Jump to content

Malwarebytes Anti-Malware has stopped working


Recommended Posts

  • Replies 95
  • Created
  • Last Reply

Top Posters In This Topic

21:23:19.0817 6500 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16

21:23:20.0343 6500 ============================================================

21:23:20.0343 6500 Current date / time: 2012/01/08 21:23:20.0343

21:23:20.0343 6500 SystemInfo:

21:23:20.0343 6500

21:23:20.0344 6500 OS Version: 6.0.6002 ServicePack: 2.0

21:23:20.0344 6500 Product type: Workstation

21:23:20.0344 6500 ComputerName: RICKS-LAPTOP

21:23:20.0344 6500 UserName: User

21:23:20.0344 6500 Windows directory: C:\Windows

21:23:20.0344 6500 System windows directory: C:\Windows

21:23:20.0344 6500 Running under WOW64

21:23:20.0344 6500 Processor architecture: Intel x64

21:23:20.0344 6500 Number of processors: 2

21:23:20.0344 6500 Page size: 0x1000

21:23:20.0344 6500 Boot type: Normal boot

21:23:20.0344 6500 ============================================================

21:23:20.0796 6500 Initialize success

21:23:35.0076 7940 ============================================================

21:23:35.0076 7940 Scan started

21:23:35.0076 7940 Mode: Manual; SigCheck; TDLFS;

21:23:35.0076 7940 ============================================================

21:23:36.0434 7940 61883 (78e902fb660bd5003fe726b9bef300b6) C:\Windows\system32\DRIVERS\61883.sys

21:23:36.0585 7940 61883 - ok

21:23:36.0713 7940 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys

21:23:36.0734 7940 ACPI - ok

21:23:36.0911 7940 adp94xx (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys

21:23:36.0947 7940 adp94xx - ok

21:23:37.0157 7940 adpahci (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys

21:23:37.0186 7940 adpahci - ok

21:23:37.0330 7940 adpu160m (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys

21:23:37.0346 7940 adpu160m - ok

21:23:37.0456 7940 adpu320 (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys

21:23:37.0472 7940 adpu320 - ok

21:23:37.0580 7940 AFD (0cc146c4addea45791b18b1e2659f4a9) C:\Windows\system32\drivers\afd.sys

21:23:37.0621 7940 AFD - ok

21:23:37.0769 7940 agp440 (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys

21:23:37.0783 7940 agp440 - ok

21:23:37.0943 7940 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys

21:23:37.0959 7940 aic78xx - ok

21:23:38.0071 7940 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys

21:23:38.0086 7940 aliide - ok

21:23:38.0123 7940 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys

21:23:38.0136 7940 amdide - ok

21:23:38.0225 7940 AmdK8 (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys

21:23:38.0264 7940 AmdK8 - ok

21:23:38.0415 7940 ApfiltrService (22fecb5b3de1eb8b1b2761338922f681) C:\Windows\system32\DRIVERS\Apfiltr.sys

21:23:38.0461 7940 ApfiltrService - ok

21:23:38.0556 7940 arc (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys

21:23:38.0570 7940 arc - ok

21:23:38.0755 7940 arcsas (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys

21:23:38.0769 7940 arcsas - ok

21:23:38.0877 7940 ArcSoftKsUFilter (1ce3822b05a5e229286a15ea39369870) C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys

21:23:38.0888 7940 ArcSoftKsUFilter - ok

21:23:39.0022 7940 ASPI32 - ok

21:23:39.0104 7940 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys

21:23:39.0145 7940 AsyncMac - ok

21:23:39.0224 7940 atapi (1898fae8e07d97f2f6c2d5326c633fac) C:\Windows\system32\drivers\atapi.sys

21:23:39.0240 7940 atapi - ok

21:23:39.0614 7940 atikmdag (f3631ca5f0309ee4f941ea1e37e5ca60) C:\Windows\system32\DRIVERS\atikmdag.sys

21:23:39.0785 7940 atikmdag - ok

21:23:39.0904 7940 Avc (295fa2878ff499c0edfa0ebcc8c6ec66) C:\Windows\system32\DRIVERS\avc.sys

21:23:39.0945 7940 Avc - ok

21:23:40.0002 7940 Beep - ok

21:23:40.0066 7940 blbdrive (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys

21:23:40.0108 7940 blbdrive - ok

21:23:40.0196 7940 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys

21:23:40.0213 7940 bowser - ok

21:23:40.0290 7940 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys

21:23:40.0323 7940 BrFiltLo - ok

21:23:40.0407 7940 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys

21:23:40.0436 7940 BrFiltUp - ok

21:23:40.0545 7940 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\DRIVERS\BrSerId.sys

21:23:40.0607 7940 Brserid - ok

21:23:40.0671 7940 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys

21:23:40.0729 7940 BrSerWdm - ok

21:23:40.0843 7940 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys

21:23:40.0902 7940 BrUsbMdm - ok

21:23:40.0996 7940 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\DRIVERS\BrUsbSer.sys

21:23:41.0056 7940 BrUsbSer - ok

21:23:41.0149 7940 BthEnum (09f926a0d9c0bafd8417a4307d2ed13c) C:\Windows\system32\DRIVERS\BthEnum.sys

21:23:41.0166 7940 BthEnum - ok

21:23:41.0226 7940 BTHMODEM (72f70a38bb15252eb7c4da7ba3bd4ed1) C:\Windows\system32\DRIVERS\bthmodem.sys

21:23:41.0256 7940 BTHMODEM - ok

21:23:41.0357 7940 BthPan (befc5311736b475ac5b60c14ff7c775a) C:\Windows\system32\DRIVERS\bthpan.sys

21:23:41.0398 7940 BthPan - ok

21:23:41.0603 7940 BTHPORT (e1466882252ff51edde48c3f7eda2591) C:\Windows\system32\Drivers\BTHport.sys

21:23:41.0633 7940 BTHPORT - ok

21:23:41.0790 7940 BTHUSB (970192cded77a128e7e30722e5ee6b9c) C:\Windows\system32\Drivers\BTHUSB.sys

21:23:41.0807 7940 BTHUSB - ok

21:23:41.0897 7940 btwaudio (243661bc849eb1a7ad141680ae62886a) C:\Windows\system32\drivers\btwaudio.sys

21:23:41.0911 7940 btwaudio - ok

21:23:41.0979 7940 btwavdt (89c6567ebd92bbd2961c634604d6670f) C:\Windows\system32\drivers\btwavdt.sys

21:23:41.0995 7940 btwavdt - ok

21:23:42.0093 7940 btwl2cap (09baf40735007bde7dd95830afcefd26) C:\Windows\system32\DRIVERS\btwl2cap.sys

21:23:42.0106 7940 btwl2cap - ok

21:23:42.0278 7940 btwrchid (2bbf56e2114fabf63c3d00828fc3c86c) C:\Windows\system32\DRIVERS\btwrchid.sys

21:23:42.0289 7940 btwrchid - ok

21:23:42.0358 7940 catchme - ok

21:23:42.0500 7940 CAXHWAZL (fdb53a8d3bc52dc29884587e768e3388) C:\Windows\system32\DRIVERS\CAXHWAZL.sys

21:23:42.0521 7940 CAXHWAZL - ok

21:23:42.0710 7940 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys

21:23:42.0753 7940 cdfs - ok

21:23:42.0897 7940 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys

21:23:42.0929 7940 cdrom - ok

21:23:43.0040 7940 circlass (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys

21:23:43.0080 7940 circlass - ok

21:23:43.0214 7940 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys

21:23:43.0237 7940 CLFS - ok

21:23:43.0352 7940 CmBatt (b52d9a14ce4101577900a364ba86f3df) C:\Windows\system32\DRIVERS\CmBatt.sys

21:23:43.0392 7940 CmBatt - ok

21:23:43.0507 7940 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys

21:23:43.0520 7940 cmdide - ok

21:23:43.0560 7940 Compbatt (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\DRIVERS\compbatt.sys

21:23:43.0573 7940 Compbatt - ok

21:23:43.0621 7940 crcdisk (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys

21:23:43.0635 7940 crcdisk - ok

21:23:43.0707 7940 CVirtA (44bddeb03c84a1c993c992ffb5700357) C:\Windows\system32\DRIVERS\CVirtA64.sys

21:23:43.0719 7940 CVirtA - ok

21:23:43.0835 7940 CVPNDRVA (d2c3db196422e2f2a41d09c690c7c2f8) C:\Windows\system32\Drivers\CVPNDRVA.sys

21:23:43.0851 7940 CVPNDRVA - ok

21:23:43.0960 7940 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys

21:23:43.0976 7940 DfsC - ok

21:23:44.0038 7940 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys

21:23:44.0054 7940 disk - ok

21:23:44.0147 7940 DMICall - ok

21:23:44.0194 7940 DNE (05cb5910b3ca6019fc3cca815ee06ffb) C:\Windows\system32\DRIVERS\dne64x.sys

21:23:44.0210 7940 DNE - ok

21:23:44.0327 7940 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys

21:23:44.0358 7940 drmkaud - ok

21:23:44.0479 7940 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys

21:23:44.0517 7940 DXGKrnl - ok

21:23:44.0601 7940 E1G60 (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys

21:23:44.0644 7940 E1G60 - ok

21:23:44.0725 7940 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys

21:23:44.0741 7940 Ecache - ok

21:23:44.0883 7940 elxstor (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys

21:23:44.0910 7940 elxstor - ok

21:23:45.0076 7940 ErrDev (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys

21:23:45.0117 7940 ErrDev - ok

21:23:45.0219 7940 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys

21:23:45.0238 7940 exfat - ok

21:23:45.0303 7940 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys

21:23:45.0334 7940 fastfat - ok

21:23:45.0434 7940 fdc (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys

21:23:45.0472 7940 fdc - ok

21:23:45.0559 7940 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys

21:23:45.0573 7940 FileInfo - ok

21:23:45.0642 7940 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys

21:23:45.0683 7940 Filetrace - ok

21:23:45.0781 7940 flpydisk (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys

21:23:45.0824 7940 flpydisk - ok

21:23:45.0923 7940 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys

21:23:45.0945 7940 FltMgr - ok

21:23:46.0006 7940 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys

21:23:46.0037 7940 Fs_Rec - ok

21:23:46.0176 7940 FTDIBUS (82d4bd620f7e27ea268ea0e2f701a7ae) C:\Windows\system32\drivers\ftdibus.sys

21:23:46.0188 7940 FTDIBUS - ok

21:23:46.0286 7940 FTSER2K (1fa21ff2d7b50b528d8b73db34ad06bc) C:\Windows\system32\drivers\ftser2k.sys

21:23:46.0302 7940 FTSER2K - ok

21:23:46.0435 7940 gagp30kx (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys

21:23:46.0451 7940 gagp30kx - ok

21:23:46.0580 7940 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

21:23:46.0596 7940 GEARAspiWDM - ok

21:23:46.0681 7940 grmnusb (2ed7ff3e1ada4092632393781518b3a7) C:\Windows\system32\drivers\grmnusb.sys

21:23:46.0694 7940 grmnusb - ok

21:23:46.0778 7940 HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys

21:23:46.0857 7940 HdAudAddService - ok

21:23:46.0951 7940 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys

21:23:47.0044 7940 HDAudBus - ok

21:23:47.0138 7940 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys

21:23:47.0200 7940 HidBth - ok

21:23:47.0263 7940 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys

21:23:47.0325 7940 HidIr - ok

21:23:47.0413 7940 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys

21:23:47.0442 7940 HidUsb - ok

21:23:47.0547 7940 HpCISSs (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys

21:23:47.0561 7940 HpCISSs - ok

21:23:47.0666 7940 HSFHWAZL (57ba73b5b321291e5114cb21350e1ea0) C:\Windows\system32\DRIVERS\VSTAZL6.SYS

21:23:47.0707 7940 HSFHWAZL - ok

21:23:47.0810 7940 HSF_DPV (e90d0e3d9715f3bec7db2d6321dddee8) C:\Windows\system32\DRIVERS\CAX_DPV.sys

21:23:47.0905 7940 HSF_DPV - ok

21:23:48.0014 7940 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys

21:23:48.0049 7940 HTTP - ok

21:23:48.0193 7940 i2omp (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys

21:23:48.0208 7940 i2omp - ok

21:23:48.0310 7940 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys

21:23:48.0342 7940 i8042prt - ok

21:23:48.0551 7940 iaStor (8d58627fef3f8767665d9f4dc91cbd97) C:\Windows\system32\DRIVERS\iaStor.sys

21:23:48.0582 7940 iaStor - ok

21:23:49.0158 7940 iaStorV (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys

21:23:49.0179 7940 iaStorV - ok

21:23:49.0722 7940 igfx (51d1fc6b0d4c3855a75d167da9d87bba) C:\Windows\system32\DRIVERS\igdkmd64.sys

21:23:50.0039 7940 igfx - ok

21:23:50.0192 7940 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys

21:23:50.0207 7940 iirsp - ok

21:23:50.0449 7940 IntcAzAudAddService (b3fb479a7c0626499eb5989bc087cf8d) C:\Windows\system32\drivers\RTKVHD64.sys

21:23:50.0545 7940 IntcAzAudAddService - ok

21:23:50.0679 7940 IntcHdmiAddService (bd37227c07179b1040a8896b9c0c146b) C:\Windows\system32\drivers\IntcHdmi.sys

21:23:50.0694 7940 IntcHdmiAddService - ok

21:23:50.0761 7940 intelide (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys

21:23:50.0774 7940 intelide - ok

21:23:50.0892 7940 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys

21:23:50.0932 7940 intelppm - ok

21:23:51.0130 7940 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys

21:23:51.0161 7940 IpFilterDriver - ok

21:23:51.0333 7940 IpInIp - ok

21:23:51.0479 7940 IPMIDRV (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys

21:23:51.0526 7940 IPMIDRV - ok

21:23:51.0666 7940 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys

21:23:51.0713 7940 IPNAT - ok

21:23:51.0932 7940 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys

21:23:51.0963 7940 IRENUM - ok

21:23:52.0010 7940 isapnp (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys

21:23:52.0011 7940 isapnp - ok

21:23:52.0090 7940 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys

21:23:52.0112 7940 iScsiPrt - ok

21:23:52.0201 7940 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys

21:23:52.0214 7940 iteatapi - ok

21:23:52.0280 7940 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys

21:23:52.0294 7940 iteraid - ok

21:23:52.0366 7940 KAPFA - ok

21:23:52.0424 7940 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys

21:23:52.0437 7940 kbdclass - ok

21:23:52.0562 7940 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys

21:23:52.0591 7940 kbdhid - ok

21:23:52.0749 7940 kl1 (e656fe10d6d27794afa08136685a69e8) C:\Windows\system32\DRIVERS\kl1.sys

21:23:52.0769 7940 kl1 - ok

21:23:52.0870 7940 kl2 (d865dd8b0448e3f963d68c04c532858f) C:\Windows\system32\DRIVERS\kl2.sys

21:23:52.0881 7940 kl2 - ok

21:23:52.0971 7940 KLIF (c7d4f357c482dd37e2b05f34093b7b0c) C:\Windows\system32\DRIVERS\klif.sys

21:23:53.0033 7940 KLIF - ok

21:23:53.0126 7940 KLIM6 (89fb5a33d7171b6d84f5eb721d5055e1) C:\Windows\system32\DRIVERS\klim6.sys

21:23:53.0126 7940 KLIM6 - ok

21:23:53.0220 7940 klmouflt (9468d07e91ba136d82415f5dfc1fe168) C:\Windows\system32\DRIVERS\klmouflt.sys

21:23:53.0236 7940 klmouflt - ok

21:23:53.0282 7940 KSecDD (476e2c1dcea45895994bef11c2a98715) C:\Windows\system32\Drivers\ksecdd.sys

21:23:53.0298 7940 KSecDD - ok

21:23:53.0392 7940 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys

21:23:53.0438 7940 ksthunk - ok

21:23:53.0532 7940 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys

21:23:53.0564 7940 lltdio - ok

21:23:53.0647 7940 LSI_FC (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys

21:23:53.0661 7940 LSI_FC - ok

21:23:53.0739 7940 LSI_SAS (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys

21:23:53.0754 7940 LSI_SAS - ok

21:23:53.0824 7940 LSI_SCSI (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys

21:23:53.0839 7940 LSI_SCSI - ok

21:23:53.0922 7940 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys

21:23:53.0968 7940 luafv - ok

21:23:54.0063 7940 mdmxsdk (e4f44ec214b3e381e1fc844a02926666) C:\Windows\system32\DRIVERS\mdmxsdk.sys

21:23:54.0079 7940 mdmxsdk - ok

21:23:54.0198 7940 megasas (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys

21:23:54.0212 7940 megasas - ok

21:23:54.0344 7940 MegaSR (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys

21:23:54.0367 7940 MegaSR - ok

21:23:54.0493 7940 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys

21:23:54.0535 7940 Modem - ok

21:23:54.0618 7940 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys

21:23:54.0636 7940 monitor - ok

21:23:54.0736 7940 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys

21:23:54.0750 7940 mouclass - ok

21:23:54.0835 7940 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys

21:23:54.0877 7940 mouhid - ok

21:23:54.0965 7940 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys

21:23:54.0981 7940 MountMgr - ok

21:23:55.0087 7940 mpio (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys

21:23:55.0108 7940 mpio - ok

21:23:55.0173 7940 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys

21:23:55.0204 7940 mpsdrv - ok

21:23:55.0281 7940 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys

21:23:55.0296 7940 Mraid35x - ok

21:23:55.0426 7940 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS

21:23:55.0430 7940 MREMP50 ( UnsignedFile.Multi.Generic ) - warning

21:23:55.0431 7940 MREMP50 - detected UnsignedFile.Multi.Generic (1)

21:23:55.0503 7940 MREMP50a64 - ok

21:23:55.0515 7940 MREMPR5 - ok

21:23:55.0525 7940 MRENDIS5 - ok

21:23:55.0571 7940 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS

21:23:55.0576 7940 MRESP50 ( UnsignedFile.Multi.Generic ) - warning

21:23:55.0576 7940 MRESP50 - detected UnsignedFile.Multi.Generic (1)

21:23:55.0583 7940 MRESP50a64 - ok

21:23:55.0742 7940 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys

21:23:55.0763 7940 MRxDAV - ok

21:23:55.0877 7940 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys

21:23:55.0894 7940 mrxsmb - ok

21:23:55.0956 7940 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys

21:23:55.0976 7940 mrxsmb10 - ok

21:23:56.0152 7940 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys

21:23:56.0168 7940 mrxsmb20 - ok

21:23:56.0246 7940 msahci (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys

21:23:56.0261 7940 msahci - ok

21:23:56.0339 7940 msdsm (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys

21:23:56.0355 7940 msdsm - ok

21:23:56.0495 7940 MSDV (df674ba7da5a4753d839a905b66d2fd9) C:\Windows\system32\DRIVERS\msdv.sys

21:23:56.0542 7940 MSDV - ok

21:23:56.0636 7940 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys

21:23:56.0652 7940 Msfs - ok

21:23:56.0735 7940 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys

21:23:56.0748 7940 msisadrv - ok

21:23:56.0847 7940 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys

21:23:56.0886 7940 MSKSSRV - ok

21:23:56.0978 7940 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys

21:23:57.0016 7940 MSPCLOCK - ok

21:23:57.0122 7940 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys

21:23:57.0164 7940 MSPQM - ok

21:23:57.0280 7940 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys

21:23:57.0304 7940 MsRPC - ok

21:23:57.0414 7940 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys

21:23:57.0427 7940 mssmbios - ok

21:23:57.0534 7940 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys

21:23:57.0574 7940 MSTEE - ok

21:23:57.0643 7940 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys

21:23:57.0676 7940 Mup - ok

21:23:57.0786 7940 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys

21:23:57.0801 7940 NativeWifiP - ok

21:23:57.0895 7940 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys

21:23:57.0926 7940 NDIS - ok

21:23:58.0035 7940 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys

21:23:58.0066 7940 NdisTapi - ok

21:23:58.0129 7940 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys

21:23:58.0176 7940 Ndisuio - ok

21:23:58.0224 7940 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys

21:23:58.0256 7940 NdisWan - ok

21:23:58.0296 7940 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys

21:23:58.0325 7940 NDProxy - ok

21:23:58.0507 7940 Netaapl (307bc83250fc8e3b2878d81e7d760299) C:\Windows\system32\DRIVERS\netaapl64.sys

21:23:58.0524 7940 Netaapl - ok

21:23:58.0639 7940 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys

21:23:58.0681 7940 NetBIOS - ok

21:23:58.0795 7940 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys

21:23:58.0827 7940 netbt - ok

21:23:59.0193 7940 NETw5v64 (93915c41a0dbbd121a0fad2835e43776) C:\Windows\system32\DRIVERS\NETw5v64.sys

21:23:59.0387 7940 NETw5v64 - ok

21:23:59.0512 7940 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys

21:23:59.0527 7940 nfrd960 - ok

21:23:59.0624 7940 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys

21:23:59.0659 7940 Npfs - ok

21:23:59.0683 7940 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys

21:23:59.0727 7940 nsiproxy - ok

21:23:59.0843 7940 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys

21:23:59.0902 7940 Ntfs - ok

21:24:00.0038 7940 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys

21:24:00.0081 7940 Null - ok

21:24:00.0163 7940 nvraid (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys

21:24:00.0178 7940 nvraid - ok

21:24:00.0267 7940 nvstor (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys

21:24:00.0280 7940 nvstor - ok

21:24:00.0423 7940 nv_agp (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys

21:24:00.0441 7940 nv_agp - ok

21:24:00.0477 7940 NwlnkFlt - ok

21:24:00.0532 7940 NwlnkFwd - ok

21:24:00.0628 7940 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys

21:24:00.0663 7940 ohci1394 - ok

21:24:00.0822 7940 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys

21:24:00.0884 7940 Parport - ok

21:24:00.0946 7940 partmgr (f9b5eda4c17a2be7663f064dbf0fe254) C:\Windows\system32\drivers\partmgr.sys

21:24:00.0962 7940 partmgr - ok

21:24:01.0024 7940 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys

21:24:01.0056 7940 pci - ok

21:24:01.0180 7940 pciide (8d618c829034479985a9ed56106cc732) C:\Windows\system32\drivers\pciide.sys

21:24:01.0196 7940 pciide - ok

21:24:01.0290 7940 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys

21:24:01.0291 7940 pcmcia - ok

21:24:01.0365 7940 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys

21:24:01.0382 7940 pcouffin - ok

21:24:01.0509 7940 PCTINDIS5X64 (d0b8d8bee62da6dda0019bc266838f48) C:\Windows\system32\PCTINDIS5X64.SYS

21:24:01.0522 7940 PCTINDIS5X64 - ok

21:24:01.0618 7940 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys

21:24:01.0697 7940 PEAUTH - ok

21:24:01.0856 7940 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys

21:24:01.0887 7940 PptpMiniport - ok

21:24:02.0025 7940 Processor (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys

21:24:02.0065 7940 Processor - ok

21:24:02.0198 7940 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys

21:24:02.0231 7940 PSched - ok

21:24:02.0360 7940 PxHlpa64 (fbf4db6d53585437e41a113300002a2b) C:\Windows\system32\Drivers\PxHlpa64.sys

21:24:02.0375 7940 PxHlpa64 - ok

21:24:02.0578 7940 ql2300 (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys

21:24:02.0656 7940 ql2300 - ok

21:24:02.0781 7940 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys

21:24:02.0796 7940 ql40xx - ok

21:24:02.0898 7940 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys

21:24:02.0917 7940 QWAVEdrv - ok

21:24:03.0025 7940 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys

21:24:03.0063 7940 RasAcd - ok

21:24:03.0174 7940 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys

21:24:03.0205 7940 Rasl2tp - ok

21:24:03.0294 7940 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys

21:24:03.0324 7940 RasPppoe - ok

21:24:03.0429 7940 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys

21:24:03.0448 7940 RasSstp - ok

21:24:03.0613 7940 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys

21:24:03.0647 7940 rdbss - ok

21:24:03.0800 7940 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys

21:24:03.0866 7940 RDPCDD - ok

21:24:04.0038 7940 rdpdr (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys

21:24:04.0085 7940 rdpdr - ok

21:24:04.0163 7940 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys

21:24:04.0194 7940 RDPENCDD - ok

21:24:04.0334 7940 RDPWD (b1d741c87cea8d7282146366cc9c3f81) C:\Windows\system32\drivers\RDPWD.sys

21:24:04.0381 7940 RDPWD - ok

21:24:04.0460 7940 regi (4d9afddda0efe97cdbfd3b5fa48b05f6) C:\Windows\system32\drivers\regi.sys

21:24:04.0473 7940 regi - ok

21:24:04.0636 7940 RFCOMM (cd71e053d7260e4102d99a28f9196070) C:\Windows\system32\DRIVERS\rfcomm.sys

21:24:04.0668 7940 RFCOMM - ok

21:24:04.0775 7940 rimsptsk (d345ae15fa0ad4bd8d647c5509714858) C:\Windows\system32\DRIVERS\rimssn64.sys

21:24:04.0794 7940 rimsptsk - ok

21:24:04.0883 7940 risdptsk (c45cd294458fed92e9cc1c68768e9356) C:\Windows\system32\DRIVERS\risdsn64.sys

21:24:04.0900 7940 risdptsk - ok

21:24:05.0078 7940 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys

21:24:05.0117 7940 rspndr - ok

21:24:05.0236 7940 RTHDMIAzAudService (bff15b0d6b0567c88306b66dac264c41) C:\Windows\system32\drivers\RtHDMIVX.sys

21:24:05.0250 7940 RTHDMIAzAudService - ok

21:24:05.0439 7940 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys

21:24:05.0454 7940 sbp2port - ok

21:24:05.0564 7940 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys

21:24:05.0578 7940 SCDEmu - ok

21:24:05.0664 7940 sdbus (b42ee50f7d24f837f925332eb349eca5) C:\Windows\system32\DRIVERS\sdbus.sys

21:24:05.0718 7940 sdbus - ok

21:24:05.0859 7940 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

21:24:05.0906 7940 secdrv - ok

21:24:05.0969 7940 Ser2ph (de3135e7ed559fc1c1b92aa7ba52ccdb) C:\Windows\system32\DRIVERS\ser2ph64.sys

21:24:05.0984 7940 Ser2ph - ok

21:24:06.0067 7940 Ser2pl (749502a6c51116a6229cf7536181907f) C:\Windows\system32\DRIVERS\ser2pl64.sys

21:24:06.0082 7940 Ser2pl - ok

21:24:06.0212 7940 Serenum (f71bfe7ac6c52273b7c82cbf1bb2a222) C:\Windows\system32\DRIVERS\serenum.sys

21:24:06.0270 7940 Serenum - ok

21:24:06.0340 7940 Serial (e62fac91ee288db29a9696a9d279929c) C:\Windows\system32\drivers\serial.sys

21:24:06.0398 7940 Serial - ok

21:24:06.0510 7940 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys

21:24:06.0550 7940 sermouse - ok

21:24:06.0668 7940 SFEP (70f9c476b62de4f2823e918a6c181ade) C:\Windows\system32\DRIVERS\SFEP.sys

21:24:06.0684 7940 SFEP - ok

21:24:06.0769 7940 sffdisk (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys

21:24:06.0811 7940 sffdisk - ok

21:24:06.0916 7940 sffp_mmc (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys

21:24:06.0980 7940 sffp_mmc - ok

21:24:07.0058 7940 sffp_sd (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys

21:24:07.0104 7940 sffp_sd - ok

21:24:07.0182 7940 sfloppy (40567781f0785c4a69411d1b40da8987) C:\Windows\system32\DRIVERS\sfloppy.sys

21:24:07.0229 7940 sfloppy - ok

21:24:07.0370 7940 SiSRaid2 (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys

21:24:07.0385 7940 SiSRaid2 - ok

21:24:07.0508 7940 SiSRaid4 (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys

21:24:07.0522 7940 SiSRaid4 - ok

21:24:07.0604 7940 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys

21:24:07.0633 7940 Smb - ok

21:24:07.0790 7940 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys

21:24:07.0805 7940 spldr - ok

21:24:08.0035 7940 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys

21:24:08.0083 7940 srv - ok

21:24:08.0182 7940 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys

21:24:08.0212 7940 srv2 - ok

21:24:08.0439 7940 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys

21:24:08.0458 7940 srvnet - ok

21:24:08.0551 7940 StillCam (14b4db4381e4a55f570d8bb699b791d6) C:\Windows\system32\DRIVERS\serscan.sys

21:24:08.0582 7940 StillCam - ok

21:24:08.0691 7940 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys

21:24:08.0707 7940 swenum - ok

21:24:08.0832 7940 swmsflt (1c4ebd3e6cce53586d58473524d54e50) C:\Windows\System32\drivers\swmsflt.sys

21:24:08.0832 7940 swmsflt - ok

21:24:08.0956 7940 SWNC8U56 (c2ad3936249199c9d8187dcdea17ac25) C:\Windows\system32\DRIVERS\swnc8u56.sys

21:24:08.0988 7940 SWNC8U56 - ok

21:24:09.0074 7940 SWUMX56 (cc97ec73094cf0f47cd89aafba6d26f1) C:\Windows\system32\DRIVERS\swumx56.sys

21:24:09.0093 7940 SWUMX56 - ok

21:24:09.0179 7940 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys

21:24:09.0194 7940 Symc8xx - ok

21:24:09.0309 7940 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys

21:24:09.0322 7940 Sym_hi - ok

21:24:09.0378 7940 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys

21:24:09.0392 7940 Sym_u3 - ok

21:24:09.0531 7940 Tcpip (2cc45d932bd193cd4117321d469ad6b2) C:\Windows\system32\drivers\tcpip.sys

21:24:09.0584 7940 Tcpip - ok

21:24:09.0810 7940 Tcpip6 (2cc45d932bd193cd4117321d469ad6b2) C:\Windows\system32\DRIVERS\tcpip.sys

21:24:09.0899 7940 Tcpip6 - ok

21:24:10.0011 7940 tcpipreg (c7e72a4071ee0200e3c075dacfb2b334) C:\Windows\system32\drivers\tcpipreg.sys

21:24:10.0029 7940 tcpipreg - ok

21:24:10.0163 7940 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys

21:24:10.0201 7940 TDPIPE - ok

21:24:10.0253 7940 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys

21:24:10.0291 7940 TDTCP - ok

21:24:10.0410 7940 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys

21:24:10.0442 7940 tdx - ok

21:24:10.0561 7940 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys

21:24:10.0577 7940 TermDD - ok

21:24:10.0784 7940 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys

21:24:10.0822 7940 tssecsrv - ok

21:24:10.0930 7940 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys

21:24:10.0947 7940 tunmp - ok

21:24:11.0047 7940 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys

21:24:11.0064 7940 tunnel - ok

21:24:11.0152 7940 uagp35 (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys

21:24:11.0166 7940 uagp35 - ok

21:24:11.0308 7940 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys

21:24:11.0340 7940 udfs - ok

21:24:11.0498 7940 uliagpkx (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys

21:24:11.0513 7940 uliagpkx - ok

21:24:11.0600 7940 uliahci (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys

21:24:11.0617 7940 uliahci - ok

21:24:11.0738 7940 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys

21:24:11.0753 7940 UlSata - ok

21:24:11.0836 7940 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys

21:24:11.0852 7940 ulsata2 - ok

21:24:11.0914 7940 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys

21:24:11.0961 7940 umbus - ok

21:24:12.0184 7940 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys

21:24:12.0190 7940 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning

21:24:12.0190 7940 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)

21:24:12.0364 7940 usbaudio (c6ba890de6e41857fbe84175519cae7d) C:\Windows\system32\drivers\usbaudio.sys

21:24:12.0395 7940 usbaudio - ok

21:24:12.0575 7940 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys

21:24:12.0604 7940 usbccgp - ok

21:24:12.0755 7940 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys

21:24:12.0813 7940 usbcir - ok

21:24:12.0952 7940 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys

21:24:12.0981 7940 usbehci - ok

21:24:13.0141 7940 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys

21:24:13.0173 7940 usbhub - ok

21:24:13.0297 7940 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys

21:24:13.0344 7940 usbohci - ok

21:24:13.0469 7940 usbprint (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys

21:24:13.0500 7940 usbprint - ok

21:24:13.0594 7940 usbscan (ea0bf666868964fbe8cb10e50c97b9f1) C:\Windows\system32\DRIVERS\usbscan.sys

21:24:13.0625 7940 usbscan - ok

21:24:13.0735 7940 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS

21:24:13.0765 7940 USBSTOR - ok

21:24:13.0822 7940 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys

21:24:13.0851 7940 usbuhci - ok

21:24:13.0975 7940 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys

21:24:14.0021 7940 usbvideo - ok

21:24:14.0129 7940 usb_rndisx (1e36bb1a3c5aaf2aa9fa9a126df8c16c) C:\Windows\system32\DRIVERS\usb8023x.sys

21:24:14.0161 7940 usb_rndisx - ok

21:24:14.0317 7940 vga (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys

21:24:14.0355 7940 vga - ok

21:24:14.0463 7940 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys

21:24:14.0502 7940 VgaSave - ok

21:24:14.0612 7940 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys

21:24:14.0625 7940 viaide - ok

21:24:14.0684 7940 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys

21:24:14.0700 7940 volmgr - ok

21:24:14.0787 7940 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys

21:24:14.0811 7940 volmgrx - ok

21:24:14.0962 7940 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys

21:24:14.0980 7940 volsnap - ok

21:24:15.0078 7940 vsmraid (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys

21:24:15.0093 7940 vsmraid - ok

21:24:15.0223 7940 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys

21:24:15.0281 7940 WacomPen - ok

21:24:15.0362 7940 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys

21:24:15.0396 7940 Wanarp - ok

21:24:15.0410 7940 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys

21:24:15.0440 7940 Wanarpv6 - ok

21:24:15.0557 7940 Wd (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys

21:24:15.0570 7940 Wd - ok

21:24:15.0651 7940 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys

21:24:15.0671 7940 WDC_SAM - ok

21:24:15.0821 7940 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

21:24:15.0851 7940 Wdf01000 - ok

21:24:16.0011 7940 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys

21:24:16.0026 7940 WimFltr - ok

21:24:16.0144 7940 winachsf (057b062cf9a11e04db45b8c3afc28b11) C:\Windows\system32\DRIVERS\CAX_CNXT.sys

21:24:16.0200 7940 winachsf - ok

21:24:16.0403 7940 WINUSB (7f2f9e48566b2087f2aaad258cb2a8d4) C:\Windows\system32\DRIVERS\WinUSB.SYS

21:24:16.0434 7940 WINUSB - ok

21:24:16.0575 7940 WmiAcpi (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\drivers\wmiacpi.sys

21:24:16.0590 7940 WmiAcpi - ok

21:24:16.0749 7940 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys

21:24:16.0768 7940 WpdUsb - ok

21:24:16.0930 7940 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys

21:24:16.0969 7940 ws2ifsl - ok

21:24:17.0055 7940 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys

21:24:17.0097 7940 WUDFRd - ok

21:24:17.0196 7940 XAudio (638c99d993afab0e1fab226e2bbe6d79) C:\Windows\system32\DRIVERS\xaudio64.sys

21:24:17.0210 7940 XAudio - ok

21:24:17.0374 7940 yukonx64 (3c5b0410faba5b1014eefeee77e1296a) C:\Windows\system32\DRIVERS\yk60x64.sys

21:24:17.0401 7940 yukonx64 - ok

21:24:17.0543 7940 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0

21:24:17.0928 7940 \Device\Harddisk0\DR0 - ok

21:24:17.0928 7940 Boot (0x1200) (a5450fd2b286625b2b8b9864fd0c79bf) \Device\Harddisk0\DR0\Partition0

21:24:17.0928 7940 \Device\Harddisk0\DR0\Partition0 - ok

21:24:17.0943 7940 ============================================================

21:24:17.0943 7940 Scan finished

21:24:17.0943 7940 ============================================================

21:24:17.0943 7144 Detected object count: 3

21:24:17.0943 7144 Actual detected object count: 3

21:39:31.0019 7144 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user

21:39:31.0019 7144 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip

21:39:31.0019 7144 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user

21:39:31.0019 7144 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip

21:39:31.0019 7144 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user

21:39:31.0019 7144 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip

21:39:46.0400 5132 Deinitialize success

Link to post
Share on other sites

Very good.

This next task should take perhaps 40 to 50 minutes.

You will want to print out or copy these instructions to Notepad for offline reference!

These steps are for member Yourshadow only. If you are a casual viewer, do NOT try this on your system!

If you are not Yourshadow and have a similar problem, do NOT post here; start your own topic

Do not run or start any other programs while these utilities and tools are in use!

Do NOT run any other tools on your own or do any fixes other than what is listed here.

If you have questions, please ask before you do something on your own.

But it is important that you get going on these following steps.

=

Close any of your open programs while you run these tools.

If you have a prior copy of Combofix, delete it now

Download Combofix from any of the links below, and SAVE it to your Desktop.

Link 1

Link 2

**Note: It is important that it is saved directly to your Desktop and not run straight away from download **

Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.

Right- click on Combo-Fix.exe on your Desktop and select "Run as Administrator".

  • A window may open with a warning or prompts. Accept the EULA and follow the prompts during the start phase of Combofix.
    When the scan completes Notepad will open with with your results log open. Do a File, Exit and answer 'Yes' to save changes.

A caution - Do not run Combofix more than once.

Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock.

The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled.

If this occurs, please reboot to restore the desktop.

Even when ComboFix appears to be doing nothing, look at your Drive light.

If it is flashing, Combofix is still at work.

A file will be created at => C:\Combofix.txt.

Note:

Do not mouseclick combofix's window nor run any program while Combofix is running.

That may cause it to stall.

Reply with a copy of the C:\Combofix.txt log

Link to post
Share on other sites

ComboFix 12-01-09.01 - User 01/08/2012 22:08:47.5.2 - x64

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3934.1657 [GMT -8:00]

Running from: c:\users\User\Desktop\ComboFix.exe

AV: Kaspersky Internet Security *Disabled/Updated* {2EAA32A5-1EE1-1B22-95DA-337730C6E984}

FW: Kaspersky Internet Security *Disabled* {1691B380-548E-1A7A-BE85-9A42CE15AEFF}

SP: Kaspersky Internet Security *Disabled/Updated* {95CBD341-38DB-14AC-AF6A-08054B41A339}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((( Files Created from 2011-12-09 to 2012-01-09 )))))))))))))))))))))))))))))))

.

.

2012-01-09 06:36 . 2012-01-09 06:36 -------- d-----w- c:\users\User\AppData\Local\temp

2012-01-09 06:36 . 2012-01-09 06:36 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-01-08 00:07 . 2011-12-10 23:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-01-07 04:00 . 2012-01-07 04:06 -------- d-----w- c:\users\User\AppData\Roaming\QuickScan

2012-01-07 00:27 . 2012-01-07 00:27 -------- d-----w- C:\TDSSKiller_Quarantine

2012-01-06 20:07 . 2012-01-09 04:22 -------- d-----w- C:\ARK

2012-01-06 00:01 . 2012-01-06 00:01 -------- d-----w- c:\program files (x86)\ERUNT

2012-01-05 07:02 . 2012-01-05 07:07 -------- d-----w- c:\program files (x86)\Free Window Registry Repair

2012-01-05 03:38 . 2012-01-05 04:09 -------- d-----w- C:\ARK-A

2012-01-05 03:35 . 2012-01-05 03:35 -------- dc-h--w- c:\programdata\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}

2012-01-05 03:35 . 2012-01-05 03:35 -------- d-----w- c:\program files (x86)\Uniblue

2012-01-04 07:19 . 2012-01-08 00:07 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2011-12-14 17:18 . 2011-11-04 01:44 1390080 ----a-w- c:\windows\system32\wininet.dll

2011-12-14 17:18 . 2011-11-03 22:39 1127424 ----a-w- c:\windows\SysWow64\wininet.dll

2011-12-14 17:18 . 2011-11-04 01:53 2309120 ----a-w- c:\windows\system32\jscript9.dll

2011-12-14 17:18 . 2011-11-03 22:47 1798144 ----a-w- c:\windows\SysWow64\jscript9.dll

2011-12-14 17:18 . 2011-11-04 01:48 887296 ----a-w- c:\program files\Internet Explorer\iedvtool.dll

2011-12-14 17:18 . 2011-11-03 22:42 678912 ----a-w- c:\program files (x86)\Internet Explorer\iedvtool.dll

2011-12-14 16:00 . 2011-10-25 16:09 85504 ----a-w- c:\windows\system32\csrsrv.dll

2011-12-14 16:00 . 2011-11-08 14:58 2048 ----a-w- c:\windows\system32\tzres.dll

2011-12-14 16:00 . 2011-11-08 14:42 2048 ----a-w- c:\windows\SysWow64\tzres.dll

2011-12-14 15:59 . 2011-11-23 13:57 2764800 ----a-w- c:\windows\system32\win32k.sys

2011-12-14 15:59 . 2011-10-14 17:30 559616 ----a-w- c:\windows\system32\EncDec.dll

2011-12-14 15:59 . 2011-10-14 16:02 429056 ----a-w- c:\windows\SysWow64\EncDec.dll

2011-12-14 15:59 . 2011-11-08 12:10 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat

2011-12-14 15:59 . 2011-11-08 12:10 2409784 ----a-w- c:\program files (x86)\Windows Mail\OESpamFilter.dat

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-11-11 12:06 . 2011-06-05 19:40 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

.

.

((((((((((((((((((((((((((((( SnapShot@2012-01-07_02.08.03 )))))))))))))))))))))))))))))))))))))))))

.

+ 2008-10-01 02:40 . 2012-01-09 03:28 23236 c:\windows\system32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3269463780-1378098761-2344873518-1000_UserData.bin

- 2012-01-07 00:39 . 2012-01-07 00:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2012-01-09 03:25 . 2012-01-09 03:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

- 2012-01-07 00:39 . 2012-01-07 00:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2012-01-09 03:25 . 2012-01-09 03:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2008-01-21 02:23 . 2012-01-09 03:27 113894 c:\windows\system32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin

+ 2006-11-02 15:45 . 2012-01-09 03:28 186520 c:\windows\system32\WDI\BootPerformanceDiagnostics_SystemData.bin

+ 2006-11-02 12:46 . 2012-01-07 16:39 723934 c:\windows\system32\perfh009.dat

- 2006-11-02 12:46 . 2012-01-07 00:33 723934 c:\windows\system32\perfh009.dat

+ 2006-11-02 12:46 . 2012-01-07 16:39 152078 c:\windows\system32\perfc009.dat

- 2006-11-02 12:46 . 2012-01-07 00:33 152078 c:\windows\system32\perfc009.dat

+ 2010-10-23 07:54 . 2012-01-09 03:07 486016 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

- 2010-10-23 07:54 . 2012-01-07 00:38 486016 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2012-01-05 07:24 . 2012-01-05 07:24 727832 c:\windows\Downloaded Program Files\qsax.dll

+ 2011-12-10 11:13 . 2012-01-09 03:07 8642816 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

- 2011-12-10 11:13 . 2012-01-05 14:44 8642816 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

+ 2010-10-23 07:54 . 2012-01-09 03:07 39946669 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3269463780-1378098761-2344873518-1000-12288.dat

- 2010-10-23 07:54 . 2012-01-07 00:38 39946669 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3269463780-1378098761-2344873518-1000-12288.dat

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

2011-05-17 20:29 1490312 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-05-17 1490312]

.

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]

@="{95A27763-F62A-4114-9072-E81D87DE3B68}"

[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]

2011-03-04 03:52 762000 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]

@="{E300CD91-100F-4E67-9AF3-1384A6124015}"

[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]

2011-03-04 03:52 762000 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]

@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"

[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]

2011-03-04 03:52 762000 ----a-r- c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 94208 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 94208 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 94208 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 94208 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1555968]

"Adobe Acrobat Synchronizer"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe" [2010-10-25 1216416]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2008-04-04 317280]

"SmartWiHelper"="c:\program files\Sony Corporation\SmartWi Connection Utility\SmartWiHelper.exe" [2008-06-27 77824]

"VAIORegistration"="c:\program files\Sony\First Experience\WelcomeLauncher.exe" [2008-06-26 16384]

"VWLASU"="c:\program files\Sony\VAIO Wireless Wizard\AutoLaunchWLASU.exe" [2008-05-20 24576]

"AML"="c:\program files (x86)\Sony\VAIO Launcher\AML.exe" [2008-06-13 1097728]

"SSBkgdUpdate"="c:\program files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-10-14 155648]

"PaperPort PTD"="c:\program files (x86)\ScanSoft\PaperPort\pptd40nt.exe" [2004-04-14 57393]

"IndexSearch"="c:\program files (x86)\ScanSoft\PaperPort\IndexSearch.exe" [2004-04-14 40960]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]

"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2010-10-25 36760]

"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2010-10-25 821144]

"Carbonite Backup"="c:\program files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe" [2011-03-04 948880]

"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2011-05-17 395144]

"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe" [2011-04-25 202296]

"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]

.

c:\users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dropbox.lnk - c:\users\User\AppData\Roaming\Dropbox\bin\Dropbox.exe [2011-12-5 24242056]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2011-3-9 4236288]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]

2008-07-29 00:45 98304 ------w- c:\windows\System32\VESWinlogon.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux2"=wdmaud.drv

.

S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]

.

.

--- Other Services/Drivers In Memory ---

.

*NewlyCreated* - 49981592

*NewlyCreated* - 56145985

*Deregistered* - 49981592

*Deregistered* - 56145985

*Deregistered* - aswMBR

.

Contents of the 'Scheduled Tasks' folder

.

2012-01-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-10-17 21:33]

.

2012-01-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-10-17 21:33]

.

2009-08-07 c:\windows\Tasks\RegistryCleaner.job

- c:\users\Public\User\PC-Kitchen\RegistryCleaner\3.1.0.2\RegistryCleaner.exe [2009-08-07 20:49]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]

@="{95A27763-F62A-4114-9072-E81D87DE3B68}"

[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]

2011-03-04 03:36 1174672 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]

@="{E300CD91-100F-4E67-9AF3-1384A6124015}"

[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]

2011-03-04 03:36 1174672 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]

@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"

[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]

2011-03-04 03:36 1174672 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 97792 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 97792 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 97792 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2010-10-06 23:36 97792 ----a-w- c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="RAVCpl64.exe" [2008-07-15 6453760]

"Skytel"="Skytel.exe" [2008-07-15 1826816]

"Apoint"="c:\program files\Apoint\Apoint.exe" [2008-07-18 152576]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-08-09 151064]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-08-09 209432]

"Persistence"="c:\windows\system32\igfxpers.exe" [2008-08-09 181784]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=c:\windows\System32\acaptuser64.dll

.

------- Supplementary Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.com/

mLocal Page = c:\windows\system32\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: Add to Anti-Banner - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\ie_banner_deny.htm

IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

TCP: DhcpNameServer = 192.168.1.1 68.238.64.12

CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll

FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\wxq0x6sj.default\

FF - prefs.js: browser.search.selectedEngine - Yahoo

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/

FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=937811&p=

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - Ext: Anti-Banner: KavAntiBanner@kaspersky.ru_bak2 - c:\program files (x86)\Mozilla Firefox\extensions\KavAntiBanner@kaspersky.ru_bak2

FF - Ext: Kaspersky URL Advisor: linkfilter@kaspersky.ru_bak2 - c:\program files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru_bak2

FF - Ext: Avery Toolbar: toolbar@ask.com - %profile%\extensions\toolbar@ask.com

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}

FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension

FF - Ext: Adobe Acrobat - Create PDF: web2pdfextension@web2pdf.adobedotcom - c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn

FF - Ext: Kaspersky Virtual Keyboard: virtualKeyboard@kaspersky.ru - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru

FF - Ext: Kaspersky URL Advisor: linkfilter@kaspersky.ru - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\linkfilter@kaspersky.ru

FF - Ext: Anti-Banner: KavAntiBanner@Kaspersky.ru - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\KavAntiBanner@Kaspersky.ru

.

- - - - ORPHANS REMOVED - - - -

.

Toolbar-Locked - (no file)

.

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SampleCollector]

"ImagePath"="\"c:\program files\Sony\VAIO Care\collsvc.exe\" \"/service\" \"/counter=\Processor(_Total)\% Processor Time:5\" \"/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:5\" \"/counter=\Network Interface(*)\Bytes Total/sec:5\" \"/directory=inteldata\""

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_USERS\S-1-5-21-3269463780-1378098761-2344873518-1000\Software\SecuROM\License information*]

"datasecu"=hex:d0,ff,4e,c2,c1,2a,c1,7b,de,e8,8c,07,f2,63,ba,4c,c3,57,78,47,fc,

3a,2a,de,75,fb,36,eb,bc,62,ce,e3,a0,a9,5b,c3,71,0a,ba,ed,85,aa,1e,ed,88,37,\

"rkeysecu"=hex:2b,a1,0d,51,16,86,a9,d7,ba,3a,ef,1f,d4,55,a6,26

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

Completion time: 2012-01-08 23:10:25

ComboFix-quarantined-files.txt 2012-01-09 07:10

.

Pre-Run: 55,160,709,120 bytes free

Post-Run: 55,164,383,232 bytes free

.

- - End Of File - - 9CD60A6300BA39C8CC99FA4900515E4C

Link to post
Share on other sites

Good morning Yourshadow.

a) You are welcome. I am pleased that we have come this far. But just be sure you return back here to this Topic.

We are not all done, we have some more to check and do.

b) Ideally get the Excel file by other means if possible. But if you do take it from this system, be sure to scan it first with an anti-virus app before opening the file.

c) See if you can start K.I.S. 2012 and if so, run the Update function(s) to get current. We want to insure the firewall is functioning and the A-V is functional. Please advise on that. Also, be sure your KIS license is current.

d) Advise when you will be available to continue the quest here.

Link to post
Share on other sites

Hello Yourshadow,

Here's what we need to address next; a mix of updates to tighten out-of-date versions & to also address MBAM run.

The version 1.99.1 of HijackThis is very outdated. Since apparently it is not "installed" but rather free-standing, delete the EXE in this folder

C:\Users\User\Downloads\Hijack This\HijackThis.exe

If already done, good.

Step 2 Update tasks

javaicon.gif

Your Java runtime is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version Java components and update.

Your Vista is a 64-bit system !

If you use 32-bit and 64-bit browsers interchangeably, you will need to install both 32-bit and 64-bit Java in order to have the Java plug-in for both browsers.So get both the 32-bit and 64-bit

  • Close any programs you may have running - especially your web browser.
  • Un-install all prior versions of Java runtime
    Start button > in Start menu -- Control Panel > Uninstall a Program (listed under Programs).
    {In Classic view, double click Program and features} and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE or Java) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop RIGHT-click on jre-6u30-windows-i586-s.exe and Run as Administrator to install the newest version.
    ( jre-6u30-windows-x64.exe if this is a 64-bit Windows o.s.)

  • After the install is complete, go into the Control Panel (using Classic View) and double-click the Java Icon. (looks like a coffee cup) javaicon.gif
    • On the General tab, under Temporary Internet Files, click the Settings button.
    • Next, click on the Delete Files button
    • There are two options in the window to clear the cache - Leave BOTH Checked
      • Applications and Applets
        Trace and Log Files

      [*]Click OK on Delete Temporary Files Window

      Note: This deletes ALL the Downloaded Applications and Applets from the CACHE.

      [*]Click OK to leave the Temporary Files Window

Small tweaks for Java runtime, since most all users do not need to load Java at each Windows startup:

Click Advanced Tab. Expand the Miscellaneous item.

UN-check the line Java quick starter

If you want to also un-check the "Check for updates automatically" you may:

Click the Update tab. un-check the line if it is checked.

Press Apply then OK. Close the applet when done.

To test your Java Run-time, you may go to this page http://www.java.com/en/download/help/testvm.xml

When all is well, you should see Java Version: Java 6 Update 30 from Sun Microsystems Inc.

Step 2 Cleanup & System Restore

Run Disk Cleanup with the System Restore Cleanup as outlined here by Bert Kinney

http://bertk.mvps.org/html/diskcleanupv.html

Step 3 Update tasks

see this article & get the Flash Player updated to the latest

http://aumha.net/viewtopic.php?f=26&t=45613

Step 4 Update tasks

Older versions of Adobe Reader pose a potential security risk.

De-install your Adobe Reader: Use Control Panel's Add-Remove programs, Remove Adobe Reader.

Get latest Adobe Reader version

http://get.adobe.com/reader/

Be sure to un-check the box for Free McAfee Security Scan or any "toolbar" (if offered )

Step 4 MBAM Clean Re-install

Next, let us do these next steps for MBAM re-install:

Please folow this sequence for MBAM removal & re-install:

1) Go to Control Panel and Add-or-Remove programs.

uninstall Malwarebytes' Anti-Malware

Exit Control Panel

2) Get, save, and then run the utility at the following link

http://www.malwarebytes.org/mbam-clean.exe

3)Logoff and restart your computer again.

4)Now, reinstall Malwarebytes' Anti-Malware.

You may download a fresh copy for the reinstall from the following link:

http://malwarebytes.org/mbam-download.php

During the First run of MBAM, decline the Trial {you can try it later on at some other point}.

During or after install, if prompted for Restart, please do so.

Step 5 MBAM Scan

Temporarily dis-able your K.I.S. anti-virus real-time monitor.:excl:

Save and close any work documents, close any apps that you started.

Start your MBAM MalwareBytes' Anti-Malware.

Click the Settings Tab and then the General Settings sub-tab. Make sure all option lines have a checkmark.

Then click the Scanner settings sub-tab in second row of tabs. Make sure all option lines have a checkmark.

Next, Click the Update tab. Press the "Check for Updates" button.

If prompted for a Restart, do that.

When done, click the Scanner tab.

Do a FULL Scan.

When the scan is complete, click OK, then Show Results to view the results.

Make sure that everything is checked, and click Remove Selected.

When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.

The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.

Reply with copy of the MBAM scan log for my review.

Re-enable your KIS 2012 a-v :excl:

Tell me, How is your system now icon_question.gif

Link to post
Share on other sites

Malwarebytes Anti-Malware 1.60.0.1800

www.malwarebytes.org

Database version: v2012.01.10.02

Windows Vista Service Pack 2 x64 NTFS

Internet Explorer 9.0.8112.16421

User :: RICKS-LAPTOP [administrator]

1/9/2012 7:40:31 PM

mbam-log-2012-01-09 (19-40-31).txt

Scan type: Full scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 671738

Time elapsed: 3 hour(s), 2 minute(s), 5 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 0

(No malicious items detected)

(end)

Link to post
Share on other sites

While I cannot know for sure just how TDL4 got onto your system, the high suspects would be out-of-date utilities or possibly a 'dodgy' download.

In any event, tighten your safety procedures to include the steps I outline below, as well as the references below.

Having a total image backup of your system stored on DVD/CD is highly important.

I see that you are clear of your original issues.

If you have a problem with these steps, or something does not quite work here, do let me know.

The following few steps will remove tools we used.

We have to remove Combofix and all its associated folders. By whichever name you named it, ( you had named it combofix icon_exclaim.gif), put that name in the RUN box stated just below.

The "/uninstall" in the Run line below is to start Combofix for it's cleanup & removal function.

Note the space after exe and before the slash mark.

The utility must be removed to prevent any un-intentional or accidental usage, PLUS, to free up much space on your hard disk.

  • Click Start, then click Run.
    In the text box that opens, type or copy/paste ComboFix /uninstall and then click OK.

IF in the case Combofix un-install has an issue, skip that step.

  • Download OTC to your desktop and run it
  • Click Yes to beginning the Cleanup process and remove these components, including this application.
  • You will be asked to reboot the machine to finish the Cleanup process. Choose Yes.

We are finished here. Best regards. :D

Link to post
Share on other sites

N.B.

The GParted instructions were adapted by me based on the TDL4 removal instructions posted in Negster22's blog article "Using GParted to Edit the Partition Table & Manage Partitions"

http://secure-computer-solutions.com/blog/2011/11/using_gparted_to_edit_the_part_1.html

My thanks to Negster22 for allowing the adaptation, and much appreciation for her consulting with me. groupwave.gif

Edited by Maurice Naggar
Link to post
Share on other sites

  • 2 weeks later...
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.