Inactive-A Sudden BSOD - Possible Malware/Trojan - Help Highly Appreciated

[davidj23]

Hi,

My name is David from the UK, I'm currently running a HP HDX 64bit OS (Vista). Yesterday while browsing for gifts for a relative on Ebay I received a sudden "Blue Screen of Death" message, I consequently unplugged the system and restarted and managed to get onto TechSpot to post for some help.

I have not undertaken ANY diagnostic procedures apart from my Norton antivirus which stays on all the time and is of little help in all honestly.

I would highly appreciate any help, I have been to this forum before, and have always received amazing help - thank you in advance!

MalwareBytes

I am unable to post a Malwarebytes log as the program crashes every time I try to run it.

DDS

Attach.txt


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 17/10/2008 11:20:50
System Uptime: 27/01/2014 21:48:06 (2 hours ago)
.
Motherboard: Quanta | | 361B
Processor: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz | CPU | 2267/1066mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 286 GiB total, 135.771 GiB free.
D: is FIXED (NTFS) - 12 GiB total, 1.913 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com
Activation Assistant for the 2007 Microsoft Office suites
ActiveCheck component for HP Active Support Library
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.9)
Allok MP3 to AMR Converter 3.0.2
AppCore
Apple Application Support
Apple Mobile Device Support
Apple Software Update
µTorrent
Audacity 2.0
AVerMedia A309 (MiniCard, DVB-T) 1.0.64.45
AviSynth 2.5
AVS Update Manager 1.0
Bigasoft Total Video Converter 3.6.18.4499
Bonjour
BurnAware Free 6.2
Canon IJ Network Scanner Selector EX
Canon IJ Network Tool
Canon MG5300 series MP Drivers
Canon MG5300 series On-screen Manual
Canon MG5300 series User Registration
Canon MP Navigator EX 5.0
Canon My Printer
Canon Solution Menu EX
ccCommon
ccCommon64
CCleaner
Compatibility Pack for the 2007 Office system
Component Framework
coverXP (remove only)
CyberLink DVD Suite
D3DX10
DFX for Windows Media Player
DigitalPersona Personal 4.11
DivX Plus DirectShow Filters
DivX Setup
ESU for Microsoft Vista
Free PS Convert driver 8.15
Google Update Helper
Hewlett-Packard ACLM.NET v1.1.0.0
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Active Support Library
HP Customer Experience Enhancements
HP Doc Viewer
HP Easy Setup - Frontend
HP Help and Support
HP Integrated Module with Bluetooth wireless technology 6.0.1.6204
HP MediaSmart DVD
HP MediaSmart Music/Photo/Video
HP MediaSmart SmartMenu
HP MediaSmart TV
HP Product Detection
HP Quick Launch Buttons
HP Total Care Advisor
HP Update
HP User Guides 0115
HP Wireless Assistant
HPAsset component for HP Active Support Library
Huawei modem
iCloud
IDT Audio
Intel® Matrix Storage Manager
iTunes
JavaFX 2.1.1
JMicron JMB38X Flash Media Controller
Junk Mail filter update
K-Lite Codec Pack 5.9.0 (Basic)
LightScribe System Software 1.12.33.2
LiveUpdate (Symantec Corporation)
Malwarebytes Anti-Malware version 1.75.0.1300
Mesh Runtime
Messenger Companion
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office Live Add-in 1.5
Microsoft Office Office 64-bit Components 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
Mozilla Firefox 19.0.2 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
muvee autoProducer 6.1
Nero BurnLite 10
Nero Control Center 10
Nero ControlCenter 10 Help (CHM)
Nero Core Components 10
Nero Update
Norton AntiVirus
Norton AntiVirus Help
Norton Confidential Core
Norton Internet Security
Norton Internet Security (Symantec Corporation)
Norton Protection Center
NVIDIA Drivers
PDFCreator
PeerBlock 1.1 (r518)
PL-2303 USB-to-Serial
ProtectSmart Hard Drive Protection
QLBCASL
QuickPlay SlingPlayer 0.4.6
QuickTime
Realtek 8169 8168 8101E 8102E Ethernet Driver
RedMon - Redirection Port Monitor
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition
Segoe UI
Skype™ 6.1
SPBBC 64bit
Symantec Real Time Storage Protection Component (x64)
Symantec Technical Support Web Controls
SymNet x64
Synaptics Pointing Device Driver
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Validity Sensors software
VC80CRTRedist - 8.0.50727.4053
VDownloader 3.9.1326
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
VLC media player 1.1.11
Windows Driver Package - ENE (enecir) HIDClass (04/29/2008 2.5.0.0)
Windows Driver Package - ENE (enecir) HIDClass (09/04/2008 2.6.0.0)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Phone Intro Video (ENU)
WinPcap 4.1.1
WinRAR 4.01 (32-bit)
XviD & MP3 Codec Pack (remove only)
XviD MPEG-4 Video Codec
.
==== End Of File ===========================



DDS.txt


DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16526
Run by Devinder Johal at 23:18:50 on 2014-01-27
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.44.1033.18.4062.1667 [GMT 0:00]
.
AV: Norton Internet Security *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Internet Security *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Norton Internet Security *Enabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\STacSV64.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\Hpservice.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\vfsFPService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\AESTSr64.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
C:\Windows\SMINST\BLService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe
C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Program Files\DigitalPersona\Bin\DPAgent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\splwow64.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
c:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
BHO: DigitalPersona Personal Extension: {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll
BHO: NCO 2.0 IE BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll
BHO: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Common Files\Symantec Shared\IDS\IPSBHO.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
TB: Show Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll
TB: Show Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe
mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
mRun: [TVAgent] "C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe"
mRun: [TSMAgent] "C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [QlbCtrl.exe] "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" /Start
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [IJNetworkScannerSelectorEX] "C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
mRun: [DVDAgent] "C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe"
mRun: [DpAgent] C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [CLMLServer for HP TouchSmart] "C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"
mRun: [ccApp] "C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
mRun: [CanonSolutionMenuEx] "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
DPF: {15B782AF-55D8-11D1-B477-006097098764} - hxxp://www.bpp.com/acca/study-materials/ilearn/common/activex/awswaxd.cab
DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect118.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {A7EA8AD2-287F-11D3-B120-006008C39542} - hxxp://offers.e-centives.com/cif/download/bin/actxcab.cab
DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} - hxxp://ax.emsisoft.com/asquared.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} - hxxp://messenger.zone.msn.com/binary/Chess.cab57176.cab
DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{64CA5971-D18B-46CF-8CF1-FC0E0BFBB81E} : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{936E7D39-8D82-44E2-A838-60F9221B59AB} : DHCPNameServer = 8.8.8.8
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
x64-mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
x64-BHO: DigitalPersona Personal Extension: {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-Run: [VDownloader] "C:\Program Files\VDownloader\VDownloader.exe" /silent
x64-Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
x64-Run: [IAAnotif] "C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"
x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
x64-Run: [SysTrayApp] C:\Program Files (x86)\IDT\WDM\sttray64.exe
x64-mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
x64-mPolicies-Explorer: NoDrives = dword:0
x64-mPolicies-System: EnableUIADesktopToggle = dword:0
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Devinder Johal\AppData\Roaming\Mozilla\Firefox\Profiles\g34bxhll.default\
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.2\npsitesafety.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - ExtSQL: !HIDDEN! 2009-10-28 13:17; otis@digitalpersona.com; C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt
.
============= SERVICES / DRIVERS ===============
.
R1 A2DDA;A2 Direct Disk Access Support Driver;C:\Users\Devinder Johal\Desktop\Run\a2ddax64.sys [2012-10-11 23208]
R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2013-5-30 46368]
R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\Windows\System32\drivers\hssdrv6.sys [2013-4-24 46792]
R1 IDSvia64;Symantec Intrusion Prevention Driver;C:\PROGRA~3\Symantec\DEFINI~1\SymcData\ipsdefs\20140121.001\IDSvia64.sys [2014-1-23 383096]
R3 AVerAF15;HP DVB-T TV Tuner;C:\Windows\System32\drivers\AVerAF15.sys [2008-10-17 306560]
R3 enecir;ENE CIR Receiver;C:\Windows\System32\drivers\enecir.sys [2008-9-4 64000]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-12-5 137648]
R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2008-8-7 143360]
R3 NETw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETw5v64.sys [2009-10-2 6816256]
S3 COH_Mon;COH_Mon;C:\Windows\System32\drivers\COH_Mon.sys [2008-12-6 25424]
S3 fssfltr;FssFltr;C:\Windows\System32\drivers\fssfltr.sys [2012-7-13 48488]
S3 hwusbfake;Huawei DataCard USB Fake;C:\Windows\System32\drivers\ewusbfake.sys [2011-5-23 116224]
S3 NETw3v64;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETw3v64.sys [2008-1-21 3154432]
.
=============== File Associations ===============
.
FileExt: .jse: JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
.
=============== Created Last 30 ================
.
.
==================== Find3M ====================
.
2014-01-16 03:01:59 86054176 ----a-w- C:\Windows\System32\mrt.exe
2014-01-01 10:28:45 89304 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2013-12-18 06:13:56 270496 ------w- C:\Windows\System32\MpSigStub.exe
2013-12-10 21:32:48 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-10 21:32:48 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-11-15 02:09:03 17847296 ----a-w- C:\Windows\System32\mshtml.dll
2013-11-15 01:42:57 10926080 ----a-w- C:\Windows\System32\ieframe.dll
2013-11-15 01:37:29 2334720 ----a-w- C:\Windows\System32\jscript9.dll
2013-11-15 01:29:33 1347072 ----a-w- C:\Windows\System32\urlmon.dll
2013-11-15 01:29:03 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-11-15 01:28:41 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-11-15 01:28:00 237056 ----a-w- C:\Windows\System32\url.dll
2013-11-15 01:25:24 85504 ----a-w- C:\Windows\System32\jsproxy.dll
2013-11-15 01:22:21 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-11-15 01:20:47 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-11-15 01:20:45 816640 ----a-w- C:\Windows\System32\jscript.dll
2013-11-15 01:19:54 2147840 ----a-w- C:\Windows\System32\iertutil.dll
2013-11-15 01:19:47 729088 ----a-w- C:\Windows\System32\msfeeds.dll
2013-11-15 01:18:24 96768 ----a-w- C:\Windows\System32\mshtmled.dll
2013-11-15 01:18:03 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-11-15 01:12:57 248320 ----a-w- C:\Windows\System32\ieui.dll
2013-11-14 23:13:33 12344320 ----a-w- C:\Windows\SysWow64\mshtml.dll
2013-11-14 22:50:50 1806848 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-11-14 22:50:06 9739264 ----a-w- C:\Windows\SysWow64\ieframe.dll
2013-11-14 22:43:24 1105408 ----a-w- C:\Windows\SysWow64\urlmon.dll
2013-11-14 22:42:41 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-11-14 22:42:32 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-11-14 22:41:18 231936 ----a-w- C:\Windows\SysWow64\url.dll
2013-11-14 22:40:04 65024 ----a-w- C:\Windows\SysWow64\jsproxy.dll
2013-11-14 22:38:54 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-11-14 22:38:35 717824 ----a-w- C:\Windows\SysWow64\jscript.dll
2013-11-14 22:38:16 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-11-14 22:37:32 607744 ----a-w- C:\Windows\SysWow64\msfeeds.dll
2013-11-14 22:36:16 1796096 ----a-w- C:\Windows\SysWow64\iertutil.dll
2013-11-14 22:36:08 73216 ----a-w- C:\Windows\SysWow64\mshtmled.dll
2013-11-14 22:35:52 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-11-14 22:32:56 176640 ----a-w- C:\Windows\SysWow64\ieui.dll
2013-11-11 19:23:22 46368 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
2013-10-30 04:34:52 1386496 ----a-w- C:\Windows\System32\WMALFXGFXDSP.dll
2013-10-30 04:34:21 374784 ----a-w- C:\Windows\System32\SysFxUI.dll
2013-10-30 03:55:25 122368 ----a-w- C:\Windows\System32\drivers\drmk.sys
2013-10-30 02:33:31 218112 ----a-w- C:\Windows\System32\drivers\portcls.sys
2013-10-30 02:10:03 2776064 ----a-w- C:\Windows\System32\win32k.sys
2010-07-22 22:40:00 2944904 ----a-w- C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe
2010-01-26 11:11:08 444283 ----a-w- C:\Program Files\Common Files\WinPcapNmap.exe
.
============= FINISH: 23:22:09.77 ===============

 

[Broni]

Welcome aboard

Please, observe following rules:

• Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
• If you're stuck, or you're not sure about certain step, always ask before doing anything else.
• Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
• Never run more than one scan at a time.
• Keep updating me regarding your computer behavior, good, or bad.
• The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
• If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
• I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

==================================

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
• The first time the tool is run, it makes also another log (Addition.txt). Please copy and paste it to your reply.

 

[davidj23]

Hi Broni,

I am unable to copy and paste the results in my reply as the reply option will only allow 50,000 characters to be displayed, I also know I am not allowed to upload content in the form of attachments.

Is there any way around this so I can upload more characters?

Kind regards,

David.

 

[Broni]

Split logs between couple of replies.

 

[davidj23]

Okay here goes:

FIRST.txt (PART 1)

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014 02
Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: English(US)
Internet Explorer Version 9
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link for 64-Bit Version: https://www.techspot.com/downloads/6731-farbar-recovery-scan-tool.html
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST:
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Hewlett-Packard Corporation) C:\Windows\System32\hpservice.exe
(Validity Sensors, Inc.) C:\Windows\System32\vfsFPService.exe
(Symantec Corporation) C:\Program Files (x86)\Common Files\Symantec Shared\CCSVCHST.EXE
(DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\AESTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
() C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
() C:\Windows\SMINST\BLService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
(DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Symantec Corporation) C:\Program Files (x86)\Common Files\Symantec Shared\CCSVCHST.EXE
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe
() C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
(Symantec Corporation) C:\Program Files (x86)\Common Files\Symantec Shared\COH\COH64.exe

==================== Registry (Whitelisted) ==================
HKLM\...\Run: [VDownloader] - C:\Program Files\VDownloader\VDownloader.exe [881664 2012-09-27] (Vitzo)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1561384 2008-07-17] (Synaptics, Inc.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [910128 2008-08-08] (Hewlett-Packard)
HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-16] (Intel Corporation)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-14] (CANON INC.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [441344 2008-08-05] (IDT, Inc.)
HKLM-x32\...\Run: [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM-x32\...\Run: [TVAgent] - C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe [468264 2008-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [TSMAgent] - C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1144104 2008-08-02] (CyberLink Corp.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-03-17] (Apple Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2009-11-24] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-09-09] (Apple Inc.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] - C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-03-12] (Hewlett-Packard)
HKLM-x32\...\Run: [HP Health Check Scheduler] - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM-x32\...\Run: [DVDAgent] - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2009-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [DpAgent] - C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe [842816 2009-09-29] (DigitalPersona, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1135912 2010-03-05] ()
HKLM-x32\...\Run: [CLMLServer for HP TouchSmart] - C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216 2008-08-02] (CyberLink)
HKLM-x32\...\Run: [ccApp] - C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe [51048 2008-10-17] (Symantec Corporation)
HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664 2013-01-08] (Skype Technologies S.A.)
HKCU\...\Run: [MobileDocuments] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [59240 2012-02-23] (Apple Inc.)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-02-26] (Hewlett-Packard Company)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
HKU\Dav\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-02-26] (Hewlett-Packard Company)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => File Not Found
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {1E575BBE-6804-41D3-AD1B-77F73B5E0B56} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
SearchScopes: HKLM - {C1C7504F-BDFC-4FDA-9467-9B5325F3D1C1} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
SearchScopes: HKLM - {DE5089A1-73FB-4D95-8DCC-B8B08F39BC05} URL = http://slirsredirect.search.aol.com...archTerms}&invocationType=tb50hpcnnbie7-en-gb
SearchScopes: HKLM-x32 - {1E575BBE-6804-41D3-AD1B-77F73B5E0B56} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
SearchScopes: HKLM-x32 - {C1C7504F-BDFC-4FDA-9467-9B5325F3D1C1} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
SearchScopes: HKLM-x32 - {DE5089A1-73FB-4D95-8DCC-B8B08F39BC05} URL = http://slirsredirect.search.aol.com...archTerms}&invocationType=tb50hpcnnbie7-en-gb
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {1E575BBE-6804-41D3-AD1B-77F73B5E0B56} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
SearchScopes: HKCU - {C1C7504F-BDFC-4FDA-9467-9B5325F3D1C1} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
SearchScopes: HKCU - {DE5089A1-73FB-4D95-8DCC-B8B08F39BC05} URL =
BHO: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
BHO-x32: No Name - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\coIEPlg.dll (Symantec Corporation)
BHO-x32: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {15B782AF-55D8-11D1-B477-006097098764} http://www.bpp.com/acca/study-materials/ilearn/common/activex/awswaxd.cab
DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect118.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {A7EA8AD2-287F-11D3-B120-006008C39542} http://offers.e-centives.com/cif/download/bin/actxcab.cab
DPF: HKLM-x32 {B8BE5E93-A60C-4D26-A2DC-220313175592} http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
DPF: HKLM-x32 {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} http://ax.emsisoft.com/asquared.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {E6187999-9FEC-46A1-A20F-F4CA977D5643} http://messenger.zone.msn.com/binary/Chess.cab57176.cab
DPF: HKLM-x32 {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Devinder Johal\AppData\Roaming\Mozilla\Firefox\Profiles\g34bxhll.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @bittorrent.com/BitTorrentDNA - C:\Program Files (x86)\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.10.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\ []
FF HKCU\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\firefoxext
FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\firefoxext [2009-10-28]

 

[davidj23]

FIRST.txt (PART 2)



Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
==================== Services (Whitelisted) =================
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\AESTSr64.exe [89088 2008-06-27] (Andrea Electronics Corporation)
R2 Automatic LiveUpdate Scheduler; c:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe [238968 2008-02-09] (Symantec Corporation)
R2 ccEvtMgr; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
R2 ccSetMgr; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
R2 CLTNetCnService; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
S3 comHost; c:\Program Files (x86)\Common Files\Symantec Shared\VAScanner\comHost.exe [267096 2007-08-22] (Symantec Corporation)
S3 LiveUpdate; c:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_4.EXE [3220856 2008-09-05] (Symantec Corporation)
R2 LiveUpdate Notice; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
R2 QPCapSvc; C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [292216 2008-07-24] ()
R2 QPSched; C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116080 2008-07-24] ()
R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [361808 2008-08-07] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\STacSV64.exe [251904 2008-08-05] (IDT, Inc.)
S3 Symantec Core LC; C:\Program Files (x86)\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [1245064 2008-09-03] ()
S3 Symantec RemoteAssist; C:\Program Files (x86)\Common Files\Symantec Shared\Support Controls\ssrc.exe [394704 2008-01-29] (Symantec, Inc.)
R2 vfsFPService; C:\Windows\system32\vfsFPService.exe [719152 2008-05-26] (Validity Sensors, Inc.)
R2 vfsFPService; C:\Windows\SysWOW64\vfsFPService.exe [599344 2008-05-26] (Validity Sensors, Inc.)
S2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [x]
==================== Drivers (Whitelisted) ====================
R1 A2DDA; C:\Users\Devinder Johal\Desktop\Run\a2ddax64.sys [23208 2012-10-10] (Emsi Software GmbH)
S1 ASPI32; C:\Windows\SysWow64\Drivers\ASPI32.sys [25244 1999-09-10] (Adaptec)
R3 AVerAF15; C:\Windows\System32\Drivers\AVerAF15.sys [306560 2008-06-10] (AVerMedia TECHNOLOGIES, Inc.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-11] (AVG Technologies)
S1 Beep; No ImagePath
S3 COH_Mon; C:\Windows\system32\Drivers\COH_Mon.sys [25424 2008-07-30] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-20] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-20] (Symantec Corporation)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46792 2013-04-24] (AnchorFree Inc.)
R1 IDSvia64; C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20140121.001\IDSvia64.sys [383096 2011-10-17] (Symantec Corporation)
R3 NAVENG; C:\ProgramData\Symantec\Definitions\VirusDefs\20140127.002\ENG64.SYS [126040 2013-12-17] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Symantec\Definitions\VirusDefs\20140127.002\EX64.SYS [2099288 2013-12-17] (Symantec Corporation)
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [24176 2010-11-06] ()
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [513080 2011-06-21] ()
R1 SRTSP; C:\Windows\System32\Drivers\SRTSP64.SYS [440880 2008-01-31] (Symantec Corporation)
S3 SRTSPL; C:\Windows\System32\Drivers\SRTSPL64.SYS [476720 2008-01-31] (Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\Drivers\SRTSPX64.SYS [32304 2008-01-31] (Symantec Corporation)
R3 SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [16432 2008-06-13] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [172080 2009-02-20] (Symantec Corporation)
R3 SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [144944 2008-06-13] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [28720 2008-06-13] (Symantec Corporation)
R3 SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [48176 2008-06-13] (Symantec Corporation)
R3 SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [28720 2008-06-13] (Symantec Corporation)
R1 SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [266800 2008-06-13] (Symantec Corporation)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)
R3 vfs101a; C:\Windows\System32\drivers\vfs101a.sys [49968 2008-05-26] (Validity Sensors, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
U4 eabfiltr;
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [133632 2010-01-28] (Huawei Technologies Co., Ltd.)
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========
2014-01-28 00:12 - 2014-01-28 00:12 - 00000000 ____D C:\FRST
2014-01-27 23:24 - 2014-01-27 23:24 - 00011672 _____ C:\Users\Devinder Johal\Desktop\attach.txt
2014-01-27 23:24 - 2014-01-27 23:22 - 00018116 _____ C:\Users\Devinder Johal\Desktop\dds.txt
2014-01-18 20:31 - 2014-01-19 00:18 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jazmin Chaudhry
2014-01-18 20:28 - 2014-01-19 00:00 - 734347264 _____ C:\Users\Devinder Johal\Downloads\Cats Eye.avi
2014-01-09 11:48 - 2014-01-09 13:57 - 00000000 ____D C:\Users\Devinder Johal\Downloads\[ www.Torrenting.com ] - The Diary of Ellen Rimbauer (2003)-DVDRIp-AC3-Xvid-THC
2014-01-04 13:07 - 2014-01-04 16:50 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Booty Talk Favorite Asses 5
2014-01-04 13:03 - 2014-01-04 17:32 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Kaci Starr - Gagalicious (own puke all over her face)
2014-01-01 20:56 - 2014-01-04 20:26 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jedi Mind Tricks presents King Syze-The Labor Union (2008)-Rawkus--Darkside_RG
2014-01-01 19:23 - 2014-01-01 19:23 - 00000772 _____ C:\Users\Devinder Johal\Desktop\JRT.txt
2014-01-01 13:34 - 2014-01-01 13:41 - 00000000 ____D C:\AdwCleaner
2014-01-01 10:28 - 2014-01-01 10:28 - 00001733 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_102821.txt
2014-01-01 09:21 - 2014-01-01 09:21 - 00001700 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_092147.txt
2014-01-01 09:20 - 2014-01-01 09:20 - 00001802 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_01012014_092010.txt
2014-01-01 08:59 - 2014-01-01 10:28 - 01423808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00594432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00513080 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00476720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspl64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00459264 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00440880 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtsp64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00408024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00284728 _____ (ULi Electronics Inc.) C:\Windows\system32\Drivers\uliahci.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00273408 _____ (Marvell) C:\Windows\system32\Drivers\yk60x64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00267648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00266800 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symtdi.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00250928 _____ (Synaptics, Inc.) C:\Windows\system32\Drivers\SynTP.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00207872 _____ (Realtek ) C:\Windows\system32\Drivers\Rtlh64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00174696 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata2.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00173112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00172080 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00164328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00149048 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00148072 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00144944 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symfw.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00090216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00078392 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00068224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00067128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00067048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00062440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00052736 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00049968 _____ (Validity Sensors, Inc.) C:\Windows\system32\Drivers\vfs101a.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00049256 _____ (LSI Logic) C:\Windows\system32\Drivers\symc8xx.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00048232 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_u3.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00048176 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symndisv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00047152 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symids.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00045624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sisraid2.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00044648 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_hi.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00042184 _____ (Anchorfree Inc.) C:\Windows\system32\Drivers\taphss6.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00036760 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00032640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00032304 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspx64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symredrv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SymIMV.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00024120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00019432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TUNMP.SYS.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00018024 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00016432 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symdns.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00013032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
2014-01-01 08:59 - 2014-01-01 10:28 - 00007552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 12432616 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 06816256 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw5v64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 03154432 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw3v64.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 01513320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 01221176 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00738264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00347112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00310760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00215528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00203368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00178664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00128056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00128056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00126520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00124008 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00113720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00083488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00072576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00072448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00059880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00054328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00051816 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00051256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00047632 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00039016 _____ (LSI Logic Corporation) C:\Windows\system32\Drivers\Mraid35x.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00034872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00031288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00017976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00013416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00011008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00007040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
2014-01-01 08:59 - 2014-01-01 10:27 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
2014-01-01 08:59 - 2014-01-01 08:59 - 00001762 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_085939.txt
2014-01-01 08:58 - 2014-01-01 10:27 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00695296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00691712 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00516480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00486456 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00438328 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00397368 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00388120 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00342584 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00325608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00306560 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVerAF15.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00290872 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00275432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00185912 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00166888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00164840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00155112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00146176 _____ (Intel Corporation) C:\Windows\system32\Drivers\E1G6032E.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00143360 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00133632 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00126520 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu160m.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00123368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00117120 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00116224 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbfake.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00114304 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbdev.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_fc.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00105016 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_sas.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00099368 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00091192 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00091176 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00090680 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00088168 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\djsvs.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00086528 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00067032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00065280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00064568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00064000 _____ (ENE TECHNOLOGY INC.) C:\Windows\system32\Drivers\enecir.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00048488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00047672 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpCISSs.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00046792 _____ (AnchorFree Inc.) C:\Windows\system32\Drivers\hssdrv6.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00044648 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00042040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00040296 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\Accelerometer.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00039992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00039400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteraid.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteatapi.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00035896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omp.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00035896 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00031616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00030776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00029696 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00029656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00027704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00027256 _____ (Symantec Corporation) C:\Windows\system32\Drivers\FixZeroAccess.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00026984 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\hpdskflt.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00025424 _____ (Symantec Corporation) C:\Windows\system32\Drivers\COH_Mon.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00020952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00020864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00020536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omgmt.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00019752 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00018432 _____ (Hewlett-Packard Development Company, L.P.) C:\Windows\system32\Drivers\HpqKbFiltr.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00018024 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00015976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00015976 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00015616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bdasup.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
2014-01-01 08:58 - 2014-01-01 10:27 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
2013-12-29 15:49 - 2013-12-29 15:49 - 00001568 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154931.txt
2013-12-29 15:48 - 2013-12-29 15:48 - 00001736 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_12292013_154812.txt
2013-12-29 15:47 - 2013-12-29 15:47 - 00001654 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154745.txt

 

[davidj23]

FIRST.txt (PART 3)

==================== One Month Modified Files and Folders =======
2014-01-28 00:12 - 2014-01-28 00:12 - 00000000 ____D C:\FRST
2014-01-27 23:49 - 2006-11-02 15:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-27 23:49 - 2006-11-02 15:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-27 23:32 - 2012-07-18 21:34 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-27 23:24 - 2014-01-27 23:24 - 00011672 _____ C:\Users\Devinder Johal\Desktop\attach.txt
2014-01-27 23:22 - 2014-01-27 23:24 - 00018116 _____ C:\Users\Devinder Johal\Desktop\dds.txt
2014-01-27 23:11 - 2008-10-17 10:25 - 01633147 _____ C:\Windows\WindowsUpdate.log
2014-01-27 21:56 - 2008-09-03 05:47 - 00003592 _____ C:\Windows\System32\Tasks\HP Health Check
2014-01-27 21:52 - 2008-09-03 05:20 - 00003149 _____ C:\ProgramData\hpqp.ini
2014-01-27 21:49 - 2009-01-31 21:30 - 00000000 ____D C:\Windows\Minidump
2014-01-27 21:49 - 2006-11-02 15:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-27 21:48 - 2013-04-12 09:43 - 584403669 _____ C:\Windows\MEMORY.DMP
2014-01-26 23:14 - 2013-01-07 05:04 - 00000000 ____D C:\Users\Devinder Johal\Desktop\CURICULUM VITAE
2014-01-26 00:15 - 2012-07-14 10:21 - 00003698 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{DDA4E6EE-73E6-4CB7-8D4C-A01E10EB6695}
2014-01-23 21:40 - 2012-08-05 16:45 - 00000000 ____D C:\Users\Devinder Johal\AppData\Local\CrashDumps
2014-01-21 20:57 - 2012-12-21 19:48 - 00000000 ____D C:\Users\Devinder Johal\AppData\Roaming\Skype
2014-01-21 20:55 - 2010-04-21 23:10 - 00000000 ____D C:\Users\Devinder Johal\AppData\Roaming\HpUpdate
2014-01-20 01:17 - 2010-12-17 19:20 - 00000000 ____D C:\Program Files\PeerBlock
2014-01-20 01:16 - 2012-08-11 21:38 - 00000000 ____D C:\Users\Devinder Johal\AppData\Roaming\uTorrent
2014-01-19 00:18 - 2014-01-18 20:31 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jazmin Chaudhry
2014-01-19 00:00 - 2014-01-18 20:28 - 734347264 _____ C:\Users\Devinder Johal\Downloads\Cats Eye.avi
2014-01-16 03:11 - 2008-09-03 05:08 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 03:10 - 2013-07-20 21:34 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 03:01 - 2006-11-02 12:35 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-01-13 21:26 - 2012-08-17 18:06 - 00016488 _____ C:\Windows\PFRO.log
2014-01-11 00:02 - 2012-03-11 20:12 - 00000000 ____D C:\Users\Devinder Johal\Desktop\EachOne
2014-01-09 13:57 - 2014-01-09 11:48 - 00000000 ____D C:\Users\Devinder Johal\Downloads\[ www.Torrenting.com ] - The Diary of Ellen Rimbauer (2003)-DVDRIp-AC3-Xvid-THC
2014-01-04 20:26 - 2014-01-01 20:56 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jedi Mind Tricks presents King Syze-The Labor Union (2008)-Rawkus--Darkside_RG
2014-01-04 17:32 - 2014-01-04 13:03 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Kaci Starr - Gagalicious (own puke all over her face)
2014-01-04 17:32 - 2012-01-25 13:30 - 00000000 ____D C:\Users\Devinder Johal\Desktop\New Folder (3)
2014-01-04 16:50 - 2014-01-04 13:07 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Booty Talk Favorite Asses 5
2014-01-02 07:57 - 2012-11-16 16:14 - 00000000 ____D C:\ProgramData\CanonIJPLM
2014-01-02 07:06 - 2008-10-17 10:20 - 00002140 _____ C:\Windows\bthservsdp.dat
2014-01-02 07:06 - 2006-11-02 15:42 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-01 19:23 - 2014-01-01 19:23 - 00000772 _____ C:\Users\Devinder Johal\Desktop\JRT.txt
2014-01-01 19:14 - 2013-03-26 11:17 - 00000000 ____D C:\JRT
2014-01-01 13:41 - 2014-01-01 13:34 - 00000000 ____D C:\AdwCleaner
2014-01-01 13:41 - 2013-03-13 06:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-01 11:24 - 2013-10-27 23:08 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-01 11:24 - 2013-03-16 12:54 - 00000000 ____D C:\Users\Devinder Johal\Desktop\mbar
2014-01-01 10:28 - 2014-01-01 10:28 - 00001733 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_102821.txt
2014-01-01 10:28 - 2014-01-01 08:59 - 01423808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00594432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00513080 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00476720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspl64.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00459264 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00440880 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtsp64.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00408024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00284728 _____ (ULi Electronics Inc.) C:\Windows\system32\Drivers\uliahci.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00273408 _____ (Marvell) C:\Windows\system32\Drivers\yk60x64.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00267648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00266800 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symtdi.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00250928 _____ (Synaptics, Inc.) C:\Windows\system32\Drivers\SynTP.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00207872 _____ (Realtek ) C:\Windows\system32\Drivers\Rtlh64.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00174696 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata2.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00173112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00172080 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00164328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00149048 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00148072 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00144944 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symfw.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00090216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00078392 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00068224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00067128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00067048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00062440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00052736 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00049968 _____ (Validity Sensors, Inc.) C:\Windows\system32\Drivers\vfs101a.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00049256 _____ (LSI Logic) C:\Windows\system32\Drivers\symc8xx.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00048232 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_u3.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00048176 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symndisv.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00047152 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symids.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00045624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sisraid2.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00044648 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_hi.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00042184 _____ (Anchorfree Inc.) C:\Windows\system32\Drivers\taphss6.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00036760 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00032640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00032304 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspx64.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symredrv.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SymIMV.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00024120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00019432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TUNMP.SYS.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00018024 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00016432 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symdns.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00013032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
2014-01-01 10:28 - 2014-01-01 08:59 - 00007552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
2014-01-01 10:28 - 2013-10-27 23:07 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-01-01 10:27 - 2014-01-01 08:59 - 12432616 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 06816256 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw5v64.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 03154432 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw3v64.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 01513320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 01221176 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00738264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00347112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00310760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00215528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00203368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00178664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00128056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00128056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00126520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00124008 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00113720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00083488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00072576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00072448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00059880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00054328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00051816 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00051256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00047632 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00039016 _____ (LSI Logic Corporation) C:\Windows\system32\Drivers\Mraid35x.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00034872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00031288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00017976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00013416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00011008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00007040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
2014-01-01 10:27 - 2014-01-01 08:59 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00695296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00691712 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00516480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00486456 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00438328 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00397368 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00388120 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00342584 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00325608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00306560 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVerAF15.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00290872 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00275432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00185912 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00166888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00164840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00155112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00146176 _____ (Intel Corporation) C:\Windows\system32\Drivers\E1G6032E.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00143360 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00133632 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00126520 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu160m.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00123368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00117120 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00116224 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbfake.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00114304 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbdev.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_fc.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00105016 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_sas.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00099368 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00091192 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00091176 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00090680 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00088168 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\djsvs.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00086528 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00067032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00065280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00064568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00064000 _____ (ENE TECHNOLOGY INC.) C:\Windows\system32\Drivers\enecir.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00048488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00047672 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpCISSs.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00046792 _____ (AnchorFree Inc.) C:\Windows\system32\Drivers\hssdrv6.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00044648 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00042040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00040296 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\Accelerometer.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00039992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00039400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteraid.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteatapi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00035896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00035896 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00031616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00030776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00029696 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00029656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00027704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00027256 _____ (Symantec Corporation) C:\Windows\system32\Drivers\FixZeroAccess.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00026984 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\hpdskflt.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00025424 _____ (Symantec Corporation) C:\Windows\system32\Drivers\COH_Mon.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00020952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00020864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00020536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omgmt.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00019752 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00018432 _____ (Hewlett-Packard Development Company, L.P.) C:\Windows\system32\Drivers\HpqKbFiltr.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00018024 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00015976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00015976 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00015616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bdasup.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
2014-01-01 10:27 - 2014-01-01 08:58 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
2014-01-01 09:21 - 2014-01-01 09:21 - 00001700 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_092147.txt
2014-01-01 09:20 - 2014-01-01 09:20 - 00001802 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_01012014_092010.txt
2014-01-01 09:20 - 2013-10-27 23:03 - 00000000 ____D C:\Users\Devinder Johal\Desktop\RK_Quarantine
2014-01-01 08:59 - 2014-01-01 08:59 - 00001762 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_085939.txt
2013-12-31 08:14 - 2006-11-02 12:46 - 00703342 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-29 15:49 - 2013-12-29 15:49 - 00001568 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154931.txt
2013-12-29 15:48 - 2013-12-29 15:48 - 00001736 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_12292013_154812.txt
2013-12-29 15:47 - 2013-12-29 15:47 - 00001654 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154745.txt
2013-12-29 08:57 - 2013-12-28 18:36 - 1191461766 _____ C:\Users\Devinder Johal\Downloads\***** Gaggers 7.mp4
2013-12-29 08:42 - 2013-12-28 18:57 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Rare & Exclusive Throat**** & Puke Pack
Files to move or delete:
====================
C:\Users\Devinder Johal\AppData\Roaming\desktop.ini

Some content of TEMP:
====================
C:\Users\Devinder Johal\AppData\Local\temp\dlLogic.exe
C:\Users\Devinder Johal\AppData\Local\temp\GCVerifier.dll
C:\Users\Devinder Johal\AppData\Local\temp\ntdll_dump.dll
C:\Users\Devinder Johal\AppData\Local\temp\Quarantine.exe
C:\Users\Devinder Johal\AppData\Local\temp\symlcsv1.exe

==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2014-01-27 21:57
==================== End Of Log ============================

 

[davidj23]

Addition.txt (Part 1)



Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-01-2014 02
Ran by Devinder Johal at 2014-01-28 00:14:00
Running from C:\Users\Devinder Johal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WRI2YI9F
Boot Mode: Normal
==========================================================

==================== Security Center ========================
AV: Norton Internet Security (Enabled - Up to date) {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Enabled - Up to date) {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Norton Internet Security (Enabled) {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft)
µTorrent (x32 Version: 2.0.2 - )
Acrobat.com (x32 Version: 1.7.186 - Adobe Systems Incorporated)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0 - Microsoft Corporation) Hidden
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.2 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) (x32 Version: 10.1.9 - Adobe Systems Incorporated)
Allok MP3 to AMR Converter 3.0.2 (x32 Version: - Allok Soft .Inc)
AppCore (x32 Version: 1.3 - Symantec Corporation) Hidden
Apple Application Support (x32 Version: 2.2.2 - Apple Inc.)
Apple Mobile Device Support (Version: 6.0.0.59 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0 (x32 Version: - Audacity Team)
AVerMedia A309 (MiniCard, DVB-T) 1.0.64.45 (x32 Version: 1.0.64.45 - AVerMedia TECHNOLOGIES, Inc.)
AviSynth 2.5 (x32 Version: - )
AVS Update Manager 1.0 (x32 Version: - Online Media Technologies Ltd.)
Bigasoft Total Video Converter 3.6.18.4499 (x32 Version: - Bigasoft Corporation)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
BurnAware Free 6.2 (x32 Version: - Burnaware)
Canon IJ Network Scanner Selector EX (x32 Version: - )
Canon IJ Network Tool (x32 Version: - )
Canon MG5300 series MP Drivers (Version: - )
Canon MG5300 series On-screen Manual (x32 Version: - )
Canon MG5300 series User Registration (x32 Version: - )
Canon MP Navigator EX 5.0 (x32 Version: - )
Canon My Printer (x32 Version: - )
Canon Solution Menu EX (x32 Version: - )
ccCommon (x32 Version: 107.0.4.3 - Symantec) Hidden
ccCommon64 (Version: 107.0.4.3 - Symantec) Hidden
CCleaner (Version: 3.21 - Piriform)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Component Framework (x32 Version: 2006.1.3.35 - Symantec Corporation) Hidden
coverXP (remove only) (x32 Version: - )
CyberLink DVD Suite (x32 Version: 5.5.1823 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DFX for Windows Media Player (x32 Version: 9.211.0.0 - Power Technology)
DigitalPersona Personal 4.11 (Version: 4.11.3805 - DigitalPersona, Inc.)
DivX Plus DirectShow Filters (x32 Version: - DivX, Inc.)
DivX Setup (x32 Version: 1.0.1.4 - DivX, Inc. )
ESU for Microsoft Vista (x32 Version: 1.0.0 - Hewlett-Packard)
Free PS Convert driver 8.15 (x32 Version: - )
Google Update Helper (x32 Version: 1.3.23.0 - DealPly Technologies Ltd) Hidden <==== ATTENTION
Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
HP Active Support Library (x32 Version: 3.1.9.1 - Hewlett-Packard)
HP Customer Experience Enhancements (x32 Version: 5.7.0.2630 - Hewlett-Packard)
HP Doc Viewer (x32 Version: 1.01.0005 - Hewlett-Packard)
HP Easy Setup - Frontend (x32 Version: 5.7.0.2693 - Hewlett-Packard)
HP Help and Support (x32 Version: 2.1.3.0 - Hewlett-Packard Company)
HP Integrated Module with Bluetooth wireless technology 6.0.1.6204 (Version: 6.0.1.6204 - HP)
HP MediaSmart DVD (x32 Version: 2.2.3309 - Hewlett-Packard)
HP MediaSmart DVD (x32 Version: 2.2.3309 - Hewlett-Packard) Hidden
HP MediaSmart Music/Photo/Video (x32 Version: 1.0.2002 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (x32 Version: 1.0.2002 - Hewlett-Packard) Hidden
HP MediaSmart SmartMenu (Version: 1.0.20 - Hewlett-Packard)
HP MediaSmart TV (x32 Version: 1.0.0729 - Hewlett-Packard)
HP MediaSmart TV (x32 Version: 1.0.0729 - Hewlett-Packard) Hidden
HP Product Detection (x32 Version: 11.14.0001 - HP)
HP Quick Launch Buttons (x32 Version: 6.50.13.1 - Hewlett-Packard Company)
HP Total Care Advisor (x32 Version: 2.3.4394.2730 - Hewlett-Packard)
HP Total Care Advisor (x32 Version: 2.4.6651.2902 - Hewlett-Packard)
HP Update (x32 Version: 5.002.005.003 - Hewlett-Packard)
HP User Guides 0115 (x32 Version: 1.02.0000 - Hewlett-Packard)
HP Wireless Assistant (x32 Version: 3.50.9.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (x32 Version: 3.0.0.6 - Hewlett-Packard) Hidden
Huawei modem (x32 Version: - )
iCloud (Version: 1.1.0.40 - Apple Inc.)
IDT Audio (x32 Version: 1.0.6047.5 - IDT)
Intel® Matrix Storage Manager (Version: - Intel Corporation)
iTunes (Version: 10.7.0.21 - Apple Inc.)
JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
JMicron JMB38X Flash Media Controller (x32 Version: 1.00.18.07 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 5.9.0 (Basic) (x32 Version: 5.9.0 - )
LightScribe System Software 1.12.33.2 (x32 Version: 1.12.33.2 - LightScribe)
LiveUpdate (Symantec Corporation) (x32 Version: 3.4.1.232 - Symantec Corporation)
LiveUpdate (Symantec Corporation) (x32 Version: 3.4.1.238 - Symantec Corporation) Hidden
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (x32 Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (x32 Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Works (x32 Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 19.0.2 (x86 en-US) (x32 Version: 19.0.2 - Mozilla)
Mozilla Maintenance Service (x32 Version: 19.0.2 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
muvee autoProducer 6.1 (x32 Version: 6.10.050 - muvee Technologies)
Nero BurnLite 10 (x32 Version: 10.0.10100.1.100 - Nero AG)
Nero BurnLite 10 (x32 Version: 10.0.10500 - Nero AG)
Nero Control Center 10 (x32 Version: 10.0.13100.3.1 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.15100.0.1 - Nero AG) Hidden
Nero Update (x32 Version: 1.0.0018 - Nero AG)
Norton AntiVirus (x32 Version: 15.5.0.23 - Symantec Corporation) Hidden
Norton AntiVirus Help (x32 Version: 15.0 - Symantec Corporation) Hidden
Norton Confidential Core (x32 Version: 2.5.0.32 - Symantec Corporation) Hidden
Norton Internet Security (Symantec Corporation) (x32 Version: 15.5.0.23 - Symantec Corporation)
Norton Internet Security (x32 Version: 15.5.0.23 - Symantec Corporation) Hidden
Norton Protection Center (Version: 3.6.0.18 - Symantec Corporation) Hidden
Norton Protection Center (x32 Version: 3.6.0.18 - Symantec Corporation) Hidden
NVIDIA Drivers (Version: 1.4 - NVIDIA Corporation)
PDFCreator (Version: - )
PeerBlock 1.1 (r518) (Version: 1.1.0.518 - PeerBlock, LLC)
PL-2303 USB-to-Serial (x32 Version: 1.1.0 - Prolific Technology INC)
ProtectSmart Hard Drive Protection (Version: 3.10.1.7 - Hewlett-Packard)
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
QuickPlay SlingPlayer 0.4.6 (x32 Version: 0.4.6 - SlingMedia)
QuickTime (x32 Version: 7.66.71.0 - Apple Inc.)
Realtek 8169 8168 8101E 8102E Ethernet Driver (x32 Version: 1.00.0000 - Realtek)
RedMon - Redirection Port Monitor (Version: - )
Segoe UI (x32 Version: 15.4.2271.0615 - Microsoft Corp) Hidden
Skype™ 6.1 (x32 Version: 6.1.129 - Skype Technologies S.A.)
SPBBC 64bit (Version: 107.1.0.15 - Symantec Corporation) Hidden
Symantec Real Time Storage Protection Component (x64) (Version: 10.2.3.9 - Symantec Corporation) Hidden
Symantec Technical Support Web Controls (x32 Version: 3.5.3 - Symantec Corporation)
SymNet x64 (Version: 8.0.2.6 - Symantec Corporation) Hidden
Synaptics Pointing Device Driver (Version: 11.2.0.0 - Synaptics)
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (x32 Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (x32 Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
Validity Sensors software (Version: 2.7.44 - Validity Sensors, Inc.)
VC80CRTRedist - 8.0.50727.4053 (x32 Version: 1.1.0 - DivX, Inc) Hidden
VDownloader 3.9.1326 (Version: - Vitzo Limited)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (x32 Version: 9.0.30729.01 - Microsoft Corporation)
VLC media player 1.1.11 (x32 Version: 1.1.11 - VideoLAN)
Windows Driver Package - ENE (enecir) HIDClass (04/29/2008 2.5.0.0) (Version: 04/29/2008 2.5.0.0 - ENE)
Windows Driver Package - ENE (enecir) HIDClass (09/04/2008 2.6.0.0) (Version: 09/04/2008 2.6.0.0 - ENE)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (x32 Version: 14.0.8064.206 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Phone Intro Video (ENU) (x32 Version: 04.07.0975.00 - Microsoft Corporation) Hidden
WinPcap 4.1.1 (x32 Version: 4.1.0.1753 - CACE Technologies)
WinRAR 4.01 (32-bit) (x32 Version: 4.01.0 - win.rar GmbH)
XviD & MP3 Codec Pack (remove only) (x32 Version: - )
XviD MPEG-4 Video Codec (x32 Version: XviD-1.0.3-20122004 - XviD Team (Koepi))
==================== Restore Points =========================
10-01-2014 22:48:18 Windows Update
12-01-2014 02:51:05 Scheduled Checkpoint
15-01-2014 05:37:16 Scheduled Checkpoint
15-01-2014 19:57:11 Windows Update
16-01-2014 03:00:34 Windows Update
21-01-2014 21:01:41 Windows Update
23-01-2014 03:08:07 Scheduled Checkpoint
24-01-2014 22:03:24 Windows Update
==================== Hosts content: ==========================
2006-11-02 12:34 - 2013-03-24 12:14 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {04DBD2DF-D22D-4247-900B-B7D32D028811} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {490660F2-405C-463C-BE28-F3582B064C01} - System32\Tasks\HP Health Check => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard)
Task: {603F0E2F-EF1A-4821-B8A7-FC59933FAA78} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-07-24] (Piriform Ltd)
Task: {700513EA-30C4-42B1-969C-213C736D71C0} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {7C638E5B-ECE5-4424-A7E5-2C913CA682E9} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {897E3CB8-DE80-4A03-BB7B-E614AC49AD13} - \Scheduled Update for Ask Toolbar No Task File
Task: {B51F568F-DF3F-4414-AD03-14F4F8F300F3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2008-06-19 20:59 - 2008-06-19 20:59 - 00167936 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2008-07-24 02:35 - 2008-07-24 02:35 - 00074536 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\Common\MCEMediaStatus64.dll
2012-02-20 20:29 - 2012-02-20 20:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 20:28 - 2012-02-20 20:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2008-07-24 02:35 - 2008-07-24 02:35 - 00259480 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapEngine.dll
2008-07-24 02:35 - 2008-07-24 02:35 - 00038184 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapSvcps.dll
2008-09-03 05:39 - 2008-08-07 00:37 - 00132432 _____ () C:\Windows\SMINST\STWmiM.dll
2007-07-12 19:55 - 2007-07-12 19:55 - 01581056 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
2007-08-14 19:59 - 2007-08-14 19:59 - 06365184 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
2007-07-12 19:55 - 2007-07-12 19:55 - 00131072 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00101376 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 02263552 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaout_directx_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00067072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdirectx_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00210944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdshow_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 02169856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libskins2_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libwaveout_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00033792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmemcpymmxext_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00090112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaccess_bd_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00231424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdvdnav_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfilesystem_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00034304 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libstream_filter_rar_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00078848 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libzip_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libstream_filter_record_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00108032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libplaylist_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 01108992 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libtaglib_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00338432 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liblua_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 01137664 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libxml_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libhotkeys_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00033792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libglobalhotkeys_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 11496448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libqt4_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00194048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmp4_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00088064 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libavi_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00037376 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfake_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00034304 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libcdg_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00237568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libpng_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 01013248 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libschroedinger_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00265216 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libflac_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 01712128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libvorbis_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00130048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libspeex_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 01776128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liblibass_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00045568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaraw_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00033280 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaes3_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdts_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00309760 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfaad_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00368640 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libtheora_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmpeg_audio_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00035840 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liblpcm_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00258048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfluidsynth_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 08248320 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libavcodec_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00652800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfreetype_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00178176 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdtstofloat32_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00048640 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_sse2_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00065536 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52tofloat32_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00039936 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_mmx_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00128000 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmpgatofixed32_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00325120 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libswscale_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00032768 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libconverter_fixed_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00030720 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52tospdif_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00032256 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdtstospdif_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00033792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libsimple_channel_mixer_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00046080 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_sse2_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00032256 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdolby_surround_decoder_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00135680 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_sse2_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmono_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_mmx_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libugly_resampler_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00073728 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_mmx_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaudio_format_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00040448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuy2_i420_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00031744 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfloat32_mixer_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00052224 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libscaletempo_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00032768 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libgrey_yuv_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00038400 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuy2_i422_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00032768 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_i420_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00031744 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libscale_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuvp_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libvout_wrapper_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00061440 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdirect3d_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdrawable_plugin.dll
2011-07-14 12:21 - 2011-07-14 12:21 - 00057856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libblend_plugin.dll
==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Audiosrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MMCSS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Sound, video and game controllers"
==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================
Application errors:
==================
Error: (01/28/2014 00:09:18 AM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 14f8
Start Time: 01cf1bb580861f1e
Termination Time: 3
Error: (01/27/2014 11:12:37 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 2860
Start Time: 01cf1bb049d60a62
Termination Time: 7
Error: (01/27/2014 10:25:07 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 282c
Start Time: 01cf1baccc3ce451
Termination Time: 12
Error: (01/27/2014 09:50:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/27/2014 08:33:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 72887068
Error: (01/27/2014 08:33:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 72887068
Error: (01/27/2014 08:33:20 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (01/27/2014 08:33:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 72885992
Error: (01/27/2014 08:33:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 72885992
Error: (01/27/2014 08:33:19 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

System errors:
=============
Error: (01/27/2014 09:51:42 PM) (Source: Service Control Manager) (User: )
Description: ASPI32
Beep
Error: (01/27/2014 09:50:06 PM) (Source: Service Control Manager) (User: )
Description: vToolbarUpdater17.2.0%%2
Error: (01/27/2014 09:49:17 PM) (Source: Print) (User: NT AUTHORITY)
Description: Printer doPDF v7 failed to initialize because a suitable doPDF 7 Printer Driver driver could not be found. The new printer settings that you specified have not taken effect. Install or reinstall the printer driver. You might need to contact the vendor for an updated driver.
Error: (01/27/2014 09:49:17 PM) (Source: Print) (User: NT AUTHORITY)
Description: Printer Batch failed to initialize because a suitable Apple Color LW 12/660 PS driver could not be found. The new printer settings that you specified have not taken effect. Install or reinstall the printer driver. You might need to contact the vendor for an updated driver.
Error: (01/27/2014 09:48:59 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 21:43:30 on 27/01/2014 was unexpected.
Error: (01/27/2014 09:48:33 PM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\ASPI32.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
Error: (01/24/2014 05:40:04 PM) (Source: Service Control Manager) (User: )
Description: 30000Symantec Core LC
Error: (01/22/2014 07:18:58 PM) (Source: Service Control Manager) (User: )
Description: 30000Symantec Core LC
Error: (01/21/2014 08:51:24 PM) (Source: Service Control Manager) (User: )
Description: ASPI32
Beep
Error: (01/21/2014 08:49:54 PM) (Source: Service Control Manager) (User: )
Description: vToolbarUpdater17.2.0%%2

Microsoft Office Sessions:
=========================
Error: (12/24/2011 08:29:51 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.
Error: (12/10/2011 00:01:53 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash.
Error: (05/08/2011 07:00:15 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.
Error: (04/02/2011 08:07:29 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
Error: (02/25/2011 08:57:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 13 seconds with 0 seconds of active time. This session ended with a crash.
Error: (02/13/2011 09:43:49 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash.
Error: (02/13/2011 04:09:45 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.
Error: (01/10/2011 05:59:46 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 20 seconds with 0 seconds of active time. This session ended with a crash.
Error: (09/17/2010 09:32:33 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.

CodeIntegrity Errors:
===================================
Date: 2014-01-28 00:13:40.086
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:39.781
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:39.464
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:39.158
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:38.876
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:38.577
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:38.289
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:38.004
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:37.630
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
Date: 2014-01-28 00:13:37.342
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================
Percentage of memory in use: 59%
Total physical RAM: 4062.25 MB
Available physical RAM: 1662.81 MB
Total Pagefile: 8317.77 MB
Available Pagefile: 5921.17 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:286.35 GB) (Free:135.59 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:11.74 GB) (Free:1.91 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 298 GB) (Disk ID: A4022EF6)
Partition 1: (Active) - (Size=286 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=12 GB) - (Type=07 NTFS)
==================== End Of Log ============================

 

[Broni]

I don't see much there...

Download attached fixlist.txt file and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST/FRST64 and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

[davidj23]

Thanks Broni, here is the log:



Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2014 02
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => File Not Found
Toolbar: HKCU - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
C:\Users\Devinder Johal\AppData\Roaming\desktop.ini
Task: {897E3CB8-DE80-4A03-BB7B-E614AC49AD13} - \Scheduled Update for Ask Toolbar No Task File
*****************
"C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC64Loader.dll" => Value Data removed successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Value deleted successfully.
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key deleted successfully.
C:\Users\Devinder Johal\AppData\Roaming\desktop.ini => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{897E3CB8-DE80-4A03-BB7B-E614AC49AD13} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{897E3CB8-DE80-4A03-BB7B-E614AC49AD13} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar => Key deleted successfully.
==== End of Fixlog ====

 

[Broni]

Download BlueScreenView
Unzip downloaded file.
Double click on BlueScreenView.exe file to run the program.
When scanning is done, go Edit>Select All.
Go File>Save Selected Items, and save the report as BSOD.txt.
Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

 

[davidj23]

==================================================
Dump File : Mini041213-01.dmp
Crash Time : 12/04/2013 09:41:59
Bug Check String :
Bug Check Code : 0x00000116
Parameter 1 : fffffa80`097f6010
Parameter 2 : fffffa60`0301e460
Parameter 3 : 00000000`00000000
Parameter 4 : 00000000`00000002
Caused By Driver : dxgkrnl.sys
Caused By Address : dxgkrnl.sys+5bad4
File Description :
Product Name :
Company :
File Version :
Processor : x64
Crash Address : ntoskrnl.exe+57150
Stack Address 1 :
Stack Address 2 :
Stack Address 3 :
Computer Name :
Full Path : C:\Windows\Minidump\Mini041213-01.dmp
Processors Count : 2
Major Version : 15
Minor Version : 6002
Dump File Size : 376,872
Dump File Time : 12/04/2013 09:44:50
==================================================


Hmm that's strange, almost as if the computer hasnt saved any information from the crash or even recorded it... this may be because I manually shut down the computer when the BSOD happened by holding down the power button (sorry, I freaked out a little).

 

[Broni]

Download RogueKiller from one of the following links and save it to your Desktop:

• Link 1
• Link 2

• Close all the running programs
• Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator
• Otherwise just double-click on RogueKiller.exe
• Pre-scan will start. Let it finish.
• Click on SCAN button.
• Wait until the Status box shows Scan Finished
• Click on Delete.
• Wait until the Status box shows Deleting Finished.
• Click on Report and copy/paste the content of the Notepad into your next reply.
• RKreport.txt could also be found on your desktop.
• If more than one log is produced post all logs.
• If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

Create new restore point before proceeding with the next step....
How to: http://www.smartestcomputing.us.com/topic/63983-how-to-create-new-restore-point-all-windows/

Download Malwarebytes Anti-Rootkit (MBAR) from HERE

• Unzip downloaded file.
• Open the folder where the contents were unzipped and run mbar.exe
• Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
• Click on the Cleanup button to remove any threats and reboot if prompted to do so.
• Wait while the system shuts down and the cleanup process is performed.
• Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
• When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt

 

[Broni]

Still with me?

 

[Broni]

This topic is marked as abandoned and closed due to inactivity.

This member will NOT be eligible to receive any more help in malware removal forum.