C35FEC5373}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}: "URL" = http://dk.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
IE:64bit: - HKLM\..\SearchScopes\{304B45FB-64E8-48EC-842C-53C35FEC5373}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1312&query={searchTerms}&invocationType=tb50hpcndtie7-da-dk
IE:64bit: - HKLM\..\SearchScopes\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}: "URL" = http://dk.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913940
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=da_dk&c=91&bd=Pavilion&pf=cndt
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=da_dk&c=91&bd=Pavilion&pf=cndt
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}: "URL" = http://dk.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
IE - HKLM\..\SearchScopes\{304B45FB-64E8-48EC-842C-53C35FEC5373}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1312&query={searchTerms}&invocationType=tb50hpcndtie7-da-dk
IE - HKLM\..\SearchScopes\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}: "URL" = http://dk.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913940


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.dk/
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\..\SearchScopes,DefaultScope = {304B45FB-64E8-48EC-842C-53C35FEC5373}
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\..\SearchScopes\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}: "URL" = http://dk.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\..\SearchScopes\{304B45FB-64E8-48EC-842C-53C35FEC5373}: "URL" = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1312&query={searchTerms}&invocationType=tb50hpcndtie7-da-dk
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\..\SearchScopes\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}: "URL" = http://dk.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913940
IE - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-06-22 21:55:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013-06-18 22:15:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\starman\AppData\Roaming\mozilla\Extensions
[2013-06-12 00:32:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2013-06-12 00:32:52 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome  ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://www.google.dk/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\27.0.1453.116\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U25 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.250.17 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: Google Dokumenter = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.0.0.6_0\
CHR - Extension: Google Dokumenter = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drev = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.2_0\
CHR - Extension: Google Drev = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: YouTube = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google-s\u00F8gning = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Google-s\u00F8gning = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Gmail = C:\Users\starman\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2013-06-01 04:04:22 | 005,960,821 | R--- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1    localhost #IPv4
O1 - Hosts: ::1    localhost # IPv6
O1 - Hosts: 127.0.0.1    ---.chine-li.info
O1 - Hosts: 127.0.0.1    0-29.com
O1 - Hosts: 127.0.0.1    0-pdf.com
O1 - Hosts: 127.0.0.1    0.gvt0.com
O1 - Hosts: 127.0.0.1    00.eatgoogle.bee.pl
O1 - Hosts: 127.0.0.1    00.eatgoogle.osa.pl
O1 - Hosts: 127.0.0.1    00.googleeat.bee.pl
O1 - Hosts: 127.0.0.1    00.googleeat.osa.pl
O1 - Hosts: 127.0.0.1    00.moregoogle.bee.pl
O1 - Hosts: 127.0.0.1    00.moregoogle.osa.pl
O1 - Hosts: 127.0.0.1    000-101.org
O1 - Hosts: 127.0.0.1    0000.in
O1 - Hosts: 127.0.0.1    00002l8.previewcoxhosting.com
O1 - Hosts: 127.0.0.1    0000a-fast-proxy.de
O1 - Hosts: 127.0.0.1    00161dcc.linkbucks.com
O1 - Hosts: 127.0.0.1    00185.com
O1 - Hosts: 127.0.0.1    001galerie.com
O1 - Hosts: 127.0.0.1    001host.net
O1 - Hosts: 127.0.0.1    002b0372.linkbucks.com
O1 - Hosts: 127.0.0.1    002c63f4.linkbucks.com
O1 - Hosts: 127.0.0.1    003f3f9b.linkbucks.com
O1 - Hosts: 127.0.0.1    005.free-counter.co.uk
O1 - Hosts: 127.0.0.1    0058f8d6.linkbucks.com
O1 - Hosts: 193800 more lines...
O2:64bit: - BHO: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (avast! Online Security) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [KBD] C:\Program Files (x86)\Hewlett-Packard\KBD\KbdStub.EXE (Microsoft)
O4 - HKLM..\Run: [StartCCC] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2143842749-563978281-1954728513-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.249.14.50 89.249.14.54
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E6A97BB4-9BB0-41ED-8C90-8963A9F4FB0D}: DhcpNameServer = 89.249.14.50 89.249.14.54
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013-06-26 21:34:24 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\starman\Desktop\OTL.exe
[2013-06-25 22:03:54 | 004,378,864 | ---- | C] (Piriform Ltd) -- C:\Users\starman\Desktop\ccsetup402.exe
[2013-06-23 01:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2013-06-23 01:02:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2013-06-23 01:01:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2013-06-23 01:01:12 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Adobe
[2013-06-22 23:42:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\hpHosts
[2013-06-22 23:40:20 | 001,220,592 | ---- | C] (I.T. Mate                                                  ) -- C:\Users\starman\Desktop\hpHosts-Setup-Win32.exe
[2013-06-22 21:56:46 | 000,378,944 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013-06-22 21:56:46 | 000,059,144 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr.sys
[2013-06-22 21:56:46 | 000,033,400 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswFsBlk.sys
[2013-06-22 21:56:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[2013-06-22 21:56:45 | 001,030,440 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013-06-22 21:56:45 | 000,064,288 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswTdi.sys
[2013-06-22 21:56:44 | 000,287,840 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2013-06-22 21:56:44 | 000,080,816 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2013-06-22 21:55:30 | 000,041,664 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013-06-22 21:54:55 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2013-06-22 21:53:58 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2013-06-22 21:46:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013-06-18 22:15:25 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Mozilla
[2013-06-18 22:15:25 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Mozilla
[2013-06-16 21:44:36 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
[2013-06-16 21:44:35 | 000,000,000 | ---D | C] -- C:\totalcmd
[2013-06-16 21:44:35 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\GHISLER
[2013-06-16 21:03:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ProcessMonitor
[2013-06-16 21:01:14 | 004,329,488 | ---- | C] (Ghisler Software GmbH) -- C:\Users\starman\Desktop\tcm801x64.exe
[2013-06-16 12:10:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2013-06-16 11:44:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
[2013-06-16 11:44:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HD Tune Pro
[2013-06-16 11:43:26 | 002,195,900 | ---- | C] (EFD Software                                                ) -- C:\Users\starman\Desktop\hdtunepro_550_trial.exe
[2013-06-15 18:54:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskCheckup
[2013-06-15 18:54:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DiskCheckup
[2013-06-15 18:33:30 | 001,058,176 | ---- | C] (PassMark Software                                          ) -- C:\Users\starman\Desktop\diskcheckup.exe
[2013-06-15 15:11:14 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\WindowsPowerShell
[2013-06-15 15:10:28 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\WindowsPowerShell
[2013-06-15 11:43:02 | 000,000,000 | ---D | C] -- C:\Users\starman\Desktop\tdsskiller
[2013-06-15 11:40:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
[2013-06-15 11:40:08 | 000,000,000 | ---D | C] -- C:\ProgramData\WinZip
[2013-06-15 11:40:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZip
[2013-06-15 11:37:17 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\CyberLink
[2013-06-14 21:55:44 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Malwarebytes
[2013-06-14 21:55:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013-06-14 21:45:06 | 000,000,000 | ---D | C] -- C:\Users\starman\Desktop\RK_Quarantine
[2013-06-14 21:41:43 | 010,285,040 | ---- | C] (Malwarebytes Corporation                                    ) -- C:\Users\starman\Desktop\mbam-setup-1.75.0.1300.exe
[2013-06-14 00:16:25 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\ParetoLogic
[2013-06-14 00:16:25 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\DriverCure
[2013-06-14 00:16:13 | 000,000,000 | ---D | C] -- C:\ProgramData\ParetoLogic
[2013-06-13 23:28:15 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2013-06-13 23:28:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Portable Devices
[2013-06-13 14:04:07 | 000,355,651 | ---- | C] (Farbar) -- C:\Users\starman\Desktop\FSS.exe
[2013-06-12 23:38:39 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013-06-12 22:55:47 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013-06-12 22:55:47 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\temp
[2013-06-12 22:33:18 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013-06-12 22:33:18 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013-06-12 22:33:18 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013-06-12 21:03:03 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013-06-12 21:00:45 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013-06-12 21:00:04 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Tific
[2013-06-12 20:58:56 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Symantec
[2013-06-12 20:45:29 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2013-06-12 20:37:40 | 005,078,680 | R--- | C] (Swearware) -- C:\Users\starman\Desktop\ComboFix.exe
[2013-06-12 01:05:27 | 000,000,000 | ---D | C] -- C:\Users\starman\Documents\Symantec
[2013-06-12 00:35:17 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\spool
[2013-06-12 00:33:50 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Opera
[2013-06-12 00:33:50 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Opera
[2013-06-12 00:33:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Opera
[2013-06-12 00:32:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013-06-12 00:32:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013-06-12 00:32:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013-06-12 00:30:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013-06-12 00:30:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2013-06-12 00:30:13 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Google
[2013-06-12 00:29:56 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Deployment
[2013-06-12 00:29:56 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Apps
[2013-06-12 00:04:37 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\vi-VN
[2013-06-12 00:04:37 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\eu-ES
[2013-06-12 00:04:37 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\eu-ES
[2013-06-12 00:04:37 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\ca-ES
[2013-06-12 00:04:37 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\ca-ES
[2013-06-12 00:04:35 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\vi-VN
[2013-06-11 23:56:20 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2013-06-11 22:19:01 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2013-06-11 21:14:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2013-06-11 19:11:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
[2013-06-11 18:50:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2013-06-11 18:41:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013-06-11 18:41:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013-06-11 18:17:00 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\ATI
[2013-06-11 18:17:00 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\ATI
[2013-06-11 18:16:28 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Hewlett-Packard
[2013-06-11 18:03:46 | 000,000,000 | R--D | C] -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013-06-11 18:03:46 | 000,000,000 | R--D | C] -- C:\Users\starman\Searches
[2013-06-11 18:03:46 | 000,000,000 | R--D | C] -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013-06-11 18:03:39 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Identities
[2013-06-11 18:03:37 | 000,000,000 | R--D | C] -- C:\Users\starman\Contacts
[2013-06-11 18:03:36 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\VirtualStore
[2013-06-11 17:57:48 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Macromedia
[2013-06-11 17:57:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2013-06-11 17:57:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
[2013-06-11 17:56:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2013-06-11 17:56:41 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Adobe
[2013-06-11 17:56:14 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Hewlett-Packard
[2013-06-11 17:54:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brugervejledninger
[2013-06-11 17:54:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pr°v Microsoft Office 2007 i 60 dage
[2013-06-11 17:54:22 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Online Services
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Documents\Videoer
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\AppData\Local\Temporary Internet Files
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Skabeloner
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\SendTo
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Recent
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Printere
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\AppData\Local\Oversigt
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Documents\Musik
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Menuen Start
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Lokale indstillinger
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Dokumenter
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Cookies
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Documents\Billeder
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Application Data
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\AppData\Local\Application Data
[2013-06-11 17:54:00 | 000,000,000 | -HSD | C] -- C:\Users\starman\Andre computere
[2013-06-11 17:53:59 | 000,000,000 | --SD | C] -- C:\Users\starman\AppData\Roaming\Microsoft
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Videos
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Saved Games
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Pictures
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Music
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Links
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Favorites
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Downloads
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Documents
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\Desktop
[2013-06-11 17:53:59 | 000,000,000 | R--D | C] -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013-06-11 17:53:59 | 000,000,000 | -H-D | C] -- C:\Users\starman\AppData
[2013-06-11 17:53:59 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Local\Microsoft
[2013-06-11 17:53:59 | 000,000,000 | ---D | C] -- C:\Users\starman\AppData\Roaming\Media Center Programs
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\ProgramData\Start-meny
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\ProgramData\Skrivbord
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\Program
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mina videoklipp
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Mina bilder
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Min musik
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\ProgramData\Mallar
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriter
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokument
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\Program Files\Delade filer
[2013-06-11 17:50:47 | 000,000,000 | -HSD | C] -- C:\ProgramData\Application Data
[2013-06-11 17:50:46 | 000,000,000 | -HSD | C] -- C:\Documents and Settings
[2013-05-31 15:54:54 | 002,489,024 | ---- | C] (Sysinternals - www.sysinternals.com) -- C:\Users\starman\Desktop\Procmon.exe
[1 C:\Users\starman\AppData\Local\*.tmp files -> C:\Users\starman\AppData\Local\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013-06-26 21:35:00 | 000,000,934 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-06-26 21:34:25 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\starman\Desktop\OTL.exe
[2013-06-26 21:28:27 | 001,030,440 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2013-06-26 21:28:27 | 000,378,944 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSP.sys
[2013-06-26 21:28:27 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum
[2013-06-26 21:28:27 | 000,000,175 | ---- | M] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum
[2013-06-26 21:28:15 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-06-26 21:26:17 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013-06-26 21:26:17 | 000,003,616 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013-06-26 21:25:27 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-06-26 21:25:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013-06-25 22:03:55 | 004,378,864 | ---- | M] (Piriform Ltd) -- C:\Users\starman\Desktop\ccsetup402.exe
[2013-06-23 22:21:29 | 000,007,052 | ---- | M] () -- C:\Users\starman\AppData\Local\d3d9caps.dat
[2013-06-22 23:40:20 | 001,220,592 | ---- | M] (I.T. Mate                                                  ) -- C:\Users\starman\Desktop\hpHosts-Setup-Win32.exe
[2013-06-22 21:56:46 | 000,001,785 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013-06-22 21:56:44 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
[2013-06-19 21:38:18 | 000,002,025 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013-06-18 21:23:24 | 000,000,056 | -H-- | M] () -- C:\Windows\SysWow64\ezsidmv.dat
[2013-06-16 21:44:37 | 000,000,598 | ---- | M] () -- C:\Users\starman\Desktop\Total Commander 64 bit.lnk
[2013-06-16 21:01:14 | 004,329,488 | ---- | M] (Ghisler Software GmbH) -- C:\Users\starman\Desktop\tcm801x64.exe
[2013-06-16 21:00:01 | 001,110,478 | ---- | M] () -- C:\Users\starman\Desktop\ProcessMonitor.zip
[2013-06-16 14:32:54 | 001,264,078 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013-06-16 14:32:54 | 000,595,798 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013-06-16 14:32:54 | 000,472,154 | ---- | M] () -- C:\Windows\SysNative\perfh006.dat
[2013-06-16 14:32:54 | 000,103,872 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013-06-16 14:32:54 | 000,080,180 | ---- | M] () -- C:\Windows\SysNative\perfc006.dat
[2013-06-16 11:44:57 | 000,000,872 | ---- | M] () -- C:\Users\starman\Desktop\HD Tune Pro.lnk
[2013-06-16 11:43:27 | 002,195,900 | ---- | M] (EFD Software                                                ) -- C:\Users\starman\Desktop\hdtunepro_550_trial.exe
[2013-06-15 18:54:30 | 000,000,882 | ---- | M] () -- C:\Users\starman\Desktop\DiskCheckup.lnk
[2013-06-15 18:33:30 | 001,058,176 | ---- | M] (PassMark Software                                          ) -- C:\Users\starman\Desktop\diskcheckup.exe
[2013-06-15 18:11:00 | 000,308,352 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013-06-15 11:40:28 | 000,001,896 | ---- | M] () -- C:\Users\Public\Desktop\WinZip.lnk
[2013-06-15 11:32:20 | 002,218,636 | ---- | M] () -- C:\Users\starman\Desktop\tdsskiller.zip
[2013-06-14 21:41:45 | 010,285,040 | ---- | M] (Malwarebytes Corporation                                    ) -- C:\Users\starman\Desktop\mbam-setup-1.75.0.1300.exe
[2013-06-14 21:40:04 | 000,907,776 | ---- | M] () -- C:\Users\starman\Desktop\RogueKiller.exe
[2013-06-13 23:27:41 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2013-06-13 14:04:07 | 000,355,651 | ---- | M] (Farbar) -- C:\Users\starman\Desktop\FSS.exe
[2013-06-12 20:37:40 | 005,078,680 | R--- | M] (Swearware) -- C:\Users\starman\Desktop\ComboFix.exe
[2013-06-12 00:38:44 | 000,000,973 | ---- | M] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013-06-12 00:38:39 | 000,002,049 | ---- | M] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013-06-12 00:33:49 | 000,001,692 | ---- | M] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2013-06-12 00:33:49 | 000,001,668 | ---- | M] () -- C:\Users\Public\Desktop\Opera.lnk
[2013-06-12 00:32:53 | 000,000,912 | ---- | M] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013-06-12 00:32:53 | 000,000,888 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013-06-12 00:25:40 | 000,008,798 | ---- | M] () -- C:\Windows\SysWow64\icrav03.rat
[2013-06-12 00:25:40 | 000,008,798 | ---- | M] () -- C:\Windows\SysNative\icrav03.rat
[2013-06-12 00:25:40 | 000,001,988 | ---- | M] () -- C:\Windows\SysWow64\ticrf.rat
[2013-06-12 00:25:40 | 000,001,988 | ---- | M] () -- C:\Windows\SysNative\ticrf.rat
[2013-06-12 00:25:21 | 000,072,822 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013-06-12 00:25:13 | 000,072,822 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013-06-12 00:09:59 | 000,262,144 | ---- | M] () -- C:\Windows\SPInstall.etl
[2013-06-11 21:54:42 | 000,001,589 | ---- | M] () -- C:\Users\Public\Desktop\Valg af webbrowser.lnk
[2013-06-11 21:53:44 | 000,000,456 | ---- | M] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2013-06-11 18:51:43 | 000,588,472 | ---- | M] (EasyBits Software AS) -- C:\Windows\SysWow64\ezsvc7x.dll
[2013-06-11 18:49:22 | 000,061,517 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013-06-11 18:03:31 | 000,000,044 | ---- | M] () -- C:\Windows\System\hpsysdrv.dat
[2013-06-11 17:54:41 | 000,001,843 | RHS- | M] () -- C:\Windows\SysWow64\drivers\103C_HP_CPC_NC229AA-UUW m9566sc-a_YC_0Pavi_QCZH903_E91PNv6PrA1_49_INARRA3_SPEGATRON CORPORATION_V3.02_B5.17_T081009_WUH1_L406_M5118_J1000_7AMD_8Phenom 8650 Triple-Core_92.3_#130611_N10DE03EF_Z_G10029598.MRK
[2013-06-11 17:54:41 | 000,001,843 | RHS- | M] () -- C:\Windows\SysNative\drivers\103C_HP_CPC_NC229AA-UUW m9566sc-a_YC_0Pavi_QCZH903_E91PNv6PrA1_49_INARRA3_SPEGATRON CORPORATION_V3.02_B5.17_T081009_WUH1_L406_M5118_J1000_7AMD_8Phenom 8650 Triple-Core_92.3_#130611_N10DE03EF_Z_G10029598.MRK
[2013-06-11 17:54:30 | 000,001,422 | ---- | M] () -- C:\Users\Public\Desktop\Snapfish online foto service.lnk
[2013-06-01 04:04:22 | 005,960,821 | R--- | M] () -- C:\Windows\SysNative\drivers\etc\HOSTS
[2013-05-31 15:54:54 | 002,489,024 | ---- | M] (Sysinternals - www.sysinternals.com) -- C:\Users\starman\Desktop\Procmon.exe
[1 C:\Users\starman\AppData\Local\*.tmp files -> C:\Users\starman\AppData\Local\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013-06-26 21:28:27 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSP.sys.sum
[2013-06-26 21:28:27 | 000,000,175 | ---- | C] () -- C:\Windows\SysNative\drivers\aswSnx.sys.sum
[2013-06-23 01:02:00 | 000,000,830 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013-06-22 21:56:46 | 000,001,785 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2013-06-22 21:56:45 | 000,189,936 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2013-06-22 21:56:45 | 000,065,336 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2013-06-22 21:56:44 | 000,000,000 | ---- | C] () -- C:\Windows\SysWow64\config.nt
[2013-06-18 21:23:24 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
[2013-06-17 19:54:32 | 000,007,052 | ---- | C] () -- C:\Users\starman\AppData\Local\d3d9caps.dat
[2013-06-16 21:44:37 | 000,000,598 | ---- | C] () -- C:\Users\starman\Desktop\Total Commander 64 bit.lnk
[2013-06-16 21:00:01 | 001,110,478 | ---- | C] () -- C:\Users\starman\Desktop\ProcessMonitor.zip
[2013-06-16 11:44:57 | 000,000,872 | ---- | C] () -- C:\Users\starman\Desktop\HD Tune Pro.lnk
[2013-06-15 18:54:30 | 000,000,882 | ---- | C] () -- C:\Users\starman\Desktop\DiskCheckup.lnk
[2013-06-15 15:05:03 | 000,201,184 | ---- | C] () -- C:\Windows\SysWow64\winrm.vbs
[2013-06-15 15:05:03 | 000,201,184 | ---- | C] () -- C:\Windows\SysNative\winrm.vbs
[2013-06-15 15:05:03 | 000,004,675 | ---- | C] () -- C:\Windows\SysWow64\wsmanconfig_schema.xml
[2013-06-15 15:05:03 | 000,004,675 | ---- | C] () -- C:\Windows\SysNative\wsmanconfig_schema.xml
[2013-06-15 15:05:03 | 000,002,426 | ---- | C] () -- C:\Windows\SysWow64\WsmTxt.xsl
[2013-06-15 15:05:03 | 000,002,426 | ---- | C] () -- C:\Windows\SysNative\WsmTxt.xsl
[2013-06-15 11:40:28 | 000,001,896 | ---- | C] () -- C:\Users\Public\Desktop\WinZip.lnk
[2013-06-15 11:38:12 | 014,501,192 | ---- | C] () -- C:\Users\starman\Desktop\winzip145.exe
[2013-06-15 11:32:17 | 002,218,636 | ---- | C] () -- C:\Users\starman\Desktop\tdsskiller.zip
[2013-06-14 21:40:04 | 000,907,776 | ---- | C] () -- C:\Users\starman\Desktop\RogueKiller.exe
[2013-06-13 23:27:41 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2013-06-13 00:27:46 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013-06-13 00:27:46 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013-06-12 22:33:18 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013-06-12 22:33:18 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013-06-12 22:33:18 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013-06-12 22:33:18 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013-06-12 22:33:18 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013-06-12 00:33:49 | 000,001,692 | ---- | C] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Opera.lnk
[2013-06-12 00:33:49 | 000,001,680 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
[2013-06-12 00:33:49 | 000,001,668 | ---- | C] () -- C:\Users\Public\Desktop\Opera.lnk
[2013-06-12 00:32:53 | 000,000,912 | ---- | C] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013-06-12 00:32:53 | 000,000,900 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013-06-12 00:32:53 | 000,000,888 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013-06-12 00:30:49 | 000,002,049 | ---- | C] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2013-06-12 00:30:49 | 000,002,025 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013-06-12 00:30:20 | 000,000,934 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013-06-12 00:30:20 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013-06-12 00:25:21 | 000,072,822 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013-06-12 00:25:13 | 000,072,822 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013-06-11 23:12:24 | 000,395,723 | ---- | C] () -- C:\Windows\SysNative\onex.tmf
[2013-06-11 23:12:17 | 000,368,640 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2013-06-11 23:12:05 | 000,009,212 | ---- | C] () -- C:\Windows\SysWow64\RacUR.xml
[2013-06-11 23:12:05 | 000,009,212 | ---- | C] () -- C:\Windows\SysNative\RacUR.xml
[2013-06-11 23:11:54 | 000,471,992 | ---- | C] () -- C:\Windows\SysNative\dot3.tmf
[2013-06-11 23:11:46 | 000,700,507 | ---- | C] () -- C:\Windows\SysNative\eaphost.tmf
[2013-06-11 23:11:44 | 000,121,856 | ---- | C] () -- C:\Windows\SysNative\EhStorAuthn.dll
[2013-06-11 23:11:44 | 000,117,248 | ---- | C] () -- C:\Windows\SysWow64\EhStorAuthn.dll
[2013-06-11 23:11:03 | 000,107,612 | ---- | C] () -- C:\Windows\SysWow64\StructuredQuerySchema.bin
[2013-06-11 23:11:03 | 000,107,612 | ---- | C] () -- C:\Windows\SysNative\StructuredQuerySchema.bin
[2013-06-11 23:10:57 | 000,262,552 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2013-06-11 23:10:43 | 000,207,968 | ---- | C] () -- C:\Windows\SysNative\WFP.TMF
[2013-06-11 23:10:37 | 000,092,918 | ---- | C] () -- C:\Windows\SysWow64\slmgr.vbs
[2013-06-11 23:10:37 | 000,092,918 | ---- | C] () -- C:\Windows\SysNative\slmgr.vbs
[2013-06-11 23:10:34 | 000,009,239 | ---- | C] () -- C:\Windows\SysWow64\spcinstrumentation.man
[2013-06-11 23:10:34 | 000,009,239 | ---- | C] () -- C:\Windows\SysNative\spcinstrumentation.man
[2013-06-11 22:46:58 | 000,262,144 | ---- | C] () -- C:\Windows\SPInstall.etl
[2013-06-11 21:54:42 | 000,001,589 | ---- | C] () -- C:\Users\Public\Desktop\Valg af webbrowser.lnk
[2013-06-11 20:08:25 | 000,000,456 | ---- | C] () -- C:\Windows\tasks\PCDRScheduledMaintenance.job
[2013-06-11 18:41:23 | 000,000,973 | ---- | C] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013-06-11 18:09:55 | 002,608,861 | ---- | C] () -- C:\Windows\SysNative\wlan.tmf
[2013-06-11 18:09:50 | 000,000,949 | ---- | C] () -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[2013-06-11 18:03:47 | 000,000,979 | ---- | C] () -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013-06-11 18:03:45 | 000,000,974 | ---- | C] () -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[2013-06-11 18:03:37 | 000,000,915 | ---- | C] () -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
[2013-06-11 18:03:31 | 000,000,044 | ---- | C] () -- C:\Windows\System\hpsysdrv.dat
[2013-06-11 17:57:15 | 000,001,924 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office PowerPoint Fremviser 2007.lnk
[2013-06-11 17:57:04 | 000,001,060 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works Opgavestarter.lnk
[2013-06-11 17:54:44 | 000,001,526 | ---- | C] () -- C:\Users\Public\Desktop\Pr°v Microsoft Office 2007 i 60 dage.lnk
[2013-06-11 17:54:35 | 000,001,843 | RHS- | C] () -- C:\Windows\SysWow64\drivers\103C_HP_CPC_NC229AA-UUW m9566sc-a_YC_0Pavi_QCZH903_E91PNv6PrA1_49_INARRA3_SPEGATRON CORPORATION_V3.02_B5.17_T081009_WUH1_L406_M5118_J1000_7AMD_8Phenom 8650 Triple-Core_92.3_#130611_N10DE03EF_Z_G10029598.MRK
[2013-06-11 17:54:35 | 000,001,843 | RHS- | C] () -- C:\Windows\SysNative\drivers\103C_HP_CPC_NC229AA-UUW m9566sc-a_YC_0Pavi_QCZH903_E91PNv6PrA1_49_INARRA3_SPEGATRON CORPORATION_V3.02_B5.17_T081009_WUH1_L406_M5118_J1000_7AMD_8Phenom 8650 Triple-Core_92.3_#130611_N10DE03EF_Z_G10029598.MRK
[2013-06-11 17:54:30 | 000,001,422 | ---- | C] () -- C:\Users\Public\Desktop\Snapfish online foto service.lnk
[2013-06-11 17:54:21 | 000,001,872 | ---- | C] () -- C:\Users\Public\Desktop\Til børn.lnk
[2013-06-11 17:54:21 | 000,001,872 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Til børn.lnk
[2013-06-11 17:53:59 | 000,001,358 | ---- | C] () -- C:\Users\starman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite Deluxe.lnk
[2013-06-11 17:53:59 | 000,000,258 | ---- | C] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2013-06-11 17:53:59 | 000,000,240 | ---- | C] () -- C:\Users\starman\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk

========== ZeroAccess Check ==========

[2006-11-02 17:30:40 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012-06-08 19:59:03 | 012,899,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012-06-08 19:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009-04-11 00:11:16 | 000,891,392 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\SysWow64\wbem\fastprox.dll -- [2009-04-10 23:28:20 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2008-01-21 04:50:58 | 000,513,024 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\SysWow64\wbem\wbemess.dll

========== LOP Check ==========

[2013-06-14 00:16:25 | 000,000,000 | ---D | M] -- C:\Users\starman\AppData\Roaming\DriverCure
[2013-06-16 21:44:35 | 000,000,000 | ---D | M] -- C:\Users\starman\AppData\Roaming\GHISLER
[2013-06-12 00:33:50 | 000,000,000 | ---D | M] -- C:\Users\starman\AppData\Roaming\Opera
[2013-06-14 00:16:25 | 000,000,000 | ---D | M] -- C:\Users\starman\AppData\Roaming\ParetoLogic
[2013-06-12 21:00:04 | 000,000,000 | ---D | M] -- C:\Users\starman\AppData\Roaming\Tific

========== Purity Check ==========



< End of report >

Files\Folders moved on Reboot...
File move failed. C:\Windows\SysNative\icrav03.rat scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

All processes killed
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{304B45FB-64E8-48EC-842C-53C35FEC5373}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{304B45FB-64E8-48EC-842C-53C35FEC5373}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}\ not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Default_Page_URL| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{304B45FB-64E8-48EC-842C-53C35FEC5373}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{304B45FB-64E8-48EC-842C-53C35FEC5373}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}\ not found.
Registry key HKEY_USERS\S-1-5-21-2143842749-563978281-1954728513-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2FEB3821-8AA8-43D9-BE10-22F16D6B95FF}\ not found.
Registry key HKEY_USERS\S-1-5-21-2143842749-563978281-1954728513-1000\Software\Microsoft\Internet Explorer\SearchScopes\{304B45FB-64E8-48EC-842C-53C35FEC5373}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{304B45FB-64E8-48EC-842C-53C35FEC5373}\ not found.
Registry key HKEY_USERS\S-1-5-21-2143842749-563978281-1954728513-1000\Software\Microsoft\Internet Explorer\SearchScopes\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FAB135E2-41DF-4BF4-AAE8-B6F55F10168C}\ not found.
Registry value HKEY_USERS\S-1-5-21-2143842749-563978281-1954728513-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ms-itss\ not found.
File Protocol\Handler\ms-itss - No CLSID value found not found.
========== FILES ==========
File\Folder C:\Windows\SysWow64\icrav03.rat not found.
File move failed. C:\Windows\SysNative\icrav03.rat scheduled to be moved on reboot.
< ipconfig /flushdns /c  >
Windows IP-konfiguration
DNS Resolver Cache kunne ikke t›mmes: Funktionen mislykkedes under udf›relsen.
C:\Users\starman\Desktop\cmd.bat deleted successfully.
C:\Users\starman\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
Unable to start System Restore Service. Error code 1084

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: starman
->Temp folder emptied: 64630 bytes
->Temporary Internet Files folder emptied: 410432953 bytes
->Java cache emptied: 1067 bytes
->FireFox cache emptied: 13896599 bytes
->Google Chrome cache emptied: 9579118 bytes
->Opera cache emptied: 204157 bytes
->Flash cache emptied: 602 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 142605344 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 550,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: starman
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Public

User: starman
->Java cache emptied: 0 bytes

Total Java Files Cleaned = 0,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 06292013_102320

Files\Folders moved on Reboot...
File move failed. C:\Windows\SysNative\icrav03.rat scheduled to be moved on reboot.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...