Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

random audio ads running and dcom error message and computer restart


  • This topic is locked This topic is locked
11 replies to this topic

#1 b_gardner

b_gardner

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:39 AM

Posted 11 January 2014 - 02:45 PM

Random audio ads run soradically in the background and I get an occassion dcom error message and that my computer needs to restart.  I've tried Norton, McAfee and malwarebytes but nothing seems to work.  I've also tried a system restore but that's been unsuccesful.

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7600.17267  BrowserJavaVersion: 10.45.2
Run by Brian at 14:29:04 on 2014-01-11
Microsoft Windows 7 Home Premium   6.1.7600.0.1252.1.1033.18.3767.238 [GMT -5:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Norton Security Suite *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton Security Suite *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
FW: Norton Security Suite *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\HitmanPro\hmpsched.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Launch Manager\dsiwmis.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
C:\Windows\System32\igfxtray.exe
C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\N360.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\N360.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\McAfee\MSC\McAPExe.exe
C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.yahoo.com/
uSearch Bar = Preserve
mStart Page = hxxp://www.google.com
mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5745&r=27361010c006l0413z155t47k1k839
mWinlogon: Userinit = userinit.exe,
BHO: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - <orphaned>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned>
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\CoIEPlg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\IPS\IPSBHO.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Constant Guard Protection Suite: {B84CDBE7-1B46-494B-A188-01D4C52DEB61} - C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.1211.1\NativeBHO.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: SingleInstance Class: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\CoIEPlg.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\CoIEPlg.dll
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
mRun: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
mRun: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
mRun: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
mRun: [MDS_Menu] "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso" UpdateWithCreateOnce "Software\CyberLink\MediaShow Espresso\5.6"
mRun: [ArcadeMovieService] "C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
dRunOnce: [{90140000-003D-0000-0000-0000000FF1CE}] C:\Windows\System32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\CONSTA~1.LNK - C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MCAFEE~1.LNK - C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{6F50F40B-7172-4454-AA68-07923038C98E} : DHCPNameServer = 66.208.1.2 66.208.2.2
TCP: Interfaces\{8A1C7C2A-4215-4B05-888C-81593472948D} : NameServer = 75.75.75.75,75.75.76.76
TCP: Interfaces\{8A1C7C2A-4215-4B05-888C-81593472948D} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{8A1C7C2A-4215-4B05-888C-81593472948D}\4497E65687 : DHCPNameServer = 192.168.2.1 68.87.73.246 68.87.71.230
TCP: Interfaces\{8A1C7C2A-4215-4B05-888C-81593472948D}\F6074796D657D677966696 : DHCPNameServer = 10.240.205.161 10.240.205.162
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
x64-mStart Page = hxxp://www.google.com
x64-mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5745&r=27361010c006l0413z155t47k1k839
x64-BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
x64-BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.1.0.18\CoIEPlg.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg64.dll
x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.1.0.18\CoIEPlg.dll
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /FORPCEE3
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-Run: [ODDPwr] "C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe"
x64-Run: [mwlDaemon] C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [Acer ePower Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R1 A2DDA;A2 Direct Disk Access Support Driver;C:\EEK\Run\a2ddax64.sys [2014-1-6 26176]
R1 AntiLog32;AntiLog32;C:\Windows\System32\drivers\AntiLog64.sys [2014-1-9 49240]
R1 BHDrvx64;BHDrvx64;C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\BASHDefs\20131218.001\BHDrvx64.sys [2014-1-9 1526488]
R1 ccSet_N360;N360 Settings Manager;C:\Windows\System32\drivers\N360x64\1501000.012\ccSetx64.sys [2014-1-9 162392]
R1 IDSVia64;IDSVia64;C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\IPSDefs\20140110.001\IDSviA64.sys [2014-1-11 521944]
R2 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2013-11-4 311120]
R2 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2013-9-24 782360]
R2 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2013-11-4 343696]
R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2013-11-4 70112]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-1-9 137648]
R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-8-3 56344]
R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-8-3 158976]
R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2010-8-3 271872]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2010-8-3 76400]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-1-5 25928]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2013-11-4 519576]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\drivers\mfencbdc.sys [2013-11-26 411944]
S3 AmUStor;AM USB Stroage Driver;C:\Windows\System32\drivers\AmUStor.sys [2010-6-9 40448]
S3 cleanhlp;cleanhlp;C:\EEK\Run\cleanhlp64.sys [2014-1-6 57024]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\drivers\HipShieldK.sys [2014-1-3 197704]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\drivers\mfencrk.sys [2013-11-26 96112]
.
=============== Created Last 30 ================
.
2014-01-10 03:06:26 -------- d-----w- C:\N360_BACKUP
2014-01-09 12:35:22 -------- d--h--w- C:\Windows\AxInstSV
2014-01-09 12:32:56 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
2014-01-09 12:16:00 177752 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2014-01-09 12:16:00 -------- d-----w- C:\Program Files\Common Files\Symantec Shared
2014-01-09 12:15:37 858200 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\srtsp64.sys
2014-01-09 12:15:37 590936 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\symnets.sys
2014-01-09 12:15:37 493656 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\SymDS64.sys
2014-01-09 12:15:37 36952 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\srtspx64.sys
2014-01-09 12:15:37 264280 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\Ironx64.sys
2014-01-09 12:15:37 23568 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\SymELAM.sys
2014-01-09 12:15:37 162392 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\ccSetx64.sys
2014-01-09 12:15:37 1147480 ----a-r- C:\Windows\System32\drivers\N360x64\1501000.012\SymEFA64.sys
2014-01-09 12:15:11 -------- d-----w- C:\Windows\System32\drivers\N360x64\1501000.012
2014-01-09 12:15:11 -------- d-----w- C:\Windows\System32\drivers\N360x64
2014-01-09 12:15:08 -------- d-----w- C:\Program Files (x86)\Norton Security Suite
2014-01-09 12:14:37 -------- d-----w- C:\ProgramData\NortonInstaller
2014-01-09 12:14:37 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2014-01-09 12:13:01 -------- d-----w- C:\ProgramData\Norton
2014-01-09 12:09:47 -------- d-----w- C:\ProgramData\IsolatedStorage
2014-01-09 12:09:46 -------- d-----w- C:\Users\Brian\AppData\Local\White_Sky,_Inc
2014-01-09 12:09:43 -------- d-----w- C:\Users\Brian\AppData\Local\ID Vault
2014-01-09 12:08:57 -------- d-----w- C:\Users\Brian\AppData\Roaming\ID Vault
2014-01-09 12:08:38 49240 ----a-w- C:\Windows\System32\drivers\AntiLog64.sys
2014-01-09 12:08:38 10674488 ----a-w- C:\Windows\SysWow64\ZALSDKCore.dll
2014-01-09 12:08:38 -------- d-----w- C:\Windows\SysWow64\ZALSDK_uninst
2014-01-09 12:08:37 -------- d-----w- C:\Users\Brian\AppData\Local\Zemana
2014-01-09 12:08:28 -------- d-----w- C:\Program Files (x86)\Constant Guard Protection Suite
2014-01-09 12:08:00 -------- d-----w- C:\ProgramData\White Sky, Inc
2014-01-09 11:48:22 -------- d-----w- C:\ProgramData\Oracle
2014-01-09 11:47:33 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-09 03:19:26 -------- d-----w- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-09 03:07:05 89304 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-01-08 23:53:02 -------- d-----w- C:\Users\Brian\AppData\Roaming\ParetoLogic
2014-01-08 23:53:02 -------- d-----w- C:\Users\Brian\AppData\Roaming\DriverCure
2014-01-08 23:52:42 -------- d-----w- C:\ProgramData\ParetoLogic
2014-01-07 05:32:32 -------- d-----w- C:\Windows\ERUNT
2014-01-07 05:14:06 -------- d-----w- C:\AdwCleaner
2014-01-07 03:47:34 -------- d-----w- C:\EEK
2014-01-07 03:35:59 44112 ----a-w- C:\Windows\System32\drivers\iirsp.sys.bak
2014-01-07 03:05:20 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-01-07 03:05:20 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-01-06 04:28:22 -------- d-----w- C:\Program Files\HitmanPro
2014-01-05 23:37:51 -------- d-----w- C:\Program Files (x86)\Yahoo!
2014-01-05 07:53:28 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-01-05 07:53:28 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-05 07:42:05 -------- d-----w- C:\ProgramData\HitmanPro
2014-01-05 07:12:20 -------- d-----w- C:\Users\Brian\.android
2014-01-05 07:12:18 -------- d-----w- C:\Users\Brian\AppData\Local\cache
2014-01-05 07:12:17 -------- d-----w- C:\Users\Brian\AppData\Local\genienext
2014-01-05 07:11:07 -------- d-----w- C:\Users\Brian\AppData\Roaming\DigitalSites
2014-01-03 06:22:51 -------- d-----w- C:\Users\Brian\AppData\Roaming\PC Utility Kit
2014-01-03 06:22:35 -------- d-----w- C:\ProgramData\PC Utility Kit
2014-01-03 06:12:09 197704 ----a-w- C:\Windows\System32\drivers\HipShieldK.sys
2014-01-03 06:11:19 -------- d-----w- C:\Program Files (x86)\McAfee.com
2014-01-03 06:11:10 -------- d-----w- C:\Program Files (x86)\Common Files\McAfee
2014-01-03 06:10:53 -------- d-----w- C:\Program Files\McAfee.com
2014-01-03 06:10:53 -------- d-----w- C:\Program Files\McAfee
2014-01-03 06:06:20 182752 ----a-w- C:\Windows\System32\mfevtps.exe
2014-01-02 01:02:09 -------- d-----w- C:\Users\Brian\AppData\Roaming\Malwarebytes
2014-01-02 01:01:51 -------- d-----w- C:\ProgramData\Malwarebytes
2014-01-02 01:01:18 -------- d-----w- C:\Users\Brian\AppData\Local\Programs
2014-01-02 00:41:37 -------- d-----w- C:\TDSSKiller_Quarantine
2014-01-01 00:51:49 75888 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{868F6EC6-2CD9-4F26-A598-5AF3589ED2F9}\offreg.dll
2014-01-01 00:19:23 10315576 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{868F6EC6-2CD9-4F26-A598-5AF3589ED2F9}\mpengine.dll
2014-01-01 00:18:58 267936 ------w- C:\Windows\System32\MpSigStub.exe
.
==================== Find3M  ====================
.
2013-11-27 03:07:44 10856 ----a-w- C:\Windows\System32\drivers\mfeclnrk.sys
2013-11-27 03:07:22 96112 ----a-w- C:\Windows\System32\drivers\mfencrk.sys
2013-11-27 03:07:02 411944 ----a-w- C:\Windows\System32\drivers\mfencbdc.sys
2013-11-04 21:51:44 70112 ----a-w- C:\Windows\System32\drivers\cfwids.sys
2013-11-04 21:46:34 343696 ----a-w- C:\Windows\System32\drivers\mfewfpk.sys
2013-11-04 21:43:04 782360 ----a-w- C:\Windows\System32\drivers\mfehidk.sys
2013-11-04 21:41:22 519576 ----a-w- C:\Windows\System32\drivers\mfefirek.sys
2013-11-04 21:40:00 311120 ----a-w- C:\Windows\System32\drivers\mfeavfk.sys
2013-11-04 21:39:20 179792 ----a-w- C:\Windows\System32\drivers\mfeapfk.sys
.
============= FINISH: 14:31:45.56 ===============
 

Attached Files



BC AdBot (Login to Remove)

 


#2 RPMcMurphy

RPMcMurphy

    Bleeping *^#@%~


  • Malware Response Team
  • 3,970 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:39 AM

Posted 12 January 2014 - 09:57 AM

Hello and welcome.  Please follow these guidelines while we work on your PC:

  • Malware removal is a sometimes lengthy and tedious process. Please stick with the thread until I’ve given you the “All clear.”  Absence of symptoms does not mean your machine is clean!
  • Please do not run any scans or install/uninstall any applications without being directed to do so.
  • Please note that the forum is very busy and if I don't hear from you within five days this thread will be closed.

icon11.gif   Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.


Threads are closed after 5 days of inactivity.

ASAP & UNITE Member


The help you receive here is free. If you wish to show your appreciation, then you may btn_donate_SM.gif


#3 b_gardner

b_gardner
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:39 AM

Posted 12 January 2014 - 05:52 PM

thanks...

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-01-2014 01
Ran by Brian (administrator) on BRIAN-PC on 12-01-2014 17:45:27
Running from C:\Users\Brian\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QPVK66WW
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(White Sky, Inc.) C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\N360.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(NTI, Inc.) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\N360.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWR.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
(Acer Incorporated) C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Acer Group) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(White Sky, Inc.) C:\Program Files (x86)\Constant Guard Protection Suite\IDVault.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.130\SSScheduler.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(McAfee, Inc.) C:\Program Files\McAfee.com\Agent\mcupdate.exe
(Farbar) C:\Users\Brian\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QPVK66WW\FRST64[1].exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10920552 2010-06-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2098792 2010-06-22] (Realtek Semiconductor)
HKLM\...\Run: [AmIcoSinglun64] - C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [324608 2010-06-09] (Alcor Micro Corp.)
HKLM\...\Run: [ODDPwr] - C:\Program Files\Acer\Optical Drive Power Management\ODDPwr.exe [223264 2010-04-22] (Acer Incorporated)
HKLM\...\Run: [mwlDaemon] - C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552 2010-05-26] (Egis Technology Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2097960 2010-04-22] (Synaptics Incorporated)
HKLM\...\Run: [Acer ePower Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [861216 2010-06-11] (Acer Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [337264 2010-05-26] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-03-11] (Egis Technology Inc.)
HKLM-x32\...\Run: [Norton Online Backup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [265984 2010-06-28] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [968272 2010-06-22] (Dritek System Inc.)
HKLM-x32\...\Run: [MDS_Menu] - C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136 2010-06-25] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [mcpltui_exe] - C:\Program Files\McAfee.com\Agent\mcagent.exe [537512 2013-09-24] (McAfee, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-14] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-01-14] ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5745&r=27361010c006l0413z155t47k1k839
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5745&r=27361010c006l0413z155t47k1k839
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_enUS403
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_enUS403
BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL No File
BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg64.dll (Google Inc.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -  No File
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {27B4851A-3207-45A2-B947-BE8AFE6163AB} -  No File
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Constant Guard Protection Suite - {B84CDBE7-1B46-494B-A188-01D4C52DEB61} - C:\ProgramData\White Sky, Inc\ID Vault\IEBHO1.13.1211.1\NativeBHO.dll (WhiteSky)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\coIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\21.1.0.18\coIEPlg.dll (Symantec Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8A1C7C2A-4215-4B05-888C-81593472948D}: [NameServer]75.75.75.75,75.75.76.76

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchProvider:       "name": "Mysearchdial"
CHR Extension: (SiteAdvisor) - C:\Users\Brian\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.40.135.1_0 [2011-10-15]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2014-01-09]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\Exts\Chrome.crx [2014-01-09]

==================== Services (Whitelisted) =================

R2 AdobeActiveFileMonitor10.0; C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe [169624 2011-09-01] (Adobe Systems Incorporated)
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [109352 2014-01-05] (SurfRight B.V.)
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178048 2013-11-28] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1025232 2013-11-26] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
S3 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-26] (Egis Technology Inc.)
R2 N360; C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\N360.exe [264360 2013-10-18] (Symantec Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)
R2 NTISchedulerSvc; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640 2010-04-16] (NTI, Inc.)
R2 ODDPwrSvc; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [171040 2010-04-22] (Acer Incorporated)
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2010-02-03] ()

==================== Drivers (Whitelisted) ====================

R1 A2DDA; C:\EEK\RUN\a2ddax64.sys [26176 2014-01-07] (Emsisoft GmbH)
R1 AntiLog32; C:\Windows\system32\drivers\AntiLog64.sys [49240 2014-01-09] (Zemana Ltd.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\BASHDefs\20131218.001\BHDrvx64.sys [1526488 2013-12-17] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys [162392 2013-09-25] (Symantec Corporation)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
S3 cleanhlp; C:\EEK\Run\cleanhlp64.sys [57024 2014-01-07] (Emsisoft GmbH)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-01-08] (Symantec Corporation)
U3 EraserUtilDrv11312; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11312.sys [137648 2014-01-08] (Symantec Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)
R1 IDSVia64; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\IPSDefs\20140110.001\IDSvia64.sys [521944 2014-01-08] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R2 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
R2 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [411944 2013-11-26] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [96112 2013-11-26] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
R3 NAVENG; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140111.005\ENG64.SYS [126040 2014-01-08] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140111.005\EX64.SYS [2099288 2014-01-08] (Symantec Corporation)
R3 SRTSP; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSP64.SYS [858200 2013-09-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS [36952 2013-09-09] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1501000.012\SYMDS64.SYS [493656 2013-09-09] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1501000.012\SYMEFA64.SYS [1147480 2013-09-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-01-09] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS [264280 2013-09-26] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\N360x64\1501000.012\SYMNETS.SYS [590936 2013-09-25] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-12 17:44 - 2014-01-12 17:44 - 00000000 ____D C:\FRST
2014-01-12 17:36 - 2014-01-12 17:36 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-12 17:36 - 2014-01-12 17:36 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-12 17:36 - 2014-01-12 17:36 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-12 17:36 - 2014-01-12 17:36 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-12 17:36 - 2014-01-12 17:36 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-12 17:31 - 2014-01-12 17:31 - 00001294 _____ C:\Windows\IE11_main.log
2014-01-12 11:41 - 2014-01-12 11:41 - 00003288 ____N C:\bootsqm.dat
2014-01-11 15:47 - 2014-01-11 16:10 - 00002187 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-11 14:34 - 2014-01-11 14:34 - 00024185 _____ C:\Users\Brian\Desktop\DDS text.txt
2014-01-11 14:32 - 2014-01-11 14:32 - 00008474 _____ C:\Users\Brian\Desktop\attach.txt
2014-01-11 14:32 - 2014-01-11 14:31 - 00024185 _____ C:\Users\Brian\Desktop\dds.txt
2014-01-11 14:25 - 2014-01-11 14:27 - 00688992 ____R (Swearware) C:\Users\Brian\Desktop\dds.com
2014-01-09 22:06 - 2014-01-09 22:06 - 00000000 ____D C:\N360_BACKUP
2014-01-09 07:47 - 2014-01-09 07:47 - 00007605 _____ C:\Users\Brian\AppData\Local\Resmon.ResmonCfg
2014-01-09 07:20 - 2014-01-09 07:20 - 00000000 ____D C:\Windows\System32\Tasks\Norton Security Suite
2014-01-09 07:16 - 2014-01-09 07:16 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-01-09 07:16 - 2014-01-09 07:16 - 00008222 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-01-09 07:16 - 2014-01-09 07:16 - 00003228 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2014-01-09 07:16 - 2014-01-09 07:16 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2014-01-09 07:15 - 2014-01-09 07:15 - 00002520 _____ C:\Users\Public\Desktop\Norton Security Suite.lnk
2014-01-09 07:15 - 2014-01-09 07:15 - 00000000 ____D C:\Windows\system32\Drivers\N360x64
2014-01-09 07:15 - 2014-01-09 07:15 - 00000000 ____D C:\Program Files (x86)\Norton Security Suite
2014-01-09 07:14 - 2014-01-09 07:14 - 00000000 ____D C:\Users\Brian\Documents\Symantec
2014-01-09 07:13 - 2014-01-09 07:20 - 00000000 ____D C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2014-01-09 07:13 - 2014-01-09 07:20 - 00000000 ____D C:\ProgramData\Norton
2014-01-09 07:13 - 2014-01-09 07:13 - 00001276 _____ C:\Users\Brian\Desktop\Norton Installation Files.lnk
2014-01-09 07:13 - 2014-01-09 07:13 - 00000000 ____D C:\Users\Public\Downloads\Norton
2014-01-09 07:09 - 2014-01-11 15:22 - 00000000 ____D C:\Users\Brian\AppData\Local\ID Vault
2014-01-09 07:09 - 2014-01-09 07:09 - 00000000 ____D C:\Users\Brian\AppData\Local\White_Sky,_Inc
2014-01-09 07:09 - 2014-01-09 07:09 - 00000000 ____D C:\ProgramData\IsolatedStorage
2014-01-09 07:08 - 2014-01-12 17:20 - 00000000 ____D C:\Users\Brian\AppData\Roaming\ID Vault
2014-01-09 07:08 - 2014-01-11 22:01 - 00000000 ____D C:\Program Files (x86)\Constant Guard Protection Suite
2014-01-09 07:08 - 2014-01-09 07:08 - 00049240 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\AntiLog64.sys
2014-01-09 07:08 - 2014-01-09 07:08 - 00002269 _____ C:\Users\Public\Desktop\Constant Guard.lnk
2014-01-09 07:08 - 2014-01-09 07:08 - 00000000 ____D C:\Windows\SysWOW64\ZALSDK_uninst
2014-01-09 07:08 - 2014-01-09 07:08 - 00000000 ____D C:\Users\Brian\AppData\Local\Zemana
2014-01-09 07:08 - 2014-01-09 07:08 - 00000000 ____D C:\ProgramData\White Sky, Inc
2014-01-09 07:08 - 2013-10-16 13:03 - 10674488 _____ (Zemana Ltd.) C:\Windows\SysWOW64\ZALSDKCore.dll
2014-01-09 06:56 - 2014-01-09 06:56 - 00000000 ____D C:\Windows\Sun
2014-01-09 06:48 - 2014-01-12 17:37 - 00000000 ____D C:\ProgramData\Oracle
2014-01-09 06:48 - 2014-01-09 06:48 - 00000000 ____D C:\ProgramData\Sun
2014-01-08 22:19 - 2014-01-08 23:09 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-08 22:07 - 2014-01-08 22:07 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-01-08 22:06 - 2014-01-08 23:09 - 00000000 ____D C:\Users\Brian\Desktop\mbar
2014-01-08 21:11 - 2014-01-08 21:11 - 00000000 ____S C:\Windows\system32\evwhb.xmr
2014-01-08 18:53 - 2014-01-08 18:53 - 00000000 ____D C:\Users\Brian\AppData\Roaming\ParetoLogic
2014-01-08 18:53 - 2014-01-08 18:53 - 00000000 ____D C:\Users\Brian\AppData\Roaming\DriverCure
2014-01-08 18:52 - 2014-01-09 07:32 - 00000000 ____D C:\ProgramData\ParetoLogic
2014-01-08 18:52 - 2014-01-08 18:52 - 00002718 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task
2014-01-08 18:52 - 2014-01-08 18:52 - 00002606 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3
2014-01-07 00:32 - 2014-01-07 00:32 - 00000000 ____D C:\Windows\ERUNT
2014-01-07 00:14 - 2014-01-07 00:16 - 00000000 ____D C:\AdwCleaner
2014-01-06 22:47 - 2014-01-08 20:46 - 00000000 ____D C:\EEK
2014-01-06 22:36 - 2014-01-06 22:36 - 02399848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 01893224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 01653096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 01524816 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00947776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00782360 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfehidk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00519576 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfefirek.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00411944 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencbdc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00374864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00367168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00363584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00343696 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfewfpk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00318000 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00311120 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeavfk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00284736 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00271872 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00224832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00220752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00217680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00214096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00187264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00183872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00179792 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeapfk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00171600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00161872 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00158976 _____ (Intel Corporation) C:\Windows\system32\Drivers\Impcd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00155216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00140352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00128592 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00122960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00115776 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00114752 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_fc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00106560 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00104016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00096112 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencrk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00095088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00094784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00080464 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00076400 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\L1C62x64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00075632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00072832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00071760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00068864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00065600 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00064592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00064080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00062544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060464 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDVDisk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00055856 _____ (Sonic Solutions) C:\Windows\system32\Drivers\PxHlpa64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00054784 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00051264 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcw.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00049216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00048720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00043584 _____ (Silicon Integrated Systems Corp.) C:\Windows\system32\Drivers\sisraid2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00036432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00035392 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00032320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00030272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00027776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024656 _____ (Promise Technology) C:\Windows\system32\Drivers\stexstor.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpbus.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00022576 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDFilter.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00022096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00021056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020016 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDNserv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00019008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00018432 _____ (NTI Corporation) C:\Windows\system32\Drivers\NTIDrvr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017488 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017408 _____ (NTI Corporation) C:\Windows\system32\Drivers\UBHelper.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00016960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00016464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00015424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwf.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00012496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00012352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00011136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00010856 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeclnrk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPREFMP.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mshidkmdf.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00008064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00006784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 10326784 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 03286016 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 02229608 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00982600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00751616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00540696 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00530496 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00491088 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00468480 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00459216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00339536 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00334416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00290368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00287576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00286720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00270848 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\b57nd60a.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00194128 _____ (AMD Technologies Inc.) C:\Windows\system32\Drivers\amdsbs.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00182864 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00178752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00155728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00097856 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00087632 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00077888 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpSAMD.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00073280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00070224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00070112 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\cfwids.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00065088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00061008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00055376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00055128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00044112 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4usb.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\discache.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00040448 _____ (Alcor Micro, Corp.) C:\Windows\system32\Drivers\AmUStor.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00039504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00031232 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw85cir.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00028736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00028240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbatt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00024128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00022896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00021584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4Prt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00017664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00017488 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00015440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00015440 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00014416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00010224 _____ (Sonic Solutions) C:\Windows\system32\Drivers\cdralw2k.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00010224 _____ (Sonic Solutions) C:\Windows\system32\Drivers\cdr4_xp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\beep.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
2014-01-06 22:14 - 2014-01-06 22:14 - 04101441 _____ C:\Users\Brian\Documents\1st step.zip
2014-01-06 22:05 - 2014-01-12 17:23 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-06 22:05 - 2014-01-11 16:23 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-06 22:05 - 2014-01-11 16:08 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-06 22:05 - 2014-01-11 16:08 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-05 23:40 - 2014-01-05 23:40 - 00001916 _____ C:\Windows\system32\.crusader
2014-01-05 23:28 - 2014-01-08 20:45 - 00000000 ____D C:\Program Files\HitmanPro
2014-01-05 23:28 - 2014-01-05 23:28 - 00001901 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2014-01-05 18:38 - 2014-01-05 18:38 - 00000000 ____D C:\Users\Brian\AppData\Roaming\Yahoo!
2014-01-05 18:38 - 2014-01-05 18:38 - 00000000 ____D C:\ProgramData\Yahoo! Companion
2014-01-05 18:37 - 2014-01-05 18:38 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2014-01-05 03:11 - 2014-01-05 03:11 - 00000099 _____ C:\Users\Brian\AppData\Roaming\WB.CFG
2014-01-05 03:11 - 2014-01-05 03:11 - 00000005 _____ C:\Users\Brian\AppData\Roaming\WBPU-TTL.DAT
2014-01-05 02:53 - 2014-01-08 20:45 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-05 02:53 - 2014-01-05 02:53 - 00001117 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-05 02:53 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-05 02:42 - 2014-01-08 20:45 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-05 02:12 - 2014-01-08 20:45 - 00000000 ____D C:\Users\Brian\AppData\Local\genienext
2014-01-05 02:12 - 2014-01-05 02:16 - 00000067 _____ C:\Users\Brian\daemonprocess.txt
2014-01-05 02:12 - 2014-01-05 02:12 - 00000000 ____D C:\Users\Brian\AppData\Local\cache
2014-01-05 02:12 - 2014-01-05 02:12 - 00000000 ____D C:\Users\Brian\.android
2014-01-05 02:11 - 2014-01-05 22:58 - 00000000 ____D C:\Users\Brian\AppData\Roaming\DigitalSites
2014-01-05 02:11 - 2014-01-05 02:11 - 00003232 _____ C:\Windows\System32\Tasks\Digital Sites
2014-01-03 01:22 - 2014-01-05 23:14 - 00000000 ____D C:\ProgramData\PC Utility Kit
2014-01-03 01:22 - 2014-01-03 01:22 - 00000000 ____D C:\Users\Brian\AppData\Roaming\PC Utility Kit
2014-01-03 01:13 - 2014-01-12 17:19 - 00001848 _____ C:\Users\Public\Desktop\McAfee Total Protection.lnk
2014-01-03 01:12 - 2013-09-23 13:49 - 00197704 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2014-01-03 01:11 - 2014-01-08 20:45 - 00000000 ____D C:\Program Files (x86)\McAfee.com
2014-01-03 01:10 - 2014-01-08 20:45 - 00000000 ____D C:\Program Files\McAfee
2014-01-03 01:10 - 2014-01-03 01:10 - 00000000 ____D C:\Program Files\McAfee.com
2014-01-03 01:06 - 2013-11-04 16:46 - 00182752 _____ (McAfee, Inc.) C:\Windows\system32\mfevtps.exe
2014-01-01 20:02 - 2014-01-01 20:02 - 00000000 ____D C:\Users\Brian\AppData\Roaming\Malwarebytes
2014-01-01 20:01 - 2014-01-01 20:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-01 19:41 - 2014-01-01 19:41 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-12-31 19:18 - 2013-11-26 12:25 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-12-31 18:48 - 2013-12-31 18:48 - 00037376 _____ C:\Windows\system32\bkbm.hqu
2013-12-31 18:37 - 2014-01-11 13:34 - 00000079 _____ C:\Windows\system32\qdtfb.vtq
2013-12-31 18:37 - 2013-12-31 18:48 - 00000095 _____ C:\Windows\system32\hietr.wbu
2013-12-31 18:37 - 2013-12-31 18:37 - 00000064 _____ C:\Windows\system32\yysk.isl
2013-12-31 11:16 - 2013-12-31 11:16 - 00219314 ____S C:\Windows\system32\cpaluwc.nia

==================== One Month Modified Files and Folders =======

2014-01-12 17:44 - 2014-01-12 17:44 - 00000000 ____D C:\FRST
2014-01-12 17:37 - 2014-01-09 06:48 - 00000000 ____D C:\ProgramData\Oracle
2014-01-12 17:36 - 2014-01-12 17:36 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-12 17:36 - 2014-01-12 17:36 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-12 17:36 - 2014-01-12 17:36 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-12 17:36 - 2014-01-12 17:36 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-12 17:36 - 2014-01-12 17:36 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-12 17:32 - 2010-08-06 16:11 - 02049415 _____ C:\Windows\WindowsUpdate.log
2014-01-12 17:31 - 2014-01-12 17:31 - 00001294 _____ C:\Windows\IE11_main.log
2014-01-12 17:23 - 2014-01-06 22:05 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-12 17:22 - 2009-07-13 23:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-12 17:22 - 2009-07-13 23:45 - 00009920 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-12 17:20 - 2014-01-09 07:08 - 00000000 ____D C:\Users\Brian\AppData\Roaming\ID Vault
2014-01-12 17:19 - 2014-01-03 01:13 - 00001848 _____ C:\Users\Public\Desktop\McAfee Total Protection.lnk
2014-01-12 17:13 - 2013-07-09 22:38 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce7d1efe051368.job
2014-01-12 17:13 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-12 17:13 - 2009-07-13 23:51 - 00073096 _____ C:\Windows\setupact.log
2014-01-12 11:54 - 2010-10-29 20:30 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-12 11:41 - 2014-01-12 11:41 - 00003288 ____N C:\bootsqm.dat
2014-01-11 22:01 - 2014-01-09 07:08 - 00000000 ____D C:\Program Files (x86)\Constant Guard Protection Suite
2014-01-11 19:56 - 2010-08-06 16:08 - 00218174 _____ C:\Windows\PFRO.log
2014-01-11 16:23 - 2014-01-06 22:05 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-11 16:10 - 2014-01-11 15:47 - 00002187 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-11 16:08 - 2014-01-06 22:05 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-11 16:08 - 2014-01-06 22:05 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-11 15:49 - 2010-10-30 08:23 - 00000000 ____D C:\Users\Brian\AppData\Local\Adobe
2014-01-11 15:47 - 2010-08-03 04:40 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-11 15:22 - 2014-01-09 07:09 - 00000000 ____D C:\Users\Brian\AppData\Local\ID Vault
2014-01-11 14:34 - 2014-01-11 14:34 - 00024185 _____ C:\Users\Brian\Desktop\DDS text.txt
2014-01-11 14:32 - 2014-01-11 14:32 - 00008474 _____ C:\Users\Brian\Desktop\attach.txt
2014-01-11 14:31 - 2014-01-11 14:32 - 00024185 _____ C:\Users\Brian\Desktop\dds.txt
2014-01-11 14:27 - 2014-01-11 14:25 - 00688992 ____R (Swearware) C:\Users\Brian\Desktop\dds.com
2014-01-11 13:34 - 2013-12-31 18:37 - 00000079 _____ C:\Windows\system32\qdtfb.vtq
2014-01-10 21:39 - 2010-08-03 04:37 - 00000000 ____D C:\Program Files\Common Files\mcafee
2014-01-09 22:06 - 2014-01-09 22:06 - 00000000 ____D C:\N360_BACKUP
2014-01-09 19:17 - 2010-10-30 08:22 - 00109896 _____ C:\Users\Brian\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-09 19:15 - 2009-07-13 23:45 - 00420464 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-09 07:47 - 2014-01-09 07:47 - 00007605 _____ C:\Users\Brian\AppData\Local\Resmon.ResmonCfg
2014-01-09 07:32 - 2014-01-08 18:52 - 00000000 ____D C:\ProgramData\ParetoLogic
2014-01-09 07:32 - 2010-10-30 08:22 - 00000000 ____D C:\Users\Brian
2014-01-09 07:20 - 2014-01-09 07:20 - 00000000 ____D C:\Windows\System32\Tasks\Norton Security Suite
2014-01-09 07:20 - 2014-01-09 07:13 - 00000000 ____D C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2014-01-09 07:20 - 2014-01-09 07:13 - 00000000 ____D C:\ProgramData\Norton
2014-01-09 07:16 - 2014-01-09 07:16 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2014-01-09 07:16 - 2014-01-09 07:16 - 00008222 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2014-01-09 07:16 - 2014-01-09 07:16 - 00003228 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2014-01-09 07:16 - 2014-01-09 07:16 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2014-01-09 07:15 - 2014-01-09 07:15 - 00002520 _____ C:\Users\Public\Desktop\Norton Security Suite.lnk
2014-01-09 07:15 - 2014-01-09 07:15 - 00000000 ____D C:\Windows\system32\Drivers\N360x64
2014-01-09 07:15 - 2014-01-09 07:15 - 00000000 ____D C:\Program Files (x86)\Norton Security Suite
2014-01-09 07:14 - 2014-01-09 07:14 - 00000000 ____D C:\Users\Brian\Documents\Symantec
2014-01-09 07:13 - 2014-01-09 07:13 - 00001276 _____ C:\Users\Brian\Desktop\Norton Installation Files.lnk
2014-01-09 07:13 - 2014-01-09 07:13 - 00000000 ____D C:\Users\Public\Downloads\Norton
2014-01-09 07:09 - 2014-01-09 07:09 - 00000000 ____D C:\Users\Brian\AppData\Local\White_Sky,_Inc
2014-01-09 07:09 - 2014-01-09 07:09 - 00000000 ____D C:\ProgramData\IsolatedStorage
2014-01-09 07:08 - 2014-01-09 07:08 - 00049240 _____ (Zemana Ltd.) C:\Windows\system32\Drivers\AntiLog64.sys
2014-01-09 07:08 - 2014-01-09 07:08 - 00002269 _____ C:\Users\Public\Desktop\Constant Guard.lnk
2014-01-09 07:08 - 2014-01-09 07:08 - 00000000 ____D C:\Windows\SysWOW64\ZALSDK_uninst
2014-01-09 07:08 - 2014-01-09 07:08 - 00000000 ____D C:\Users\Brian\AppData\Local\Zemana
2014-01-09 07:08 - 2014-01-09 07:08 - 00000000 ____D C:\ProgramData\White Sky, Inc
2014-01-09 06:56 - 2014-01-09 06:56 - 00000000 ____D C:\Windows\Sun
2014-01-09 06:48 - 2014-01-09 06:48 - 00000000 ____D C:\ProgramData\Sun
2014-01-08 23:09 - 2014-01-08 22:19 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-08 23:09 - 2014-01-08 22:06 - 00000000 ____D C:\Users\Brian\Desktop\mbar
2014-01-08 22:07 - 2014-01-08 22:07 - 00089304 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-01-08 21:11 - 2014-01-08 21:11 - 00000000 ____S C:\Windows\system32\evwhb.xmr
2014-01-08 21:10 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sysprep
2014-01-08 20:46 - 2014-01-06 22:47 - 00000000 ____D C:\EEK
2014-01-08 20:46 - 2012-02-22 10:54 - 00000000 ____D C:\blp
2014-01-08 20:46 - 2010-12-30 18:06 - 00000000 ____D C:\e77e351ebcd6f121dae3f7b99c9f4eab
2014-01-08 20:46 - 2010-08-03 05:06 - 00000000 ___HD C:\OEM
2014-01-08 20:45 - 2014-01-05 23:28 - 00000000 ____D C:\Program Files\HitmanPro
2014-01-08 20:45 - 2014-01-05 02:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-08 20:45 - 2014-01-05 02:42 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-08 20:45 - 2014-01-05 02:12 - 00000000 ____D C:\Users\Brian\AppData\Local\genienext
2014-01-08 20:45 - 2014-01-03 01:11 - 00000000 ____D C:\Program Files (x86)\McAfee.com
2014-01-08 20:45 - 2014-01-03 01:10 - 00000000 ____D C:\Program Files\McAfee
2014-01-08 20:45 - 2013-11-17 19:54 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-01-08 20:45 - 2013-11-17 19:54 - 00000000 ____D C:\Program Files\iTunes
2014-01-08 20:45 - 2013-11-17 19:54 - 00000000 ____D C:\Program Files (x86)\iTunes
2014-01-08 20:45 - 2013-10-29 05:52 - 00000000 ____D C:\Program Files\Windows Live
2014-01-08 20:45 - 2013-10-19 05:50 - 00000000 ____D C:\Program Files\McAfee Security Scan
2014-01-08 20:45 - 2013-04-16 19:23 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2014-01-08 20:45 - 2012-05-10 10:01 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2014-01-08 20:45 - 2012-05-10 10:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2014-01-08 20:45 - 2011-11-06 15:48 - 00000000 ____D C:\Program Files\Bonjour
2014-01-08 20:45 - 2011-11-06 15:48 - 00000000 ____D C:\Program Files (x86)\Bonjour
2014-01-08 20:45 - 2011-10-03 21:25 - 00000000 ____D C:\Program Files (x86)\Adobe Download Assistant
2014-01-08 20:45 - 2011-07-21 20:43 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2014-01-08 20:45 - 2011-05-19 17:22 - 00000000 ____D C:\Program Files (x86)\QuickTime
2014-01-08 20:45 - 2010-12-21 13:47 - 00000000 ____D C:\Users\Brian\AppData\Local\Microsoft Help
2014-01-08 20:45 - 2010-12-21 13:47 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-08 20:45 - 2010-10-29 20:35 - 00000000 ____D C:\ProgramData\Apple Computer
2014-01-08 20:45 - 2010-10-29 20:35 - 00000000 ____D C:\Program Files\Common Files\Apple
2014-01-08 20:45 - 2010-10-29 20:34 - 00000000 ____D C:\ProgramData\Apple
2014-01-08 20:45 - 2010-10-29 20:23 - 00000000 ____D C:\ProgramData\OEM_E471269A730D
2014-01-08 20:45 - 2010-10-29 20:23 - 00000000 ____D C:\Program Files (x86)\Times Reader
2014-01-08 20:45 - 2010-08-06 16:38 - 00000000 ____D C:\ProgramData\CyberLink
2014-01-08 20:45 - 2010-08-06 16:38 - 00000000 ____D C:\Program Files (x86)\Acer Arcade Deluxe
2014-01-08 20:45 - 2010-08-06 16:35 - 00000000 ____D C:\Program Files (x86)\Windows Live
2014-01-08 20:45 - 2010-08-06 16:23 - 00000000 ____D C:\Program Files\Synaptics
2014-01-08 20:45 - 2010-08-06 16:16 - 00000000 ____D C:\Program Files (x86)\Launch Manager
2014-01-08 20:45 - 2010-08-03 04:46 - 00000000 ____D C:\ProgramData\oem
2014-01-08 20:45 - 2010-08-03 04:42 - 00000000 ____D C:\Program Files (x86)\EgisTec Shredder
2014-01-08 20:45 - 2010-08-03 04:41 - 00000000 ____D C:\Program Files (x86)\EgisTec MyWinLockerSuite
2014-01-08 20:45 - 2010-08-03 04:41 - 00000000 ____D C:\Program Files (x86)\EgisTec MyWinLocker
2014-01-08 20:45 - 2010-08-03 04:41 - 00000000 ____D C:\Program Files (x86)\EgisTec IPS
2014-01-08 20:45 - 2010-08-03 04:40 - 00000000 ____D C:\Program Files\Google
2014-01-08 20:45 - 2010-08-03 04:37 - 00000000 ____D C:\ProgramData\McAfee
2014-01-08 20:45 - 2010-08-03 04:37 - 00000000 ____D C:\Program Files (x86)\McAfee
2014-01-08 20:45 - 2010-08-03 04:30 - 00000000 ____D C:\ProgramData\WildTangent
2014-01-08 20:45 - 2010-08-03 04:30 - 00000000 ____D C:\Program Files (x86)\Acer Games
2014-01-08 20:45 - 2010-08-03 04:21 - 00000000 ____D C:\ProgramData\AmUStor
2014-01-08 20:45 - 2010-08-03 04:21 - 00000000 ____D C:\Program Files (x86)\AmIcoSingLun
2014-01-08 20:45 - 2010-08-03 04:20 - 00000000 ____D C:\Program Files\Realtek
2014-01-08 20:45 - 2010-08-03 04:19 - 00000000 ____D C:\Program Files (x86)\Realtek
2014-01-08 20:45 - 2010-08-03 04:18 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-08 20:45 - 2009-07-14 02:45 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\Microsoft Games
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files\DVD Maker
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-08 20:45 - 2009-07-14 00:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-08 20:45 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Windows NT
2014-01-08 20:45 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-08 20:45 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\Services
2014-01-08 20:45 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-08 20:45 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files (x86)\Windows NT
2014-01-08 20:44 - 2013-10-29 05:54 - 00000000 ____D C:\Windows\en
2014-01-08 20:44 - 2012-02-17 09:07 - 00000000 ____D C:\Users\Brian\AppData\Roaming\ICAClient
2014-01-08 20:44 - 2011-07-21 20:43 - 00000000 ____D C:\Windows\System32\Tasks\Apple
2014-01-08 20:44 - 2010-12-21 13:49 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-01-08 20:44 - 2010-10-30 08:22 - 00000000 ___RD C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-08 20:44 - 2010-10-30 08:22 - 00000000 ___RD C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-08 20:44 - 2010-10-29 20:24 - 00000000 ___RD C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-08 20:44 - 2010-10-29 20:24 - 00000000 ___RD C:\Users\Brian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-08 20:44 - 2010-08-06 17:05 - 00000000 ____D C:\Windows\NAPP_Dism_Log
2014-01-08 20:44 - 2010-08-03 04:39 - 00000000 ____D C:\Windows\oem
2014-01-08 20:44 - 2010-08-03 04:29 - 00000000 ____D C:\Windows\Downloaded Installations
2014-01-08 20:44 - 2009-10-05 15:30 - 00000000 ____D C:\Windows\DeployWinRE2
2014-01-08 20:44 - 2009-07-14 02:45 - 00000000 ____D C:\Windows\ShellNew
2014-01-08 20:44 - 2009-07-14 02:44 - 00000000 ___RD C:\Users\Public\Recorded TV
2014-01-08 20:44 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system32\winrm
2014-01-08 20:44 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system32\WCN
2014-01-08 20:44 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system32\slmgr
2014-01-08 20:44 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2014-01-08 20:44 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\WindowsPowerShell
2014-01-08 20:44 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2014-01-08 20:44 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\system32\restore
2014-01-08 20:44 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\Performance
2014-01-08 20:44 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\Offline Web Pages
2014-01-08 20:44 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\addins
2014-01-08 20:44 - 2009-07-14 00:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-08 20:44 - 2009-07-13 23:45 - 00000000 ____D C:\Windows\Setup
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 __RSD C:\Windows\Media
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\uk-UA
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\tr-TR
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\th-TH
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sppui
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\spp
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\spool
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Speech
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\SMI
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sl-SI
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\sk-SK
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Setup
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\ro-RO
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\ras
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\oobe
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NetworkList
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\MUI
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Msdtc
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\migwiz
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\manifeststore
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\lv-LV
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\lt-LT
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\IME
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\icsxml
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\ias
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\hr-HR
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\he-IL
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\et-EE
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\Dism
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\com
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\bg-BG
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\ar-SA
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Speech
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\servicing
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\security
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\schemas
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Resources
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\PLA
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\L2Schemas
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\IME
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Help
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Globalization
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Cursors
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\Branding
2014-01-08 20:44 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\AppCompat
2014-01-08 20:43 - 2010-08-03 04:47 - 00000000 ____D C:\Windows\SysWOW64\Drivers\nti
2014-01-08 20:43 - 2010-08-03 04:23 - 00000000 ____D C:\Windows\SysWOW64\Atheros_L1e
2014-01-08 20:43 - 2010-08-03 04:20 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2014-01-08 20:43 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\SysWOW64\winrm
2014-01-08 20:43 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\SysWOW64\WCN
2014-01-08 20:43 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2014-01-08 20:43 - 2009-07-14 00:37 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-01-08 20:43 - 2009-07-14 00:32 - 00000000 ____D C:\Windows\SysWOW64\WindowsPowerShell
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\TAPI
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\uk-UA
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\th-TH
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\sr-Latn-CS
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\sppui
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\spp
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Speech
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\sl-SI
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\sk-SK
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\ro-RO
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Recovery
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\ras
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\NetworkList
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Msdtc
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\manifeststore
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\lv-LV
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\lt-LT
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\InstallShield
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\IME
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\icsxml
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\hr-HR
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\he-IL
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\et-EE
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\com
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\bg-BG
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\ar-SA
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers
2014-01-08 20:43 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\zh-HK
2014-01-08 20:40 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\registration
2014-01-08 18:53 - 2014-01-08 18:53 - 00000000 ____D C:\Users\Brian\AppData\Roaming\ParetoLogic
2014-01-08 18:53 - 2014-01-08 18:53 - 00000000 ____D C:\Users\Brian\AppData\Roaming\DriverCure
2014-01-08 18:52 - 2014-01-08 18:52 - 00002718 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3 Startup Task
2014-01-08 18:52 - 2014-01-08 18:52 - 00002606 _____ C:\Windows\System32\Tasks\ParetoLogic Update Version3
2014-01-07 00:32 - 2014-01-07 00:32 - 00000000 ____D C:\Windows\ERUNT
2014-01-07 00:16 - 2014-01-07 00:14 - 00000000 ____D C:\AdwCleaner
2014-01-06 22:36 - 2014-01-06 22:36 - 02399848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 01893224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 01653096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 01524816 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql2300.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00947776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00782360 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfehidk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00651264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00519576 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfefirek.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00426496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00411944 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencbdc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00374864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00367168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00363584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00343696 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfewfpk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00318000 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00311120 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeavfk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00284736 _____ (LSI Corporation, Inc.) C:\Windows\system32\Drivers\MegaSR.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00271872 _____ (Intel® Corporation) C:\Windows\system32\Drivers\IntcDAud.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00224832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00220752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcmcia.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00217680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00214096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00187264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00183872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00179792 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeapfk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00171600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00161872 _____ (VIA Technologies Inc.,Ltd) C:\Windows\system32\Drivers\vsmraid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00158976 _____ (Intel Corporation) C:\Windows\system32\Drivers\Impcd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00155216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00140352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00128592 _____ (QLogic Corporation) C:\Windows\system32\Drivers\ql40xx.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00122960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NV_AGP.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irda.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipnat.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00115776 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_scsi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00114752 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_fc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\luafv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00106560 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00104016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\parport.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00096112 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfencrk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00095088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00094784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00094208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serial.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00080464 _____ (Silicon Integrated Systems) C:\Windows\system32\Drivers\sisraid4.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rspndr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00076400 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\L1C62x64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00075632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00072832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00071760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00068864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00065600 _____ (LSI Corporation) C:\Windows\system32\Drivers\lsi_sas2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00064592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ULIAGPKX.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00064080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UAGP35.SYS.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00062544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lltdio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060464 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDVDisk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwififlt.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00055856 _____ (Sonic Solutions) C:\Windows\system32\Drivers\PxHlpa64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00054784 _____ (Apple, Inc.) C:\Windows\system32\Drivers\usbaapl64.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00051264 _____ (IBM Corporation) C:\Windows\system32\Drivers\nfrd960.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcw.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00050768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00049216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00048720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\qwavedrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00043584 _____ (Silicon Integrated Systems Corp.) C:\Windows\system32\Drivers\sisraid2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\modem.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00036432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vdrvroot.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00035392 _____ (LSI Corporation) C:\Windows\system32\Drivers\megasas.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiscap.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00032320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mssmbios.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00030272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vgapnp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vga.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tape.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00027776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wacompen.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024656 _____ (Promise Technology) C:\Windows\system32\Drivers\stexstor.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifibus.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpbus.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\serenum.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00023040 _____ (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\system32\Drivers\secdrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00022576 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDFilter.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00022096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mcd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ws2ifsl.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00021056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smclib.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksthunk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\isapnp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00020016 _____ (Egis Technology Inc.) C:\Windows\system32\Drivers\mwlPSDNserv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00019008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spldr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00018432 _____ (NTI Corporation) C:\Windows\system32\Drivers\NTIDrvr.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vwifimp.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\irenum.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017488 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viaide.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00017408 _____ (NTI Corporation) C:\Windows\system32\Drivers\UBHelper.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00016960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelide.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sfloppy.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00016464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmilib.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdpipe.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00015424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msisadrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\MTConfig.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasacd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wmiacpi.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffdisk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_mmc.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwf.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00012496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00012352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rootmdm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00011136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mskssrv.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00010856 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\mfeclnrk.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umpass.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPREFMP.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mshidkmdf.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00008064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mstee.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPENCDD.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RDPCDD.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspclock.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00006784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mspqm.sys.bak
2014-01-06 22:36 - 2014-01-06 22:36 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\null.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 10326784 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 03286016 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\evbda.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 02229608 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00982600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00751616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00540696 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStor.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00530496 _____ (Emulex) C:\Windows\system32\Drivers\elxstor.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00491088 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adp94xx.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00468480 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bxvbda.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00459216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00339536 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpahci.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00334416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00290368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00287576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00286720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerId.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00270848 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\b57nd60a.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00194128 _____ (AMD Technologies Inc.) C:\Windows\system32\Drivers\amdsbs.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00182864 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\adpu320.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00178752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00155728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00097856 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arcsas.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00087632 _____ (Adaptec, Inc.) C:\Windows\system32\Drivers\arc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00077888 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpSAMD.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00073280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthmodem.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00070224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fileinfo.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00070112 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\cfwids.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394bus.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00065088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\GAGP30KX.SYS.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00061008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AGP440.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00055376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fsdepends.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00055128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpfve.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00047104 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrSerWdm.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidir.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\circlass.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\blbdrive.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00044112 _____ (Intel Corp./ICP vortex GmbH) C:\Windows\system32\Drivers\iirsp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4usb.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\discache.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00040448 _____ (Alcor Micro, Corp.) C:\Windows\system32\Drivers\AmUStor.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00039504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\filetrace.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00031232 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw85cir.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fdc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00028736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00028240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\battc.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbatt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\flpydisk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00024144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crcdisk.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00024128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\asyncmac.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00022896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00021584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\compbatt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dot4Prt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00018432 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltLo.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00017664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CmBatt.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00017488 _____ (CMD Technology, Inc.) C:\Windows\system32\Drivers\cmdide.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxapi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00015440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdide.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00015440 _____ (Acer Laboratories Inc.) C:\Windows\system32\Drivers\aliide.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00014976 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbMdm.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00014720 _____ (Brother Industries Ltd.) C:\Windows\system32\Drivers\BrUsbSer.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00014416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00010224 _____ (Sonic Solutions) C:\Windows\system32\Drivers\cdralw2k.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00010224 _____ (Sonic Solutions) C:\Windows\system32\Drivers\cdr4_xp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\errdev.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00008704 _____ (Brother Industries, Ltd.) C:\Windows\system32\Drivers\BrFiltUp.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\beep.sys.bak
2014-01-06 22:35 - 2014-01-06 22:35 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys.bak
2014-01-06 22:14 - 2014-01-06 22:14 - 04101441 _____ C:\Users\Brian\Documents\1st step.zip
2014-01-05 23:40 - 2014-01-05 23:40 - 00001916 _____ C:\Windows\system32\.crusader
2014-01-05 23:28 - 2014-01-05 23:28 - 00001901 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2014-01-05 23:14 - 2014-01-03 01:22 - 00000000 ____D C:\ProgramData\PC Utility Kit
2014-01-05 22:58 - 2014-01-05 02:11 - 00000000 ____D C:\Users\Brian\AppData\Roaming\DigitalSites
2014-01-05 22:44 - 2012-02-25 14:28 - 00110376 _____ C:\Windows\system32\GDIPFONTCACHEV1.DAT
2014-01-05 18:38 - 2014-01-05 18:38 - 00000000 ____D C:\Users\Brian\AppData\Roaming\Yahoo!
2014-01-05 18:38 - 2014-01-05 18:38 - 00000000 ____D C:\ProgramData\Yahoo! Companion
2014-01-05 18:38 - 2014-01-05 18:37 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2014-01-05 03:11 - 2014-01-05 03:11 - 00000099 _____ C:\Users\Brian\AppData\Roaming\WB.CFG
2014-01-05 03:11 - 2014-01-05 03:11 - 00000005 _____ C:\Users\Brian\AppData\Roaming\WBPU-TTL.DAT
2014-01-05 02:53 - 2014-01-05 02:53 - 00001117 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-05 02:16 - 2014-01-05 02:12 - 00000067 _____ C:\Users\Brian\daemonprocess.txt
2014-01-05 02:12 - 2014-01-05 02:12 - 00000000 ____D C:\Users\Brian\AppData\Local\cache
2014-01-05 02:12 - 2014-01-05 02:12 - 00000000 ____D C:\Users\Brian\.android
2014-01-05 02:11 - 2014-01-05 02:11 - 00003232 _____ C:\Windows\System32\Tasks\Digital Sites
2014-01-04 14:53 - 2010-10-29 20:26 - 00000000 ____D C:\Users\Brian\AppData\Local\Google
2014-01-04 14:45 - 2010-08-03 04:40 - 00000000 ____D C:\ProgramData\Google
2014-01-03 01:22 - 2014-01-03 01:22 - 00000000 ____D C:\Users\Brian\AppData\Roaming\PC Utility Kit
2014-01-03 01:10 - 2014-01-03 01:10 - 00000000 ____D C:\Program Files\McAfee.com
2014-01-03 00:35 - 2012-12-11 22:08 - 00262144 _____ C:\Windows\system32\config\ELAM
2014-01-01 20:02 - 2014-01-01 20:02 - 00000000 ____D C:\Users\Brian\AppData\Roaming\Malwarebytes
2014-01-01 20:01 - 2014-01-01 20:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-01 19:41 - 2014-01-01 19:41 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-12-31 18:48 - 2013-12-31 18:48 - 00037376 _____ C:\Windows\system32\bkbm.hqu
2013-12-31 18:48 - 2013-12-31 18:37 - 00000095 _____ C:\Windows\system32\hietr.wbu
2013-12-31 18:37 - 2013-12-31 18:37 - 00000064 _____ C:\Windows\system32\yysk.isl
2013-12-31 11:16 - 2013-12-31 11:16 - 00219314 ____S C:\Windows\system32\cpaluwc.nia
2013-12-22 14:29 - 2009-07-14 00:13 - 00726444 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-16 18:46 - 2009-07-14 00:08 - 00032586 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-12-15 11:56 - 2013-08-16 05:54 - 00000000 ____D C:\Windows\system32\MRT

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2009-07-13 19:00] - [2009-07-13 20:41] - 0510464 ____A (Microsoft Corporation) BCD10B144E8174B11EC73D8A676BB04C

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2013-12-31 13:31

==================== End Of Log ============================

Attached Files



#4 RPMcMurphy

RPMcMurphy

    Bleeping *^#@%~


  • Malware Response Team
  • 3,970 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:39 AM

Posted 12 January 2014 - 07:18 PM

Please do this next:

icon11.gif   Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it in the same location as FRST (usually your desktop) as fixlist.txt

2013-12-31 18:48 - 2013-12-31 18:48 - 00037376 _____ C:\Windows\system32\bkbm.hqu
2013-12-31 18:37 - 2014-01-11 13:34 - 00000079 _____ C:\Windows\system32\qdtfb.vtq
2013-12-31 18:37 - 2013-12-31 18:48 - 00000095 _____ C:\Windows\system32\hietr.wbu
2013-12-31 18:37 - 2013-12-31 18:37 - 00000064 _____ C:\Windows\system32\yysk.isl
2013-12-31 11:16 - 2013-12-31 11:16 - 00219314 ____S C:\Windows\system32\cpaluwc.nia
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Now run FRST again.
  • When the tool opens click Yes to disclaimer.
  • Press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) please post it to your reply.

icon11.gif   Run FRST again.
  • When the tool opens click Yes to disclaimer.
  • Enter the following into the search box:  rpcss.dll
  • Press the Search File(s) button
  • The tool will make another log (Search.txt) please post it to your reply.

Please include the following in your next post:
  • Fixlog.txt Report
  • Search.txt Report

Threads are closed after 5 days of inactivity.

ASAP & UNITE Member


The help you receive here is free. If you wish to show your appreciation, then you may btn_donate_SM.gif


#5 b_gardner

b_gardner
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:39 AM

Posted 12 January 2014 - 10:14 PM

getting a message

 

No fixlist.txt found.

 

The fixlist.txt should be in same folder/directory the tood is located.

 

Perhaps I missed a step or didn't save something I should have.  Not sure how to proceed at this point.



#6 RPMcMurphy

RPMcMurphy

    Bleeping *^#@%~


  • Malware Response Team
  • 3,970 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:39 AM

Posted 12 January 2014 - 10:38 PM

It looks like you are running FRST from the internet.  After clicking on the download link you need to select save, not run.  This will save FRST.exe to your computer.  The fixlist.txt file that you created needs to be in the same place as FRST.exe which is why we recommend saving or moving  FRST to your desktop.


Threads are closed after 5 days of inactivity.

ASAP & UNITE Member


The help you receive here is free. If you wish to show your appreciation, then you may btn_donate_SM.gif


#7 b_gardner

b_gardner
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:39 AM

Posted 15 January 2014 - 09:48 AM

I saved fsrt to my desktop, reopened it and hit "fix". I then got a message that my computer would have to restart in order to run the program. The computer restarted. However I'm only getting blue screen of death.

#8 b_gardner

b_gardner
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:39 AM

Posted 15 January 2014 - 09:52 AM

I should add that after several minutes I tried to restart again in safe mode. I see the list if windows files loading but then just the blank screen.

#9 RPMcMurphy

RPMcMurphy

    Bleeping *^#@%~


  • Malware Response Team
  • 3,970 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:39 AM

Posted 15 January 2014 - 11:35 AM

Please do this next.  You will need a USB flash drive:

icon11.gif   Download Farbar Recovery Scan Tool and save it to a flash drive.  Note: You need the 64 bit version

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.


To enter System Recovery Options by using Windows installation disc:


  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.


On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select "Computer" and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64)  and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list]


Edited by RPMcMurphy, 15 January 2014 - 11:36 AM.

Threads are closed after 5 days of inactivity.

ASAP & UNITE Member


The help you receive here is free. If you wish to show your appreciation, then you may btn_donate_SM.gif


#10 b_gardner

b_gardner
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:12:39 AM

Posted 15 January 2014 - 02:19 PM

Thanks but I don't have immediate access to a computer w a USB port (the ports on our computers at work are blocked) so I don't think I'll be able to download anything onto a flash drive. At this point it may be easier to take my computer to a repair service and have them work on it.

#11 RPMcMurphy

RPMcMurphy

    Bleeping *^#@%~


  • Malware Response Team
  • 3,970 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:39 AM

Posted 15 January 2014 - 11:24 PM

Under those circumstances that, unfortunately, sounds like your best option.  Sorry we didn't have a better outcome.


Threads are closed after 5 days of inactivity.

ASAP & UNITE Member


The help you receive here is free. If you wish to show your appreciation, then you may btn_donate_SM.gif


#12 RPMcMurphy

RPMcMurphy

    Bleeping *^#@%~


  • Malware Response Team
  • 3,970 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:39 AM

Posted 20 January 2014 - 05:11 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

Threads are closed after 5 days of inactivity.

ASAP & UNITE Member


The help you receive here is free. If you wish to show your appreciation, then you may btn_donate_SM.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users