renos.js will not go away

View previous topic View next topic Go down

renos.js will not go away

Post by calenl on Thu Nov 26, 2009 11:28 pm

Today Microsoft Security Essentials told me I need to quarantine something called renos.js. I did that, and 30 mins later it asked again.. and again and again. It has also asked me to send info on a file called msa.exe. How can I fix this permanently?


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:23:34, on 11/26/2009
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lexmark 1400 Series\lxdjamon.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Users\Calen\AppData\Local\Google\Update\1.2.183.13\GoogleCrashHandler.exe
C:\Program Files (x86)\DeskPins\DeskPins.exe
C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Users\Calen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Calen\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Users\Calen\AppData\Local\Google\Chrome\Application\chrome.exe
E:\Downloads\winlogon.scr

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKCU\..\Run: [Google Update] "C:\Users\Calen\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [SSHNAS] rundll32.exe C:\Windows\system32\sshnas.dll,DllWork
O4 - Startup: 5822566.lnk = C:\Users\Calen\AppData\Local\Temp\sptcv.exe
O4 - Startup: DeskPins.lnk = C:\Program Files (x86)\DeskPins\DeskPins.exe
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: Add to Evernote - [You must be registered and logged in to see this link.] Files (x86)\Evernote\Evernote3\enbar.dll/2000
O9 - Extra button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E9252800} - C:\Program Files (x86)\Evernote\Evernote3\enbar.dll
O9 - Extra 'Tools' menuitem: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E9252800} - C:\Program Files (x86)\Evernote\Evernote3\enbar.dll
O13 - Gopher Prefix:
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - [You must be registered and logged in to see this link.]
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: lxdj_device - - C:\Windows\system32\lxdjcoms.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - D:/PostgreSQL/8.4/bin/pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7335 bytes

calenl
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-11-26
OS OS : Windows 7 Ultimate
Points Points : 25753
# Likes # Likes : 0

View user profile

Back to top Go down

Re: renos.js will not go away

Post by Belahzur on Fri Nov 27, 2009 12:42 am

Hello.

  • Open HijackThis
  • Choose "Do a system scan only"
  • Check the boxes in front of these lines:


    O4 - HKCU\..\Run: [SSHNAS] rundll32.exe C:\Windows\system32\sshnas.dll,DllWork



  • Press "Fix Checked"
  • Close Hijack This.

Please download and run this tool.

Download Malwarebytes' Anti-Malware from [You must be registered and logged in to see this link.]

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245059
# Likes # Likes : 1

View user profile

Back to top Go down

Re: renos.js will not go away

Post by calenl on Fri Nov 27, 2009 6:18 am

Malwarebytes' Anti-Malware 1.41
Database version: 3240
Windows 6.1.7600

11/26/2009 22:14:59
mbam-log-2009-11-26 (22-14-59).txt

Scan type: Quick Scan
Objects scanned: 102821
Time elapsed: 2 minute(s), 26 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 3

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Users\Calen\AppData\Local\Temp\a.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Calen\AppData\Local\Temp\c.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Windows\System32\sshnas.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.

calenl
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-11-26
OS OS : Windows 7 Ultimate
Points Points : 25753
# Likes # Likes : 0

View user profile

Back to top Go down

Re: renos.js will not go away

Post by Belahzur on Fri Nov 27, 2009 10:22 am

Download [You must be registered and logged in to see this link.] by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245059
# Likes # Likes : 1

View user profile

Back to top Go down

p1/3

Post by calenl on Fri Nov 27, 2009 8:39 pm

OTL logfile created on: 11/27/2009 12:34:58 - Run 1
OTL by OldTimer - Version 3.1.11.0 Folder = E:\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.16 Gb Available Physical Memory | 58.15% Memory free
4.00 Gb Paging File | 2.25 Gb Available in Paging File | 56.26% Paging File free
Paging file location(s): f:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 58.59 Gb Total Space | 41.48 Gb Free Space | 70.80% Space Free | Partition Type: NTFS
Drive D: | 102.54 Gb Total Space | 100.75 Gb Free Space | 98.26% Space Free | Partition Type: NTFS
Drive E: | 527.34 Gb Total Space | 169.17 Gb Free Space | 32.08% Space Free | Partition Type: NTFS
Drive F: | 10.23 Gb Total Space | 8.16 Gb Free Space | 79.70% Space Free | Partition Type: NTFS
Drive G: | 195.55 Gb Total Space | 195.46 Gb Free Space | 99.95% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 1.86 Gb Total Space | 1.83 Gb Free Space | 98.48% Space Free | Partition Type: FAT

Computer Name: CALEN-PC
Current User Name: Calen
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009/11/27 12:30:59 | 00,532,992 | ---- | M] (OldTimer Tools) -- E:\Downloads\OTL.exe
PRC - [2009/11/27 12:30:59 | 00,532,992 | ---- | M] (OldTimer Tools) -- E:\Downloads\OTL.exe
PRC - [2009/11/27 12:30:59 | 00,532,992 | ---- | M] (OldTimer Tools) -- E:\Downloads\OTL.exe
PRC - [2009/11/25 19:28:38 | 00,472,112 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe
PRC - [2009/11/06 21:59:23 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe
PRC - [2009/11/06 17:17:51 | 00,136,176 | ---- | M] (Google Inc.) -- C:\Users\Calen\AppData\Local\Google\Update\1.2.183.13\GoogleCrashHandler.exe
PRC - [2009/10/09 13:11:12 | 25,623,336 | R--- | M] (Skype Technologies S.A.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
PRC - [2009/10/09 13:11:12 | 00,078,008 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
PRC - [2009/10/09 13:11:12 | 00,078,008 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
PRC - [2009/10/09 13:11:12 | 00,078,008 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
PRC - [2009/10/09 13:11:12 | 00,078,008 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
PRC - [2009/10/09 13:11:12 | 00,078,008 | R--- | M] (Skype Technologies) -- C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
PRC - [2009/09/11 12:18:36 | 05,183,936 | ---- | M] (Evernote Corp., 710 Lakeway Dr. #290, Sunnyvale, CA 94086) -- C:\Program Files (x86)\Evernote\Evernote3\Evernote.exe
PRC - [2009/09/11 12:18:28 | 00,350,656 | ---- | M] (Evernote Corporation) -- C:\Program Files (x86)\Evernote\Evernote3\EvernoteTray.exe
PRC - [2009/09/07 23:48:55 | 00,066,048 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\pg_ctl.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/09/07 23:47:07 | 04,513,792 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\postgres.exe
PRC - [2009/08/19 10:23:24 | 07,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
PRC - [2009/08/19 10:23:22 | 07,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2009/08/19 10:23:22 | 07,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
PRC - [2009/07/13 17:14:31 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rundll32.exe
PRC - [2009/07/07 14:48:44 | 00,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
PRC - [2009/07/07 14:48:44 | 00,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
PRC - [2009/07/07 14:48:44 | 00,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
PRC - [2009/04/27 14:04:40 | 00,025,256 | ---- | M] (Lexmark) -- C:\Program Files (x86)\Lexmark 1400 Series\lxdjamon.exe
PRC - [2009/04/27 14:04:40 | 00,025,256 | ---- | M] (Lexmark) -- C:\Program Files (x86)\Lexmark 1400 Series\lxdjamon.exe
PRC - [2009/04/27 14:04:40 | 00,025,256 | ---- | M] (Lexmark) -- C:\Program Files (x86)\Lexmark 1400 Series\lxdjamon.exe
PRC - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
PRC - [2004/05/02 09:02:51 | 00,062,464 | ---- | M] (Elias Fotinis) -- C:\Program Files (x86)\DeskPins\DeskPins.exe
PRC - [2004/05/02 09:02:51 | 00,062,464 | ---- | M] (Elias Fotinis) -- C:\Program Files (x86)\DeskPins\DeskPins.exe


========== Modules (SafeList) ==========

MOD - [2009/11/27 12:30:59 | 00,532,992 | ---- | M] (OldTimer Tools) -- E:\Downloads\OTL.exe
MOD - [2009/07/13 17:17:51 | 01,289,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdll.dll
MOD - [2009/07/13 17:16:19 | 00,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wldap32.dll
MOD - [2009/07/13 17:16:19 | 00,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winmm.dll
MOD - [2009/07/13 17:16:17 | 01,123,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vssapi.dll
MOD - [2009/07/13 17:16:17 | 00,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\usp10.dll
MOD - [2009/07/13 17:16:17 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vsstrace.dll
MOD - [2009/07/13 17:16:17 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\version.dll
MOD - [2009/07/13 17:16:15 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\spp.dll
MOD - [2009/07/13 17:16:15 | 00,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srclient.dll
MOD - [2009/07/13 17:16:14 | 12,866,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shell32.dll
MOD - [2009/07/13 17:16:14 | 01,668,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\setupapi.dll
MOD - [2009/07/13 17:16:14 | 00,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shlwapi.dll
MOD - [2009/07/13 17:16:14 | 00,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shdocvw.dll
MOD - [2009/07/13 17:16:13 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sechost.dll
MOD - [2009/07/13 17:16:13 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samlib.dll
MOD - [2009/07/13 17:16:13 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samcli.dll
MOD - [2009/07/13 17:16:13 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\secur32.dll
MOD - [2009/07/13 17:16:12 | 01,412,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ole32.dll
MOD - [2009/07/13 17:16:12 | 00,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\propsys.dll
MOD - [2009/07/13 17:16:12 | 00,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaut32.dll
MOD - [2009/07/13 17:16:12 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\olepro32.dll
MOD - [2009/07/13 17:16:12 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\profapi.dll
MOD - [2009/07/13 17:16:12 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\psapi.dll
MOD - [2009/07/13 17:16:11 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntmarta.dll
MOD - [2009/07/13 17:16:03 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netutils.dll
MOD - [2009/07/13 17:15:50 | 00,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcrt.dll
MOD - [2009/07/13 17:15:44 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimg32.dll
MOD - [2009/07/13 17:15:43 | 00,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msctf.dll
MOD - [2009/07/13 17:15:13 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dwmapi.dll
MOD - [2009/07/13 17:15:11 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devobj.dll
MOD - [2009/07/13 17:15:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptbase.dll
MOD - [2009/07/13 17:15:03 | 00,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\clbcatq.dll
MOD - [2009/07/13 17:15:02 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cfgmgr32.dll
MOD - [2009/07/13 17:14:57 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\atl.dll
MOD - [2009/07/13 17:14:53 | 00,640,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\advapi32.dll
MOD - [2009/07/13 17:14:53 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\apphelp.dll
MOD - [2009/07/13 17:14:08 | 00,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winspool.drv
MOD - [2009/07/13 17:11:24 | 00,833,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\user32.dll
MOD - [2009/07/13 17:11:24 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\uxtheme.dll
MOD - [2009/07/13 17:11:24 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sspicli.dll
MOD - [2009/07/13 17:11:23 | 00,836,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\kernel32.dll
MOD - [2009/07/13 17:11:23 | 00,662,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rpcrt4.dll
MOD - [2009/07/13 17:11:23 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\KernelBase.dll
MOD - [2009/07/13 17:11:23 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\lpk.dll
MOD - [2009/07/13 17:11:21 | 00,310,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gdi32.dll
MOD - [2009/07/13 17:11:21 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imm32.dll
MOD - [2009/07/13 17:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2009/07/13 17:41:59 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc)
SRV:64bit: - [2009/07/13 17:41:59 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFSvc.dll -- (wudfsvc)
SRV:64bit: - [2009/07/13 17:41:58 | 02,418,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2009/07/13 17:41:58 | 02,018,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WsmSvc.dll -- (WinRM)
SRV:64bit: - [2009/07/13 17:41:58 | 00,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2009/07/13 17:41:57 | 00,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wpdbusenum.dll -- (WPDBusEnum)
SRV:64bit: - [2009/07/13 17:41:57 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wpcsvc.dll -- (WPCSvc)
SRV:64bit: - [2009/07/13 17:41:56 | 01,646,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:64bit: - [2009/07/13 17:41:56 | 00,886,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2009/07/13 17:41:56 | 00,578,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2009/07/13 17:41:56 | 00,438,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\winhttp.dll -- (WinHttpAutoProxySvc)
SRV:64bit: - [2009/07/13 17:41:56 | 00,381,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\w32time.dll -- (W32Time)
SRV:64bit: - [2009/07/13 17:41:56 | 00,366,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wcncsvc.dll -- (wcncsvc)
SRV:64bit: - [2009/07/13 17:41:56 | 00,353,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\upnphost.dll -- (upnphost)
SRV:64bit: - [2009/07/13 17:41:56 | 00,254,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WebClnt.dll -- (WebClient)
SRV:64bit: - [2009/07/13 17:41:56 | 00,242,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2009/07/13 17:41:56 | 00,237,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wecsvc.dll -- (Wecsvc)
SRV:64bit: - [2009/07/13 17:41:56 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
SRV:64bit: - [2009/07/13 17:41:56 | 00,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV:64bit: - [2009/07/13 17:41:56 | 00,163,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\umpo.dll -- (Power)
SRV:64bit: - [2009/07/13 17:41:56 | 00,118,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)
SRV:64bit: - [2009/07/13 17:41:56 | 00,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wdi.dll -- (WdiSystemHost)
SRV:64bit: - [2009/07/13 17:41:56 | 00,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wdi.dll -- (WdiServiceHost)
SRV:64bit: - [2009/07/13 17:41:56 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wercplsupport.dll -- (wercplsupport)
SRV:64bit: - [2009/07/13 17:41:56 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wersvc.dll -- (WerSvc)
SRV:64bit: - [2009/07/13 17:41:56 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\WcsPlugInService.dll -- (WcsPlugInService)
SRV:64bit: - [2009/07/13 17:41:56 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\uxsms.dll -- (UxSms)
SRV:64bit: - [2009/07/13 17:41:55 | 00,706,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\termsrv.dll -- (TermService)
SRV:64bit: - [2009/07/13 17:41:55 | 00,404,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2009/07/13 17:41:55 | 00,316,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/13 17:41:55 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\trkwks.dll -- (TrkWks)
SRV:64bit: - [2009/07/13 17:41:55 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\TabSvc.dll -- (TabletInputService)
SRV:64bit: - [2009/07/13 17:41:55 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tbssvc.dll -- (TBS)
SRV:64bit: - [2009/07/13 17:41:55 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2009/07/13 17:41:54 | 01,780,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sysmain.dll -- (SysMain)
SRV:64bit: - [2009/07/13 17:41:54 | 00,524,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/13 17:41:54 | 00,369,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV:64bit: - [2009/07/13 17:41:54 | 00,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2009/07/13 17:41:54 | 00,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ssdpsrv.dll -- (SSDPSRV)
SRV:64bit: - [2009/07/13 17:41:54 | 00,104,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SessEnv.dll -- (SessionEnv)
SRV:64bit: - [2009/07/13 17:41:54 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sstpsvc.dll -- (SstpSvc)
SRV:64bit: - [2009/07/13 17:41:54 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify)
SRV:64bit: - [2009/07/13 17:41:54 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)
SRV:64bit: - [2009/07/13 17:41:53 | 01,390,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pla.dll -- (pla)
SRV:64bit: - [2009/07/13 17:41:53 | 01,361,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV:64bit: - [2009/07/13 17:41:53 | 01,104,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2009/07/13 17:41:53 | 00,848,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2009/07/13 17:41:53 | 00,509,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2009/07/13 17:41:53 | 00,509,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2009/07/13 17:41:53 | 00,475,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\QAGENTRT.DLL -- (napagent)
SRV:64bit: - [2009/07/13 17:41:53 | 00,438,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\p2psvc.dll -- (p2psvc)
SRV:64bit: - [2009/07/13 17:41:53 | 00,343,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2009/07/13 17:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
SRV:64bit: - [2009/07/13 17:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
SRV:64bit: - [2009/07/13 17:41:53 | 00,242,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\qwave.dll -- (QWAVE)
SRV:64bit: - [2009/07/13 17:41:53 | 00,208,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2009/07/13 17:41:53 | 00,190,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SCardSvr.dll -- (SCardSvr)
SRV:64bit: - [2009/07/13 17:41:53 | 00,187,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
SRV:64bit: - [2009/07/13 17:41:53 | 00,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pcasvc.dll -- (PcaSvc)
SRV:64bit: - [2009/07/13 17:41:53 | 00,170,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:64bit: - [2009/07/13 17:41:53 | 00,159,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\regsvc.dll -- (RemoteRegistry)
SRV:64bit: - [2009/07/13 17:41:53 | 00,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2009/07/13 17:41:53 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
SRV:64bit: - [2009/07/13 17:41:53 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Sens.dll -- (SENS)
SRV:64bit: - [2009/07/13 17:41:53 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2009/07/13 17:41:53 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2009/07/13 17:41:53 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
SRV:64bit: - [2009/07/13 17:41:52 | 00,459,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV:64bit: - [2009/07/13 17:41:52 | 00,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/13 17:41:52 | 00,302,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/13 17:41:28 | 00,368,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msdtckrm.dll -- (KtmRm)
SRV:64bit: - [2009/07/13 17:41:27 | 01,011,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/07/13 17:41:27 | 00,824,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2009/07/13 17:41:27 | 00,097,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mprdim.dll -- (RemoteAccess)
SRV:64bit: - [2009/07/13 17:41:26 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mmcss.dll -- (THREADORDER)
SRV:64bit: - [2009/07/13 17:41:26 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/13 17:41:21 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Mcx2Svc.dll -- (Mcx2Svc)
SRV:64bit: - [2009/07/13 17:41:18 | 00,300,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lltdsvc.dll -- (lltdsvc)
SRV:64bit: - [2009/07/13 17:41:18 | 00,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
SRV:64bit: - [2009/07/13 17:41:18 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lmhsvc.dll -- (lmhosts)
SRV:64bit: - [2009/07/13 17:41:13 | 00,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KMSVC.DLL -- (hkmsvc)
SRV:64bit: - [2009/07/13 17:41:11 | 00,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iscsiexe.dll -- (MSiSCSI)
SRV:64bit: - [2009/07/13 17:41:10 | 00,565,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\iphlpsvc.dll -- (iphlpsvc)
SRV:64bit: - [2009/07/13 17:41:10 | 00,500,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
SRV:64bit: - [2009/07/13 17:41:10 | 00,359,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2009/07/13 17:41:09 | 00,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IPBusEnum.dll -- (IPBusEnum)
SRV:64bit: - [2009/07/13 17:41:08 | 00,845,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\IKEEXT.DLL -- (IKEEXT)
SRV:64bit: - [2009/07/13 17:41:00 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV:64bit: - [2009/07/13 17:40:59 | 00,776,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\gpsvc.dll -- (gpsvc)
SRV:64bit: - [2009/07/13 17:40:54 | 01,127,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
SRV:64bit: - [2009/07/13 17:40:52 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\FDResPub.dll -- (FDResPub)
SRV:64bit: - [2009/07/13 17:40:52 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\fdPHost.dll -- (fdPHost)
SRV:64bit: - [2009/07/13 17:40:50 | 00,402,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV:64bit: - [2009/07/13 17:40:35 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/13 17:40:32 | 00,252,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/13 17:40:32 | 00,182,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/13 17:40:32 | 00,162,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dps.dll -- (DPS)
SRV:64bit: - [2009/07/13 17:40:28 | 00,314,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2009/07/13 17:40:28 | 00,291,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc)
SRV:64bit: - [2009/07/13 17:40:24 | 00,689,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cscsvc.dll -- (CscService)
SRV:64bit: - [2009/07/13 17:40:24 | 00,175,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2009/07/13 17:40:15 | 00,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certprop.dll -- (SCPolicySvc)
SRV:64bit: - [2009/07/13 17:40:15 | 00,080,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\certprop.dll -- (CertPropSvc)
SRV:64bit: - [2009/07/13 17:40:13 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2009/07/13 17:40:13 | 00,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\bthserv.dll -- (bthserv)
SRV:64bit: - [2009/07/13 17:40:10 | 00,703,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2009/07/13 17:40:10 | 00,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC)
SRV:64bit: - [2009/07/13 17:40:05 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)
SRV:64bit: - [2009/07/13 17:40:04 | 00,676,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2009/07/13 17:40:04 | 00,676,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2009/07/13 17:40:01 | 00,193,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:64bit: - [2009/07/13 17:40:01 | 00,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2009/07/13 17:40:01 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/13 17:40:01 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)
SRV:64bit: - [2009/07/13 17:39:56 | 01,525,248 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc)
SRV:64bit: - [2009/07/13 17:39:55 | 00,203,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wbem\WmiApSrv.exe -- (wmiApSrv)
SRV:64bit: - [2009/07/13 17:39:51 | 01,503,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wbengine.exe -- (wbengine)
SRV:64bit: - [2009/07/13 17:39:50 | 01,598,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2009/07/13 17:39:49 | 00,532,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\vds.exe -- (vds)
SRV:64bit: - [2009/07/13 17:39:48 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\UI0Detect.exe -- (UI0Detect)
SRV:64bit: - [2009/07/13 17:39:44 | 00,558,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2009/07/13 17:39:41 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\snmptrap.exe -- (SNMPTRAP)
SRV:64bit: - [2009/07/13 17:39:37 | 00,593,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\SearchIndexer.exe -- (WSearch)
SRV:64bit: - [2009/07/13 17:39:28 | 03,524,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc)
SRV:64bit: - [2009/07/13 17:39:21 | 00,141,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msdtc.exe -- (MSDTC)
SRV:64bit: - [2009/07/13 17:39:21 | 00,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/13 17:39:16 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsass.exe -- (VaultSvc)
SRV:64bit: - [2009/07/13 17:39:16 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2009/07/13 17:39:16 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
SRV:64bit: - [2009/07/13 17:39:16 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsass.exe -- (Netlogon)
SRV:64bit: - [2009/07/13 17:39:16 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/13 17:39:16 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\lsass.exe -- (EFS)
SRV:64bit: - [2009/07/13 17:39:15 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\Locator.exe -- (RpcLocator)
SRV:64bit: - [2009/07/13 17:39:11 | 00,689,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\FXSSVC.exe -- (Fax)
SRV:64bit: - [2009/07/13 17:39:06 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\dllhost.exe -- (COMSysApp)
SRV:64bit: - [2009/07/13 17:38:55 | 00,079,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2009/07/02 18:42:36 | 00,017,400 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2007/06/11 11:18:20 | 00,567,216 | ---- | M] ( ) -- C:\Windows\SysNative\lxdjcoms.exe -- (lxdj_device)
SRV - [2009/11/07 13:36:28 | 00,079,360 | ---- | M] (Creative Labs) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2009/11/06 17:10:00 | 00,079,360 | ---- | M] (Creative Labs) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2009/09/07 23:48:55 | 00,066,048 | ---- | M] (PostgreSQL Global Development Group) -- D:\PostgreSQL\8.4\bin\pg_ctl.exe -- (postgresql-8.4)
SRV - [2009/07/13 19:20:14 | 00,000,000 | ---D | M] -- C:\Windows\Vss -- (VSS)
SRV - [2009/07/13 19:20:14 | 00,000,000 | ---D | M] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2009/07/13 17:39:48 | 00,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\servicing\TrustedInstaller.exe -- (TrustedInstaller)
SRV - [2009/07/13 17:39:09 | 00,696,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehrecvr.exe -- (ehRecvr)
SRV - [2009/07/13 17:39:09 | 00,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched)
SRV - [2009/07/13 17:16:20 | 01,175,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WsmSvc.dll -- (WinRM) Windows Remote Management (WS-Management)
SRV - [2009/07/13 17:16:20 | 00,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wpcsvc.dll -- (WPCSvc)
SRV - [2009/07/13 17:16:19 | 00,348,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winhttp.dll -- (WinHttpAutoProxySvc)
SRV - [2009/07/13 17:16:18 | 00,276,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wcncsvc.dll -- (wcncsvc)
SRV - [2009/07/13 17:16:18 | 00,202,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WebClnt.dll -- (WebClient)
SRV - [2009/07/13 17:16:18 | 00,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wdi.dll -- (WdiSystemHost)
SRV - [2009/07/13 17:16:18 | 00,076,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wdi.dll -- (WdiServiceHost)
SRV - [2009/07/13 17:16:18 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WcsPlugInService.dll -- (WcsPlugInService)
SRV - [2009/07/13 17:16:17 | 00,266,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\upnphost.dll -- (upnphost)
SRV - [2009/07/13 17:16:15 | 00,241,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/13 17:16:14 | 00,328,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
SRV - [2009/07/13 17:16:13 | 00,099,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\SessEnv.dll -- (SessionEnv)
SRV - [2009/07/13 17:16:13 | 00,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Sens.dll -- (SENS)
SRV - [2009/07/13 17:16:12 | 01,508,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\pla.dll -- (pla)
SRV - [2009/07/13 17:16:12 | 00,210,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\qwave.dll -- (QWAVE)
SRV - [2009/07/13 17:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2009/07/13 17:16:03 | 00,360,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV - [2009/07/13 17:16:02 | 00,563,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netlogon.dll -- (Netlogon)
SRV - [2009/07/13 17:15:41 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mprdim.dll -- (RemoteAccess)
SRV - [2009/07/13 17:15:35 | 00,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\keyiso.dll -- (KeyIso)
SRV - [2009/07/13 17:15:24 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV - [2009/07/13 17:15:19 | 00,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV - [2009/07/13 17:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2009/07/13 17:15:07 | 00,135,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV - [2009/07/13 17:14:53 | 00,149,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\appmgmts.dll -- (AppMgmt)
SRV - [2009/07/13 17:14:35 | 00,428,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\SearchIndexer.exe -- (WSearch)
SRV - [2009/07/13 17:14:28 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\perfhost.exe -- (PerfHost)
SRV - [2009/07/13 17:14:25 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV - [2009/07/13 17:14:18 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\dllhost.exe -- (COMSysApp)
SRV - [2009/07/13 12:30:11 | 00,061,056 | ---- | M] () -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2009/07/07 14:48:44 | 00,647,216 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe -- (nmservice)
SRV - [2009/06/10 13:23:09 | 00,066,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/10 12:39:58 | 00,089,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2009/06/10 12:30:59 | 00,042,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0)
SRV - [2009/06/10 12:30:45 | 00,856,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc)
SRV - [2008/11/18 13:15:30 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2007/06/11 11:18:00 | 00,537,520 | ---- | M] ( ) -- C:\Windows\SysWow64\lxdjcoms.exe -- (lxdj_device)
SRV - [2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)

calenl
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-11-26
OS OS : Windows 7 Ultimate
Points Points : 25753
# Likes # Likes : 0

View user profile

Back to top Go down

p2/3

Post by calenl on Fri Nov 27, 2009 8:39 pm

========== Driver Services (SafeList) ==========

DRV:64bit: - [2009/11/18 12:56:45 | 00,834,544 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd)
DRV:64bit: - [2009/10/29 11:41:36 | 00,046,112 | ---- | M] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\tbhsd.sys -- (tbhsd)
DRV:64bit: - [2009/10/29 11:41:14 | 00,031,264 | ---- | M] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\rrnetcap.sys -- (RRNetCapMP)
DRV:64bit: - [2009/10/29 11:41:14 | 00,031,264 | ---- | M] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\rrnetcap.sys -- (RRNetCap)
DRV:64bit: - [2009/10/01 20:32:07 | 00,982,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgkrnl.sys -- (DXGKrnl)
DRV:64bit: - [2009/08/03 11:12:00 | 01,289,216 | ---- | M] (Creative Technology Ltd.) -- C:\Windows\SysNative\drivers\P17.sys -- (P17)
DRV:64bit: - [2009/07/13 17:52:31 | 00,367,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\clfs.sys -- (CLFS) Common Log (CLFS)
DRV:64bit: - [2009/07/13 17:52:31 | 00,021,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\compbatt.sys -- (Compbatt)
DRV:64bit: - [2009/07/13 17:52:31 | 00,017,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\SysNative\drivers\cmdide.sys -- (cmdide)
DRV:64bit: - [2009/07/13 17:52:21 | 00,491,088 | ---- | M] (Adaptec, Inc.) -- C:\Windows\SysNative\drivers\adp94xx.sys -- (adp94xx)
DRV:64bit: - [2009/07/13 17:52:21 | 00,339,536 | ---- | M] (Adaptec, Inc.) -- C:\Windows\SysNative\drivers\adpahci.sys -- (adpahci)
DRV:64bit: - [2009/07/13 17:52:21 | 00,334,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\acpi.sys -- (ACPI)
DRV:64bit: - [2009/07/13 17:52:21 | 00,182,864 | ---- | M] (Adaptec, Inc.) -- C:\Windows\SysNative\drivers\adpu320.sys -- (adpu320)
DRV:64bit: - [2009/07/13 17:52:21 | 00,106,576 | ---- | M] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 17:52:21 | 00,097,856 | ---- | M] (Adaptec, Inc.) -- C:\Windows\SysNative\drivers\arcsas.sys -- (arcsas)
DRV:64bit: - [2009/07/13 17:52:21 | 00,087,632 | ---- | M] (Adaptec, Inc.) -- C:\Windows\SysNative\drivers\arc.sys -- (arc)
DRV:64bit: - [2009/07/13 17:52:21 | 00,061,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\AGP440.sys -- (agp440)
DRV:64bit: - [2009/07/13 17:52:21 | 00,028,752 | ---- | M] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 17:52:21 | 00,024,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\atapi.sys -- (atapi)
DRV:64bit: - [2009/07/13 17:52:21 | 00,015,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\amdide.sys -- (amdide)
DRV:64bit: - [2009/07/13 17:52:21 | 00,015,440 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\SysNative\drivers\aliide.sys -- (aliide)
DRV:64bit: - [2009/07/13 17:52:20 | 00,194,128 | ---- | M] (AMD Technologies Inc.) -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:27 | 01,659,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ntfs.sys -- (Ntfs)
DRV:64bit: - [2009/07/13 17:48:27 | 00,947,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ndis.sys -- (NDIS)
DRV:64bit: - [2009/07/13 17:48:27 | 00,224,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msiscsi.sys -- (iScsiPrt)
DRV:64bit: - [2009/07/13 17:48:27 | 00,155,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mpio.sys -- (mpio)
DRV:64bit: - [2009/07/13 17:48:27 | 00,149,056 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvraid.sys -- (nvraid)
DRV:64bit: - [2009/07/13 17:48:27 | 00,140,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msdsm.sys -- (msdsm)
DRV:64bit: - [2009/07/13 17:48:27 | 00,094,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mountmgr.sys -- (mountmgr)
DRV:64bit: - [2009/07/13 17:48:27 | 00,060,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mup.sys -- (Mup)
DRV:64bit: - [2009/07/13 17:48:27 | 00,049,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mouclass.sys -- (mouclass)
DRV:64bit: - [2009/07/13 17:48:27 | 00,032,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mssmbios.sys -- (mssmbios)
DRV:64bit: - [2009/07/13 17:48:27 | 00,030,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msahci.sys -- (msahci)
DRV:64bit: - [2009/07/13 17:48:27 | 00,015,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msisadrv.sys -- (msisadrv)
DRV:64bit: - [2009/07/13 17:48:26 | 00,367,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msrpc.sys -- (MsRPC)
DRV:64bit: - [2009/07/13 17:48:26 | 00,122,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\NV_AGP.SYS -- (nv_agp)
DRV:64bit: - [2009/07/13 17:48:26 | 00,051,264 | ---- | M] (IBM Corporation) -- C:\Windows\SysNative\drivers\nfrd960.sys -- (nfrd960)
DRV:64bit: - [2009/07/13 17:48:04 | 00,410,688 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStorV.sys -- (iaStorV)
DRV:64bit: - [2009/07/13 17:48:04 | 00,284,736 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\SysNative\drivers\MegaSR.sys -- (MegaSR)
DRV:64bit: - [2009/07/13 17:48:04 | 00,153,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
DRV:64bit: - [2009/07/13 17:48:04 | 00,115,776 | ---- | M] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV:64bit: - [2009/07/13 17:48:04 | 00,114,752 | ---- | M] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_fc.sys -- (LSI_FC)
DRV:64bit: - [2009/07/13 17:48:04 | 00,106,560 | ---- | M] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_sas.sys -- (LSI_SAS)
DRV:64bit: - [2009/07/13 17:48:04 | 00,095,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ksecdd.sys -- (KSecDD)
DRV:64bit: - [2009/07/13 17:48:04 | 00,065,600 | ---- | M] (LSI Corporation) -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:48:04 | 00,050,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\kbdclass.sys -- (kbdclass)
DRV:64bit: - [2009/07/13 17:48:04 | 00,044,112 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\SysNative\drivers\iirsp.sys -- (iirsp)
DRV:64bit: - [2009/07/13 17:48:04 | 00,035,392 | ---- | M] (LSI Corporation) -- C:\Windows\SysNative\drivers\megasas.sys -- (megasas)
DRV:64bit: - [2009/07/13 17:48:04 | 00,020,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\isapnp.sys -- (isapnp)
DRV:64bit: - [2009/07/13 17:48:04 | 00,016,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\intelide.sys -- (intelide)
DRV:64bit: - [2009/07/13 17:48:04 | 00,014,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
DRV:64bit: - [2009/07/13 17:47:49 | 00,055,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
DRV:64bit: - [2009/07/13 17:47:48 | 00,530,496 | ---- | M] (Emulex) -- C:\Windows\SysNative\drivers\elxstor.sys -- (elxstor)
DRV:64bit: - [2009/07/13 17:47:48 | 00,077,888 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 17:47:48 | 00,073,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\disk.sys -- (Disk)
DRV:64bit: - [2009/07/13 17:47:48 | 00,070,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fileinfo.sys -- (FileInfo)
DRV:64bit: - [2009/07/13 17:47:48 | 00,065,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\GAGP30KX.SYS -- (gagp30kx)
DRV:64bit: - [2009/07/13 17:47:48 | 00,024,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\crcdisk.sys -- (crcdisk)
DRV:64bit: - [2009/07/13 17:47:47 | 00,290,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fltMgr.sys -- (FltMgr)
DRV:64bit: - [2009/07/13 17:45:56 | 00,022,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
DRV:64bit: - [2009/07/13 17:45:55 | 01,898,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tcpip.sys -- (TCPIP6)
DRV:64bit: - [2009/07/13 17:45:55 | 01,898,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tcpip.sys -- (Tcpip)
DRV:64bit: - [2009/07/13 17:45:55 | 00,654,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Wdf01000.sys -- (Wdf01000)
DRV:64bit: - [2009/07/13 17:45:55 | 00,363,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\volmgrx.sys -- (volmgrx)
DRV:64bit: - [2009/07/13 17:45:55 | 00,294,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\volsnap.sys -- (volsnap)
DRV:64bit: - [2009/07/13 17:45:55 | 00,217,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
DRV:64bit: - [2009/07/13 17:45:55 | 00,200,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV:64bit: - [2009/07/13 17:45:55 | 00,161,872 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\SysNative\drivers\vsmraid.sys -- (vsmraid)
DRV:64bit: - [2009/07/13 17:45:55 | 00,071,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\volmgr.sys -- (volmgr)
DRV:64bit: - [2009/07/13 17:45:55 | 00,064,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ULIAGPKX.SYS -- (uliagpkx)
DRV:64bit: - [2009/07/13 17:45:55 | 00,064,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\UAGP35.SYS -- (uagp35)
DRV:64bit: - [2009/07/13 17:45:55 | 00,062,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\termdd.sys -- (TermDD)
DRV:64bit: - [2009/07/13 17:45:55 | 00,046,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV:64bit: - [2009/07/13 17:45:55 | 00,036,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
DRV:64bit: - [2009/07/13 17:45:55 | 00,034,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV:64bit: - [2009/07/13 17:45:55 | 00,024,656 | ---- | M] (Promise Technology) -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 17:45:55 | 00,021,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wd.sys -- (Wd)
DRV:64bit: - [2009/07/13 17:45:55 | 00,019,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\spldr.sys -- (spldr)
DRV:64bit: - [2009/07/13 17:45:55 | 00,017,488 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\SysNative\drivers\viaide.sys -- (viaide)
DRV:64bit: - [2009/07/13 17:45:55 | 00,012,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\swenum.sys -- (swenum)
DRV:64bit: - [2009/07/13 17:45:46 | 01,524,816 | ---- | M] (QLogic Corporation) -- C:\Windows\SysNative\drivers\ql2300.sys -- (ql2300)
DRV:64bit: - [2009/07/13 17:45:46 | 00,214,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)
DRV:64bit: - [2009/07/13 17:45:46 | 00,080,464 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\SysNative\drivers\sisraid4.sys -- (SiSRaid4)
DRV:64bit: - [2009/07/13 17:45:46 | 00,075,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\partmgr.sys -- (partmgr)
DRV:64bit: - [2009/07/13 17:45:45 | 00,220,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pcmcia.sys -- (pcmcia)
DRV:64bit: - [2009/07/13 17:45:45 | 00,183,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pci.sys -- (pci)
DRV:64bit: - [2009/07/13 17:45:45 | 00,167,488 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvstor.sys -- (nvstor)
DRV:64bit: - [2009/07/13 17:45:45 | 00,128,592 | ---- | M] (QLogic Corporation) -- C:\Windows\SysNative\drivers\ql40xx.sys -- (ql40xx)
DRV:64bit: - [2009/07/13 17:45:45 | 00,104,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sbp2port.sys -- (sbp2port)
DRV:64bit: - [2009/07/13 17:45:45 | 00,050,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw)
DRV:64bit: - [2009/07/13 17:45:45 | 00,043,584 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\SysNative\drivers\sisraid2.sys -- (SiSRaid2)
DRV:64bit: - [2009/07/13 17:45:45 | 00,012,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pciide.sys -- (pciide)
DRV:64bit: - [2009/07/13 17:43:14 | 00,460,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cng.sys -- (CNG)
DRV:64bit: - [2009/07/13 17:43:13 | 00,223,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)
DRV:64bit: - [2009/07/13 17:19:07 | 00,286,720 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\BrSerId.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV:64bit: - [2009/07/13 17:01:19 | 00,651,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\PEAuth.sys -- (PEAUTH)
DRV:64bit: - [2009/07/13 16:38:18 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbprint.sys -- (usbprint)
DRV:64bit: - [2009/07/13 16:18:02 | 00,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpdr.sys -- (RDPDR)
DRV:64bit: - [2009/07/13 16:17:46 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)
DRV:64bit: - [2009/07/13 16:16:48 | 00,204,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdpwd.sys -- (RDPWD)
DRV:64bit: - [2009/07/13 16:16:41 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tssecsrv.sys -- (tssecsrv)
DRV:64bit: - [2009/07/13 16:16:35 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV:64bit: - [2009/07/13 16:16:34 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RDPENCDD.sys -- (RDPENCDD)
DRV:64bit: - [2009/07/13 16:16:34 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\RDPCDD.sys -- (RDPCDD)
DRV:64bit: - [2009/07/13 16:16:32 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdtcp.sys -- (TDTCP)
DRV:64bit: - [2009/07/13 16:16:32 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdpipe.sys -- (TDPIPE)
DRV:64bit: - [2009/07/13 16:10:48 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\modem.sys -- (Modem)
DRV:64bit: - [2009/07/13 16:10:33 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ws2ifsl.sys -- (ws2ifsl)
DRV:64bit: - [2009/07/13 16:10:25 | 00,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rassstp.sys -- (RasSstp) WAN Miniport (SSTP)
DRV:64bit: - [2009/07/13 16:10:24 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV:64bit: - [2009/07/13 16:10:22 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wanarp.sys -- (Wanarpv6)
DRV:64bit: - [2009/07/13 16:10:22 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wanarp.sys -- (WANARP)
DRV:64bit: - [2009/07/13 16:10:18 | 00,111,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\raspptp.sys -- (PptpMiniport) WAN Miniport (PPTP)
DRV:64bit: - [2009/07/13 16:10:17 | 00,092,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\raspppoe.sys -- (RasPppoe)
DRV:64bit: - [2009/07/13 16:10:13 | 00,164,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ndiswan.sys -- (NdisWan)
DRV:64bit: - [2009/07/13 16:10:13 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\asyncmac.sys -- (AsyncMac)
DRV:64bit: - [2009/07/13 16:10:12 | 00,130,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rasl2tp.sys -- (Rasl2tp) WAN Miniport (L2TP)
DRV:64bit: - [2009/07/13 16:10:09 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rasacd.sys -- (RasAcd)
DRV:64bit: - [2009/07/13 16:10:05 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ndproxy.sys -- (NDProxy)
DRV:64bit: - [2009/07/13 16:10:04 | 00,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ipfltdrv.sys -- (IpFilterDriver)
DRV:64bit: - [2009/07/13 16:10:03 | 00,116,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ipnat.sys -- (IPNAT)
DRV:64bit: - [2009/07/13 16:10:00 | 00,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ndistapi.sys -- (NdisTapi)
DRV:64bit: - [2009/07/13 16:09:49 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tcpipreg.sys -- (tcpipreg)
DRV:64bit: - [2009/07/13 16:09:48 | 00,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\qwavedrv.sys -- (QWAVEdrv)
DRV:64bit: - [2009/07/13 16:09:42 | 00,131,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\pacer.sys -- (Psched)
DRV:64bit: - [2009/07/13 16:09:38 | 00,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tunnel.sys -- (tunnel)
DRV:64bit: - [2009/07/13 16:09:26 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netbios.sys -- (NetBIOS)
DRV:64bit: - [2009/07/13 16:09:26 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)
DRV:64bit: - [2009/07/13 16:09:25 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ndisuio.sys -- (Ndisuio)
DRV:64bit: - [2009/07/13 16:09:09 | 00,093,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\smb.sys -- (Smb) Message-oriented TCP/IP and TCP/IPv6 Protocol (SMB session)
DRV:64bit: - [2009/07/13 16:08:59 | 00,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\irenum.sys -- (IRENUM)
DRV:64bit: - [2009/07/13 16:08:51 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rspndr.sys -- (rspndr)
DRV:64bit: - [2009/07/13 16:08:51 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\lltdio.sys -- (lltdio)
DRV:64bit: - [2009/07/13 16:08:25 | 00,077,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mpsdrv.sys -- (mpsdrv)
DRV:64bit: - [2009/07/13 16:08:13 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)
DRV:64bit: - [2009/07/13 16:07:23 | 00,318,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\nwifi.sys -- (NativeWifiP)
DRV:64bit: - [2009/07/13 16:07:21 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
DRV:64bit: - [2009/07/13 16:07:13 | 00,227,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
DRV:64bit: - [2009/07/13 16:07:09 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbhub.sys -- (usbhub)
DRV:64bit: - [2009/07/13 16:07:00 | 00,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
DRV:64bit: - [2009/07/13 16:06:56 | 00,048,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\umbus.sys -- (umbus)
DRV:64bit: - [2009/07/13 16:06:52 | 00,100,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidbth.sys -- (HidBth)
DRV:64bit: - [2009/07/13 16:06:52 | 00,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\bthmodem.sys -- (BTHMODEM)
DRV:64bit: - [2009/07/13 16:06:52 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass)
DRV:64bit: - [2009/07/13 16:06:45 | 00,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbccgp.sys -- (usbccgp)
DRV:64bit: - [2009/07/13 16:06:45 | 00,072,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ohci1394.sys -- (ohci1394) 1394 OHCI Compliant Host Controller (Legacy)
DRV:64bit: - [2009/07/13 16:06:37 | 00,100,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbcir.sys -- (usbcir) eHome Infrared Receiver (USBCIR)
DRV:64bit: - [2009/07/13 16:06:34 | 00,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBSTOR.SYS -- (USBSTOR)
DRV:64bit: - [2009/07/13 16:06:34 | 00,045,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\circlass.sys -- (circlass)
DRV:64bit: - [2009/07/13 16:06:30 | 00,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbehci.sys -- (usbehci)
DRV:64bit: - [2009/07/13 16:06:30 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbohci.sys -- (usbohci)
DRV:64bit: - [2009/07/13 16:06:27 | 00,030,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbuhci.sys -- (usbuhci)
DRV:64bit: - [2009/07/13 16:06:24 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV:64bit: - [2009/07/13 16:06:23 | 00,046,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidir.sys -- (HidIr)
DRV:64bit: - [2009/07/13 16:06:22 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidusb.sys -- (HidUsb)
DRV:64bit: - [2009/07/13 16:06:16 | 00,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\drmkaud.sys -- (drmkaud)
DRV:64bit: - [2009/07/13 16:06:13 | 00,122,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hdaudbus.sys -- (HDAudBus)
DRV:64bit: - [2009/07/13 16:06:06 | 00,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WUDFRd.sys -- (WUDFRd)
DRV:64bit: - [2009/07/13 16:05:37 | 00,112,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
DRV:64bit: - [2009/07/13 16:02:08 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
DRV:64bit: - [2009/07/13 16:02:07 | 00,027,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wacompen.sys -- (WacomPen)
DRV:64bit: - [2009/07/13 16:01:03 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sffp_mmc.sys -- (sffp_mmc)
DRV:64bit: - [2009/07/13 16:01:02 | 00,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sfloppy.sys -- (sfloppy)
DRV:64bit: - [2009/07/13 16:01:02 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sffp_sd.sys -- (sffp_sd)
DRV:64bit: - [2009/07/13 16:01:01 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sffdisk.sys -- (sffdisk)
DRV:64bit: - [2009/07/13 16:00:54 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fdc.sys -- (fdc)
DRV:64bit: - [2009/07/13 16:00:54 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\flpydisk.sys -- (flpydisk)
DRV:64bit: - [2009/07/13 16:00:41 | 00,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\parport.sys -- (Parport)
DRV:64bit: - [2009/07/13 16:00:40 | 00,094,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\serial.sys -- (Serial)
DRV:64bit: - [2009/07/13 16:00:34 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)
DRV:64bit: - [2009/07/13 16:00:33 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\serenum.sys -- (Serenum)
DRV:64bit: - [2009/07/13 16:00:20 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\kbdhid.sys -- (kbdhid)
DRV:64bit: - [2009/07/13 16:00:20 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mouhid.sys -- (mouhid)
DRV:64bit: - [2009/07/13 16:00:20 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\sermouse.sys -- (sermouse)
DRV:64bit: - [2009/07/13 16:00:19 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ksthunk.sys -- (ksthunk)
DRV:64bit: - [2009/07/13 16:00:18 | 00,011,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mskssrv.sys -- (MSKSSRV)
DRV:64bit: - [2009/07/13 16:00:17 | 00,008,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mstee.sys -- (MSTEE)
DRV:64bit: - [2009/07/13 16:00:17 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mspclock.sys -- (MSPCLOCK)
DRV:64bit: - [2009/07/13 16:00:17 | 00,006,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mspqm.sys -- (MSPQM)
DRV:64bit: - [2009/07/13 16:00:13 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\beep.sys -- (Beep)
DRV:64bit: - [2009/07/13 15:52:39 | 00,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\appid.sys -- (AppID)
DRV:64bit: - [2009/07/13 15:50:17 | 00,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)
DRV:64bit: - [2009/07/13 15:47:45 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\IPMIDrv.sys -- (IPMIDRV)
DRV:64bit: - [2009/07/13 15:42:58 | 00,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV:64bit: - [2009/07/13 15:42:44 | 00,021,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV:64bit: - [2009/07/13 15:38:52 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\monitor.sys -- (monitor)
DRV:64bit: - [2009/07/13 15:38:47 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vga.sys -- (VgaSave)
DRV:64bit: - [2009/07/13 15:38:47 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\vgapnp.sys -- (vga)
DRV:64bit: - [2009/07/13 15:37:18 | 00,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\discache.sys -- (discache)
DRV:64bit: - [2009/07/13 15:35:59 | 00,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\blbdrive.sys -- (blbdrive)
DRV:64bit: - [2009/07/13 15:31:06 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
DRV:64bit: - [2009/07/13 15:31:04 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\errdev.sys -- (ErrDev)
DRV:64bit: - [2009/07/13 15:31:03 | 00,017,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
DRV:64bit: - [2009/07/13 15:31:02 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\wmiacpi.sys -- (WmiAcpi)
DRV:64bit: - [2009/07/13 15:27:17 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
DRV:64bit: - [2009/07/13 15:26:13 | 00,113,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\luafv.sys -- (luafv)
DRV:64bit: - [2009/07/13 15:25:40 | 00,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\filetrace.sys -- (Filetrace)
DRV:64bit: - [2009/07/13 15:25:13 | 00,465,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\srv.sys -- (srv)
DRV:64bit: - [2009/07/13 15:25:04 | 00,407,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\srv2.sys -- (srv2)
DRV:64bit: - [2009/07/13 15:24:59 | 00,162,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\srvnet.sys -- (srvnet)
DRV:64bit: - [2009/07/13 15:24:27 | 00,514,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\csc.sys -- (CSC)
DRV:64bit: - [2009/07/13 15:24:10 | 00,309,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rdbss.sys -- (rdbss)
DRV:64bit: - [2009/07/13 15:24:08 | 00,285,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mrxsmb10.sys -- (mrxsmb10)
DRV:64bit: - [2009/07/13 15:24:06 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mrxsmb20.sys -- (mrxsmb20)
DRV:64bit: - [2009/07/13 15:24:00 | 00,157,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mrxsmb.sys -- (mrxsmb)
DRV:64bit: - [2009/07/13 15:23:57 | 00,140,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\mrxdav.sys -- (MRxDAV)
DRV:64bit: - [2009/07/13 15:23:50 | 00,090,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\bowser.sys -- (bowser)
DRV:64bit: - [2009/07/13 15:23:44 | 00,102,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dfsc.sys -- (DfsC)
DRV:64bit: - [2009/07/13 15:23:37 | 00,327,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\udfs.sys -- (udfs)
DRV:64bit: - [2009/07/13 15:23:29 | 00,204,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fastfat.sys -- (fastfat)
DRV:64bit: - [2009/07/13 15:23:29 | 00,195,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\exfat.sys -- (exfat)
DRV:64bit: - [2009/07/13 15:22:20 | 00,751,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\http.sys -- (HTTP)
DRV:64bit: - [2009/07/13 15:21:42 | 00,500,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\afd.sys -- (AFD)
DRV:64bit: - [2009/07/13 15:21:29 | 00,259,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netbt.sys -- (NetBT)
DRV:64bit: - [2009/07/13 15:21:15 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdx.sys -- (tdx)
DRV:64bit: - [2009/07/13 15:21:02 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\nsiproxy.sys -- (nsiproxy)
DRV:64bit: - [2009/07/13 15:19:57 | 00,105,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\i8042prt.sys -- (i8042prt)
DRV:64bit: - [2009/07/13 15:19:54 | 00,147,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cdrom.sys -- (cdrom)
DRV:64bit: - [2009/07/13 15:19:48 | 00,044,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\npfs.sys -- (Npfs)
DRV:64bit: - [2009/07/13 15:19:47 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\cdfs.sys -- (cdfs)
DRV:64bit: - [2009/07/13 15:19:47 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\msfs.sys -- (Msfs)
DRV:64bit: - [2009/07/13 15:19:38 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\null.sys -- (Null)
DRV:64bit: - [2009/07/13 15:19:25 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\amdk8.sys -- (AmdK8)
DRV:64bit: - [2009/07/13 15:19:25 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\intelppm.sys -- (intelppm)
DRV:64bit: - [2009/07/13 15:19:25 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
DRV:64bit: - [2009/07/13 15:19:25 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\processr.sys -- (Processor)
DRV:64bit: - [2009/07/07 14:48:44 | 00,035,376 | ---- | M] (Cisco Systems, Inc.) -- C:\Windows\SysNative\drivers\purendis.sys -- (purendis)
DRV:64bit: - [2009/07/07 14:48:44 | 00,033,328 | ---- | M] (Cisco Systems, Inc.) -- C:\Windows\SysNative\drivers\pnarp.sys -- (pnarp)
DRV:64bit: - [2009/06/18 18:48:04 | 00,164,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\MpFilter.sys -- (MpFilter)
DRV:64bit: - [2009/06/18 18:48:04 | 00,040,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\MpNWMon.sys -- (MpNWMon)
DRV:64bit: - [2009/06/10 12:41:10 | 00,047,104 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\BrSerWdm.sys -- (BrSerWdm)
DRV:64bit: - [2009/06/10 12:41:10 | 00,014,976 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV:64bit: - [2009/06/10 12:41:10 | 00,014,720 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\SysNative\drivers\BrUsbSer.sys -- (BrUsbSer)
DRV:64bit: - [2009/06/10 12:41:06 | 00,018,432 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\SysNative\drivers\BrFiltLo.sys -- (BrFiltLo)
DRV:64bit: - [2009/06/10 12:41:06 | 00,008,704 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\SysNative\drivers\BrFiltUp.sys -- (BrFiltUp)
DRV:64bit: - [2009/06/10 12:37:25 | 11,572,512 | ---- | M] (NVIDIA Corporation) -- C:\Windows\SysNative\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV:64bit: - [2009/06/10 12:37:19 | 00,023,040 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\SysNative\drivers\secdrv.sys -- (secdrv)
DRV:64bit: - [2009/06/10 12:35:20 | 00,278,016 | ---- | M] (Intel Corporation) -- C:\Windows\SysNative\drivers\e1e6032e.sys -- (e1express) Intel(R)
DRV:64bit: - [2009/06/10 12:34:33 | 03,286,016 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 00,468,480 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 00,270,848 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 00,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/11/06 17:00:31 | 00,000,000 | ---D | M] -- C:\Windows\CSC -- (CSC)
DRV - [2009/07/13 17:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009/07/13 17:16:02 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netbios.dll -- (NetBIOS)
DRV - [2009/06/10 13:28:14 | 00,001,088 | ---- | M] () -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2009/06/10 13:15:18 | 00,003,066 | ---- | M] () -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\..\URLSearchHook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Corporation)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2009/11/24 23:39:31 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2009/11/24 23:39:31 | 00,000,000 | ---D | M]

[2009/11/24 23:39:40 | 00,000,000 | ---D | M] -- C:\Users\Calen\AppData\Roaming\Mozilla\Extensions
[2009/11/24 23:39:40 | 00,000,000 | ---D | M] -- C:\Users\Calen\AppData\Roaming\Mozilla\Firefox\Profiles\cgabp4fn.default\extensions
[2009/11/24 23:39:31 | 00,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox\extensions

O1 HOSTS File: (824 bytes) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4:64bit: - HKLM..\Run: [lxdjamon] C:\Program Files (x86)\Lexmark 1400 Series\lxdjamon.exe (Lexmark)
O4:64bit: - HKLM..\Run: [lxdjmon.exe] C:\Program Files (x86)\Lexmark 1400 Series\lxdjmon.exe File not found
O4:64bit: - HKLM..\Run: [MSSE] C:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [nmapp] C:\Program Files (x86)\Pure Networks\Network Magic\nmapp.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [nmctxth] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)
O4 - HKLM..\Run: [P17RunE] C:\Windows\SysWow64\P17RunE.dll (Creative Technology Ltd.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [Google Update] C:\Users\Calen\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - Startup: C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\5822566.lnk = C:\Users\Calen\AppData\Local\Temp\sptcv.exe ()
O4 - Startup: C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeskPins.lnk = C:\Program Files (x86)\DeskPins\DeskPins.exe (Elias Fotinis)
O4 - Startup: C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ForceActiveDesktopOn = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17
O8:64bit: - Extra context menu item: Add to Evernote - C:\Program Files (x86)\Evernote\Evernote3\enbar.dll (Evernote Corporation)
O8 - Extra context menu item: Add to Evernote - C:\Program Files (x86)\Evernote\Evernote3\enbar.dll (Evernote Corporation)
O9 - Extra Button: Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E9252800} - C:\Program Files (x86)\Evernote\Evernote3\enbar.dll (Evernote Corporation)
O9 - Extra 'Tools' menuitem : Add to Evernote - {E0B8C461-F8FB-49b4-8373-FE32E9252800} - C:\Program Files (x86)\Evernote\Evernote3\enbar.dll (Evernote Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysNative\nlaapi.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysNative\winrnr.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysNative\NapiNSP.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysNative\pnrpnsp.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10:64bit: - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysNative\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\Windows\SysWOW64\nlaapi.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000002 [] - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000003 [] - C:\Windows\SysWOW64\winrnr.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Windows\SysWOW64\NapiNSP.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Windows\SysWOW64\pnrpnsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWOW64\mswsock.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_17)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_16)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} [You must be registered and logged in to see this link.] (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 64.59.144.16 64.59.144.17 192.168.1.1
O18:64bit: - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysNative\inetcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysNative\itss.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\amd64\puresp4.dll (Cisco Systems, Inc.)
O18:64bit: - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysNative\MSVidCtl.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysNative\mshtml.dll (Microsoft Corporation)
O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
O18 - Protocol\Handler\about {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\cdl {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\dvd {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\file {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ftp {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\http {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\https {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\javascript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\local {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\mailto {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\mhtml {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll (Microsoft Corporation)
O18 - Protocol\Handler\mk {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-its {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll (Microsoft Corporation)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O18 - Protocol\Handler\res {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\tv {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll (Microsoft Corporation)
O18 - Protocol\Handler\vbscript {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysNative\mscoree.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18:64bit: - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysNative\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWow64\mscoree.dll (Microsoft Corporation)
O18 - Protocol\Filter\deflate {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O18 - Protocol\Filter\gzip {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O29:64bit: - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - C:\Windows\SysWow64\credssp.dll (Microsoft Corporation)
O30:64bit: - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Authentication Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (kerberos) - C:\Windows\SysNative\kerberos.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (msv1_0) - C:\Windows\SysNative\msv1_0.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (schannel) - C:\Windows\SysNative\schannel.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (wdigest) - C:\Windows\SysNative\wdigest.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (tspkg) - C:\Windows\SysNative\tspkg.dll (Microsoft Corporation)
O30:64bit: - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (kerberos) - C:\Windows\SysWow64\kerberos.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (msv1_0) - C:\Windows\SysWow64\msv1_0.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (schannel) - C:\Windows\SysWow64\schannel.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (wdigest) - C:\Windows\SysWow64\wdigest.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (tspkg) - C:\Windows\SysWow64\tspkg.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0264d053-d485-11de-a9cf-001617d82e98}\Shell - "" = AutoRun
O33 - MountPoints2\{0264d053-d485-11de-a9cf-001617d82e98}\Shell\AutoRun\command - "" = I:\autorun.exe -- File not found
O33 - MountPoints2\{0264d053-d485-11de-a9cf-001617d82e98}\Shell\directx\command - "" = I:\DirectX9\dxsetup.exe -- File not found
O33 - MountPoints2\{0264d053-d485-11de-a9cf-001617d82e98}\Shell\setup\command - "" = I:\setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\Windows\SysWow64\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
64bit: O35 - comfile [open] -- "%1" %* File not found
64bit: O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

calenl
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-11-26
OS OS : Windows 7 Ultimate
Points Points : 25753
# Likes # Likes : 0

View user profile

Back to top Go down

p3/3

Post by calenl on Fri Nov 27, 2009 8:40 pm

========== Files/Folders - Created Within 30 Days ==========

[2009/11/27 00:10:47 | 00,000,000 | R--D | C] -- C:\Users\Calen\Music
[2009/11/26 22:11:25 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Malwarebytes
[2009/11/26 22:11:21 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2009/11/26 22:11:20 | 00,022,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2009/11/26 22:11:20 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2009/11/26 22:11:20 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2009/11/26 15:18:12 | 00,000,000 | ---D | C] -- E:\Desktop\JavaRa
[2009/11/26 15:17:05 | 00,455,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll
[2009/11/26 15:17:05 | 00,181,760 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe
[2009/11/26 15:17:05 | 00,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe
[2009/11/26 15:17:05 | 00,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe
[2009/11/26 15:16:59 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009/11/26 14:53:39 | 00,289,144 | ---- | C] (S!Ri) -- C:\Windows\SysWow64\VCCLSID.exe
[2009/11/26 14:53:39 | 00,288,417 | ---- | C] (S!Ri) -- C:\Windows\SysWow64\SrchSTS.exe
[2009/11/26 14:53:39 | 00,087,552 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\VACFix.exe
[2009/11/26 14:53:39 | 00,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\IEDFix.exe
[2009/11/26 14:53:39 | 00,082,944 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\IEDFix.C.exe
[2009/11/26 14:53:39 | 00,082,432 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\404Fix.exe
[2009/11/26 14:53:39 | 00,080,384 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\o4Patch.exe
[2009/11/26 14:53:39 | 00,079,360 | ---- | C] (SteelWerX) -- C:\Windows\SysWow64\swxcacls.exe
[2009/11/26 14:53:39 | 00,078,336 | ---- | C] (S!Ri.URZ) -- C:\Windows\SysWow64\Agent.OMZ.Fix.exe
[2009/11/26 14:53:38 | 00,135,168 | ---- | C] (SteelWerX) -- C:\Windows\SysWow64\swreg.exe
[2009/11/26 14:53:38 | 00,053,248 | ---- | C] (http://www.beyondlogic.org) -- C:\Windows\SysWow64\Process.exe
[2009/11/26 03:03:59 | 00,000,000 | ---D | C] -- C:\Windows\Sun
[2009/11/26 01:08:16 | 00,000,000 | ---D | C] -- E:\Desktop\Portable Video Player Compatible
[2009/11/26 01:03:21 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\PixiePack Codec Pack
[2009/11/26 01:00:04 | 00,000,000 | ---D | C] -- C:\ProgramData\RapidSolution
[2009/11/26 01:00:04 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\RapidSolution
[2009/11/26 00:58:29 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\RapidSolution
[2009/11/25 19:08:31 | 00,033,328 | ---- | C] (Cisco Systems, Inc.) -- C:\Windows\SysNative\drivers\pnarp.sys
[2009/11/25 19:08:29 | 00,035,376 | ---- | C] (Cisco Systems, Inc.) -- C:\Windows\SysNative\drivers\purendis.sys
[2009/11/25 19:08:23 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Pure Networks Shared
[2009/11/25 19:04:16 | 00,000,000 | ---D | C] -- C:\ProgramData\Pure Networks
[2009/11/25 18:52:29 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Pure Networks
[2009/11/25 18:50:01 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2009/11/25 12:55:26 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzres.dll
[2009/11/25 12:55:26 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzres.dll
[2009/11/24 23:47:33 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\HandBrake
[2009/11/24 23:47:29 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\HandBrake
[2009/11/24 23:47:27 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Handbrake
[2009/11/24 23:39:35 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Mozilla
[2009/11/24 23:39:35 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\Mozilla
[2009/11/24 23:39:30 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2009/11/24 16:10:09 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\StoxEV
[2009/11/24 00:02:10 | 00,000,000 | ---D | C] -- E:\Desktop\Camstudio
[2009/11/19 15:57:53 | 00,000,000 | ---D | C] -- C:\Program Files\Lx_cats
[2009/11/19 15:46:08 | 00,000,000 | ---D | C] -- C:\logs
[2009/11/19 15:45:21 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Lexmark 1400 Series
[2009/11/19 15:45:19 | 01,232,896 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjserv.dll
[2009/11/19 15:45:19 | 00,999,424 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjusb1.dll
[2009/11/19 15:45:19 | 00,983,121 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lxdjgf.dll
[2009/11/19 15:45:19 | 00,643,072 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjpmui.dll
[2009/11/19 15:45:19 | 00,507,904 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjutil.dll
[2009/11/19 15:45:19 | 00,413,696 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjinpa.dll
[2009/11/19 15:45:19 | 00,397,312 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjiesc.dll
[2009/11/19 15:45:19 | 00,200,704 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjinsb.dll
[2009/11/19 15:45:19 | 00,181,168 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjppls.exe
[2009/11/19 15:45:19 | 00,176,128 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjins.dll
[2009/11/19 15:45:19 | 00,163,840 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjprox.dll
[2009/11/19 15:45:19 | 00,143,360 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjjswr.dll
[2009/11/19 15:45:19 | 00,126,976 | ---- | C] (Lexmark International Inc.) -- C:\Windows\SysWow64\lxdjlnks.dll
[2009/11/19 15:45:19 | 00,106,496 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjinsr.dll
[2009/11/19 15:45:19 | 00,086,016 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjcub.dll
[2009/11/19 15:45:19 | 00,077,824 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjcu.dll
[2009/11/19 15:45:19 | 00,036,864 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysWow64\lxdjcur.dll
[2009/11/19 15:45:18 | 00,700,416 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjhbn3.dll
[2009/11/19 15:45:18 | 00,684,032 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjcomc.dll
[2009/11/19 15:45:18 | 00,585,728 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjlmpm.dll
[2009/11/19 15:45:18 | 00,537,520 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjcoms.exe
[2009/11/19 15:45:18 | 00,425,984 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjcomm.dll
[2009/11/19 15:45:18 | 00,394,160 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjcfg.exe
[2009/11/19 15:45:18 | 00,385,968 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjih.exe
[2009/11/19 15:45:18 | 00,094,208 | ---- | C] ( ) -- C:\Windows\SysWow64\lxdjpplc.dll
[2009/11/19 15:45:18 | 00,077,906 | ---- | C] (Lexmark International) -- C:\Windows\SysWow64\lxdjcfg.dll
[2009/11/19 15:45:06 | 01,436,160 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjserv.dll
[2009/11/19 15:45:06 | 01,101,824 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjusb1.dll
[2009/11/19 15:45:06 | 00,710,656 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjutil.dll
[2009/11/19 15:45:06 | 00,488,960 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjlmpm.dll
[2009/11/19 15:45:06 | 00,410,624 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjpmui.dll
[2009/11/19 15:45:06 | 00,307,200 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjhcp.dll
[2009/11/19 15:45:06 | 00,242,688 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjinpa.dll
[2009/11/19 15:45:06 | 00,236,032 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjins.dll
[2009/11/19 15:45:06 | 00,227,328 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjiesc.dll
[2009/11/19 15:45:06 | 00,183,808 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjinsb.dll
[2009/11/19 15:45:06 | 00,126,464 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjjswr.dll
[2009/11/19 15:45:06 | 00,091,136 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjinsr.dll
[2009/11/19 15:45:06 | 00,035,328 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjprox.dll
[2009/11/19 15:45:06 | 00,010,752 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjpplc.dll
[2009/11/19 15:45:05 | 00,983,121 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lxdjgf.dll
[2009/11/19 15:45:05 | 00,696,832 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjcomc.dll
[2009/11/19 15:45:05 | 00,672,256 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjhbn3.dll
[2009/11/19 15:45:05 | 00,567,216 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjcoms.exe
[2009/11/19 15:45:05 | 00,252,848 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjcfg.exe
[2009/11/19 15:45:05 | 00,250,880 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjcomm.dll
[2009/11/19 15:45:05 | 00,233,392 | ---- | C] ( ) -- C:\Windows\SysNative\lxdjih.exe
[2009/11/19 15:45:05 | 00,097,280 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjcu.dll
[2009/11/19 15:45:05 | 00,067,584 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjcub.dll
[2009/11/19 15:45:05 | 00,065,536 | ---- | C] (Lexmark International) -- C:\Windows\SysNative\lxdjcfg.dll
[2009/11/19 15:45:05 | 00,023,040 | ---- | C] (Lexmark International, Inc.) -- C:\Windows\SysNative\lxdjcur.dll
[2009/11/19 15:45:00 | 00,000,000 | ---D | C] -- C:\Program Files\Lexmark 1400 Series
[2009/11/19 15:44:29 | 00,000,000 | ---D | C] -- C:\lexmark
[2009/11/19 03:00:30 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2009/11/18 13:09:40 | 00,000,000 | ---D | C] -- E:\Documents\My Games
[2009/11/18 13:06:47 | 03,807,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3dx9_27.dll
[2009/11/18 13:06:47 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_27.dll
[2009/11/18 13:02:28 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Games
[2009/11/18 12:56:27 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2009/11/18 12:55:53 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\DAEMON Tools Lite
[2009/11/18 12:55:51 | 00,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2009/11/18 12:51:20 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Alcohol Soft
[2009/11/18 12:47:26 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2009/11/10 12:40:52 | 00,000,000 | ---D | C] -- C:\Users\Calen\Downloads
[2009/11/10 01:04:33 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\PokerStars
[2009/11/10 00:59:26 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\PokerStars
[2009/11/08 20:35:56 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\WinAVI
[2009/11/08 20:35:43 | 00,000,000 | ---D | C] -- C:\Windows\WinAVI Video Converter 9.0
[2009/11/07 17:46:31 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\DeskPins
[2009/11/07 15:27:49 | 00,311,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msv1_0.dll
[2009/11/07 15:27:49 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msv1_0.dll
[2009/11/07 15:26:35 | 28,155,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MRT.exe
[2009/11/07 04:28:34 | 14,629,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2009/11/07 04:28:33 | 11,406,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2009/11/07 04:28:32 | 02,613,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2009/11/07 04:28:32 | 01,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2009/11/07 04:28:32 | 01,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2009/11/07 04:28:32 | 00,982,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgkrnl.sys
[2009/11/07 04:28:31 | 12,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2009/11/07 04:28:31 | 02,868,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2009/11/07 04:28:31 | 00,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2009/11/07 04:28:31 | 00,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2009/11/07 04:28:31 | 00,148,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2009/11/07 04:28:31 | 00,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2009/11/07 04:28:31 | 00,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2009/11/07 04:28:31 | 00,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2009/11/07 04:28:30 | 12,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2009/11/07 04:27:26 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2009/11/07 04:27:26 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msasn1.dll
[2009/11/07 04:26:57 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedsbs.dll
[2009/11/07 04:26:57 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedsbs.dll
[2009/11/07 04:26:26 | 09,272,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtml.dll
[2009/11/07 04:26:26 | 05,958,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtml.dll
[2009/11/06 22:07:25 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\OpenOffice.org
[2009/11/06 21:59:49 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\JRE
[2009/11/06 21:59:44 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
[2009/11/06 21:59:28 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deploytk.dll
[2009/11/06 21:59:28 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2009/11/06 21:59:28 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2009/11/06 21:59:28 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2009/11/06 21:59:20 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2009/11/06 21:52:12 | 00,000,000 | R--D | C] -- E:\Documents\My Stationery
[2009/11/06 21:52:12 | 00,000,000 | ---D | C] -- E:\Documents\Downloads
[2009/11/06 21:32:19 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Foxit
[2009/11/06 21:32:09 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Foxit Software
[2009/11/06 21:16:14 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\skypePM
[2009/11/06 21:12:29 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\uTorrent
[2009/11/06 21:12:03 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\uTorrent
[2009/11/06 21:09:03 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Skype
[2009/11/06 21:08:56 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2009/11/06 21:08:54 | 00,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2009/11/06 21:08:52 | 00,000,000 | ---D | C] -- C:\ProgramData\Skype
[2009/11/06 21:06:57 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\PokerStove
[2009/11/06 20:51:19 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\FullTiltPoker
[2009/11/06 20:44:45 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\WindSolutions
[2009/11/06 20:44:41 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\WindSolutions
[2009/11/06 20:44:41 | 00,000,000 | ---D | C] -- C:\ProgramData\WindSolutions
[2009/11/06 20:43:48 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Full Tilt Poker
[2009/11/06 20:37:26 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\SpadeIt
[2009/11/06 20:35:35 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Macromedia
[2009/11/06 20:35:35 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Adobe
[2009/11/06 20:35:24 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2009/11/06 20:27:12 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\Evernote
[2009/11/06 20:27:02 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Evernote
[2009/11/06 20:26:35 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\InstallShield
[2009/11/06 20:07:09 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2009/11/06 20:06:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft
[2009/11/06 20:06:32 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\microsoft
[2009/11/06 20:06:15 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live SkyDrive
[2009/11/06 20:06:03 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2009/11/06 20:05:44 | 00,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2009/11/06 20:02:30 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2009/11/06 19:06:36 | 00,000,000 | ---D | C] -- C:\ProgramData\XHEO INC
[2009/11/06 19:06:27 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\IsolatedStorage
[2009/11/06 17:17:52 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\Google
[2009/11/06 17:17:30 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\Apps
[2009/11/06 17:17:29 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\Deployment
[2009/11/06 17:17:03 | 00,226,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MpSigStub.exe
[2009/11/06 17:15:38 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Antimalware
[2009/11/06 17:15:35 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2009/11/06 17:15:33 | 00,000,000 | -HSD | C] -- C:\Windows\Installer
[2009/11/06 17:11:03 | 00,000,000 | ---D | C] -- C:\Windows\pss
[2009/11/06 17:10:18 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Creative
[2009/11/06 17:10:17 | 00,000,000 | -H-D | C] -- C:\Program Files (x86)\Creative Installation Information
[2009/11/06 17:10:15 | 02,873,820 | ---- | C] (Creative) -- C:\Windows\SysWow64\Sens_oal.dll
[2009/11/06 17:10:15 | 01,908,736 | ---- | C] (Creative) -- C:\Windows\SysNative\Sens_oal.dll
[2009/11/06 17:10:15 | 00,419,840 | ---- | C] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2009/11/06 17:10:15 | 00,413,696 | ---- | C] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2009/11/06 17:10:15 | 00,133,632 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2009/11/06 17:10:15 | 00,110,592 | ---- | C] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2009/11/06 17:10:00 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Creative Labs Shared
[2009/11/06 17:09:54 | 00,000,000 | ---D | C] -- C:\Program Files\Creative
[2009/11/06 17:09:52 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Creative
[2009/11/06 17:09:36 | 00,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2009/11/06 17:09:34 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2009/11/06 17:06:48 | 00,000,000 | ---D | C] -- C:\ProgramData\Creative
[2009/11/06 17:05:59 | 00,000,000 | R--D | C] -- C:\Users\Calen\Searches
[2009/11/06 17:05:51 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Identities
[2009/11/06 17:05:50 | 00,000,000 | R--D | C] -- C:\Users\Calen\Contacts
[2009/11/06 17:05:49 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\VirtualStore
[2009/11/06 17:05:42 | 00,000,000 | --SD | C] -- C:\Users\Calen\AppData\Roaming\Microsoft
[2009/11/06 17:05:42 | 00,000,000 | R--D | C] -- C:\Users\Calen\Saved Games
[2009/11/06 17:05:42 | 00,000,000 | R--D | C] -- C:\Users\Calen\Links
[2009/11/06 17:05:42 | 00,000,000 | R--D | C] -- C:\Users\Calen\Favorites
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\AppData\Local\Temporary Internet Files
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\Templates
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\Start Menu
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\SendTo
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\Recent
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\PrintHood
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\NetHood
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\My Documents
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\Local Settings
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\AppData\Local\History
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\Cookies
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\Application Data
[2009/11/06 17:05:42 | 00,000,000 | -HSD | C] -- C:\Users\Calen\AppData\Local\Application Data
[2009/11/06 17:05:42 | 00,000,000 | -H-D | C] -- C:\Users\Calen\AppData
[2009/11/06 17:05:42 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\Temp
[2009/11/06 17:05:42 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Local\Microsoft
[2009/11/06 17:05:42 | 00,000,000 | ---D | C] -- C:\Users\Calen\AppData\Roaming\Media Center Programs
[2009/11/06 17:05:42 | 00,000,000 | ---D | C] -- C:\Users\Calen\Desktop
[2009/11/06 17:05:31 | 00,000,000 | -HSD | C] -- C:\Recovery
[2009/11/06 17:05:23 | 00,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2009/11/06 17:00:34 | 00,000,000 | ---D | C] -- C:\Windows\Prefetch
[2009/11/06 17:00:06 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009/11/06 16:59:10 | 00,000,000 | ---D | C] -- C:\Windows\Panther
[2009/11/06 16:58:57 | 00,000,000 | -HSD | C] -- C:\Boot
[2009/10/29 11:41:36 | 00,046,112 | ---- | C] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\tbhsd.sys
[2009/10/29 11:41:14 | 00,031,264 | ---- | C] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\rrnetcap.sys
[2009/10/28 21:46:00 | 00,000,000 | ---D | C] -- E:\Documents\Mikogo

========== Files - Modified Within 30 Days ==========

[2009/11/27 12:35:50 | 01,572,864 | -HS- | M] () -- C:\Users\Calen\NTUSER.DAT
[2009/11/27 12:24:04 | 00,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1583458848-3891259733-4100686818-1001UA.job
[2009/11/27 12:23:54 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/11/27 00:25:20 | 00,713,888 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2009/11/27 00:25:20 | 00,615,122 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2009/11/27 00:25:20 | 00,103,496 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2009/11/27 00:11:05 | 00,001,117 | ---- | M] () -- C:\Users\Public\Desktop\Tunebite 7.lnk
[2009/11/26 23:11:55 | 00,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009/11/26 23:11:55 | 00,014,016 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009/11/26 23:04:42 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/11/26 23:04:35 | 16,094,24896 | -HS- | M] () -- C:\hiberfil.sys
[2009/11/26 22:15:12 | 02,364,574 | -H-- | M] () -- C:\Users\Calen\AppData\Local\IconCache.db
[2009/11/26 17:22:19 | 00,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1583458848-3891259733-4100686818-1001Core.job
[2009/11/26 15:17:01 | 00,181,760 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaws.exe
[2009/11/26 15:17:01 | 00,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\javaw.exe
[2009/11/26 15:17:01 | 00,165,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\java.exe
[2009/11/26 15:17:00 | 00,455,680 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysNative\deploytk.dll
[2009/11/26 14:53:52 | 00,000,868 | ---- | M] () -- C:\Windows\SysWow64\tmp.reg
[2009/11/26 14:53:52 | 00,000,691 | ---- | M] () -- C:\Users\Calen\AppData\Roaming\GetValue.vbs
[2009/11/26 14:53:52 | 00,000,035 | ---- | M] () -- C:\Users\Calen\AppData\Roaming\SetValue.bat
[2009/11/26 14:51:43 | 00,328,048 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2009/11/26 01:03:52 | 00,000,913 | ---- | M] () -- C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\5822566.lnk
[2009/11/25 22:40:21 | 00,072,960 | ---- | M] () -- C:\Users\Calen\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/11/24 16:10:30 | 00,001,198 | ---- | M] () -- C:\Users\Public\Desktop\StoxEV.exe.lnk
[2009/11/24 00:04:35 | 00,067,863 | ---- | M] () -- C:\Windows\SysWow64\x264vfw-uninstall.exe
[2009/11/19 15:46:11 | 00,065,079 | ---- | M] () -- C:\Windows\SysNative\LexFiles.ulf
[2009/11/18 22:26:52 | 00,001,211 | ---- | M] () -- C:\Windows\PartyGrabber.ini
[2009/11/18 12:56:45 | 00,834,544 | ---- | M] () -- C:\Windows\SysNative\drivers\sptd.sys
[2009/11/13 01:55:37 | 00,004,805 | ---- | M] () -- E:\Desktop\SSNLHE_1_0 - Shortcut.lnk
[2009/11/10 02:12:10 | 00,000,000 | ---- | M] () -- C:\Windows\HMHud.INI
[2009/11/07 17:46:31 | 00,001,047 | ---- | M] () -- C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeskPins.lnk
[2009/11/06 22:07:36 | 00,001,239 | ---- | M] () -- C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk
[2009/11/06 21:59:23 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2009/11/06 21:59:22 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deploytk.dll
[2009/11/06 21:59:22 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2009/11/06 21:59:22 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2009/11/06 21:16:15 | 00,000,056 | -H-- | M] () -- C:\ProgramData\ezsidmv.dat
[2009/11/06 21:06:58 | 00,000,967 | ---- | M] () -- E:\Desktop\PokerStove.lnk
[2009/11/06 17:10:15 | 00,419,840 | ---- | M] (Creative Labs) -- C:\Windows\SysNative\wrap_oal.dll
[2009/11/06 17:10:15 | 00,413,696 | ---- | M] (Creative Labs) -- C:\Windows\SysWow64\wrap_oal.dll
[2009/11/06 17:10:15 | 00,133,632 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysNative\OpenAL32.dll
[2009/11/06 17:10:15 | 00,110,592 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\SysWow64\OpenAL32.dll
[2009/11/06 17:08:13 | 00,524,288 | -HS- | M] () -- C:\Users\Calen\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2009/11/06 17:08:13 | 00,524,288 | -HS- | M] () -- C:\Users\Calen\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2009/11/06 17:08:13 | 00,065,536 | -HS- | M] () -- C:\Users\Calen\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2009/11/06 17:07:52 | 00,203,372 | RHS- | M] () -- C:\grldr
[2009/11/06 17:07:52 | 00,000,012 | RHS- | M] () -- C:\win7.ld
[2009/11/06 17:06:44 | 00,000,159 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2009/11/06 17:05:42 | 00,000,020 | -HS- | M] () -- C:\Users\Calen\ntuser.ini
[2009/11/06 17:02:41 | 00,042,045 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2009/11/06 17:02:41 | 00,042,045 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2009/11/06 17:01:08 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009/11/06 16:58:58 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009/11/06 16:46:46 | 00,026,801 | ---- | M] () -- E:\Documents\bookmarks.html
[2009/11/05 10:05:58 | 28,155,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MRT.exe
[2009/11/02 20:42:06 | 00,226,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\MpSigStub.exe
[2009/10/29 11:41:36 | 00,046,112 | ---- | M] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\tbhsd.sys
[2009/10/29 11:41:14 | 00,031,264 | ---- | M] (RapidSolution Software AG) -- C:\Windows\SysNative\drivers\rrnetcap.sys
[2009/10/28 23:48:16 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\tzres.dll
[2009/10/28 23:22:37 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\tzres.dll

========== Files Created - No Company Name ==========

[2009/11/27 00:11:05 | 00,001,117 | ---- | C] () -- C:\Users\Public\Desktop\Tunebite 7.lnk
[2009/11/26 14:53:52 | 00,000,868 | ---- | C] () -- C:\Windows\SysWow64\tmp.reg
[2009/11/26 14:53:52 | 00,000,691 | ---- | C] () -- C:\Users\Calen\AppData\Roaming\GetValue.vbs
[2009/11/26 14:53:52 | 00,000,035 | ---- | C] () -- C:\Users\Calen\AppData\Roaming\SetValue.bat
[2009/11/26 14:53:39 | 00,075,776 | ---- | C] () -- C:\Windows\SysWow64\WS2Fix.exe
[2009/11/26 14:53:39 | 00,051,200 | ---- | C] () -- C:\Windows\SysWow64\dumphive.exe
[2009/11/26 14:53:38 | 00,040,960 | ---- | C] () -- C:\Windows\SysWow64\swsc.exe
[2009/11/26 01:03:52 | 00,000,913 | ---- | C] () -- C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\5822566.lnk
[2009/11/24 16:10:30 | 00,001,198 | ---- | C] () -- C:\Users\Public\Desktop\StoxEV.exe.lnk
[2009/11/24 00:04:35 | 00,067,863 | ---- | C] () -- C:\Windows\SysWow64\x264vfw-uninstall.exe
[2009/11/19 15:45:19 | 00,722,917 | ---- | C] () -- C:\Windows\SysWow64\lxdjhelp.chm
[2009/11/19 15:45:19 | 00,385,024 | ---- | C] () -- C:\Windows\SysWow64\lxdjcomx.dll
[2009/11/19 15:45:19 | 00,286,720 | ---- | C] () -- C:\Windows\SysWow64\lxdjinst.dll
[2009/11/19 15:45:18 | 00,001,828 | ---- | C] () -- C:\Windows\SysWow64\lxdj.loc
[2009/11/19 15:45:06 | 00,209,408 | ---- | C] () -- C:\Windows\SysNative\lxdjinst.dll
[2009/11/19 15:45:05 | 00,722,917 | ---- | C] () -- C:\Windows\SysNative\lxdjhelp.chm
[2009/11/19 15:45:05 | 00,298,496 | ---- | C] () -- C:\Windows\SysNative\lxdjgrd.dll
[2009/11/19 15:45:05 | 00,065,079 | ---- | C] () -- C:\Windows\SysNative\LexFiles.ulf
[2009/11/19 15:45:05 | 00,001,828 | ---- | C] () -- C:\Windows\SysNative\lxdj.loc
[2009/11/18 12:49:01 | 00,834,544 | ---- | C] () -- C:\Windows\SysNative\drivers\sptd.sys
[2009/11/13 01:55:37 | 00,004,805 | ---- | C] () -- E:\Desktop\SSNLHE_1_0 - Shortcut.lnk
[2009/11/10 02:12:10 | 00,000,000 | ---- | C] () -- C:\Windows\HMHud.INI
[2009/11/07 17:46:31 | 00,001,047 | ---- | C] () -- C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeskPins.lnk
[2009/11/06 22:07:36 | 00,001,239 | ---- | C] () -- C:\Users\Calen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk
[2009/11/06 21:51:15 | 00,000,967 | ---- | C] () -- E:\Desktop\PokerStove.lnk
[2009/11/06 21:16:15 | 00,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/11/06 20:37:35 | 00,001,211 | ---- | C] () -- C:\Windows\PartyGrabber.ini
[2009/11/06 17:17:54 | 00,000,908 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1583458848-3891259733-4100686818-1001UA.job
[2009/11/06 17:17:53 | 00,000,856 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1583458848-3891259733-4100686818-1001Core.job
[2009/11/06 17:10:46 | 00,007,062 | ---- | C] () -- C:\Windows\SysWow64\audiopid.vxd
[2009/11/06 17:07:52 | 00,203,372 | RHS- | C] () -- C:\grldr
[2009/11/06 17:07:52 | 00,000,012 | RHS- | C] () -- C:\win7.ld
[2009/11/06 17:06:44 | 00,190,976 | ---- | C] () -- C:\Windows\SysNative\APOMgr64.DLL
[2009/11/06 17:06:44 | 00,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2009/11/06 17:06:44 | 00,089,088 | ---- | C] () -- C:\Windows\SysNative\CmdRtr64.DLL
[2009/11/06 17:06:44 | 00,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2009/11/06 17:06:44 | 00,000,159 | RH-- | C] () -- C:\Windows\ctfile.rfc
[2009/11/06 17:05:42 | 01,572,864 | -HS- | C] () -- C:\Users\Calen\NTUSER.DAT
[2009/11/06 17:05:42 | 00,524,288 | -HS- | C] () -- C:\Users\Calen\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[2009/11/06 17:05:42 | 00,524,288 | -HS- | C] () -- C:\Users\Calen\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[2009/11/06 17:05:42 | 00,065,536 | -HS- | C] () -- C:\Users\Calen\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[2009/11/06 17:05:42 | 00,000,020 | -HS- | C] () -- C:\Users\Calen\ntuser.ini
[2009/11/06 17:01:08 | 00,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2009/11/06 17:00:06 | 16,094,24896 | -HS- | C] () -- C:\hiberfil.sys
[2009/11/06 16:58:58 | 00,008,192 | RHS- | C] () -- C:\BOOTSECT.BAK
[2009/11/06 16:58:57 | 00,383,562 | RHS- | C] () -- C:\bootmgr
[2009/11/06 16:46:46 | 00,026,801 | ---- | C] () -- E:\Documents\bookmarks.html
[2009/07/28 22:35:54 | 02,378,752 | ---- | C] () -- C:\Windows\SysWow64\x264vfw.dll
[2009/07/13 15:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 13:03:59 | 00,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009/03/02 11:33:32 | 00,067,584 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2009/03/02 11:33:32 | 00,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest
[2008/11/13 06:07:24 | 00,002,177 | ---- | C] () -- C:\Windows\P17EP.ini
< End of report >

calenl
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-11-26
OS OS : Windows 7 Ultimate
Points Points : 25753
# Likes # Likes : 0

View user profile

Back to top Go down

Re: renos.js will not go away

Post by calenl on Fri Nov 27, 2009 8:41 pm

OTL Extras logfile created on: 11/27/2009 12:34:58 - Run 1
OTL by OldTimer - Version 3.1.11.0 Folder = E:\Downloads
64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.16 Gb Available Physical Memory | 58.15% Memory free
4.00 Gb Paging File | 2.25 Gb Available in Paging File | 56.26% Paging File free
Paging file location(s): f:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 58.59 Gb Total Space | 41.48 Gb Free Space | 70.80% Space Free | Partition Type: NTFS
Drive D: | 102.54 Gb Total Space | 100.75 Gb Free Space | 98.26% Space Free | Partition Type: NTFS
Drive E: | 527.34 Gb Total Space | 169.17 Gb Free Space | 32.08% Space Free | Partition Type: NTFS
Drive F: | 10.23 Gb Total Space | 8.16 Gb Free Space | 79.70% Space Free | Partition Type: NTFS
Drive G: | 195.55 Gb Total Space | 195.46 Gb Free Space | 99.95% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive J: | 1.86 Gb Total Space | 1.83 Gb Free Space | 98.48% Space Free | Partition Type: FAT

Computer Name: CALEN-PC
Current User Name: Calen
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl[@ = cplfile] -- C:\Windows\SysNative\control.exe (Microsoft Corporation)
.hlp[@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta[@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html[@ = htmlfile] -- C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf[@ = inffile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.ini[@ = inifile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
.js[@ = JSFile] -- C:\Windows\SysNative\Wscript.exe (Microsoft Corporation)
.jse[@ = JSEFile] -- C:\Windows\SysNative\Wscript.exe (Microsoft Corporation)
.reg[@ = regfile] -- C:\Windows\regedit.exe (Microsoft Corporation)
.txt[@ = txtfile] -- C:\Windows\SysNative\NOTEPAD.EXE (Microsoft Corporation)
.vbe[@ = VBEFile] -- C:\Windows\SysNative\Wscript.exe (Microsoft Corporation)
.vbs[@ = VBSFile] -- C:\Windows\SysNative\Wscript.exe (Microsoft Corporation)
.wsf[@ = WSFFile] -- C:\Windows\SysNative\Wscript.exe (Microsoft Corporation)
.wsh[@ = WSHFile] -- C:\Windows\SysNative\Wscript.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.hta [@ = htafile] -- C:\Windows\SysWOW64\mshta.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation)
.inf [@ = inffile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.ini [@ = inifile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.url [@ = InternetShortcut] -- C:\Windows\System32\ieframe.DLL (Microsoft Corporation)
.js [@ = JSFile] -- C:\Windows\SysWow64\Wscript.exe (Microsoft Corporation)
.jse [@ = JSEFile] -- C:\Windows\SysWow64\Wscript.exe (Microsoft Corporation)
.reg [@ = regfile] -- C:\Windows\SysWow64\regedit.exe (Microsoft Corporation)
.txt [@ = txtfile] -- C:\Windows\SysWow64\NOTEPAD.EXE (Microsoft Corporation)
.vbe [@ = VBEFile] -- C:\Windows\SysWow64\Wscript.exe (Microsoft Corporation)
.vbs [@ = VBSFile] -- C:\Windows\SysWow64\Wscript.exe (Microsoft Corporation)
.wsf [@ = WSFFile] -- C:\Windows\SysWow64\Wscript.exe (Microsoft Corporation)
.wsh [@ = WSHFile] -- C:\Windows\SysWow64\Wscript.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = ChromeHTML] -- C:\Users\Calen\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %* File not found
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 File not found
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- C:\Windows\System32\Wscript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\Wscript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
batfile [open] -- "%1" %* File not found
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
chm.file [open] -- "%SystemRoot%\hh.exe" %1 File not found
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %* File not found
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
comfile [open] -- "%1" %* File not found
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- C:\Windows\SysWOW64\mshta.exe "%1" %* (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
inffile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inffile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
inifile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
inifile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
jsfile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsfile [open] -- C:\Windows\System32\Wscript.exe "%1" %* (Microsoft Corporation)
jsfile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
jsefile [edit] -- C:\Windows\System32\Notepad.exe %1 (Microsoft Corporation)
jsefile [open] -- C:\Windows\System32\Wscript.exe "%1" %* (Microsoft Corporation)
jsefile [print] -- C:\Windows\System32\Notepad.exe /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [edit] -- %SystemRoot%\system32\notepad.exe "%1" (Microsoft Corporation)
regfile [open] -- regedit.exe "%1" (Microsoft Corporation)
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\notepad.exe /p "%1" (Microsoft Corporation)
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Microsoft Corporation)
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Microsoft Corporation)
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Microsoft Corporation)
vbefile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbefile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
vbefile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
vbsfile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
vbsfile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
vbsfile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wsffile [edit] -- "%SystemRoot%\System32\Notepad.exe" %1 (Microsoft Corporation)
wsffile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
wsffile [print] -- "%SystemRoot%\System32\Notepad.exe" /p %1 (Microsoft Corporation)
wshfile [open] -- "%SystemRoot%\System32\Wscript.exe" "%1" %* (Microsoft Corporation)
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{23170F69-40C1-2702-0465-000001000000}" = 7-Zip 4.65 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86416017FF}" = Java(TM) 6 Update 17 (64-bit)
"{59B4B93D-FC47-4F16-AE8E-CD103F022654}" = Microsoft Security Essentials
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A0A77CDC-2419-4D5C-AD2C-E09E5926B806}" = Microsoft Antimalware
"Lexmark 1400 Series" = Lexmark 1400 Series
"Microsoft Security Essentials" = Microsoft Security Essentials

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0CDD1212-BCAD-45A5-B9FC-F8F7807CB72F}" = Tunebite
"{0D025345-1033-4F35-A5CE-68CDCDE6CC03}" = Evernote
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java(TM) 6 Update 16
"{42DE940E-8037-4266-9FBF-5A3AEDA39E96}" = Holdem Manager
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{6D0C6BE4-F674-43D2-96BC-3509345108C9}_is1" = PokerStove version 1.23
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7AC0886A-CE48-4EB6-9CC3-4C56D427F2E1}" = Cisco Network Magic
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{9C450606-ED24-4958-92BA-B8940C99D441}" = PixiePack Codec Pack
"{CADDE354-C78C-46CB-A006-E2B178EFC271}" = Rise Of Legends
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}" = Full Tilt Poker
"{DD723CD5-8486-4125-A89C-022E82134B5E}" = StoxEVtrial
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E6B87DC4-2B3D-4483-ADFF-E483BF718991}" = OpenOffice.org 3.1
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{FC467B61-F890-4E29-8585-365DAB66F13E}" = Pure Networks Platform
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ALchemy" = Creative ALchemy
"AudioCS" = Creative Audio Control Panel
"CopyTrans Suite" = CopyTrans Suite Remove Only
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"Creative Sound Blaster Properties x64 Edition" = Creative Sound Blaster Properties x64 Edition
"DeskPins" = DeskPins (remove only)
"Foxit Reader" = Foxit Reader
"InstallShield_{CADDE354-C78C-46CB-A006-E2B178EFC271}" = Rise Of Legends
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5)
"Network MagicUninstall" = Network Magic
"PokerStars" = PokerStars
"PostgreSQL 8.4" = PostgreSQL 8.4
"TuningWizard 1.3-2" = EnterpriseDB TuningWizard 1.3
"uTorrent" = µTorrent
"WinLiveSuite_Wave3" = Windows Live Essentials
"x264vfw" = x264vfw - H.264/MPEG-4 AVC codec (remove only)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"SpadeEye" = SpadeEye

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11/25/2009 05:49:39 | Computer Name = Calen-PC | Source = Application Error | ID = 1000
Description = Faulting application name: HandBrakeCLI.exe, version: 0.0.0.0, time
stamp: 0x4b0b0037 Faulting module name: HandBrakeCLI.exe, version: 0.0.0.0, time
stamp: 0x4b0b0037 Exception code: 0xc0000005 Fault offset: 0x0002b6fb Faulting process
id: 0xef0 Faulting application start time: 0x01ca6db46f70b167 Faulting application
path: C:\Program Files (x86)\Handbrake\HandBrakeCLI.exe Faulting module path: C:\Program
Files (x86)\Handbrake\HandBrakeCLI.exe Report Id: d8b6ce18-d9a7-11de-9c8c-001617d82e98

Error - 11/25/2009 17:10:46 | Computer Name = Calen-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\SpadeIt\SpadeEye\imageformats\qjpegd1.dll.Manifest".
Dependent
Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 11/25/2009 17:10:46 | Computer Name = Calen-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\SpadeIt\SpadeEye\imageformats\qmngd1.dll.Manifest".
Dependent
Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 11/25/2009 17:10:46 | Computer Name = Calen-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\SpadeIt\SpadeEye\imageformats\qsvgd1.dll.Manifest".
Dependent
Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 11/25/2009 23:27:43 | Computer Name = Calen-PC | Source = Application Hang | ID = 1002
Description = The program lxdjpswx.exe version 4.0.128.0 stopped interacting with
Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: fd0 Start
Time: 01ca6e4819bcc3d6 Termination Time: 32 Application Path: C:\Windows\system32\spool\DRIVERS\x64\3\lxdjpswx.exe

Report
Id: a5794231-da3b-11de-bb5a-001617d82e98

Error - 11/26/2009 05:12:26 | Computer Name = Calen-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mDSResponder.exe, version: 1.6.0.2, time
stamp: 0x1329bc01 Faulting module name: mDSResponder.exe, version: 1.6.0.2, time
stamp: 0x1329bc01 Exception code: 0xc0000005 Fault offset: 0x0000811c Faulting process
id: 0x6fc Faulting application start time: 0x01ca6e78919fc13f Faulting application
path: C:\Users\Calen\AppData\Local\Temp\mDSResponder.exe Faulting module path: C:\Users\Calen\AppData\Local\Temp\mDSResponder.exe
Report
Id: cfcdcad1-da6b-11de-bb5a-001617d82e98

Error - 11/26/2009 05:12:33 | Computer Name = Calen-PC | Source = Application Error | ID = 1000
Description = Faulting application name: wmpscnfg.exe, version: 1.6.0.2, time stamp:
0x4b0c4615 Faulting module name: wmpscnfg.exe, version: 1.6.0.2, time stamp: 0x4b0c4615
Exception
code: 0xc0000005 Fault offset: 0x000010fa Faulting process id: 0xc40 Faulting application
start time: 0x01ca6e7895e28516 Faulting application path: C:\Users\Calen\AppData\Local\Temp\wmpscnfg.exe
Faulting
module path: C:\Users\Calen\AppData\Local\Temp\wmpscnfg.exe Report Id: d4583b5a-da6b-11de-bb5a-001617d82e98

Error - 11/27/2009 05:08:39 | Computer Name = Calen-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\SpadeIt\SpadeEye\imageformats\qjpegd1.dll.Manifest".
Dependent
Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 11/27/2009 05:08:39 | Computer Name = Calen-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\SpadeIt\SpadeEye\imageformats\qmngd1.dll.Manifest".
Dependent
Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 11/27/2009 05:08:39 | Computer Name = Calen-PC | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "c:\program files (x86)\SpadeIt\SpadeEye\imageformats\qsvgd1.dll.Manifest".
Dependent
Assembly Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

[ System Events ]
Error - 11/26/2009 18:53:29 | Computer Name = Calen-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 11/26/2009 18:53:29 | Computer Name = Calen-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 11/26/2009 18:53:29 | Computer Name = Calen-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 11/26/2009 18:53:29 | Computer Name = Calen-PC | Source = Service Control Manager | ID = 7001
Description = The Network List Service service depends on the Network Location Awareness
service which failed to start because of the following error: %%1068

Error - 11/26/2009 22:26:04 | Computer Name = Calen-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 6:24:01 PM on ?11/?26/?2009 was unexpected.

Error - 11/27/2009 00:14:46 | Computer Name = Calen-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 7:01:52 PM on ?11/?26/?2009 was unexpected.

Error - 11/27/2009 00:24:59 | Computer Name = Calen-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 8:23:40 PM on ?11/?26/?2009 was unexpected.

Error - 11/27/2009 04:22:17 | Computer Name = Calen-PC | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk4\DR4, has a bad block.

Error - 11/27/2009 04:25:48 | Computer Name = Calen-PC | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk4\DR6, has a bad block.

Error - 11/27/2009 16:23:53 | Computer Name = Calen-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the lmhosts service.


< End of report >

calenl
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-11-26
OS OS : Windows 7 Ultimate
Points Points : 25753
# Likes # Likes : 0

View user profile

Back to top Go down

Re: renos.js will not go away

Post by Belahzur on Fri Nov 27, 2009 11:05 pm

Hello.

  • Click Start >> Control Panel.
  • Under the Programs click Uninstall a Program
  • Highlight Java(TM) 6 Update 16
  • Click on the Uninstall/Change button at the top.
How is the machine now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245059
# Likes # Likes : 1

View user profile

Back to top Go down

Re: renos.js will not go away

Post by calenl on Sat Nov 28, 2009 1:38 am

Done. Computer is running well now. No more warnings. Thank you very much.

calenl
Novice
Novice

Posts Posts : 7
Joined Joined : 2009-11-26
OS OS : Windows 7 Ultimate
Points Points : 25753
# Likes # Likes : 0

View user profile

Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum