1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Blue screen shutdown

Discussion in 'Windows Vista' started by arizonagrandma, Sep 25, 2013.

Thread Status:
Not open for further replies.
Advertisement
  1. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    Windows is shutting down randomly. Blue screen. Problems:

    Locale ID: 1033

    Additional information about the problem:
    BCCode: 1000008e
    BCP1: C0000005
    BCP2: 8708C755
    BCP3: B639567C
    BCP4: 00000000
    OS Version: 6_0_6002
    Service Pack: 2_0
    Product: 768_1

    Files that help describe the problem:
    C:\Windows\Minidump\Mini092513-01.dmp
    C:\Users\kmballiett\AppData\Local\Temp\WER-447052-0.sysdata.xml
    C:\Users\kmballiett\AppData\Local\Temp\WER191B.tmp.version.tx

    This has happened numerous times. Also, on start-up, I am having "Windows Installer" "Tray Ap" "HPP" after trying to uninstall an old printer.
     
  2. blues_harp28

    blues_harp28 Trusted Advisor Spam Fighter

    Joined:
    Jan 9, 2005
    Messages:
    18,544
    Either post the Minidump files.
    Look in c:\windows\minidump
    ZIP them and attach them to your next post.

    Right-click the minidump file, select Send To.
    Then select Compressed (zipped) Folder.
    Windows will compress the file and then save the new zipped file in the same location.

    Or download BlueScreenView
    http://www.nirsoft.net/utils/blue_screen_view.html
    Download link at the bottom of the page.

    Download > Install.
    Once it has scanned > Click on Edit > Select All > File > Save Selected Item
    It will open in Notepad - or save to Notepad > Copy > Paste.
    Then Post the last 5 minidump files

    Check this link first
    ======
    Download Security Check by screen317 from.
    http://screen317.spywareinfoforum.org/
    Or
    http://www.bleepingcomputer.com/download/securitycheck/

    Save it to your Desktop.
    Double click the install icon.
    If using Vista or Win 7 - right click the icon - run as Administrator
    A command Prompt window will open.
    Let it scan the Pc - press any key when asked.
    It should now open in Notepad.
    Copy and Paste the result of the scan in the reply box below.

    The saved log will be called checkup.txt.
     
  3. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    I followed your instructions and received this message when I tried to download it to my desktop:

    The specified directory C:\Windows\Minidump is empty, so Compressed (zipped) Folders cannot add it to the archive.
     
  4. blues_harp28

    blues_harp28 Trusted Advisor Spam Fighter

    Joined:
    Jan 9, 2005
    Messages:
    18,544
    Your Pc needs to be set to save the minidumps.
    Check this link
    You will have to wait until it Blue Screens again for the minidumps to be saved.
    ======
    Meanwhile.
    Download Security Check by screen317 from.
    http://screen317.spywareinfoforum.org/
    Or
    http://www.bleepingcomputer.com/download/securitycheck/

    Save it to your Desktop.
    Double click the install icon.
    If using Vista or Win 7 - right click the icon - run as Administrator
    A command Prompt window will open.
    Let it scan the Pc - press any key when asked.
    It should now open in Notepad.
    Copy and Paste the result of the scan in the reply box below.

    The saved log will be called checkup.txt.
     
  5. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    Results of screen317's Security Check version 0.99.73
    Windows Vista Service Pack 2 x86 (UAC is enabled)
    Internet Explorer 7 Out of date!
    ``````````````Antivirus/Firewall Check:``````````````
    Windows Firewall Enabled!
    Spyware Doctor with AntiVirus
    WMI entry may not exist for antivirus; attempting automatic update.
    `````````Anti-malware/Other Utilities Check:`````````
    Spyware Doctor 7.0
    PC Cleaners
    Java 7 Update 21
    Java(TM) 6 Update 6
    Java version out of Date!
    Adobe Flash Player 11.8.800.168
    Adobe Reader 8 Adobe Reader out of Date!
    Mozilla Firefox (3.5.9) Firefox out of Date!
    Mozilla Thunderbird (3.1.10) Thunderbird out of Date!
    Google Chrome 29.0.1547.66
    Google Chrome 29.0.1547.76
    ````````Process Check: objlist.exe by Laurent````````
    Windows Defender MSASCui.exe
    Windows Defender MSASCui.exe
    `````````````````System Health check`````````````````
    Total Fragmentation on Drive C: 1 %
    ````````````````````End of Log``````````````````````
     
  6. blues_harp28

    blues_harp28 Trusted Advisor Spam Fighter

    Joined:
    Jan 9, 2005
    Messages:
    18,544
    Internet Explorer 7 Out of date!
    Spyware Doctor with AntiVirus - is not the best anti-virus program to use - Not in the top ten list.
    I'd consider changing it.

    PC Cleaners
    The same could be said of the above.

    Java 7 Update 21
    Java version out of Date!
    http://www.java.com/en/

    Uninstall - Java(TM) 6 Update 6

    Adobe Reader out of Date!
    http://get.adobe.com/reader/
    Untick the free McAfee scan before downloading Adobe
    ======
    Download MalwareBytes and SuperAntiSpyware to your desktop.
    Download the Free versions of both programs.

    MalwareBytes
    SuperAntiSpyware

    Once they are downloaded to your desktop.
    Close all open browser windows.

    MalwareBytes
    Click on the Install icon - allow it to update during the install process.
    Start Malwarebytes Anti-Malware.
    Click on Scanner > then quick scan > then Scan.
    Any infections or problems will be highlighted in red.
    After the scan is finished - Click - Show Results.
    Check that all entries are selected.
    Click - Remove Selected.
    When it has finished removing the malware - it will open a log file in Notepad.
    Copy and paste the log file.

    You may be prompted to restart to finish the removal process.
    If that is the case - restart your Pc.
    Then start Malwarebytes again.
    Click on the Logs Tab.
    Highlight the scan log entry.
    Click - Open.
    The scan log will appear in Notepad.
    Copy and paste it in your next post.

    SuperAntiSpyware
    Click on the install icon - allow it to update during the install process.
    Select the Quick Scan option.
    Click Scan your Computer.
    Any infections or problems will be highlighted in red.
    After the scan is finished.
    Click Continue.
    Check that everything is listed.
    Click Remove Threats.
    Click OK - then click Finish
    You may be prompted to restart to finish the removal process.
    If Yes - restart your Pc.

    Start SuperAntiSpyware again.
    Click View Scan Logs.
    Highlight the scan log entry.
    Click - View Selected Log.
    The scan log will appear in Notepad.
    Copy and paste in your next post.
     
  7. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    Malwarebytes Anti-Malware (Trial) 1.75.0.1300
    www.malwarebytes.org

    Database version: v2013.09.25.09

    Windows Vista Service Pack 2 x86 NTFS
    Internet Explorer 7.0.6002.18005
    kmballiett :: KMBALLIETT-PC [administrator]

    Protection: Enabled

    9/25/2013 5:01:45 PM
    mbam-log-2013-09-25 (17-01-45).txt

    Scan type: Full scan (C:\|)
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 351924
    Time elapsed: 2 hour(s), 16 minute(s), 40 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 1
    HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings|ProxyServer (PUM.Bad.Proxy) -> Data: http=127.0.0.1:50370 -> Quarantined and deleted successfully.

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 1
    C:\Users\kmballiett\Downloads\LennarDigital.Sylenth1.VSTi.v2.202.Incl Keygen & Banks(2).rar (Trojan.Agent) -> Quarantined and deleted successfully.

    (end)
     
  8. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com

    Generated 09/25/2013 at 07:49 PM

    Application Version : 5.6.1032

    Core Rules Database Version : 10792
    Trace Rules Database Version: 8604

    Scan type : Quick Scan
    Total Scan Time : 00:07:16

    Operating System Information
    Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002)
    UAC On - Limited User (Administrator User)

    Memory items scanned : 692
    Memory threats detected : 0
    Registry items scanned : 30622
    Registry threats detected : 0
    File items scanned : 7153
    File threats detected : 355

    Adware.Tracking Cookie
    .imrworldwide.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .imrworldwide.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .amazon-adsystem.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .legolas-media.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaplex.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .247realmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .specificclick.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ad.mlnadvertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .yieldmanager.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    in.getclicky.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .clickbooth.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adtechus.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .amazon-adsystem.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .statcounter.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .overture.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .getclicky.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .doubleclick.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .technoratimedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .technoratimedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .s.clickability.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .kontera.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .clickfuse.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .clickfuse.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pro-market.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .overture.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaplex.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .care2.112.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .flagcounter.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ar.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    tracking.waterfrontmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .gntbcstglobal.112.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .stpetersburgtimes.122.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pixel.leadnationmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pixel.leadnationmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    track.leadnationmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .doubleclick.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .server.cpmstar.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    va.marketer.lpsnmedia.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .biglots.112.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .uac.advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .uac.advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.burstbeacon.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaforge.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .realmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    link.mercent.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    media.gsimedia.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaforge.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaforge.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .realmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    insight-beacon.torbit.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .fastclick.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .taxifarefinder.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .taxifarefinder.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.taxifarefinder.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    discountcab.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .discountcab.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .discountcab.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .e-2dj6whkiwjdpedo.stats.esomniture.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    testdata.coremetrics.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mpstat.us [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liveperson.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .flagcounter.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .usnews.122.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .videos.mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .videos.mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    videos.mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    videos.mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    acount.alley.ws [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediamatters.org [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediamatters.org [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediamatters.org [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    track.adform.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .steelhousemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .px.steelhousemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .steelhousemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liveperson.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .eyeviewads.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .counterpunch.org [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .counterpunch.org [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.counterpunch.org [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pendleton.122.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media2.legacy.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    pulse-analytics-beacon.reutersmedia.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    statse.webtrendslive.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaite.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .cbsdigitalmedia.112.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adserver.adtechus.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    a.intentmedia.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .realmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .accounts.google.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .accounts.google.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .traveladvertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.advertisespace.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    server.capitalizedmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .s.clickability.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .xiti.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .xiti.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adserver.adtechus.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .server.cpmstar.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adserver.adtechus.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .traveladvertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .traveladvertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .bs.serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    track.adform.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adform.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tribalfusion.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .cmsnewmedia.polldaddy.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .cmsnewmedia.polldaddy.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adfarm1.adition.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .at.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .at.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ar.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ar.atwola.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.healthinsurancefinders.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .rtst.122.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .statcounter.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .gmgmacmortgage.112.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .burstnet.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaplex.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .msnbc.112.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liveperson.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .liveperson.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .legolas-media.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lucidmedia.com [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .oracle.112.2o7.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .doubleclick.net [ C:\USERS\KMBALLIETT\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
     
  9. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    And lastly, I am still having a problem with "Windows Installer" "Tray Ap" popping up once Windows is started. This all started after I uninstalled my HP files once I got rid of my HP printer. I have read in a few on-line chats that HP did this on purpose and it wants me to re-install my printer program. I read that starting the computer in safe mode and uninstalling in that mode would solve the problem, but it hasn't.

    Any suggestions? I no longer have the disc that went with my old HP printer.
     
  10. blues_harp28

    blues_harp28 Trusted Advisor Spam Fighter

    Joined:
    Jan 9, 2005
    Messages:
    18,544
    We will need to see the minidumps to check why the random shutdowns and blue screens.

    Although Malwarebytes quarantined and deleted the following.
    Other scans may need to be done to make sure all Malware is removed.

    I will need to ask one of our Malware Experts to check the log file - they may ask you to run other scans on your Pc

    ======
    Meanwhile.
    Download AdwCleaner to your desktop.
    Click on the Download Now button and save it to your desktop.

    NOTE: If using Internet Explorer and you get an alert that stops the program downloading click on Tools > Smartscreen Filter > Turn off Smartscreen Filter then click on OK in the box that opens. Then click on the link again.

    Close any browsers that may be open - double click on the ADWCleaner icon on your desktop

    Click on the Scan button.
    Let it scan your Pc - when that is done click on the Report button.
    Allow it to clean and reboot your Pc.
    The report will appear on your desktop - Copy and Paste it into your next post.
     
  11. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    When I booted up this morning, I went to bluescreen twice and had to restart. Here is the information that was provided in the "Windows did not shut down properly" window:

    Problem signature:
    Problem Event Name: BlueScreen
    OS Version: 6.0.6002.2.2.0.768.3
    Locale ID: 1033

    Additional information about the problem:
    BCCode: d1
    BCP1: 01FFFFDC
    BCP2: 00000002
    BCP3: 00000000
    BCP4: 8C644909
    OS Version: 6_0_6002
    Service Pack: 2_0
    Product: 768_1

    Files that help describe the problem:
    C:\Windows\Minidump\Mini092613-02.dmp
    C:\Users\kmballiett\AppData\Local\Temp\WER-66269-0.sysdata.xml
    C:\Users\kmballiett\AppData\Local\Temp\WERD6BE.tmp.version.txt

    I will run the AdwCleaner after work this evening.
     
  12. blues_harp28

    blues_harp28 Trusted Advisor Spam Fighter

    Joined:
    Jan 9, 2005
    Messages:
    18,544
    Ok, the Keygen & Banks(2).rar (Trojan.Agent) has been identified as what's called a false positive.

    There may be a conflict with your security software - Spyware Doctor and PC Cleaners, as they both try to protect your system.
    I suggest again removing them and installing either
    Avast!
    http://www.avast.com/en-gb/index
    Or
    Microsoft Security Essentials.
    http://windows.microsoft.com/en-US/windows/products/security-essentials
    Only one Anti-Virus program is needed of course.
    ======
    Run Malwarebytes again - remove all that it finds and post the log file.
    ======
    Post the AdwCleaner log when you are ready.
    ======
    If you have set your Pc to save the minidump files - as suggested here
    http://www.spyontech.com/how-to/con...te-minidump-file-when-bluescreen-happened.htm

    You need to follow the suggestions in post # 2.
    Look in c:\windows\minidump
    And attach them in your next post or use BlueScreenView
     
  13. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    Here is the AdwCleaner - I will post the results of Malwarebytes in a separate post and will try again to post my minidump files.

    # AdwCleaner v3.005 - Report created 26/09/2013 at 18:49:52
    # Updated 22/09/2013 by Xplode
    # Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
    # Username : kmballiett - KMBALLIETT-PC
    # Running from : C:\Users\kmballiett\Downloads\AdwCleaner.exe
    # Option : Clean

    ***** [ Services ] *****


    ***** [ Files / Folders ] *****

    Folder Deleted : C:\Program Files\Ask.com
    Folder Deleted : C:\Users\KMBALL~1\AppData\Local\Temp\AskSearch
    Folder Deleted : C:\Users\kmballiett\AppData\LocalLow\AskToolbar
    Folder Deleted : C:\Users\kmballiett\AppData\LocalLow\Hotbar
    Folder Deleted : C:\Users\kmballiett\AppData\Roaming\Mozilla\Firefox\Profiles\0m0gmtll.default\Conduit
    Folder Deleted : C:\Users\kmballiett\AppData\Roaming\Mozilla\Firefox\Profiles\0m0gmtll.default\ConduitCommon
    Folder Deleted : C:\Users\kmballiett\AppData\Roaming\Mozilla\Firefox\Profiles\0m0gmtll.default\CT2314472
    Folder Deleted : C:\Users\kmballiett\AppData\Roaming\Mozilla\Firefox\Profiles\0m0gmtll.default\Extensions\[email protected]
    Folder Deleted : C:\Users\kmballiett\AppData\Roaming\Mozilla\Firefox\Profiles\0m0gmtll.default\Extensions\{d1e06b91-60e6-4492-af9f-53043fa32716}(30)
    File Deleted : C:\Program Files\Mozilla Firefox\.autoreg
    File Deleted : C:\Users\kmballiett\AppData\Roaming\Mozilla\Firefox\Profiles\0m0gmtll.default\searchplugins\Conduit.xml
    File Deleted : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar

    ***** [ Shortcuts ] *****


    ***** [ Registry ] *****

    [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
    [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7302B7D6-6492-4FF4-B5A9-CCADD5E8478E}
    [#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7302B7D6-6492-4FF4-B5A9-CCADD5E8478E}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
    Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
    Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
    Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
    Key Deleted : HKCU\Software\Ask.com
    Key Deleted : HKCU\Software\YahooPartnerToolbar
    Key Deleted : HKCU\Software\Zugo
    Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo
    Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
    Key Deleted : HKCU\Software\AppDataLow\Software\Hotbar
    Key Deleted : HKLM\Software\AskToolbar
    Key Deleted : HKLM\Software\TENCENT
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\hotbarsa
    Product Deleted : Ask Toolbar

    ***** [ Browsers ] *****

    -\\ Internet Explorer v7.0.6002.18005


    -\\ Mozilla Firefox v3.5.9 (en-US)

    [ File : C:\Users\kmballiett\AppData\Roaming\Mozilla\Firefox\Profiles\0m0gmtll.default\prefs.js ]

    Line Deleted : user_pref("CT2314472.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
    Line Deleted : user_pref("CT2314472.CTID", "CT2314472");
    Line Deleted : user_pref("CT2314472.CurrentServerDate", "1-1-2010");
    Line Deleted : user_pref("CT2314472.DialogsAlignMode", "LTR");
    Line Deleted : user_pref("CT2314472.EMailNotifierPollDate", "Fri Jan 01 2010 12:10:43 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedLastCount128895777915888346", 281);
    Line Deleted : user_pref("CT2314472.FeedLastCount128895786684794566", 48);
    Line Deleted : user_pref("CT2314472.FeedPollDate128895777917138388", "Fri Jan 01 2010 12:10:41 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedPollDate128895777917138389", "Fri Jan 01 2010 11:30:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedPollDate128895777917138390", "Fri Jan 01 2010 12:10:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedPollDate128895777917138391", "Fri Jan 01 2010 12:10:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedPollDate128895777917138392", "Fri Jan 01 2010 12:10:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedPollDate128895777917138393", "Fri Jan 01 2010 12:10:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedPollDate128895777917138394", "Fri Jan 01 2010 12:10:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedPollDate128895786684794566", "Fri Jan 01 2010 10:50:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.FeedTTL128895777917138388", 40);
    Line Deleted : user_pref("CT2314472.FeedTTL128895777917138389", 40);
    Line Deleted : user_pref("CT2314472.FeedTTL128895777917138390", 40);
    Line Deleted : user_pref("CT2314472.FeedTTL128895777917138391", 40);
    Line Deleted : user_pref("CT2314472.FeedTTL128895777917138392", 40);
    Line Deleted : user_pref("CT2314472.FeedTTL128895777917138393", 40);
    Line Deleted : user_pref("CT2314472.FeedTTL128895777917138394", 40);
    Line Deleted : user_pref("CT2314472.FirstServerDate", "29-12-2009");
    Line Deleted : user_pref("CT2314472.FirstTime", true);
    Line Deleted : user_pref("CT2314472.FirstTimeFF3", true);
    Line Deleted : user_pref("CT2314472.GroupingServerCheckInterval", 1440);
    Line Deleted : user_pref("CT2314472.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
    Line Deleted : user_pref("CT2314472.Initialize", true);
    Line Deleted : user_pref("CT2314472.InitializeCommonPrefs", true);
    Line Deleted : user_pref("CT2314472.InstalledDate", "Tue Dec 29 2009 12:27:16 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.InvalidateCache", false);
    Line Deleted : user_pref("CT2314472.IsGrouping", false);
    Line Deleted : user_pref("CT2314472.IsMulticommunity", false);
    Line Deleted : user_pref("CT2314472.IsOpenThankYouPage", true);
    Line Deleted : user_pref("CT2314472.IsOpenUninstallPage", true);
    Line Deleted : user_pref("CT2314472.LanguagePackLastCheckTime", "Fri Jan 01 2010 10:50:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.LanguagePackReloadIntervalMM", 1440);
    Line Deleted : user_pref("CT2314472.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
    Line Deleted : user_pref("CT2314472.LastLogin_2.5.2.14", "Fri Jan 01 2010 10:50:42 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.LatestVersion", "2.1.0.18");
    Line Deleted : user_pref("CT2314472.Locale", "en");
    Line Deleted : user_pref("CT2314472.LoginCache", 4);
    Line Deleted : user_pref("CT2314472.MCDetectTooltipHeight", "83");
    Line Deleted : user_pref("CT2314472.MCDetectTooltipUrl", "hxxp://@[email protected]/rank/tooltip/?version=1");
    Line Deleted : user_pref("CT2314472.MCDetectTooltipWidth", "295");
    Line Deleted : user_pref("CT2314472.RadioIsPodcast", false);
    Line Deleted : user_pref("CT2314472.RadioLastCheckTime", "Fri Jan 01 2010 16:50:44 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.RadioLastUpdateIPServer", "4");
    Line Deleted : user_pref("CT2314472.RadioLastUpdateServer", "128929877726170000");
    Line Deleted : user_pref("CT2314472.RadioMediaID", "11783662");
    Line Deleted : user_pref("CT2314472.RadioMediaType", "Media Player");
    Line Deleted : user_pref("CT2314472.RadioMenuSelectedID", "EBRadioMenu_CT231447211783662");
    Line Deleted : user_pref("CT2314472.RadioStationName", "Hotmix%20108");
    Line Deleted : user_pref("CT2314472.RadioStationURL", "hxxp://67.202.67.18:8082");
    Line Deleted : user_pref("CT2314472.SHRINK_TOOLBAR", 1);
    Line Deleted : user_pref("CT2314472.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2314472&octid=EB_ORIGINAL_CTID");
    Line Deleted : user_pref("CT2314472.SearchFromAddressBarIsInit", true);
    Line Deleted : user_pref("CT2314472.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2314472&q=");
    Line Deleted : user_pref("CT2314472.SearchInNewTabEnabled", true);
    Line Deleted : user_pref("CT2314472.SearchInNewTabIntervalMM", 1440);
    Line Deleted : user_pref("CT2314472.SearchInNewTabLastCheckTime", "Fri Jan 01 2010 16:50:34 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.SearchInNewTabServiceUrl", "hxxp://hosting.conduit-services.com/newtab/?ctid=EB_TOOLBAR_ID");
    Line Deleted : user_pref("CT2314472.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
    Line Deleted : user_pref("CT2314472.SettingsCheckIntervalMin", 120);
    Line Deleted : user_pref("CT2314472.SettingsLastCheckTime", "Fri Jan 01 2010 10:50:41 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.SettingsLastUpdate", "1257184651");
    Line Deleted : user_pref("CT2314472.ThirdPartyComponentsInterval", 72);
    Line Deleted : user_pref("CT2314472.ThirdPartyComponentsLastCheck", "Tue Dec 29 2009 12:27:15 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.ThirdPartyComponentsLastUpdate", "1257184651");
    Line Deleted : user_pref("CT2314472.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
    Line Deleted : user_pref("CT2314472.UserID", "UN04012531968725774");
    Line Deleted : user_pref("CT2314472.ValidationData_Search", 0);
    Line Deleted : user_pref("CT2314472.ValidationData_Toolbar", 2);
    Line Deleted : user_pref("CT2314472.WeatherNetwork", "");
    Line Deleted : user_pref("CT2314472.WeatherPollDate", "Fri Jan 01 2010 11:50:43 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CT2314472.WeatherUnit", "F");
    Line Deleted : user_pref("CT2314472.alertChannelId", "710635");
    Line Deleted : user_pref("CT2314472.clientLogIsEnabled", true);
    Line Deleted : user_pref("CT2314472.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
    Line Deleted : user_pref("CT2314472.myStuffEnabled", true);
    Line Deleted : user_pref("CT2314472.myStuffPublihserMinWidth", 400);
    Line Deleted : user_pref("CT2314472.myStuffSearchUrl", "hxxp://search.conduit.com/Results.aspx?q=SEARCH_TERM&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID&SearchType=ToolbarComponents");
    Line Deleted : user_pref("CT2314472.myStuffServiceIntervalMM", 1440);
    Line Deleted : user_pref("CT2314472.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
    Line Deleted : user_pref("CT2314472.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
    Line Deleted : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
    Line Deleted : user_pref("CommunityToolbar.ToolbarsList", "CT2314472");
    Line Deleted : user_pref("CommunityToolbar.ToolbarsList2", "CT2314472");
    Line Deleted : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
    Line Deleted : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Jan 02 2010 13:50:49 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
    Line Deleted : user_pref("CommunityToolbar.alert.locale", "en");
    Line Deleted : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
    Line Deleted : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri Jan 01 2010 16:50:34 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1234796400");
    Line Deleted : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
    Line Deleted : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
    Line Deleted : user_pref("CommunityToolbar.alert.showTrayIcon", false);
    Line Deleted : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
    Line Deleted : user_pref("CommunityToolbar.alert.userId", "{fd27002a-a46a-43d3-b891-b8d94407ef05}");
    Line Deleted : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2314472");
    Line Deleted : user_pref("CommunityToolbar.twitter.user_2557521.LastCheckTime", "Sat Jan 02 2010 13:50:51 GMT-0700 (US Mountain Standard Time)");
    Line Deleted : user_pref("browser.search.defaultthis.engineName", "TheFreeDictionarycom Customized Web Search");
    Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2314472&SearchSource=3&q={searchTerms}");
    Line Deleted : user_pref("extensions.enabledItems", "[email protected]:3.15.15.35882,{4abe316f-6a24-4e80-b8f3-3b69c1578ab8}:1.0.0.0,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.9");

    -\\ Google Chrome v29.0.1547.76

    [ File : C:\Users\kmballiett\AppData\Local\Google\Chrome\User Data\Default\preferences ]


    *************************

    AdwCleaner[R0].txt - [15377 octets] - [26/09/2013 18:47:03]
    AdwCleaner[S0].txt - [14950 octets] - [26/09/2013 18:49:52]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [15011 octets] ##########
     
  14. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    I went through all of the steps you suggested and went to Spyontech, followed all directions, went to C-drive and tried again to zip the minidump file and I got the message "File not found or no read permission". I will try Blue Screen View.
     
  15. arizonagrandma

    arizonagrandma Thread Starter

    Joined:
    Sep 11, 2013
    Messages:
    26
    O.K. - This is the second of the two bluescreen minidumps from this morning. Do you want to see the other one as well?

    hal.dll hal.dll+770c 0x8701b000 0x8704e000 0x00033000 0x49e018d9 4/10/2009 9:13:13 PM Microsoft® Windows® Operating System Hardware Abstraction Layer DLL 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\hal.dll
    iaStor.sys iaStor.sys+40909 0x8c604000 0x8c6d2000 0x000ce000 0x48054343 4/15/2008 5:07:31 PM Intel Matrix Storage Manager driver Intel Matrix Storage Manager driver - ia32 8.0.0.1039 Intel Corporation C:\Windows\system32\drivers\iaStor.sys
    ntkrnlpa.exe ntkrnlpa.exe+f95a2ff4 0x8704e000 0x87408000 0x003ba000 0x51da1840 7/7/2013 6:39:12 PM Microsoft® Windows® Operating System NT Kernel & System 6.0.6002.18881 (vistasp2_gdr.130707-1535) Microsoft Corporation C:\Windows\system32\ntkrnlpa.exe
    kdcom.dll 0x80606000 0x8060d000 0x00007000 0x49e037d9 4/10/2009 11:25:29 PM Microsoft® Windows® Operating System Kernel Debugger HW Extension DLL 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\kdcom.dll
    mcupdate_GenuineIntel.dll 0x8060d000 0x8067d000 0x00070000 0x49e03757 4/10/2009 11:23:19 PM Microsoft® Windows® Operating System Intel Microcode Update Library 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\mcupdate_GenuineIntel.dll
    PSHED.dll 0x8067d000 0x8068e000 0x00011000 0x49e037dc 4/10/2009 11:25:32 PM Microsoft® Windows® Operating System Platform Specific Hardware Error Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\PSHED.dll
    BOOTVID.dll 0x8068e000 0x80696000 0x00008000 0x4791a653 1/19/2008 12:27:15 AM Microsoft® Windows® Operating System VGA Boot Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\BOOTVID.dll
    CLFS.SYS 0x80696000 0x806d7000 0x00041000 0x49e018ff 4/10/2009 9:13:51 PM Microsoft® Windows® Operating System Common Log File System Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\CLFS.SYS
    CI.dll 0x806d7000 0x807b7000 0x000e0000 0x49e037d2 4/10/2009 11:25:22 PM Microsoft® Windows® Operating System Code Integrity Module 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\CI.dll
    Wdf01000.sys 0x8760a000 0x8768b000 0x00081000 0x5010ac41 7/25/2012 7:32:33 PM Microsoft® Windows® Operating System Kernel Mode Driver Framework Runtime 1.11.9200.16384 (win8_rtm.120725-1247) Microsoft Corporation C:\Windows\system32\drivers\Wdf01000.sys
    WDFLDR.SYS 0x8768b000 0x87699000 0x0000e000 0x5010ad36 7/25/2012 7:36:38 PM Microsoft® Windows® Operating System Kernel Mode Driver Framework Loader 1.11.9200.16384 (win8_rtm.120725-1247) Microsoft Corporation C:\Windows\system32\drivers\WDFLDR.SYS
    acpi.sys 0x87699000 0x876df000 0x00046000 0x49e01a37 4/10/2009 9:19:03 PM Microsoft® Windows® Operating System ACPI Driver for NT 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\acpi.sys
    WMILIB.SYS 0x876df000 0x876e8000 0x00009000 0x47919044 1/18/2008 10:53:08 PM Microsoft® Windows® Operating System WMILIB WMI support library Dll 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\WMILIB.SYS
    msisadrv.sys 0x876e8000 0x876f0000 0x00008000 0x47918b83 1/18/2008 10:32:51 PM Microsoft® Windows® Operating System ISA Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\msisadrv.sys
    pci.sys 0x876f0000 0x87717000 0x00027000 0x49e01a44 4/10/2009 9:19:16 PM Microsoft® Windows® Operating System NT Plug and Play PCI Enumerator 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\pci.sys
    partmgr.sys 0x87717000 0x87727000 0x00010000 0x4f68bbfc 3/20/2012 10:18:52 AM Microsoft® Windows® Operating System Partition Management Driver 6.0.6002.18600 (vistasp2_gdr.120320-0702) Microsoft Corporation C:\Windows\system32\drivers\partmgr.sys
    compbatt.sys 0x87727000 0x87729900 0x00002900 0x47918b7f 1/18/2008 10:32:47 PM Microsoft® Windows® Operating System Composite Battery Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\compbatt.sys
    BATTC.SYS 0x8772a000 0x87734000 0x0000a000 0x47918b7d 1/18/2008 10:32:45 PM Microsoft® Windows® Operating System Battery Class Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\BATTC.SYS
    volmgr.sys 0x87734000 0x87743000 0x0000f000 0x47918f7f 1/18/2008 10:49:51 PM Microsoft® Windows® Operating System Volume Manager Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\volmgr.sys
    volmgrx.sys 0x87743000 0x8778d000 0x0004a000 0x49e01efd 4/10/2009 9:39:25 PM Microsoft® Windows® Operating System Volume Manager Extension Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\volmgrx.sys
    mountmgr.sys 0x8778d000 0x8779d000 0x00010000 0x47918f59 1/18/2008 10:49:13 PM Microsoft® Windows® Operating System Mount Point Manager 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\mountmgr.sys
    atapi.sys 0x8c6d2000 0x8c6da000 0x00008000 0x47d73f6e 3/11/2008 7:26:54 PM Microsoft® Windows® Operating System ATAPI IDE Miniport Driver 6.0.6001.18034 (vistasp1_gdr.080311-1621) Microsoft Corporation C:\Windows\system32\drivers\atapi.sys
    ataport.SYS 0x8c6da000 0x8c6f8000 0x0001e000 0x47918f74 1/18/2008 10:49:40 PM Microsoft® Windows® Operating System ATAPI Driver Extension 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\ataport.SYS
    fltmgr.sys 0x8c6f8000 0x8c72a000 0x00032000 0x49e01907 4/10/2009 9:13:59 PM Microsoft® Windows® Operating System Microsoft Filesystem Filter Manager 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\fltmgr.sys
    fileinfo.sys 0x8c72a000 0x8c73a000 0x00010000 0x47918be3 1/18/2008 10:34:27 PM Microsoft® Windows® Operating System FileInfo Filter Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\fileinfo.sys
    PxHelp20.sys 0x8c73a000 0x8c742de0 0x00008de0 0x4679a978 6/20/2007 3:26:00 PM PxHelp20 Px Engine Device Driver for Windows 2000/XP 3.00.67a Sonic Solutions C:\Windows\system32\drivers\PxHelp20.sys
    ksecdd.sys 0x8c743000 0x8c7b5000 0x00072000 0x4fc93a77 6/1/2012 2:56:07 PM Microsoft® Windows® Operating System Kernel Security Support Provider Interface 6.0.6002.18643 (vistasp2_gdr.120601-1144) Microsoft Corporation C:\Windows\system32\drivers\ksecdd.sys
    ndis.sys 0x8c809000 0x8c914000 0x0010b000 0x49e02080 4/10/2009 9:45:52 PM Microsoft® Windows® Operating System NDIS 6.0 wrapper driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ndis.sys
    msrpc.sys 0x8c914000 0x8c93f000 0x0002b000 0x49e01e8c 4/10/2009 9:37:32 PM Microsoft® Windows® Operating System Kernel Remote Procedure Call Provider 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\msrpc.sys
    NETIO.SYS 0x8c93f000 0x8c97a000 0x0003b000 0x49e0209d 4/10/2009 9:46:21 PM Microsoft® Windows® Operating System Network I/O Subsystem 6.0.6002.22377 (vistasp2_ldr.100405-0403) Microsoft Corporation C:\Windows\system32\drivers\NETIO.SYS
    tcpip.sys 0x8ca07000 0x8caf1000 0x000ea000 0x51d62a93 7/4/2013 7:08:19 PM Microsoft® Windows® Operating System TCP/IP Driver 6.0.6002.23152 (vistasp2_ldr.130704-1535) Microsoft Corporation C:\Windows\system32\drivers\tcpip.sys
    fwpkclnt.sys 0x8caf1000 0x8cb0c000 0x0001b000 0x49e02076 4/10/2009 9:45:42 PM Microsoft® Windows® Operating System FWP/IPsec Kernel-Mode API 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\fwpkclnt.sys
    Ntfs.sys 0x8cc04000 0x8cd14000 0x00110000 0x51326902 3/2/2013 2:02:58 PM Microsoft® Windows® Operating System NT File System Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\Ntfs.sys
    volsnap.sys 0x8cd14000 0x8cd4d000 0x00039000 0x502cfb5e 8/16/2012 6:53:34 AM Microsoft® Windows® Operating System Volume Shadow Copy Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\volsnap.sys
    TVALZ_O.SYS 0x8cd4d000 0x8cd51180 0x00004180 0x4733cf02 11/8/2007 8:07:46 PM TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver 2, 0, 0, 1 TOSHIBA Corporation C:\Windows\system32\drivers\TVALZ_O.SYS
    tos_sps32.sys 0x8cd52000 0x8cd94900 0x00042900 0x473bb3c0 11/14/2007 7:49:36 PM tos_sps2 tos_sps2 4, 0, 2007, 1115 TOSHIBA Corporation C:\Windows\system32\drivers\tos_sps32.sys
    spldr.sys 0x8cd95000 0x8cd9d000 0x00008000 0x467b17dd 6/21/2007 5:29:17 PM Microsoft® Windows® Operating System loader for security processor 6.0.6001.16606 (lh_security(sepbld-s).070621-1657) Microsoft Corporation C:\Windows\system32\drivers\spldr.sys
    mup.sys 0x8cd9d000 0x8cdac000 0x0000f000 0x49e01914 4/10/2009 9:14:12 PM Microsoft® Windows® Operating System Multiple UNC Provider driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\mup.sys
    ecache.sys 0x8cdac000 0x8cdd3000 0x00027000 0x49e01f2c 4/10/2009 9:40:12 PM Microsoft® Windows® Operating System Special Memory Device Cache 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ecache.sys
    disk.sys 0x8cdd3000 0x8cde4000 0x00011000 0x49e01ef2 4/10/2009 9:39:14 PM Microsoft® Windows® Operating System PnP Disk Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\disk.sys
    CLASSPNP.SYS 0x8cb0c000 0x8cb2d000 0x00021000 0x49e01ee9 4/10/2009 9:39:05 PM Microsoft® Windows® Operating System SCSI Class System Dll 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\CLASSPNP.SYS
    crcdisk.sys 0x8cde4000 0x8cded000 0x00009000 0x47918fa5 1/18/2008 10:50:29 PM Microsoft® Windows® Operating System Disk Block Verification Filter Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\crcdisk.sys
    tunnel.sys 0x8c97a000 0x8c985000 0x0000b000 0x4b7d244d 2/18/2010 4:28:13 AM Microsoft® Windows® Operating System Microsoft Tunnel Interface Driver 6.0.6002.18209 (vistasp2_gdr.100218-0019) Microsoft Corporation C:\Windows\system32\drivers\tunnel.sys
    tunmp.sys 0x8c985000 0x8c98e000 0x00009000 0x479190dc 1/18/2008 10:55:40 PM Microsoft® Windows® Operating System Microsoft Tunnel Interface Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\tunmp.sys
    FwLnk.sys 0x8c98e000 0x8c996000 0x00008000 0x45606600 11/19/2006 7:11:12 AM TOSHIBA PC Firmware Linkage Service TOSHIBA Firmware Linkage 32-bit Driver 1.0.0.3V built by: WinDDK TOSHIBA Corporation C:\Windows\system32\drivers\FwLnk.sys
    intelppm.sys 0x8c996000 0x8c9a5000 0x0000f000 0x47918a38 1/18/2008 10:27:20 PM Microsoft® Windows® Operating System Processor Device Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\intelppm.sys
    CmBatt.sys 0x8cdfa000 0x8cdfd780 0x00003780 0x47918b7f 1/18/2008 10:32:47 PM Microsoft® Windows® Operating System Control Method Battery Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\CmBatt.sys
    igdkmd32.sys 0x90a08000 0x910ec000 0x006e4000 0x4851d0b0 6/12/2008 6:43:12 PM Intel Graphics Accelerator Drivers for Windows Vista(R) Intel Graphics Kernel Mode Driver 7.15.10.1502 Intel Corporation C:\Windows\system32\drivers\igdkmd32.sys
    dxgkrnl.sys 0x910ec000 0x9118c000 0x000a0000 0x516926ce 4/13/2013 2:35:10 AM Microsoft® Windows® Operating System DirectX Graphics Kernel 7.0.6002.18107 (vistasp2_gdr_win7ip_dgt(wmbla).090924-1550) Microsoft Corporation C:\Windows\system32\drivers\dxgkrnl.sys
    watchdog.sys 0x9118c000 0x91198000 0x0000c000 0x49e01b13 4/10/2009 9:22:43 PM Microsoft® Windows® Operating System Watchdog Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\watchdog.sys
    usbuhci.sys 0x91198000 0x911a3000 0x0000b000 0x47919050 1/18/2008 10:53:20 PM Microsoft® Windows® Operating System UHCI USB Miniport Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\usbuhci.sys
    USBPORT.SYS 0x911a3000 0x911e1000 0x0003e000 0x49e01fcf 4/10/2009 9:42:55 PM Microsoft® Windows® Operating System USB 1.1 & 2.0 Port Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\USBPORT.SYS
    usbehci.sys 0x911e1000 0x911f0000 0x0000f000 0x49e01fcc 4/10/2009 9:42:52 PM Microsoft® Windows® Operating System EHCI eUSB Miniport Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\usbehci.sys
    HDAudBus.sys 0x91201000 0x9128e000 0x0008d000 0x49e01fc1 4/10/2009 9:42:41 PM Microsoft® Windows® Operating System High Definition Audio Bus Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\HDAudBus.sys
    Rtlh86.sys 0x9128e000 0x912af000 0x00021000 0x48040d52 4/14/2008 7:05:06 PM Realtek 8101E/8168/8169 PCI/PCIe Adapters Realtek 8101E/8168/8169 NDIS6 32-bit Driver 6.205.0403.2008 built by: WinDDK Realtek Corporation C:\Windows\system32\drivers\Rtlh86.sys
    athr.sys 0x912af000 0x91396000 0x000e7000 0x488e4df9 7/28/2008 3:53:45 PM Driver for Atheros CB42/CB43/MB42/MB43 Network Adapter Atheros Extensible Wireless LAN device driver 7.6.0.164 built by: WinDDK Atheros Communications, Inc. C:\Windows\system32\drivers\athr.sys
    i8042prt.sys 0x91396000 0x913a9000 0x00013000 0x47918f5d 1/18/2008 10:49:17 PM Microsoft® Windows® Operating System i8042 Port Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\i8042prt.sys
    kbdclass.sys 0x913a9000 0x913b4000 0x0000b000 0x47918f5a 1/18/2008 10:49:14 PM Microsoft® Windows® Operating System Keyboard Class Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\kbdclass.sys
    SynTP.sys 0x913b4000 0x913e2500 0x0002e500 0x4758a4e1 12/6/2007 6:41:53 PM Synaptics Pointing Device Driver Synaptics Touchpad Driver 10.1.8 06Dec07 Synaptics, Inc. C:\Windows\system32\drivers\SynTP.sys
    USBD.SYS 0x913e3000 0x913e4700 0x00001700 0x4791904d 1/18/2008 10:53:17 PM Microsoft® Windows® Operating System Universal Serial Bus Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\USBD.SYS
    mouclass.sys 0x913e5000 0x913f0000 0x0000b000 0x47918f5a 1/18/2008 10:49:14 PM Microsoft® Windows® Operating System Mouse Class Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\mouclass.sys
    tdcmdpst.sys 0x913f0000 0x913fa000 0x0000a000 0x4761dc5c 12/13/2007 6:29:00 PM TOSHIBA ODD Writing Driver for x86. 2, 0, 0, 1 TOSHIBA Corporation. C:\Windows\system32\drivers\tdcmdpst.sys
    cdrom.sys 0x8c9a5000 0x8c9bd000 0x00018000 0x49e01ef5 4/10/2009 9:39:17 PM Microsoft® Windows® Operating System SCSI CD-ROM Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\cdrom.sys
    GEARAspiWDM.sys 0x913fa000 0x913ff280 0x00005280 0x4a1151b5 5/18/2009 5:16:53 AM CD DVD Filter CD DVD Filter 2.02.00.01 GEAR Software Inc. C:\Windows\system32\drivers\GEARAspiWDM.sys
    msiscsi.sys 0x8c9bd000 0x8c9ec000 0x0002f000 0x49e01f27 4/10/2009 9:40:07 PM Microsoft® Windows® Operating System Microsoft iSCSI Initiator Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\msiscsi.sys
    storport.sys 0x8c7b5000 0x8c7f6000 0x00041000 0x49e01ef7 4/10/2009 9:39:19 PM Microsoft® Windows® Operating System Microsoft Storage Port Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\storport.sys
    TDI.SYS 0x911f0000 0x911fb000 0x0000b000 0x47919136 1/18/2008 10:57:10 PM Microsoft® Windows® Operating System TDI Wrapper 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\TDI.SYS
    rasl2tp.sys 0x8779d000 0x877b4000 0x00017000 0x47919111 1/18/2008 10:56:33 PM Microsoft® Windows® Operating System RAS L2TP mini-port/call-manager driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rasl2tp.sys
    ndistapi.sys 0x8c9ec000 0x8c9f7000 0x0000b000 0x47919108 1/18/2008 10:56:24 PM Microsoft® Windows® Operating System NDIS 3.0 connection wrapper driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\ndistapi.sys
    ndiswan.sys 0x877b4000 0x877d7000 0x00023000 0x49e020a7 4/10/2009 9:46:31 PM Microsoft® Windows® Operating System MS PPP Framing Driver (Strong Encryption) 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ndiswan.sys
    raspppoe.sys 0x877d7000 0x877e6000 0x0000f000 0x49e020a6 4/10/2009 9:46:30 PM Microsoft® Windows® Operating System RAS PPPoE mini-port/call-manager driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\raspppoe.sys
    raspptp.sys 0x877e6000 0x877fa000 0x00014000 0x47919112 1/18/2008 10:56:34 PM Microsoft® Windows® Operating System Peer-to-Peer Tunneling Protocol 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\raspptp.sys
    rassstp.sys 0x807b7000 0x807cc000 0x00015000 0x49e020b0 4/10/2009 9:46:40 PM Microsoft® Windows® Operating System RAS SSTP Miniport Call Manager 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\rassstp.sys
    pctnullport.sys 0x90a00000 0x90a07d00 0x00007d00 0x47a94329 2/5/2008 10:18:33 PM Null-modem emulator Null-modem emulator 2.0.2.0 PCTEL Inc. C:\Windows\system32\drivers\pctnullport.sys
    termdd.sys 0x807cc000 0x807dc000 0x00010000 0x49e021c2 4/10/2009 9:51:14 PM Microsoft® Windows® Operating System Terminal Server Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\termdd.sys
    swenum.sys 0x911fb000 0x911fc380 0x00001380 0x47918f60 1/18/2008 10:49:20 PM Microsoft® Windows® Operating System Plug and Play Software Device Enumerator 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\swenum.sys
    ks.sys 0x91609000 0x91633000 0x0002a000 0x49e01ed7 4/10/2009 9:38:47 PM Microsoft® Windows® Operating System Kernel CSA Library 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ks.sys
    NWADIenum.sys 0x91633000 0x9166e000 0x0003b000 0x48448178 6/2/2008 4:25:44 PM NWADI Bus Enumerator NWADI Interface Bus Enumerator 1.0.4.0 Novatel Wireless Inc C:\Windows\system32\drivers\NWADIenum.sys
    mssmbios.sys 0x9166e000 0x91678000 0x0000a000 0x47918b87 1/18/2008 10:32:55 PM Microsoft® Windows® Operating System System Management BIOS Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\mssmbios.sys
    umbus.sys 0x91678000 0x91685000 0x0000d000 0x47919064 1/18/2008 10:53:40 PM Microsoft® Windows® Operating System User-Mode Bus Enumerator 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\umbus.sys
    usbhub.sys 0x91685000 0x916ba000 0x00035000 0x49e01fe2 4/10/2009 9:43:14 PM Microsoft® Windows® Operating System Default Hub Driver for USB 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\usbhub.sys
    NDProxy.SYS 0x916ba000 0x916cb000 0x00011000 0x4791910c 1/18/2008 10:56:28 PM Microsoft® Windows® Operating System NDIS Proxy 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\NDProxy.SYS
    RTKVHDA.sys 0x91800000 0x919fe480 0x001fe480 0x47fc939f 4/9/2008 2:59:59 AM Realtek(r) High Definition Audio Function Driver Realtek(r) High Definition Audio Function Driver 6.0.1.5599 built by: WinDDK Realtek Semiconductor Corp. C:\Windows\system32\drivers\RTKVHDA.sys
    portcls.sys 0x916cb000 0x916f8000 0x0002d000 0x49e01fc8 4/10/2009 9:42:48 PM Microsoft® Windows® Operating System Port Class (Class Driver for Port/Miniport Devices) 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\portcls.sys
    drmk.sys 0x916f8000 0x9171d000 0x00025000 0x47919e4e 1/18/2008 11:53:02 PM Microsoft® Windows® Operating System Microsoft Kernel DRM Descrambler Filter 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\drmk.sys
    AGRSM.sys 0x91a08000 0x91b23aa0 0x0011baa0 0x456c97cf 11/28/2006 1:10:55 PM Agere SoftModem Driver SoftModem Device Driver 2.1.77 11/28/2006 15:10:54 Agere Systems C:\Windows\system32\drivers\AGRSM.sys
    modem.sys 0x91b24000 0x91b31000 0x0000d000 0x4791913c 1/18/2008 10:57:16 PM Microsoft® Windows® Operating System Modem Device Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\modem.sys
    Fs_Rec.SYS 0x91b31000 0x91b3a000 0x00009000 0x4f4e28f4 2/29/2012 6:32:36 AM Microsoft® Windows® Operating System File System Recognizer Driver 6.0.6002.18592 (vistasp2_gdr.120229-0238) Microsoft Corporation C:\Windows\system32\drivers\Fs_Rec.SYS
    Null.SYS 0x91b3a000 0x91b41000 0x00007000 0x47918f58 1/18/2008 10:49:12 PM Microsoft® Windows® Operating System NULL Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Null.SYS
    Beep.SYS 0x91b41000 0x91b48000 0x00007000 0x47918f56 1/18/2008 10:49:10 PM Microsoft® Windows® Operating System BEEP Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Beep.SYS
    HIDPARSE.SYS 0x91b51000 0x91b57380 0x00006380 0x4791904c 1/18/2008 10:53:16 PM Microsoft® Windows® Operating System Hid Parsing Library 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\HIDPARSE.SYS
    vga.sys 0x91b58000 0x91b64000 0x0000c000 0x47919006 1/18/2008 10:52:06 PM Microsoft® Windows® Operating System VGA/Super VGA Video Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\vga.sys
    VIDEOPRT.SYS 0x91b64000 0x91b85000 0x00021000 0x4791900a 1/18/2008 10:52:10 PM Microsoft® Windows® Operating System Video Port Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\VIDEOPRT.SYS
    RDPCDD.sys 0x91b85000 0x91b8d000 0x00008000 0x47919224 1/18/2008 11:01:08 PM Microsoft® Windows® Operating System RDP Miniport 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\RDPCDD.sys
    rdpencdd.sys 0x91b8d000 0x91b95000 0x00008000 0x47919225 1/18/2008 11:01:09 PM Microsoft® Windows® Operating System RDP Miniport 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rdpencdd.sys
    Msfs.SYS 0x91b95000 0x91ba0000 0x0000b000 0x47918a68 1/18/2008 10:28:08 PM Microsoft® Windows® Operating System Mailslot driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Msfs.SYS
    Npfs.SYS 0x91ba0000 0x91bae000 0x0000e000 0x49e01909 4/10/2009 9:14:01 PM Microsoft® Windows® Operating System NPFS Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\Npfs.SYS
    rasacd.sys 0x91bae000 0x91bb7000 0x00009000 0x4791910f 1/18/2008 10:56:31 PM Microsoft® Windows® Operating System RAS Automatic Connection Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rasacd.sys
    tdx.sys 0x91bb7000 0x91bcd000 0x00016000 0x49e02084 4/10/2009 9:45:56 PM Microsoft® Windows® Operating System TDI Translation Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\tdx.sys
    smb.sys 0x91bcd000 0x91be1000 0x00014000 0x49e02062 4/10/2009 9:45:22 PM Microsoft® Windows® Operating System SMB Transport driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\smb.sys
    afd.sys 0x9171d000 0x91765000 0x00048000 0x4db03801 4/21/2011 6:58:25 AM Microsoft® Windows® Operating System Ancillary Function Driver for WinSock 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\afd.sys
    netbt.sys 0x91765000 0x91797000 0x00032000 0x49e0206f 4/10/2009 9:45:35 PM Microsoft® Windows® Operating System MBT Transport driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\netbt.sys
    pacer.sys 0x91be1000 0x91bf7000 0x00016000 0x49e0207f 4/10/2009 9:45:51 PM Microsoft® Windows® Operating System QoS Packet Scheduler 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\pacer.sys
    jswpslwf.sys 0x91bf7000 0x91bfbfa0 0x00004fa0 0x481664d6 4/28/2008 4:59:18 PM Security Filter Driver Atheros Security NDIS 6.0 Filter Driver 1.0.0.49 Atheros Communications, Inc. C:\Windows\system32\drivers\jswpslwf.sys
    netbios.sys 0x91797000 0x917a5000 0x0000e000 0x479190e1 1/18/2008 10:55:45 PM Microsoft® Windows® Operating System NetBIOS interface driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\netbios.sys
    wanarp.sys 0x917a5000 0x917b8000 0x00013000 0x4791910f 1/18/2008 10:56:31 PM Microsoft® Windows® Operating System MS Remote Access and Routing ARP Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\wanarp.sys
    SASKUTIL.SYS 0x917b8000 0x917da000 0x00022000 0x4e1cad90 7/12/2011 1:24:48 PM
    SASDIFSV.SYS 0x91a00000 0x91a06000 0x00006000 0x4e28b034 7/21/2011 4:03:16 PM
    rdbss.sys 0x91e00000 0x91e3c000 0x0003c000 0x49e01922 4/10/2009 9:14:26 PM Microsoft® Windows® Operating System Redirected Drive Buffering SubSystem Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\rdbss.sys
    nsiproxy.sys 0x91e3c000 0x91e46000 0x0000a000 0x479190e6 1/18/2008 10:55:50 PM Microsoft® Windows® Operating System NSI Proxy 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\nsiproxy.sys
    dfsc.sys 0x91e46000 0x91e5d000 0x00017000 0x4da70bb7 4/14/2011 7:59:03 AM Microsoft® Windows® Operating System DFS Namespace Client Driver 6.0.6002.18451 (vistasp2_gdr.110414-0338) Microsoft Corporation C:\Windows\system32\drivers\dfsc.sys
    RTSTOR.SYS 0x91e5d000 0x91e71000 0x00014000 0x47f3512e 4/2/2008 2:26:06 AM Realtek USB Mass Storage Driver for Vista Realtek USB Mass Storage Driver for Vista 6.0.6000.20080 Realtek Semiconductor Corp. C:\Windows\system32\drivers\RTSTOR.SYS
    crashdmp.sys 0x91e71000 0x91e7e000 0x0000d000 0x49e01ef0 4/10/2009 9:39:12 PM Microsoft® Windows® Operating System Crash Dump Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\crashdmp.sys
    dump_iaStor.sys 0x91e7e000 0x91f4c000 0x000ce000 0x48054343 4/15/2008 5:07:31 PM
    win32k.sys 0x9eaf0000 0x9ecf5000 0x00205000 0x5202f818 8/7/2013 6:44:56 PM Microsoft® Windows® Operating System Multi-User Win32 Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\win32k.sys
    Dxapi.sys 0x91f4c000 0x91f56000 0x0000a000 0x47918c4c 1/18/2008 10:36:12 PM Microsoft® Windows® Operating System DirectX API Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Dxapi.sys
    monitor.sys 0x91f56000 0x91f65000 0x0000f000 0x47919013 1/18/2008 10:52:19 PM Microsoft® Windows® Operating System Monitor Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\monitor.sys
    TSDDD.dll 0x9ed10000 0x9ed19000 0x00009000 0x00000000 Microsoft® Windows® Operating System Framebuffer Display Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\TSDDD.dll
    cdd.dll 0x9ed30000 0x9ed3e000 0x0000e000 0x516939fd 4/13/2013 3:57:01 AM Microsoft® Windows® Operating System Canonical Display Driver 7.0.6002.23095 (vistasp2_ldr.130412-1537) Microsoft Corporation C:\Windows\system32\cdd.dll
    luafv.sys 0x91f65000 0x91f80000 0x0001b000 0x47918afb 1/18/2008 10:30:35 PM Microsoft® Windows® Operating System LUA File Virtualization Filter Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\luafv.sys
    mbam.sys 0x91f80000 0x91f83a00 0x00003a00 0x512fbf04 2/28/2013 1:33:08 PM Malwarebytes Anti-Malware Malwarebytes Anti-Malware 1.60.2.0000 built by: WinDDK Malwarebytes Corporation C:\Windows\system32\drivers\mbam.sys
    WudfPf.sys 0x91f84000 0x91f98000 0x00014000 0x5010ac87 7/25/2012 7:33:43 PM Microsoft® Windows® Operating System Windows Driver Foundation - User-mode Driver Framework Platform Driver 6.2.9200.16384 (win8_rtm.120725-1247) Microsoft Corporation C:\Windows\system32\drivers\WudfPf.sys
    lltdio.sys 0x91f98000 0x91fa8000 0x00010000 0x479190b7 1/18/2008 10:55:03 PM Microsoft® Windows® Operating System Link-Layer Topology Mapper I/O Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\lltdio.sys
    nwifi.sys 0x91fa8000 0x91fd2000 0x0002a000 0x49e01fef 4/10/2009 9:43:27 PM Microsoft® Windows® Operating System NativeWiFi Miniport Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\nwifi.sys
    ndisuio.sys 0x91fd2000 0x91fdc000 0x0000a000 0x479190dc 1/18/2008 10:55:40 PM Microsoft® Windows® Operating System NDIS User mode I/O driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\ndisuio.sys
    rspndr.sys 0x91fdc000 0x91fef000 0x00013000 0x479190b7 1/18/2008 10:55:03 PM Microsoft® Windows® Operating System Link-Layer Topology Responder Driver for NDIS 6 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rspndr.sys
    spsys.sys 0x8cb2d000 0x8cbdd000 0x000b0000 0x49b69f04 3/10/2009 10:10:28 AM Microsoft® Windows® Operating System security processor 6.0.6002.17040 (longhorn(sepbld-s).090310-1002) Microsoft Corporation C:\Windows\system32\drivers\spsys.sys
    HTTP.sys 0x85801000 0x8586e000 0x0006d000 0x4b804bcb 2/20/2010 1:53:31 PM Microsoft® Windows® Operating System HTTP Protocol Stack 6.0.6002.18136 (vistasp2_gdr.091102-2300) Microsoft Corporation C:\Windows\system32\drivers\HTTP.sys
    srvnet.sys 0x8586e000 0x8588b000 0x0001d000 0x4dbabc34 4/29/2011 6:25:08 AM Microsoft® Windows® Operating System Server Network driver 6.0.6002.18462 (vistasp2_gdr.110429-0338) Microsoft Corporation C:\Windows\system32\drivers\srvnet.sys
    bowser.sys 0x8588b000 0x858a4000 0x00019000 0x4d63b8ea 2/22/2011 6:23:54 AM Microsoft® Windows® Operating System NT Lan Manager Datagram Receiver Driver 6.0.6002.18409 (vistasp2_gdr.110222-0237) Microsoft Corporation C:\Windows\system32\drivers\bowser.sys
    mpsdrv.sys 0x858a4000 0x858b9000 0x00015000 0x479190a5 1/18/2008 10:54:45 PM Microsoft® Windows® Operating System Microsoft Protection Service Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\mpsdrv.sys
    mrxdav.sys 0x858b9000 0x858da000 0x00021000 0x49e0192f 4/10/2009 9:14:39 PM Microsoft® Windows® Operating System Windows NT WebDav Minirdr 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\mrxdav.sys
    mrxsmb.sys 0x858da000 0x858f9000 0x0001f000 0x4dbabc17 4/29/2011 6:24:39 AM Microsoft® Windows® Operating System Windows NT SMB Minirdr 6.0.6002.18462 (vistasp2_gdr.110429-0338) Microsoft Corporation C:\Windows\system32\drivers\mrxsmb.sys
    mrxsmb10.sys 0x858f9000 0x85932000 0x00039000 0x4e147fe2 7/6/2011 8:31:46 AM Microsoft® Windows® Operating System Longhorn SMB Downlevel SubRdr 6.0.6002.18490 (vistasp2_gdr.110706-0539) Microsoft Corporation C:\Windows\system32\drivers\mrxsmb10.sys
    mrxsmb20.sys 0x85932000 0x8594a000 0x00018000 0x4dbabc19 4/29/2011 6:24:41 AM Microsoft® Windows® Operating System Longhorn SMB 2.0 Redirector 6.0.6002.18462 (vistasp2_gdr.110429-0338) Microsoft Corporation C:\Windows\system32\drivers\mrxsmb20.sys
    srv2.sys 0x8594a000 0x85972000 0x00028000 0x4dbabc35 4/29/2011 6:25:09 AM Microsoft® Windows® Operating System Smb 2.0 Server driver 6.0.6002.18462 (vistasp2_gdr.110429-0338) Microsoft Corporation C:\Windows\system32\drivers\srv2.sys
    srv.sys 0x85972000 0x859c1000 0x0004f000 0x4d5e7c30 2/18/2011 7:03:28 AM Microsoft® Windows® Operating System Server driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\srv.sys
    peauth.sys 0xb200b000 0xb20e9000 0x000de000 0x453c8384 10/23/2006 1:55:32 AM Microsoft® Windows® Operating System Protected Environment Authentication and Authorization Export Driver 6.0.5840.16385 (VISTA_RTM_CLIENT_akaDMD.061022-1800) Microsoft Corporation C:\Windows\system32\drivers\peauth.sys
    secdrv.SYS 0xb20e9000 0xb20f3000 0x0000a000 0x45080528 9/13/2006 6:18:32 AM Macrovision SECURITY Driver Macrovision SECURITY Driver 4.03.086 Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. C:\Windows\system32\drivers\secdrv.SYS
    tcpipreg.sys 0xb20f3000 0xb20ff000 0x0000c000 0x4b1e8c3a 12/8/2009 10:26:18 AM Microsoft® Windows® Operating System TCP/IP Registry Compatibility Driver 6.0.6002.23152 (vistasp2_ldr.130704-1535) Microsoft Corporation C:\Windows\system32\drivers\tcpipreg.sys
    cdfs.sys 0xb20ff000 0xb2115000 0x00016000 0x47918a62 1/18/2008 10:28:02 PM Microsoft® Windows® Operating System CD-ROM File System Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\cdfs.sys
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1109239

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice