Jump to content
Mr. Bojangles

Mbam Cannot Complete Scan/random Shutdowns/drivers Randomly Being Diabled

Recommended Posts

Hello!

 

 

#My computer has started acting up recently. All symptoms appeared over a couple of days. written below are the symptoms:

 

- Mbam scan runs indefinately. The scan will start but will not complete. longest seen run time is +9hrs and was cancelled by user.

- all sub directory names not visible in some directories when 'thumbnail view' selected.

- very slow system even though CPU is at 2-10%

- computer randomly restarts. no error message and no blue screen.

- Audio cuts off randomly and driver must be re-started before sound will work.

- Computer fails to restore to backed up state. the system restore appears to accept the instructions to restore the PC, but does not actually begin restore process. In fact nothing happens at all.

 

 

#system status when problems occur:

 

-CPU, GPU & Power supply temperatures within optimal range.

-page file size less than installed RAM. [PF= 1.4GB // RAM= 2GB]

-power supply voltages within optimal range (no excessive drain that would indicate faulty power supply).

-HD fragmentation at 8%

 

 

#What i have tried already that has failed to fix any problems:

 

-Mbam full scan. [scan would not complete].

-rolling back and re-installing most current drivers for CPU, GPU and Sound card. [re-installations succesful. Problems still occuring].

-System restore. [could not actually complete a system restore opperation].

 

 

#I have concluded based on this information that hardware is not to blame. I believe that my system is infected because specifically, Mbam seems to be disabled which i find very suspicious. I have no clue what is going on otherwise.

 

 

Share this post


Link to post
Share on other sites

FRST.txt

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-04-2014
Ran by Mr. Bojangles (administrator) on MRBOJANGLES on 23-04-2014 04:00:19
Running from C:\Documents and Settings\Mr. Bojangles\Desktop
Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
Internet Explorer Version 7
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
(Symantec Corporation) C:\Program Files\Symantec Client Security\Symantec Client Firewall\ISSVC.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
(Lenovo Group Limited) C:\WINDOWS\system32\IPSSVC.EXE
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\D-Link\DWA-160\ANIWConnService.exe
(Symantec Corporation) C:\Program Files\Symantec Client Security\Symantec AntiVirus\DefWatch.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
(M-Audio) C:\Program Files\M-Audio\Fast Track Pro\AudioDevMon.exe
(SafeNet Inc.) C:\WINDOWS\system32\hasplms.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn\x86\RaMaint.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\WINDOWS\system32\netdde.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Microsoft Corp.) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
() C:\Program Files\SensorsViewPro43\svservice.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Symantec Corporation) C:\Program Files\Symantec Client Security\Symantec AntiVirus\Rtvscan.exe
(Symantec Corporation) C:\Program Files\Symantec Client Security\Symantec Client Firewall\SymSPort.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Client Security Solution\cssauth.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
() C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
(AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
() C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\loggingserver.exe
(Microsoft Corporation) c:\Program Files\Zune\WMZuneComm.exe
() C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
(Microsoft Corporation) c:\Program Files\Zune\ZuneBusEnum.exe
(Microsoft Corporation) c:\Program Files\Zune\ZuneNss.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Client Security Solution\tvtpwm_tray.exe
(Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
(AimerSoft) C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Microsoft Corporation) c:\Program Files\Zune\ZuneWlanCfgSvc.exe
() C:\Program Files\AVG Secure Search\vprot.exe
(D-Link Corp.) C:\Program Files\D-Link\DWA-160\AirNCFG.exe
(Wireless Service) C:\Program Files\D-Link\DWA-160\WZCSLDR2.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn\x86\LogMeIn.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Primax Electronics Ltd.) C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE
(Lenovo Group Limited) C:\Program Files\ThinkVantage\PrdCtr\LPMGR.EXE
(Lenovo Group Limited) C:\Program Files\ThinkVantage\PrdCtr\LPMLCHK.EXE
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\System Update\SUService.exe
(Dropbox, Inc.) C:\Documents and Settings\Mr. Bojangles\Application Data\Dropbox\bin\Dropbox.exe
() C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Primax Electronics Ltd.) C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TVT Scheduler Proxy] => C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-03-04] (Lenovo Group Limited)
HKLM\...\Run: [LogMeIn GUI] => C:\Program Files\LogMeIn\x86\LogMeInSystray.exe [63048 2012-11-29] (LogMeIn, Inc.)
HKLM\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [1734144 2013-05-29] (AimerSoft)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-22] (Adobe Systems Incorporated)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [4971024 2014-03-19] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [vProt] => C:\Program Files\AVG Secure Search\vprot.exe [2544664 2014-03-26] ()
HKLM\...\Run: [D-Link D-Link Wireless N Dual Band DWA-160 ] => C:\Program Files\D-Link\DWA-160\AirNCFG.exe [1078592 2011-11-02] (D-Link Corp.)
HKLM\...\Run: [D-Link Wireless N Dual Band DWA-160  WZCSLDR2] => C:\Program Files\D-Link\DWA-160\WZCSLDR2.exe [122880 2010-07-12] (Wireless Service)
HKLM\...\Run: [sunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Daemon for Mouse Suite] => C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE [69632 2013-03-26] (Primax Electronics Ltd.)
HKLM\...\Run: [LPManager] => C:\Program Files\ThinkVantage\PrdCtr\LPMGR.EXE [185688 2009-07-23] (Lenovo Group Limited)
HKLM\...\Run: [LPMailChecker] => C:\Program Files\ThinkVantage\PrdCtr\LPMLCHK.EXE [124248 2009-07-23] (Lenovo Group Limited)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
Winlogon\Notify\AwayNotify: C:\Program Files\Lenovo\AwayTask\AwayNotify.dll (Lenovo Group Limited)
Winlogon\Notify\LMIinit: C:\WINDOWS\system32\LMIinit.dll (LogMeIn, Inc.)
Winlogon\Notify\NavLogon: C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation)
HKU\S-1-5-21-2838019926-1718427338-2428480347-1008\...\Run: [AVG-Secure-Search-Update_1213b] => C:\Documents and Settings\Mr. Bojangles\Application Data\AVG 1213b Campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=Unknown /CMPID=1213b
Startup: C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Documents and Settings\Mr. Bojangles\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL (Sonic Solutions)
BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: CPwmIEBrowserHelper Object - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll (Lenovo Group Limited)
Toolbar: HKLM - No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
Toolbar: HKCU - No Name - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -  No File
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_06-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\18.0.5\ViProtocol.dll (AVG Secure Search)
Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} -  No File
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.1.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Mr. Bojangles\Application Data\Mozilla\Firefox\Profiles\dtd8zko4.default-1366250982031
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\18.0.5\\npsitesafety.dll (AVG Technologies)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 - C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\libdivx.dll (The OpenSSL Project, http://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ssldivx.dll (The OpenSSL Project, http://www.openssl.org/)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF Extension: Lightbeam - C:\Documents and Settings\Mr. Bojangles\Application Data\Mozilla\Firefox\Profiles\dtd8zko4.default-1366250982031\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2013-11-05]
FF Extension: Easy YouTube Video Downloader - C:\Documents and Settings\Mr. Bojangles\Application Data\Mozilla\Firefox\Profiles\dtd8zko4.default-1366250982031\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi [2013-04-18]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [avg@toolbar] - C:\Documents and Settings\All Users\Application Data\AVG Secure Search\FireFoxExt\18.0.5.292
FF Extension: AVG Security Toolbar - C:\Documents and Settings\All Users\Application Data\AVG Secure Search\FireFoxExt\18.0.5.292 [2014-03-26]

Chrome:
=======


CHR DefaultSearchKeyword: google.com.au
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\34.0.1847.116\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (DivX Web Player) - C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll (DivX,Inc.)
CHR Plugin: (DivX Player Netscape Plugin) - C:\Program Files\Mozilla Firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
CHR Plugin: (Windows Genuine Advantage) - C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Winamp Application Detector) - C:\Program Files\Mozilla Firefox\plugins\npwachk.dll (Nullsoft, Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java Platform SE 7 U25) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Picasa) - C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Windows Presentation Foundation) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.16) - C:\WINDOWS\system32\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
CHR Extension: (Google Drive) - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-01-08]
CHR Extension: (iTim Text (+MMS)) - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apfndjnhpopclkbidgimpggjdbkedogo [2013-01-08]
CHR Extension: (YouTube) - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-01-08]
CHR Extension: (Google Search) - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-01-08]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-24]
CHR Extension: (Gmail) - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-01-08]
CHR HKCU\...\Chrome\Extension: [amfclgbdpgndipgoegfpkkgobahigbcl] - C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Smartbar/Application\1Extension.crx [2013-01-08]

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3782672 2014-02-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 ccEvtMgr; C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [185968 2005-06-03] (Symantec Corporation)
S2 ccProxy; C:\Program Files\Common Files\Symantec Shared\ccProxy.exe [239216 2005-06-03] (Symantec Corporation)
S3 ccPwdSvc; C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe [83568 2005-06-03] (Symantec Corporation)
R2 ccSetMgr; C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [161392 2005-06-03] (Symantec Corporation)
S2 D-Link Wireless N Dual Band DWA-160 ; C:\Program Files\D-Link\DWA-160\ANIWZCSdS.exe [126976 2010-07-12] (Wireless Service)
R2 D-Link Wireless N Dual Band DWA-160 _WPS; C:\Program Files\D-Link\DWA-160\ANIWConnService.exe [53248 2010-07-12] ()
R2 DefWatch; C:\Program Files\Symantec Client Security\Symantec AntiVirus\DefWatch.exe [19648 2005-08-19] (Symantec Corporation)
R2 Diskeeper; C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [622700 2006-05-24] (Diskeeper Corporation)
S4 D_Link_DWA-525; C:\Program Files\D-Link\DWA-525 revA\ANIWZCSdS.exe [126976 2010-04-22] (Wireless Service)
R2 FastTrackProAudioDevMon; C:\Program Files\M-Audio\Fast Track Pro\AudioDevMon.exe [1688336 2013-05-23] (M-Audio)
R2 hasplms; C:\WINDOWS\system32\hasplms.exe [4412872 2012-08-23] (SafeNet Inc.)
R2 IPSSVC; C:\WINDOWS\system32\IPSSVC.EXE [73728 2006-06-19] (Lenovo Group Limited)
R2 ISSVC; C:\Program Files\Symantec Client Security\Symantec Client Firewall\ISSVC.exe [79488 2005-07-21] (Symantec Corporation)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [7520337 2002-12-17] (Microsoft Corporation)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45272 2005-10-14] (Microsoft Corporation)
R2 NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [3857408 2011-04-08] (Native Instruments GmbH)
S3 SavRoam; C:\Program Files\Symantec Client Security\Symantec AntiVirus\SavRoam.exe [124608 2005-08-19] (symantec)
R2 SensorsVService; C:\Program Files\SensorsViewPro43\svservice.exe [935424 2011-12-03] ()
R2 SNDSrvc; C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe [206552 2005-04-06] (Symantec Corporation)
S3 SPBBCSvc; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe [992864 2005-03-31] (Symantec Corporation)
S3 SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [311872 2002-12-17] (Microsoft Corporation)
R2 SUService; C:\Program Files\Lenovo\System Update\SUService.exe [28672 2013-07-10] (Lenovo Group Limited)
R2 Symantec AntiVirus; C:\Program Files\Symantec Client Security\Symantec AntiVirus\Rtvscan.exe [1730240 2005-08-19] (Symantec Corporation)
R2 SymSecurePort; C:\Program Files\Symantec Client Security\Symantec Client Firewall\SymSPort.exe [202368 2005-07-21] (Symantec Corporation)
R2 TVT Scheduler; C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [1122304 2008-03-04] (Lenovo Group Limited)
R2 tvtnetwk; C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe [45056 2006-07-15] ()
R2 vToolbarUpdater18.0.5; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe [1771032 2014-03-26] (AVG Secure Search)
R2 ZuneBusEnum; c:\Program Files\Zune\ZuneBusEnum.exe [57072 2010-11-11] (Microsoft Corporation)
S4 Lavasoft Ad-Aware Service; "C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe" [X]
S3 PsaSrv; C:\WINDOWS\system32\PsaSrv.exe [X]

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-18] (Microsoft Corporation)
S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [365056 2012-08-07] (SafeNet Inc.)
R2 ANPD; C:\WINDOWS\system32\ANPD.sys [29411 2011-12-29] ()
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [120600 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [210712 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [149272 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [22808 2014-01-19] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42272 2014-03-26] (AVG Technologies)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2011-06-02] ()
R2 DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [25628 2006-02-02] (Sonic Solutions)
R1 DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [5660 2005-11-19] (Sonic Solutions)
R2 DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2496 2006-02-02] (Sonic Solutions)
R2 DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [86652 2006-02-02] (Sonic Solutions)
R2 DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [14684 2006-02-02] (Sonic Solutions)
R2 DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [6364 2006-02-02] (Sonic Solutions)
R1 DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [22684 2005-11-19] (Sonic Solutions)
R2 DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [94332 2006-02-02] (Sonic Solutions)
R2 DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [87036 2006-02-02] (Sonic Solutions)
R2 DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [40544 2005-11-18] (Sonic Solutions)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [371248 2008-12-18] (Symantec Corporation)
R2 EGATHDRV; C:\WINDOWS\SYSTEM32\EGATHDRV.SYS [5427 2014-04-20] (IBM Corporation)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-04] ()
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [605128 2012-09-27] (SafeNet Inc.)
S3 HdAudAddService; C:\WINDOWS\System32\drivers\HdAudio.sys [145920 2005-01-08] (Windows ® Server 2003 DDK provider)
R3 Iviaspi; C:\WINDOWS\System32\drivers\iviaspi.sys [21060 2003-09-11] (InterVideo, Inc.)
R3 LVUSBSta; C:\WINDOWS\System32\drivers\LVUSBSta.sys [41504 2007-02-04] (Logitech Inc.)
R3 MAUSBFASTTRACKPRO; C:\WINDOWS\System32\DRIVERS\MAudioFastTrackPro.sys [149520 2013-05-23] (M-Audio)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R1 mbmiodrvr; C:\WINDOWS\system32\mbmiodrvr.sys [2944 2004-04-10] (cansoft@livewiredev.com)
S3 NAVENG; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090115.004\NAVENG.SYS [89104 2008-12-18] (Symantec Corporation)
S3 NAVEX15; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090115.004\NAVEX15.SYS [876112 2008-12-18] (Symantec Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 pelmouse; C:\WINDOWS\System32\DRIVERS\pelmouse.sys [19456 2012-11-28] (TPMX Electronics Ltd.)
R3 pelusblf; C:\WINDOWS\System32\DRIVERS\pelusblf.sys [26624 2013-03-19] (TPMX Electronics Ltd.)
S3 PID_0928; C:\WINDOWS\System32\DRIVERS\LV561AV.SYS [490784 2007-02-04] (Logitech Inc.)
R2 pmem; C:\WINDOWS\System32\drivers\pmemnt.sys [7012 2009-01-08] (Microsoft Corporation)
R2 PrivateDisk; C:\Program Files\Lenovo\SafeGuard PrivateDisk\PrivateDiskM.sys [58368 2006-03-14] (Utimaco Safeware AG)
R2 PROCDD; C:\WINDOWS\System32\DRIVERS\PROCDD.SYS [5120 2006-06-19] (Lenovo Group Limited)
R3 rt2870; C:\WINDOWS\System32\DRIVERS\Drt2870.sys [1209408 2011-09-06] (Ralink Technology, Corp.)
S3 RT80x86; C:\WINDOWS\System32\DRIVERS\DRT2860.sys [1329632 2010-04-22] (Ralink Technology, Corp.)
S1 SAVRT; C:\Program Files\Symantec Client Security\Symantec AntiVirus\savrt.sys [324232 2005-02-05] (Symantec Corporation)
R1 SAVRTPEL; C:\Program Files\Symantec Client Security\Symantec AntiVirus\Savrtpel.sys [53896 2005-02-05] (Symantec Corporation)
R1 sensorsview; C:\Program Files\SensorsViewPro43\drv\sensorsview32.sys [14416 2008-07-27] (OpenLibSys.org)
R2 smi2; C:\Program Files\SMI2\smi2.sys [3968 2006-07-15] (IBM Corp.)
S3 SPBBCDrv; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [372832 2005-03-31] (Symantec Corporation)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-30] (Almico Software)
S3 SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [11512 2005-04-06] (Symantec Corporation)
R3 SymEvent; C:\Program Files\Symantec\SYMEVENT.SYS [123200 2005-04-02] (Symantec Corporation)
S3 SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [173208 2005-04-06] (Symantec Corporation)
S3 SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [36984 2005-04-06] (Symantec Corporation)
S3 SYMIDSCO; C:\Program Files\Common Files\Symantec Shared\SymcData\scfidsdefs\20090113.001\SymIDSCo.sys [250224 2008-09-12] (Symantec Corporation)
S3 SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [47192 2005-04-06] (Symantec Corporation)
S3 SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [17976 2005-04-06] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [267192 2005-04-06] (Symantec Corporation)
R0 TPkd; C:\WINDOWS\system32\Drivers\TPkd.sys [90472 2009-05-21] (PACE Anti-Piracy, Inc.)
R3 TVTPktFilter; C:\WINDOWS\System32\DRIVERS\tvtpktfilter.sys [17664 2006-07-15] (Lenovo Group Limited)
R2 zumbus; C:\WINDOWS\System32\DRIVERS\zumbus.sys [41472 2010-09-24] (Microsoft Corporation)
S4 LMIRfsClientNP; No ImagePath
S3 Nbdrv; system32\DRIVERS\nbdrv.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation)

========================== Drivers MD5 =======================

C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS 6ABB91494FE6C59089B9336452AB2EA3
C:\WINDOWS\System32\drivers\ac97intc.sys 0F2D66D5F08EBE2F77BB904288DCF6F0
C:\WINDOWS\System32\DRIVERS\ACPI.sys 8FD99680A539792A30E97944FDAECF17
C:\WINDOWS\system32\Drivers\ACPIEC.sys 9859C0F6936E723E4892D7141B1327D5
C:\WINDOWS\System32\drivers\ADIHdAud.sys 45E7A5E6963FA9D69CB85F50A271E3DF
C:\WINDOWS\system32\DRIVERS\adpu160m.sys 9A11864873DA202C996558B2106B0BBC
C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
C:\WINDOWS\System32\drivers\afd.sys 7E775010EF291DA96AD17CA4B17137D7
C:\WINDOWS\system32\DRIVERS\agp440.sys 08FD04AA961BDC77FB983F328334E3D7
C:\WINDOWS\system32\DRIVERS\agpCPQ.sys 03A7E0922ACFE1B07D5DB2EEB0773063
C:\WINDOWS\system32\DRIVERS\aha154x.sys C23EA9B5F46C7F7910DB3EAB648FF013
C:\WINDOWS\system32\DRIVERS\aic78u2.sys 19DD0FB48B0C18892F70E2E7D61A1529
C:\WINDOWS\system32\DRIVERS\aic78xx.sys B7FE594A7468AA0132DEB03FB8E34326
C:\WINDOWS\system32\drivers\aksfridge.sys C6397472A8788505FB23C85441837978
C:\WINDOWS\system32\DRIVERS\aliide.sys 1140AB9938809700B46BB88E46D72A96
C:\WINDOWS\system32\DRIVERS\alim1541.sys CB08AED0DE2DD889A8A820CD8082D83C
C:\WINDOWS\system32\DRIVERS\amdagp.sys 95B4FB835E28AA1336CEEB07FD5B9398
C:\WINDOWS\system32\DRIVERS\amsint.sys 79F5ADD8D24BD6893F2903A3E2F3FAD6
C:\WINDOWS\system32\ANPD.sys D33B28D9ED695CCF9520D70D825F9D85
C:\WINDOWS\system32\DRIVERS\asc.sys 62D318E9A0C8FC9B780008E724283707
C:\WINDOWS\system32\DRIVERS\asc3350p.sys 69EB0CC7714B32896CCBFD5EDCBEA447
C:\WINDOWS\system32\DRIVERS\asc3550.sys 5D8DE112AA0254B907861E9E9C31D597
C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
C:\WINDOWS\System32\DRIVERS\avgdiskx.sys B4A79941AB02993E43A6C2248CE932FD
C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys 92CA68E3361576420C43FC33C47DECF7
C:\WINDOWS\System32\DRIVERS\avgidshx.sys 4D792ED58F49235704E580C34391CFF5
C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys 18B3FFED808F032E037ED7F54A838053
C:\WINDOWS\System32\DRIVERS\avgldx86.sys 578ECC3D911897B2C5B760EDAF8ED6CA
C:\WINDOWS\System32\DRIVERS\avglogx.sys BD1A440B9F126AFE52978A44952B0018
C:\WINDOWS\System32\DRIVERS\avgmfx86.sys 7DC192EC714342E7C020C7CF42E394D8
C:\WINDOWS\System32\DRIVERS\avgrkx86.sys E6322DF686CE1C59D7797FAEF0732454
C:\WINDOWS\System32\DRIVERS\avgtdix.sys E98603F9D1F412F38ADF2F76053F9E5A
C:\WINDOWS\system32\drivers\avgtpx86.sys 06AEB065AC25A2CFF80E1DF0303EC55B
C:\WINDOWS\System32\DRIVERS\b57xp32.sys 452649BD89CE0775CF3E25EC2A5B348D
C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
C:\WINDOWS\system32\drivers\BVRPMPR5.SYS 248DFA5762DDE38DFDDBBD44149E9D7A
C:\WINDOWS\system32\DRIVERS\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
C:\WINDOWS\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C
C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys F3EC03299634490E97BBCE94CD2954C7
C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
C:\WINDOWS\System32\DRIVERS\cdrom.sys 4B0A100EAF5C49EF3CCA8C641431EACC
C:\WINDOWS\system32\DRIVERS\cmdide.sys E5DCB56C533014ECBC556A8357C929D5
C:\WINDOWS\system32\DRIVERS\cpqarray.sys 3EE529119EED34CD212A215E8C40D4B6
C:\Program Files\SystemRequirementsLab\cpudrv.sys D01F685F8B4598D144B0CCE9FF95D8D5
C:\WINDOWS\system32\DRIVERS\dac2w2k.sys E550E7418984B65A78299D248F0A7F36
C:\WINDOWS\system32\DRIVERS\dac960nt.sys 683789CAA3864EB46125AE86FF677D34
C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
C:\WINDOWS\System32\DLA\DLABOIOM.SYS 35CBC02546335EA41A5D516DA6626C8A
C:\WINDOWS\System32\Drivers\DLACDBHM.SYS EC6AE8BC9F773382D2EED49E4DFDAE2A
C:\WINDOWS\System32\DLA\DLADResN.SYS 19E3DB16DE2BB3DB81B172A78D140B03
C:\WINDOWS\System32\DLA\DLAIFS_M.SYS E4859CA5BD8412A9A60D62067A653522
C:\WINDOWS\System32\DLA\DLAOPIOM.SYS 20C24A3D1CF0825487C93F806625805E
C:\WINDOWS\System32\DLA\DLAPoolM.SYS 8A530DA5DC81954BCF1966813F699B49
C:\WINDOWS\System32\Drivers\DLARTL_N.SYS 0605B66052F82B6F07204DBDB61C13FF
C:\WINDOWS\System32\DLA\DLAUDFAM.SYS 7EDA68AF6A91BF64AF6F301E39928EBF
C:\WINDOWS\System32\DLA\DLAUDF_M.SYS A18423BBC6D92B01FDF3C51E7510EE70
C:\WINDOWS\System32\drivers\dmboot.sys D992FE1274BDE0F84AD826ACAE022A41
C:\WINDOWS\System32\drivers\dmio.sys 7C824CF7BBDE77D95C08005717A95F6F
C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
C:\WINDOWS\system32\DRIVERS\dpti2o.sys 40F3B93B4E5B0126F2F5C0A7A5E22660
C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
C:\WINDOWS\System32\Drivers\DRVMCDB.SYS 48C7008D23DCFCE0D0232F49307EFCED
C:\WINDOWS\System32\Drivers\DRVNDDM.SYS 05467E44A42C777DD1534BB4539B16D1
C:\WINDOWS\System32\DRIVERS\e100b325.sys 3FCA03CBCA11269F973B70FA483C88EF
C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 47CE4E650D91DC095A2FDDB15631A78A
C:\WINDOWS\SYSTEM32\EGATHDRV.SYS 2D0FC676D159525F6CD74C3302C7A61C
C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
C:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
C:\WINDOWS\system32\Drivers\Fips.sys D45926117EB9FA946A6AF572FBE1CAA3
C:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
C:\WINDOWS\System32\drivers\fltmgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A
C:\WINDOWS\System32\DRIVERS\ftdisk.sys 6AC26732762483366C3969C9E4D2259D
C:\WINDOWS\System32\DRIVERS\GEARAspiWDM.sys 185ADA973B5020655CEE342059A86CBB
C:\WINDOWS\System32\giveio.sys 77EBF3E9386DAA51551AF429052D88D0
C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
C:\WINDOWS\system32\drivers\hardlock.sys 3D6F9920F74FF2BD81EBAAAA7247969C
C:\WINDOWS\System32\drivers\HdAudio.sys 2A013E7530BEAB6E569FAA83F517E836
C:\WINDOWS\System32\DRIVERS\HDAudBus.sys 573C7D0A32852B48F3058CFD8026F511
C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
C:\WINDOWS\system32\DRIVERS\hpn.sys B028377DEA0546A5FCFBA928A8AEFAE0
C:\WINDOWS\System32\Drivers\HTTP.sys F6AACF5BCE2893E0C1754AFEB672E5C9
C:\WINDOWS\system32\Drivers\i2omgmt.sys 9368670BD426EBEA5E8B18A62416EC28
C:\WINDOWS\system32\DRIVERS\i2omp.sys F10863BF1CCC290BABD1A09188AE49E0
C:\WINDOWS\System32\DRIVERS\i8042prt.sys 4A0B06AA8943C1E332520F7440C0AA30
C:\WINDOWS\System32\DRIVERS\igxpmp32.sys 85D42B7F0DD406ADF5E3EC7659A279EC
C:\WINDOWS\system32\DRIVERS\iaStor.sys 309C4D86D989FB1FCF64BD30DC81C51B
C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
C:\WINDOWS\system32\DRIVERS\ini910u.sys 4A40E045FAEE58631FD8D91AFC620719
C:\WINDOWS\system32\DRIVERS\intelide.sys B5466A9250342A7AA0CD1FBA13420678
C:\WINDOWS\System32\DRIVERS\intelppm.sys 8C953733D8F36EB2133F5BB58808B66B
C:\WINDOWS\System32\drivers\ip6fw.sys 3BB22519A194418D5FEC05D800A19AD0
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
C:\WINDOWS\System32\DRIVERS\isapnp.sys 05A299EC56E52649B1CF2FC52D20F2D7
C:\WINDOWS\System32\drivers\iviaspi.sys F59C3569A2F2C464BB78CB1BDCDCA55E
C:\WINDOWS\System32\DRIVERS\kbdclass.sys 463C1EC80CD17420A542B7F36A36F128
C:\WINDOWS\System32\DRIVERS\kbdhid.sys 9EF487A186DEA361AA06913A75B3FA99
C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
C:\WINDOWS\system32\Drivers\KSecDD.sys 1705745D900DABF2D89F90EBADDC7517
C:\Program Files\LogMeIn\x86\RaInfo.sys 26E3BEC8F2F0CFAF9FFE4C7AEF1BC049
C:\WINDOWS\System32\DRIVERS\lmimirr.sys 4477689E2D8AE6B78BA34C9AF4CC1ED1
C:\WINDOWS\system32\drivers\LMIRfsDriver.sys 3FAA563DDF853320F90259D455A01D79
C:\WINDOWS\System32\drivers\LVUSBSta.sys 64BC29C3A0388BFC580BB8B1346F7659
C:\WINDOWS\System32\DRIVERS\MAudioFastTrackPro.sys 3BFD7E2E64E2A5013F61B9287F93CFB1
C:\WINDOWS\system32\drivers\mbam.sys 4470E3C1E0C3378E4CAB137893C12C3A
C:\WINDOWS\system32\mbmiodrvr.sys 290FB01F7F51EFF0960599404A09F8D6
C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
C:\WINDOWS\system32\Drivers\Modem.sys DFCBAD3CEC1C5F964962AE10E0BCC8E1
C:\WINDOWS\System32\DRIVERS\mouclass.sys 35C9E97194C8CFB8430125F8DBC34D04
C:\WINDOWS\System32\DRIVERS\mouhid.sys B1C303E17FB9D46E87A98E4BA6769685
C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
C:\WINDOWS\system32\DRIVERS\mraid35x.sys 3F4BB95E5A44F3BE34824E8E7CAF0737
C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 60AE98742484E7AB80C3C1450E708148
C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
C:\WINDOWS\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D
C:\WINDOWS\system32\Drivers\Mup.sys 2F625D11385B1A94360BFC70AAEFDEE1
C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB
C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090115.004\NAVENG.SYS DC129D50E1EC3721C2F649754E465E4F
C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090115.004\NAVEX15.SYS 6FCBC09C16F0A74822DC9605A8B35738
C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
C:\WINDOWS\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97
C:\WINDOWS\System32\DRIVERS\ndistapi.sys 1AB3D00C991AB086E69DB84B6C0ED78F
C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
C:\WINDOWS\system32\Drivers\NDProxy.sys 6215023940CFD3702B46ABC304E1D45A
C:\WINDOWS\System32\DRIVERS\netaapl.sys 9213AA35BCA94EB79D366DA254E4BDF5
C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
C:\WINDOWS\System32\DRIVERS\nv4_mini.sys 2B298519EDBFCF451D43E0F1E8F1006D
C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
C:\WINDOWS\System32\DRIVERS\parport.sys 5575FAF8F97CE5E713D108C2A58D7C7C
C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
C:\WINDOWS\system32\Drivers\ParVdm.sys 70E98B3FD8E963A6A46A2E6247E0BEA1
C:\WINDOWS\System32\DRIVERS\pci.sys A219903CCF74233761D92BEF471A07B1
C:\WINDOWS\System32\DRIVERS\pciide.sys CCF5F451BB1A5A2A522A76E670000FF0
C:\WINDOWS\system32\Drivers\Pcmcia.sys 9E89EF60E9EE05E3F2EEF2DA7397F1C1
C:\WINDOWS\System32\DRIVERS\pelmouse.sys 0067A624F12C7BE0892AA47780676A09
C:\WINDOWS\System32\DRIVERS\pelusblf.sys 8E32F01CBD0F938EA815EB6DAB3EB4D8
C:\WINDOWS\system32\DRIVERS\perc2.sys 6C14B9C19BA84F73D3A86DBA11133101
C:\WINDOWS\system32\DRIVERS\perc2hib.sys F50F7C27F131AFE7BEBA13E14A3B9416
C:\WINDOWS\System32\DRIVERS\LV561AV.SYS 8A2D1F929D4FD287543663B1BEB7023F
C:\WINDOWS\System32\drivers\pmemnt.sys DEDEF40E1D05842639491365CB2C069E
C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
C:\Program Files\Lenovo\SafeGuard PrivateDisk\PrivateDiskM.sys EBE579425CCB8377BFC7C0B50C05EB56
C:\WINDOWS\System32\DRIVERS\PROCDD.SYS 6F9E6E874FD74EE6DD0BBECDE9D3F795
C:\WINDOWS\System32\DRIVERS\processr.sys A32BEBAF723557681BFC6BD93E98BD26
C:\WINDOWS\System32\DRIVERS\psadd.sys 651D3ABC1D82D61B6CFB40CB947B3DB3
C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
C:\WINDOWS\System32\Drivers\PxHelp20.sys E42E3433DBB4CFFE8FDD91EAB29AEA8E
C:\WINDOWS\system32\DRIVERS\ql1080.sys 0A63FB54039EB5662433CABA3B26DBA7
C:\WINDOWS\system32\DRIVERS\ql10wnt.sys 6503449E1D43A0FF0201AD5CB1B8C706
C:\WINDOWS\system32\DRIVERS\ql12160.sys 156ED0EF20C15114CA097A34A30D8A01
C:\WINDOWS\system32\DRIVERS\ql1240.sys 70F016BEBDE6D29E864C1230A07CC5E6
C:\WINDOWS\system32\DRIVERS\ql1280.sys 907F0AEEA6BC451011611E732BD31FCF
C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
C:\WINDOWS\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1
C:\WINDOWS\system32\Drivers\RDPWD.sys 6728E45B66F93C08F11DE2E316FC70DD
C:\WINDOWS\System32\DRIVERS\redbook.sys F828DD7E1419B6653894A8F97A0094C5
C:\WINDOWS\System32\DRIVERS\Drt2870.sys EB9ACD258C991CB0E65DF64B97683DC7
C:\WINDOWS\System32\DRIVERS\DRT2860.sys D60ED194C180B35C389E78FD41711ECA
C:\Program Files\Symantec Client Security\Symantec AntiVirus\savrt.sys A00D5AA4748A1002590F08AA00FC660D
C:\Program Files\Symantec Client Security\Symantec AntiVirus\Savrtpel.sys 1E805005583BE1C1568A3FCE259C81E3
C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit
C:\Program Files\SensorsViewPro43\drv\sensorsview32.sys 845AF1BA23C8D5E64DEF61BCC441604C
C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
C:\WINDOWS\System32\DRIVERS\serial.sys CCA207A8896D4C6A0C9CE29A4AE411A7
C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
C:\WINDOWS\system32\DRIVERS\sisagp.sys 6B33D0EBD30DB32E27D1D78FE946A754
C:\WINDOWS\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14
C:\Program Files\SMI2\smi2.sys 3BA9D0C8A0FBD9FB4029B6CD87C8CE0B
C:\WINDOWS\system32\DRIVERS\sparrow.sys 83C0F71F86D3BDAF915685F3D568B20E
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys C30FA11923892A4DBD1C747DB8492E8F
C:\WINDOWS\System32\speedfan.sys DC8D2952FB6FFBAEC67BD1B93A34DF11
C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
C:\WINDOWS\system32\DRIVERS\sr.sys 76BB022C2FB6902FD5BDD4F78FC13A5D
C:\WINDOWS\System32\DRIVERS\srv.sys 3BB03F2BA89D2BE417206C373D2AF17C
C:\WINDOWS\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2
C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
C:\WINDOWS\system32\DRIVERS\symc810.sys 1FF3217614018630D0A6758630FC698C
C:\WINDOWS\system32\DRIVERS\symc8xx.sys 070E001D95CF725186EF8B20335F933C
C:\WINDOWS\System32\Drivers\SYMDNS.SYS 1F0A3F93FECBA6E873E75AC34538708B
C:\Program Files\Symantec\SYMEVENT.SYS B3F8B9EAB2EBE205C0FE053FBA951D8C
C:\WINDOWS\System32\Drivers\SYMFW.SYS CA212638C07F7A1736667319589F416E
C:\WINDOWS\System32\Drivers\SYMIDS.SYS 83A0415AB669AFE9F2B7FCCC52F23153
C:\Program Files\Common Files\Symantec Shared\SymcData\scfidsdefs\20090113.001\SymIDSCo.sys C87748B4A7541B81C9564ED5B3CF8697
C:\WINDOWS\System32\Drivers\SYMNDIS.SYS 2A8EBB694D702D91D8046B31C3DA2220
C:\WINDOWS\System32\Drivers\SYMREDRV.SYS 7C73B65F1BDFAB9052A5076C0CA622DE
C:\WINDOWS\System32\Drivers\SYMTDI.SYS B4562798891DCA27ED67CA07ACBADBD9
C:\WINDOWS\system32\DRIVERS\sym_hi.sys 80AC1C4ABBE2DF3B738BF15517A51F2C
C:\WINDOWS\system32\DRIVERS\sym_u3.sys BF4FAB949A382A8E105F46EBB4937058
C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
C:\WINDOWS\System32\DRIVERS\tcpip.sys 9AEFA14BD6B182D61E3119FA5F436D3D
C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
C:\WINDOWS\system32\DRIVERS\toside.sys F2790F6AF01321B172AA62F8E1E187D9
C:\WINDOWS\system32\Drivers\TPkd.sys 5815AE5EF8519066F19E575D67F6F191
C:\WINDOWS\system32\drivers\tvtfilter.sys DD957007DF98AECFFAAA2656D4B981E4
C:\WINDOWS\System32\DRIVERS\tvtpktfilter.sys 0727CCE3FF1A4446F4A1D507361567AB
C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
C:\WINDOWS\system32\DRIVERS\ultra.sys 1B698A51CD528D8DA4FFAED66DFC51B9
C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
C:\WINDOWS\System32\Drivers\usbaapl.sys 6E421CCC57059B0186C6259CA3B6DFC9
C:\WINDOWS\System32\drivers\usbaudio.sys E919708DB44ED8543A7C017953148330
C:\WINDOWS\System32\DRIVERS\usbccgp.sys 173F317CE0DB8E21322E71B7E60A27E8
C:\WINDOWS\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7
C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
C:\WINDOWS\System32\DRIVERS\usbscan.sys A0B8CF9DEB1184FBDD20784A58FA75D4
C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
C:\WINDOWS\System32\DRIVERS\usbuhci.sys 26496F9DEE2D787FC3E61AD54821FFE6
C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
C:\WINDOWS\system32\DRIVERS\viaagp.sys 754292CE5848B3738281B4F3607EAEF4
C:\WINDOWS\system32\DRIVERS\viaide.sys 3B3EFCDA263B8AC14FDF9CBDD0791B2E
C:\WINDOWS\system32\Drivers\VolSnap.sys 4C8FCB5CC53AAB716D810740FE59D025
C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
C:\WINDOWS\System32\DRIVERS\wdcsam.sys D6EFAF429FD30C5DF613D220E344CCE7
C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647
C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
C:\WINDOWS\System32\DRIVERS\wpdusb.sys C60DC16D4E406810FAD54B98DC92D5EC
C:\WINDOWS\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8
C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78
C:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311
C:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B
C:\WINDOWS\System32\DRIVERS\zumbus.sys 337B9607F041B77824411750069AFF2D

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-23 04:00 - 2014-04-23 04:00 - 00050907 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\FRST.txt
2014-04-23 03:59 - 2014-04-23 04:00 - 00000000 ____D () C:\FRST
2014-04-23 03:58 - 2014-04-23 03:58 - 01048064 _____ (Farbar) C:\Documents and Settings\Mr. Bojangles\Desktop\FRST.exe
2014-04-23 03:45 - 2014-04-23 03:47 - 00000099 _____ () C:\tvttemp.txt
2014-04-17 01:14 - 2014-04-17 01:14 - 00075592 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-04-17 01:14 - 2014-04-17 01:14 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Application Data\M-Audio
2014-04-17 01:14 - 2014-04-17 01:14 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\M-Audio
2014-04-17 01:13 - 2014-04-17 01:13 - 00000000 ____D () C:\Program Files\M-Audio
2014-04-17 01:13 - 2014-04-17 01:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVID
2014-04-14 23:46 - 2014-04-14 23:46 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Application Data\AVG Secure Search
2014-04-14 19:07 - 2014-04-14 19:07 - 00000745 _____ () C:\Documents and Settings\All Users\Desktop\SensorsView Pro 4.3.lnk
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Program Files\SensorsViewPro43
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\My Documents\Beabeada
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\STV Software
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\SensorsView Pro 4.3
2014-04-14 18:50 - 2014-04-14 18:52 - 00000000 ____D () C:\Program Files\Motherboard Monitor 5
2014-04-14 18:50 - 2014-04-14 18:52 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\MBM 5
2014-04-14 18:50 - 2014-04-14 18:52 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\MBM 5
2014-04-14 18:50 - 2004-04-10 09:42 - 00002944 _____ (cansoft@livewiredev.com) C:\WINDOWS\system32\mbmiodrvr.sys
2014-04-14 18:16 - 2006-08-14 14:37 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxres.dll
2014-04-14 18:11 - 2014-04-14 18:11 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-04-14 18:11 - 2006-08-24 13:05 - 00397312 _____ (Intel® Corporation) C:\WINDOWS\system32\igxpun.exe
2014-04-14 18:11 - 2006-08-14 16:30 - 00022416 _____ () C:\WINDOWS\system32\igxpxs32.vp
2014-04-14 18:11 - 2006-08-14 16:24 - 00192512 _____ () C:\WINDOWS\system32\igfxCoIn_v4670.dll
2014-04-14 18:11 - 2006-08-14 16:01 - 02076160 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdx32.dll
2014-04-14 18:11 - 2006-08-14 16:00 - 01109568 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igxpmp32.sys
2014-04-14 18:11 - 2006-08-14 15:59 - 01304320 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdv32.dll
2014-04-14 18:11 - 2006-08-14 15:59 - 00140288 _____ (Intel Corporation) C:\WINDOWS\system32\igxpgd32.dll
2014-04-14 18:11 - 2006-08-14 15:59 - 00048128 _____ (Intel Corporation) C:\WINDOWS\system32\igxprd32.dll
2014-04-14 18:11 - 2006-08-14 15:03 - 01208320 _____ (Intel Corporation) C:\WINDOWS\system32\ig4dev32.dll
2014-04-14 18:11 - 2006-08-14 15:00 - 02416640 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd32.dll
2014-04-14 18:11 - 2006-08-14 14:41 - 00450560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcfg.exe
2014-04-14 18:11 - 2006-08-14 14:41 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00176128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresp.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00167936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00167936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00159744 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00147456 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00143360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00139264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00114688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00114688 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00114688 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2014-04-14 18:11 - 2006-08-14 14:41 - 00110592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2014-04-14 18:11 - 2006-08-14 14:41 - 00098304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00098304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2014-04-14 18:11 - 2006-08-14 14:41 - 00023552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2014-04-14 18:11 - 2006-08-14 14:39 - 00098304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2014-04-14 18:11 - 2006-08-14 14:39 - 00094208 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2014-04-14 18:11 - 2006-08-14 14:38 - 03276800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2014-04-14 18:11 - 2006-08-14 14:38 - 00098304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2014-04-14 18:11 - 2006-08-14 14:38 - 00094208 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2014-04-14 18:11 - 2006-08-14 14:37 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2014-04-14 18:11 - 2006-08-14 14:37 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2014-04-14 18:11 - 2006-08-14 14:37 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2014-04-14 18:11 - 2006-08-14 14:37 - 00155648 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2014-04-14 18:11 - 2006-08-14 14:37 - 00081920 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2014-04-14 18:11 - 2006-08-14 14:37 - 00043520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2014-04-14 18:11 - 2006-08-14 14:27 - 00524850 _____ () C:\WINDOWS\system32\igxpxa32.cpa
2014-04-14 18:11 - 2006-08-14 14:27 - 00058704 _____ () C:\WINDOWS\system32\igxpxk32.vp
2014-04-14 18:11 - 2006-08-14 14:27 - 00000929 _____ () C:\WINDOWS\system32\igxpxa32.vp
2014-04-14 18:11 - 2006-04-21 10:13 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\difx32.dll
2014-04-14 17:27 - 2014-04-14 17:27 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Desktop\1234
2014-04-14 17:01 - 2014-04-14 17:01 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\CPUID CPU-Z.lnk
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Program Files\iTunes
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Program Files\iPod
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-04-14 16:44 - 2014-04-21 21:30 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-04-14 16:44 - 2014-04-14 16:44 - 00001830 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Apple Software Update.lnk
2014-04-14 16:44 - 2014-04-14 16:44 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-04-14 16:43 - 2013-08-06 15:13 - 00018944 _____ (Apple Inc.) C:\WINDOWS\system32\Drivers\netaapl.sys
2014-04-14 16:43 - 2013-03-18 16:51 - 06112864 _____ (Apple, Inc.) C:\WINDOWS\system32\usbaaplrc.dll
2014-04-14 16:43 - 2013-03-18 16:51 - 00045056 _____ (Apple, Inc.) C:\WINDOWS\system32\Drivers\usbaapl.sys
2014-04-14 16:43 - 2012-09-11 13:39 - 01461992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdfcoinstaller01009.dll
2014-04-14 16:42 - 2014-04-14 16:45 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-04-14 16:42 - 2014-04-14 16:42 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-14 15:32 - 2014-04-14 15:35 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Apple Computer
2014-04-14 15:32 - 2014-04-14 15:32 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\AVG Secure Search
2014-04-14 15:31 - 2014-04-14 15:35 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Apple Computer
2014-04-14 15:31 - 2014-04-14 15:31 - 00001820 _____ () C:\Documents and Settings\test\Desktop\Google Chrome.lnk
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\LogMeIn
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Aimersoft
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVG2014
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVG Secure Search
2014-04-14 15:30 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Lenovo
2014-04-14 15:30 - 2014-04-14 15:30 - 00000795 _____ () C:\Documents and Settings\test\Start Menu\Programs\Windows Media Player.lnk
2014-04-14 15:30 - 2014-04-14 15:30 - 00000789 _____ () C:\Documents and Settings\test\Desktop\Windows Media Player.lnk
2014-04-14 15:30 - 2014-04-14 15:30 - 00000643 _____ () C:\WINDOWS\wmsetup.log
2014-04-14 15:30 - 2014-04-14 15:30 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Avg2014
2014-04-14 15:30 - 2014-04-14 15:30 - 00000000 ____D () C:\Documents and Settings\test
2014-04-14 15:30 - 2013-09-18 09:32 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Avg2013
2014-04-14 15:30 - 2013-05-10 09:07 - 00000000 ____D () C:\Documents and Settings\test\Application Data\TuneUp Software
2014-04-14 15:30 - 2010-07-10 13:28 - 00000000 ___RD () C:\Documents and Settings\test\Start Menu\Programs\Accessories
2014-04-14 15:30 - 2010-07-10 13:28 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}
2014-04-14 15:30 - 2010-04-06 19:50 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Adobe
2014-04-14 15:30 - 2010-04-06 19:48 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Macromedia
2014-04-14 15:30 - 2009-01-08 15:02 - 00000178 ___SH () C:\Documents and Settings\test\ntuser.ini
2014-04-14 15:30 - 2009-01-08 14:56 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Seven Zip
2014-04-14 15:30 - 2009-01-08 14:53 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Microsoft Help
2014-04-14 15:30 - 2009-01-08 14:52 - 00000000 ____D () C:\Documents and Settings\test\Application Data\ThinkVantage
2014-04-14 15:30 - 2009-01-08 14:43 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Symantec
2014-04-14 15:30 - 2009-01-08 14:42 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Symantec
2014-04-14 15:30 - 2006-04-30 17:13 - 00001600 _____ () C:\Documents and Settings\test\Start Menu\Programs\Remote Assistance.lnk
2014-04-14 14:54 - 2014-04-14 14:54 - 00000000 ____D () C:\Program Files\QuickTime
2014-04-14 14:54 - 2014-04-14 14:54 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
2014-04-14 14:37 - 2014-04-14 14:37 - 00000000 ____D () C:\Program Files\Broadcom
2014-04-14 14:35 - 2014-04-14 14:35 - 00000000 ____D () C:\Program Files\Sonic
2014-04-14 14:35 - 2014-04-14 14:35 - 00000000 ____D () C:\Program Files\Common Files\SureThing Shared
2014-04-14 14:34 - 2014-04-14 14:34 - 00001648 _____ () C:\Documents and Settings\All Users\Desktop\ThinkVantage Productivity Center.lnk
2014-04-14 14:32 - 2014-04-14 14:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Lenovo Mouse Suite
2014-04-14 14:32 - 2013-03-26 07:47 - 00010240 ____N (TPMX Electronics Ltd.) C:\WINDOWS\system32\Drivers\pvendrlf.SYS
2014-04-14 14:32 - 2013-03-26 07:46 - 00026624 ____N (TPMX Electronics Ltd.) C:\WINDOWS\system32\Drivers\phidmice.SYS
2014-04-14 14:32 - 2013-03-26 07:39 - 00019456 ____N (TPMX Electronics Ltd.) C:\WINDOWS\system32\Drivers\pmouself.SYS
2014-04-14 14:32 - 2012-06-19 11:07 - 00018944 ____N (Primax Electronics Ltd.) C:\WINDOWS\system32\Drivers\PELMOUBT.SYS
2014-04-14 14:32 - 2012-06-19 11:06 - 00013312 ____N (Primax Electronics Ltd.) C:\WINDOWS\system32\Drivers\PELBTM.SYS
2014-04-14 14:32 - 2009-11-02 15:00 - 00010240 _____ (TPMX Electronics Ltd.) C:\WINDOWS\system32\Drivers\PELVENDR.SYS
2014-04-14 14:29 - 2014-04-14 14:30 - 00001097 _____ () C:\WINDOWS\xpsp1hfm.log
2014-04-14 14:08 - 2014-04-14 14:08 - 00000705 _____ () C:\WINDOWS\SMinstall.log
2014-04-14 12:26 - 2007-02-19 15:56 - 00021376 _____ (Lenovo (United States) Inc.) C:\WINDOWS\system32\Drivers\psadd.sys
2014-04-14 12:16 - 2014-04-14 12:18 - 00258448 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\hendrix com.veg.sfk
2014-04-14 12:16 - 2014-04-14 12:16 - 66145728 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\hendrix com.veg.sfap0
2014-04-14 04:14 - 2014-04-14 04:14 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Desktop\drv
2014-04-14 04:06 - 2014-04-14 04:06 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\Oracle
2014-04-14 04:04 - 2014-04-14 04:03 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-04-14 04:03 - 2014-04-14 04:03 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-04-14 04:03 - 2014-04-14 04:03 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-04-14 04:03 - 2014-04-14 04:03 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-04-14 04:03 - 2014-04-14 04:03 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2014-04-14 03:43 - 2014-04-14 03:43 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\AMD Gaming Evolved
2014-04-14 03:43 - 2014-04-14 03:43 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\library_dir
2014-04-14 03:42 - 2014-04-14 12:11 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\Raptr
2014-04-14 03:41 - 2014-04-14 03:43 - 00000000 ____D () C:\Program Files\Raptr
2014-04-14 03:08 - 2014-04-14 03:08 - 00000872 _____ () C:\WINDOWS\KB896256.log
2014-04-14 02:08 - 2014-04-14 18:45 - 00000000 ____D () C:\Program Files\SpeedFan
2014-04-14 02:08 - 2014-04-14 02:08 - 00000689 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\SpeedFan.lnk
2014-04-14 02:08 - 2014-04-14 02:08 - 00000045 _____ () C:\WINDOWS\system32\initdebug.nfo
2014-04-14 02:08 - 2014-04-14 02:08 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\SpeedFan
2014-04-09 08:15 - 2014-04-09 08:15 - 416816732 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\Councillor Viki Howard Mixdown 1.wav
2014-04-09 08:15 - 2014-04-09 08:15 - 00407068 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\Councillor Viki Howard Mixdown 1.pkf
2014-04-01 21:08 - 2014-04-01 21:08 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-01 19:00 - 2014-04-01 19:00 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
2014-03-25 07:53 - 2014-03-25 07:53 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\DropboxMaster
2014-03-25 06:32 - 2014-04-22 08:21 - 00003284 _____ () C:\WINDOWS\system32\ANIWZCS{7195727A-5667-4970-8430-3FFFD09D0F69}
2014-03-25 06:32 - 2014-03-25 06:32 - 00001642 _____ () C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2014-03-25 06:32 - 2014-03-25 06:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\D-Link
2014-03-25 06:31 - 2014-04-22 08:21 - 00000014 _____ () C:\WINDOWS\system32\ANIWZCSUSERNAME{7195727A-5667-4970-8430-3FFFD09D0F69}
2014-03-25 06:29 - 2011-09-06 09:33 - 01209408 _____ (Ralink Technology, Corp.) C:\WINDOWS\system32\Drivers\Drt2870.sys

==================== One Month Modified Files and Folders =======

2014-04-23 04:00 - 2014-04-23 04:00 - 00050907 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\FRST.txt
2014-04-23 04:00 - 2014-04-23 03:59 - 00000000 ____D () C:\FRST
2014-04-23 03:58 - 2014-04-23 03:58 - 01048064 _____ (Farbar) C:\Documents and Settings\Mr. Bojangles\Desktop\FRST.exe
2014-04-23 03:58 - 2009-01-22 11:46 - 00000438 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{B0CC9A6F-834D-47FF-9C2A-B9379DCECD3B}.job
2014-04-23 03:47 - 2014-04-23 03:45 - 00000099 _____ () C:\tvttemp.txt
2014-04-23 03:41 - 2009-10-06 00:43 - 00000900 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-23 03:36 - 2009-09-12 15:12 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\vlc
2014-04-23 03:18 - 2006-04-30 17:20 - 00032068 _____ () C:\WINDOWS\SchedLgU.Txt
2014-04-23 03:10 - 2012-04-22 16:25 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-04-23 02:52 - 2013-03-15 14:50 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\LogMeIn
2014-04-23 02:00 - 2012-02-12 16:08 - 00000358 _____ () C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-MRBOJANGLES-Mr. Bojangles.job
2014-04-23 02:00 - 2009-01-17 16:45 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\Adobe
2014-04-22 22:21 - 2009-06-02 03:12 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-04-22 21:26 - 2011-03-06 16:33 - 00000486 _____ () C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job
2014-04-22 18:24 - 2013-04-16 22:57 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-04-22 13:41 - 2009-10-06 00:43 - 00000896 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-22 08:25 - 2012-05-02 00:01 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\Dropbox
2014-04-22 08:23 - 2014-02-12 05:30 - 00000742 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\LogMeIn Client.lnk
2014-04-22 08:23 - 2006-04-30 16:56 - 00002278 ____C () C:\WINDOWS\system32\wpa.dbl
2014-04-22 08:21 - 2014-03-25 06:32 - 00003284 _____ () C:\WINDOWS\system32\ANIWZCS{7195727A-5667-4970-8430-3FFFD09D0F69}
2014-04-22 08:21 - 2014-03-25 06:31 - 00000014 _____ () C:\WINDOWS\system32\ANIWZCSUSERNAME{7195727A-5667-4970-8430-3FFFD09D0F69}
2014-04-22 08:20 - 2009-01-09 06:24 - 00003216 ____C () C:\WINDOWS\system32\encobject.dat
2014-04-22 08:20 - 2006-04-30 17:20 - 00000006 ___HC () C:\WINDOWS\Tasks\SA.DAT
2014-04-22 08:20 - 2006-04-30 10:07 - 00000159 ____C () C:\WINDOWS\wiadebug.log
2014-04-22 08:20 - 2006-04-30 10:07 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-04-22 08:19 - 2009-07-11 16:16 - 00094934 _____ () C:\aaw7boot.log
2014-04-22 08:17 - 2009-01-09 07:53 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\uTorrent
2014-04-21 21:30 - 2014-04-14 16:44 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2014-04-21 15:45 - 2014-01-02 19:20 - 00337716 _____ () C:\WINDOWS\setupapi.log
2014-04-20 06:17 - 2009-01-08 14:47 - 00000000 ____D () C:\SWSHARE
2014-04-20 06:16 - 2009-01-08 14:47 - 00005427 _____ (IBM Corporation) C:\WINDOWS\system32\EGATHDRV.SYS
2014-04-19 18:08 - 2006-04-30 17:11 - 01574579 _____ () C:\WINDOWS\WindowsUpdate.log
2014-04-19 18:01 - 2009-01-08 15:17 - 00000178 ___SH () C:\Documents and Settings\Mr. Bojangles\ntuser.ini
2014-04-19 18:01 - 2009-01-08 15:17 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles
2014-04-19 01:56 - 2014-02-12 05:30 - 00000726 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\LogMeIn Control Panel.lnk
2014-04-19 01:56 - 2013-03-15 14:50 - 00001024 _____ () C:\.rnd
2014-04-19 01:56 - 2013-03-15 14:50 - 00000000 ____D () C:\Program Files\LogMeIn
2014-04-19 01:55 - 2013-03-15 14:50 - 00086888 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIRfsClientNP.dll
2014-04-19 01:55 - 2013-03-15 14:50 - 00085832 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIinit.dll
2014-04-19 01:55 - 2013-03-15 14:50 - 00031560 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIport.dll
2014-04-17 16:00 - 2013-12-10 21:48 - 00001082 _____ () C:\WINDOWS\setupact.log
2014-04-17 01:14 - 2014-04-17 01:14 - 00075592 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-04-17 01:14 - 2014-04-17 01:14 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Application Data\M-Audio
2014-04-17 01:14 - 2014-04-17 01:14 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\M-Audio
2014-04-17 01:14 - 2009-01-08 14:31 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-04-17 01:13 - 2014-04-17 01:13 - 00000000 ____D () C:\Program Files\M-Audio
2014-04-17 01:13 - 2014-04-17 01:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVID
2014-04-16 23:33 - 2009-01-09 17:17 - 00203264 _____ () C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-16 23:18 - 2012-03-26 06:28 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Desktop\unused icons (keep this folder)
2014-04-14 23:46 - 2014-04-14 23:46 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Application Data\AVG Secure Search
2014-04-14 19:07 - 2014-04-14 19:07 - 00000745 _____ () C:\Documents and Settings\All Users\Desktop\SensorsView Pro 4.3.lnk
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Program Files\SensorsViewPro43
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\My Documents\Beabeada
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\STV Software
2014-04-14 19:07 - 2014-04-14 19:07 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\SensorsView Pro 4.3
2014-04-14 18:52 - 2014-04-14 18:50 - 00000000 ____D () C:\Program Files\Motherboard Monitor 5
2014-04-14 18:52 - 2014-04-14 18:50 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\MBM 5
2014-04-14 18:52 - 2014-04-14 18:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\MBM 5
2014-04-14 18:45 - 2014-04-14 02:08 - 00000000 ____D () C:\Program Files\SpeedFan
2014-04-14 18:11 - 2014-04-14 18:11 - 00000000 ____D () C:\WINDOWS\system32\Lang
2014-04-14 17:27 - 2014-04-14 17:27 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Desktop\1234
2014-04-14 17:01 - 2014-04-14 17:01 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\CPUID CPU-Z.lnk
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Program Files\iTunes
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Program Files\iPod
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
2014-04-14 16:45 - 2014-04-14 16:45 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-04-14 16:45 - 2014-04-14 16:42 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-04-14 16:44 - 2014-04-14 16:44 - 00001830 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Apple Software Update.lnk
2014-04-14 16:44 - 2014-04-14 16:44 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-04-14 16:42 - 2014-04-14 16:42 - 00000000 ____D () C:\Program Files\Bonjour
2014-04-14 16:42 - 2009-03-04 15:00 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Apple
2014-04-14 16:42 - 2009-01-08 14:36 - 00000000 ____D () C:\Program Files\Java
2014-04-14 15:35 - 2014-04-14 15:32 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Apple Computer
2014-04-14 15:35 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Apple Computer
2014-04-14 15:32 - 2014-04-14 15:32 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\AVG Secure Search
2014-04-14 15:31 - 2014-04-14 15:31 - 00001820 _____ () C:\Documents and Settings\test\Desktop\Google Chrome.lnk
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\LogMeIn
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Aimersoft
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVG2014
2014-04-14 15:31 - 2014-04-14 15:31 - 00000000 ____D () C:\Documents and Settings\test\Application Data\AVG Secure Search
2014-04-14 15:31 - 2014-04-14 15:30 - 00000000 ____D () C:\Documents and Settings\test\Application Data\Lenovo
2014-04-14 15:30 - 2014-04-14 15:30 - 00000795 _____ () C:\Documents and Settings\test\Start Menu\Programs\Windows Media Player.lnk
2014-04-14 15:30 - 2014-04-14 15:30 - 00000789 _____ () C:\Documents and Settings\test\Desktop\Windows Media Player.lnk
2014-04-14 15:30 - 2014-04-14 15:30 - 00000643 _____ () C:\WINDOWS\wmsetup.log
2014-04-14 15:30 - 2014-04-14 15:30 - 00000000 ____D () C:\Documents and Settings\test\Local Settings\Application Data\Avg2014
2014-04-14 15:30 - 2014-04-14 15:30 - 00000000 ____D () C:\Documents and Settings\test
2014-04-14 15:30 - 2009-01-08 19:23 - 00000785 _____ () C:\Documents and Settings\All Users\Application Data\tvt_userinfo.ini
2014-04-14 15:30 - 2006-04-30 16:56 - 00000547 _____ () C:\WINDOWS\win.ini
2014-04-14 14:54 - 2014-04-14 14:54 - 00000000 ____D () C:\Program Files\QuickTime
2014-04-14 14:54 - 2014-04-14 14:54 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\QuickTime
2014-04-14 14:44 - 2009-01-08 15:17 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\Lenovo
2014-04-14 14:37 - 2014-04-14 14:37 - 00000000 ____D () C:\Program Files\Broadcom
2014-04-14 14:35 - 2014-04-14 14:35 - 00000000 ____D () C:\Program Files\Sonic
2014-04-14 14:35 - 2014-04-14 14:35 - 00000000 ____D () C:\Program Files\Common Files\SureThing Shared
2014-04-14 14:35 - 2009-01-08 14:39 - 00004169 _____ () C:\WINDOWS\wininit.ini
2014-04-14 14:35 - 2009-01-08 14:37 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Multimedia Center for Think Offerings
2014-04-14 14:34 - 2014-04-14 14:34 - 00001648 _____ () C:\Documents and Settings\All Users\Desktop\ThinkVantage Productivity Center.lnk
2014-04-14 14:34 - 2009-01-08 14:36 - 00001648 _____ () C:\Documents and Settings\All Users\Start Menu\ThinkVantage Productivity Center.lnk
2014-04-14 14:34 - 2009-01-08 14:36 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Lenovo
2014-04-14 14:32 - 2014-04-14 14:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Lenovo Mouse Suite
2014-04-14 14:32 - 2009-01-08 14:35 - 00000000 ____D () C:\Program Files\Lenovo
2014-04-14 14:32 - 2006-04-30 02:57 - 00000000 ____D () C:\WINDOWS\Help
2014-04-14 14:30 - 2014-04-14 14:29 - 00001097 _____ () C:\WINDOWS\xpsp1hfm.log
2014-04-14 14:30 - 2009-01-08 14:39 - 00000000 ____D () C:\Program Files\Common Files\Sonic Shared
2014-04-14 14:08 - 2014-04-14 14:08 - 00000705 _____ () C:\WINDOWS\SMinstall.log
2014-04-14 12:27 - 2009-01-08 14:40 - 00000000 ____D () C:\Program Files\Common Files\Lenovo
2014-04-14 12:27 - 2009-01-08 14:36 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\ThinkVantage
2014-04-14 12:18 - 2014-04-14 12:16 - 00258448 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\hendrix com.veg.sfk
2014-04-14 12:18 - 2013-04-16 02:26 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\My Documents\Sony Media Libraries
2014-04-14 12:16 - 2014-04-14 12:16 - 66145728 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\hendrix com.veg.sfap0
2014-04-14 12:11 - 2014-04-14 03:42 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\Raptr
2014-04-14 04:14 - 2014-04-14 04:14 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Desktop\drv
2014-04-14 04:06 - 2014-04-14 04:06 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\Oracle
2014-04-14 04:05 - 2009-07-07 15:35 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\SystemRequirementsLab
2014-04-14 04:04 - 2009-01-08 14:36 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-14 04:03 - 2014-04-14 04:04 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2014-04-14 04:03 - 2014-04-14 04:03 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2014-04-14 04:03 - 2014-04-14 04:03 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2014-04-14 04:03 - 2014-04-14 04:03 - 00094632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2014-04-14 04:03 - 2014-04-14 04:03 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Java
2014-04-14 04:03 - 2013-06-22 18:16 - 00145408 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl
2014-04-14 03:43 - 2014-04-14 03:43 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\AMD Gaming Evolved
2014-04-14 03:43 - 2014-04-14 03:43 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\library_dir
2014-04-14 03:43 - 2014-04-14 03:41 - 00000000 ____D () C:\Program Files\Raptr
2014-04-14 03:08 - 2014-04-14 03:08 - 00000872 _____ () C:\WINDOWS\KB896256.log
2014-04-14 02:08 - 2014-04-14 02:08 - 00000689 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\SpeedFan.lnk
2014-04-14 02:08 - 2014-04-14 02:08 - 00000045 _____ () C:\WINDOWS\system32\initdebug.nfo
2014-04-14 02:08 - 2014-04-14 02:08 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\SpeedFan
2014-04-14 01:39 - 2013-11-29 13:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2014
2014-04-12 15:31 - 2013-03-15 14:50 - 00086888 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIRfsClientNP.dll.000.bak
2014-04-12 15:31 - 2013-03-15 14:50 - 00085832 _____ (LogMeIn, Inc.) C:\WINDOWS\system32\LMIinit.dll.000.bak
2014-04-10 04:21 - 2013-03-09 05:51 - 00120320 _____ () C:\Documents and Settings\NetworkService\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-09 08:15 - 2014-04-09 08:15 - 416816732 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\Councillor Viki Howard Mixdown 1.wav
2014-04-09 08:15 - 2014-04-09 08:15 - 00407068 _____ () C:\Documents and Settings\Mr. Bojangles\Desktop\Councillor Viki Howard Mixdown 1.pkf
2014-04-08 17:08 - 2013-07-01 09:03 - 00006144 ___SH () C:\WINDOWS\system32\Thumbs.db
2014-04-02 04:15 - 2012-05-03 20:49 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-04-01 21:08 - 2014-04-01 21:08 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-01 19:00 - 2014-04-01 19:00 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
2014-03-26 12:39 - 2013-12-28 13:39 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Local Settings\Application Data\AVG Secure Search
2014-03-26 06:27 - 2013-12-28 13:39 - 00042272 _____ (AVG Technologies) C:\WINDOWS\system32\Drivers\avgtpx86.sys
2014-03-26 06:27 - 2013-12-28 13:39 - 00003669 _____ () C:\Program Files\Mozilla Firefoxavg-secure-search.xml
2014-03-26 06:27 - 2013-12-28 13:39 - 00000000 ____D () C:\WINDOWS\system32\cache
2014-03-26 06:27 - 2013-12-28 13:39 - 00000000 ____D () C:\Program Files\AVG Secure Search
2014-03-25 14:26 - 2013-04-08 03:31 - 00000000 ____D () C:\Program Files\Defraggler
2014-03-25 14:23 - 2013-07-05 08:57 - 00001587 _____ () C:\Documents and Settings\All Users\Desktop\Defraggler.lnk
2014-03-25 08:02 - 2013-03-11 11:10 - 00002347 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader XI.lnk
2014-03-25 07:53 - 2014-03-25 07:53 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Application Data\DropboxMaster
2014-03-25 07:53 - 2012-05-02 00:01 - 00000000 ____D () C:\Documents and Settings\Mr. Bojangles\Start Menu\Programs\Dropbox
2014-03-25 07:50 - 2012-04-22 16:25 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-25 07:50 - 2011-05-29 19:02 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-03-25 07:41 - 2009-03-23 16:24 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Real Time Relativity
2014-03-25 06:33 - 2006-04-30 16:56 - 00000327 __RSH () C:\boot.ini
2014-03-25 06:33 - 2006-04-30 16:56 - 00000253 _____ () C:\WINDOWS\system.ini
2014-03-25 06:32 - 2014-03-25 06:32 - 00001642 _____ () C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
2014-03-25 06:32 - 2014-03-25 06:32 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\D-Link
2014-03-25 06:31 - 2006-04-30 10:04 - 00602988 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-25 06:30 - 2011-12-29 18:43 - 00001975 _____ () C:\WINDOWS\system32\RaCoInst.log
2014-03-25 06:29 - 2011-12-29 18:35 - 00000000 ____D () C:\Program Files\D-Link
2014-03-25 06:29 - 2009-01-08 14:31 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information

Some content of TEMP:
====================
C:\Documents and Settings\Mr. Bojangles\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprr7mgl.dll
C:\Documents and Settings\Mr. Bojangles\Local Settings\temp\jre-7u55-windows-i586-iftw.exe
C:\Documents and Settings\Mr. Bojangles\Local Settings\temp\sfamcc00001.dll
C:\Documents and Settings\Mr. Bojangles\Local Settings\temp\sfareca00001.dll


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2006-04-30 16:55] - [2008-04-14 10:12] - 0975872 ____N (Microsoft Corporation) 561a50497324f378e30f55d09b4e1258

C:\WINDOWS\system32\winlogon.exe => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll => MD5 is legit
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================

Share this post


Link to post
Share on other sites

Addition.txt

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-04-2014
Ran by Mr. Bojangles at 2014-04-23 04:01:41
Running from C:\Documents and Settings\Mr. Bojangles\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG AntiVirus Free Edition 2014 (Disabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Symantec AntiVirus Corporate Edition (Disabled - Up to date) {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: AVG Internet Security 2014 (Disabled) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: Symantec Client Firewall (Disabled) {5CB76A43-5FAD-476B-B9FF-26FA61F13187}

==================== Installed Programs ======================

µTorrent (HKCU\...\uTorrent) (Version: 3.3.2.30303 - BitTorrent Inc.)
2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version:  - Microsoft)
AC3Filter (remove only) (HKLM\...\AC3Filter) (Version:  - )
Access Help (HKLM\...\{C6FA39A7-26B1-480A-BC74-6D17531AC222}) (Version: 1.00 - )
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Addictive Drums (HKLM\...\Addictive Drums) (Version:  - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Audition CS5.5 (HKLM\...\{D5B1535A-FDFC-4B40-B2E2-21DA83D9CB57}) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Aimersoft Video Converter Ultimate(Build 5.5.1.0) (HKLM\...\Aimersoft Video Converter Ultimate_is1) (Version: 5.5.1.0 - Aimersoft Software)
Alarm 2.0.4 (HKLM\...\Alarm_is1) (Version:  - Bluefive software)
AltoMP3 Gold 5.20 (HKLM\...\AltoMP3 Gold) (Version: 5.20 - Thomas Yuan)
Antares Auto-Tune Evo VST (HKLM\...\{FFF74EC9-1FF4-4456-99E3-4F05129F4FAB}) (Version: 6.00.0009 - Antares Audio Technologies)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4355 - AVG Technologies)
AVG 2014 (Version: 14.0.3882 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4259 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4355 - AVG Technologies) Hidden
AVG Security Toolbar (HKLM\...\AVG Secure Search) (Version: 18.0.5.292 - AVG Technologies)
AviSynth 2.5 (HKLM\...\AviSynth) (Version:  - )
BOINC (HKLM\...\{818AD66C-A54A-409E-8489-2F2548F0880E}) (Version: 7.0.64 - Space Sciences Laboratory, U.C. Berkeley)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Gigabit Integrated Controller (HKLM\...\{7E369B27-13E2-41A5-9879-358EE1C8B5AD}) (Version: 9.05.02 - Broadcom Corporation)
Business Contact Manager for Outlook 2007 SP1 (HKLM\...\Business Contact Manager) (Version: 3.0.7311.0 - Microsoft Corporation)
Business Contact Manager for Outlook 2007 SP1 (Version: 3.0.7311.0 - Microsoft Corporation) Hidden
CamStudio OSS Desktop Recorder (HKLM\...\{FD9C31B6-F572-414D-81E3-89368C97A125}_is1) (Version: 2.6 Beta r294 - CamStudio Open Source Dev Team)
CCleaner (HKLM\...\CCleaner) (Version: 3.28 - Piriform)
Client Security Solution (HKLM\...\{48227AEB-DC8E-4A90-A274-0B4A39D699B1}) (Version: 7.00.0022.00 - Lenovo Group Limited)
Collab (HKLM\...\Collab) (Version:  - Image-Line bvba)
Cool Edit Pro 2.1 (HKLM\...\Cool Edit Pro 2.1) (Version:  - )
CPUID CPU-Z 1.69 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Defraggler (HKLM\...\Defraggler) (Version: 2.17 - Piriform)
Diskeeper Lite (HKLM\...\{796E076A-82F7-4D49-98C8-DEC0C3BC733A}) (Version: 9.0.541 - Diskeeper Corporation)
D-Link DWA-160  (HKLM\...\{294A97F8-CC15-41F7-8718-CEE6B0C7D7E0}) (Version:  - D-Link Corporation)
D-Link DWA-525 (HKLM\...\{1DEB8A37-56C9-4E41-9102-171D8EC91DF0}) (Version: 1.00.0000 - D-Link)
Dropbox (HKCU\...\Dropbox) (Version: 2.6.25 - Dropbox, Inc.)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
Facebook Video Calling 1.2.0.287 (HKLM\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
ffdshow [rev 3154] [2009-12-09] (HKLM\...\ffdshow_is1) (Version: 1.0 - )
FL Studio 8 (HKLM\...\FL Studio 8) (Version:  - Image-Line bvba)
Flux_StereoTool (HKLM\...\{48A404E2-0A25-4CEF-AB87-8626BD1B0F2C}) (Version: 2.4.8.14315 - Flux:: sound and picture development)
Freez iPod Video Converter (HKLM\...\Freez iPod Video Converter 1.5_is1) (Version: 1.5 - www.smallvideosoft.com)
GDR 3073 for SQL Server Database Services 2005 ENU (KB954606) (HKLM\...\KB954606_SQL9) (Version: 9.2.3073 - Microsoft Corporation)
Google Calendar Sync (HKLM\...\Google Calendar Sync) (Version:  - )
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
GoPro CineForm Studio 1.3.2 (HKLM\...\GoPro CineForm Studio) (Version: 1.3.2 - CineForm, Inc & GoPro, Inc.)
Guitar Pro 4.0 (HKLM\...\Guitar Pro 4.0) (Version:  - )
Haali Media Splitter (HKLM\...\HaaliMkx) (Version:  - )
Help Center (HKLM\...\{986F64DC-FF15-449D-998F-EE3BCEC6666A}) (Version: 1.03 - )
High Definition Audio Driver Package - KB888111 (HKLM\...\KB888111WXPSP2) (Version: 20040219.000000 - Microsoft Corporation)
IL Download Manager (HKLM\...\IL Download Manager) (Version:  - Image-Line bvba)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.5.0 - LIGHTNING UK!)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version:  - )
Interlok driver setup x32 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.8.10 - PACE Anti-Piracy)
InterVideo WinDVD (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.308 - InterVideo Inc.)
InterVideo WinDVD Creator 3 (HKLM\...\{7FC3BBEC-5A91-41B0-9CB8-960EC4421411}) (Version: 3.0.01.196 - InterVideo Inc.)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
LAV Filters 0.51.3 (HKLM\...\lavfilters_is1) (Version: 0.51.3 - Hendrik Leppkes)
Lenovo Mouse Suite (HKLM\...\MouseSuite98) (Version: 6.66 - Lenovo)
LiveReg (Symantec Corporation) (HKLM\...\LiveReg) (Version: 2.4.2.2295 - Symantec Corporation)
LogMeIn (HKLM\...\{36E0F777-19FE-4454-BB2D-84206758EA85}) (Version: 4.1.2651 - LogMeIn, Inc.)
Magic ISO Maker v5.5 (build 0281) (HKLM\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
M-Audio Fast Track Pro 6.1.10 (x86) (HKLM\...\{13C43B9E-5AF3-434B-A7F8-25DF9981CD43}) (Version: 6.1.10 - M-Audio)
Message Center (HKLM\...\{E7E836B8-4BDD-454F-82E6-5FEA17C83AD4}) (Version: 1.05 - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Corporation RATTV3 (HKLM\...\RATTV3) (Version:  - Microsoft Corporation)
Microsoft Internationalized Domain Names Mitigation APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version:  - Microsoft Corporation) Hidden
Microsoft National Language Support Downlevel APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Search Enhancement Pack (Version: 1.2.123.0 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.2.3042.00 - Microsoft Corporation) Hidden
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) (HKLM\...\{E09B48B5-E141-427A-AB0C-D3605127224A}) (Version: 8.00.761 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{F9B3DD02-B0B3-42E9-8650-030DFF0D133D}) (Version: 9.00.3042.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.3042.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{E9F44C98-B8B6-480F-AF7B-E42A0A46F4E3}) (Version: 9.00.3042.00 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
Motherboard Monitor 5 (HKLM\...\Motherboard Monitor 5_is1) (Version: 5 - Alexander van Kaam)
Mozilla Firefox 28.0 (x86 en-US) (HKLM\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MP4 To MP3 Converter V3.0.4 (HKLM\...\MP4 To MP3 Converter_is1) (Version:  - http://www.MP4ToMP3Converter.net)
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 6 Service Pack 2 (KB954459) (HKLM\...\{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}) (Version: 6.20.1099.0 - Microsoft Corporation)
MTP Porting Kit (HKLM\...\{353B1E6D-7073-4450-8C80-699BD8FCFB49}) (Version: 12.0.0 - Microsoft Corp)
Notepad++ (HKLM\...\Notepad++) (Version: 6.4.1 - Notepad++ Team)
OpenOffice.org 3.4.1 (HKLM\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation)
Pack Vista Inspirat 2 1.0 (HKLM\...\Pack Vista Inspirat 2) (Version: 1.0 - Bricomix)
PC-Doctor 5 for Windows (HKLM\...\PC-Doctor 5 for Windows) (Version: 5.00.4240.03 - PC-Doctor, Inc.)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.8 - Google, Inc.)
PoiZone (HKLM\...\PoiZone) (Version:  - Image-Line bvba)
PokerStars (HKLM\...\PokerStars) (Version:  - PokerStars)
Productivity Center Supplement for ThinkCentre (HKLM\...\{D728E945-256D-4477-B377-6BBA693714AC}) (Version: 3.00b - )
Python 2.7 (HKLM\...\{20c31435-2a0a-4580-be8b-ac06fc243ca4}) (Version: 2.7.150 - Python Software Foundation)
Python 2.7 matplotlib-1.2.0 (HKLM\...\matplotlib-py2.7) (Version:  - )
Python 2.7 scipy-0.12.0 (HKLM\...\scipy-py2.7) (Version:  - )
Python 2.7 setuptools-0.6c11 (HKLM\...\setuptools-py2.7) (Version:  - )
Python 2.7.5 (Anaconda 1.6.0 32-bit) (HKLM\...\Python 2.7.5 (Anaconda 1.6.0 32-bit)) (Version: 1.6.0 - Continuum Analytics)
QuickShare (HKLM\...\{A35C3D8E-5E46-442E-A7DA-A2D7487D40BC}) (Version: 1.6.1.905 - Linkury Inc.) <==== ATTENTION
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
R for Windows 3.0.1 (HKLM\...\R for Windows 3.0.1_is1) (Version: 3.0.1 - R Core Team)
Raptr (HKLM\...\Raptr) (Version:  - )
Real Time Relativity v1.6.0 (HKLM\...\{0DFC5A30-1D57-4EF6-ABDA-C58C4DC1475B}) (Version: 1.6.0 - Australian National University)
RecordNow Audio (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.4.2 - Sonic Solutions)
RecordNow Copy (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.4.2 - Sonic Solutions)
RecordNow Data (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.4.2 - Sonic Solutions)
Remove Multimedia Center (HKLM\...\Remove Multimedia Center) (Version:  - )
Rescue and Recovery (HKLM\...\{7726CF62-7B45-4E6D-9266-615346816BCA}) (Version: 3.10.0022.00 - Lenovo Group Limited)
Rescue and Recovery Critical Patch for Windows Update (KB917422) (HKLM\...\{83E5061B-A69A-46AD-A780-1DA6569FF283}) (Version: 1.00.0004 - Lenovo Group Limited.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
SensorsView Pro 4.3 (HKLM\...\SensorsView Pro 4.3) (Version:  - STV Software)
SkyGazer 4 (HKLM\...\{B7B28A98-604D-4D1F-888F-CAC53E5E19BE}) (Version: 4.0.5 - Carina Software)
Skype™ 3.8 (HKLM\...\{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}) (Version: 3.8.154 - Skype Technologies S.A.)
Sonic DLA (HKLM\...\{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}) (Version: 5.2.0 - Sonic Solutions)
Sonic Express Labeler (HKLM\...\{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}) (Version: 2.1.0.2 - Sonic Solutions)
Sonic Icons for Lenovo (HKLM\...\{B334D9AE-1393-423E-97C0-3BDC3360E692}) (Version: 1.0.2 - Lenovo)
Sonic Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 3.0.0 - Sonic Solutions)
Sony Media Manager 2.2 (HKLM\...\{71A41426-C7A4-4DCF-A9ED-C5B4B105ED1D}) (Version: 2.2.58 - Sony)
Sony Vegas 7.0 (HKLM\...\{251C3815-7A55-4607-A82D-C3B98F0FBAB8}) (Version: 7.0.115 - Sony)
Sothink Video Converter (HKLM\...\{0FD155A3-DF78-43ee-84B0-3CC86BA962F2}_is1) (Version: 3.6 - SourceTec Software Co., LTD)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.10.01.4325 - Analog Devices)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version:  - )
Spotify (HKCU\...\Spotify) (Version: 0.9.1.57.ge7405149 - Spotify AB)
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Symantec Client Security (HKLM\...\{1BA1A958-4BBB-4AB1-9B66-C86CEC6616CB}) (Version: 10.0.846.0 - Symantec Corporation)
System Migration Assistant (HKLM\...\{9D22599D-E1F4-4934-8B4D-2BBA46662251}) (Version: 5.10.0032 - Lenovo Group Limited.)
System Requirements Lab for Intel (HKLM\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
System Update (HKLM\...\{8675339C-128C-44DD-83BF-0A5D6ABD8297}) (Version: 3.16.0006 - Lenovo)
ThinkVantage Away Manager (HKLM\...\AwayTask) (Version: 2.0.6.0 - )
ThinkVantage Productivity Center (HKLM\...\{CF5737AF-8550-4546-A69B-0EA9EF5A9B55}) (Version: 3.11 - Lenovo)
ThinkVantage Technologies Welcome Message (Version: 1.13 - ) Hidden
Toxic Biohazard (HKLM\...\Toxic Biohazard) (Version:  - Image-Line bvba)
Update for Microsoft Office Outlook 2007 (KB952142) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{4AD3A076-427C-491F-A5B7-7D1DE788A756}) (Version:  - Microsoft)
Update for Office 2007 (KB946691) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{A420F522-7395-4872-9882-C591B4B92278}) (Version:  - Microsoft)
Update for Outlook 2007 Junk Email Filter (kb959141) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{CC6191C2-B0CE-473C-AD77-61EA3497D796}) (Version:  - Microsoft)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.8 (HKLM\...\VLC media player) (Version: 2.0.8 - VideoLAN)
Wallpapers (Version: 2.0 - Lenovo) Hidden
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Winamp (HKLM\...\Winamp) (Version: 5.623  - Nullsoft, Inc)
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices  (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012  - GoPro)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.8.0031.9 - Microsoft Corporation)
Windows Live Call (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Toolbar (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version:  - Microsoft Corporation)
Windows Media Connect (Version:  - Microsoft Corporation) Hidden
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Format 11 runtime (Version:  - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player 11 (Version:  - Microsoft Corporation) Hidden
Windows Mobile Device Updater Component (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
WinRAR archiver (HKLM\...\WinRAR archiver) (Version:  - )
WinX Free MOV to AVI Converter 4.1.9 (HKLM\...\WinX Free MOV to AVI Converter_is1) (Version:  - Digiarty Software,Inc.)
Wisdom-soft ScreenHunter 6.0 Free (HKLM\...\Wisdom-soft ScreenHunter 6.0 Free) (Version:  - Wisdom Software Inc.)
Xiph.Org Open Codecs 0.85.17777 (HKLM\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
XP Themes (Version: 1.00.0000 - Lenovo) Hidden
Zune (HKLM\...\Zune) (Version: 04.07.1404.01 - Microsoft Corporation)
Zune (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (DEU) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (ESP) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (FRA) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (ITA) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (NLD) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (PTB) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden
Zune Language Pack (PTG) (Version: 04.07.1404.01 - Microsoft Corporation) Hidden

==================== Restore Points  =========================


==================== Hosts content: ==========================

2006-04-30 16:55 - 2013-03-09 03:47 - 00000027 ____N C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

Task: C:\WINDOWS\Tasks\Ad-Aware Update (Weekly).job => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AdobeAAMUpdater-1.0-MRBOJANGLES-Mr. Bojangles.job => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{B0CC9A6F-834D-47FF-9C2A-B9379DCECD3B}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) =============

2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-03-25 06:30 - 2010-07-12 14:39 - 00053248 _____ () C:\Program Files\D-Link\DWA-160\ANIWConnService.exe
2011-12-03 04:38 - 2011-12-03 04:38 - 00935424 _____ () C:\Program Files\SensorsViewPro43\svservice.exe
2006-07-15 11:35 - 2006-07-15 11:35 - 00139264 ____N () C:\Program Files\Lenovo\Rescue and Recovery\CDRecord.dll
2009-01-09 06:54 - 2008-09-17 14:18 - 00132608 _____ () C:\Program Files\WinRAR\rarext.dll
2012-06-19 01:24 - 2012-06-19 01:24 - 00260096 _____ () C:\Program Files\Notepad++\NppShell_05.dll
2013-06-18 23:57 - 2013-03-25 10:57 - 00153088 _____ () C:\WINDOWS\system32\AiCM32.dll
2006-07-15 09:52 - 2006-07-15 09:52 - 00045056 ____N () C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
2014-03-26 06:27 - 2014-03-26 06:27 - 00159768 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\loggingserver.exe
2014-03-26 06:27 - 2014-03-26 06:27 - 00519704 _____ () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\log4cplusU.dll
2006-07-15 11:36 - 2006-07-15 11:36 - 00022016 ____N () C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
2013-12-28 13:39 - 2014-03-26 06:27 - 01603608 _____ () C:\Program Files\AVG Secure Search\TBAPI.dll
2013-12-28 13:39 - 2014-03-26 06:27 - 02544664 _____ () C:\Program Files\AVG Secure Search\vprot.exe
2011-12-29 18:38 - 2011-12-29 18:38 - 00073728 ____N () C:\WINDOWS\system32\ANPDApi.dll
2014-03-25 06:30 - 2011-09-14 13:56 - 00294912 _____ () C:\Program Files\D-Link\DWA-160\WlanApp.dll
2014-04-22 08:23 - 2014-04-22 08:23 - 00041984 _____ () C:\Documents and Settings\Mr. Bojangles\Local Settings\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprr7mgl.dll
2013-08-24 05:01 - 2013-08-24 05:01 - 25100288 _____ () C:\Documents and Settings\Mr. Bojangles\Application Data\Dropbox\bin\libcef.dll
2014-04-14 14:32 - 2008-11-20 16:27 - 00020480 ____N () C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
2014-04-01 21:08 - 2014-04-01 21:08 - 03642480 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-03-26 06:27 - 2014-03-26 06:27 - 00688664 _____ () C:\Program Files\Common Files\AVG Secure Search\NativeBrowserApi\18.0.5\NativeBrowserApi.dll
2014-03-25 07:50 - 2014-03-25 07:50 - 16276872 _____ () C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Program Files\Outlook Express:H01S82PoLIZYQApdZMtWDHN
AlternateDataStreams: C:\Program Files\Common Files\System:ptBlIicxFt7CxjTpRTV
AlternateDataStreams: C:\Program Files\Common Files\System:zMPcfWno2EGGJSmRnq3kSztceFN
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\Microsoft:cWTVkqMUeqVl44oMycJW
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\Microsoft:zX2k3tTbXQCGSXQafjP1pyaSrp
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:054203E4

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Lavasoft Ad-Aware Service => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^CineForm Status.lnk => C:\WINDOWS\pss\CineForm Status.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Calendar Sync.lnk => C:\WINDOWS\pss\Google Calendar Sync.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^RATT.lnk => C:\WINDOWS\pss\RATT.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^Mr. Bojangles^Start Menu^Programs^Startup^Y'z Shadow.lnk => C:\WINDOWS\pss\Y'z Shadow.lnkStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AMSG => C:\Program Files\ThinkVantage\AMSG\Amsg.exe
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AwaySch => C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
MSCONFIG\startupreg: boincmgr => "C:\Program Files\BOINC\boincmgr.exe" /a /s
MSCONFIG\startupreg: boinctray => "C:\Program Files\BOINC\boinctray.exe"
MSCONFIG\startupreg: ccApp => "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
MSCONFIG\startupreg: cssauth => "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent
MSCONFIG\startupreg: D-Link D-Link DWA-525 => C:\Program Files\D-Link\DWA-525 revA\AirNCFG.exe
MSCONFIG\startupreg: DiskeeperSystray => "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
MSCONFIG\startupreg: DLA => C:\WINDOWS\System32\DLA\DLACTRLW.EXE
MSCONFIG\startupreg: High Definition Audio Property Page Shortcut => HDAShCut.exe
MSCONFIG\startupreg: HotKeysCmds => C:\WINDOWS\system32\hkcmd.exe
MSCONFIG\startupreg: ISUSPM Startup => C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
MSCONFIG\startupreg: ISUSScheduler => "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LPManager => C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe
MSCONFIG\startupreg: M-Audio Taskbar Icon => C:\WINDOWS\system32\M-AudioTaskBarIcon.exe
MSCONFIG\startupreg: Mouse Suite 98 Daemon => ICO.EXE
MSCONFIG\startupreg: MsnMsgr => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: PDService.exe => "C:\Program Files\Lenovo\SafeGuard PrivateDisk\pdservice.exe"
MSCONFIG\startupreg: Persistence => C:\WINDOWS\system32\igfxpers.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: vptray => C:\PROGRA~1\SYMANT~1\SYMANT~2\VPTray.exe
MSCONFIG\startupreg: WinampAgent => "C:\Program Files\Winamp\winampa.exe"
MSCONFIG\startupreg: WZCSLDR2 => C:\Program Files\D-Link\DWA-525 revA\WZCSLDR2.exe

==================== Faulty Device Manager Devices =============

Name: Broadcom NetLink Gigabit Ethernet
Description: Broadcom NetLink Gigabit Ethernet
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Broadcom
Service: b57w2k
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/23/2014 00:57:26 AM) (Source: Symantec AntiVirus) (User: )
Description: Symantec AntiVirus has determined that the virus definitions are missing on this computer. This computer will remain unprotected from viruses until virus definitions are downloaded to this computer.

Error: (04/23/2014 00:27:26 AM) (Source: Symantec AntiVirus) (User: )
Description: Symantec AntiVirus has determined that the virus definitions are missing on this computer. This computer will remain unprotected from viruses until virus definitions are downloaded to this computer.

Error: (04/22/2014 08:24:34 AM) (Source: Symantec AntiVirus) (User: )
Description: Symantec AntiVirus has determined that the virus definitions are missing on this computer. This computer will remain unprotected from viruses until virus definitions are downloaded to this computer.

Error: (04/22/2014 08:24:28 AM) (Source: Symantec AntiVirus) (User: )
Description: Symantec AntiVirus has determined that the virus definitions are missing on this computer. This computer will remain unprotected from viruses until virus definitions are downloaded to this computer.

Error: (04/22/2014 00:30:40 AM) (Source: Symantec AntiVirus) (User: )
Description: Symantec AntiVirus has determined that the virus definitions are missing on this computer. This computer will remain unprotected from viruses until virus definitions are downloaded to this computer.

Error: (04/22/2014 00:00:39 AM) (Source: Symantec AntiVirus) (User: )
Description: Symantec AntiVirus has determined that the virus definitions are missing on this computer. This computer will remain unprotected from viruses until virus definitions are downloaded to this computer.

Error: (04/21/2014 03:42:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 39468

Error: (04/21/2014 03:42:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 39468

Error: (04/21/2014 03:42:31 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/21/2014 03:42:29 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37515


System errors:
=============
Error: (04/22/2014 08:24:05 AM) (Source: Service Control Manager) (User: )
Description: The SAVRT service failed to start due to the following error:
%%31

Error: (04/22/2014 08:24:04 AM) (Source: 0) (User: )
Description:

Error: (04/22/2014 08:23:48 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service wuauserv with arguments ""
in order to run the server:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (04/22/2014 08:23:46 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service wuauserv with arguments ""
in order to run the server:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (04/22/2014 08:22:38 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SAVRT

Error: (04/22/2014 08:21:18 AM) (Source: Service Control Manager) (User: )
Description: The Symantec Network Proxy service terminated with service-specific error 4294967295 (0xFFFFFFFF).

Error: (04/22/2014 08:20:26 AM) (Source: 0) (User: )
Description:

Error: (04/22/2014 03:05:13 AM) (Source: Dhcp) (User: )
Description: The IP address lease 10.1.1.5 for the Network Card with network address 9CD64302AF19 has been
denied by the DHCP server 10.1.1.1 (The DHCP Server sent a DHCPNACK message).

Error: (04/21/2014 03:45:06 PM) (Source: 0) (User: )
Description: {7195727A-5667-4970-8430-3FFFD09D0F69}

Error: (04/21/2014 03:42:19 PM) (Source: 0) (User: )
Description: {7195727A-5667-4970-8430-3FFFD09D0F69}


Microsoft Office Sessions:
=========================
Error: (05/01/2012 04:01:38 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: 6Microsoft Office Outlook12.0.6316.500012.0.6215.1000680


==================== Memory info ===========================

Percentage of memory in use: 68%
Total physical RAM: 2038.35 MB
Available physical RAM: 647.97 MB
Total Pagefile: 3923.08 MB
Available Pagefile: 2149.05 MB
Total Virtual: 2047.88 MB
Available Virtual: 1928.64 MB

==================== Drives ================================

Drive c: (Preload) (Fixed) (Total:142.9 GB) (Free:63.24 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (DWA-160) (CDROM) (Total:0.14 GB) (Free:0 GB) UDF
Drive e: (My Documents ext HDD) (Fixed) (Total:2794.51 GB) (Free:2322.51 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================

Share this post


Link to post
Share on other sites

NB: I have uninstalled utorrent since posting this topic.

Share this post


Link to post
Share on other sites

Greetings Mr. Bojangles and thank you for your patience,

Please disable the active protection component of your antivirus and antispyware programs by following the directions that apply Here. Next, please download the free utility DDS from any of these locations...Here, Here...or Here.
Note - Some infections may prevent certain executable files from running on your computer. If one of these download locations results in a failed run of the utility, please try the next location until you find one that will work on your machine
Double click the downloaded dds utility to run the tool

  • When it completes, DDS will open two (2) logs:
    • DDS.txt
    • Attach.txt
  • Save both reports to your desktop.

Please remember to include the following logs in your next reply, Thanks!

  • DDS.txt
  • Attach.txt

Share this post


Link to post
Share on other sites

#hi! thanks for the reply :)

 

#here is DDS.txt

 

++++++++++++++++++++++++++++++++++++++++++++++

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 7.0.6000.16762  BrowserJavaVersion: 10.51.2
Run by Mr. Bojangles at 9:03:54 on 2014-04-26
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.2038.929 [GMT 10:00]
.
AV: AVG AntiVirus Free Edition 2014 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Symantec AntiVirus Corporate Edition *Disabled/Outdated* {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: AVG Internet Security 2014 *Disabled*
FW: Symantec Client Firewall *Disabled*
.
============== Running Processes ================
.
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Symantec Client Security\Symantec Client Firewall\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2014\avgwdsvc.exe
C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\D-Link\DWA-160\ANIWConnService.exe
C:\Program Files\Symantec Client Security\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\M-Audio\Fast Track Pro\AudioDevMon.exe
C:\Program Files\Google\Update\1.3.23.9\GoogleCrashHandler.exe
C:\WINDOWS\system32\hasplms.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\WINDOWS\system32\netdde.exe
C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\SensorsViewPro43\svservice.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Symantec Client Security\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Symantec Client Security\Symantec Client Firewall\SymSPort.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\loggingserver.exe
c:\Program Files\Zune\WMZuneComm.exe
c:\Program Files\Zune\ZuneBusEnum.exe
c:\Program Files\Zune\ZuneNss.exe
c:\Program Files\Zune\ZuneWlanCfgSvc.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\Lenovo\System Update\SUService.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Lenovo\Client Security Solution\cssauth.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Lenovo\Client Security Solution\tvtpwm_tray.exe
C:\Program Files\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
C:\Program Files\AVG\AVG2014\avgui.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\D-Link\DWA-160\AirNCFG.exe
C:\Program Files\D-Link\DWA-160\WZCSLDR2.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE
C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe
C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs
.
============== Pseudo HJT Report ===============
.

uInternet Connection Wizard,ShellNext = iexplore
BHO: DriveLetterAccess: {5CA3D70E-1895-11CF-8E15-001234567890} - c:\windows\system32\dla\DLASHX_W.DLL
BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - c:\program files\microsoft\search enhancement pack\search helper\SearchHelper.dll
BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: {95B7759C-8C7F-4BF1-B163-73684A933233} - <orphaned>
BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
BHO: CPwmIEBrowserHelper Object: {F040E541-A427-4CF7-85D8-75E3E0F476C5} - c:\program files\lenovo\client security solution\tvtpwm_ie_com.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [AVG-Secure-Search-Update_1213b] c:\documents and settings\mr. bojangles\application data\avg 1213b campaign\AVG-Secure-Search-Update-1213b.exe /PROMPT /mid=Unknown /CMPID=1213b
mRun: [TVT Scheduler Proxy] c:\program files\common files\lenovo\scheduler\scheduler_proxy.exe
mRun: [LogMeIn GUI] "c:\program files\logmein\x86\LogMeInSystray.exe"
mRun: [Aimersoft Helper Compact.exe] c:\program files\common files\aimersoft\aimersoft helper compact\ASHelper.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe"
mRun: [AVG_UI] "c:\program files\avg\avg2014\avgui.exe" /TRAYONLY
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [D-Link D-Link Wireless N Dual Band DWA-160 ] c:\program files\d-link\dwa-160\AirNCFG.exe
mRun: [D-Link Wireless N Dual Band DWA-160  WZCSLDR2] c:\program files\d-link\dwa-160\WZCSLDR2.exe
mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Daemon for Mouse Suite] c:\program files\lenovo\lenovo mouse suite\ICO.EXE 30
mRun: [LPManager] c:\progra~1\thinkv~1\prdctr\LPMGR.exe
mRun: [LPMailChecker] c:\progra~1\thinkv~1\prdctr\LPMLCHK.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [igfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
StartupFolder: c:\docume~1\mr6e0d~1.boj\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\mr. bojangles\application data\dropbox\bin\Dropbox.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {0045D4BC-5189-4b67-969C-83BB1906C421} - {0FE81B52-73FA-425F-8F06-3F32451AC73F} - c:\program files\lenovo\client security solution\tvtpwm_ie_com.dll
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll
IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - c:\program files\pokerstars\PokerStarsUpdate.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
   If you wish to scan all of them, select the 'Force scan all domains' option.
.




TCP: NameServer = 10.1.1.1
TCP: Interfaces\{7195727A-5667-4970-8430-3FFFD09D0F69} : DHCPNameServer = 10.1.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\18.0.5\ViProtocol.dll
Notify: AwayNotify - c:\program files\lenovo\awaytask\AwayNotify.dll
Notify: igfxcui - igfxdev.dll
Notify: LMIinit - LMIinit.dll
Notify: NavLogon - c:\windows\system32\NavLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\34.0.1847.131\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2013-10-24 150296]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2013-10-31 238872]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2013-10-1 108312]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2013-9-10 28440]
R1 Avgdiskx;AVG Disk Driver;c:\windows\system32\drivers\avgdiskx.sys [2013-11-5 123160]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2013-11-4 199960]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2013-9-17 22296]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2013-10-31 193304]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2013-8-1 211224]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2013-12-28 42272]
R1 SAVRTPEL;SAVRTPEL;c:\program files\symantec client security\symantec antivirus\Savrtpel.sys [2005-2-5 53896]
R1 sensorsview;sensorsview;c:\program files\sensorsviewpro43\drv\sensorsview32.sys [2008-7-27 14416]
R2 ANPD;ANPD Service;c:\windows\system32\ANPD.SYS [2011-12-29 29411]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2014\avgwdsvc.exe [2014-3-27 291912]
R2 ccEvtMgr;Symantec Event Manager;c:\program files\common files\symantec shared\ccEvtMgr.exe [2005-6-3 185968]
R2 ccSetMgr;Symantec Settings Manager;c:\program files\common files\symantec shared\ccSetMgr.exe [2005-6-3 161392]
R2 D-Link Wireless N Dual Band DWA-160 _WPS;D-Link Wireless N Dual Band DWA-160 _WPS Service;c:\program files\d-link\dwa-160\ANIWConnService.exe [2014-3-25 53248]
R2 FastTrackProAudioDevMon;Fast Track Pro Audio Device Monitor;c:\program files\m-audio\fast track pro\AudioDevMon.exe [2013-5-23 1688336]
R2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe  -run --> c:\windows\system32\hasplms.exe  -run [?]
R2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\logmein\x86\LMIGuardianSvc.exe [2013-1-25 375120]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2012-11-29 13624]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2013-3-15 47640]
R2 NIHardwareService;NIHardwareService;c:\program files\common files\native instruments\hardware\NIHardwareService.exe [2011-4-8 3857408]
R2 PrivateDisk;PrivateDisk;c:\program files\lenovo\safeguard privatedisk\privatediskm.sys [2006-3-14 58368]
R2 SensorsVService;SensorsVService;c:\program files\sensorsviewpro43\svservice.exe [2011-12-3 935424]
R2 smi2;smi2;c:\program files\smi2\smi2.sys [2006-7-15 3968]
R2 Symantec AntiVirus;Symantec AntiVirus;c:\program files\symantec client security\symantec antivirus\Rtvscan.exe [2005-8-19 1730240]
R2 vToolbarUpdater18.0.5;vToolbarUpdater18.0.5;c:\program files\common files\avg secure search\vtoolbarupdater\18.0.5\ToolbarUpdater.exe [2014-3-26 1771032]
R3 MAUSBFASTTRACKPRO;Service for M-Audio Fast Track Pro;c:\windows\system32\drivers\MAudioFastTrackPro.sys [2010-12-7 149520]
R3 rt2870;D-Link dnetr28u USB Extensible Wireless LAN Card Driver;c:\windows\system32\drivers\Drt2870.sys [2014-3-25 1209408]
S1 SAVRT;SAVRT;c:\program files\symantec client security\symantec antivirus\savrt.sys [2005-2-5 324232]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2014\avgidsagent.exe [2014-4-18 3645456]
S2 ccProxy;Symantec Network Proxy;c:\program files\common files\symantec shared\ccProxy.exe [2005-6-3 239216]
S2 D-Link Wireless N Dual Band DWA-160 ;D-Link Wireless N Dual Band DWA-160  Service;c:\program files\d-link\dwa-160\ANIWZCSdS.exe [2014-3-25 126976]
S3 ccPwdSvc;Symantec Password Validation;c:\program files\common files\symantec shared\ccPwdSvc.exe [2005-6-3 83568]
S3 cpudrv;cpudrv;c:\program files\systemrequirementslab\cpudrv.sys [2011-6-2 11336]
S3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20090115.004\naveng.sys [2009-1-16 89104]
S3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20090115.004\navex15.sys [2009-1-16 876112]
S3 Nbdrv;NetBalancer Service;c:\windows\system32\drivers\nbdrv.sys --> c:\windows\system32\drivers\nbdrv.sys [?]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [2014-4-14 18944]
S3 RT80x86;D-Link 802.11n Wireless Driver;c:\windows\system32\drivers\Drt2860.sys [2011-12-29 1329632]
S3 SavRoam;SAVRoam;c:\program files\symantec client security\symantec antivirus\SavRoam.exe [2005-8-19 124608]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2006-4-30 14336]
S4 D_Link_DWA-525;D_Link_DWA-525 Service;c:\program files\d-link\dwa-525 reva\ANIWZCSdS.exe [2011-12-29 126976]
S4 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;"c:\program files\lavasoft\ad-aware\aawservice.exe" --> c:\program files\lavasoft\ad-aware\AAWService.exe [?]
S4 LMIRfsClientNP;LMIRfsClientNP; [x]
.
=============== Created Last 30 ================
.
2014-04-22 17:59:52    --------    d-----w-    C:\FRST
2014-04-16 15:13:53    --------    d-----w-    c:\program files\M-Audio
2014-04-16 15:13:41    --------    d-----w-    c:\documents and settings\all users\application data\AVID
2014-04-14 09:07:30    --------    d-----w-    c:\documents and settings\mr. bojangles\application data\STV Software
2014-04-14 09:07:22    --------    d-----w-    c:\program files\SensorsViewPro43
2014-04-14 08:50:41    2944    ----a-w-    c:\windows\system32\mbmiodrvr.sys
2014-04-14 08:50:39    --------    d-----w-    c:\program files\Motherboard Monitor 5
2014-04-14 08:16:21    155648    ----a-w-    c:\windows\system32\igfxres.dll
2014-04-14 06:45:07    --------    d-----w-    c:\program files\iPod
2014-04-14 06:45:01    --------    d-----w-    c:\program files\iTunes
2014-04-14 06:45:01    --------    d-----w-    c:\documents and settings\all users\application data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-04-14 06:43:48    18944    ----a-w-    c:\windows\system32\drivers\netaapl.sys
2014-04-14 06:43:47    1461992    ----a-w-    c:\windows\system32\wdfcoinstaller01009.dll
2014-04-14 06:43:20    45056    ----a-w-    c:\windows\system32\drivers\usbaapl.sys
2014-04-14 06:43:17    6112864    ----a-w-    c:\windows\system32\usbaaplrc.dll
2014-04-14 06:42:43    --------    d-----w-    c:\program files\Bonjour
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\mozilla firefox\plugins\npqtplugin5.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\mozilla firefox\plugins\npqtplugin4.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\mozilla firefox\plugins\npqtplugin3.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\mozilla firefox\plugins\npqtplugin2.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\mozilla firefox\plugins\npqtplugin.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\internet explorer\plugins\npqtplugin5.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\internet explorer\plugins\npqtplugin4.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\internet explorer\plugins\npqtplugin3.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\internet explorer\plugins\npqtplugin2.dll
2014-04-14 04:54:56    159744    ----a-w-    c:\program files\internet explorer\plugins\npqtplugin.dll
2014-04-14 04:37:10    --------    d-----w-    c:\program files\Broadcom
2014-04-14 04:35:31    --------    d-----w-    c:\program files\Sonic
2014-04-14 04:35:31    --------    d-----w-    c:\program files\common files\SureThing Shared
2014-04-14 04:32:17    26624    ------w-    c:\windows\system32\drivers\phidmice.SYS
2014-04-14 04:32:17    19456    ------w-    c:\windows\system32\drivers\pmouself.SYS
2014-04-14 04:32:17    10240    ------w-    c:\windows\system32\drivers\pvendrlf.SYS
2014-04-14 04:32:16    10240    ----a-w-    c:\windows\system32\drivers\PELVENDR.SYS
2014-04-14 04:32:15    18944    ------w-    c:\windows\system32\drivers\PELMOUBT.SYS
2014-04-14 04:32:15    13312    ------w-    c:\windows\system32\drivers\PELBTM.SYS
2014-04-14 02:26:41    21376    ----a-w-    c:\windows\system32\drivers\psadd.sys
2014-04-13 18:03:57    94632    ----a-w-    c:\windows\system32\WindowsAccessBridge.dll
2014-04-13 17:43:04    --------    d-----w-    c:\documents and settings\mr. bojangles\application data\library_dir
2014-04-13 17:42:33    --------    d-----w-    c:\documents and settings\mr. bojangles\application data\Raptr
2014-04-13 17:41:57    --------    d-----w-    c:\program files\Raptr
2014-04-13 16:08:35    --------    d-----w-    c:\program files\SpeedFan
.
==================== Find3M  ====================
.
2014-04-19 20:16:25    5427    ----a-w-    c:\windows\system32\EGATHDRV.SYS
2014-04-18 15:55:37    86888    ----a-w-    c:\windows\system32\LMIRfsClientNP.dll
2014-04-18 15:55:36    53064    ----a-w-    c:\windows\system32\spool\prtprocs\w32x86\LMIproc.dll
2014-04-18 15:55:33    31560    ----a-w-    c:\windows\system32\LMIport.dll
2014-04-18 15:55:32    85832    ----a-w-    c:\windows\system32\LMIinit.dll
2014-04-18 05:02:04    199960    ----a-w-    c:\windows\system32\drivers\avgidsdriverx.sys
2014-04-13 18:03:38    145408    ----a-w-    c:\windows\system32\javacpl.cpl
2014-04-12 05:31:27    86888    ----a-w-    c:\windows\system32\LMIRfsClientNP.dll.000.bak
2014-04-12 05:31:21    85832    ----a-w-    c:\windows\system32\LMIinit.dll.000.bak
2014-03-31 06:11:58    211224    ----a-w-    c:\windows\system32\drivers\avgtdix.sys
2014-03-27 12:15:18    193304    ----a-w-    c:\windows\system32\drivers\avgldx86.sys
2014-03-27 12:14:40    123160    ----a-w-    c:\windows\system32\drivers\avgdiskx.sys
2014-03-27 12:04:22    150296    ----a-w-    c:\windows\system32\drivers\avgidshx.sys
2014-03-27 12:04:02    238872    ----a-w-    c:\windows\system32\drivers\avglogx.sys
2014-03-27 12:03:22    28440    ----a-w-    c:\windows\system32\drivers\avgrkx86.sys
2014-03-27 12:03:20    22296    ----a-w-    c:\windows\system32\drivers\avgidsshimx.sys
2014-03-25 20:27:02    42272    ----a-w-    c:\windows\system32\drivers\avgtpx86.sys
2014-03-24 21:50:25    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2014-03-24 21:50:25    692616    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2011-08-15 13:49:55    493344    ----a-w-    c:\program files\ShellExt.dll
.
=================== ROOTKIT  ====================
.
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 5.1.2600
.
CreateFile("\\.\PHYSICALDRIVE0"): The process cannot access the file because it is being used by another process.
device: opened successfully
user: error reading MBR
.
Disk trace:
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
1 ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Harddisk0\DR0[0x8A534AB8]
3 CLASSPNP[0xBA0E8FD7] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\0000008e[0x8A549F18]
5 ACPI[0xB9F7F620] -> ntkrnlpa!IofCallDriver[0x804EF1A6] -> \Device\Ide\IdeDeviceP0T0L0-3[0x8A537D98]
kernel: MBR read successfully
_asm { JMP 0x10;  }
user != kernel MBR !!!
.
============= FINISH:  9:05:09.12 ===============
 

#Attach.txt is a .rar attachment

attach.rar

Share this post


Link to post
Share on other sites
There are more than a few problems, but before we proceed you should look for and uninstall the following program:
QuickShare

QuickShare is an adware program most commonly bundled with other "Free" downloaded software of certain type(s). This particular piece of vermin has almost rootkit type capabilities (...almost, although not quite).

You should use caution when downloading/installing programs from the internet and uncheck certain items (when available as an option) so that other "PUP" type software won't be surreptitiously installed.

Next, you need to decide upon, which of these you would prefer to keep and which to uninstall:
AVG AntiVirus Free Edition 2014
Symantec AntiVirus Corporate Edition


...having both of those programs installed and running real time protection will cause instability and eventually a system crash with the potential of data loss of course. These two programs alone, running while you try to scan with mbam would in fact, cause such a struggle among them that the system would freeze up just as you have described.

You really have no need of this program either:
Spybot - Search & Destroy

Once you have completed all of the above, please reboot the system and try running a threat scan with mbam. Post back the resulting log. Thanks!

Share this post


Link to post
Share on other sites

#All steps completed succesfully, MBAM threat scan report below.

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 4/27/2014
Scan Time: 1:30:16 PM
Logfile:
Administrator: No

Version: 2.00.1.1004
Malware Database: v2014.04.27.01
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled

OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: Mr. Bojangles

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 319641
Time Elapsed: 16 min, 49 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 1
PUP.Optional.SingALong.A, HKU\S-1-5-21-2838019926-1718427338-2428480347-1008-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{6492E171-2427-4932-B414-33574A089F5E}, , [5fee81ae1467d75facf03fd93ac843bd],

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

Share this post


Link to post
Share on other sites

Success! You could, if you like, scan again and enable "Rootkit" scanning. To do that, open mbam, click "Detection and Protection" and check the box "Scan for rootkits".

 

How's it running for you?

Share this post


Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.