TechSpot

Sudden BSOD - Possible Malware/Trojan - Help Highly Appreciated

Inactive-A
By davidj23
Jan 27, 2014
  1. Hi,

    My name is David from the UK, I'm currently running a HP HDX 64bit OS (Vista). Yesterday while browsing for gifts for a relative on Ebay I received a sudden "Blue Screen of Death" message, I consequently unplugged the system and restarted and managed to get onto TechSpot to post for some help.

    I have not undertaken ANY diagnostic procedures apart from my Norton antivirus which stays on all the time and is of little help in all honestly.

    I would highly appreciate any help, I have been to this forum before, and have always received amazing help - thank you in advance!

    MalwareBytes

    I am unable to post a Malwarebytes log as the program crashes every time I try to run it.

    DDS

    Attach.txt


    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft® Windows Vista™ Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 17/10/2008 11:20:50
    System Uptime: 27/01/2014 21:48:06 (2 hours ago)
    .
    Motherboard: Quanta | | 361B
    Processor: Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz | CPU | 2267/1066mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 286 GiB total, 135.771 GiB free.
    D: is FIXED (NTFS) - 12 GiB total, 1.913 GiB free.
    E: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    .
    ==== Installed Programs ======================
    .
    Update for Microsoft Office 2007 (KB2508958)
    Acrobat.com
    Activation Assistant for the 2007 Microsoft Office suites
    ActiveCheck component for HP Active Support Library
    Adobe Flash Player 11 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Reader X (10.1.9)
    Allok MP3 to AMR Converter 3.0.2
    AppCore
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    µTorrent
    Audacity 2.0
    AVerMedia A309 (MiniCard, DVB-T) 1.0.64.45
    AviSynth 2.5
    AVS Update Manager 1.0
    Bigasoft Total Video Converter 3.6.18.4499
    Bonjour
    BurnAware Free 6.2
    Canon IJ Network Scanner Selector EX
    Canon IJ Network Tool
    Canon MG5300 series MP Drivers
    Canon MG5300 series On-screen Manual
    Canon MG5300 series User Registration
    Canon MP Navigator EX 5.0
    Canon My Printer
    Canon Solution Menu EX
    ccCommon
    ccCommon64
    CCleaner
    Compatibility Pack for the 2007 Office system
    Component Framework
    coverXP (remove only)
    CyberLink DVD Suite
    D3DX10
    DFX for Windows Media Player
    DigitalPersona Personal 4.11
    DivX Plus DirectShow Filters
    DivX Setup
    ESU for Microsoft Vista
    Free PS Convert driver 8.15
    Google Update Helper
    Hewlett-Packard ACLM.NET v1.1.0.0
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    HP Active Support Library
    HP Customer Experience Enhancements
    HP Doc Viewer
    HP Easy Setup - Frontend
    HP Help and Support
    HP Integrated Module with Bluetooth wireless technology 6.0.1.6204
    HP MediaSmart DVD
    HP MediaSmart Music/Photo/Video
    HP MediaSmart SmartMenu
    HP MediaSmart TV
    HP Product Detection
    HP Quick Launch Buttons
    HP Total Care Advisor
    HP Update
    HP User Guides 0115
    HP Wireless Assistant
    HPAsset component for HP Active Support Library
    Huawei modem
    iCloud
    IDT Audio
    Intel® Matrix Storage Manager
    iTunes
    JavaFX 2.1.1
    JMicron JMB38X Flash Media Controller
    Junk Mail filter update
    K-Lite Codec Pack 5.9.0 (Basic)
    LightScribe System Software 1.12.33.2
    LiveUpdate (Symantec Corporation)
    Malwarebytes Anti-Malware version 1.75.0.1300
    Mesh Runtime
    Messenger Companion
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 4 Client Profile
    Microsoft Application Error Reporting
    Microsoft Office 2007 Service Pack 3 (SP3)
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office File Validation Add-In
    Microsoft Office Home and Student 2007
    Microsoft Office Live Add-in 1.5
    Microsoft Office Office 64-bit Components 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office PowerPoint Viewer 2007 (English)
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
    Microsoft Office Shared 64-bit MUI (English) 2007
    Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Save as PDF Add-in for 2007 Microsoft Office programs
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2005 Redistributable (x64)
    Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
    Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Works
    Mozilla Firefox 19.0.2 (x86 en-US)
    Mozilla Maintenance Service
    MSVCRT
    MSVCRT_amd64
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    muvee autoProducer 6.1
    Nero BurnLite 10
    Nero Control Center 10
    Nero ControlCenter 10 Help (CHM)
    Nero Core Components 10
    Nero Update
    Norton AntiVirus
    Norton AntiVirus Help
    Norton Confidential Core
    Norton Internet Security
    Norton Internet Security (Symantec Corporation)
    Norton Protection Center
    NVIDIA Drivers
    PDFCreator
    PeerBlock 1.1 (r518)
    PL-2303 USB-to-Serial
    ProtectSmart Hard Drive Protection
    QLBCASL
    QuickPlay SlingPlayer 0.4.6
    QuickTime
    Realtek 8169 8168 8101E 8102E Ethernet Driver
    RedMon - Redirection Port Monitor
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
    Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2760411) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2817641) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2827326) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2837615) 32-Bit Edition
    Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
    Security Update for Microsoft Office Excel 2007 (KB2827324) 32-Bit Edition
    Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
    Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
    Security Update for Microsoft Office Word 2007 (KB2837617) 32-Bit Edition
    Segoe UI
    Skype™ 6.1
    SPBBC 64bit
    Symantec Real Time Storage Protection Component (x64)
    Symantec Technical Support Web Controls
    SymNet x64
    Synaptics Pointing Device Driver
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
    Update for Microsoft Office 2007 Help for Common Features (KB963673)
    Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
    Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
    Update for Microsoft Office Excel 2007 Help (KB963678)
    Update for Microsoft Office OneNote 2007 Help (KB963670)
    Update for Microsoft Office Powerpoint 2007 Help (KB963669)
    Update for Microsoft Office Script Editor Help (KB963671)
    Update for Microsoft Office Word 2007 Help (KB963665)
    Validity Sensors software
    VC80CRTRedist - 8.0.50727.4053
    VDownloader 3.9.1326
    Visual C++ 2008 x86 Runtime - (v9.0.30729)
    Visual C++ 2008 x86 Runtime - v9.0.30729.01
    VLC media player 1.1.11
    Windows Driver Package - ENE (enecir) HIDClass (04/29/2008 2.5.0.0)
    Windows Driver Package - ENE (enecir) HIDClass (09/04/2008 2.6.0.0)
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Family Safety
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Language Selector
    Windows Live Mail
    Windows Live Mesh
    Windows Live Mesh ActiveX Control for Remote Connections
    Windows Live Messenger
    Windows Live Messenger Companion Core
    Windows Live MIME IFilter
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live Remote Client
    Windows Live Remote Client Resources
    Windows Live Remote Service
    Windows Live Remote Service Resources
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live Sync
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    Windows Phone Intro Video (ENU)
    WinPcap 4.1.1
    WinRAR 4.01 (32-bit)
    XviD & MP3 Codec Pack (remove only)
    XviD MPEG-4 Video Codec
    .
    ==== End Of File ===========================



    DDS.txt


    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 9.0.8112.16526
    Run by Devinder Johal at 23:18:50 on 2014-01-27
    Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.44.1033.18.4062.1667 [GMT 0:00]
    .
    AV: Norton Internet Security *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Norton Internet Security *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
    FW: Norton Internet Security *Enabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\STacSV64.exe
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\SLsvc.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\Hpservice.exe
    C:\Windows\system32\rundll32.exe
    C:\Windows\system32\vfsFPService.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\AESTSr64.exe
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Windows\system32\svchost.exe -k bthsvcs
    C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    C:\Program Files (x86)\Nero\Update\NASvc.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
    C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
    C:\Windows\SMINST\BLService.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
    C:\Program Files\IDT\WDM\sttray64.exe
    C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
    C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe
    C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
    C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
    C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
    C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
    C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe
    C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
    c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    C:\Program Files\DigitalPersona\Bin\DPAgent.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Windows\splwow64.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    c:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe
    C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\Program Files\Windows Media Player\wmpnscfg.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe
    C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com
    mStart Page = hxxp://www.google.com
    mDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
    BHO: DigitalPersona Personal Extension: {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll
    BHO: NCO 2.0 IE BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll
    BHO: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Common Files\Symantec Shared\IDS\IPSBHO.dll
    BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    TB: Show Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll
    TB: Show Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll
    uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
    uRun: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
    uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
    uRun: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    mRun: [TVAgent] "C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe"
    mRun: [TSMAgent] "C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe"
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [QlbCtrl.exe] "C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" /Start
    mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    mRun: [IJNetworkScannerSelectorEX] "C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
    mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
    mRun: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
    mRun: [DVDAgent] "C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe"
    mRun: [DpAgent] C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe
    mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
    mRun: [CLMLServer for HP TouchSmart] "C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe"
    mRun: [ccApp] "C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe"
    mRun: [CanonSolutionMenuEx] "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
    mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    uPolicies-Explorer: NoDrives = dword:0
    mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
    mPolicies-Explorer: NoDrives = dword:0
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
    IE: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
    IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    DPF: {15B782AF-55D8-11D1-B477-006097098764} - hxxp://www.bpp.com/acca/study-materials/ilearn/common/activex/awswaxd.cab
    DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect118.cab
    DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
    DPF: {A7EA8AD2-287F-11D3-B120-006008C39542} - hxxp://offers.e-centives.com/cif/download/bin/actxcab.cab
    DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
    DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} - hxxp://ax.emsisoft.com/asquared.cab
    DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} - hxxp://messenger.zone.msn.com/binary/Chess.cab57176.cab
    DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} - hxxp://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
    TCP: NameServer = 192.168.0.1
    TCP: Interfaces\{64CA5971-D18B-46CF-8CF1-FC0E0BFBB81E} : DHCPNameServer = 192.168.0.1
    TCP: Interfaces\{936E7D39-8D82-44E2-A838-60F9221B59AB} : DHCPNameServer = 8.8.8.8
    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
    mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"
    x64-mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
    x64-BHO: DigitalPersona Personal Extension: {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-Run: [VDownloader] "C:\Program Files\VDownloader\VDownloader.exe" /silent
    x64-Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    x64-Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
    x64-Run: [IAAnotif] "C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe"
    x64-Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
    x64-Run: [SysTrayApp] C:\Program Files (x86)\IDT\WDM\sttray64.exe
    x64-mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
    x64-mPolicies-Explorer: NoDrives = dword:0
    x64-mPolicies-System: EnableUIADesktopToggle = dword:0
    x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Devinder Johal\AppData\Roaming\Mozilla\Firefox\Profiles\g34bxhll.default\
    FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.1.2\npsitesafety.dll
    FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
    FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
    FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
    FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
    FF - ExtSQL: !HIDDEN! 2009-10-28 13:17; otis@digitalpersona.com; C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 A2DDA;A2 Direct Disk Access Support Driver;C:\Users\Devinder Johal\Desktop\Run\a2ddax64.sys [2012-10-11 23208]
    R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2013-5-30 46368]
    R1 HssDRV6;Hotspot Shield Routing Driver 6;C:\Windows\System32\drivers\hssdrv6.sys [2013-4-24 46792]
    R1 IDSvia64;Symantec Intrusion Prevention Driver;C:\PROGRA~3\Symantec\DEFINI~1\SymcData\ipsdefs\20140121.001\IDSvia64.sys [2014-1-23 383096]
    R3 AVerAF15;HP DVB-T TV Tuner;C:\Windows\System32\drivers\AVerAF15.sys [2008-10-17 306560]
    R3 enecir;ENE CIR Receiver;C:\Windows\System32\drivers\enecir.sys [2008-9-4 64000]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2013-12-5 137648]
    R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2008-8-7 143360]
    R3 NETw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETw5v64.sys [2009-10-2 6816256]
    S3 COH_Mon;COH_Mon;C:\Windows\System32\drivers\COH_Mon.sys [2008-12-6 25424]
    S3 fssfltr;FssFltr;C:\Windows\System32\drivers\fssfltr.sys [2012-7-13 48488]
    S3 hwusbfake;Huawei DataCard USB Fake;C:\Windows\System32\drivers\ewusbfake.sys [2011-5-23 116224]
    S3 NETw3v64;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETw3v64.sys [2008-1-21 3154432]
    .
    =============== File Associations ===============
    .
    FileExt: .jse: JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
    .
    =============== Created Last 30 ================
    .
    .
    ==================== Find3M ====================
    .
    2014-01-16 03:01:59 86054176 ----a-w- C:\Windows\System32\mrt.exe
    2014-01-01 10:28:45 89304 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
    2013-12-18 06:13:56 270496 ------w- C:\Windows\System32\MpSigStub.exe
    2013-12-10 21:32:48 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2013-12-10 21:32:48 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    2013-11-15 02:09:03 17847296 ----a-w- C:\Windows\System32\mshtml.dll
    2013-11-15 01:42:57 10926080 ----a-w- C:\Windows\System32\ieframe.dll
    2013-11-15 01:37:29 2334720 ----a-w- C:\Windows\System32\jscript9.dll
    2013-11-15 01:29:33 1347072 ----a-w- C:\Windows\System32\urlmon.dll
    2013-11-15 01:29:03 1392128 ----a-w- C:\Windows\System32\wininet.dll
    2013-11-15 01:28:41 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
    2013-11-15 01:28:00 237056 ----a-w- C:\Windows\System32\url.dll
    2013-11-15 01:25:24 85504 ----a-w- C:\Windows\System32\jsproxy.dll
    2013-11-15 01:22:21 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
    2013-11-15 01:20:47 599040 ----a-w- C:\Windows\System32\vbscript.dll
    2013-11-15 01:20:45 816640 ----a-w- C:\Windows\System32\jscript.dll
    2013-11-15 01:19:54 2147840 ----a-w- C:\Windows\System32\iertutil.dll
    2013-11-15 01:19:47 729088 ----a-w- C:\Windows\System32\msfeeds.dll
    2013-11-15 01:18:24 96768 ----a-w- C:\Windows\System32\mshtmled.dll
    2013-11-15 01:18:03 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
    2013-11-15 01:12:57 248320 ----a-w- C:\Windows\System32\ieui.dll
    2013-11-14 23:13:33 12344320 ----a-w- C:\Windows\SysWow64\mshtml.dll
    2013-11-14 22:50:50 1806848 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2013-11-14 22:50:06 9739264 ----a-w- C:\Windows\SysWow64\ieframe.dll
    2013-11-14 22:43:24 1105408 ----a-w- C:\Windows\SysWow64\urlmon.dll
    2013-11-14 22:42:41 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
    2013-11-14 22:42:32 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2013-11-14 22:41:18 231936 ----a-w- C:\Windows\SysWow64\url.dll
    2013-11-14 22:40:04 65024 ----a-w- C:\Windows\SysWow64\jsproxy.dll
    2013-11-14 22:38:54 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2013-11-14 22:38:35 717824 ----a-w- C:\Windows\SysWow64\jscript.dll
    2013-11-14 22:38:16 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
    2013-11-14 22:37:32 607744 ----a-w- C:\Windows\SysWow64\msfeeds.dll
    2013-11-14 22:36:16 1796096 ----a-w- C:\Windows\SysWow64\iertutil.dll
    2013-11-14 22:36:08 73216 ----a-w- C:\Windows\SysWow64\mshtmled.dll
    2013-11-14 22:35:52 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2013-11-14 22:32:56 176640 ----a-w- C:\Windows\SysWow64\ieui.dll
    2013-11-11 19:23:22 46368 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys
    2013-10-30 04:34:52 1386496 ----a-w- C:\Windows\System32\WMALFXGFXDSP.dll
    2013-10-30 04:34:21 374784 ----a-w- C:\Windows\System32\SysFxUI.dll
    2013-10-30 03:55:25 122368 ----a-w- C:\Windows\System32\drivers\drmk.sys
    2013-10-30 02:33:31 218112 ----a-w- C:\Windows\System32\drivers\portcls.sys
    2013-10-30 02:10:03 2776064 ----a-w- C:\Windows\System32\win32k.sys
    2010-07-22 22:40:00 2944904 ----a-w- C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe
    2010-01-26 11:11:08 444283 ----a-w- C:\Program Files\Common Files\WinPcapNmap.exe
    .
    ============= FINISH: 23:22:09.77 ===============
     
  2. Broni

    Broni Malware Annihilator Posts: 46,868   +254

    Welcome aboard [​IMG]

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

    ==================================

    Please download Farbar Recovery Scan Tool and save it to your Desktop.

    Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
    • Double-click to run it. When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
    • The first time the tool is run, it makes also another log (Addition.txt). Please copy and paste it to your reply.
     
  3. davidj23

    davidj23 TS Rookie Topic Starter Posts: 59

    Hi Broni,

    I am unable to copy and paste the results in my reply as the reply option will only allow 50,000 characters to be displayed, I also know I am not allowed to upload content in the form of attachments.

    Is there any way around this so I can upload more characters?

    Kind regards,

    David.
     
  4. Broni

    Broni Malware Annihilator Posts: 46,868   +254

    Split logs between couple of replies.
     
  5. davidj23

    davidj23 TS Rookie Topic Starter Posts: 59

    Okay here goes:

    FIRST.txt (PART 1)

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-01-2014 02
    Windows Vista (TM) Home Premium Service Pack 2 (X64) OS Language: English(US)
    Internet Explorer Version 9
    Boot Mode: Normal
    The only official download link for FRST:
    Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
    Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
    Download link from any site other than Bleeping Computer is unpermitted or outdated.
    See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
    ==================== Processes (Whitelisted) =================
    (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
    (IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\stacsv64.exe
    (Microsoft Corporation) C:\Windows\System32\SLsvc.exe
    (Hewlett-Packard Corporation) C:\Windows\System32\hpservice.exe
    (Validity Sensors, Inc.) C:\Windows\System32\vfsFPService.exe
    (Symantec Corporation) C:\Program Files (x86)\Common Files\Symantec Shared\CCSVCHST.EXE
    (DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DpHostW.exe
    (Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\AESTSr64.exe
    (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    (Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
    () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
    () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
    () C:\Windows\SMINST\BLService.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    (CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
    (IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
    (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
    (Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
    (Microsoft Corporation) C:\Windows\ehome\ehtray.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
    (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe
    (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
    ( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
    (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
    (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
    (Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
    (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
    (DigitalPersona, Inc.) C:\Program Files (x86)\DigitalPersona\Bin\DpAgent.exe
    (CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
    (Symantec Corporation) C:\Program Files (x86)\Common Files\Symantec Shared\CCSVCHST.EXE
    (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
    (DigitalPersona, Inc.) C:\Program Files\DigitalPersona\Bin\DpAgent.exe
    (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (Microsoft Corporation) C:\Windows\splwow64.exe
    (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    () C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
    (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    (Symantec Corporation) C:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe
    (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
    (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
    (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
    (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
    (Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe
    () C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    (Symantec Corporation) C:\Program Files (x86)\Common Files\Symantec Shared\COH\COH64.exe

    ==================== Registry (Whitelisted) ==================
    HKLM\...\Run: [VDownloader] - C:\Program Files\VDownloader\VDownloader.exe [881664 2012-09-27] (Vitzo)
    HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1561384 2008-07-17] (Synaptics, Inc.)
    HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [910128 2008-08-08] (Hewlett-Packard)
    HKLM\...\Run: [IAAnotif] - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-16] (Intel Corporation)
    HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-14] (CANON INC.)
    HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [441344 2008-08-05] (IDT, Inc.)
    HKLM-x32\...\Run: [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
    HKLM-x32\...\Run: [TVAgent] - C:\Program Files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe [468264 2008-07-24] (CyberLink Corp.)
    HKLM-x32\...\Run: [TSMAgent] - C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1144104 2008-08-02] (CyberLink Corp.)
    HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-03-17] (Apple Inc.)
    HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2009-11-24] ( Hewlett-Packard Development Company, L.P.)
    HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-09-09] (Apple Inc.)
    HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] - C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
    HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-03-12] (Hewlett-Packard)
    HKLM-x32\...\Run: [HP Health Check Scheduler] - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
    HKLM-x32\...\Run: [DVDAgent] - C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2009-09-09] (CyberLink Corp.)
    HKLM-x32\...\Run: [DpAgent] - C:\Program Files (x86)\DigitalPersona\Bin\dpagent.exe [842816 2009-09-29] (DigitalPersona, Inc.)
    HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1135912 2010-03-05] ()
    HKLM-x32\...\Run: [CLMLServer for HP TouchSmart] - C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [210216 2008-08-02] (CyberLink)
    HKLM-x32\...\Run: [ccApp] - C:\Program Files (x86)\Common Files\Symantec Shared\ccApp.exe [51048 2008-10-17] (Symantec Corporation)
    HKLM-x32\...\Run: [CanonSolutionMenuEx] - C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
    HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.)
    HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
    HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [18705664 2013-01-08] (Skype Technologies S.A.)
    HKCU\...\Run: [MobileDocuments] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe [59240 2012-02-23] (Apple Inc.)
    HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-02-26] (Hewlett-Packard Company)
    HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [138240 2008-01-21] (Microsoft Corporation)
    HKU\Dav\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-02-26] (Hewlett-Packard Company)
    AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => File Not Found
    ==================== Internet (Whitelisted) ====================
    HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_gb&c=84&bd=Pavilion&pf=cnnb
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
    SearchScopes: HKLM - DefaultScope value is missing.
    SearchScopes: HKLM - {1E575BBE-6804-41D3-AD1B-77F73B5E0B56} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
    SearchScopes: HKLM - {C1C7504F-BDFC-4FDA-9467-9B5325F3D1C1} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
    SearchScopes: HKLM - {DE5089A1-73FB-4D95-8DCC-B8B08F39BC05} URL = http://slirsredirect.search.aol.com...archTerms}&invocationType=tb50hpcnnbie7-en-gb
    SearchScopes: HKLM-x32 - {1E575BBE-6804-41D3-AD1B-77F73B5E0B56} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
    SearchScopes: HKLM-x32 - {C1C7504F-BDFC-4FDA-9467-9B5325F3D1C1} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
    SearchScopes: HKLM-x32 - {DE5089A1-73FB-4D95-8DCC-B8B08F39BC05} URL = http://slirsredirect.search.aol.com...archTerms}&invocationType=tb50hpcnnbie7-en-gb
    SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKCU - {1E575BBE-6804-41D3-AD1B-77F73B5E0B56} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
    SearchScopes: HKCU - {C1C7504F-BDFC-4FDA-9467-9B5325F3D1C1} URL = http://uk.kelkoopartners.net/ctl/do...e&x=true&y=true&partner=hp&partnerId=96913936
    SearchScopes: HKCU - {DE5089A1-73FB-4D95-8DCC-B8B08F39BC05} URL =
    BHO: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
    BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: DigitalPersona Personal Extension - {395610AE-C624-4f58-B89E-23733EA00F9A} - C:\Program Files (x86)\DigitalPersona\Bin\DpOtsPluginIe8.dll (DigitalPersona, Inc.)
    BHO-x32: No Name - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\coIEPlg.dll (Symantec Corporation)
    BHO-x32: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
    BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
    Toolbar: HKLM-x32 - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files (x86)\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
    Toolbar: HKCU - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
    DPF: HKLM-x32 {15B782AF-55D8-11D1-B477-006097098764} http://www.bpp.com/acca/study-materials/ilearn/common/activex/awswaxd.cab
    DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect118.cab
    DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
    DPF: HKLM-x32 {A7EA8AD2-287F-11D3-B120-006008C39542} http://offers.e-centives.com/cif/download/bin/actxcab.cab
    DPF: HKLM-x32 {B8BE5E93-A60C-4D26-A2DC-220313175592} http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
    DPF: HKLM-x32 {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} http://ax.emsisoft.com/asquared.cab
    DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    DPF: HKLM-x32 {E6187999-9FEC-46A1-A20F-F4CA977D5643} http://messenger.zone.msn.com/binary/Chess.cab57176.cab
    DPF: HKLM-x32 {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
    Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
    FireFox:
    ========
    FF ProfilePath: C:\Users\Devinder Johal\AppData\Roaming\Mozilla\Firefox\Profiles\g34bxhll.default
    FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
    FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
    FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    FF Plugin-x32: @bittorrent.com/BitTorrentDNA - C:\Program Files (x86)\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)
    FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
    FF Plugin-x32: @java.com/DTPlugin,version=10.10.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
    FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
    FF HKLM-x32\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\
    FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\FirefoxExt\ []
    FF HKCU\...\Firefox\Extensions: [otis@digitalpersona.com] - C:\Program Files (x86)\DigitalPersona\Bin\firefoxext
    FF Extension: DigitalPersona Extension - C:\Program Files (x86)\DigitalPersona\Bin\firefoxext [2009-10-28]
     
  6. davidj23

    davidj23 TS Rookie Topic Starter Posts: 59

    FIRST.txt (PART 2)



    Chrome:
    =======
    Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
    ==================== Services (Whitelisted) =================
    R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\AESTSr64.exe [89088 2008-06-27] (Andrea Electronics Corporation)
    R2 Automatic LiveUpdate Scheduler; c:\Program Files (x86)\Symantec\LiveUpdate\AluSchedulerSvc.exe [238968 2008-02-09] (Symantec Corporation)
    R2 ccEvtMgr; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
    R2 ccSetMgr; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
    R2 CLTNetCnService; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
    S3 comHost; c:\Program Files (x86)\Common Files\Symantec Shared\VAScanner\comHost.exe [267096 2007-08-22] (Symantec Corporation)
    S3 LiveUpdate; c:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_4.EXE [3220856 2008-09-05] (Symantec Corporation)
    R2 LiveUpdate Notice; c:\Program Files (x86)\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
    R2 QPCapSvc; C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [292216 2008-07-24] ()
    R2 QPSched; C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116080 2008-07-24] ()
    R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [361808 2008-08-07] ()
    R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_86727c20\STacSV64.exe [251904 2008-08-05] (IDT, Inc.)
    S3 Symantec Core LC; C:\Program Files (x86)\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [1245064 2008-09-03] ()
    S3 Symantec RemoteAssist; C:\Program Files (x86)\Common Files\Symantec Shared\Support Controls\ssrc.exe [394704 2008-01-29] (Symantec, Inc.)
    R2 vfsFPService; C:\Windows\system32\vfsFPService.exe [719152 2008-05-26] (Validity Sensors, Inc.)
    R2 vfsFPService; C:\Windows\SysWOW64\vfsFPService.exe [599344 2008-05-26] (Validity Sensors, Inc.)
    S2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [x]
    ==================== Drivers (Whitelisted) ====================
    R1 A2DDA; C:\Users\Devinder Johal\Desktop\Run\a2ddax64.sys [23208 2012-10-10] (Emsi Software GmbH)
    S1 ASPI32; C:\Windows\SysWow64\Drivers\ASPI32.sys [25244 1999-09-10] (Adaptec)
    R3 AVerAF15; C:\Windows\System32\Drivers\AVerAF15.sys [306560 2008-06-10] (AVerMedia TECHNOLOGIES, Inc.)
    R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2013-11-11] (AVG Technologies)
    S1 Beep; No ImagePath
    S3 COH_Mon; C:\Windows\system32\Drivers\COH_Mon.sys [25424 2008-07-30] (Symantec Corporation)
    R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-11-20] (Symantec Corporation)
    R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-11-20] (Symantec Corporation)
    R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [46792 2013-04-24] (AnchorFree Inc.)
    R1 IDSvia64; C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20140121.001\IDSvia64.sys [383096 2011-10-17] (Symantec Corporation)
    R3 NAVENG; C:\ProgramData\Symantec\Definitions\VirusDefs\20140127.002\ENG64.SYS [126040 2013-12-17] (Symantec Corporation)
    R3 NAVEX15; C:\ProgramData\Symantec\Definitions\VirusDefs\20140127.002\EX64.SYS [2099288 2013-12-17] (Symantec Corporation)
    S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [24176 2010-11-06] ()
    R0 sptd; C:\Windows\System32\Drivers\sptd.sys [513080 2011-06-21] ()
    R1 SRTSP; C:\Windows\System32\Drivers\SRTSP64.SYS [440880 2008-01-31] (Symantec Corporation)
    S3 SRTSPL; C:\Windows\System32\Drivers\SRTSPL64.SYS [476720 2008-01-31] (Symantec Corporation)
    R1 SRTSPX; C:\Windows\System32\Drivers\SRTSPX64.SYS [32304 2008-01-31] (Symantec Corporation)
    R3 SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [16432 2008-06-13] (Symantec Corporation)
    R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [172080 2009-02-20] (Symantec Corporation)
    R3 SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [144944 2008-06-13] (Symantec Corporation)
    R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [28720 2008-06-13] (Symantec Corporation)
    R3 SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [48176 2008-06-13] (Symantec Corporation)
    R3 SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [28720 2008-06-13] (Symantec Corporation)
    R1 SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [266800 2008-06-13] (Symantec Corporation)
    R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-04-24] (Anchorfree Inc.)
    R3 vfs101a; C:\Windows\System32\drivers\vfs101a.sys [49968 2008-05-26] (Validity Sensors, Inc.)
    U5 AppMgmt; C:\Windows\system32\svchost.exe [27648 2008-01-21] (Microsoft Corporation)
    S3 catchme; \??\C:\ComboFix\catchme.sys [x]
    U4 eabfiltr;
    U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [133632 2010-01-28] (Huawei Technologies Co., Ltd.)
    S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
    S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
    S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
    ==================== NetSvcs (Whitelisted) ===================

    ==================== One Month Created Files and Folders ========
    2014-01-28 00:12 - 2014-01-28 00:12 - 00000000 ____D C:\FRST
    2014-01-27 23:24 - 2014-01-27 23:24 - 00011672 _____ C:\Users\Devinder Johal\Desktop\attach.txt
    2014-01-27 23:24 - 2014-01-27 23:22 - 00018116 _____ C:\Users\Devinder Johal\Desktop\dds.txt
    2014-01-18 20:31 - 2014-01-19 00:18 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jazmin Chaudhry
    2014-01-18 20:28 - 2014-01-19 00:00 - 734347264 _____ C:\Users\Devinder Johal\Downloads\Cats Eye.avi
    2014-01-09 11:48 - 2014-01-09 13:57 - 00000000 ____D C:\Users\Devinder Johal\Downloads\[ www.Torrenting.com ] - The Diary of Ellen Rimbauer (2003)-DVDRIp-AC3-Xvid-THC
    2014-01-04 13:07 - 2014-01-04 16:50 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Booty Talk Favorite Asses 5
    2014-01-04 13:03 - 2014-01-04 17:32 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Kaci Starr - Gagalicious (own puke all over her face)
    2014-01-01 20:56 - 2014-01-04 20:26 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jedi Mind Tricks presents King Syze-The Labor Union (2008)-Rawkus--Darkside_RG
    2014-01-01 19:23 - 2014-01-01 19:23 - 00000772 _____ C:\Users\Devinder Johal\Desktop\JRT.txt
    2014-01-01 13:34 - 2014-01-01 13:41 - 00000000 ____D C:\AdwCleaner
    2014-01-01 10:28 - 2014-01-01 10:28 - 00001733 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_102821.txt
    2014-01-01 09:21 - 2014-01-01 09:21 - 00001700 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_092147.txt
    2014-01-01 09:20 - 2014-01-01 09:20 - 00001802 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_01012014_092010.txt
    2014-01-01 08:59 - 2014-01-01 10:28 - 01423808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00594432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00513080 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00476720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspl64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00459264 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00440880 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtsp64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00408024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00284728 _____ (ULi Electronics Inc.) C:\Windows\system32\Drivers\uliahci.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00273408 _____ (Marvell) C:\Windows\system32\Drivers\yk60x64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00267648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00266800 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symtdi.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00250928 _____ (Synaptics, Inc.) C:\Windows\system32\Drivers\SynTP.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00207872 _____ (Realtek ) C:\Windows\system32\Drivers\Rtlh64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00174696 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata2.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00173112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00172080 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00164328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00149048 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00148072 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00144944 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symfw.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00090216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00078392 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00068224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00067128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00067048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00062440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00052736 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00049968 _____ (Validity Sensors, Inc.) C:\Windows\system32\Drivers\vfs101a.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00049256 _____ (LSI Logic) C:\Windows\system32\Drivers\symc8xx.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00048232 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_u3.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00048176 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symndisv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00047152 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symids.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00045624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sisraid2.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00044648 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_hi.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00042184 _____ (Anchorfree Inc.) C:\Windows\system32\Drivers\taphss6.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00036760 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00032640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00032304 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspx64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symredrv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SymIMV.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00024120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00019432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TUNMP.SYS.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00018024 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00016432 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symdns.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00013032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:28 - 00007552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 12432616 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 06816256 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw5v64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 03154432 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw3v64.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 01513320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 01221176 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00738264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00347112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00310760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00215528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00203368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00178664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00128056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00128056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00126520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00124008 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00113720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00083488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00072576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00072448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00059880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00054328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00051816 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00051256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00047632 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00039016 _____ (LSI Logic Corporation) C:\Windows\system32\Drivers\Mraid35x.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00034872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00031288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00017976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00013416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00011008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00007040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
    2014-01-01 08:59 - 2014-01-01 10:27 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
    2014-01-01 08:59 - 2014-01-01 08:59 - 00001762 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_085939.txt
    2014-01-01 08:58 - 2014-01-01 10:27 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00695296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00691712 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00516480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00486456 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00438328 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00397368 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00388120 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00342584 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00325608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00306560 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVerAF15.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00290872 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00275432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00185912 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00166888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00164840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00155112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00146176 _____ (Intel Corporation) C:\Windows\system32\Drivers\E1G6032E.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00143360 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00133632 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00126520 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu160m.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00123368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00117120 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00116224 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbfake.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00114304 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbdev.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_fc.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00105016 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_sas.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00099368 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00091192 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00091176 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00090680 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00088168 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\djsvs.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00086528 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00067032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00065280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00064568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00064000 _____ (ENE TECHNOLOGY INC.) C:\Windows\system32\Drivers\enecir.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00048488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00047672 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpCISSs.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00046792 _____ (AnchorFree Inc.) C:\Windows\system32\Drivers\hssdrv6.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00044648 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00042040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00040296 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\Accelerometer.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00039992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00039400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteraid.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteatapi.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00035896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omp.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00035896 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00031616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00030776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00029696 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00029656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00027704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00027256 _____ (Symantec Corporation) C:\Windows\system32\Drivers\FixZeroAccess.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00026984 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\hpdskflt.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00025424 _____ (Symantec Corporation) C:\Windows\system32\Drivers\COH_Mon.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00020952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00020864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00020536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omgmt.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00019752 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00018432 _____ (Hewlett-Packard Development Company, L.P.) C:\Windows\system32\Drivers\HpqKbFiltr.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00018024 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00015976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00015976 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00015616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bdasup.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
    2014-01-01 08:58 - 2014-01-01 10:27 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
    2013-12-29 15:49 - 2013-12-29 15:49 - 00001568 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154931.txt
    2013-12-29 15:48 - 2013-12-29 15:48 - 00001736 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_12292013_154812.txt
    2013-12-29 15:47 - 2013-12-29 15:47 - 00001654 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154745.txt
     
  7. davidj23

    davidj23 TS Rookie Topic Starter Posts: 59

    FIRST.txt (PART 3)

    ==================== One Month Modified Files and Folders =======
    2014-01-28 00:12 - 2014-01-28 00:12 - 00000000 ____D C:\FRST
    2014-01-27 23:49 - 2006-11-02 15:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
    2014-01-27 23:49 - 2006-11-02 15:22 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
    2014-01-27 23:32 - 2012-07-18 21:34 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
    2014-01-27 23:24 - 2014-01-27 23:24 - 00011672 _____ C:\Users\Devinder Johal\Desktop\attach.txt
    2014-01-27 23:22 - 2014-01-27 23:24 - 00018116 _____ C:\Users\Devinder Johal\Desktop\dds.txt
    2014-01-27 23:11 - 2008-10-17 10:25 - 01633147 _____ C:\Windows\WindowsUpdate.log
    2014-01-27 21:56 - 2008-09-03 05:47 - 00003592 _____ C:\Windows\System32\Tasks\HP Health Check
    2014-01-27 21:52 - 2008-09-03 05:20 - 00003149 _____ C:\ProgramData\hpqp.ini
    2014-01-27 21:49 - 2009-01-31 21:30 - 00000000 ____D C:\Windows\Minidump
    2014-01-27 21:49 - 2006-11-02 15:42 - 00000006 ____H C:\Windows\Tasks\SA.DAT
    2014-01-27 21:48 - 2013-04-12 09:43 - 584403669 _____ C:\Windows\MEMORY.DMP
    2014-01-26 23:14 - 2013-01-07 05:04 - 00000000 ____D C:\Users\Devinder Johal\Desktop\CURICULUM VITAE
    2014-01-26 00:15 - 2012-07-14 10:21 - 00003698 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{DDA4E6EE-73E6-4CB7-8D4C-A01E10EB6695}
    2014-01-23 21:40 - 2012-08-05 16:45 - 00000000 ____D C:\Users\Devinder Johal\AppData\Local\CrashDumps
    2014-01-21 20:57 - 2012-12-21 19:48 - 00000000 ____D C:\Users\Devinder Johal\AppData\Roaming\Skype
    2014-01-21 20:55 - 2010-04-21 23:10 - 00000000 ____D C:\Users\Devinder Johal\AppData\Roaming\HpUpdate
    2014-01-20 01:17 - 2010-12-17 19:20 - 00000000 ____D C:\Program Files\PeerBlock
    2014-01-20 01:16 - 2012-08-11 21:38 - 00000000 ____D C:\Users\Devinder Johal\AppData\Roaming\uTorrent
    2014-01-19 00:18 - 2014-01-18 20:31 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jazmin Chaudhry
    2014-01-19 00:00 - 2014-01-18 20:28 - 734347264 _____ C:\Users\Devinder Johal\Downloads\Cats Eye.avi
    2014-01-16 03:11 - 2008-09-03 05:08 - 00000000 ____D C:\ProgramData\Microsoft Help
    2014-01-16 03:10 - 2013-07-20 21:34 - 00000000 ____D C:\Windows\system32\MRT
    2014-01-16 03:01 - 2006-11-02 12:35 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
    2014-01-13 21:26 - 2012-08-17 18:06 - 00016488 _____ C:\Windows\PFRO.log
    2014-01-11 00:02 - 2012-03-11 20:12 - 00000000 ____D C:\Users\Devinder Johal\Desktop\EachOne
    2014-01-09 13:57 - 2014-01-09 11:48 - 00000000 ____D C:\Users\Devinder Johal\Downloads\[ www.Torrenting.com ] - The Diary of Ellen Rimbauer (2003)-DVDRIp-AC3-Xvid-THC
    2014-01-04 20:26 - 2014-01-01 20:56 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Jedi Mind Tricks presents King Syze-The Labor Union (2008)-Rawkus--Darkside_RG
    2014-01-04 17:32 - 2014-01-04 13:03 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Kaci Starr - Gagalicious (own puke all over her face)
    2014-01-04 17:32 - 2012-01-25 13:30 - 00000000 ____D C:\Users\Devinder Johal\Desktop\New Folder (3)
    2014-01-04 16:50 - 2014-01-04 13:07 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Booty Talk Favorite Asses 5
    2014-01-02 07:57 - 2012-11-16 16:14 - 00000000 ____D C:\ProgramData\CanonIJPLM
    2014-01-02 07:06 - 2008-10-17 10:20 - 00002140 _____ C:\Windows\bthservsdp.dat
    2014-01-02 07:06 - 2006-11-02 15:42 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
    2014-01-01 19:23 - 2014-01-01 19:23 - 00000772 _____ C:\Users\Devinder Johal\Desktop\JRT.txt
    2014-01-01 19:14 - 2013-03-26 11:17 - 00000000 ____D C:\JRT
    2014-01-01 13:41 - 2014-01-01 13:34 - 00000000 ____D C:\AdwCleaner
    2014-01-01 13:41 - 2013-03-13 06:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
    2014-01-01 11:24 - 2013-10-27 23:08 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
    2014-01-01 11:24 - 2013-03-16 12:54 - 00000000 ____D C:\Users\Devinder Johal\Desktop\mbar
    2014-01-01 10:28 - 2014-01-01 10:28 - 00001733 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_102821.txt
    2014-01-01 10:28 - 2014-01-01 08:59 - 01423808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00594432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00513080 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00476720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspl64.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00459264 _____ (IDT, Inc.) C:\Windows\system32\Drivers\stwrt64.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00440880 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtsp64.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00408024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00284728 _____ (ULi Electronics Inc.) C:\Windows\system32\Drivers\uliahci.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00273408 _____ (Marvell) C:\Windows\system32\Drivers\yk60x64.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00267648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00266800 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symtdi.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00250928 _____ (Synaptics, Inc.) C:\Windows\system32\Drivers\SynTP.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00207872 _____ (Realtek ) C:\Windows\system32\Drivers\Rtlh64.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00174696 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata2.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00173112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00172080 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00164328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00149048 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00148072 _____ (Promise Technology, Inc.) C:\Windows\system32\Drivers\ulsata.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00144944 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symfw.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00090216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00078392 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00068224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00067128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00067048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00062440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00052736 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00049968 _____ (Validity Sensors, Inc.) C:\Windows\system32\Drivers\vfs101a.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00049256 _____ (LSI Logic) C:\Windows\system32\Drivers\symc8xx.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00048232 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_u3.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00048176 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symndisv.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00047152 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symids.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WpdUsb.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00045624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sisraid2.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00044648 _____ (LSI Logic) C:\Windows\system32\Drivers\sym_hi.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00042184 _____ (Anchorfree Inc.) C:\Windows\system32\Drivers\taphss6.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00036760 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap0901.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00032640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00032304 _____ (Symantec Corporation) C:\Windows\system32\Drivers\srtspx64.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symredrv.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00028720 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SymIMV.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00024120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00019432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TUNMP.SYS.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00018024 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00016432 _____ (Symantec Corporation) C:\Windows\system32\Drivers\symdns.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00013032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
    2014-01-01 10:28 - 2014-01-01 08:59 - 00007552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
    2014-01-01 10:28 - 2013-10-27 23:07 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
    2014-01-01 10:27 - 2014-01-01 08:59 - 12432616 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 06816256 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw5v64.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 03154432 _____ (Intel Corporation) C:\Windows\system32\Drivers\NETw3v64.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 01513320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 01221176 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00738264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00712704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00347112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00310760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00215528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00203368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00178664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00128056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00128056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00126520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00124008 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00113720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00083488 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00072576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00072448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00059880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00054328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00051816 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00051256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00047632 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00039016 _____ (LSI Logic Corporation) C:\Windows\system32\Drivers\Mraid35x.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00034872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00031288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00017976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00013416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00011008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00007040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:59 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00948736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00901568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00695296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00691712 _____ (DiBcom SA) C:\Windows\system32\Drivers\mod7700.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00516480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00486456 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00438328 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00397368 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00388120 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00342584 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00325608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00306560 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVerAF15.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00290872 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00275432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00185912 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00166888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00164840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00155112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00146176 _____ (Intel Corporation) C:\Windows\system32\Drivers\E1G6032E.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00143360 _____ (JMicron Technology Corporation) C:\Windows\system32\Drivers\jmcr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00133632 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbnet.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00126520 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu160m.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00123368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00117120 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbmdm.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00116224 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbfake.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00114304 _____ (Huawei Technologies Co., Ltd.) C:\Windows\system32\Drivers\ewusbdev.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00113720 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_fc.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00105016 _____ (LSI Logic) C:\Windows\system32\Drivers\lsi_sas.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00099368 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00091192 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00091176 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00090680 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00088168 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\djsvs.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00086528 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00070200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00068152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00067032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00065280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00064568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00064000 _____ (ENE TECHNOLOGY INC.) C:\Windows\system32\Drivers\enecir.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00048488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fssfltr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00047672 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpCISSs.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00046792 _____ (AnchorFree Inc.) C:\Windows\system32\Drivers\hssdrv6.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00046368 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx64.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00044648 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00042040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00040296 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\Accelerometer.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00039992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00039400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteraid.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00037480 _____ (Integrated Technology Express, Inc.) C:\Windows\system32\Drivers\iteatapi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00035896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00035896 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00031616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00030776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00029696 _____ (Huawei Tech. Co., Ltd.) C:\Windows\system32\Drivers\ewdcsc.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00029656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00027704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00027256 _____ (Symantec Corporation) C:\Windows\system32\Drivers\FixZeroAccess.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00026984 _____ (Hewlett-Packard Corporation) C:\Windows\system32\Drivers\hpdskflt.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00025424 _____ (Symantec Corporation) C:\Windows\system32\Drivers\COH_Mon.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00023608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00020952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00020864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00020536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i2omgmt.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00019752 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00019512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00018432 _____ (Hewlett-Packard Development Company, L.P.) C:\Windows\system32\Drivers\HpqKbFiltr.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00018024 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00015976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00015976 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00015616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bdasup.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
    2014-01-01 10:27 - 2014-01-01 08:58 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
    2014-01-01 09:21 - 2014-01-01 09:21 - 00001700 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_092147.txt
    2014-01-01 09:20 - 2014-01-01 09:20 - 00001802 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_01012014_092010.txt
    2014-01-01 09:20 - 2013-10-27 23:03 - 00000000 ____D C:\Users\Devinder Johal\Desktop\RK_Quarantine
    2014-01-01 08:59 - 2014-01-01 08:59 - 00001762 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_01012014_085939.txt
    2013-12-31 08:14 - 2006-11-02 12:46 - 00703342 _____ C:\Windows\system32\PerfStringBackup.INI
    2013-12-29 15:49 - 2013-12-29 15:49 - 00001568 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154931.txt
    2013-12-29 15:48 - 2013-12-29 15:48 - 00001736 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_D_12292013_154812.txt
    2013-12-29 15:47 - 2013-12-29 15:47 - 00001654 _____ C:\Users\Devinder Johal\Desktop\RKreport[0]_S_12292013_154745.txt
    2013-12-29 08:57 - 2013-12-28 18:36 - 1191461766 _____ C:\Users\Devinder Johal\Downloads\***** Gaggers 7.mp4
    2013-12-29 08:42 - 2013-12-28 18:57 - 00000000 ____D C:\Users\Devinder Johal\Downloads\Rare & Exclusive Throat**** & Puke Pack
    Files to move or delete:
    ====================
    C:\Users\Devinder Johal\AppData\Roaming\desktop.ini

    Some content of TEMP:
    ====================
    C:\Users\Devinder Johal\AppData\Local\temp\dlLogic.exe
    C:\Users\Devinder Johal\AppData\Local\temp\GCVerifier.dll
    C:\Users\Devinder Johal\AppData\Local\temp\ntdll_dump.dll
    C:\Users\Devinder Johal\AppData\Local\temp\Quarantine.exe
    C:\Users\Devinder Johal\AppData\Local\temp\symlcsv1.exe

    ==================== Bamital & volsnap Check =================
    C:\Windows\System32\winlogon.exe => MD5 is legit
    C:\Windows\System32\wininit.exe => MD5 is legit
    C:\Windows\SysWOW64\wininit.exe => MD5 is legit
    C:\Windows\explorer.exe => MD5 is legit
    C:\Windows\SysWOW64\explorer.exe => MD5 is legit
    C:\Windows\System32\svchost.exe => MD5 is legit
    C:\Windows\SysWOW64\svchost.exe => MD5 is legit
    C:\Windows\System32\services.exe => MD5 is legit
    C:\Windows\System32\User32.dll => MD5 is legit
    C:\Windows\SysWOW64\User32.dll => MD5 is legit
    C:\Windows\System32\userinit.exe => MD5 is legit
    C:\Windows\SysWOW64\userinit.exe => MD5 is legit
    C:\Windows\System32\rpcss.dll => MD5 is legit
    C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

    LastRegBack: 2014-01-27 21:57
    ==================== End Of Log ============================
     
  8. davidj23

    davidj23 TS Rookie Topic Starter Posts: 59

    Addition.txt (Part 1)



    Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-01-2014 02
    Ran by Devinder Johal at 2014-01-28 00:14:00
    Running from C:\Users\Devinder Johal\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WRI2YI9F
    Boot Mode: Normal
    ==========================================================

    ==================== Security Center ========================
    AV: Norton Internet Security (Enabled - Up to date) {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AS: Norton Internet Security (Enabled - Up to date) {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
    FW: Norton Internet Security (Enabled) {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
    ==================== Installed Programs ======================
    Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft)
    µTorrent (x32 Version: 2.0.2 - )
    Acrobat.com (x32 Version: 1.7.186 - Adobe Systems Incorporated)
    Activation Assistant for the 2007 Microsoft Office suites (x32 Version: - Microsoft Corporation)
    Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0 - Microsoft Corporation) Hidden
    ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.2 - Hewlett-Packard) Hidden
    Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
    Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
    Adobe Reader X (10.1.9) (x32 Version: 10.1.9 - Adobe Systems Incorporated)
    Allok MP3 to AMR Converter 3.0.2 (x32 Version: - Allok Soft .Inc)
    AppCore (x32 Version: 1.3 - Symantec Corporation) Hidden
    Apple Application Support (x32 Version: 2.2.2 - Apple Inc.)
    Apple Mobile Device Support (Version: 6.0.0.59 - Apple Inc.)
    Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
    Audacity 2.0 (x32 Version: - Audacity Team)
    AVerMedia A309 (MiniCard, DVB-T) 1.0.64.45 (x32 Version: 1.0.64.45 - AVerMedia TECHNOLOGIES, Inc.)
    AviSynth 2.5 (x32 Version: - )
    AVS Update Manager 1.0 (x32 Version: - Online Media Technologies Ltd.)
    Bigasoft Total Video Converter 3.6.18.4499 (x32 Version: - Bigasoft Corporation)
    Bonjour (Version: 3.0.0.10 - Apple Inc.)
    BurnAware Free 6.2 (x32 Version: - Burnaware)
    Canon IJ Network Scanner Selector EX (x32 Version: - )
    Canon IJ Network Tool (x32 Version: - )
    Canon MG5300 series MP Drivers (Version: - )
    Canon MG5300 series On-screen Manual (x32 Version: - )
    Canon MG5300 series User Registration (x32 Version: - )
    Canon MP Navigator EX 5.0 (x32 Version: - )
    Canon My Printer (x32 Version: - )
    Canon Solution Menu EX (x32 Version: - )
    ccCommon (x32 Version: 107.0.4.3 - Symantec) Hidden
    ccCommon64 (Version: 107.0.4.3 - Symantec) Hidden
    CCleaner (Version: 3.21 - Piriform)
    Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
    Component Framework (x32 Version: 2006.1.3.35 - Symantec Corporation) Hidden
    coverXP (remove only) (x32 Version: - )
    CyberLink DVD Suite (x32 Version: 5.5.1823 - CyberLink Corp.)
    D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
    DFX for Windows Media Player (x32 Version: 9.211.0.0 - Power Technology)
    DigitalPersona Personal 4.11 (Version: 4.11.3805 - DigitalPersona, Inc.)
    DivX Plus DirectShow Filters (x32 Version: - DivX, Inc.)
    DivX Setup (x32 Version: 1.0.1.4 - DivX, Inc. )
    ESU for Microsoft Vista (x32 Version: 1.0.0 - Hewlett-Packard)
    Free PS Convert driver 8.15 (x32 Version: - )
    Google Update Helper (x32 Version: 1.3.23.0 - DealPly Technologies Ltd) Hidden <==== ATTENTION
    Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000 - Hewlett-Packard) Hidden
    HP Active Support Library (x32 Version: 3.1.9.1 - Hewlett-Packard)
    HP Customer Experience Enhancements (x32 Version: 5.7.0.2630 - Hewlett-Packard)
    HP Doc Viewer (x32 Version: 1.01.0005 - Hewlett-Packard)
    HP Easy Setup - Frontend (x32 Version: 5.7.0.2693 - Hewlett-Packard)
    HP Help and Support (x32 Version: 2.1.3.0 - Hewlett-Packard Company)
    HP Integrated Module with Bluetooth wireless technology 6.0.1.6204 (Version: 6.0.1.6204 - HP)
    HP MediaSmart DVD (x32 Version: 2.2.3309 - Hewlett-Packard)
    HP MediaSmart DVD (x32 Version: 2.2.3309 - Hewlett-Packard) Hidden
    HP MediaSmart Music/Photo/Video (x32 Version: 1.0.2002 - Hewlett-Packard)
    HP MediaSmart Music/Photo/Video (x32 Version: 1.0.2002 - Hewlett-Packard) Hidden
    HP MediaSmart SmartMenu (Version: 1.0.20 - Hewlett-Packard)
    HP MediaSmart TV (x32 Version: 1.0.0729 - Hewlett-Packard)
    HP MediaSmart TV (x32 Version: 1.0.0729 - Hewlett-Packard) Hidden
    HP Product Detection (x32 Version: 11.14.0001 - HP)
    HP Quick Launch Buttons (x32 Version: 6.50.13.1 - Hewlett-Packard Company)
    HP Total Care Advisor (x32 Version: 2.3.4394.2730 - Hewlett-Packard)
    HP Total Care Advisor (x32 Version: 2.4.6651.2902 - Hewlett-Packard)
    HP Update (x32 Version: 5.002.005.003 - Hewlett-Packard)
    HP User Guides 0115 (x32 Version: 1.02.0000 - Hewlett-Packard)
    HP Wireless Assistant (x32 Version: 3.50.9.1 - Hewlett-Packard)
    HPAsset component for HP Active Support Library (x32 Version: 3.0.0.6 - Hewlett-Packard) Hidden
    Huawei modem (x32 Version: - )
    iCloud (Version: 1.1.0.40 - Apple Inc.)
    IDT Audio (x32 Version: 1.0.6047.5 - IDT)
    Intel® Matrix Storage Manager (Version: - Intel Corporation)
    iTunes (Version: 10.7.0.21 - Apple Inc.)
    JavaFX 2.1.1 (x32 Version: 2.1.1 - Oracle Corporation)
    JMicron JMB38X Flash Media Controller (x32 Version: 1.00.18.07 - JMicron Technology Corp.)
    Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    K-Lite Codec Pack 5.9.0 (Basic) (x32 Version: 5.9.0 - )
    LightScribe System Software 1.12.33.2 (x32 Version: 1.12.33.2 - LightScribe)
    LiveUpdate (Symantec Corporation) (x32 Version: 3.4.1.232 - Symantec Corporation)
    LiveUpdate (Symantec Corporation) (x32 Version: 3.4.1.238 - Symantec Corporation) Hidden
    Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
    Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
    Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Microsoft .NET Framework 3.5 SP1 (Version: - Microsoft Corporation)
    Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
    Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
    Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
    Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
    Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
    Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
    Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
    Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
    Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office PowerPoint Viewer 2007 (English) (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
    Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
    Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
    Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (x32 Version: 12.0.4518.1014 - Microsoft Corporation)
    Microsoft Silverlight (x32 Version: 5.1.20913.0 - Microsoft Corporation)
    Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
    Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336 - Microsoft Corporation) Hidden
    Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Works (x32 Version: 9.7.0621 - Microsoft Corporation)
    Mozilla Firefox 19.0.2 (x86 en-US) (x32 Version: 19.0.2 - Mozilla)
    Mozilla Maintenance Service (x32 Version: 19.0.2 - Mozilla)
    MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
    MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
    MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
    MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
    muvee autoProducer 6.1 (x32 Version: 6.10.050 - muvee Technologies)
    Nero BurnLite 10 (x32 Version: 10.0.10100.1.100 - Nero AG)
    Nero BurnLite 10 (x32 Version: 10.0.10500 - Nero AG)
    Nero Control Center 10 (x32 Version: 10.0.13100.3.1 - Nero AG) Hidden
    Nero ControlCenter 10 Help (CHM) (x32 Version: 1.0.10700 - Nero AG) Hidden
    Nero Core Components 10 (x32 Version: 2.0.15100.0.1 - Nero AG) Hidden
    Nero Update (x32 Version: 1.0.0018 - Nero AG)
    Norton AntiVirus (x32 Version: 15.5.0.23 - Symantec Corporation) Hidden
    Norton AntiVirus Help (x32 Version: 15.0 - Symantec Corporation) Hidden
    Norton Confidential Core (x32 Version: 2.5.0.32 - Symantec Corporation) Hidden
    Norton Internet Security (Symantec Corporation) (x32 Version: 15.5.0.23 - Symantec Corporation)
    Norton Internet Security (x32 Version: 15.5.0.23 - Symantec Corporation) Hidden
    Norton Protection Center (Version: 3.6.0.18 - Symantec Corporation) Hidden
    Norton Protection Center (x32 Version: 3.6.0.18 - Symantec Corporation) Hidden
    NVIDIA Drivers (Version: 1.4 - NVIDIA Corporation)
    PDFCreator (Version: - )
    PeerBlock 1.1 (r518) (Version: 1.1.0.518 - PeerBlock, LLC)
    PL-2303 USB-to-Serial (x32 Version: 1.1.0 - Prolific Technology INC)
    ProtectSmart Hard Drive Protection (Version: 3.10.1.7 - Hewlett-Packard)
    QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
    QuickPlay SlingPlayer 0.4.6 (x32 Version: 0.4.6 - SlingMedia)
    QuickTime (x32 Version: 7.66.71.0 - Apple Inc.)
    Realtek 8169 8168 8101E 8102E Ethernet Driver (x32 Version: 1.00.0000 - Realtek)
    RedMon - Redirection Port Monitor (Version: - )
    Segoe UI (x32 Version: 15.4.2271.0615 - Microsoft Corp) Hidden
    Skype™ 6.1 (x32 Version: 6.1.129 - Skype Technologies S.A.)
    SPBBC 64bit (Version: 107.1.0.15 - Symantec Corporation) Hidden
    Symantec Real Time Storage Protection Component (x64) (Version: 10.2.3.9 - Symantec Corporation) Hidden
    Symantec Technical Support Web Controls (x32 Version: 3.5.3 - Symantec Corporation)
    SymNet x64 (Version: 8.0.2.6 - Symantec Corporation) Hidden
    Synaptics Pointing Device Driver (Version: 11.2.0.0 - Synaptics)
    Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (x32 Version: 1 - Microsoft Corporation)
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1 - Microsoft Corporation)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1 - Microsoft Corporation)
    Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3 - Microsoft Corporation)
    Update for Microsoft Office 2007 Help for Common Features (KB963673) (x32 Version: - Microsoft)
    Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
    Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32 Version: - Microsoft)
    Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
    Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
    Update for Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
    Update for Microsoft Office OneNote 2007 Help (KB963670) (x32 Version: - Microsoft)
    Update for Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
    Update for Microsoft Office Script Editor Help (KB963671) (x32 Version: - Microsoft)
    Update for Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
    Validity Sensors software (Version: 2.7.44 - Validity Sensors, Inc.)
    VC80CRTRedist - 8.0.50727.4053 (x32 Version: 1.1.0 - DivX, Inc) Hidden
    VDownloader 3.9.1326 (Version: - Vitzo Limited)
    Visual C++ 2008 x86 Runtime - (v9.0.30729) (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
    Visual C++ 2008 x86 Runtime - v9.0.30729.01 (x32 Version: 9.0.30729.01 - Microsoft Corporation)
    VLC media player 1.1.11 (x32 Version: 1.1.11 - VideoLAN)
    Windows Driver Package - ENE (enecir) HIDClass (04/29/2008 2.5.0.0) (Version: 04/29/2008 2.5.0.0 - ENE)
    Windows Driver Package - ENE (enecir) HIDClass (09/04/2008 2.6.0.0) (Version: 09/04/2008 2.6.0.0 - ENE)
    Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
    Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
    Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
    Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
    Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
    Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
    Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
    Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
    Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
    Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
    Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
    Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Sync (x32 Version: 14.0.8064.206 - Microsoft Corporation)
    Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
    Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
    Windows Phone Intro Video (ENU) (x32 Version: 04.07.0975.00 - Microsoft Corporation) Hidden
    WinPcap 4.1.1 (x32 Version: 4.1.0.1753 - CACE Technologies)
    WinRAR 4.01 (32-bit) (x32 Version: 4.01.0 - win.rar GmbH)
    XviD & MP3 Codec Pack (remove only) (x32 Version: - )
    XviD MPEG-4 Video Codec (x32 Version: XviD-1.0.3-20122004 - XviD Team (Koepi))
    ==================== Restore Points =========================
    10-01-2014 22:48:18 Windows Update
    12-01-2014 02:51:05 Scheduled Checkpoint
    15-01-2014 05:37:16 Scheduled Checkpoint
    15-01-2014 19:57:11 Windows Update
    16-01-2014 03:00:34 Windows Update
    21-01-2014 21:01:41 Windows Update
    23-01-2014 03:08:07 Scheduled Checkpoint
    24-01-2014 22:03:24 Windows Update
    ==================== Hosts content: ==========================
    2006-11-02 12:34 - 2013-03-24 12:14 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
    127.0.0.1 localhost
    ==================== Scheduled Tasks (whitelisted) =============
    Task: {04DBD2DF-D22D-4247-900B-B7D32D028811} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
    Task: {0AEAFAF6-F116-4A60-AFB4-C8B755A6E975} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
    Task: {192DDA2D-5815-47B8-983F-65744FEEC03A} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
    Task: {254095AE-FB97-48EA-94A5-D8BF2AB79714} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
    Task: {490660F2-405C-463C-BE28-F3582B064C01} - System32\Tasks\HP Health Check => c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard)
    Task: {603F0E2F-EF1A-4821-B8A7-FC59933FAA78} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-07-24] (Piriform Ltd)
    Task: {700513EA-30C4-42B1-969C-213C736D71C0} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
    Task: {7C638E5B-ECE5-4424-A7E5-2C913CA682E9} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
    Task: {897E3CB8-DE80-4A03-BB7B-E614AC49AD13} - \Scheduled Update for Ask Toolbar No Task File
    Task: {B51F568F-DF3F-4414-AD03-14F4F8F300F3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
    Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
    Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    ==================== Loaded Modules (whitelisted) =============
    2008-06-19 20:59 - 2008-06-19 20:59 - 00167936 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
    2008-07-24 02:35 - 2008-07-24 02:35 - 00074536 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\Common\MCEMediaStatus64.dll
    2012-02-20 20:29 - 2012-02-20 20:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
    2012-02-20 20:28 - 2012-02-20 20:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
    2008-07-24 02:35 - 2008-07-24 02:35 - 00259480 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapEngine.dll
    2008-07-24 02:35 - 2008-07-24 02:35 - 00038184 ____N () C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\CLCapSvcps.dll
    2008-09-03 05:39 - 2008-08-07 00:37 - 00132432 _____ () C:\Windows\SMINST\STWmiM.dll
    2007-07-12 19:55 - 2007-07-12 19:55 - 01581056 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
    2007-08-14 19:59 - 2007-08-14 19:59 - 06365184 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
    2007-07-12 19:55 - 2007-07-12 19:55 - 00131072 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00101376 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlc.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 02263552 _____ () C:\Program Files (x86)\VideoLAN\VLC\libvlccore.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaout_directx_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00067072 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdirectx_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00210944 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdshow_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 02169856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libskins2_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libwaveout_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00033792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmemcpymmxext_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00090112 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaccess_bd_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00231424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdvdnav_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfilesystem_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00034304 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libstream_filter_rar_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00078848 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libzip_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libstream_filter_record_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00108032 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libplaylist_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 01108992 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libtaglib_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00338432 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liblua_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 01137664 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libxml_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00046592 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libhotkeys_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00033792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libglobalhotkeys_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 11496448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libqt4_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00194048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmp4_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00088064 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libavi_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00037376 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfake_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00034304 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libcdg_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00237568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libpng_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 01013248 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libschroedinger_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00265216 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libflac_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 01712128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libvorbis_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00130048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libspeex_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 01776128 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liblibass_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00045568 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaraw_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00033280 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaes3_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00039424 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdts_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00309760 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfaad_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00368640 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libtheora_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmpeg_audio_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00035840 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liblpcm_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00258048 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfluidsynth_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 08248320 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libavcodec_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00652800 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfreetype_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00178176 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdtstofloat32_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00048640 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_sse2_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00065536 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52tofloat32_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00039936 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_mmx_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00128000 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmpgatofixed32_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00325120 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libswscale_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00032768 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libconverter_fixed_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00030720 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\liba52tospdif_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00032256 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdtstospdif_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00033792 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libsimple_channel_mixer_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00046080 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_sse2_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00032256 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdolby_surround_decoder_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00135680 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_sse2_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libmono_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00037888 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_mmx_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libugly_resampler_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00073728 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_mmx_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00041472 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libaudio_format_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00036352 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_yuy2_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00040448 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuy2_i420_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00031744 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libfloat32_mixer_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00052224 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_rgb_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libscaletempo_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00032768 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libgrey_yuv_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00038400 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi420_yuy2_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00036864 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuy2_i422_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00032768 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libi422_i420_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00031744 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libscale_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libyuvp_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00038912 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libvout_wrapper_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00061440 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdirect3d_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00031232 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libdrawable_plugin.dll
    2011-07-14 12:21 - 2011-07-14 12:21 - 00057856 _____ () C:\Program Files (x86)\VideoLAN\VLC\plugins\libblend_plugin.dll
    ==================== Alternate Data Streams (whitelisted) =========

    ==================== Safe Mode (whitelisted) ===================
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Audiosrv => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MMCSS => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Sound, video and game controllers"
    ==================== Faulty Device Manager Devices =============

    ==================== Event log errors: =========================
    Application errors:
    ==================
    Error: (01/28/2014 00:09:18 AM) (Source: Application Hang) (User: )
    Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
    Process ID: 14f8
    Start Time: 01cf1bb580861f1e
    Termination Time: 3
    Error: (01/27/2014 11:12:37 PM) (Source: Application Hang) (User: )
    Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
    Process ID: 2860
    Start Time: 01cf1bb049d60a62
    Termination Time: 7
    Error: (01/27/2014 10:25:07 PM) (Source: Application Hang) (User: )
    Description: The program mbam.exe version 1.75.0.1 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
    Process ID: 282c
    Start Time: 01cf1baccc3ce451
    Termination Time: 12
    Error: (01/27/2014 09:50:06 PM) (Source: WinMgmt) (User: )
    Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
    Error: (01/27/2014 08:33:20 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: m->NextScheduledSPRetry 72887068
    Error: (01/27/2014 08:33:20 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: m->NextScheduledEvent 72887068
    Error: (01/27/2014 08:33:20 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: Continuously busy for more than a second
    Error: (01/27/2014 08:33:19 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: m->NextScheduledSPRetry 72885992
    Error: (01/27/2014 08:33:19 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: m->NextScheduledEvent 72885992
    Error: (01/27/2014 08:33:19 PM) (Source: Bonjour Service) (User: )
    Description: Task Scheduling Error: Continuously busy for more than a second

    System errors:
    =============
    Error: (01/27/2014 09:51:42 PM) (Source: Service Control Manager) (User: )
    Description: ASPI32
    Beep
    Error: (01/27/2014 09:50:06 PM) (Source: Service Control Manager) (User: )
    Description: vToolbarUpdater17.2.0%%2
    Error: (01/27/2014 09:49:17 PM) (Source: Print) (User: NT AUTHORITY)
    Description: Printer doPDF v7 failed to initialize because a suitable doPDF 7 Printer Driver driver could not be found. The new printer settings that you specified have not taken effect. Install or reinstall the printer driver. You might need to contact the vendor for an updated driver.
    Error: (01/27/2014 09:49:17 PM) (Source: Print) (User: NT AUTHORITY)
    Description: Printer Batch failed to initialize because a suitable Apple Color LW 12/660 PS driver could not be found. The new printer settings that you specified have not taken effect. Install or reinstall the printer driver. You might need to contact the vendor for an updated driver.
    Error: (01/27/2014 09:48:59 PM) (Source: EventLog) (User: )
    Description: The previous system shutdown at 21:43:30 on 27/01/2014 was unexpected.
    Error: (01/27/2014 09:48:33 PM) (Source: Application Popup) (User: )
    Description: \SystemRoot\SysWow64\Drivers\ASPI32.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
    Error: (01/24/2014 05:40:04 PM) (Source: Service Control Manager) (User: )
    Description: 30000Symantec Core LC
    Error: (01/22/2014 07:18:58 PM) (Source: Service Control Manager) (User: )
    Description: 30000Symantec Core LC
    Error: (01/21/2014 08:51:24 PM) (Source: Service Control Manager) (User: )
    Description: ASPI32
    Beep
    Error: (01/21/2014 08:49:54 PM) (Source: Service Control Manager) (User: )
    Description: vToolbarUpdater17.2.0%%2

    Microsoft Office Sessions:
    =========================
    Error: (12/24/2011 08:29:51 PM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (12/10/2011 00:01:53 AM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 15 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (05/08/2011 07:00:15 PM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (04/02/2011 08:07:29 PM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (02/25/2011 08:57:12 PM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 13 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (02/13/2011 09:43:49 PM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (02/13/2011 04:09:45 PM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (01/10/2011 05:59:46 AM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 20 seconds with 0 seconds of active time. This session ended with a crash.
    Error: (09/17/2010 09:32:33 PM) (Source: Microsoft Office 12 Sessions)(User: )
    Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 3 seconds with 0 seconds of active time. This session ended with a crash.

    CodeIntegrity Errors:
    ===================================
    Date: 2014-01-28 00:13:40.086
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:39.781
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:39.464
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:39.158
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:38.876
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:38.577
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:38.289
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:38.004
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys.bak because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:37.630
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
    Date: 2014-01-28 00:13:37.342
    Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

    ==================== Memory info ===========================
    Percentage of memory in use: 59%
    Total physical RAM: 4062.25 MB
    Available physical RAM: 1662.81 MB
    Total Pagefile: 8317.77 MB
    Available Pagefile: 5921.17 MB
    Total Virtual: 8192 MB
    Available Virtual: 8191.81 MB
    ==================== Drives ================================
    Drive c: () (Fixed) (Total:286.35 GB) (Free:135.59 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
    Drive d: (RECOVERY) (Fixed) (Total:11.74 GB) (Free:1.91 GB) NTFS ==>[System with boot components (obtained from reading drive)]
    ==================== MBR & Partition Table ==================
    ========================================================
    Disk: 0 (Size: 298 GB) (Disk ID: A4022EF6)
    Partition 1: (Active) - (Size=286 GB) - (Type=07 NTFS)
    Partition 2: (Not Active) - (Size=12 GB) - (Type=07 NTFS)
    ==================== End Of Log ============================
     
  9. Broni

    Broni Malware Annihilator Posts: 46,868   +254

    I don't see much there...

    Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

    Run FRST/FRST64 and press the Fix button just once and wait.
    The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
     

    Attached Files:

  10. davidj23

    davidj23 TS Rookie Topic Starter Posts: 59

    Thanks Broni, here is the log:



    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2014 02
    Boot Mode: Normal
    ==============================================
    Content of fixlist:
    *****************
    AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => File Not Found
    Toolbar: HKCU - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
    Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
    C:\Users\Devinder Johal\AppData\Roaming\desktop.ini
    Task: {897E3CB8-DE80-4A03-BB7B-E614AC49AD13} - \Scheduled Update for Ask Toolbar No Task File
    *****************
    "C:\\PROGRA~2\\SearchProtect\\SearchProtect\\bin\\SPVC64Loader.dll" => Value Data removed successfully.
    HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Value deleted successfully.
    HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Key deleted successfully.
    C:\Users\Devinder Johal\AppData\Roaming\desktop.ini => Moved successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{897E3CB8-DE80-4A03-BB7B-E614AC49AD13} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{897E3CB8-DE80-4A03-BB7B-E614AC49AD13} => Key deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar => Key deleted successfully.
    ==== End of Fixlog ====
     
  11. Broni

    Broni Malware Annihilator Posts: 46,868   +254

    Download BlueScreenView
    Unzip downloaded file.
    Double click on BlueScreenView.exe file to run the program.
    When scanning is done, go Edit>Select All.
    Go File>Save Selected Items, and save the report as BSOD.txt.
    Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.
     
     
  12. davidj23

    davidj23 TS Rookie Topic Starter Posts: 59

    ==================================================
    Dump File : Mini041213-01.dmp
    Crash Time : 12/04/2013 09:41:59
    Bug Check String :
    Bug Check Code : 0x00000116
    Parameter 1 : fffffa80`097f6010
    Parameter 2 : fffffa60`0301e460
    Parameter 3 : 00000000`00000000
    Parameter 4 : 00000000`00000002
    Caused By Driver : dxgkrnl.sys
    Caused By Address : dxgkrnl.sys+5bad4
    File Description :
    Product Name :
    Company :
    File Version :
    Processor : x64
    Crash Address : ntoskrnl.exe+57150
    Stack Address 1 :
    Stack Address 2 :
    Stack Address 3 :
    Computer Name :
    Full Path : C:\Windows\Minidump\Mini041213-01.dmp
    Processors Count : 2
    Major Version : 15
    Minor Version : 6002
    Dump File Size : 376,872
    Dump File Time : 12/04/2013 09:44:50
    ==================================================


    Hmm that's strange, almost as if the computer hasnt saved any information from the crash or even recorded it... this may be because I manually shut down the computer when the BSOD happened by holding down the power button (sorry, I freaked out a little).
     
  13. Broni

    Broni Malware Annihilator Posts: 46,868   +254

    [​IMG] Download RogueKiller from one of the following links and save it to your Desktop:
    • Close all the running programs
    • Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator
    • Otherwise just double-click on RogueKiller.exe
    • Pre-scan will start. Let it finish.
    • Click on SCAN button.
    • Wait until the Status box shows Scan Finished
    • Click on Delete.
    • Wait until the Status box shows Deleting Finished.
    • Click on Report and copy/paste the content of the Notepad into your next reply.
    • RKreport.txt could also be found on your desktop.
    • If more than one log is produced post all logs.
    • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

    [​IMG] Create new restore point before proceeding with the next step....
    How to: http://www.smartestcomputing.us.com/topic/63983-how-to-create-new-restore-point-all-windows/

    Download Malwarebytes Anti-Rootkit (MBAR) from HERE
    • Unzip downloaded file.
    • Open the folder where the contents were unzipped and run mbar.exe
    • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
    • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
    • Wait while the system shuts down and the cleanup process is performed.
    • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
    • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt
     
  14. Broni

    Broni Malware Annihilator Posts: 46,868   +254

    Still with me?
     
  15. Broni

    Broni Malware Annihilator Posts: 46,868   +254

    This topic is marked as abandoned and closed due to inactivity.

    This member will NOT be eligible to receive any more help in malware removal forum.
     


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.