help help my computer is hacked!

Solved
Thread Status:
Not open for further replies.
  1. Sneakyone

    Sneakyone Well-Known Member Elite Member

    Joined:
    Oct 28, 2009
    Posts:
    1,968
    Likes Received:
    75
    Location:
    Alabama, USA
    Local time:
    04:51
    My System
    Loading...

    my computer is defiently hacked and he accesed my webcam on my labtop and is sending my messages on my laptop so I disconnected the internet and now I can't connect back...I have logs and I will transfer them to my desktop right now..

    Logfile of HijackThis v1.99.0
    Scan saved at 5:36:49 PM, on 12/24/2009
    Platform: Unknown Windows (WinNT 6.01.3504)
    MSIE: Internet Explorer v8.00 (8.00.7600.16385)
    Running processes:
    C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files (x86)\Internet Download Manager\IDMan.exe
    C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe
    C:\Program Files (x86)\AVG\AVG9\avgtray.exe
    C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
    C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
    C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
    C:\Users\Owner\Desktop\HijackThis.exe
    C:\windows\SysWOW64\DllHost.exe
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll
    O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
    O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: kikin Plugin - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files (x86)\kikin\ie_kikin.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll
    O4 - HKLM\..\Run: [TUSBSleepChargeSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe
    O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe" UNATTENDED
    O4 - HKLM\..\Run: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
    O4 - HKLM\..\Run: [TWebCamera] "%ProgramFiles%\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
    O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~2\AVG\AVG9\avgtray.exe
    O4 - HKCU\..\Run: [MyTOSHIBA] "C:\Program Files (x86)\TOSHIBA\My Toshiba\MyToshiba.exe" /AUTO
    O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
    O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
    O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
    O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files (x86)\kikin\ie_kikin.dll
    O9 - Extra 'Tools' menuitem: My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files (x86)\kikin\ie_kikin.dll
    O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
    O11 - Options group: [INTERNATIONAL] International
    O13 - Gopher Prefix:
    O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
    O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} (System Requirements Lab) - http://intel-drv-cdn.systemrequirementslab.com/multi/bin/sysreqlab_srlx.cab
    O16 - DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} (System Requirements Lab Class) - http://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab
    O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader2.cab
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~2\WIC4A1~1\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
    O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 - Unknown - C:\windows\System32\alg.exe (file missing)
    O23 - Service: AVG WatchDog - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
    O23 - Service: ConfigFree WiMAX Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
    O23 - Service: ConfigFree Gadget Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
    O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 - Unknown - C:\windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 - Unknown - C:\windows\system32\fxssvc.exe (file missing)
    O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
    O23 - Service: Google Software Updater - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: @keyiso.dll,-100 - Unknown - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 - Unknown - C:\windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 - Unknown - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
    O23 - Service: PnkBstrA - Unknown - C:\windows\system32\PnkBstrA.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 - Unknown - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 - Unknown - %windir%\system32\svchost.exe (file missing)
    O23 - Service: Remote Packet Capture Protocol v.0 (experimental) - Unknown - %ProgramFiles(x86)%\WinPcap\rpcapd.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 - Unknown - C:\windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 - Unknown - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 - Unknown - %windir%\system32\svchost.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 - Unknown - C:\windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 - Unknown - C:\windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 - Unknown - C:\windows\system32\sppsvc.exe (file missing)
    O23 - Service: TOSHIBA HDD Protection - Unknown - C:\windows\system32\ThpSrv.exe (file missing)
    O23 - Service: TMachInfo - TOSHIBA Corporation - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
    O23 - Service: TOSHIBA Optical Disc Drive Service - Unknown - C:\Windows\system32\TODDSrv.exe (file missing)
    O23 - Service: TOSHIBA Power Saver - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
    O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
    O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
    O23 - Service: TPCH Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 - Unknown - C:\windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 - Unknown - C:\windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 - Unknown - C:\windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 - Unknown - C:\windows\system32\vssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 - Unknown - C:\windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 - Unknown - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 - Unknown - %PROGRAMFILES%\Windows Media Player\wmpnetwk.exe (file missing)

    Malwarebytes' Anti-Malware 1.42
    Database version: 3399
    Windows 6.1.7600
    Internet Explorer 8.0.7600.16385
    12/24/2009 6:17:15 PM
    mbam-log-2009-12-24 (18-17-15).txt
    Scan type: Full Scan (C:\|)
    Objects scanned: 228077
    Time elapsed: 42 minute(s), 59 second(s)
    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 6
    Memory Processes Infected:
    (No malicious items detected)
    Memory Modules Infected:
    (No malicious items detected)
    Registry Keys Infected:
    (No malicious items detected)
    Registry Values Infected:
    (No malicious items detected)
    Registry Data Items Infected:
    (No malicious items detected)
    Folders Infected:
    (No malicious items detected)
    Files Infected:
    C:\Users\Owner\AppData\Local\Temp\Rar$EX00.575\Bitdefender_2010_All_Products_Patch.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\Owner\AppData\Local\Temp\Rar$EX00.606\Bitdefender_2010_All_Products_Patch.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\Owner\AppData\Local\Temp\Rar$EX00.700\Bitdefender_2010_All_Products_Patch.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Users\Owner\AppData\Roaming\logs.dat (Bifrose.Trace) -> Quarantined and deleted successfully.
    C:\Users\Owner\AppData\Local\Temp\UuU.uUu (Malware.Trace) -> Quarantined and deleted successfully.
    C:\Users\Owner\AppData\Local\Temp\XxX.xXx (Malware.Trace) -> Quarantined and deleted successfully.

    OTL logfile created on: 12/24/2009 5:37:56 PM - Run 2
    OTL by OldTimer - Version 3.1.19.0 Folder = C:\Users\Owner\Desktop\My stuff\Virus Artillery
    64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7600.16385)
    Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

    4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 69.00% Memory free
    8.00 Gb Paging File | 6.00 Gb Available in Paging File | 84.00% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 453.62 Gb Total Space | 405.39 Gb Free Space | 89.37% Space Free | Partition Type: NTFS
    D: Drive not present or media not loaded
    E: Drive not present or media not loaded
    F: Drive not present or media not loaded
    G: Drive not present or media not loaded
    H: Drive not present or media not loaded
    I: Drive not present or media not loaded

    Computer Name: OWNER-PC
    Current User Name: Owner
    Logged in as Administrator.

    Current Boot Mode: Normal
    Scan Mode: Current user
    Include 64bit Scans
    Company Name Whitelist: Off
    Skip Microsoft Files: Off
    File Age = 30 Days
    Output = Standard

    ========== Processes (SafeList) ==========

    PRC - [2009/12/24 00:32:24 | 02,033,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgtray.exe
    PRC - [2009/12/24 00:25:02 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe
    PRC - [2009/12/20 17:34:03 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\My stuff\Virus Artillery\OTL.exe
    PRC - [2009/12/09 20:27:01 | 00,066,872 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
    PRC - [2009/12/03 16:14:00 | 01,394,000 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
    PRC - [2009/11/11 08:48:11 | 03,171,760 | ---- | M] (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\IDMan.exe
    PRC - [2009/10/15 03:51:51 | 00,263,600 | ---- | M] (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
    PRC - [2009/09/02 21:42:06 | 00,039,408 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    PRC - [2009/07/28 22:26:42 | 00,062,848 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
    PRC - [2009/07/26 17:44:34 | 03,883,856 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    PRC - [2009/07/14 21:10:30 | 00,042,368 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
    PRC - [2009/07/13 17:24:00 | 00,304,496 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
    PRC - [2009/07/02 12:05:00 | 00,252,288 | ---- | M] (TOSHIBA) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe
    PRC - [2009/03/10 20:51:20 | 00,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe


    ========== Modules (SafeList) ==========

    MOD - [2009/12/20 17:34:03 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\My stuff\Virus Artillery\OTL.exe
    MOD - [2009/07/13 19:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
    MOD - [2009/03/26 09:35:39 | 00,034,224 | ---- | M] (Tonec Inc.) -- C:\Program Files (x86)\Internet Download Manager\idmmkb.dll


    ========== Win32 Services (SafeList) ==========

    SRV:64bit: - [2009/08/11 18:10:48 | 00,252,272 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)
    SRV:64bit: - [2009/08/05 16:20:12 | 00,488,800 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)
    SRV:64bit: - [2009/08/04 13:15:06 | 00,826,224 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)
    SRV:64bit: - [2009/08/03 19:17:56 | 00,137,560 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)
    SRV:64bit: - [2009/07/28 16:48:06 | 00,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)
    SRV:64bit: - [2009/07/13 19:41:59 | 00,229,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc)
    SRV:64bit: - [2009/07/13 19:41:56 | 00,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
    SRV:64bit: - [2009/07/13 19:41:56 | 00,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power)
    SRV:64bit: - [2009/07/13 19:41:55 | 00,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
    SRV:64bit: - [2009/07/13 19:41:54 | 00,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify)
    SRV:64bit: - [2009/07/13 19:41:54 | 00,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc)
    SRV:64bit: - [2009/07/13 19:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
    SRV:64bit: - [2009/07/13 19:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
    SRV:64bit: - [2009/07/13 19:41:53 | 00,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
    SRV:64bit: - [2009/07/13 19:41:53 | 00,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
    SRV:64bit: - [2009/07/13 19:41:53 | 00,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
    SRV:64bit: - [2009/07/13 19:41:27 | 01,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
    SRV:64bit: - [2009/07/13 19:41:18 | 00,231,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
    SRV:64bit: - [2009/07/13 19:40:54 | 01,127,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FntCache.dll -- (FontCache)
    SRV:64bit: - [2009/07/13 19:40:28 | 00,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
    SRV:64bit: - [2009/07/13 19:40:28 | 00,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc)
    SRV:64bit: - [2009/07/13 19:40:13 | 00,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv)
    SRV:64bit: - [2009/07/13 19:40:10 | 00,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC)
    SRV:64bit: - [2009/07/13 19:40:05 | 00,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV)
    SRV:64bit: - [2009/07/13 19:40:01 | 00,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc)
    SRV:64bit: - [2009/07/13 19:39:51 | 01,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\SysNative\wbengine.exe -- (wbengine)
    SRV:64bit: - [2009/07/13 19:39:28 | 03,524,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc)
    SRV:64bit: - [2009/07/13 19:39:11 | 00,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FXSSVC.exe -- (Fax)
    SRV:64bit: - [2009/07/08 11:41:02 | 00,531,520 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\ThpSrv.exe -- (Thpsrv)
    SRV - [2009/12/24 00:25:02 | 00,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
    SRV - [2009/12/09 20:27:01 | 00,066,872 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
    SRV - [2009/10/20 12:19:48 | 00,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
    SRV - [2009/09/02 21:42:08 | 00,332,272 | ---- | M] (Google Inc.) [On_Demand | Stopped] -- C:\ProgramData\Partner\Partner.exe -- (Partner Service)
    SRV - [2009/09/02 21:42:04 | 00,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
    SRV - [2009/08/10 21:55:58 | 00,248,688 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe -- (cfWiMAXService)
    SRV - [2009/07/21 13:15:20 | 00,051,512 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)
    SRV - [2009/07/14 21:10:30 | 00,042,368 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe -- (ConfigFree Gadget Service)
    SRV - [2009/07/13 21:20:14 | 00,000,000 | ---D | M] [On_Demand | Stopped] -- C:\Windows\Vss -- (VSS)
    SRV - [2009/07/13 21:20:14 | 00,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC)
    SRV - [2009/07/13 19:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
    SRV - [2009/07/13 19:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
    SRV - [2009/07/13 14:30:11 | 00,061,056 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds)
    SRV - [2009/06/10 14:39:58 | 00,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
    SRV - [2009/05/22 12:02:20 | 00,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe -- (GameConsoleService)
    SRV - [2009/03/10 20:51:20 | 00,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)


    ========== Driver Services (SafeList) ==========

    DRV:64bit: - [2009/12/24 00:25:42 | 00,470,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (AvgTdiA)
    DRV:64bit: - [2009/12/24 00:25:38 | 00,422,920 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (AvgLdx64)
    DRV:64bit: - [2009/12/24 00:25:37 | 00,034,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (AvgMfx64)
    DRV:64bit: - [2009/10/20 12:19:54 | 00,047,632 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\npf.sys -- (NPF)
    DRV:64bit: - [2009/09/09 13:11:58 | 00,943,616 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)
    DRV:64bit: - [2009/08/27 10:07:06 | 07,369,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
    DRV:64bit: - [2009/08/14 00:10:18 | 00,073,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\xusb21.sys -- (xusb21)
    DRV:64bit: - [2009/08/07 07:24:14 | 00,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
    DRV:64bit: - [2009/07/30 21:58:42 | 00,236,544 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
    DRV:64bit: - [2009/07/30 21:22:04 | 00,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)
    DRV:64bit: - [2009/07/28 20:24:12 | 00,081,408 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\risdpe64.sys -- (risdpcie)
    DRV:64bit: - [2009/07/24 17:57:08 | 00,482,384 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)
    DRV:64bit: - [2009/07/20 19:48:32 | 00,274,480 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
    DRV:64bit: - [2009/07/14 17:31:18 | 00,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)
    DRV:64bit: - [2009/07/13 19:52:21 | 00,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
    DRV:64bit: - [2009/07/13 19:52:21 | 00,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
    DRV:64bit: - [2009/07/13 19:52:20 | 00,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
    DRV:64bit: - [2009/07/13 19:48:04 | 00,153,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
    DRV:64bit: - [2009/07/13 19:48:04 | 00,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
    DRV:64bit: - [2009/07/13 19:48:04 | 00,014,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
    DRV:64bit: - [2009/07/13 19:47:49 | 00,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
    DRV:64bit: - [2009/07/13 19:47:48 | 00,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
    DRV:64bit: - [2009/07/13 19:45:56 | 00,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
    DRV:64bit: - [2009/07/13 19:45:55 | 00,217,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
    DRV:64bit: - [2009/07/13 19:45:55 | 00,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
    DRV:64bit: - [2009/07/13 19:45:55 | 00,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
    DRV:64bit: - [2009/07/13 19:45:46 | 00,214,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)
    DRV:64bit: - [2009/07/13 19:45:45 | 00,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw)
    DRV:64bit: - [2009/07/13 19:43:14 | 00,460,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG)
    DRV:64bit: - [2009/07/13 19:43:13 | 00,223,448 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol)
    DRV:64bit: - [2009/07/13 18:17:46 | 00,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)
    DRV:64bit: - [2009/07/13 18:16:35 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)
    DRV:64bit: - [2009/07/13 18:10:24 | 00,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
    DRV:64bit: - [2009/07/13 18:09:26 | 00,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)
    DRV:64bit: - [2009/07/13 18:08:13 | 00,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)
    DRV:64bit: - [2009/07/13 18:07:28 | 00,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifimp.sys -- (vwifimp)
    DRV:64bit: - [2009/07/13 18:07:22 | 00,059,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\vwififlt.sys -- (vwififlt)
    DRV:64bit: - [2009/07/13 18:07:21 | 00,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
    DRV:64bit: - [2009/07/13 18:07:13 | 00,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
    DRV:64bit: - [2009/07/13 18:07:00 | 00,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
    DRV:64bit: - [2009/07/13 18:07:00 | 00,184,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbvideo.sys -- (usbvideo) USB Video Device (WDM)
    DRV:64bit: - [2009/07/13 18:07:00 | 00,118,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthpan.sys -- (BthPan) Bluetooth Device (Personal Area Network)
    DRV:64bit: - [2009/07/13 18:06:57 | 00,551,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthport.sys -- (BTHPORT)
    DRV:64bit: - [2009/07/13 18:06:56 | 00,158,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rfcomm.sys -- (RFCOMM) Bluetooth Device (RFCOMM Protocol TDI)
    DRV:64bit: - [2009/07/13 18:06:53 | 00,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthenum.sys -- (BthEnum)
    DRV:64bit: - [2009/07/13 18:06:52 | 00,079,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BTHUSB.SYS -- (BTHUSB)
    DRV:64bit: - [2009/07/13 18:06:52 | 00,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass)
    DRV:64bit: - [2009/07/13 18:06:32 | 00,109,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\USBAUDIO.sys -- (usbaudio) USB Audio Driver (WDM)
    DRV:64bit: - [2009/07/13 18:06:24 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
    DRV:64bit: - [2009/07/13 18:05:37 | 00,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
    DRV:64bit: - [2009/07/13 18:02:08 | 00,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
    DRV:64bit: - [2009/07/13 18:00:34 | 00,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)
    DRV:64bit: - [2009/07/13 18:00:13 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\beep.sys -- (Beep)
    DRV:64bit: - [2009/07/13 17:52:39 | 00,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID)
    DRV:64bit: - [2009/07/13 17:50:17 | 00,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter)
    DRV:64bit: - [2009/07/13 17:37:18 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\discache.sys -- (discache)
    DRV:64bit: - [2009/07/13 17:31:10 | 00,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
    DRV:64bit: - [2009/07/13 17:31:06 | 00,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
    DRV:64bit: - [2009/07/13 17:31:03 | 00,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
    DRV:64bit: - [2009/07/13 17:27:17 | 00,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
    DRV:64bit: - [2009/07/13 17:19:25 | 00,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
    DRV:64bit: - [2009/07/10 08:45:12 | 00,139,264 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel(R)
    DRV:64bit: - [2009/07/07 10:51:42 | 00,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FwLnk.sys -- (FwLnk)
    DRV:64bit: - [2009/07/04 21:27:02 | 00,055,808 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rixdpe64.sys -- (rixdpcie)
    DRV:64bit: - [2009/07/02 10:54:52 | 00,060,416 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimspe64.sys -- (rimspci)
    DRV:64bit: - [2009/06/29 18:16:20 | 00,014,784 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Thpevm.sys -- (Thpevm)
    DRV:64bit: - [2009/06/29 12:25:22 | 00,034,880 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\thpdrv.sys -- (Thpdrv)
    DRV:64bit: - [2009/06/22 19:06:38 | 00,035,008 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\PGEffect.sys -- (PGEffect)
    DRV:64bit: - [2009/06/19 21:15:22 | 00,014,472 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)
    DRV:64bit: - [2009/06/19 20:09:57 | 01,394,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
    DRV:64bit: - [2009/06/10 15:01:06 | 01,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)
    DRV:64bit: - [2009/06/10 14:34:33 | 03,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
    DRV:64bit: - [2009/06/10 14:34:28 | 00,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
    DRV:64bit: - [2009/06/10 14:34:23 | 00,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
    DRV:64bit: - [2009/06/10 14:31:59 | 00,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
    DRV - [2009/07/13 19:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
    DRV - [2009/07/13 19:16:02 | 00,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysWOW64\netbios.dll -- (NetBIOS)
    DRV - [2009/06/10 15:28:14 | 00,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
    DRV - [2009/06/10 15:15:18 | 00,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)
  2. Sneakyone

    Sneakyone Well-Known Member Elite Member

    Joined:
    Oct 28, 2009
    Posts:
    1,968
    Likes Received:
    75
    Location:
    Alabama, USA
    Local time:
    04:51
    My System
    Loading...

    ========== Internet Explorer ==========

    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = iGoogle
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google
    IE - HKCU\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    FF - HKLM\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker


    O1 HOSTS File: (824 bytes) - C:\Windows\SysNative\drivers\etc\hosts
    O2:64bit: - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssiea.dll (AVG Technologies CZ, s.r.o.)
    O2:64bit: - BHO: (Partner BHO Class) - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner64.dll (Google Inc.)
    O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg64.dll (Google Inc.)
    O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (IDMIEHlprObj Class) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Tonec Inc.)
    O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
    O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
    O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
    O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
    O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll (Google Inc.)
    O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (Google Inc.)
    O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files (x86)\kikin\ie_kikin.dll (kikin)
    O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
    O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files (x86)\AVG\AVG9\Toolbar\IEToolbar.dll ()
    O4:64bit: - HKLM..\Run: [] File not found
    O4:64bit: - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
    O4:64bit: - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
    O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
    O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
    O4:64bit: - HKLM..\Run: [SmartFaceVWatcher] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [SmoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
    O4:64bit: - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated)
    O4:64bit: - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [ThpSrv] C:\windows\SysNative\thpsrv.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)
    O4:64bit: - HKLM..\Run: [XboxStat] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe (Microsoft Corporation)
    O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files (x86)\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
    O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe (Toshiba)
    O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
    O4 - HKLM..\Run: [TUSBSleepChargeSrv] C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe (TOSHIBA)
    O4 - HKLM..\Run: [TWebCamera] File not found
    O4 - HKCU..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe (Tonec Inc.)
    O4 - HKCU..\Run: [msnmsgr] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
    O4 - HKCU..\Run: [MyTOSHIBA] C:\Program Files (x86)\TOSHIBA\My Toshiba\MyToshiba.exe (TOSHIBA)
    O4 - HKCU..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
    O4 - HKLM..\RunOnceEx: [Flags] Reg Error: Invalid data type. File not found
    O4 - HKLM..\RunOnceEx: [Title] File not found
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
    O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
    O8:64bit: - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
    O8:64bit: - Extra context menu item: Download FLV video content with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm ()
    O8:64bit: - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
    O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm ()
    O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm ()
    O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm ()
    O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files (x86)\kikin\ie_kikin.dll (kikin)
    O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
    O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
    O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
    O10:64bit: - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysNative\wshbth.dll (Microsoft Corporation)
    O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Windows\SysWOW64\wshbth.dll (Microsoft Corporation)
    O13 - gopher Prefix: missing
    O13 - gopher Prefix: missing
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/IWONBarInitialSetup1.0.1.1.cab (Reg Error: Key error.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
    O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
    O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
    O16 - DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} http://intel-drv-cdn.systemrequirementslab.com/multi/bin/sysreqlab_srlx.cab (System Requirements Lab Class)
    O16 - DPF: {40F576AD-8680-4F9E-9490-99D069CD665F} http://srtest-cdn.systemrequirementslab.com.s3.amazonaws.com/bin/sysreqlabdetect.cab (Reg Error: Key error.)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
    O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} http://lads.myspace.com/upload/MySpaceUploader2.cab (MySpace Uploader Control)
    O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
    O18:64bit: - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgppa.dll (AVG Technologies CZ, s.r.o.)
    O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found
    O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
    O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
    O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
    O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
    O20:64bit: - AppInit_DLLs: (avgrssta.dll) - C:\windows\SysNative\avgrssta.dll (AVG Technologies CZ, s.r.o.)
    O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
    O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    O30:64bit: - LSA: Security Packages - (pku2u) - C:\windows\SysNative\pku2u.dll (Microsoft Corporation)
    O30 - LSA: Security Packages - (pku2u) - C:\windows\SysWow64\pku2u.dll (Microsoft Corporation)
    O32 - HKLM CDRom: AutoRun - 1
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O34 - HKLM BootExecute: (MACHINE BootExecut) - File not found
    64bit: O35 - comfile [open] -- "%1" %* File not found
    64bit: O35 - exefile [open] -- "%1" %* File not found
    O35 - comfile [open] -- "%1" %*
    O35 - exefile [open] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2009/12/24 15:24:19 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\kikin
    [2009/12/24 14:32:59 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\RegRunInfo
    [2009/12/24 14:24:04 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Greatis
    [2009/12/24 13:05:24 | 00,000,000 | ---D | C] -- C:\windows\SysWow64\drivers\avg
    [2009/12/24 13:03:44 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Batch256.com
    [2009/12/24 01:22:37 | 00,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab Setup Files
    [2009/12/24 01:08:49 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\BitDefender
    [2009/12/24 00:52:34 | 00,000,000 | -HSD | C] -- C:\Config.Msi
    [2009/12/24 00:25:49 | 00,000,000 | -H-D | C] -- C:\$AVG
    [2009/12/24 00:25:45 | 00,012,464 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\windows\SysNative\avgrssta.dll
    [2009/12/24 00:25:42 | 00,470,024 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\windows\SysNative\drivers\avgtdia.sys
    [2009/12/24 00:25:38 | 00,422,920 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\windows\SysNative\drivers\avgldx64.sys
    [2009/12/24 00:25:37 | 00,034,248 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\windows\SysNative\drivers\avgmfx64.sys
    [2009/12/24 00:25:37 | 00,000,000 | ---D | C] -- C:\windows\SysNative\drivers\Avg
    [2009/12/24 00:25:34 | 00,000,000 | ---D | C] -- C:\ProgramData\AVG Security Toolbar
    [2009/12/24 00:24:59 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
    [2009/12/24 00:24:58 | 00,000,000 | ---D | C] -- C:\ProgramData\avg9
    [2009/12/23 23:57:46 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\BitDefender
    [2009/12/23 23:57:26 | 00,000,000 | ---D | C] -- C:\ProgramData\BitDefender
    [2009/12/23 23:57:26 | 00,000,000 | ---D | C] -- C:\Program Files\BitDefender
    [2009/12/23 23:56:33 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BitDefender
    [2009/12/23 21:33:36 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\BitTorrent
    [2009/12/23 21:33:26 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\BitTorrent
    [2009/12/21 21:18:24 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\kikin
    [2009/12/21 19:58:12 | 00,000,000 | ---D | C] -- C:\Users\Owner\Tracing
    [2009/12/21 19:36:55 | 00,000,000 | ---D | C] -- C:\windows\Internet Logs
    [2009/12/21 01:01:06 | 00,000,000 | ---D | C] -- C:\Users\Owner\Documents\ForceField Shared Files
    [2009/12/21 01:01:05 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\CheckPoint
    [2009/12/21 00:59:22 | 00,000,000 | ---D | C] -- C:\ProgramData\CheckPoint
    [2009/12/21 00:07:53 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\WinPcap
    [2009/12/21 00:07:39 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Cain
    [2009/12/21 00:02:40 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\ElevatedDiagnostics
    [2009/12/20 17:20:43 | 00,203,264 | ---- | C] (Soeperman Enterprises Ltd.) -- C:\Users\Owner\Desktop\HijackThis.exe
    [2009/12/20 17:16:40 | 00,000,000 | ---D | C] -- C:\Users\Owner\Documents\RegRun2
    [2009/12/20 17:16:31 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\UnHackMe
    [2009/12/20 17:11:15 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Malwarebytes
    [2009/12/20 17:11:07 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysWow64\drivers\mbamswissarmy.sys
    [2009/12/20 17:11:05 | 00,022,104 | ---- | C] (Malwarebytes Corporation) -- C:\windows\SysNative\drivers\mbam.sys
    [2009/12/20 17:11:05 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    [2009/12/20 17:11:05 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
    [2009/12/20 17:08:59 | 00,000,000 | ---D | C] -- C:\Users\Owner\Desktop\My stuff
    [2009/12/20 12:09:17 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Total Video Converter
    [2009/12/18 23:38:57 | 00,000,000 | ---D | C] -- C:\Rebirth
    [2009/12/18 19:41:29 | 00,000,000 | ---D | C] -- C:\ProgramData\NetZero
    [2009/12/18 19:41:29 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\NetZero
    [2009/12/18 19:41:27 | 00,000,000 | ---D | C] -- C:\Program Files\NetZeroInstaller
    [2009/12/18 19:28:32 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\HyCam2
    [2009/12/17 20:56:01 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Word Magic Software
    [2009/12/16 16:18:21 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Mael
    [2009/12/16 15:44:03 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\HxD
    [2009/12/13 16:09:23 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Datel
    [2009/12/13 16:09:20 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Datel
    [2009/12/13 15:58:07 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\GameTuts
    [2009/12/11 20:38:47 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
    [2009/12/11 06:48:02 | 00,000,000 | ---D | C] -- C:\windows\Sun
    [2009/12/10 20:53:32 | 00,455,680 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysNative\deploytk.dll
    [2009/12/10 20:53:32 | 00,181,760 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysNative\javaws.exe
    [2009/12/10 20:53:32 | 00,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysNative\javaw.exe
    [2009/12/10 20:53:32 | 00,165,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\windows\SysNative\java.exe
    [2009/12/10 20:53:12 | 00,000,000 | ---D | C] -- C:\Program Files\Java
    [2009/12/10 20:40:58 | 00,000,000 | ---D | C] -- C:\Es_E5
    [2009/12/10 19:07:58 | 00,517,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAudio2_5.dll
    [2009/12/10 19:07:58 | 00,515,416 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAudio2_5.dll
    [2009/12/10 19:07:54 | 02,582,888 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_42.dll
    [2009/12/10 19:07:54 | 01,974,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_42.dll
    [2009/12/10 19:07:54 | 00,238,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine3_5.dll
    [2009/12/10 19:07:54 | 00,176,968 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine3_5.dll
    [2009/12/10 19:07:51 | 05,554,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dcsx_42.dll
    [2009/12/10 19:07:51 | 05,501,792 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dcsx_42.dll
    [2009/12/10 19:07:49 | 00,285,024 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx11_42.dll
    [2009/12/10 19:07:49 | 00,235,344 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx11_42.dll
    [2009/12/10 19:07:48 | 02,475,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DX9_42.dll
    [2009/12/10 19:07:48 | 01,892,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DX9_42.dll
    [2009/12/10 19:07:48 | 00,523,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_42.dll
    [2009/12/10 19:07:48 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_42.dll
    [2009/12/10 19:07:47 | 02,430,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_41.dll
    [2009/12/10 19:07:47 | 01,846,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_41.dll
    [2009/12/10 19:07:46 | 00,520,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_41.dll
    [2009/12/10 19:07:46 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_41.dll
    [2009/12/10 19:07:44 | 05,425,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DX9_41.dll
    [2009/12/10 19:07:44 | 00,521,560 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAudio2_4.dll
    [2009/12/10 19:07:44 | 00,517,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAudio2_4.dll
    [2009/12/10 19:07:44 | 00,073,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAPOFX1_3.dll
    [2009/12/10 19:07:44 | 00,069,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAPOFX1_3.dll
    [2009/12/10 19:07:43 | 00,235,352 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine3_4.dll
    [2009/12/10 19:07:43 | 00,174,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine3_4.dll
    [2009/12/10 19:07:42 | 02,605,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_40.dll
    [2009/12/10 19:07:42 | 02,036,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_40.dll
    [2009/12/10 19:07:42 | 00,519,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_40.dll
    [2009/12/10 19:07:42 | 00,452,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_40.dll
    [2009/12/10 19:07:42 | 00,024,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\X3DAudio1_6.dll
    [2009/12/10 19:07:42 | 00,022,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\X3DAudio1_6.dll
    [2009/12/10 19:07:41 | 05,631,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DX9_40.dll
    [2009/12/10 19:07:41 | 04,379,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DX9_40.dll
    [2009/12/10 19:07:40 | 00,518,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAudio2_3.dll
    [2009/12/10 19:07:40 | 00,514,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAudio2_3.dll
    [2009/12/10 19:07:40 | 00,235,856 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine3_3.dll
    [2009/12/10 19:07:40 | 00,175,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine3_3.dll
    [2009/12/10 19:07:40 | 00,074,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAPOFX1_2.dll
    [2009/12/10 19:07:40 | 00,070,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAPOFX1_2.dll
    [2009/12/10 19:07:40 | 00,025,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\X3DAudio1_5.dll
    [2009/12/10 19:07:40 | 00,023,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\X3DAudio1_5.dll
    [2009/12/10 19:07:39 | 00,513,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAudio2_2.dll
    [2009/12/10 19:07:39 | 00,509,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAudio2_2.dll
    [2009/12/10 19:07:39 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine3_2.dll
    [2009/12/10 19:07:39 | 00,177,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine3_2.dll
    [2009/12/10 19:07:39 | 00,072,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAPOFX1_1.dll
    [2009/12/10 19:07:39 | 00,068,616 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAPOFX1_1.dll
    [2009/12/10 19:07:38 | 04,992,520 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DX9_39.dll
    [2009/12/10 19:07:38 | 03,851,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DX9_39.dll
    [2009/12/10 19:07:38 | 01,942,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_39.dll
    [2009/12/10 19:07:38 | 01,493,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_39.dll
    [2009/12/10 19:07:38 | 00,540,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_39.dll
    [2009/12/10 19:07:38 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_39.dll
    [2009/12/10 18:58:05 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Frets on Fire
    [2009/12/10 15:50:20 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Symantec Shared
    [2009/12/10 15:40:01 | 00,000,000 | ---D | C] -- C:\ProgramData\Symantec
    [2009/12/09 22:16:29 | 00,000,000 | -H-D | C] -- C:\Users\Public\Documents\KALiNKOsoft
    [2009/12/09 22:16:29 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\KALiNKOsoft
    [2009/12/09 22:14:59 | 00,619,008 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dx7vb.dll
    [2009/12/09 22:14:59 | 00,608,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\COMCTL32.OCX
    [2009/12/09 22:14:59 | 00,212,240 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RICHTX32.OCX
    [2009/12/09 22:14:59 | 00,164,144 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\comct232.ocx
    [2009/12/09 22:14:59 | 00,109,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\mswinsck.ocx
    [2009/12/09 22:14:59 | 00,094,208 | R-S- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msstkprp.dll
    [2009/12/09 22:14:59 | 00,091,632 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\dsofile.dll
    [2009/12/09 22:14:59 | 00,089,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\VB5DB.DLL
    [2009/12/09 22:14:59 | 00,045,056 | ---- | C] (Microsoft) -- C:\windows\SysWow64\NTSVC.ocx
    [2009/12/09 22:14:59 | 00,040,960 | ---- | C] (vbAccelerator) -- C:\windows\SysWow64\SSubTmr6.dll
    [2009/12/09 22:07:52 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Microsoft Games
    [2009/12/09 22:00:33 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\WinRAR
    [2009/12/09 21:49:57 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Geek Squad 24 Hour Computer Support
    [2009/12/09 21:47:15 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Adobe
    [2009/12/09 21:14:49 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\IDM
    [2009/12/09 21:14:49 | 00,000,000 | ---D | C] -- C:\Users\Owner\Documents\Downloads
    [2009/12/09 21:14:48 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\DMCache
    [2009/12/09 21:14:43 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Internet Download Manager
    [2009/12/09 21:13:34 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
    [2009/12/09 20:54:10 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Xbox 360 Accessories
    [2009/12/09 20:30:04 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\PunkBuster
    [2009/12/09 20:29:07 | 00,511,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAudio2_1.dll
    [2009/12/09 20:29:07 | 00,507,400 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAudio2_1.dll
    [2009/12/09 20:29:07 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine3_1.dll
    [2009/12/09 20:29:07 | 00,177,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine3_1.dll
    [2009/12/09 20:29:07 | 00,068,104 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAPOFX1_0.dll
    [2009/12/09 20:29:07 | 00,065,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAPOFX1_0.dll
    [2009/12/09 20:29:06 | 00,028,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\X3DAudio1_4.dll
    [2009/12/09 20:29:06 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\X3DAudio1_4.dll
    [2009/12/09 20:29:05 | 04,991,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DX9_38.dll
    [2009/12/09 20:29:05 | 03,850,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DX9_38.dll
    [2009/12/09 20:29:05 | 01,941,528 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_38.dll
    [2009/12/09 20:29:05 | 01,491,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_38.dll
    [2009/12/09 20:29:05 | 00,540,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_38.dll
    [2009/12/09 20:29:05 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_38.dll
    [2009/12/09 20:29:04 | 00,489,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\XAudio2_0.dll
    [2009/12/09 20:29:04 | 00,479,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\XAudio2_0.dll
    [2009/12/09 20:29:03 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine3_0.dll
    [2009/12/09 20:29:03 | 00,177,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine3_0.dll
    [2009/12/09 20:29:03 | 00,028,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\X3DAudio1_3.dll
    [2009/12/09 20:29:03 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\X3DAudio1_3.dll
    [2009/12/09 20:29:02 | 01,860,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_37.dll
    [2009/12/09 20:29:02 | 01,420,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_37.dll
    [2009/12/09 20:29:02 | 00,529,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_37.dll
    [2009/12/09 20:29:02 | 00,462,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_37.dll
    [2009/12/09 20:29:01 | 04,910,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DX9_37.dll
    [2009/12/09 20:29:01 | 03,786,760 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DX9_37.dll
    [2009/12/09 20:29:01 | 00,411,656 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_10.dll
    [2009/12/09 20:29:01 | 00,267,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_10.dll
    [2009/12/09 20:28:59 | 00,508,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_36.dll
    [2009/12/09 20:28:59 | 00,444,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_36.dll
    [2009/12/09 20:28:58 | 02,006,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_36.dll
    [2009/12/09 20:28:58 | 01,374,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_36.dll
    [2009/12/09 20:28:56 | 05,081,608 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_36.dll
    [2009/12/09 20:28:56 | 03,734,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_36.dll
    [2009/12/09 20:28:55 | 00,411,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_9.dll
    [2009/12/09 20:28:55 | 00,267,112 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_9.dll
    [2009/12/09 20:28:54 | 00,508,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_35.dll
    [2009/12/09 20:28:54 | 00,444,776 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_35.dll
    [2009/12/09 20:28:53 | 01,985,904 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_35.dll
    [2009/12/09 20:28:53 | 01,358,192 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_35.dll
    [2009/12/09 20:28:52 | 05,073,256 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_35.dll
    [2009/12/09 20:28:52 | 03,727,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_35.dll
    [2009/12/09 20:28:51 | 00,409,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_8.dll
    [2009/12/09 20:28:51 | 00,266,088 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_8.dll
    [2009/12/09 20:28:51 | 00,021,000 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\X3DAudio1_2.dll
    [2009/12/09 20:28:51 | 00,017,928 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\X3DAudio1_2.dll
    [2009/12/09 20:28:49 | 01,401,200 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_34.dll
    [2009/12/09 20:28:49 | 01,124,720 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_34.dll
    [2009/12/09 20:28:49 | 00,506,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_34.dll
    [2009/12/09 20:28:49 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_34.dll
    [2009/12/09 20:28:47 | 04,496,232 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_34.dll
    [2009/12/09 20:28:47 | 03,497,832 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_34.dll
    [2009/12/09 20:28:47 | 00,081,768 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xinput1_3.dll
    [2009/12/09 20:28:46 | 00,403,304 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_7.dll
    [2009/12/09 20:28:46 | 00,261,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_7.dll
    [2009/12/09 20:28:44 | 01,400,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\D3DCompiler_33.dll
    [2009/12/09 20:28:44 | 01,123,696 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\D3DCompiler_33.dll
    [2009/12/09 20:28:44 | 00,506,728 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10_33.dll
    [2009/12/09 20:28:44 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10_33.dll
    [2009/12/09 20:28:43 | 04,494,184 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_33.dll
    [2009/12/09 20:28:43 | 03,495,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_33.dll
    [2009/12/09 20:28:42 | 00,393,576 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_6.dll
    [2009/12/09 20:28:42 | 00,255,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_6.dll
    [2009/12/09 20:28:41 | 00,390,424 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_5.dll
    [2009/12/09 20:28:41 | 00,251,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_5.dll
    [2009/12/09 20:28:40 | 00,469,264 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx10.dll
    [2009/12/09 20:28:40 | 00,440,080 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx10.dll
    [2009/12/09 20:28:38 | 04,398,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_32.dll
    [2009/12/09 20:28:38 | 03,426,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_32.dll
    [2009/12/09 20:28:37 | 00,364,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_4.dll
    [2009/12/09 20:28:37 | 00,237,848 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_4.dll
    [2009/12/09 20:28:37 | 00,017,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\x3daudio1_1.dll
    [2009/12/09 20:28:37 | 00,015,128 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\x3daudio1_1.dll
    [2009/12/09 20:28:36 | 03,977,496 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_31.dll
    [2009/12/09 20:28:36 | 02,414,360 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_31.dll
    [2009/12/09 20:28:35 | 00,363,288 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_3.dll
    [2009/12/09 20:28:35 | 00,236,824 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_3.dll
    [2009/12/09 20:28:34 | 00,354,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_2.dll
    [2009/12/09 20:28:34 | 00,230,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_2.dll
    [2009/12/09 20:28:34 | 00,083,736 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xinput1_2.dll
    [2009/12/09 20:28:34 | 00,062,744 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xinput1_2.dll
    [2009/12/09 20:28:33 | 00,083,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xinput1_1.dll
    [2009/12/09 20:28:33 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xinput1_1.dll
    [2009/12/09 20:28:32 | 00,352,464 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_1.dll
    [2009/12/09 20:28:32 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_1.dll
    [2009/12/09 20:28:27 | 03,927,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_30.dll
    [2009/12/09 20:28:27 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_30.dll
    [2009/12/09 20:28:24 | 00,355,536 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\xactengine2_0.dll
    [2009/12/09 20:28:24 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\xactengine2_0.dll
    [2009/12/09 20:28:24 | 00,016,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\x3daudio1_0.dll
    [2009/12/09 20:28:24 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\x3daudio1_0.dll
    [2009/12/09 20:28:23 | 03,830,992 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_29.dll
    [2009/12/09 20:28:23 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_29.dll
    [2009/12/09 20:28:21 | 03,815,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_28.dll
    [2009/12/09 20:28:21 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_28.dll
    [2009/12/09 20:28:20 | 03,807,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_27.dll
    [2009/12/09 20:28:20 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_27.dll
    [2009/12/09 20:28:19 | 03,767,504 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_26.dll
    [2009/12/09 20:28:19 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_26.dll
    [2009/12/09 20:28:17 | 03,823,312 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_25.dll
    [2009/12/09 20:28:17 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_25.dll
    [2009/12/09 20:28:14 | 03,544,272 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\d3dx9_24.dll
    [2009/12/09 20:28:14 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\d3dx9_24.dll
    [2009/12/09 20:09:53 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Macromedia
    [2009/12/09 20:09:51 | 00,000,000 | -HSD | C] -- C:\windows\ftpcache
    [2009/12/09 18:55:42 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeedsbs.dll
    [2009/12/09 18:55:42 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\msfeedsbs.dll
    [2009/11/26 09:41:23 | 00,210,352 | ---- | C] (Tonec Inc.) -- C:\windows\SysWow64\idmmbc.dll
    [2009/11/25 10:34:39 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\TOSHIBA_Corporation
    [2009/11/25 10:32:37 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Geek Squad
    [2009/11/25 10:18:48 | 00,000,000 | ---D | C] -- C:\windows\LMI228D.tmp
    [2009/11/25 05:01:57 | 14,629,376 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmp.dll
    [2009/11/25 05:01:56 | 11,406,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmp.dll
    [2009/11/25 05:01:55 | 02,868,224 | ---- | C] (Microsoft Corporation) -- C:\windows\explorer.exe
    [2009/11/25 05:01:55 | 02,613,248 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\explorer.exe
    [2009/11/25 05:01:55 | 01,975,296 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\CertEnroll.dll
    [2009/11/25 05:01:55 | 01,320,960 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\CertEnroll.dll
    [2009/11/25 05:01:55 | 00,366,080 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysNative\atmfd.dll
    [2009/11/25 05:01:55 | 00,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\SysWow64\atmfd.dll
    [2009/11/25 05:01:55 | 00,148,480 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\t2embed.dll
    [2009/11/25 05:01:55 | 00,108,544 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\t2embed.dll
    [2009/11/25 05:01:55 | 00,100,864 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\fontsub.dll
    [2009/11/25 05:01:55 | 00,071,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\fontsub.dll
    [2009/11/25 05:01:54 | 12,625,920 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wmploc.DLL
    [2009/11/25 05:01:54 | 12,625,408 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\wmploc.DLL
    [2009/11/25 05:01:43 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msasn1.dll
    [2009/11/24 20:27:54 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Adobe
    [2009/11/24 20:27:00 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Google
    [2009/11/24 20:26:59 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Google
    [2009/11/24 20:14:19 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Toshiba
    [2009/11/24 20:13:21 | 00,000,000 | R--D | C] -- C:\Users\Owner\Searches
    [2009/11/24 20:13:12 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Identities
    [2009/11/24 20:13:10 | 00,000,000 | R--D | C] -- C:\Users\Owner\Contacts
    [2009/11/24 20:13:08 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\VirtualStore
    [2009/11/24 20:12:13 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\WinBatch
    [2009/11/24 20:11:43 | 00,000,000 | --SD | C] -- C:\Users\Owner\AppData\Roaming\Microsoft
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Videos
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Saved Games
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Pictures
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Music
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Links
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Favorites
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Downloads
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Documents
    [2009/11/24 20:11:43 | 00,000,000 | R--D | C] -- C:\Users\Owner\Desktop
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\AppData\Local\Temporary Internet Files
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Templates
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Start Menu
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\SendTo
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Recent
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\PrintHood
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\NetHood
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Documents\My Videos
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Documents\My Pictures
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Documents\My Music
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\My Documents
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Local Settings
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\AppData\Local\History
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Cookies
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\Application Data
    [2009/11/24 20:11:43 | 00,000,000 | -HSD | C] -- C:\Users\Owner\AppData\Local\Application Data
    [2009/11/24 20:11:43 | 00,000,000 | -H-D | C] -- C:\Users\Owner\AppData
    [2009/11/24 20:11:43 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Temp
    [2009/11/24 20:11:43 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Microsoft
    [2009/11/24 20:11:43 | 00,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Media Center Programs
    [3 C:\windows\SysNative\drivers\*.tmp files -> C:\windows\SysNative\drivers\*.tmp -> ]
    [2 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
  3. Sneakyone

    Sneakyone Well-Known Member Elite Member

    Joined:
    Oct 28, 2009
    Posts:
    1,968
    Likes Received:
    75
    Location:
    Alabama, USA
    Local time:
    04:51
    My System
    Loading...

    ========== Files Created - No Company Name ==========

    [2009/12/24 16:29:38 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{c946259d-f0d4-11de-8904-701a045e238a}.TMContainer00000000000000000002.regtrans-ms
    [2009/12/24 16:29:38 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{c946259d-f0d4-11de-8904-701a045e238a}.TMContainer00000000000000000001.regtrans-ms
    [2009/12/24 16:29:38 | 00,065,536 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{c946259d-f0d4-11de-8904-701a045e238a}.TM.blf
    [2009/12/24 15:32:32 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{27279f7b-f0d2-11de-8bc6-701a045e238a}.TMContainer00000000000000000002.regtrans-ms
    [2009/12/24 15:32:32 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{27279f7b-f0d2-11de-8bc6-701a045e238a}.TMContainer00000000000000000001.regtrans-ms
    [2009/12/24 15:32:31 | 00,065,536 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{27279f7b-f0d2-11de-8bc6-701a045e238a}.TM.blf
    [2009/12/24 15:21:06 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{4e7c6dbf-f0ce-11de-9317-701a045e238a}.TMContainer00000000000000000002.regtrans-ms
    [2009/12/24 15:21:06 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{4e7c6dbf-f0ce-11de-9317-701a045e238a}.TMContainer00000000000000000001.regtrans-ms
    [2009/12/24 15:21:06 | 00,065,536 | -HS- | C] () -- C:\Users\Owner\ntuser.dat{4e7c6dbf-f0ce-11de-9317-701a045e238a}.TM.blf
    [2009/12/24 00:41:09 | 00,081,984 | ---- | C] () -- C:\windows\SysNative\bdod.bin
    [2009/12/24 00:25:45 | 00,001,865 | ---- | C] () -- C:\Users\Public\Desktop\AVG 9.0.lnk
    [2009/12/24 00:25:37 | 46,974,100 | ---- | C] () -- C:\windows\SysNative\drivers\Avg\incavi.avm
    [2009/12/24 00:25:37 | 06,061,540 | ---- | C] () -- C:\windows\SysNative\drivers\Avg\avi7.avg
    [2009/12/24 00:25:37 | 00,492,629 | ---- | C] () -- C:\windows\SysNative\drivers\Avg\miniavi.avg
    [2009/12/24 00:25:37 | 00,127,837 | ---- | C] () -- C:\windows\SysNative\drivers\Avg\microavi.avg
    [2009/12/24 00:25:37 | 00,113,461 | ---- | C] () -- C:\windows\SysNative\drivers\Avg\iavichjw.avm
    [2009/12/23 23:59:30 | 00,000,850 | ---- | C] () -- C:\windows\SysNative\ProductTweaks.xml
    [2009/12/23 23:59:30 | 00,000,385 | ---- | C] () -- C:\windows\SysNative\user_gensett.xml
    [2009/12/20 17:17:00 | 00,000,002 | RHS- | C] () -- C:\windows\winstart.bat
    [2009/12/20 17:17:00 | 00,000,002 | RHS- | C] () -- C:\windows\SysWow64\CONFIG.NT
    [2009/12/20 17:17:00 | 00,000,002 | RHS- | C] () -- C:\windows\SysWow64\AUTOEXEC.NT
    [2009/12/18 23:44:56 | 00,000,193 | ---- | C] () -- C:\._lil-wayne-rebirth-front-cover.jpg
    [2009/12/18 21:19:48 | 20,768,488 | ---- | C] () -- C:\Users\Owner\Documents\clip0012.avi
    [2009/12/18 21:14:15 | 42,885,226 | ---- | C] () -- C:\Users\Owner\Documents\clip0011.avi
    [2009/12/18 19:59:42 | 50,618,414 | ---- | C] () -- C:\Users\Owner\Documents\clip0010.avi
    [2009/12/18 19:59:11 | 10,299,698 | ---- | C] () -- C:\Users\Owner\Documents\clip0009.avi
    [2009/12/18 19:56:29 | 22,476,4524 | ---- | C] () -- C:\Users\Owner\Documents\clip0008.avi
    [2009/12/18 19:54:31 | 17,960,842 | ---- | C] () -- C:\Users\Owner\Documents\clip0007.avi
    [2009/12/18 19:54:04 | 01,433,086 | ---- | C] () -- C:\Users\Owner\Documents\clip0006.avi
    [2009/12/17 07:41:46 | 00,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
    [2009/12/16 14:57:20 | 00,000,355 | ---- | C] () -- C:\Users\Owner\Documents\Computer - Shortcut.lnk
    [2009/12/11 06:49:42 | 00,000,069 | ---- | C] () -- C:\Users\Owner\jagex_runescape_preferences2.dat
    [2009/12/11 06:48:34 | 00,000,039 | ---- | C] () -- C:\Users\Owner\jagex_runescape_preferences.dat
    [2009/12/09 22:14:58 | 00,119,296 | ---- | C] () -- C:\windows\SysWow64\zlib.dll
    [2009/12/09 22:14:58 | 00,057,344 | ---- | C] () -- C:\windows\SysWow64\ADsSecurity.dll
    [2009/12/09 22:14:58 | 00,036,864 | ---- | C] () -- C:\windows\SysWow64\dxinputdll.dll
    [2009/12/09 20:27:05 | 00,111,928 | ---- | C] () -- C:\windows\SysWow64\PnkBstrB.exe
    [2009/12/09 20:27:01 | 00,682,280 | ---- | C] () -- C:\windows\SysWow64\pbsvc.exe
    [2009/12/09 20:27:01 | 00,066,872 | ---- | C] () -- C:\windows\SysWow64\PnkBstrA.exe
    [2009/12/09 20:02:03 | 00,000,000 | -H-- | C] () -- C:\windows\SysNative\drivers\Msft_Kernel_xusb21_01009.Wdf
    [2009/11/25 10:32:39 | 00,002,048 | ---- | C] () -- C:\windows\bootstat.dat._LMIsync
    [2009/11/25 10:32:37 | 00,002,038 | ---- | C] () -- C:\Users\Public\Desktop\Geek Squad 24hr Support.lnk
    [2009/11/24 20:13:25 | 00,001,454 | ---- | C] () -- C:\Users\Owner\Desktop\Internet Explorer.lnk
    [2009/11/24 20:12:33 | 00,000,013 | RHS- | C] () -- C:\windows\SysWow64\drivers\fbd.sys
    [2009/11/24 20:11:43 | 02,097,152 | -HS- | C] () -- C:\Users\Owner\ntuser.dat
    [2009/11/24 20:11:43 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
    [2009/11/24 20:11:43 | 00,524,288 | -HS- | C] () -- C:\Users\Owner\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
    [2009/11/24 20:11:43 | 00,065,536 | -HS- | C] () -- C:\Users\Owner\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
    [2009/11/24 20:11:43 | 00,000,020 | -HS- | C] () -- C:\Users\Owner\ntuser.ini
    [2009/11/16 14:10:37 | 00,000,000 | ---- | C] () -- C:\windows\NDSTray.INI
    [2009/10/20 12:19:30 | 00,053,299 | ---- | C] () -- C:\windows\SysWow64\pthreadVC.dll
    [2009/07/13 17:42:10 | 00,064,000 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll
    [2009/07/13 15:03:59 | 00,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll
    [2005/08/07 10:42:32 | 00,004,928 | -H-- | C] () -- C:\Users\Owner\AppData\Roaming\logs.dat

    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 128 bytes -> C:\windows\SysWow64\zlib.dll:DocumentSummaryInformation
    @Alternate Data Stream - 124 bytes -> C:\windows\SysWow64\zlib.dll:SummaryInformation
    < End of report >
  4. Pancake

    Pancake Well-Known Member

    Joined:
    Jun 1, 2006
    Posts:
    3,921
    Likes Received:
    5
    Location:
    Victoria, Australia
    Local time:
    19:51
    My System
    Loading...

    If your problem is not fixed using MBAM then I am afraid there is not much we can do for you as there are no other programs that will fix malware problems in 64 bit.Most are reverting back to 32 bit.

    Place a shortcut to Panda ActiveScan on your desktop. Click the Panda ActiveScan shortcut.
    ** click on "Free use ActiveScan" located on the top right hand corner
    1. Click Check Now & a 'pop up' window shall appear. *ensure that your pop up blocker doesn't block it
    2. Enter your e-mail address, country, and state & click Scan Now ...begins downloading 8 MB Panda's ActiveX controls
    Begin the scan by selecting My Computer
    • If it finds any malware, it will offer you a report.
      [*] Please ignore any entry it finds and wants you to buy the program for removal as we will address this later.
      [*] Click on see report. Then click Save report
    Post the contents of the Panda scan report if malware is found.
  5. Sneakyone

    Sneakyone Well-Known Member Elite Member

    Joined:
    Oct 28, 2009
    Posts:
    1,968
    Likes Received:
    75
    Location:
    Alabama, USA
    Local time:
    04:51
    My System
    Loading...

    I have use of my laptop and he claimed to be a "good hacker" (whatever that is...) and said if I went to that website again he was going to crash my computer does that mean hes still monitoring my ip adress because im on my laptop right now...and nothing that he did before is happening now which means hes asleep,don't care anymore or hes gonna surprise me...but i would like to make myself as secure as possible..im running pandascan right now...ill keep you posted...thx in advanced for helping me.
  6. Sneakyone

    Sneakyone Well-Known Member Elite Member

    Joined:
    Oct 28, 2009
    Posts:
    1,968
    Likes Received:
    75
    Location:
    Alabama, USA
    Local time:
    04:51
    My System
    Loading...

    here it is:

    ;***********************************************************************************************************************************************************************************
    ANALYSIS: 2009-12-25 00:20:10
    PROTECTIONS: 1
    MALWARE: 6
    SUSPECTS: 9
    ;***********************************************************************************************************************************************************************************
    PROTECTIONS
    Description Version Active Updated
    ;===================================================================================================================================================================================
    AVG Anti-Virus Free Yes Yes
    ;===================================================================================================================================================================================
    MALWARE
    Id Description Type Active Severity Disinfectable Disinfected Location
    ;===================================================================================================================================================================================
    00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No c:\users\owner\appdata\roaming\microsoft\windows\cookies\owner@doubleclick[1].txt
    00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No c:\users\owner\appdata\roaming\microsoft\windows\cookies\owner@atdmt[1].txt
    00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No c:\users\owner\appdata\roaming\microsoft\windows\cookies\owner@tribalfusion[2].txt
    00509861 Hacktool/AngryScan HackTools No 1 Yes No c:\users\owner\desktop\my stuff\hack tools\ipscan.exe
    03074964 Trj/CI.A Virus/Trojan No 0 Yes No c:\program files (x86)\cain\abel.exe
    03731707 Trj/Downloader.MDW Virus/Trojan No 1 No No c:\users\owner\desktop\my stuff\rsps\angels_rsps_tool_package_v1.rar[angels rsps tool package v1\angels rsps tool package v1\!!!!!server-tools!!!!!\shopmaker.exe]
    ;===================================================================================================================================================================================
    SUSPECTS
    Sent Location
    ;===================================================================================================================================================================================
    No c:\program files (x86)\cain\abel.dll
    No c:\program files (x86)\cain\abel64.exe
    No c:\program files (x86)\cain\cain.exe
    No c:\program files (x86)\hycam2\camres2.dll
    No c:\users\owner\desktop\my stuff\my youtube videos\hc2setup.exe[c:\users\owner\desktop\my stuff\my youtube videos\hc2setup.exe][camres2.dll]
    No c:\users\owner\desktop\my stuff\mod stuff\modio (2).exe
    No c:\users\owner\desktop\my stuff\mod stuff\modio.exe
    No c:\users\owner\desktop\my stuff\mod stuff\modio.rar[modio.exe]
    No c:\users\owner\desktop\my stuff\setups\ca_setup.exe
    ;===================================================================================================================================================================================
    VULNERABILITIES
    Id Severity Description
    ;===================================================================================================================================================================================
    ;===================================================================================================================================================================================
  7. Pancake

    Pancake Well-Known Member

    Joined:
    Jun 1, 2006
    Posts:
    3,921
    Likes Received:
    5
    Location:
    Victoria, Australia
    Local time:
    19:51
    My System
    Loading...

    .Remove these folders
    c:\program files (x86)\cain
    c:\users\owner\desktop\my stuff\rsps
    c:\users\owner\desktop\my stuff\hack tools


    Then.... Please do the following:
    Download TFC to your desktop http://oldtimer.geekstogo.com/TFC.exe
    Close any open windows.
    Double click the TFC icon to run the program
    TFC will close all open programs itself in order to run,
    Click the Start button to begin the process.
    Allow TFC to run uninterrupted.
    The program should not take long to finish it's job
    Once its finished it should automatically reboot your machine,
    if it doesn't, manually reboot to ensure a complete clean
    It's normal after running TFC cleaner that the PC will be slower to boot the first time.
  8. Sneakyone

    Sneakyone Well-Known Member Elite Member

    Joined:
    Oct 28, 2009
    Posts:
    1,968
    Likes Received:
    75
    Location:
    Alabama, USA
    Local time:
    04:51
    My System
    Loading...

    ok now I did all that..now is there any way you can give me a tutorial on how to change my ip address and making absolute security against this fool...
  9. Pancake

    Pancake Well-Known Member

    Joined:
    Jun 1, 2006
    Posts:
    3,921
    Likes Received:
    5
    Location:
    Victoria, Australia
    Local time:
    19:51
    My System
    Loading...

    You will need to contact your ISP if you wish to have the ip address changed.
  10. Sneakyone

    Sneakyone Well-Known Member Elite Member

    Joined:
    Oct 28, 2009
    Posts:
    1,968
    Likes Received:
    75
    Location:
    Alabama, USA
    Local time:
    04:51
    My System
    Loading...

    ok thanks and merry christmas :)
Similar Threads
Forum Title Date
System Security help choosing antivirus Jul 16, 2014
System Security Help deep imbedded virus Jun 21, 2014
System Security Small business needs help with monitoring interns Jun 13, 2014
System Security Some programs not launching! Help! Jun 5, 2014

Thread Status:
Not open for further replies.