1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Solved may have a virus

Discussion in 'Malware and Virus Removal Archive' started by broccoli6969, 2014/07/09.

  1. 2014/07/09
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    [Solved] may have a virus

    Hey Guys,

    It's been a while (I've been lucky) but could you take a look at my logs please?

    Billy

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 7/8/2014
    Scan Time: 10:31:41 PM
    Logfile: scan07.txt
    Administrator: Yes

    Version: 2.00.2.1012
    Malware Database: v2014.07.09.01
    Rootkit Database: v2014.07.07.01
    License: Free
    Malware Protection: Disabled
    Malicious Website Protection: Disabled
    Self-protection: Disabled

    OS: Windows Vista
    CPU: x86
    File System: NTFS
    User: billy

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 488954
    Time Elapsed: 2 hr, 6 min, 6 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Warn
    PUM: Enabled

    Processes: 2
    PUP.Optional.MindSpark, C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrchMn.exe, 3996, No Action By User, [7bfa237a0b70c175a0a1b14ea65df20e]
    PUP.Optional.MindSpark, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brmon.exe, 4084, No Action By User, [d5a0e9b482f9bd7942fe8778b54eae52]

    Modules: 12
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],

    Registry Keys: 122
    PUP.Optional.AudioToAudioToolBar.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\MapsGalaxy_39Service, No Action By User, [076e9904a9d20e28b3197bba7c845ba5],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{1e91a655-bb4b-4693-a05e-2edebc4c9d89}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{364ea597-e728-4ce4-bb4a-ed846ef47970}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{364EA597-E728-4CE4-BB4A-ED846EF47970}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{4b7d0b0c-cff3-49c5-9bc3-ffabc031c822}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{a549a4f7-fa70-421c-b0f2-8f6c0b4b85a8}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{05F5414D-DCD6-4EE6-8C46-20A3F1209E0F}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4F55EE37-30D9-45D6-870F-3EEA6CB9BE9F}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{50ADA3A9-20B4-4EE0-8AFA-DE0BCAB94A25}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{6818868A-1B3D-4E35-A561-FA964A96CD3B}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9193E23B-4182-493F-A38E-682307A7C463}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9D2A3081-70F2-4877-A06D-9BF697A35518}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.SettingsPlugin.1, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.SettingsPlugin, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{4B7D0B0C-CFF3-49C5-9BC3-FFABC031C822}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MapsGalaxy_39bar Uninstall Firefox, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\MapsGalaxy_39bar Uninstall Internet Explorer, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{1E91A655-BB4B-4693-A05E-2EDEBC4C9D89}\INPROCSERVER32, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{1E91A655-BB4B-4693-A05E-2EDEBC4C9D89}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{1E91A655-BB4B-4693-A05E-2EDEBC4C9D89}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\CLSID\{33119133-0854-469d-807A-171568457991}, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\CLSID\{13119113-0854-469d-807A-171568457991}, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.SkinLauncher.1, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.SkinLauncher, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{03119103-0854-469d-807A-171568457991}, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{23119123-0854-469D-807A-171568457991}, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.SkinLauncherSettings.1, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.FunWebProducts.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.SkinLauncherSettings, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{71c1d63a-c944-428a-a5bd-ba513190e5d2}, No Action By User, [97de8419413a2412cb2465ec53af3bc5],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{71C1D63A-C944-428A-A5BD-BA513190E5D2}\INPROCSERVER32, No Action By User, [97de8419413a2412cb2465ec53af3bc5],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{71C1D63A-C944-428A-A5BD-BA513190E5D2}, No Action By User, [97de8419413a2412cb2465ec53af3bc5],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\STATS\{71C1D63A-C944-428A-A5BD-BA513190E5D2}, No Action By User, [97de8419413a2412cb2465ec53af3bc5],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MapsGalaxy_39, No Action By User, [bdb87d209cdf7db9d774c845e321b54b],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MOZILLAPLUGINS\@MapsGalaxy_39.com/Plugin, No Action By User, [a2d37c21e794de58d0639a2d5ba7b14f],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MapsGalaxy_39, No Action By User, [c8ad7d20106bed490ad8ab150ef4ad53],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MapsGalaxy_39, No Action By User, [8ce9faa32a51f5413319db320202c040],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MapsGalaxy_39, No Action By User, [e590dcc13e3d51e5736fa51bb052fa06],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MapsGalaxy_39, No Action By User, [363f38651863f93d954dd5eb25ddd52b],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\MapsGalaxy_39, No Action By User, [22534f4e7dfe92a416cc06ba758d5aa6],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{4369f96e-4071-43e7-8fd2-4d8f96918ef3}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{69d0bac4-a1b1-45ce-944f-9eeb1479f059}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{269D72FF-8629-4DB6-AB4F-86AA3A92F8A9}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{797657A7-D3C7-4D7C-98E3-D0324DDFC4BA}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{F8B71C28-069E-406D-8D61-4461B464E37F}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.ToolbarProtector.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.ToolbarProtector, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{4f28fa5f-7d15-4753-b4fc-d548a0f02bfb}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{0396d01a-1323-4a15-bd0c-1bc7510f46c6}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A8168AFE-9F36-49DE-A80A-00D19FB50207}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B82A91D3-2A13-4BF6-981B-7D9ED152CCED}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B9D4AA93-F4C6-480B-8C06-0811F2446943}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{f3477e9d-d2f6-49f0-9b23-854d7958d07e}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{bf78452b-f168-4310-9ec0-4b9b66b845f0}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{7A739956-FB82-4379-AF60-E38C48226AA7}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{a083c35d-61a9-4625-bbb6-fb54e71b8527}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.DynamicBarButton.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.DynamicBarButton, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{c4a25b73-8ef5-4282-9d21-c8920dd577a1}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{15106ae4-6bdf-443e-80b0-3e38b59d26ec}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9EF88362-131D-48B0-8969-CCC96F897AB8}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EF8C6146-8009-4A3F-8CA3-9E932B017099}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.FeedManager.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.FeedManager, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{3ED5E5EC-0965-4DD3-B7D8-DBC48A1172B9}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.HTMLMenu.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.HTMLMenu, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{3ED5E5EC-0965-4DD3-B7D8-DBC48A1172B9}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{5e1bdcf6-dd5f-4dd3-8783-b1454aef1830}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{d833690c-6e56-46c2-a19f-cf5fd81c9c9a}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{200F1306-1316-473B-90CE-A777144BBDF5}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E26AE37-A628-496E-B410-5D432F38BD1A}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{cae88e60-cea5-4fcb-b611-54ea6305d8ab}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.MultipleButton.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.MultipleButton, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{1796ec91-d094-4a5f-b681-e16015d1ceac}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{3141fb47-2f0f-417d-a6fe-7047c5d2bbb4}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{16C7BB64-AC8D-4863-92ED-799D20F001DA}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{AE0F4663-EAE3-437F-BE60-9EC9B745DBFA}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{BAD750C1-F04B-42E6-847F-4F4BA8A7EDE1}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.XMLSessionPlugin.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.XMLSessionPlugin, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{1796EC91-D094-4A5F-B681-E16015D1CEAC}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{37ed966d-4d0e-4d66-9633-bea542c92860}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{87792411-b73a-435e-86f3-ae633a690e84}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{E2DAE1A4-09EE-4209-AD3B-1C96330EDCEF}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.RadioSettings.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.RadioSettings, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{7d4dfaf7-f2ce-4c91-91a4-514c9612914d}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.Radio.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.Radio, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{db1384d8-1bda-4c8d-a743-e9ca671feb00}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.ScriptButton.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.ScriptButton, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{1241cebd-9777-4bc6-aae5-2a77e25db246}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{64fbf8b6-c770-401a-8b84-f630edaf4448}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0D8734DB-7110-4CDB-833F-52BC93865AB2}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{41AE59EF-88EE-450B-B60A-F153679E6EE8}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4AEF0F25-D761-4EAA-AEB7-9E756C6BF11E}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{902E7D34-D421-4766-8191-15A1B52D0BA2}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{1241CEBD-9777-4BC6-AAE5-2A77E25DB246}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{173a5778-34bf-48a2-8a5e-6963ce922fed}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.PseudoTransparentPlugin.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.PseudoTransparentPlugin, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{173A5778-34BF-48A2-8A5E-6963CE922FED}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{9b58a6ce-b337-43d5-9c2f-8c6d92fba094}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{e045df14-bf1d-405c-a37b-a75c1551ad17}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{f9b90065-cd7a-4439-b311-b292299182a9}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{47A124BA-A6E2-4ED4-AA6F-84FF29E4D7DC}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{DE4CC811-10B7-41F0-AB0E-EC2CFC91A8AD}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.ThirdPartyInstaller.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.ThirdPartyInstaller, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{E045DF14-BF1D-405C-A37B-A75C1551AD17}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{b70e008c-967b-4104-bc7b-6f7c77dbc38d}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.UrlAlertButton.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.UrlAlertButton, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\CLSID\{a35ff019-6dbe-4044-b080-6f3fa78a947f}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{8feeda9e-8f71-45df-a797-468226d1d35b}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C285FFF4-DE32-402D-B8FD-6F34F1D5920C}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{CDDB17CD-7A6B-4887-8EE6-68A43F532197}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.HTMLPanel.1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\CLASSES\MapsGalaxy_39.HTMLPanel, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{A35FF019-6DBE-4044-B080-6F3FA78A947F}, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],

    Registry Values: 9
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER|{364EA597-E728-4CE4-BB4A-ED846EF47970}, â??Â¥N6(çäL»JÃ*â??nôyp, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92]
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR|{364EA597-E728-4CE4-BB4A-ED846EF47970}, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\WEBBROWSER\{364EA597-E728-4CE4-BB4A-ED846EF47970}, No Action By User, [9ed7f7a6bcbfe254995369e8699915eb],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS\{26842a09-ffa8-4e2c-ae12-0c80f01c3295}, No Action By User, [581dd8c580fb3204bd2e0051748e7c84],
    PUP.Optional.MindSpark.A, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\URLSEARCHHOOKS|{26842A09-FFA8-4E2C-AE12-0C80F01C3295}, No Action By User, [581dd8c580fb3204bd2e0051748e7c84],
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\TOOLBAR\{364ea597-e728-4ce4-bb4a-ed846ef47970}, No Action By User, [b6bfc1dc1d5ea1951bd1e56c34ce7d83],
    PUP.Optional.MindSpark, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MapsGalaxy Search Scope Monitor, "C:\PROGRA~1\MAPSGA~2\bar\1.bin\39srchmn.exe" /m=2 /w /h, No Action By User, [7bfa237a0b70c175a0a1b14ea65df20e]
    PUP.Optional.MindSpark, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MapsGalaxy_39 Browser Plugin Loader, C:\PROGRA~1\MAPSGA~2\bar\1.bin\39brmon.exe, No Action By User, [d5a0e9b482f9bd7942fe8778b54eae52]
    PUP.Optional.MindSpark.A, HKLM\SOFTWARE\MOZILLA\FIREFOX\EXTENSIONS|39ffxtbr@MapsGalaxy_39.com, C:\Program Files\MapsGalaxy_39\bar\1.bin, No Action By User, [561f118c2e4d270f0472dfec867cae52]

    Registry Data: 1
    PUP.Optional.AskWebSearch, HKU\S-1-5-21-1487326759-1637172300-2759909452-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, http://home.tb.ask.com/index.jhtml?n=77DE8857&p2=^UX^xdm011^YYA^us&ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&si=maps4pc, Good: (www.google.com), Bad: (http://home.tb.ask.com/index.jhtml?n=77DE8857&p2=^UX^xdm011^YYA^us&ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&si=maps4pc),No Action By User,[5e17edb0b7c4cc6ac8fbaee9e81c956b]

    Folders: 42
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\chrome, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\ThirdPartyInstallers, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\gen1, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\IE9Mesg, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\Message, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\Settings, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\components, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\META-INF, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Local\Temp\mt_ffx\Industriya\privitize, No Action By User, [b0c51b82601b47efdfeed0d3a161ac54],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Local\Temp\mt_ffx\Industriya\privitize\1.8.16.22, No Action By User, [b0c51b82601b47efdfeed0d3a161ac54],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\fonts, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\fonts, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\chrome, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\META-INF, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\plugins, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\MapsGalaxy_39, No Action By User, [5025702d4f2ccc6a20bf6b39976b9070],

    Files: 335
    PUP.Optional.AudioToAudioToolBar.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39barsvc.exe, No Action By User, [076e9904a9d20e28b3197bba7c845ba5],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39bar.dll, No Action By User, [6213dcc15e1d0d29c4268cc5e51d6e92],
    PUP.Optional.FunWebProducts.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39sknlcr.dll, No Action By User, [2550a8f5017a77bfe28bddac8d7525db],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrcAs.dll, No Action By User, [97de8419413a2412cb2465ec53af3bc5],
    PUP.Optional.Topmedia, C:\$RECYCLE.BIN\S-1-5-21-1487326759-1637172300-2759909452-1001\$R6U580G.exe, No Action By User, [d4a19effe794c2744577b6a0c93b936d],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\searchplugins\ask-web-search.xml, No Action By User, [d0a50c9119625bdb32e308b87a888f71],
    PUP.Optional.MindSpark, C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrchMn.exe, No Action By User, [7bfa237a0b70c175a0a1b14ea65df20e],
    PUP.Optional.MindSpark, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brmon.exe, No Action By User, [d5a0e9b482f9bd7942fe8778b54eae52],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39auxstb.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39bprtct.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39brstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39datact.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39dlghk.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39dyn.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39feedmg.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39highin.exe, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39hkstub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39htmlmu.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39httpct.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39idle.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39ieovr.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39impipe.exe, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39medint.exe, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39mlbtn.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39msg.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39Plugin.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39radio.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39regfft.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39reghk.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39regiet.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39script.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
     
  2. 2014/07/09
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    more scans

    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39skin.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39skplay.exe, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39tpinst.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\39uabtn.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\AppIntegrator64.exe, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\AppIntegratorStub64.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\BOOTSTRAP.JS, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\CHROME.MANIFEST, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\CREXT.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\CrExtP39.exe, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\DPNMNGR.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\EXEMANAGER.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\Hpg64.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\INSTALL.RDF, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\installKeys.js, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\LOGO.BMP, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\NP39Stub.dll, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\T8EXTEX.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\T8EXTPEX.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\T8HTML.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\T8RES.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\T8TICKER.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\VERIFY.DLL, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\1.bin\chrome\39ffxtbr.jar, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\gen1\COMMON.T8S, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\IE9Mesg\COMMON.T8S, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\Message\COMMON.T8S, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.MindSpark.A, C:\Program Files\MapsGalaxy_39\bar\Settings\s_pid.dat, No Action By User, [c6af0e8fc9b2b28464df277be41ecb35],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\chrome.manifest, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\install.rdf, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\components\FFDisp.dll, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\dpk.htm, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\hlprs.js, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\loader.xul, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\mtstart.js, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\privitize.css, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\privitize.xul, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\serp.js, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\tmplt.js, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\arwDwn.gif, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\closeo.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\help_16.gif, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\home.gif, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\icon_seperator.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\logo.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\privecy_16_hot.gif, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\sign.jpg, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\specialoffer.gif, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\tellafriend.gif, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\uninstall.gif, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\ae.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\bg.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\ch.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\cn.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\cz.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\de.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\eg.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\en.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\es.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\fr.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\gr.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\he.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\il.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\it.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\ja.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\jp.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\nl.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\no.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\pl.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\pt.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\ro.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\ru.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\sa.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\se.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\sv.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\tr.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\ua.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\content\imgs\flgs\us.png, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\META-INF\manifest.mf, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\META-INF\zigbert.rsa, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\ffxtlbr@privitize.com\META-INF\zigbert.sf, No Action By User, [a2d3207d55267cbaeedebde6fe0457a9],
    PUP.Optional.PrivitizeTB.A, C:\Users\billy\AppData\Local\Temp\mt_ffx\Industriya\privitize\1.8.16.22\privitize.xpi, No Action By User, [b0c51b82601b47efdfeed0d3a161ac54],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\38CCFEF0-E42E-457B-80EE-153BE88D3341.sqlite, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\UrlFolderExtension.uf1, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\UrlFolderExtension.ufm, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\anemone-1.2.7.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\background.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\Date.getWeek.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\hidden-window.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\ie7-fix.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\jquery-1.7.2.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\jquery-dropdown.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\jquery-inputfieldrestrict.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\jquery-modal.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\jquery-ui.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\json2.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\manifest.json, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\underscore-1.3.1.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\widget-api-1.2.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\window.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\css\dropdown.css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\css\modal.css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\css\widget.css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\favicon.ico, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\FBwidget_sprite.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icon.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icon.bmp,hot,flags=none.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icon.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\loading.gif, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F0.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F0.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F1.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F1.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F10.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F10.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F2.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F2.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F3.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F3.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F4.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F4.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F5.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F5.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F6.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F6.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F7.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F7.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F8.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F8.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F9.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\images\icons\F9.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\js\background.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\js\hiddenwindow.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\js\settings.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\91fbdd335935d6fab2f0f46ec3451b3a18a24a23\1.2.3\js\widgetwindow.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\anemone-1.2.7.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\App.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\Background.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\EventManager.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\hogan-2.0.0.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\jquery-1.7.1.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\manifest.json, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\reset.css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\snippets.txt, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\underscore-1.3.1.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\widget-messaging-1.0.SNAPSHOT.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\css\App.css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\fonts\cabin.eot, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\fonts\cabin.woff, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\arrow.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\close.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\close2.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\delete.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\delete2.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\edit.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\find.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\go.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\logo.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\MapsGalaxy.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\MapsGalaxy.bmp,hot,flags=none.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\MapsGalaxy.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\MapsGalaxy2.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\MapsGalaxy2.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\save.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\save2.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\settings.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\images\stars.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\App.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\App.Test.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Background.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Data.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\FindLocation.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\GetDirections.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\MapsGalaxy.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\MGDropDown.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Modals.Delete.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Modals.Location.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Modals.MaxRecent.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Modals.MaxSaved.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Reporting.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\d0e0492c497d8c260a5e799f8212a9e2b288600a\1.0.2\js\Settings.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\anemone-1.2.7.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\App.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\Background.html, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\hogan-2.0.0.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\jquery-1.7.1.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\json2.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\manifest.json, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\reset.css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\underscore-1.4.2.min.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\widget-api-1.2.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\css\App.css, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\fonts\cabin.eot, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\fonts\cabin.woff, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\close.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\MainIcon.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\MainIcon.bmp,hot,flags=none.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\MainIcon.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\minimize.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\rateUISprite.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\rate_WB.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\search.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\WBlogo.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfRain.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfRain.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfRain_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfRain_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfSnow.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfSnow.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfSnow_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfSnow_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfStorm.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfStorm.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfStorm_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfStorm_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfTstorm.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfTstorm_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfTstorm_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Cloudy.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Cloudy.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Cloudy_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Dust.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Dust.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Dust_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Dust_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Fog.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Fog.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Fog_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Fog_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Ice.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Ice.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Ice_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Ice_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MainIcon.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MainIcon.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misc.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misc.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misc_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misc_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misty.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misty.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misty_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Misty_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlyCloudy.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlyCloudy_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39
     

  3. to hide this advert.

  4. 2014/07/09
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    last bit and the dds logs

    \e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlyCloudy_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlySunny.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlySunny.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlySunny_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlySunny_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Rain.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Rain.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Rain_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\SevereWeatherAdvisory.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\SevereWeatherAdvisory.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\SevereWeatherWarning.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\SevereWeatherWarning.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\SevereWeatherWatch.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\SevereWeatherWatch.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Showers.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Showers.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Showers_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\ChanceOfTstorm.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Cloudy_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\MostlyCloudy.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Rain_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Showers_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sleet.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sleet.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sleet_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sleet_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Snow.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Snow.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Snow_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Snow_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sunny.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sunny.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sunny_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Sunny_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Thunderstorm.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Thunderstorm.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Thunderstorm_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Thunderstorm_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Windy.bmp, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Windy.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Windy_60x60.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\images\weather\Windy_90x90.png, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\js\App.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\js\App.Test.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\js\Background.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\js\Settings.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Local\MapsGalaxy_39\e437a5256462a30d394f92ef7f9b66af4601a2bd\1.1.2\js\WeatherBlink.js, No Action By User, [1d58cad3f289270fadec366e4db5ed13],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\bootstrap.js, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\chrome.manifest, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\install.rdf, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\install_no_bootstrap.rdf, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\chrome\39ffxtbr.jar, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\META-INF\manifest.mf, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\META-INF\zigbert.rsa, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\META-INF\zigbert.sf, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\39ffxtbr@MapsGalaxy_39.com\plugins\NativeMessagingDispatcher.dll, No Action By User, [2550079672093402c3d7b0f4808212ee],
    PUP.Optional.MindSpark.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\MapsGalaxy_39\38CCFEF0-E42E-457B-80EE-153BE88D3341.sqlite, No Action By User, [5025702d4f2ccc6a20bf6b39976b9070],
    PUP.Optional.ASK.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\prefs.js, Good: (), Bad: (user_pref( "browser.startup.homepage ", "http://home.tb.ask.com/index.jhtml?ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&n=77fd06ad&p2=^UX^xdm011^YYA^us&si=maps4pc ");), No Action By User,[3540316cf08b999d2bf06365956f26da]
    PUP.Optional.ASK.A, C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\prefs.js, Good: (), Bad: (user_pref( "keyword.URL ", "http://search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&n=77fd06ad&ind=2013071021&p2=^UX^xdm011^YYA^us&si=maps4pc&searchfor= ");), No Action By User,[0570dfbe88f33df99785f3d5d82c9868]

    Physical Sectors: 0
    (No malicious items detected)


    (end)

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft® Windows Vistaâ„¢ Home Premium
    Boot Device: \Device\HarddiskVolume2
    Install Date: 11/6/2012 9:18:18 AM
    System Uptime: 7/8/2014 10:18:29 PM (2 hours ago)
    .
    Motherboard: Intel Corporation | | OEMD975XBGG1
    Processor: Intel(R) Core(TM)2 Quad CPU @ 2.40GHz | LGA 775 | 2394/266mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 456 GiB total, 342.602 GiB free.
    D: is FIXED (NTFS) - 9 GiB total, 4.429 GiB free.
    E: is CDROM (CDFS)
    F: is Removable
    G: is Removable
    H: is Removable
    I: is Removable
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    .
    ==== Installed Programs ======================
    .
    32 Bit HP CIO Components Installer
    Adobe Flash Player 14 ActiveX
    Adobe Flash Player 14 Plugin
    Adobe Reader X (10.1.10)
    AIO_CDA_ProductContext
    AIO_CDA_Software
    AIO_Scan
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Audacity 2.0.3
    Avira Free Antivirus
    Bonjour
    Browser Address Error Redirector
    BufferChm
    C5100
    c5100_Help
    Compatibility Pack for the 2007 Office system
    Copy
    CustomerResearchQFolder
    Destinations
    DeviceManagementQFolder
    Digital Media Reader
    DocProc
    DocProcQFolder
    Dropbox
    ESI Media Manager
    eSupportQFolder
    EuroTalk Talk Now Plus!
    Fax
    Gateway Recovery Center Installer
    Google Drive
    Google Update Helper
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    HP Customer Participation Program 8.0
    HP Imaging Device Functions 8.0
    HP OCR Software 8.0
    HP Photosmart Essential
    HP Photosmart.All-In-One Driver Software 8.0 .A
    HP Product Assistant
    HP Solution Center 8.0
    HP Update
    HPProductAssistant
    HPSSupply
    Indeo® Software
    Intel(R) Matrix Storage Manager
    Intel(R) PRO Network Connections Drivers
    Intel(R) Viiv(TM) Software
    iTunes
    Java 7 Update 60
    Java Auto Updater
    Java(TM) SE Runtime Environment 6 Update 1
    LAME v3.99.3 (for Windows)
    Linkit_eBay
    Malwarebytes Anti-Malware version 2.0.2.1012
    MapsGalaxy Firefox Toolbar
    MapsGalaxy Internet Explorer Toolbar
    MarketResearch
    Microsoft .NET Framework 3.5 SP1
    Microsoft Office Word Viewer 2003
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Microsoft Works
    Mozilla Firefox 30.0 (x86 en-US)
    Mozilla Maintenance Service
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    NVIDIA 3D Vision Controller Driver 314.22
    NVIDIA Control Panel 314.22
    NVIDIA Graphics Driver 314.22
    NVIDIA Install Application
    NVIDIA PhysX
    NVIDIA PhysX System Software 9.12.1031
    NVIDIA Update 1.12.12
    NVIDIA Update Components
    OpenOffice.org 3.4.1
    Power2Go 5.0
    QuickTime
    Scan
    SHARP MFP Driver
    SigmaTel Audio
    Soft Data Fax Modem with SmartCP
    SolutionCenter
    Status
    TeamViewer 9
    Toolbox
    TrayApp
    UnloadSupport
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    WebReg
    .
    ==== End Of File ===========================
    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 7.0.6000.16982 BrowserJavaVersion: 10.60.2
    Run by billy at 0:44:27 on 2014-07-09
    Microsoft® Windows Vistaâ„¢ Home Premium 6.0.6000.0.1252.1.1033.18.2044.841 [GMT -4:00]
    .
    .
    ============== Running Processes ================
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\SLsvc.exe
    C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\System32\spoolsv.exe
    C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe
    C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\DRIVERS\xaudio.exe
    C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
    C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
    C:\Windows\system32\WUDFHost.exe
    C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
    C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
    C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\WINDOWS\sttray.exe
    C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\MapsGalaxy_39\bar\1.bin\39SrchMn.exe
    C:\Program Files\MapsGalaxy_39\bar\1.bin\39brmon.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\WINDOWS\ehome\ehtray.exe
    C:\Program Files\Google\Drive\googledrivesync.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Users\billy\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files\OpenOffice.org 3\program\soffice.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
    C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\OpenOffice.org 3\program\soffice.bin
    C:\Program Files\Google\Drive\googledrivesync.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\system32\wuauclt.exe
    C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
    C:\Program Files\TeamViewer\Version9\TeamViewer.exe
    C:\Program Files\TeamViewer\Version9\tv_w32.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Program Files\Avira\AntiVir Desktop\sched.exe
    C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    C:\Windows\system32\NOTEPAD.EXE
    C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
    C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k rpcss
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\svchost.exe -k hpdevmgmt
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Windows\System32\svchost.exe -k WerSvcGroup
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://home.tb.ask.com/index.jhtml?n=77DE8857&p2=^UX^xdm011^YYA^us&ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&si=maps4pc
    mStart Page = hxxp://www.gateway.com/g/startpage.html?Ch=Consumer&Br=GTW&Loc=ENG_US&Sys=DTP&M=FX530QS
    mDefault_Page_URL = hxxp://www.gateway.com/g/startpage.html?Ch=Consumer&Br=GTW&Loc=ENG_US&Sys=DTP&M=FX530QS
    uProxyOverride = <local>;*.local
    mSearchAssistant = hxxp://searchou.com/?q={searchTerms}&id=142ea6670000000000000019d1802e97&r=734
    uURLSearchHooks: <No Name>: {26842a09-ffa8-4e2c-ae12-0c80f01c3295} - c:\program files\mapsgalaxy_39\bar\1.bin\39SrcAs.dll
    BHO: Toolbar BHO: {1e91a655-bb4b-4693-a05e-2edebc4c9d89} - c:\program files\mapsgalaxy_39\bar\1.bin\39bar.dll
    BHO: Search Assistant BHO: {71c1d63a-c944-428a-a5bd-ba513190e5d2} - c:\program files\mapsgalaxy_39\bar\1.bin\39SrcAs.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
    BHO: CBrowserHelperObject Object: {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\google\BAE.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
    TB: MapsGalaxy: {364EA597-E728-4CE4-BB4A-ED846EF47970} - c:\program files\mapsgalaxy_39\bar\1.bin\39bar.dll
    TB: MapsGalaxy: {364ea597-e728-4ce4-bb4a-ed846ef47970} - c:\program files\mapsgalaxy_39\bar\1.bin\39bar.dll
    uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
    uRun: [GoogleDriveSync] "c:\program files\google\drive\googledrivesync.exe" /autostart
    uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil32_13_0_0_214_Plugin.exe -update plugin
    mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide
    mRun: [auditadmin] c:\windows\options\auditadmin.cmd
    mRun: [CCUTRAYICON] c:\program files\intel\inteldh\ccu\CCU_TrayIcon.exe
    mRun: [NMSSupport] "c:\program files\common files\intel\inteldh\nms\support\IntelHCTAgent.exe" /startup
    mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe "
    mRun: [NapsterShell] c:\program files\napster\napster.exe /systray
    mRun: [BigFix] c:\program files\bigfix\bigfix.exe /atstartup
    mRun: [SigmatelSysTrayApp] sttray.exe
    mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
    mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe "
    mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe "
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
    mRun: [MapsGalaxy Search Scope Monitor] "c:\progra~1\mapsga~2\bar\1.bin\39srchmn.exe" /m=2 /w /h
    mRun: [MapsGalaxy_39 Browser Plugin Loader] c:\progra~1\mapsga~2\bar\1.bin\39brmon.exe
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe "
    mRunOnce: [Launcher] c:\windows\sminst\launcher.exe
    StartupFolder: c:\users\billy\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\billy\appdata\roaming\dropbox\bin\Dropbox.exe
    StartupFolder: c:\users\billy\appdata\roaming\micros~1\windows\startm~1\programs\startup\mediam~1.lnk - c:\windows\installer\{613ca9ad-f3b9-44fd-bbd0-33165c7b3ce8}\_318E9164AE329D7CEC64F6.exe
    StartupFolder: c:\users\billy\appdata\roaming\micros~1\windows\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
    StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBC} - c:\program files\java\jre7\bin\jp2iexp.dll
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
    TCP: NameServer = 192.168.1.1
    TCP: Interfaces\{DE4A6335-C221-4C4F-A061-423A1910137E} : DHCPNameServer = 192.168.1.1
    LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\users\billy\appdata\roaming\mozilla\firefox\profiles\572j9nzd.default\
    FF - prefs.js: browser.startup.homepage - hxxp://home.tb.ask.com/index.jhtml?ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&n=77fd06ad&p2=^UX^xdm011^YYA^us&si=maps4pc
    FF - prefs.js: keyword.URL - hxxp://search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&n=77fd06ad&ind=2013071021&p2=^UX^xdm011^YYA^us&si=maps4pc&searchfor=
    FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
    FF - plugin: c:\program files\google\update\1.3.24.15\npGoogleUpdate3.dll
    FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: c:\program files\mapsgalaxy_39\bar\1.bin\NP39Stub.dll
    FF - plugin: c:\users\billy\appdata\roaming\mozilla\firefox\profiles\572j9nzd.default\extensions\{9eb34849-81d3-4841-939d-666d522b889a}\plugins\npSlingPlayer.dll
    FF - plugin: c:\users\billy\appdata\roaming\mozilla\firefox\profiles\572j9nzd.default\extensions\2020player_ikea@2020technologies.com\plugins\NP_2020Player_IKEA.dll
    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_14_0_0_145.dll
    FF - ExtSQL: !HIDDEN! 2013-07-10 21:51; 39ffxtbr@MapsGalaxy_39.com; c:\program files\mapsgalaxy_39\bar\1.bin
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [2012-11-6 37352]
    R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\avira\antivir desktop\sched.exe [2012-11-6 430160]
    R2 AntiVirService;Avira Real-Time Protection;c:\program files\avira\antivir desktop\avguard.exe [2012-11-6 430160]
    R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2012-11-6 97648]
    R2 DQLWinService;DQLWinService;c:\program files\common files\intel\inteldh\nms\adpplugins\DQLWinService.exe [2006-10-29 208896]
    R2 MapsGalaxy_39Service;MapsGalaxyService;c:\progra~1\mapsga~2\bar\1.bin\39barsvc.exe [2013-7-10 42504]
    R2 MCLServiceATL;Intel(R) Application Tracker;c:\program files\intel\inteldh\intel media server\shells\MCLServiceATL.exe [2006-11-18 174552]
    R2 nmsgopro;GoProto Protocol Driver for NMS;c:\windows\system32\drivers\nmsgopro.sys [2006-9-27 28672]
    R2 nmsunidr;UniDriver for NMS;c:\windows\system32\drivers\nmsunidr.sys [2006-10-19 7424]
    R2 SC0CLPT;SC0CLPT;c:\windows\system32\SC0CLPT.SYS [2013-6-19 54456]
    R2 TeamViewer9;TeamViewer 9;c:\program files\teamviewer\version9\TeamViewer_Service.exe [2014-5-6 5037888]
    R3 IAMTV;Driver for Intel(R) Active Management Technology - KCS;c:\windows\system32\drivers\IAMTV.sys [2007-6-22 38280]
    R3 IntelDH;IntelDH Driver;c:\windows\system32\drivers\IntelDH.sys [2012-11-6 5504]
    R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-12-6 110296]
    S3 NETw2v32;Intel(R) PRO/Wireless 2200BG Network Connection Driver for Windows Vista;c:\windows\system32\drivers\NETw2v32.sys [2006-11-2 2589184]
    .
    =============== Created Last 30 ================
    .
    2014-07-09 02:29:15 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
    2014-07-09 02:29:15 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
    2014-07-09 02:29:15 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
    .
    ==================== Find3M ====================
    .
    2014-07-09 03:21:27 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2014-07-09 03:21:27 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2014-07-09 02:31:04 110296 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2014-06-24 12:35:55 97648 ----a-w- c:\windows\system32\drivers\avgntflt.sys
    2014-05-12 11:25:54 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
    2014-05-07 19:02:46 96680 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
    .
    ============= FINISH: 0:45:00.81 ===============
     
  5. 2014/07/09
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    Hello and welcome to Windowsbbs.com My name is Dave. I will be helping you out with your particular problem on your computer.

    1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
    2. The fixes are specific to your problem and should only be used for this issue on this machine.
    3. If you don't know or understand something, please don't hesitate to ask.
    4. Please DO NOT run any other tools or scans while I am helping you.
    5. It is important that you reply to this thread. Do not start a new topic.
    6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
    7. Absence of symptoms does not mean that everything is clear.

    If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
    *************************************************************************
    Please download AdwCleaner by Xplode onto your Desktop.

    Before starting AdwCleaner, close all open programs and internet browsers, then double-click on the AdwCleaner icon.

    [​IMG]

    If Windows prompts you as to whether or not you wish to run AdwCleaner, please allow it to run.
    When the AdwCleaner program will open, click on the Scan button as shown below.

    [​IMG]

    AdwCleaner will now start to search for malicious files that may be installed on your computer.
    To remove the files that were detected in the previous step, please click on the Clean button.

    [​IMG]

    AdwCleaner will now prompt you to save any open files or data as the program will need to reboot the computer. Please do so and then click on the OK button. AdwCleaner will now delete all detected adware from your computer. When it is done it will display an alert that explains what PUPs (Potentially Unwanted Programs) and Adware are. Please read through this information and then press the OK button. You will now be presented with an alert that states AdwCleaner needs to reboot your computer.
    Please click on the OK button to allow AdwCleaner reboot your computer.A log will be produced. Please copy and paste this log in your next reply.
    *********************************************
    Please run MBAM and, this time, remove the infections.
    *************************************************
    Please download Junkware Removal Tool to your desktop.

    •Warning! Once the scan is complete JRT will shut down your browser with NO warning.

    •Shut down your protection software now to avoid potential conflicts.

    •Temporarily disable your Antivirus and any Antispyware real time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

    •Run the tool by double-clicking it. If you are using Windows Vista or Windows 7, right-click JRT and select Run as Administrator

    •The tool will open and start scanning your system.

    •Please be patient as this can take a while to complete depending on your system's specifications.

    •On completion, a log (JRT.txt) is saved to your desktop and will automatically open.

    •Copy and Paste the JRT.txt log into your next message.
    **********************************************
    Download Security Check by screen317 from one of the following links and save it to your desktop.

    Link 1
    Link 2

    * Double-click Security Check.bat
    * Follow the on-screen instructions inside of the black box.
    * A Notepad document should open automatically called checkup.txt
    * Post the contents of that document in your next reply.

    Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.
     
  6. 2014/07/09
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    posts

    Hey Dave,

    Thanks for your help. I appreciate it.

    here are the logs you requested but the security check wouldn't run. It said unsupported operating system, abort.
    # AdwCleaner v2.301 - Logfile created 05/17/2013 at 07:53:02
    # Updated 16/05/2013 by Xplode
    # Operating system : Windows Vista (TM) Home Premium (32 bits)
    # User : billy - BILLY-PC
    # Boot Mode : Normal
    # Running from : C:\Users\billy\Downloads\adwcleaner.exe
    # Option [Search]


    ***** [Services] *****


    ***** [Files / Folders] *****

    Folder Found : C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\staged

    ***** [Registry] *****

    Key Found : HKCU\Software\PrivitizeVPNInstallDates
    Key Found : HKCU\Software\StartSearch
    Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966

    ***** [Internet Browsers] *****

    -\\ Internet Explorer v7.0.6000.16982

    [OK] Registry is clean.

    -\\ Mozilla Firefox v20.0.1 (en-US)

    File : C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\prefs.js

    [OK] File is clean.

    *************************

    AdwCleaner[R1].txt - [996 octets] - [17/05/2013 07:53:02]

    ########## EOF - C:\AdwCleaner[R1].txt - [1055 octets] ##########
    # AdwCleaner v2.301 - Logfile created 05/17/2013 at 07:55:05
    # Updated 16/05/2013 by Xplode
    # Operating system : Windows Vista (TM) Home Premium (32 bits)
    # User : billy - BILLY-PC
    # Boot Mode : Normal
    # Running from : C:\Users\billy\Downloads\adwcleaner.exe
    # Option [Delete]


    ***** [Services] *****


    ***** [Files / Folders] *****

    Folder Deleted : C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\extensions\staged

    ***** [Registry] *****

    Key Deleted : HKCU\Software\PrivitizeVPNInstallDates
    Key Deleted : HKCU\Software\StartSearch
    Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966

    ***** [Internet Browsers] *****

    -\\ Internet Explorer v7.0.6000.16982

    [OK] Registry is clean.

    -\\ Mozilla Firefox v20.0.1 (en-US)

    File : C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\prefs.js

    C:\Users\billy\AppData\Roaming\Mozilla\Firefox\Profiles\572j9nzd.default\user.js ... Deleted !

    [OK] File is clean.

    *************************

    AdwCleaner[R1].txt - [1124 octets] - [17/05/2013 07:53:02]
    AdwCleaner[S1].txt - [1162 octets] - [17/05/2013 07:55:05]

    ########## EOF - C:\AdwCleaner[S1].txt - [1222 octets] ##########
    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Scan Date: 7/9/2014
    Scan Time: 6:59:47 PM
    Logfile: scan09.txt
    Administrator: Yes

    Version: 2.00.2.1012
    Malware Database: v2014.07.09.12
    Rootkit Database: v2014.07.09.01
    License: Free
    Malware Protection: Disabled
    Malicious Website Protection: Disabled
    Self-protection: Disabled

    OS: Windows Vista
    CPU: x86
    File System: NTFS
    User: billy

    Scan Type: Threat Scan
    Result: Completed
    Objects Scanned: 489637
    Time Elapsed: 1 hr, 42 min, 16 sec

    Memory: Enabled
    Startup: Enabled
    Filesystem: Enabled
    Archives: Enabled
    Rootkits: Disabled
    Heuristics: Enabled
    PUP: Warn
    PUM: Enabled

    Processes: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Registry Keys: 0
    (No malicious items detected)

    Registry Values: 0
    (No malicious items detected)

    Registry Data: 0
    (No malicious items detected)

    Folders: 0
    (No malicious items detected)

    Files: 0
    (No malicious items detected)

    Physical Sectors: 0
    (No malicious items detected)


    (end)
     
  7. 2014/07/09
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    Ok, I'll wait until you post the other two logs before proceeding further.
     
  8. 2014/07/09
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    hey Dave,

    here is the JRT log. what is the other log you need? I posted the adware and the malwarebytes log. Am I missing one?


    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 6.1.3 (03.23.2014:1)
    OS: Windows Vista (TM) Home Premium x86
    Ran by billy on Wed 07/09/2014 at 20:57:03.68
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services



    ~~~ Registry Values




    ~~~ Registry Keys

    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.dynamicbarbutton
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.dynamicbarbutton.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.feedmanager
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.feedmanager.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlmenu
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlmenu.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlpanel
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlpanel.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.multiplebutton
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.multiplebutton.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.pseudotransparentplugin
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.pseudotransparentplugin.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radio
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radio.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radiosettings
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radiosettings.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.scriptbutton
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.scriptbutton.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.settingsplugin
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.settingsplugin.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.skinlauncher
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.skinlauncher.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.thirdpartyinstaller
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.thirdpartyinstaller.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.urlalertbutton
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.urlalertbutton.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.xmlsessionplugin
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.xmlsessionplugin.1
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1241CEBD-9777-4BC6-AAE5-2A77E25DB246}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{173A5778-34BF-48A2-8A5E-6963CE922FED}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1796EC91-D094-4A5F-B681-E16015D1CEAC}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{26842A09-FFA8-4E2C-AE12-0C80F01C3295}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{37ED966D-4D0E-4D66-9633-BEA542C92860}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3ED5E5EC-0965-4DD3-B7D8-DBC48A1172B9}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4B7D0B0C-CFF3-49C5-9BC3-FFABC031C822}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4F28FA5F-7D15-4753-B4FC-D548A0F02BFB}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{5E1BDCF6-DD5F-4DD3-8783-B1454AEF1830}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{7D4DFAF7-F2CE-4C91-91A4-514C9612914D}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{9B58A6CE-B337-43D5-9C2F-8C6D92FBA094}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A083C35D-61A9-4625-BBB6-FB54E71B8527}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A35FF019-6DBE-4044-B080-6F3FA78A947F}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{B70E008C-967B-4104-BC7B-6F7C77DBC38D}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{C4A25B73-8EF5-4282-9D21-C8920DD577A1}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CAE88E60-CEA5-4FCB-B611-54EA6305D8AB}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DB1384D8-1BDA-4C8D-A743-E9CA671FEB00}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E045DF14-BF1D-405C-A37B-A75C1551AD17}
    Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F3477E9D-D2F6-49F0-9B23-854D7958D07E}
    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}



    ~~~ Files



    ~~~ Folders

    Successfully deleted: [Folder] "C:\Program Files\bigfix "



    ~~~ FireFox

    Successfully deleted the following from C:\Users\billy\AppData\Roaming\mozilla\firefox\profiles\572j9nzd.default\prefs.js

    user_pref( "extensions.privitize.cntry ", "US ");
    user_pref( "extensions.privitize.dpkLst ", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,32249
    user_pref( "extensions.privitize.hdrMd5 ", " ");
    user_pref( "extensions.privitize.lastB ", "hxxp://home.tb.ask.com/index.jhtml?ptb=38CCFEF0-E42E-457B-80EE-153BE88D3341&n=77fd06ad&p2=^UX^xdm011^YYA^us&si=maps4pc ");
    user_pref( "extensions.privitize.lastVrsnTs ", " ");
    user_pref( "extensions.privitize.sg ", "{smplGrp} ");
    Emptied folder: C:\Users\billy\AppData\Roaming\mozilla\firefox\profiles\572j9nzd.default\minidumps [33 files]



    ~~~ Event Viewer Logs were cleared





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on Wed 07/09/2014 at 21:01:00.96
    Computer was rebooted
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     
  9. 2014/07/10
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    The Security Scan.

    Malwarebytes' Anti-Rootkit

    Please download Malwarebytes' Anti-Rootkit and save it to your desktop.
    • Be sure to print out and follow the instructions provided on that same page for performing a scan.
    • Caution: This is a beta version so also read the disclaimer and back up all your data before using.
    • When the scan completes, click on the Cleanup button to remove any threats found and reboot the computer if prompted to do so.
    • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
    • If there are problems with Internet access, Windows Update, Windows Firewall or other system issues, run the fixdamage tool located in the folder Malwarebytes Anti-Rootkit was run from and reboot your computer.
    • Two files (mbar-log-YYYY-MM-DD, system-log.txt) will be created and saved within that same folder.
    • Copy and paste the contents of these two log files in your next reply.
     
  10. 2014/07/11
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    Hey Dave,

    I get a "could not load DDA driver" error when I run the rootkit tool. It then asks if I want to reboot to install DDA driver, but when I do it says "could not install driver on boot. Scan can't continue. Although it doesn't reboot the computer.

    Thanks

    Billy
     
  11. 2014/07/11
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    You could try this one instead.

    • Download RogueKiller on the desktop
    • Close all the running programs
    • Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator
    • Otherwise just double-click on RogueKiller.exe
    • Pre-scan will start. Let it finish.
    • Click on SCAN button.
    • A report (RKreport.txt) should open. Post its content in your next reply. (RKreport could also be found on your desktop)
    • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again
     
  12. 2014/07/12
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    hey dave,

    It didn't automatically delete anything. Did you want me to do that?

    Here is the report:



    RogueKiller V9.2.2.0 [Jul 11 2014] by Adlice Software
    mail : http://www.adlice.com/contact/
    Feedback : http://forum.adlice.com
    Website : http://www.adlice.com/softwares/roguekiller/
    Blog : http://www.adlice.com

    Operating System : Windows Vista (6.0.6000 ) 32 bits version
    Started in : Normal mode
    User : billy [Admin rights]
    Mode : Scan -- Date : 07/12/2014 10:22:10

    ¤¤¤ Bad processes : 0 ¤¤¤

    ¤¤¤ Registry Entries : 10 ¤¤¤
    [Shell.HJ] HKEY_LOCAL_MACHINE\RK_Software_ON_D_166E\Microsoft\Windows NT\CurrentVersion\Winlogon | Shell : cmd.exe /k start cmd.exe -> FOUND
    [PUM.Https] HKEY_USERS\S-1-5-21-1487326759-1637172300-2759909452-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | WarnOnHTTPSToHTTPRedirect : 0 -> FOUND
    [PUM.Policies] HKEY_USERS\S-1-5-21-1487326759-1637172300-2759909452-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableRegistryTools : 0 -> FOUND
    [PUM.Policies] HKEY_USERS\S-1-5-21-1487326759-1637172300-2759909452-1001\Software\Microsoft\Windows\CurrentVersion\Policies\System | DisableTaskMgr : 0 -> FOUND
    [PUM.StartMenu] HKEY_USERS\S-1-5-21-1487326759-1637172300-2759909452-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowPrinters : 0 -> FOUND
    [PUM.StartMenu] HKEY_USERS\S-1-5-21-1487326759-1637172300-2759909452-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRun : 0 -> FOUND
    [PUM.DesktopIcons] HKEY_LOCAL_MACHINE\RK_Software_ON_D_166E\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> FOUND
    [PUM.DesktopIcons] HKEY_LOCAL_MACHINE\RK_Software_ON_D_166E\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND
    [PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> FOUND
    [PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND

    ¤¤¤ Scheduled tasks : 0 ¤¤¤

    ¤¤¤ Files : 0 ¤¤¤

    ¤¤¤ HOSTS File : 2 ¤¤¤
    [C:\Windows\System32\drivers\etc\hosts] 127.0.0.1 localhost
    [C:\Windows\System32\drivers\etc\hosts] ::1 localhost

    ¤¤¤ Antirootkit : 17 (Driver: LOADED) ¤¤¤
    [SSDT:Addr(Hook.SSDT)] NtClose[48] : Unknown @ 0x886a57bc
    [SSDT:Addr(Hook.SSDT)] NtCreateSection[75] : Unknown @ 0x886a57c6
    [SSDT:Addr(Hook.SSDT)] NtDuplicateObject[129] : Unknown @ 0x886a57b7
    [SSDT:Addr(Hook.SSDT)] NtOpenProcess[194] : Unknown @ 0x886a5758
    [SSDT:Addr(Hook.SSDT)] NtOpenThread[201] : Unknown @ 0x886a575d
    [SSDT:Addr(Hook.SSDT)] NtRequestWaitReplyPort[275] : Unknown @ 0x886a57d0
    [SSDT:Addr(Hook.SSDT)] NtSetContextThread[293] : Unknown @ 0x886a57cb
    [SSDT:Addr(Hook.SSDT)] NtSetSecurityObject[318] : Unknown @ 0x886a57d5
    [SSDT:Addr(Hook.SSDT)] NtSystemDebugControl[336] : Unknown @ 0x886a57da
    [SSDT:Addr(Hook.SSDT)] NtTerminateProcess[338] : Unknown @ 0x886a5767
    [ShwSSDT:Addr(Hook.Shadow)] NtUserSetWindowsHookEx[573] : Unknown @ 0x886a57ee
    [ShwSSDT:Addr(Hook.Shadow)] NtUserSetWinEventHook[576] : Unknown @ 0x886a57f3
    [Filter(Kernel.Filter)] \Driver\atapi @ \Device\CdRom0 : \Driver\GEARAspiWDM @ Unknown (\SystemRoot\system32\DRIVERS\serial.sys)
    [EAT:Addr] (explorer.exe) wscntfy.dll - CPlApplet : C:\Windows\System32\srchadmin.dll @ 0x66ba3f7e
    [EAT:Addr] (explorer.exe) wscntfy.dll - DllCanUnloadNow : C:\Windows\System32\srchadmin.dll @ 0x66b914b0
    [EAT:Addr] (explorer.exe) wscntfy.dll - DllGetClassObject : C:\Windows\System32\srchadmin.dll @ 0x66b938a1
    [EAT:Addr] (explorer.exe) wscntfy.dll - ProcessGroupPolicy : C:\Windows\System32\srchadmin.dll @ 0x66ba1319

    ¤¤¤ Web browsers : 0 ¤¤¤

    ¤¤¤ MBR Check : ¤¤¤
    +++++ PhysicalDrive0: WDC WD5000AAKS-00TMA0 +++++
    --- User ---
    [MBR] c460f3206ac58d15c1074f426e110740
    [BSP] 5201e21e972aaac81bd5c09c24e9dfd8 : HP MBR Code
    Partition table:
    0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 9617 MB
    1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 19695690 | Size: 467320 MB
    User = LL1 ... OK
    User = LL2 ... OK

    +++++ PhysicalDrive1: Generic USB SD Reader USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )

    +++++ PhysicalDrive2: Generic USB CF Reader USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )

    +++++ PhysicalDrive3: Generic USB SM Reader USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )

    +++++ PhysicalDrive4: Generic USB MS Reader USB Device +++++
    Error reading User MBR! ([15] The device is not ready. )
    Error reading LL1 MBR! NOT VALID!
    Error reading LL2 MBR! ([32] The request is not supported. )
     
  13. 2014/07/12
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    • Download TDSSKiller and save it to your Desktop.
    • Extract its contents to your desktop.
    • Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
    • If an infected file is detected, the default action will be Cure, click on Continue.
    • If a suspicious file is detected, the default action will be Skip, click on Continue.
    • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
    • Click the Report button and copy/paste the contents of it into your next reply
    Note:It will also create a log in the C:\ directory..
     
  14. 2014/07/13
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    Hey Dave

    Nothing found, here is the report.

    01:44:17.0905 0x0e44 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
    01:44:20.0693 0x0e44 ============================================================
    01:44:20.0693 0x0e44 Current date / time: 2014/07/13 01:44:20.0693
    01:44:20.0693 0x0e44 SystemInfo:
    01:44:20.0693 0x0e44
    01:44:20.0693 0x0e44 OS Version: 6.0.6000 ServicePack: 0.0
    01:44:20.0693 0x0e44 Product type: Workstation
    01:44:20.0693 0x0e44 ComputerName: BILLY-PC
    01:44:20.0694 0x0e44 UserName: billy
    01:44:20.0694 0x0e44 Windows directory: C:\Windows
    01:44:20.0694 0x0e44 System windows directory: C:\Windows
    01:44:20.0694 0x0e44 Processor architecture: Intel x86
    01:44:20.0694 0x0e44 Number of processors: 4
    01:44:20.0694 0x0e44 Page size: 0x1000
    01:44:20.0694 0x0e44 Boot type: Normal boot
    01:44:20.0694 0x0e44 ============================================================
    01:44:20.0838 0x0e44 KLMD registered as C:\Windows\system32\drivers\66445932.sys
    01:44:20.0939 0x0e44 System UUID: {CF4BFC88-9345-6DFD-9ABB-52BD868E9774}
    01:44:21.0413 0x0e44 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
    01:44:21.0433 0x0e44 ============================================================
    01:44:21.0433 0x0e44 \Device\Harddisk0\DR0:
    01:44:21.0434 0x0e44 MBR partitions:
    01:44:21.0434 0x0e44 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12C880B
    01:44:21.0434 0x0e44 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x12C884A, BlocksNum 0x390BC3F7
    01:44:21.0434 0x0e44 ============================================================
    01:44:21.0474 0x0e44 C: <-> \Device\Harddisk0\DR0\Partition2
    01:44:21.0493 0x0e44 D: <-> \Device\Harddisk0\DR0\Partition1
    01:44:21.0493 0x0e44 ============================================================
    01:44:21.0493 0x0e44 Initialize success
    01:44:21.0493 0x0e44 ============================================================
    01:44:44.0722 0x1598 ============================================================
    01:44:44.0722 0x1598 Scan started
    01:44:44.0722 0x1598 Mode: Manual;
    01:44:44.0722 0x1598 ============================================================
    01:44:44.0722 0x1598 KSN ping started
    01:44:44.0782 0x1598 KSN ping finished: true
    01:44:44.0907 0x1598 ================ Scan system memory ========================
    01:44:44.0907 0x1598 System memory - ok
    01:44:44.0907 0x1598 ================ Scan services =============================
    01:44:45.0001 0x1598 [ 4B56CAAFED0B0B996341D74CE0E76565, 6DE24ABA96B924DE4EBEAA189613019FB9B8B0B13756A2A43AB8163B57978C86 ] ac97intc C:\Windows\system32\drivers\ac97intc.sys
    01:44:45.0004 0x1598 ac97intc - ok
    01:44:45.0058 0x1598 [ 84FC6DF81212D16BE5C4F441682FECCC, 73F3BE94A98225A9F276C1A6C8BCA05571FF3BB012E7FF877F6C4AB11F62CBA0 ] ACPI C:\Windows\system32\drivers\acpi.sys
    01:44:45.0066 0x1598 ACPI - ok
    01:44:45.0130 0x1598 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    01:44:45.0132 0x1598 AdobeARMservice - ok
    01:44:45.0184 0x1598 [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    01:44:45.0192 0x1598 AdobeFlashPlayerUpdateSvc - ok
    01:44:45.0228 0x1598 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
    01:44:45.0254 0x1598 adp94xx - ok
    01:44:45.0289 0x1598 [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
    01:44:45.0298 0x1598 adpahci - ok
    01:44:45.0334 0x1598 [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
    01:44:45.0338 0x1598 adpu160m - ok
    01:44:45.0350 0x1598 [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
    01:44:45.0353 0x1598 adpu320 - ok
    01:44:45.0388 0x1598 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    01:44:45.0389 0x1598 AeLookupSvc - ok
    01:44:45.0409 0x1598 [ 5D24CAF8EFD924A875698FF28384DB8B, FA3DE58D8F4180E9B9FE1DED4B1BE09245F401899E614DBD6A3867CEF6E34977 ] AFD C:\Windows\system32\drivers\afd.sys
    01:44:45.0417 0x1598 AFD - ok
    01:44:45.0444 0x1598 [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys
    01:44:45.0446 0x1598 agp440 - ok
    01:44:45.0465 0x1598 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
    01:44:45.0468 0x1598 aic78xx - ok
    01:44:45.0519 0x1598 [ 80F4A5260FC8F95185313A1D229239CE, 61C0EAE63C3D200C98D961E97DE4446FB96E5FE2D2686198B8B856B2698B2364 ] AlertService C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
    01:44:45.0525 0x1598 AlertService - ok
    01:44:45.0538 0x1598 [ E69FB0E3112C40FDC0EF7D21A52DC951, 6FB299330EDEF77DC91FC279D90D8ADEA138EC98342116121F5879B50070963D ] ALG C:\Windows\System32\alg.exe
    01:44:45.0538 0x1598 ALG - ok
    01:44:45.0550 0x1598 [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys
    01:44:45.0551 0x1598 aliide - ok
    01:44:45.0575 0x1598 [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
    01:44:45.0577 0x1598 amdagp - ok
    01:44:45.0595 0x1598 [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys
    01:44:45.0597 0x1598 amdide - ok
    01:44:45.0621 0x1598 [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
    01:44:45.0622 0x1598 AmdK7 - ok
    01:44:45.0644 0x1598 [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
    01:44:45.0646 0x1598 AmdK8 - ok
    01:44:45.0802 0x1598 [ 4C14746BCBF9985BDBF1CD1BEED96DF8, 8EF50FBD98C9AFD85F5D08692E7AEC21812B70074AA0DC6DCDFDBC2FFE34A75D ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
    01:44:45.0819 0x1598 AntiVirSchedulerService - ok
    01:44:45.0851 0x1598 [ 4C14746BCBF9985BDBF1CD1BEED96DF8, 8EF50FBD98C9AFD85F5D08692E7AEC21812B70074AA0DC6DCDFDBC2FFE34A75D ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    01:44:45.0868 0x1598 AntiVirService - ok
    01:44:45.0899 0x1598 [ CFA455816879F06F1C4E5BBF9E8AEF7D, E10781DEE5A9CDD2D79E1696577B24095258DC261E0D303177B5D7E719F58B20 ] Appinfo C:\Windows\System32\appinfo.dll
    01:44:45.0900 0x1598 Appinfo - ok
    01:44:45.0944 0x1598 [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    01:44:45.0947 0x1598 Apple Mobile Device - ok
    01:44:45.0957 0x1598 [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
    01:44:45.0960 0x1598 arc - ok
    01:44:45.0982 0x1598 [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
    01:44:45.0985 0x1598 arcsas - ok
    01:44:45.0999 0x1598 [ E86CF7CE67D5DE898F27EF884DC357D8, 24C86D0A6340B618E97C91066A8E639EA672112A571C4B36B0BC1EB717DDA782 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    01:44:46.0001 0x1598 AsyncMac - ok
    01:44:46.0030 0x1598 [ B35CFCEF838382AB6490B321C87EDF17, A13985B87B5918D123072C7128E12DC28B0FCFD68383AFA6E1DA72A25BD781E0 ] atapi C:\Windows\system32\drivers\atapi.sys
    01:44:46.0031 0x1598 atapi - ok
    01:44:46.0042 0x1598 [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    01:44:46.0051 0x1598 AudioEndpointBuilder - ok
    01:44:46.0062 0x1598 [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] Audiosrv C:\Windows\System32\Audiosrv.dll
    01:44:46.0068 0x1598 Audiosrv - ok
    01:44:46.0104 0x1598 [ B0A63DD71CB0CB597D8BD5C364E73F7C, 572B31F3FC962F50110D42A08CDD0614323E18C213575710CEEFA35EE7CAE8C5 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
    01:44:46.0107 0x1598 avgntflt - ok
    01:44:46.0133 0x1598 [ 05AF7CBF0BDA1571BBADC36703EB9CA4, 3925AD58053769D317D3CF0DDDF7371B010F2F4C839CF7B44F327AE9D0AB5442 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
    01:44:46.0136 0x1598 avipbb - ok
    01:44:46.0145 0x1598 [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
    01:44:46.0147 0x1598 avkmgr - ok
    01:44:46.0172 0x1598 [ 08015D34F6FDD0B355805BAD978497C3, AAD5F919215B8630DCCADF2AC8DC82BAA543C52B1682B476093E014532B20EBD ] bcm4sbxp C:\Windows\system32\DRIVERS\bcm4sbxp.sys
    01:44:46.0174 0x1598 bcm4sbxp - ok
    01:44:46.0178 0x1598 [ AC3DD1708B22761EBD7CBE14DCC3B5D7, 395769C8DAA505E261033B9EA0319A7ED56A6289BAE11FDDA49002E25D9D8698 ] Beep C:\Windows\system32\drivers\Beep.sys
    01:44:46.0179 0x1598 Beep - ok
    01:44:46.0219 0x1598 [ 98EBDFFB824A7C265337D68DD480E45C, 81E495C7104FE9C1F996B2672ED22BE9E294D5C54B67FFCC6D2DD979DC94363C ] BFE C:\Windows\System32\bfe.dll
    01:44:46.0226 0x1598 BFE - ok
    01:44:46.0281 0x1598 [ DA551697E34D2B9943C8B1C8EAFFE89A, 5C0D13F7AE1D58E625932B00AD53F792B58900C93A1D5F97BD1D9605FCEAD51A ] BITS C:\Windows\System32\qmgr.dll
    01:44:46.0308 0x1598 BITS - ok
    01:44:46.0313 0x1598 blbdrive - ok
    01:44:46.0356 0x1598 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
    01:44:46.0363 0x1598 Bonjour Service - ok
    01:44:46.0369 0x1598 [ 913CD06FBE9105CE6077E90FD4418561, EC0ECE5A0DBCD8DC1B202517902D90FF0FC0F3875557828BFA079DDE92EF6F5D ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    01:44:46.0371 0x1598 bowser - ok
    01:44:46.0392 0x1598 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
    01:44:46.0393 0x1598 BrFiltLo - ok
    01:44:46.0399 0x1598 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
    01:44:46.0400 0x1598 BrFiltUp - ok
    01:44:46.0411 0x1598 [ BEB6470532B7461D7BB426E3FACB424F, 16439FD066EBBFF3F469FD5EC3A2FCAEC47DE9737A7DE93DA344EC4E2180D2F0 ] Browser C:\Windows\System32\browser.dll
    01:44:46.0413 0x1598 Browser - ok
    01:44:46.0430 0x1598 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
    01:44:46.0432 0x1598 Brserid - ok
    01:44:46.0453 0x1598 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
    01:44:46.0455 0x1598 BrSerWdm - ok
    01:44:46.0475 0x1598 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
    01:44:46.0476 0x1598 BrUsbMdm - ok
    01:44:46.0484 0x1598 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
    01:44:46.0485 0x1598 BrUsbSer - ok
    01:44:46.0504 0x1598 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
    01:44:46.0505 0x1598 BTHMODEM - ok
    01:44:46.0530 0x1598 [ 6C3A437FC873C6F6A4FC620B6888CB86, B316A1ABCDF74597C555B86A05DDED3B3F49F9D3B26D06AB312426C0A08B1AF6 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    01:44:46.0532 0x1598 cdfs - ok
    01:44:46.0554 0x1598 [ 8D1866E61AF096AE8B582454F5E4D303, 4506E77C727E1B4CAD24CAFB4654CFE82872621D25BB30B730F746AA80A14B84 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    01:44:46.0557 0x1598 cdrom - ok
    01:44:46.0577 0x1598 [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] CertPropSvc C:\Windows\System32\certprop.dll
    01:44:46.0578 0x1598 CertPropSvc - ok
    01:44:46.0589 0x1598 [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys
    01:44:46.0591 0x1598 circlass - ok
    01:44:46.0617 0x1598 [ 1B84FD0937D3B99AF9BA38DDFF3DAF54, 2ECF54240673F4518ECD7C9FE5CAA171CE64B5F293FA8C6C66A8AA65A35A9080 ] CLFS C:\Windows\system32\CLFS.sys
    01:44:46.0621 0x1598 CLFS - ok
    01:44:46.0684 0x1598 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    01:44:46.0687 0x1598 clr_optimization_v2.0.50727_32 - ok
    01:44:46.0714 0x1598 [ 0FED59EDB4A83FF17F1778827B88AB1A, FC6E72D9EF2B6CB652B688BC604B553119679323A73E3EA6ED0024D2A25AC354 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    01:44:46.0715 0x1598 CmBatt - ok
    01:44:46.0723 0x1598 [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys
    01:44:46.0725 0x1598 cmdide - ok
    01:44:46.0743 0x1598 [ 722936AFB75A7F509662B69B5632F48A, C386EA5E933C5D3F3FE162AE91F7D81C7C0765A1F790B1FF7B396A9DBDB4AD33 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    01:44:46.0744 0x1598 Compbatt - ok
    01:44:46.0748 0x1598 COMSysApp - ok
    01:44:46.0753 0x1598 [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
    01:44:46.0754 0x1598 crcdisk - ok
    01:44:46.0763 0x1598 [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
    01:44:46.0765 0x1598 Crusoe - ok
    01:44:46.0792 0x1598 [ 1C26FB097170A2A91066D1E3A24366E3, 277B8EBBAFA038C355B52CF32F390E057BCA5992EC0C5778F60C53CB0AA10777 ] CryptSvc C:\Windows\system32\cryptsvc.dll
    01:44:46.0795 0x1598 CryptSvc - ok
    01:44:46.0832 0x1598 [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] DcomLaunch C:\Windows\system32\rpcss.dll
    01:44:46.0845 0x1598 DcomLaunch - ok
    01:44:46.0852 0x1598 [ A7179DE59AE269AB70345527894CCD7C, 6AA67F34C7349B8B7EFA6E6C143DDA08F80D8D027E2E1AC41490E351C22BFA5B ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    01:44:46.0855 0x1598 DfsC - ok
    01:44:46.0955 0x1598 [ E0D584AA76C7D845BA9F3A788260528F, 5C3C3C95DF1BA8A32EC848B695793D44E7DF8BEA0BC3B91D54751CC20317EC22 ] DFSR C:\Windows\system32\DFSR.exe
    01:44:47.0046 0x1598 DFSR - ok
    01:44:47.0111 0x1598 [ DC45739BC22D528D2B3E50D3F6761750, A19AF7E001CF2BE0A2164435F6FDE5D9ABBBB697F1D0FE90DD7DF72AE564996F ] Dhcp C:\Windows\System32\dhcpcsvc.dll
    01:44:47.0118 0x1598 Dhcp - ok
    01:44:47.0124 0x1598 [ 841AF4C4D41D3E3B2F244E976B0F7963, 304920DB44B88881FE4FDC892CC8D529E16FE5E6AEA548BDFD4507DF0A1BF8C1 ] disk C:\Windows\system32\drivers\disk.sys
    01:44:47.0126 0x1598 disk - ok
    01:44:47.0153 0x1598 [ EECBA1DD142BF8693C476BE8F32FE253, 93241BD6F4E2D6F27BD5ED2F38C26AED7A666161F64C28A44E6608C7D1DF0D40 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    01:44:47.0157 0x1598 Dnscache - ok
    01:44:47.0179 0x1598 [ 1F795D214820E496BF1124434A6DB546, FC10DEF5A4A81540B347C54D7BE5C7D11F8E407AD28FD91E7CBAC15864FCC389 ] dot3svc C:\Windows\System32\dot3svc.dll
    01:44:47.0184 0x1598 dot3svc - ok
    01:44:47.0218 0x1598 [ 57B2D433A08B95E4F1B53A919937F3E5, 2F865762B9F8D97F5697D4C6824600AD68FF85197FFDF7C208E8DC6B49BB2830 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
    01:44:47.0222 0x1598 Dot4 - ok
    01:44:47.0240 0x1598 [ D93FA484BB62FBE7E5EF335C5415D3CF, DC8AC4CA443021D70E27A0DB74347217C0B8152F317E4E90A670ECB45AB5F3CF ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
    01:44:47.0241 0x1598 Dot4Print - ok
    01:44:47.0257 0x1598 [ 599742C4260FB3E8EDB3BE148B8CE856, 168E405FA3C354B0073629D3F0B4648AE4C3B621FF8643A45A3433C8115E2E12 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
    01:44:47.0258 0x1598 dot4usb - ok
    01:44:47.0289 0x1598 [ 032C90AD677BF7B7A8013D6087C7A921, 99CC6F49FCE59550E48CF86BEE91F15E9D108AA5FBCF903AC997E404ABF6AF46 ] DPS C:\Windows\system32\dps.dll
    01:44:47.0292 0x1598 DPS - ok
    01:44:47.0352 0x1598 [ A0B584C33F55545D56F9E71FB4E203AC, 7EB4FA1B152BAB9968268E98B1977DE06412B92730B00AC41F73C70EBCBC27AD ] DQLWinService C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
    01:44:47.0359 0x1598 DQLWinService - ok
    01:44:47.0378 0x1598 [ EE472CD2C01F6F8E8AA1FA06FFEF61B6, 03C6E0033C05120431FA2A02E206C458C4E1F18E511B1AA7F1867226617AB660 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    01:44:47.0379 0x1598 drmkaud - ok
    01:44:47.0404 0x1598 [ 334988883DE69ADB27E2CF9F9715BBDB, ECDF29DECF577784BEE37A175BDEE8793F314E3BF35109A7D44017DC9B0E868B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    01:44:47.0429 0x1598 DXGKrnl - ok
    01:44:47.0452 0x1598 [ 9F3E3F19D28B3B4FF261A1E758F4AD26, 57B7E9A1F937253AC77D2CEDAD71F87754CDA102FD93A030ABE34598269E526C ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
    01:44:47.0458 0x1598 e1express - ok
    01:44:47.0485 0x1598 [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
    01:44:47.0489 0x1598 E1G60 - ok
    01:44:47.0501 0x1598 [ 90A0A875642E18618010645311B4E89E, 499C6A29E3FEF3A1AC08DDDD00623AB93ACBB1511A0BFF004C4D4795B402412C ] EapHost C:\Windows\System32\eapsvc.dll
    01:44:47.0503 0x1598 EapHost - ok
    01:44:47.0537 0x1598 [ 0EFC7531B936EE57FDB4E837664C509F, 47F6D5380DA44514C1C13BFAF8227FBF356B14C46C45EC66C9E1431C4CFC85E3 ] Ecache C:\Windows\system32\drivers\ecache.sys
    01:44:47.0541 0x1598 Ecache - ok
    01:44:47.0595 0x1598 [ B4580122B0A7B263B6EE9ACBA69C8013, 94722F6B0E687709B854C055EFEF94AD8388AA0A2770FF75AD00C13ACC26F11F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    01:44:47.0611 0x1598 ehRecvr - ok
    01:44:47.0629 0x1598 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
    01:44:47.0632 0x1598 ehSched - ok
    01:44:47.0655 0x1598 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
    01:44:47.0657 0x1598 ehstart - ok
    01:44:47.0693 0x1598 [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
    01:44:47.0701 0x1598 elxstor - ok
    01:44:47.0741 0x1598 [ 3226FDA08988526E819E364E8CCE4CEE, EFFEC5C44A7AC0B82C77E354C818BD700B4DBE69B345A81F2652BFA87D6FBE4F ] EMDMgmt C:\Windows\system32\emdmgmt.dll
    01:44:47.0768 0x1598 EMDMgmt - ok
    01:44:47.0812 0x1598 [ 7B4971C3D43525175A4EA0D143E0412E, D61D19F1A7CDDF1130F48255EE77B95183125E01A05DDE0F96FDE8DF697277A0 ] EventSystem C:\Windows\system32\es.dll
    01:44:47.0818 0x1598 EventSystem - ok
    01:44:47.0840 0x1598 [ 84A317CB0B3954D3768CDCD018DBF670, 96AEFEE67D467A83BC10B72A097C8B296F7FEDFA8F4CB69C6D385713952C2AF2 ] fastfat C:\Windows\system32\drivers\fastfat.sys
    01:44:47.0844 0x1598 fastfat - ok
    01:44:47.0861 0x1598 [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    01:44:47.0862 0x1598 fdc - ok
    01:44:47.0870 0x1598 [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1, 84555C567D4E728A7250D530518BF228E596E1CDE248D587C61634CC13EAC0BC ] fdPHost C:\Windows\system32\fdPHost.dll
    01:44:47.0871 0x1598 fdPHost - ok
    01:44:47.0886 0x1598 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
    01:44:47.0888 0x1598 FDResPub - ok
    01:44:47.0893 0x1598 [ 65773D6115C037FFD7EF8280AE85EB9D, 71C7DDB71C9AA859B7DDCE01430E4913E58C928B22A46662A913209F5EC68120 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    01:44:47.0895 0x1598 FileInfo - ok
    01:44:47.0910 0x1598 [ C226DD0DE060745F3E042F58DCF78402, 9C67A5AC809B462EF97519DD2B0AC966915F9AF9F4DE82BEEB71B7321AAB892C ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    01:44:47.0912 0x1598 Filetrace - ok
    01:44:47.0920 0x1598 [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    01:44:47.0922 0x1598 flpydisk - ok
    01:44:47.0937 0x1598 [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3, C1007CB38F97AEE4B7A5A4E83A224F53EE59AFDA61A091960F6E1EB70E33E5C8 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    01:44:47.0943 0x1598 FltMgr - ok
    01:44:47.0991 0x1598 [ C9BE08664611DDAF98E2331E9288B00B, C645DDAB5FD588486553DF2DD5750AF5A967FEE988F4EB29E05362E3362DF4A2 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
    01:44:47.0993 0x1598 FontCache3.0.0.0 - ok
    01:44:48.0016 0x1598 [ 66A078591208BAA210C7634B11EB392C, 5C101E10CF8E576352CAC1D059D5938251185D1CCB824645AC1471D9C90EC183 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    01:44:48.0016 0x1598 Fs_Rec - ok
    01:44:48.0033 0x1598 [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
    01:44:48.0036 0x1598 gagp30kx - ok
    01:44:48.0055 0x1598 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    01:44:48.0057 0x1598 GEARAspiWDM - ok
    01:44:48.0083 0x1598 [ BCF6589C42D8F6A20F33EF133FFE0524, E3F82E90BCB58489E2D77F16163B888A0D9BC5D357AA929076027965E97DB5CA ] gpsvc C:\Windows\System32\gpsvc.dll
    01:44:48.0110 0x1598 gpsvc - ok
    01:44:48.0149 0x1598 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
    01:44:48.0152 0x1598 gupdate - ok
    01:44:48.0157 0x1598 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
    01:44:48.0159 0x1598 gupdatem - ok
    01:44:48.0200 0x1598 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    01:44:48.0207 0x1598 HdAudAddService - ok
    01:44:48.0237 0x1598 [ 0DB613A7E427B5663563677796FD5258, 82D50E0571196A8645B4F67274990BD7AA406F913534505D296AD3BAA0BBF1E8 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
    01:44:48.0239 0x1598 HDAudBus - ok
    01:44:48.0261 0x1598 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
    01:44:48.0262 0x1598 HidBth - ok
    01:44:48.0279 0x1598 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
    01:44:48.0280 0x1598 HidIr - ok
    01:44:48.0285 0x1598 [ 8FA640195279ACE21BEA91396A0054FC, 20541E5FA29B3FBD8824F3DF93C7D63AFEE56948F82FFDE20E9E87F5C0A3A789 ] hidserv C:\Windows\system32\hidserv.dll
    01:44:48.0287 0x1598 hidserv - ok
    01:44:48.0292 0x1598 [ 3C64042B95E583B366BA4E5D2450235E, B431F9692D66188AFEE372F312581178B14F49D763F8D1100D264623A239002A ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    01:44:48.0293 0x1598 HidUsb - ok
    01:44:48.0314 0x1598 [ D40AA05E29BF6ED29B139F044B461E9B, 052C07B7E0B082EA8E9E35A69855436A9E1BAA1B7C1A4AB5830C246158D863C5 ] hkmsvc C:\Windows\system32\kmsvc.dll
    01:44:48.0317 0x1598 hkmsvc - ok
    01:44:48.0332 0x1598 [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
    01:44:48.0334 0x1598 HpCISSs - ok
    01:44:48.0403 0x1598 [ 682358F730B84B63E09C6B4EDC1DE7AE, D05287004BABA571005C435CB643081DDC60E1CC0362A1BEB04E01E945BD2001 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
    01:44:48.0409 0x1598 hpqcxs08 - ok
    01:44:48.0423 0x1598 [ 2E7BEE4AA776CF1C37836B26D1D29403, 14763BD5936A059F91FF5EBE5E6535FE4C9B351DF3D3BD8C248DDA3642AE64C5 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
    01:44:48.0427 0x1598 hpqddsvc - ok
    01:44:48.0479 0x1598 [ 9EFA5FEC26CEC696A66A891AC90B412D, 43D96BCE095CCCB2B808255EE9C64A5966E92BEB6404BF8B98147DAD73F13708 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
    01:44:48.0497 0x1598 HSF_DPV - ok
    01:44:48.0528 0x1598 [ A3077D9ED7FF612A033536A6009DBEA5, D1DA28EFB20658C02A0271B625F8FC0E8E375263FC1601ACCE61E1A5AB91391C ] HSXHWBS2 C:\Windows\system32\DRIVERS\HSXHWBS2.sys
    01:44:48.0535 0x1598 HSXHWBS2 - ok
    01:44:48.0568 0x1598 [ EA24FE637D974A8A31BC650F478E3533, 2B754B4AFD89325A1E7B0EC9FCE110B87F5F2A9DCE72855AC812C3286887E4D9 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    01:44:48.0585 0x1598 HTTP - ok
    01:44:48.0597 0x1598 [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
    01:44:48.0598 0x1598 i2omp - ok
    01:44:48.0616 0x1598 [ 1C9EE072BAA3ABB460B91D7EE9152660, 516436E905AA00C2826CC910EFA8C13005C11B66D1E415584189616BF91C4AA5 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
    01:44:48.0619 0x1598 i8042prt - ok
    01:44:48.0658 0x1598 [ D72F2A013ADA9E2DDA417887A8DFD217, E741C84A3F4EF5413957FD61DAD25410C9D7D7DFF80D26AD5C5A94094F9176E3 ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
    01:44:48.0661 0x1598 IAANTMON - ok
    01:44:48.0732 0x1598 [ 8318E04A6455CED1020BCC5039B62CFA, 56AAE6E5912A8B10F253783C49AB79C77411F84E32045F1C54E9925728006636 ] ialm C:\Windows\system32\DRIVERS\ialmnt5.sys
    01:44:48.0781 0x1598 ialm - ok
    01:44:48.0818 0x1598 [ 948ACC7308E6814615B60524501B2DEB, 443679A8082533E9AE2EB12A2697285AA7E37745FF3A2A95E2E47550FAC40B5C ] IAMTV C:\Windows\system32\DRIVERS\IAMTV.sys
    01:44:48.0820 0x1598 IAMTV - ok
    01:44:48.0834 0x1598 [ DE01BF14FFB150C779FD561BD0E3C5C5, D8C4F34195F9DEC96EB25DA2AFD60EC9218AEA8601A9DEAEA0FBB9121AFD4EC4 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
    01:44:48.0839 0x1598 iaStor - ok
    01:44:48.0849 0x1598 [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
    01:44:48.0856 0x1598 iaStorV - ok
    01:44:48.0924 0x1598 [ 7B630ACAED64FEF0C3E1CF255CB56686, 9DCC6953BC6EF77C3916F8AA226CEC0662513A23AB60E9F714D53746E82FB372 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
    01:44:48.0957 0x1598 idsvc - ok
    01:44:48.0978 0x1598 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
    01:44:48.0980 0x1598 iirsp - ok
    01:44:49.0020 0x1598 [ 35662FE4D8622F667AA5A5568F7F1B40, 1BE7B8D5E5E4E4D9E8ECC697AACF3C6EDB390051A2C18B7DCF63B337343B76D6 ] IKEEXT C:\Windows\System32\ikeext.dll
    01:44:49.0037 0x1598 IKEEXT - ok
    01:44:49.0076 0x1598 [ B7A420E4B137176234272D5CA9D51A49, B8BC52EDED83C915F763D76BA31FA90DD9C7CE40D9ECCBD2A83D401C3B6E0302 ] IntelDH C:\Windows\system32\Drivers\IntelDH.sys
    01:44:49.0077 0x1598 IntelDH - ok
    01:44:49.0092 0x1598 [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide C:\Windows\system32\drivers\intelide.sys
    01:44:49.0093 0x1598 intelide - ok
    01:44:49.0108 0x1598 [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    01:44:49.0110 0x1598 intelppm - ok
    01:44:49.0120 0x1598 [ 88CF5281ED9880D74DC9011CF8B5262D, 8DC118BE00235A6FD490D2FD9E8FDB90E7FA25DC8A91C78839AA8A1DC42F8C37 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    01:44:49.0124 0x1598 IPBusEnum - ok
    01:44:49.0148 0x1598 [ 880C6F86CC3F551B8FEA2C11141268C0, 0BB04C193BF8FCC6F5B78C6A027CD09F9BE25523974C8000936394C73059243D ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    01:44:49.0149 0x1598 IpFilterDriver - ok
    01:44:49.0184 0x1598 [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6, 96AD0EBDB112082FE4310B35B4DE448182C332E7F11ADD019E926768D10B7E66 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    01:44:49.0190 0x1598 iphlpsvc - ok
    01:44:49.0194 0x1598 IpInIp - ok
    01:44:49.0219 0x1598 [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
    01:44:49.0222 0x1598 IPMIDRV - ok
    01:44:49.0235 0x1598 [ 10077C35845101548037DF04FD1A420B, D45110C3D38739787E1A7E6DC70E1543BD9BA069507F684BD0791FADA18DE7D1 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
    01:44:49.0238 0x1598 IPNAT - ok
    01:44:49.0303 0x1598 [ FE56897B27ED266F9C4E7D90A0B5DA47, 6B39D25FAFBA886ACF3ABC0A2946E053914B80C3F4769AD36279126C5D4970B6 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
    01:44:49.0328 0x1598 iPod Service - ok
    01:44:49.0352 0x1598 [ A82F328F4792304184642D6D397BB1E3, 02ED64261ACEFAC38D1F2BE6160F92379D23EBB90CF97DB58237EA8F0510F571 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    01:44:49.0353 0x1598 IRENUM - ok
    01:44:49.0374 0x1598 [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    01:44:49.0376 0x1598 isapnp - ok
    01:44:49.0402 0x1598 [ 4DCA456D4D5723F8FA9C6760D240B0DF, 812BC60CAEB70DA93A95F360755151863AAF264C0B519BD5342D08214D012F0C ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
    01:44:49.0405 0x1598 iScsiPrt - ok
    01:44:49.0439 0x1598 [ B8B728563E3DF6F8A66E1A02B402903B, CF586546E1502A7B812F509A902251803DBCE7687187A03423EF55E227995886 ] ISSM C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
    01:44:49.0441 0x1598 ISSM - ok
    01:44:49.0458 0x1598 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
    01:44:49.0460 0x1598 iteatapi - ok
    01:44:49.0483 0x1598 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
    01:44:49.0484 0x1598 iteraid - ok
    01:44:49.0499 0x1598 [ B076B2AB806B3F696DAB21375389101C, DBD7F6C303CD61EAB3935A702D9499D37801ED0088ED263E5EDA0C2D6DFE792C ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
    01:44:49.0500 0x1598 kbdclass - ok
    01:44:49.0518 0x1598 [ ED61DBC6603F612B7338283EDBACBC4B, E43F2AEC4F0462BCD74B68682A3E8E6C3B3C24F043CC1603BBA200416581E080 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
    01:44:49.0518 0x1598 kbdhid - ok
    01:44:49.0539 0x1598 [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] KeyIso C:\Windows\system32\lsass.exe
    01:44:49.0541 0x1598 KeyIso - ok
    01:44:49.0571 0x1598 [ 0A829977B078DEA11641FC2AF87CEADE, C22CFDEAB8A75073BA965313609F0E2393692ABD4D48587382101DA785A7622D ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    01:44:49.0588 0x1598 KSecDD - ok
    01:44:49.0647 0x1598 [ 45C537FE5DDE9A0146AEFF76E615737D, F4B0DCB5FD8731E34EB4BF18B509A9D7837F9D96B3F22D056A941480D341B0EC ] KtmRm C:\Windows\system32\msdtckrm.dll
    01:44:49.0663 0x1598 KtmRm - ok
    01:44:49.0692 0x1598 [ 53D1482FC1AA36AC015A85E6CF2146BD, AD764237410A7D1B7016D421C160644CCFFBC5F42FD53B179D30BF7E50346B4D ] LanmanServer C:\Windows\system32\srvsvc.dll
    01:44:49.0697 0x1598 LanmanServer - ok
    01:44:49.0744 0x1598 [ 435F0F6DC87A4B5DA78F1FA309884189, 4ABCE3AA0ED9D36E3439AABFB086B05A09A567E2BEA3714F984D1400DE743516 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    01:44:49.0751 0x1598 LanmanWorkstation - ok
    01:44:49.0767 0x1598 [ FD015B4F95DAA2B712F0E372A116FBAD, A73D472276FE0EF0AC273FB04EEA168C3FF5D62AEB3FB5A22B028BFDEF6F3CDF ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    01:44:49.0769 0x1598 lltdio - ok
    01:44:49.0804 0x1598 [ 7450DBCF754391DD6363FFFD5EF0E789, CD571803825C23D32E43D84376B68FC2B71FDA3A89931CBB6AFE84D0FAD8C2F1 ] lltdsvc C:\Windows\System32\lltdsvc.dll
    01:44:49.0811 0x1598 lltdsvc - ok
    01:44:49.0816 0x1598 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
    01:44:49.0818 0x1598 lmhosts - ok
    01:44:49.0834 0x1598 [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
    01:44:49.0837 0x1598 LSI_FC - ok
    01:44:49.0850 0x1598 [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
    01:44:49.0853 0x1598 LSI_SAS - ok
    01:44:49.0899 0x1598 [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
    01:44:49.0901 0x1598 LSI_SCSI - ok
    01:44:49.0907 0x1598 [ 42885BB44B6E065B8575A8DD6C430C52, BC7013C7902C64D4B443D517F358FF264795F638EF30B664E51C2D55C80D39A3 ] luafv C:\Windows\system32\drivers\luafv.sys
    01:44:49.0910 0x1598 luafv - ok
    01:44:49.0943 0x1598 [ 8E5AA8C4D15D06F1C2EC1C79E7207DD7, F420D20D59FCD53B22AE9C249B081D2FFC924E16C71DB2803DA57C2F0EEF6C7A ] M1 Server C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
    01:44:49.0944 0x1598 M1 Server - ok
    01:44:49.0980 0x1598 [ BB32D71031687CEEBC24B9E160ABCBA9, 519DF352B0B4B124B77560E9EF60363299D214A26D0243CF2C4F8FF589D971BC ] MCLServiceATL C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
    01:44:49.0985 0x1598 MCLServiceATL - ok
    01:44:50.0007 0x1598 [ E93C1AD58E88A0846EAEE10671C2A8F3, 6635BFBD6F2D6EDCE00A95A105E90E09965C9C4798949105B48EE46189C3E8E0 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    01:44:50.0010 0x1598 Mcx2Svc - ok
    01:44:50.0029 0x1598 [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
    01:44:50.0031 0x1598 mdmxsdk - ok
    01:44:50.0050 0x1598 [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
    01:44:50.0051 0x1598 megasas - ok
    01:44:50.0070 0x1598 [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] MMCSS C:\Windows\system32\mmcss.dll
    01:44:50.0073 0x1598 MMCSS - ok
    01:44:50.0083 0x1598 [ 21755967298A46FB6ADFEC9DB6012211, 3F83BA0D0ED6D40CB4A62A41722F6FDB8C34DF7B0C115FFE7D0EA12E1D4B4EFD ] Modem C:\Windows\system32\drivers\modem.sys
    01:44:50.0085 0x1598 Modem - ok
    01:44:50.0124 0x1598 [ 7446E104A5FE5987CA9E4983FBAC4F97, 61EDE5042718C12BFC8337D71C924D86FE7357E25182E1FDE25C73719FC7F3BD ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    01:44:50.0126 0x1598 monitor - ok
    01:44:50.0150 0x1598 [ 5FBA13C1A1841B0885D316ED3589489D, 16CAB611D0C3C38138164A7452E826091A57E51149A4DBA8B1E7D8979A37CD9A ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
    01:44:50.0150 0x1598 mouclass - ok
    01:44:50.0171 0x1598 [ B569B5C5D3BDE545DF3A6AF512CCCDBA, 4B6EC4E78EDC847EFA69A358718C8466356131D6CF8472BE65E43DD871173D3C ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    01:44:50.0173 0x1598 mouhid - ok
    01:44:50.0178 0x1598 [ 01F1E5A3E4877C931CBB31613FEC16A6, 7312C41A8188BAEBF6E3216B74F7698EFD1E80F77E7BB051B34AB14FB84E4130 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
    01:44:50.0180 0x1598 MountMgr - ok
    01:44:50.0225 0x1598 [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    01:44:50.0228 0x1598 MozillaMaintenance - ok
    01:44:50.0260 0x1598 [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
    01:44:50.0262 0x1598 mpio - ok
    01:44:50.0298 0x1598 [ 6E7A7F0C1193EE5648443FE2D4B789EC, 56F37438B3252D5385C324A87D472D355572D339C5A27954106D51AF5AD3CE17 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    01:44:50.0301 0x1598 mpsdrv - ok
    01:44:50.0319 0x1598 [ 563ED845885C6A7C09A7715D8BD0585C, 3A8B12D63AA7EBB51331DDF40077E156CCC225FE6FF0630BFAFD6D008988DC58 ] MpsSvc C:\Windows\system32\mpssvc.dll
    01:44:50.0336 0x1598 MpsSvc - ok
    01:44:50.0361 0x1598 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
    01:44:50.0363 0x1598 Mraid35x - ok
    01:44:50.0382 0x1598 [ 1D8828B98EE309D65E006F0829E280E5, F53FB67D73788E0B38CFEA4FE9CA79B778C2AD383EA2D61A3AC935C722336E79 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    01:44:50.0385 0x1598 MRxDAV - ok
    01:44:50.0409 0x1598 [ 8AF705CE1BB907932157FAB821170F27, 9C0B0E1F7E366372186BC3D40CA2F1513A9613576F024334ED5C65BCD230BC3A ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    01:44:50.0413 0x1598 mrxsmb - ok
    01:44:50.0423 0x1598 [ 47E13AB23371BE3279EEF22BBFA2C1BE, EE878AD816AD9E0544E00D92CC017930C458179D0E2A396117611B7B81D4DB2C ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    01:44:50.0429 0x1598 mrxsmb10 - ok
    01:44:50.0435 0x1598 [ 90B3FC7BD6B3D7EE7635DEBBA2187F66, 879255516B5BBE7C86081DAEB8EDCC8659299019E3C912FD1F7B02B2C78F22D2 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    01:44:50.0437 0x1598 mrxsmb20 - ok
    01:44:50.0446 0x1598 [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci C:\Windows\system32\drivers\msahci.sys
    01:44:50.0447 0x1598 msahci - ok
    01:44:50.0471 0x1598 [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
    01:44:50.0473 0x1598 msdsm - ok
    01:44:50.0491 0x1598 [ BC64A92D821EFEA8BAB8E8CAF1B668BC, 3ADC299529AE377D4C131772C9A31E668C3F6BFADD45D01D11501F859536A4F3 ] MSDTC C:\Windows\System32\msdtc.exe
    01:44:50.0495 0x1598 MSDTC - ok
    01:44:50.0506 0x1598 [ 729EAFEFD4E7417165F353A18DBE947D, 2C2D9A0F5075C372A63D8D3C9CAAA9D57691703506C9F508F05C01727555AC5A ] Msfs C:\Windows\system32\drivers\Msfs.sys
    01:44:50.0507 0x1598 Msfs - ok
    01:44:50.0528 0x1598 [ 5F454A16A5146CD91A176D70F0CFA3EC, 076E61F2027CC1A24679AC506E8A04C2B10B88D9281CA00446E45991E3ECA869 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    01:44:50.0529 0x1598 msisadrv - ok
    01:44:50.0563 0x1598 [ 8ACF956D9154E893E789881430C12632, 222C2F957E69A8FEC1CBBF47D43DE1A3A0EBE3E8888A12862BF1ECCBFD61021D ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    01:44:50.0567 0x1598 MSiSCSI - ok
    01:44:50.0571 0x1598 msiserver - ok
    01:44:50.0593 0x1598 [ 892CEDEFA7E0FFE7BE8DA651B651D047, A5FDD8D6CC5B1FEE643BA44A4596F2F1C066240A503214B0B00F074DE76ED0D6 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    01:44:50.0594 0x1598 MSKSSRV - ok
    01:44:50.0605 0x1598 [ AE2CB1DA69B2676B4CEE2A501AF5871C, 576F1F5F52B5E89F0046173BEF8FC870B2DAAEFAD276D16429AC2050FE04FB8E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    01:44:50.0606 0x1598 MSPCLOCK - ok
    01:44:50.0615 0x1598 [ F910DA84FA90C44A3ADDB7CD874463FD, 8CBA93EE6AB074262DC48415927B077CCE0F7790BFEFF6F3BFD653C37C36BE57 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    01:44:50.0616 0x1598 MSPQM - ok
    01:44:50.0634 0x1598 [ 84571C0AE07647BA38D493F5F0015DF7, A810B28957759EBF0616567C8550FB1D5FDABA65FC6A87CF45957370E48FF0DC ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    01:44:50.0638 0x1598 MsRPC - ok
    01:44:50.0646 0x1598 [ 4385C80EDE885E25492D408CAD91BD6F, E78EE11FD86D42C8E04AC778F60668B5EA65F6C9F3DFBED5CF7694F395DB3097 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
    01:44:50.0648 0x1598 mssmbios - ok
    01:44:50.0660 0x1598 [ C826DD1373F38AFD9CA46EC3C436A14E, B5BC1C7760BF4CC1AFC714CA9DFD1D75C2D3804D27F17DD08D1C5CF548F93042 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    01:44:50.0661 0x1598 MSTEE - ok
    01:44:50.0672 0x1598 [ FA7AA70050CF5E2D15DE00941E5665E5, 177F19C4436203E028D07300B4C77F5160835C7E02DB8863E8D01F277A678606 ] Mup C:\Windows\system32\Drivers\mup.sys
    01:44:50.0674 0x1598 Mup - ok
    01:44:50.0704 0x1598 [ 1CDBB5D002FE2BC5300AA20550D8A52E, 86529AEE13545AADAA2F20C300059096F1663BE8A5A76740E9FEDEA26928A364 ] napagent C:\Windows\system32\qagentRT.dll
    01:44:50.0722 0x1598 napagent - ok
    01:44:50.0770 0x1598 [ 6DA4A0FC7C0E83DF0CB3CFD0A514C3BC, 606449557E11AFD0C370EFD2D2566D58E0A6E90A590BF47779A077761E3FD682 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    01:44:50.0773 0x1598 NativeWifiP - ok
     
  15. 2014/07/13
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    01:44:50.0801 0x1598 [ 227C11E1E7CF6EF8AFB2A238D209760C, C36E450DD54CE9DDF17C3E1240BFC9073D73B409C1E090EF65E80C1EA53A31A5 ] NDIS C:\Windows\system32\drivers\ndis.sys
    01:44:50.0815 0x1598 NDIS - ok
    01:44:50.0825 0x1598 [ 81659CDCBD0F9A9E07E6878AD8C78D3F, CC62555E680B52541BE4B882BE9438A300EFF0F50D0632E430AF269D4224F5E9 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    01:44:50.0827 0x1598 NdisTapi - ok
    01:44:50.0834 0x1598 [ 5DE5EE546BF40838EBE0E01CB629DF64, 2617B588338AB43E98BD1DDDB4725B9D422029120415FC98C3B37E906F109152 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    01:44:50.0835 0x1598 Ndisuio - ok
    01:44:50.0849 0x1598 [ 397402ADCBB8946223A1950101F6CD94, 612F6D887CB4374BB762BEF24A826D69971EC22D98FB4C0AAA4CC4B367E11AA6 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    01:44:50.0854 0x1598 NdisWan - ok
    01:44:50.0863 0x1598 [ 1B24FA907AF283199A81B3BB37E5E526, 0689F688B73DD521F6B31A81415E55628995D54458F628BC14F88296638162C7 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    01:44:50.0865 0x1598 NDProxy - ok
    01:44:50.0902 0x1598 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
    01:44:50.0905 0x1598 Net Driver HPZ12 - ok
    01:44:50.0914 0x1598 [ 356DBB9F98E8DC1028DD3092FCEEB877, BCCD66AE76DD6AAB0A7A83227329E7D9D05D7D1FD30CDB66B19EB166E9BAD8E5 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    01:44:50.0915 0x1598 NetBIOS - ok
    01:44:50.0935 0x1598 [ E3A168912E7EEFC3BD3B814720D68B41, 0A8B74C07E8E410CD9ACCF8A44C6198D1E89888238C820C800EC0B1B3C5F7BC2 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
    01:44:50.0940 0x1598 netbt - ok
    01:44:50.0953 0x1598 [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] Netlogon C:\Windows\system32\lsass.exe
    01:44:50.0955 0x1598 Netlogon - ok
    01:44:50.0989 0x1598 [ 90A4DAE28B94497F83BEA0F2A3B77092, 9100B9312E92871AD634E373AC1EE8288A36F9E92A1390AF32B1C5B9419344A7 ] Netman C:\Windows\System32\netman.dll
    01:44:51.0006 0x1598 Netman - ok
    01:44:51.0042 0x1598 [ 7C5C3D9CEEE838856B828AB6F98A2857, BDFA0F43500E5E8A96EBF539B7E72E547E3EBCCD692A6C6B9452C1F25AD31471 ] netprofm C:\Windows\System32\netprofm.dll
    01:44:51.0058 0x1598 netprofm - ok
    01:44:51.0088 0x1598 [ 0AD5876EF4E9EB77C8F93EB5B2FFF386, 2F23B0979CF2E8DB013D8E58501ACC9265A860FD759E8B741F8FA64F7C2F7756 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
    01:44:51.0091 0x1598 NetTcpPortSharing - ok
    01:44:51.0211 0x1598 [ 6E9EDC1020B319E7676387B8CDF2398C, EF9B26369A845FC1E96ADD4051E52DA13CAA54158956F36CB10CBF3610D2B678 ] NETw2v32 C:\Windows\system32\DRIVERS\NETw2v32.sys
    01:44:51.0295 0x1598 NETw2v32 - ok
    01:44:51.0333 0x1598 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
    01:44:51.0335 0x1598 nfrd960 - ok
    01:44:51.0355 0x1598 [ C424117A562F2DE37A42266894C79AEB, A027AE08E37058316C004D79D038149FF9E233C1ECCE1D672AB5FE55C3B2B3AD ] NlaSvc C:\Windows\System32\nlasvc.dll
    01:44:51.0361 0x1598 NlaSvc - ok
    01:44:51.0374 0x1598 [ ACC8D7FC0DA793450F5F257D9CE4FF75, EA1821B398A5D418133FB044C508E652BBCB4E74133A8E8679A8162932AC91C0 ] nmsgopro C:\Windows\system32\DRIVERS\nmsgopro.sys
    01:44:51.0376 0x1598 nmsgopro - ok
    01:44:51.0380 0x1598 [ 64FA28C15DD71A80BEF3527E1EF07DF6, 0E165303E7D6D2391E150910EBF5ABD83D171ABB463FE5FACB1081FA6D9A47B8 ] nmsunidr C:\Windows\system32\DRIVERS\nmsunidr.sys
    01:44:51.0381 0x1598 nmsunidr - ok
    01:44:51.0385 0x1598 [ 4F9832BEB9FAFD8CEB0E541F1323B26E, FE4B9FDA83F186405C9B4A001E8496CA3DB42B4B4695E80F6DF5946E509F50F0 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    01:44:51.0387 0x1598 Npfs - ok
    01:44:51.0395 0x1598 [ 23B8201A363DE0E649FC75EE9874DEE2, B6C2E40E62E9B4DA9B4E152DC406BD2338BF820CB547D65B03BC2C64D5D84EB2 ] nsi C:\Windows\system32\nsisvc.dll
    01:44:51.0397 0x1598 nsi - ok
    01:44:51.0410 0x1598 [ B488DFEC274DE1FC9D653870EF2587BE, A1F4B1D59BA49D760E9D7925FFE1180BE436376C79AFD04119BC0E0E95C69603 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    01:44:51.0411 0x1598 nsiproxy - ok
    01:44:51.0478 0x1598 [ 37430AA7A66D7A63407ADC2C0D05E9F6, EC9B117C42F2905251A6D29C1C5DF883FFEB60CFF3497C07C306500F107E2565 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    01:44:51.0498 0x1598 Ntfs - ok
    01:44:51.0522 0x1598 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
    01:44:51.0524 0x1598 ntrigdigi - ok
    01:44:51.0536 0x1598 [ EC5EFB3C60F1B624648344A328BCE596, 0416128AA53D8FF79D5AAC69A8D9CE86D929A1517FAE4644AB06FA2362BB63A5 ] Null C:\Windows\system32\drivers\Null.sys
    01:44:51.0537 0x1598 Null - ok
    01:44:51.0837 0x1598 [ 0B2E7B39411FAA44EBDA76FB38673964, 8842012A77FACBE7E9D5A3CF6675E55D4CF10022B5F9F4D6B570BB62AC1940B2 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
    01:44:52.0020 0x1598 nvlddmkm - ok
    01:44:52.0065 0x1598 [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys
    01:44:52.0068 0x1598 nvraid - ok
    01:44:52.0088 0x1598 [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
    01:44:52.0090 0x1598 nvstor - ok
    01:44:52.0150 0x1598 [ 439FD6A5A34113388C51C48D0E5092AA, 4C25AB4788AEFDEDBD4B9DD351AE6AA0AC816633F81FF5EBEA9067497E39D843 ] nvsvc C:\Windows\system32\nvvsvc.exe
    01:44:52.0176 0x1598 nvsvc - ok
    01:44:52.0256 0x1598 [ E3C7676582502C5E4BB9288C3617AB59, 0FCFB480FF4F1C005AE6DC4F9D32907A7BAD22EB5477680965A84E9DF817483B ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
    01:44:52.0296 0x1598 nvUpdatusService - ok
    01:44:52.0312 0x1598 [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    01:44:52.0315 0x1598 nv_agp - ok
    01:44:52.0318 0x1598 NwlnkFlt - ok
    01:44:52.0322 0x1598 NwlnkFwd - ok
    01:44:52.0332 0x1598 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
    01:44:52.0335 0x1598 ohci1394 - ok
    01:44:52.0378 0x1598 [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    01:44:52.0381 0x1598 ose - ok
    01:44:52.0416 0x1598 [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2pimsvc C:\Windows\system32\p2psvc.dll
    01:44:52.0441 0x1598 p2pimsvc - ok
    01:44:52.0461 0x1598 [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2psvc C:\Windows\system32\p2psvc.dll
    01:44:52.0475 0x1598 p2psvc - ok
    01:44:52.0493 0x1598 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\DRIVERS\parport.sys
    01:44:52.0497 0x1598 Parport - ok
    01:44:52.0511 0x1598 [ 555A5B2C8022983BC7467BC925B222EE, D4E8B5FAF5F46F349B9C2554E7D8245808E3F7B86B40A547C37511E462838A89 ] partmgr C:\Windows\system32\drivers\partmgr.sys
    01:44:52.0514 0x1598 partmgr - ok
    01:44:52.0523 0x1598 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
    01:44:52.0524 0x1598 Parvdm - ok
    01:44:52.0536 0x1598 [ D8C5C215C932233A4F1D7F368F4E4E65, E3FFEFC98FCA95E2290A30EA13793514E0C490C49E7E242C49FE3EA9FD6D651A ] PcaSvc C:\Windows\System32\pcasvc.dll
    01:44:52.0539 0x1598 PcaSvc - ok
    01:44:52.0560 0x1598 [ 1085D75657807E0E8B32F9E19A1647C3, 6D6C02CED7386E0D98BB136278934D5E2977BCC0BD9C487ECE7E97F472C612CD ] pci C:\Windows\system32\drivers\pci.sys
    01:44:52.0563 0x1598 pci - ok
    01:44:52.0596 0x1598 [ CABA65E9C41CD2900D4C92D4F825C5F8, 5D952DBCD3CF63621D1FE38E2E0392F5059A4757F8CD0BF2AD4FBB23E677631B ] pciide C:\Windows\system32\DRIVERS\pciide.sys
    01:44:52.0598 0x1598 pciide - ok
    01:44:52.0618 0x1598 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    01:44:52.0624 0x1598 pcmcia - ok
    01:44:52.0675 0x1598 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    01:44:52.0709 0x1598 PEAUTH - ok
    01:44:52.0773 0x1598 [ CD05A38D166BEADE18030BAFC0C0A939, 4C310C4EA270FA5EDD268A5AA17713F5CD7AD526DB3AEA6C691772720BD16801 ] pla C:\Windows\system32\pla.dll
    01:44:52.0825 0x1598 pla - ok
    01:44:52.0854 0x1598 [ 747BB4C31F3B6E8D1B5ED0AD61518CB5, 3B4075A24A46C4EE7322AF80F65C280F1A3AD0079DDFF77CC8523662225F01F5 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    01:44:52.0863 0x1598 PlugPlay - ok
    01:44:52.0887 0x1598 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
    01:44:52.0890 0x1598 Pml Driver HPZ12 - ok
    01:44:52.0909 0x1598 [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
    01:44:52.0924 0x1598 PNRPAutoReg - ok
    01:44:52.0944 0x1598 [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPsvc C:\Windows\system32\p2psvc.dll
    01:44:52.0958 0x1598 PNRPsvc - ok
    01:44:53.0012 0x1598 [ 5EBDEC613BD377CE9A85382BE5C6B83B, 528D4DE5AAF113A6F3266EB018247EA46BD2581747DFBA1312D32AE37536E5A3 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    01:44:53.0029 0x1598 PolicyAgent - ok
    01:44:53.0055 0x1598 [ C04DEC5ACE67C5247B150C4223970BB7, 3AD9E856C9B27B60DDB78FD2376DD920444C7890BD6A9F972938EDF8A7DD21C5 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    01:44:53.0058 0x1598 PptpMiniport - ok
    01:44:53.0082 0x1598 [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys
    01:44:53.0084 0x1598 Processor - ok
    01:44:53.0106 0x1598 [ 213112E152E68F0E4705E36F052A2880, E5CB788E11DC01B82480FAAE8B1E122C075AA51144591189386C8EBB34197F06 ] ProfSvc C:\Windows\system32\profsvc.dll
    01:44:53.0113 0x1598 ProfSvc - ok
    01:44:53.0120 0x1598 [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] ProtectedStorage C:\Windows\system32\lsass.exe
    01:44:53.0122 0x1598 ProtectedStorage - ok
    01:44:53.0155 0x1598 [ 2C8BAE55247C4E09352E870292E4D1AB, 1AA43E8D62A71F4859ADEDAC90E7F3B73F6356EFA3C700E276C3F5EE58ED6804 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
    01:44:53.0158 0x1598 PSched - ok
    01:44:53.0208 0x1598 [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys
    01:44:53.0243 0x1598 ql2300 - ok
    01:44:53.0260 0x1598 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
    01:44:53.0264 0x1598 ql40xx - ok
    01:44:53.0285 0x1598 [ CA61BDFD3713A7CE75F2812AFC431594, 42CAD3B8EADE4EDCC0F12869BA1B457E2B8712B796BDF1A5D231AF38D0CCF1FF ] QWAVE C:\Windows\system32\qwave.dll
    01:44:53.0294 0x1598 QWAVE - ok
    01:44:53.0307 0x1598 [ D2B3E2B7426DC23E185FBC73C8936C12, 543B6341AB0224E122A341068D1199715C503E840A41A852764AA400CEF6D75F ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    01:44:53.0308 0x1598 QWAVEdrv - ok
    01:44:53.0322 0x1598 [ BD7B30F55B3649506DD8B3D38F571D2A, CFDED547FEE24CC0F9CD32A96D4F445D44FCA908BB99AEE890C720142EF0D68B ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    01:44:53.0323 0x1598 RasAcd - ok
    01:44:53.0341 0x1598 [ F14F4AAB9F54D099FE99192BDB100AC9, 68293A5B23F4B602142442B1FA57B678BE46FA89808B76FBA7EB875FE3AAC3D8 ] RasAuto C:\Windows\System32\rasauto.dll
    01:44:53.0346 0x1598 RasAuto - ok
    01:44:53.0372 0x1598 [ 68B0019FEE429EC49D29017AF937E482, 99D6E2B214F24F6F9B42BF3F96B914A923FF7D9CF4E97ABA51AF7891718A87E6 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    01:44:53.0375 0x1598 Rasl2tp - ok
    01:44:53.0391 0x1598 [ 11D65E29BC9D1E4114D18FE68194394C, A2C6345D038E1EB954C0DFA4E5645DC1A78EDF7F0873BDFBE36E7CB047ECC33A ] RasMan C:\Windows\System32\rasmans.dll
    01:44:53.0399 0x1598 RasMan - ok
    01:44:53.0413 0x1598 [ CCF4E9C6CBBAC81437F88CB2AE0B6C96, 20F877FAE1D4B592AEE9A20AFD32066F7DE838FEE3501C6F72C44D3F32BC6AE0 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    01:44:53.0415 0x1598 RasPppoe - ok
    01:44:53.0432 0x1598 [ 54129C5D9581BBEC8BD1EBD3BA813F47, 8A19AEFF124F55A99EDE9693E5981F03343736E7924C28290DA10D3092D98675 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    01:44:53.0439 0x1598 rdbss - ok
    01:44:53.0452 0x1598 [ 794585276B5D7FCA9F3FC15543F9F0B9, 71424462303DA4035301F7E66792116ED09856A1724BAACBB47060121EDCE77F ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    01:44:53.0454 0x1598 RDPCDD - ok
    01:44:53.0481 0x1598 [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
    01:44:53.0489 0x1598 rdpdr - ok
    01:44:53.0494 0x1598 [ 980B56E2E273E19D3A9D72D5C420F008, 142CFC831C4E70494275AA483CDAB5F63997EA1977F1DD4AE25AFBD419ABFF62 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    01:44:53.0496 0x1598 RDPENCDD - ok
    01:44:53.0510 0x1598 [ 8830E790A74A96605FABA74F9665BB3C, 3CD2CFE48026485A4D7F6C985BFAF716D8D4B566BE53EA67904FD18B1C8F8604 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    01:44:53.0516 0x1598 RDPWD - ok
    01:44:53.0565 0x1598 [ 42D5AB26FC5FCDB3C1BDAAC4AC153849, F787D5A7C424CFBFEA565AA804DFC462A6E89483EBCD5976A82D4D5EE851D746 ] Remote UI Service C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
    01:44:53.0591 0x1598 Remote UI Service - ok
    01:44:53.0617 0x1598 [ 6C1A43C589EE8011A1EBFD51C01B77CE, 61206F6AD4BBE241DBB948D48364898118BEA6E289EDD3141FD57B61ED62BB52 ] RemoteAccess C:\Windows\System32\mprdim.dll
    01:44:53.0621 0x1598 RemoteAccess - ok
    01:44:53.0634 0x1598 [ 9A043808667C8C1893DA7275AF373F0E, 4317B975305F2FD6696A2227FA30214406179D9BB9898390A0FA2663AD27CBCF ] RemoteRegistry C:\Windows\system32\regsvc.dll
    01:44:53.0639 0x1598 RemoteRegistry - ok
    01:44:53.0647 0x1598 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
    01:44:53.0649 0x1598 RpcLocator - ok
    01:44:53.0681 0x1598 [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] RpcSs C:\Windows\system32\rpcss.dll
    01:44:53.0693 0x1598 RpcSs - ok
    01:44:53.0706 0x1598 [ 97E939D2128FEC5D5A3E6E79B290A2F4, FB71FD62BFD02608347C44E5EC865DCFA41EDFF58011673487D25C8DD79C268E ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    01:44:53.0709 0x1598 rspndr - ok
    01:44:53.0720 0x1598 [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] SamSs C:\Windows\system32\lsass.exe
    01:44:53.0722 0x1598 SamSs - ok
    01:44:53.0743 0x1598 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    01:44:53.0746 0x1598 sbp2port - ok
    01:44:53.0783 0x1598 [ DB0450F9AEF5E54D3A84EFD1249D5F5A, D1099F58E084CCF4E09EC46894B0F318DB59718DA15CC4E88C56644BA07E06CA ] SC0CLPT C:\Windows\system32\SC0CLPT.SYS
    01:44:53.0787 0x1598 SC0CLPT - ok
    01:44:53.0812 0x1598 [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB, 4222182FF80A6A9DEF7239965C12F3BBE843A5219D16D5BFD167350EDA5A23CF ] SCardSvr C:\Windows\System32\SCardSvr.dll
    01:44:53.0817 0x1598 SCardSvr - ok
    01:44:53.0862 0x1598 [ 886CEC884B5BE29AB9828B8AB46B11F7, 13901D422D3F0BD9D416865D91561C8A3B0FDC4D7593748460BA5DD45B7C5A6A ] Schedule C:\Windows\system32\schedsvc.dll
    01:44:53.0888 0x1598 Schedule - ok
    01:44:53.0900 0x1598 [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] SCPolicySvc C:\Windows\System32\certprop.dll
    01:44:53.0901 0x1598 SCPolicySvc - ok
    01:44:53.0920 0x1598 [ 4339A2585708C7D9B0C0CE5AAD3DD6FF, 1B764838EC90A4F5A8130630BA32C014C033BF39C0DE1C114298F254580F0983 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
    01:44:53.0923 0x1598 sdbus - ok
    01:44:53.0927 0x1598 SDDMI2 - ok
    01:44:53.0933 0x1598 [ F7B6BF02240D0A764ADF8C8966735552, E3A21C746E8B79B4F08B0CC3C1610AE3F2BBC8FB6D237C653C7883F4EEA6F6E7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    01:44:53.0938 0x1598 SDRSVC - ok
    01:44:53.0960 0x1598 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    01:44:53.0962 0x1598 secdrv - ok
    01:44:53.0975 0x1598 [ 8388C4133DDBE62AD7BC3EC9F14271ED, 38BF611174C660A0F737D97DAD4488E589CF0CC6242F7B9A8DA034F0D4E22A4F ] seclogon C:\Windows\system32\seclogon.dll
    01:44:53.0979 0x1598 seclogon - ok
    01:44:53.0987 0x1598 [ 34350AE2C1D33D21C7305F861BD8DAD8, C2CF4DDC0B223F2CFEFC3BC4EE5B8BC0F3E1E972BE894C388FBA067D52945C2B ] SENS C:\Windows\System32\sens.dll
    01:44:53.0991 0x1598 SENS - ok
    01:44:53.0997 0x1598 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    01:44:53.0999 0x1598 Serenum - ok
    01:44:54.0032 0x1598 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    01:44:54.0035 0x1598 Serial - ok
    01:44:54.0055 0x1598 [ 450ACCD77EC5CEA720C1CDB9E26B953B, 3B053BDB8EDDC99274C46E9330AEE83851AA3AD37472BBCBE5624233CA9B1B55 ] sermouse C:\Windows\system32\drivers\sermouse.sys
    01:44:54.0056 0x1598 sermouse - ok
    01:44:54.0081 0x1598 [ 78878235DA4DF0D116E86837A0A21DF8, E66B050B56F9F1E902DA6A55126BD2D6AD8F9A40995942055387DC1CDE857B9F ] SessionEnv C:\Windows\system32\sessenv.dll
    01:44:54.0085 0x1598 SessionEnv - ok
    01:44:54.0105 0x1598 [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    01:44:54.0107 0x1598 sffdisk - ok
    01:44:54.0121 0x1598 [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    01:44:54.0123 0x1598 sffp_mmc - ok
    01:44:54.0139 0x1598 [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    01:44:54.0140 0x1598 sffp_sd - ok
    01:44:54.0154 0x1598 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
    01:44:54.0155 0x1598 sfloppy - ok
    01:44:54.0192 0x1598 [ 9A82BF4C90B00A63150A606A1E2FD82B, 48F9B5CD950668F2F28D89F77E54C1EF02849F0E28DC104780F9D62AEE1BF247 ] SharedAccess C:\Windows\System32\ipnathlp.dll
    01:44:54.0202 0x1598 SharedAccess - ok
    01:44:54.0245 0x1598 [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    01:44:54.0262 0x1598 ShellHWDetection - ok
    01:44:54.0280 0x1598 [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp C:\Windows\system32\drivers\sisagp.sys
    01:44:54.0282 0x1598 sisagp - ok
    01:44:54.0295 0x1598 [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
    01:44:54.0297 0x1598 SiSRaid2 - ok
    01:44:54.0317 0x1598 [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
    01:44:54.0320 0x1598 SiSRaid4 - ok
    01:44:54.0429 0x1598 [ A1DCD30534835CB67733AD00175125A6, 04E77F80D365ED8A500B5818015739B7D3562C528CC005E63012D07767132D71 ] slsvc C:\Windows\system32\SLsvc.exe
    01:44:54.0528 0x1598 slsvc - ok
    01:44:54.0543 0x1598 [ 56DA296E7B376A727E7BDC5AC7FBEE02, 6A01699DEADE24DCE15321F51368F41EBC6594A838953D9EF250A57D7C1216B7 ] SLUINotify C:\Windows\system32\SLUINotify.dll
    01:44:54.0547 0x1598 SLUINotify - ok
    01:44:54.0559 0x1598 [ AC0D90738ADB51A6FD12FF00874A2162, 81086C33F77BA32DEDE0BE51CDD130AB124DB08DE63350CAA0B974B85A59B834 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    01:44:54.0562 0x1598 Smb - ok
    01:44:54.0574 0x1598 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    01:44:54.0577 0x1598 SNMPTRAP - ok
    01:44:54.0584 0x1598 [ 426F9B029AA9162CECCF65369457D046, 36F47ABD5F16CA406036BD79AA8F89FF265B913C433BA73F115E84292D5FFD26 ] spldr C:\Windows\system32\drivers\spldr.sys
    01:44:54.0586 0x1598 spldr - ok
    01:44:54.0599 0x1598 [ DA612EF2556776DF2630B68BF2D48935, 770E883E3CA0CB8B63F5C09D26AD0474054F759EB692905EB37F9BC16D1FE5F4 ] Spooler C:\Windows\System32\spoolsv.exe
    01:44:54.0605 0x1598 Spooler - ok
    01:44:54.0646 0x1598 [ 038579C35F7CAD4A4BBF735DBF83277D, 95B5B32D8818E89A7AE2B6DDEAE3025B9E2B4C7A99E7CAEE4D7BF3E336413377 ] srv C:\Windows\system32\DRIVERS\srv.sys
    01:44:54.0655 0x1598 srv - ok
    01:44:54.0669 0x1598 [ 6971A757AF8CB5E2CBCBB76CC530DB6C, E8BD4353F6EBCF3316CA6D288C402CAB72C674A94E07EB3003A8010F74BDC90C ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    01:44:54.0673 0x1598 srv2 - ok
    01:44:54.0679 0x1598 [ 9E1A4603B874EEBCE0298113951ABEFB, 79C6153AF6E23F7A86642BE977E76B3D420F4D720B72418D0F3FB5A9EAFE36BB ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    01:44:54.0681 0x1598 srvnet - ok
    01:44:54.0707 0x1598 [ 8D3E4BAFF8B3997138C38EB1B600519A, D40E30C86B2B5AB30B29CD211091C97876673E786D708EDDC5068656CB84E7F3 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    01:44:54.0713 0x1598 SSDPSRV - ok
    01:44:54.0727 0x1598 [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
    01:44:54.0729 0x1598 ssmdrv - ok
    01:44:54.0778 0x1598 [ 1F3239C3DC4C6D7ED84F6E799FCFDC5C, 916F7D65157E44001C0447B0F61AABA82B05696E2E7A3984F3DAAA7E25DB9435 ] STacSV C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
    01:44:54.0781 0x1598 STacSV - ok
    01:44:54.0824 0x1598 [ EA6204726AC084FECE5086DB72A12FDB, FED07F91FFC93B5EF7A1C978B5279CB86B2D9D067C79248EB681F2A5508D0419 ] STHDA C:\Windows\system32\drivers\stwrt.sys
    01:44:54.0833 0x1598 STHDA - ok
    01:44:54.0871 0x1598 [ A941E099EF46E3CC12F898CBE1C39910, 03419E0FC240C51A05B432041F1747068475EF2E6E23B06D85D5AEF4F442D32D ] stisvc C:\Windows\System32\wiaservc.dll
    01:44:54.0887 0x1598 stisvc - ok
    01:44:54.0896 0x1598 [ 1379BDB336F8158C176A465E30759F57, 704CB88D0DA019C48B30AF3CF51C6746D10C583822B21861DDE1708A835ABDFA ] swenum C:\Windows\system32\DRIVERS\swenum.sys
    01:44:54.0898 0x1598 swenum - ok
    01:44:54.0925 0x1598 [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0, 376C3FDAB5926DDDE8BF009988D782A96AA198D9BC147C799016D558AEE6537E ] swprv C:\Windows\System32\swprv.dll
    01:44:54.0941 0x1598 swprv - ok
    01:44:54.0962 0x1598 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
    01:44:54.0963 0x1598 Symc8xx - ok
    01:44:54.0979 0x1598 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
    01:44:54.0982 0x1598 Sym_hi - ok
    01:44:54.0990 0x1598 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
    01:44:54.0992 0x1598 Sym_u3 - ok
    01:44:55.0037 0x1598 [ 8F2B5FEDE18BD3C4C926CBF88E6F1264, A6398F4CBD27C59A1160AE7F79B651F4956F8BEFB829353A263502CEFBDEBF36 ] SysMain C:\Windows\system32\sysmain.dll
    01:44:55.0063 0x1598 SysMain - ok
    01:44:55.0074 0x1598 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
    01:44:55.0079 0x1598 TabletInputService - ok
    01:44:55.0102 0x1598 [ EF3DD33C740FC2F82E7E4622F1C49289, 56CA8119E23AE7B9A6E454C7F52514D361AFFE92F46B63FBCA36AA7273624E52 ] TapiSrv C:\Windows\System32\tapisrv.dll
    01:44:55.0110 0x1598 TapiSrv - ok
    01:44:55.0121 0x1598 [ 68FA52794AE9ACC61BDE16FE0956B414, 3848DAF78246935134443FCEBA4E48843E98E5201DCD1B7C4C2BA46E2E106F50 ] TBS C:\Windows\System32\tbssvc.dll
    01:44:55.0126 0x1598 TBS - ok
    01:44:55.0170 0x1598 [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    01:44:55.0204 0x1598 Tcpip - ok
    01:44:55.0232 0x1598 [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
    01:44:55.0249 0x1598 Tcpip6 - ok
    01:44:55.0261 0x1598 [ 5CE0C4A7B12D0067DAD527D72B68C726, BA2B482C5A9B59721A893B11475E199808E8182A0C39DA82BF87E6BE03B61867 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    01:44:55.0263 0x1598 tcpipreg - ok
    01:44:55.0279 0x1598 [ 964248AEF49C31FA6A93201A73FFAF50, 479174899E7375C29E7C0EA7715AF1FDB09D7565B0678E15DC109C32B08624AD ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    01:44:55.0280 0x1598 TDPIPE - ok
    01:44:55.0292 0x1598 [ 7D2C1AE1648A60FCE4AA0F7982E419D3, E08F2A380388E3F0886B9EF440758AAE85F619A6B98C8054E55190423B7377DB ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    01:44:55.0294 0x1598 TDTCP - ok
    01:44:55.0300 0x1598 [ AB4FDE8AF4A0270A46A001C08CBCE1C2, E420B59E716C09623A28A95CD20721EA3FA2804E44F0D9226C0DCBA8FB716A78 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    01:44:55.0303 0x1598 tdx - ok
    01:44:55.0601 0x1598 [ 3438EFDC30F7A41D3598ED60BBF6CF2A, 342B8E78DF6B4BA641C5CCB5B1343B363B770681F0794A809728789E3BE56E46 ] TeamViewer9 C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
    01:44:55.0787 0x1598 TeamViewer9 - ok
    01:44:55.0825 0x1598 [ 2C549BD9DD091FBFAA0A2A48E82EC2FB, A1884EE33A1EC2FD2FC5540E8848EBC2A9FB1987B5D2BAA58E4D7984F89E4BD7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
    01:44:55.0827 0x1598 TermDD - ok
    01:44:55.0849 0x1598 [ FAD71C1E8E4047B154E899AE31EB8CAA, 44DDADAFF31B4D6D840DA48A9A435204184CF3016EA426B24249F19C4C5AF304 ] TermService C:\Windows\System32\termsrv.dll
    01:44:55.0866 0x1598 TermService - ok
    01:44:55.0886 0x1598 [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] Themes C:\Windows\system32\shsvcs.dll
    01:44:55.0895 0x1598 Themes - ok
    01:44:55.0911 0x1598 [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] THREADORDER C:\Windows\system32\mmcss.dll
    01:44:55.0914 0x1598 THREADORDER - ok
    01:44:55.0926 0x1598 [ 6BBA0582C0025D43729A1112D3B57897, 052B291EBE695FB1DF40F65085CBA74624C877D57F881CE79027DEEBFE07FBA2 ] TrkWks C:\Windows\System32\trkwks.dll
    01:44:55.0931 0x1598 TrkWks - ok
    01:44:55.0956 0x1598 [ 34E388A395FEDBA1D0511ED39BBF4074, 9A44459AC8A258380E0E46F4F9FD8D9FB34B2FB127F0A672824642886E90A1D7 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    01:44:55.0958 0x1598 TrustedInstaller - ok
    01:44:55.0975 0x1598 [ 3F6DC449398B21C213DCDD18F460DF72, 9FF1A095D772F4C0A7E7327C1CAE6C14F0A375B2D409E8AC8A57EC1F2CA1E0A0 ] TSHWMDTCP C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys
    01:44:55.0977 0x1598 TSHWMDTCP - ok
    01:44:55.0991 0x1598 [ 29F0ECA726F0D51F7E048BDB0B372F29, FC4D5859633DA90A14CC5026347EF95BA3309594F8485F4F8C6451F44A8A8787 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    01:44:55.0992 0x1598 tssecsrv - ok
    01:44:56.0003 0x1598 [ 65E953BC0084D44498B51F59784D2A82, 64A33090CE2A9046F413C9A0D0209ABF4B3FA0E44031CB871B20CF7C6ADA7021 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
    01:44:56.0005 0x1598 tunmp - ok
    01:44:56.0009 0x1598 [ 4A39BDA5E0FD30BDF4884F9D33AE6105, C827FCA940CCB4B5305A35E02AB296AD0CB9455B401555BDB2938BAED4A2A5D0 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    01:44:56.0009 0x1598 tunnel - ok
    01:44:56.0031 0x1598 [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys
    01:44:56.0033 0x1598 uagp35 - ok
    01:44:56.0061 0x1598 [ 6348DA98707CEDA8A0DFB05820E17732, FEADD72EBF7CE3E85463D676B45E05E5141EB80C76594DE66E2F3D27569AE90B ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    01:44:56.0069 0x1598 udfs - ok
    01:44:56.0112 0x1598 [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD, 8145A7668103B6768D49B5EADCA47C0D75E09C190325892DC74A29A5E959CE37 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    01:44:56.0116 0x1598 UI0Detect - ok
    01:44:56.0137 0x1598 [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    01:44:56.0139 0x1598 uliagpkx - ok
    01:44:56.0157 0x1598 [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys
    01:44:56.0164 0x1598 uliahci - ok
    01:44:56.0197 0x1598 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
    01:44:56.0201 0x1598 UlSata - ok
    01:44:56.0219 0x1598 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
    01:44:56.0223 0x1598 ulsata2 - ok
    01:44:56.0239 0x1598 [ 3FB78F1D1DD86D87BECECD9DFFA24DD9, B6344D33D064B56311168B02315B01238964D834AA44EB6C2B3788698F2077CF ] umbus C:\Windows\system32\DRIVERS\umbus.sys
    01:44:56.0241 0x1598 umbus - ok
    01:44:56.0259 0x1598 [ 8EB871A3DEB6B3D5A85EB6DDFC390B59, 84D8A02CC4597078D868F1C31992D04B2D4B3CC4FAF4F57625A2054C13AE1513 ] upnphost C:\Windows\System32\upnphost.dll
    01:44:56.0275 0x1598 upnphost - ok
    01:44:56.0300 0x1598 [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
    01:44:56.0302 0x1598 USBAAPL - ok
    01:44:56.0329 0x1598 [ 0916972FB98080355AC1E9A4F92183F7, 77705DFD72D452454AF3B5F9024FF59D2A1BD7D8C17235C30236A2AF2CC8D710 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    01:44:56.0332 0x1598 usbccgp - ok
    01:44:56.0356 0x1598 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    01:44:56.0359 0x1598 usbcir - ok
    01:44:56.0385 0x1598 [ FB50F987304F907A0103B14A5F2F2344, C71A7BCB52628E3913F1CE271869EDA71F1F2B012636313CD458A73FA8342364 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    01:44:56.0387 0x1598 usbehci - ok
    01:44:56.0412 0x1598 [ 16675AB7E199635086AB0556137371F5, 2E8B362B0A7E4AD605BDDBB97ABF74A480B7372937371AC28446A888F9BD0063 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    01:44:56.0419 0x1598 usbhub - ok
    01:44:56.0433 0x1598 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
    01:44:56.0434 0x1598 usbohci - ok
    01:44:56.0442 0x1598 [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    01:44:56.0444 0x1598 usbprint - ok
    01:44:56.0473 0x1598 [ B1F95285C08DDFE00C0B955462637EC7, 08EA5D7874F74EE3A5903F5EDFD4C3329AB103185A64699EA138CD2B25174C2F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
    01:44:56.0475 0x1598 usbscan - ok
    01:44:56.0499 0x1598 [ 7887CE56934E7F104E98C975F47353C5, A77F4F36119DE0330CB39F0082130398479016C6819860E8A3873485679FFC15 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    01:44:56.0502 0x1598 USBSTOR - ok
    01:44:56.0506 0x1598 [ 165BB1F0801118DC86AA3FC87D3D101C, 04C6C6A3370024B35BC66FC6EAB8BD20DDB97FCD647D30D4DA312F655CCD4FF5 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
    01:44:56.0508 0x1598 usbuhci - ok
    01:44:56.0541 0x1598 [ F79D0D7C9004474CB42746D9B2C30A2B, B693C6DEB1AB879F91BF5362ECD02C8C676A6AAB82D01CB534734CC07FA6A3D8 ] UxSms C:\Windows\System32\uxsms.dll
    01:44:56.0544 0x1598 UxSms - ok
    01:44:56.0564 0x1598 [ C9D0BAFEE0D0A2681F048CA61BC0DA96, DEE8345E0F0E1984001C4305294DD0006C9C6DDA08BF8E23669D53919FB0D479 ] vds C:\Windows\System32\vds.exe
    01:44:56.0581 0x1598 vds - ok
    01:44:56.0594 0x1598 [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    01:44:56.0596 0x1598 vga - ok
    01:44:56.0604 0x1598 [ 17A8F877314E4067F8C8172CC6D9101C, 86644BE36B12DBB61A14AE076EE5A3C04C1AC5328FD540BB39F80086302E30FA ] VgaSave C:\Windows\System32\drivers\vga.sys
    01:44:56.0606 0x1598 VgaSave - ok
    01:44:56.0647 0x1598 [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp C:\Windows\system32\drivers\viaagp.sys
    01:44:56.0649 0x1598 viaagp - ok
    01:44:56.0666 0x1598 [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys
    01:44:56.0668 0x1598 ViaC7 - ok
    01:44:56.0691 0x1598 [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide C:\Windows\system32\drivers\viaide.sys
    01:44:56.0692 0x1598 viaide - ok
    01:44:56.0704 0x1598 [ 103E84C95832D0ED93507997CC7B54E8, DA8B0F015D9F383C1349C96A6308E2B2BF3C1C3C5D0A173B9B71B455F8A10FCB ] volmgr C:\Windows\system32\drivers\volmgr.sys
    01:44:56.0706 0x1598 volmgr - ok
    01:44:56.0716 0x1598 [ 294DA8D3F965F6A8DB934A83C7B461FF, 6761A3B24173C76E8AAE17D131EB897F475D84CAE76C9E1CF1F450DF7AC0A9B7 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    01:44:56.0725 0x1598 volmgrx - ok
    01:44:56.0771 0x1598 [ 80DC0C9BCB579ED9815001A4D37CBFD5, E80392798A10DD9354683D80FDAE182D5D34CC3945BD5A7D16B79F0B2ED0D1A5 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    01:44:56.0778 0x1598 volsnap - ok
    01:44:56.0804 0x1598 [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
    01:44:56.0808 0x1598 vsmraid - ok
    01:44:56.0859 0x1598 [ E0E29D9EF2524ABD11749C7C2FD7F607, 9A463C3BC73309B2114F30E8F923FE458F7AF8A385508403B56F260F1C0D042E ] VSS C:\Windows\system32\vssvc.exe
    01:44:56.0893 0x1598 VSS - ok
    01:44:56.0913 0x1598 [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED, 6354B3D18AD753A96B38A71C4DC071944C1EFFBB695507DB3F40355203FB9A78 ] W32Time C:\Windows\system32\w32time.dll
    01:44:56.0929 0x1598 W32Time - ok
    01:44:56.0944 0x1598 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
    01:44:56.0946 0x1598 WacomPen - ok
    01:44:56.0983 0x1598 [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
    01:44:56.0986 0x1598 Wanarp - ok
    01:44:56.0990 0x1598 [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    01:44:56.0992 0x1598 Wanarpv6 - ok
    01:44:57.0003 0x1598 [ C1B19162E0509CEAB4CDF664E139D956, 24F03AD0EB901777F8DDF874A82BF32361D8313F8E79A477C42D58CD6BF12657 ] wcncsvc C:\Windows\System32\wcncsvc.dll
    01:44:57.0011 0x1598 wcncsvc - ok
    01:44:57.0029 0x1598 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    01:44:57.0033 0x1598 WcsPlugInService - ok
    01:44:57.0044 0x1598 [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys
    01:44:57.0046 0x1598 Wd - ok
    01:44:57.0068 0x1598 [ 7B5F66E4A2219C7D9DAF9E738480E534, ED8D421591D693F2C0DB55B319A05E7E63241A66399CB7CE0C574B14138D8CC0 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    01:44:57.0081 0x1598 Wdf01000 - ok
    01:44:57.0097 0x1598 [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiServiceHost C:\Windows\system32\wdi.dll
    01:44:57.0103 0x1598 WdiServiceHost - ok
    01:44:57.0108 0x1598 [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiSystemHost C:\Windows\system32\wdi.dll
    01:44:57.0112 0x1598 WdiSystemHost - ok
    01:44:57.0128 0x1598 [ 01E41C264EEDCB827820A1909162579F, E21E6CFE3A0F46320175A261E31DA86573F28CCD0C710E972E7888C5FB85C494 ] WebClient C:\Windows\System32\webclnt.dll
    01:44:57.0135 0x1598 WebClient - ok
    01:44:57.0151 0x1598 [ 9CF67FF7F8D34CBF115D0C278B9F74AA, B5EE61B3345B3DE88230858FD639A90919D00D52D44C8138E3AD66F79DFBB54B ] Wecsvc C:\Windows\system32\wecsvc.dll
    01:44:57.0158 0x1598 Wecsvc - ok
    01:44:57.0169 0x1598 [ B68CAB45DB1DAB59D92ACADFAD6364A8, 47491F6E759CDE7C343648C41302A57B0A41EAD49B7F55AD545743AEF9E168ED ] wercplsupport C:\Windows\System32\wercplsupport.dll
    01:44:57.0173 0x1598 wercplsupport - ok
    01:44:57.0184 0x1598 [ 36BA0707680EF4236FD752BEE982CC25, 215E20E83A13B0B680990E4557DFBA5B83B60D2FCF356C1AB5BEFEA22B134B0A ] WerSvc C:\Windows\System32\WerSvc.dll
    01:44:57.0190 0x1598 WerSvc - ok
    01:44:57.0224 0x1598 [ CF27EDAC75C87F2B776D9218F02F8301, F54CBDF3B8253653E7E308AC9CBD7EEBC414628E215BF4FC2B6276D79DB5055A ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
    01:44:57.0251 0x1598 winachsf - ok
    01:44:57.0300 0x1598 [ 0D5AD0E71FF5DDAC5DD2F443B499ABD0, 7FE7C635B811E882AB02437FED1778A11F32F273E44E669DC445E929EF2C9B2D ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
    01:44:57.0308 0x1598 WinDefend - ok
    01:44:57.0313 0x1598 WinHttpAutoProxySvc - ok
    01:44:57.0361 0x1598 [ 38A7B89DE4E3417C122317949667FDD8, 611CFCC36EABA5752E99C1E0E3F6269C93CC5E5F53495C257929FB5492DCDE97 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    01:44:57.0367 0x1598 Winmgmt - ok
    01:44:57.0387 0x1598 [ 3F6823040030C3E4DA1CF11CD40B7534, 4B1B1CE5F4E6679A96BA081F6CFC1D43FFCE3CAE58B8C3AD74B261D7F5C70E28 ] WinRM C:\Windows\system32\WsmSvc.dll
    01:44:57.0413 0x1598 WinRM - ok
    01:44:57.0467 0x1598 [ 7640ACEA41348BFEF34B76E245501261, 9B1067197DBE0E71AD547535FF8B97E30A89521FB84008DF9F57C71408B714BA ] Wlansvc C:\Windows\System32\wlansvc.dll
    01:44:57.0493 0x1598 Wlansvc - ok
    01:44:57.0507 0x1598 [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    01:44:57.0508 0x1598 WmiAcpi - ok
    01:44:57.0516 0x1598 [ A279323BEE5FFFAFDA222910BCE92132, 9A61FCDFBB4ECF3ADA153A62E7BF07309FC430DF43FA7A02F2F829E52D4FC65A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    01:44:57.0521 0x1598 wmiApSrv - ok
    01:44:57.0568 0x1598 [ ACB2E63D50157E3EA7140F29D9E76A48, BA5F1F9EB162C7E4CE56D0582DE674803633B9BAAB9A3726DC4CB8AF9E98BC5A ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
    01:44:57.0602 0x1598 WMPNetworkSvc - ok
    01:44:57.0618 0x1598 [ 3D3B3B80C12ABE506F56930C46422C28, 9164F603B6BBE4597FDD99545715369FAE97402A2C2E89FD62F8A09629AB31F9 ] WPCSvc C:\Windows\System32\wpcsvc.dll
    01:44:57.0625 0x1598 WPCSvc - ok
    01:44:57.0637 0x1598 [ C24844A1D0D9528B19D5BC266B8CD572, 2FABE49F7B93E5B99EA13828C81BBD7202BA813ACEBB192552E2AFD1E6AD67FD ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    01:44:57.0642 0x1598 WPDBusEnum - ok
    01:44:57.0684 0x1598 [ 2D27171B16A577EF14C1273668753485, CA18E5A467D4C2EA3141F214E3D227630AB4D568179C1597936B55EEED6F5C2B ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
    01:44:57.0686 0x1598 WpdUsb - ok
    01:44:57.0699 0x1598 [ 84620AECDCFD2A7A14E6263927D8C0ED, 0FB188B40EA140DC5C7A0AD289613BC3FEF71C220F7852C57650A0889CF99A87 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    01:44:57.0701 0x1598 ws2ifsl - ok
    01:44:57.0712 0x1598 [ F97CBB919AF6D0A6643D1A59C15014D1, E765BAF504DE624AE954531711AAFDD98CE9624C3806D7F25D228B53F6BDA6A0 ] wscsvc C:\Windows\System32\wscsvc.dll
    01:44:57.0716 0x1598 wscsvc - ok
    01:44:57.0719 0x1598 WSearch - ok
    01:44:57.0790 0x1598 [ 9397D21939A25DA1BD0ED8DB5BB3C853, 966203743B4F6442B60404989CF793F4D4461C2C12250A544A8F1133FF409831 ] wuauserv C:\Windows\system32\wuaueng.dll
    01:44:57.0840 0x1598 wuauserv - ok
    01:44:57.0862 0x1598 [ A2AAFCC8A204736296D937C7C545B53F, AB9C42AA1917E828F84C9D0E7505664937681CEC833600953BB98307F878DB93 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    01:44:57.0865 0x1598 WUDFRd - ok
    01:44:57.0879 0x1598 [ DB5BF5AAB72B1B99B5331231D09EBB26, E1E49CA488211F6CAFF00FBF7F1F044155882864069FACEA3DD397AB8EDDD72F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    01:44:57.0884 0x1598 wudfsvc - ok
    01:44:57.0898 0x1598 [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8, 3660379AADB6DB56E54D9C680929CD3882CDE4E6A8BB888FC892110D6B50C627 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
    01:44:57.0899 0x1598 XAudio - ok
    01:44:57.0923 0x1598 [ 28DC5D626E036A75A572556F0A6EB1F6, 9AE635C08B87AD85A552ADE0AF8BA10DC258E0DEFE133A2A74EFCD43B7A38A98 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
    01:44:57.0940 0x1598 XAudioService - ok
    01:44:57.0945 0x1598 ================ Scan global ===============================
    01:44:57.0970 0x1598 [ 8CD98A8EC9CADAF4E051CDCAC15C96C4, E2F18E0FFB31FDDF210798EFA0C9C30C04B41B7CAACD93BFC224DE569000C220 ] C:\Windows\system32\basesrv.dll
    01:44:58.0006 0x1598 [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
    01:44:58.0043 0x1598 [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
    01:44:58.0078 0x1598 [ 329CF3C97CE4C19375C8ABCABAE258B0, 193A99EB3151C8C99B05A1BA4A69C39CC95E776CF1D39D7E318254383A4C9C0D ] C:\Windows\system32\services.exe
    01:44:58.0094 0x1598 [ Global ] - ok
    01:44:58.0095 0x1598 ================ Scan MBR ==================================
    01:44:58.0106 0x1598 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
    01:44:58.0353 0x1598 \Device\Harddisk0\DR0 - ok
    01:44:58.0354 0x1598 ================ Scan VBR ==================================
    01:44:58.0356 0x1598 [ 4FFBBDB3D0B65EE493B3EBE7173CFF5D ] \Device\Harddisk0\DR0\Partition1
    01:44:58.0503 0x1598 \Device\Harddisk0\DR0\Partition1 - ok
    01:44:58.0505 0x1598 [ 77C462C3A8B521BB14C1102D6011D6DB ] \Device\Harddisk0\DR0\Partition2
    01:44:58.0582 0x1598 \Device\Harddisk0\DR0\Partition2 - ok
    01:44:58.0583 0x1598 ================ Scan generic autorun ======================
    01:44:58.0672 0x1598 [ 9AD9E2FB2811123DA13DE84CC154AB77, 32695AC4BD0474BF08856C6DC45C24562A1243E9B88C2BDF4C6F5291FE1D1A22 ] C:\Program Files\Windows Defender\MSASCui.exe
    01:44:58.0713 0x1598 Windows Defender - ok
    01:44:58.0741 0x1598 [ E59512F36692221E582A8B68D8503836, D13DAF738D59C24C48392F52F23536D01ED779C4845AB483286B1F0D05689344 ] C:\windows\options\auditadmin.cmd
    01:44:58.0742 0x1598 auditadmin - ok
    01:44:58.0771 0x1598 [ CB5AB280926FF4444B8CE6BB07E57A8D, 3AA16F80B44A0B5C0F97E1254E45FB404F3D4822FAFEE06E5AF2EAD5A6ECA72F ] C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
    01:44:58.0776 0x1598 CCUTRAYICON - ok
    01:44:58.0847 0x1598 [ F93EBA19E9D096C481A5D8AAA1B3D2FB, E1F3D4D44BE37D60212FEBA7A8C0E7E0535B137AA42E3EFD27BB5FFA29907B7E ] C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
    01:44:58.0864 0x1598 NMSSupport - ok
    01:44:58.0883 0x1598 [ 518FC0F6AFBF9F15F8AB4F3A15022CBC, A89090AF69C2996F52913B275BFF0A68B48F23A756618BD01B7357CDC128B0D7 ] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
    01:44:58.0889 0x1598 IAAnotif - ok
    01:44:58.0889 0x1598 NapsterShell - ok
    01:44:58.0892 0x1598 BigFix - ok
    01:44:58.0919 0x1598 [ DF708DE544C1FA79501A878BED5D3D1E, 97F3DBAB532DF9D89A04541B30568DFF577D6D1B7ADD0F317196A8FDFF76AFA0 ] C:\Windows\sttray.exe
    01:44:58.0928 0x1598 SigmatelSysTrayApp - ok
    01:44:59.0102 0x1598 [ 1E9B225DE829A6F666A0BA9B8A7984BF, 89D1222D72E23D21E6388B068CE7C415A9857ABB37D7A3AAD549B949A87E61FC ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
    01:44:59.0139 0x1598 avgnt - ok
    01:44:59.0224 0x1598 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    01:44:59.0272 0x1598 Adobe ARM - ok
    01:44:59.0329 0x1598 [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
    01:44:59.0331 0x1598 APSDaemon - ok
    01:44:59.0381 0x1598 [ 8DDA2B606279753601F9415DA503CA63, 2C9AD8218E150B6D50817991377ED3230A1672EFBD7AE29D0CD9E55E2418C800 ] C:\Program Files\QuickTime\QTTask.exe
    01:44:59.0398 0x1598 QuickTime Task - ok
    01:44:59.0520 0x1598 [ B93C4070F24E46B0097648C276B5039E, 5113AAB400D456A5C11EF47E40755755F227BB4A7134C0E2C81F6199C896BD98 ] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    01:44:59.0522 0x1598 HP Software Update - ok
    01:44:59.0595 0x1598 [ A9F9D081518AC03A51C1195986076F42, 7549CA4530470D9C8A0078E0002E3650133051AA4A1D2F3B7CF0BCA4C4A65595 ] C:\Program Files\iTunes\iTunesHelper.exe
    01:44:59.0599 0x1598 iTunesHelper - ok
    01:44:59.0671 0x1598 [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
    01:44:59.0678 0x1598 SunJavaUpdateSched - ok
    01:44:59.0722 0x1598 [ 0BB123FB5C46667DCAD2A882AB5100B9, 9CD5AB7FB2FFB3965506A21C2C8B1B77F1EB9D25363FA2187FD5E70E82CAA086 ] C:\Windows\SMINST\launcher.exe
    01:44:59.0724 0x1598 Launcher - ok
    01:44:59.0793 0x1598 [ 582F3A0BA61D8F0D50C66B592808B6D6, BA4FE8BFE3C7F03AB0A1CF0A52E2B21B8321FD809FA8448E5714D78535165750 ] C:\Program Files\Windows Sidebar\Sidebar.exe
    01:44:59.0834 0x1598 Sidebar - ok
    01:44:59.0838 0x1598 WindowsWelcomeCenter - ok
    01:44:59.0881 0x1598 [ 582F3A0BA61D8F0D50C66B592808B6D6, BA4FE8BFE3C7F03AB0A1CF0A52E2B21B8321FD809FA8448E5714D78535165750 ] C:\Program Files\Windows Sidebar\Sidebar.exe
    01:44:59.0903 0x1598 Sidebar - ok
    01:44:59.0908 0x1598 WindowsWelcomeCenter - ok
    01:44:59.0945 0x1598 [ 582F3A0BA61D8F0D50C66B592808B6D6, BA4FE8BFE3C7F03AB0A1CF0A52E2B21B8321FD809FA8448E5714D78535165750 ] C:\Program Files\Windows Sidebar\Sidebar.exe
    01:44:59.0966 0x1598 Sidebar - ok
    01:44:59.0970 0x1598 WindowsWelcomeCenter - ok
    01:45:00.0032 0x1598 [ 2E0953919779A44BF9DFB7B07C58535A, 32DC0CCEFA5264C35E521C61F7DD3821317A9DB392202B049AB8A3881D8531DD ] C:\Windows\ehome\ehTray.exe
    01:45:00.0036 0x1598 ehTray.exe - ok
    01:45:00.0070 0x1598 GoogleDriveSync - ok
    01:45:00.0104 0x1598 [ 582F3A0BA61D8F0D50C66B592808B6D6, BA4FE8BFE3C7F03AB0A1CF0A52E2B21B8321FD809FA8448E5714D78535165750 ] C:\Program Files\Windows Sidebar\Sidebar.exe
    01:45:00.0125 0x1598 Sidebar - ok
    01:45:00.0129 0x1598 WindowsWelcomeCenter - ok
    01:45:00.0133 0x1598 WindowsWelcomeCenter - ok
    01:45:00.0133 0x1598 Waiting for KSN requests completion. In queue: 63
    01:45:01.0245 0x1598 AV detected via SS1: Avira Desktop, 14.0.5.320, disabled, updated
    01:45:01.0263 0x1598 Win FW state via NFP2: enabled
    01:45:01.0435 0x1598 ============================================================
    01:45:01.0435 0x1598 Scan finished
    01:45:01.0435 0x1598 ============================================================
    01:45:01.0442 0x1584 Detected object count: 0
    01:45:01.0443 0x1584 Actual detected object count: 0
     
  16. 2014/07/13
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    ESET Online Scan

    Scan your computer with the ESET FREE Online Virus Scan

    * Click the ESET Online Scanner button.

    * For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    * Click on the esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop
    * Double click on the esetsmartinstaller_enu.exe icon on your desktop.
    * Place a check mark next to YES, I accept the Terms of Use.

    * Click the Start button.
    * Accept any security warnings from your browser.
    * Leave the check mark next to Remove found threats and place a check next to Scan archives.
    * Click the Start button.
    * ESET will then download updates, install, and begin scanning your computer. Please be patient as this can take some time.
    * When the scan completes, click List of found threats.
    * Next click Export to text file and save the file to your desktop using a name such as ESETScan. Include the contents of this report in your next reply.
    * Click the Back button then click Finish.

    In your next reply please include the ESET Online Scan Log
     
  17. 2014/07/14
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39auxstb.dll.vir Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39bar.dll.vir a variant of Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39barsvc.exe.vir Win32/Toolbar.MyWebSearch.X potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39bprtct.dll.vir Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39brmon.exe.vir Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39brstub.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39datact.dll.vir a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39dlghk.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39dyn.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39feedmg.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39highin.exe.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39hkstub.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39htmlmu.dll.vir a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39httpct.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39idle.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39ieovr.dll.vir probably a variant of Win32/Toolbar.MyWebSearch.P potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39impipe.exe.vir Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39medint.exe.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39mlbtn.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39msg.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39Plugin.dll.vir probably a variant of Win32/Toolbar.MyWebSearch potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39radio.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39regfft.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39reghk.dll.vir Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39regiet.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39script.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39skin.dll.vir a variant of Win32/Toolbar.MyWebSearch.P potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39sknlcr.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39skplay.exe.vir Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39SrcAs.dll.vir a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39SrchMn.exe.vir Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39tpinst.dll.vir a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39uabtn.dll.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\AppIntegrator64.exe.vir Win64/Toolbar.MyWebSearch.A potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\AppIntegratorStub64.dll.vir Win64/Toolbar.MyWebSearch.A potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\CREXT.DLL.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\CrExtP39.exe.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\Hpg64.dll.vir Win64/Toolbar.MyWebSearch.A potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\NP39Stub.dll.vir Win32/Toolbar.MyWebSearch.T potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8EXTEX.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8EXTPEX.DLL.vir Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8HTML.DLL.vir probably a variant of Win32/Toolbar.MyWebSearch.F potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8TICKER.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application deleted - quarantined
    C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\VERIFY.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application deleted - quarantined
    C:\Users\billy\Desktop\OOGIES\Billy\BILL'S DOCUMENTS\my downloads\Babylon7_setup.exe a variant of Win32/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
     
  18. 2014/07/14
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    That looks good. How's your computer running now? Any other issues?
     
  19. 2014/07/15
    broccoli6969 Lifetime Subscription

    broccoli6969 Well-Known Member Thread Starter

    Joined:
    2009/10/13
    Messages:
    101
    Likes Received:
    0
    It's running fine. Was there a virus or was it just some malware ad based stuff?

    Thanks a lot, and it was nice meeting you Superdave.

    Billy
     
  20. 2014/07/15
    Superdave1941

    Superdave1941 Malware Analyst Malware Analyst

    Joined:
    2014/06/08
    Messages:
    31
    Likes Received:
    0
    Just the run-of-the-mill infections. Almost every computer gets hit with them. Let's do some clean up.

    This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
    This is a very crucial step so make sure you don't skip it.
    Download DelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

    Double-click Delfix.exe to start the tool.
    Make sure the following items are checked:
    • Activate UAC (optional; some users prefer to keep it off)
    • Remove disinfection tools
    • Create Registry backup
    • Purge System Restore Points
    • Re-set system settings
    Now click "Run" and wait patiently.
    Once finished a logfile will be created. You don't have to attach it to your next reply.
    ****************************************
    Click Start> Computer> right click the C Drive and choose Properties> enter
    Click Disk Cleanup from there.

    [​IMG]

    Click OK on the Disk Cleanup Screen.
    Click Yes on the Confirmation screen.

    [​IMG]

    This runs the Disk Cleanup utility along with other selections if you have chosen any. (if you had a lot System Restore points, you will see a significant change in the free space in C drive)
    ****************************************
    Go to Microsoft Windows Update and get all critical updates.
    ----------

    I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

    Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

    Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
    Safe Surfing!
     

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.