Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Can't access Malwarebytes.org BUT can update MBAM

Started by kirbyskipper , Mar 22 2012 06:46 AM

  • Please log in to reply

#1
kirbyskipper
Posted 22 March 2012 - 06:46 AM

kirbyskipper

    New Member

  • Member
  • Pip
  • 1 posts
Recently I discovered that I am unable to access the malwarebytes.org web site from my HP laptop. Oddly enough, I am still able to update the MBAM software that I have running on the computer and to run scans. I have not knowingly placed any restrictions on access. I'm running Windows 7 and Windows Security Essentials.

I've run an MBAM scan and have found no evidence of malware -- nor is the computer demonstrating any evidence of a virus.

Can anyone provide me with any insight on what might be happening to restrict access to the malwarebytes.org web site? And on what I might to do remedy this issue?

I've run OTL as well and have attached the scan output below:

OTL logfile created on: 3/22/2012 8:30:30 AM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Users\neverett\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

7.80 Gb Total Physical Memory | 5.16 Gb Available Physical Memory | 66.10% Memory free
15.60 Gb Paging File | 12.54 Gb Available in Paging File | 80.34% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 450.83 Gb Total Space | 346.71 Gb Free Space | 76.91% Space Free | Partition Type: NTFS
Drive D: | 14.64 Gb Total Space | 2.07 Gb Free Space | 14.11% Space Free | Partition Type: NTFS
Drive E: | 99.02 Mb Total Space | 88.40 Mb Free Space | 89.27% Space Free | Partition Type: FAT32

Computer Name: XXXXXXX-PC | User Name: XXXXXXX | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/03/22 08:30:22 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\xxxxxxx\Downloads\OTL.exe
PRC - [2012/03/10 05:21:44 | 001,049,072 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012/02/24 04:29:58 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
PRC - [2012/02/23 13:30:40 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
PRC - [2012/02/23 13:22:56 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
PRC - [2012/02/22 21:49:58 | 006,591,800 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
PRC - [2012/02/20 22:28:32 | 000,059,240 | ---- | M] (Apple Inc.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
PRC - [2012/02/14 19:03:14 | 024,246,216 | ---- | M] (Dropbox, Inc.) -- C:\Users\neverett\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012/01/13 15:53:16 | 000,981,680 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
PRC - [2012/01/03 09:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/10/14 02:01:50 | 000,994,360 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psia.exe
PRC - [2011/10/14 02:01:48 | 000,399,416 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\sua.exe
PRC - [2011/10/14 02:01:46 | 000,291,896 | ---- | M] (Secunia) -- C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
PRC - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
PRC - [2011/02/25 10:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2010/09/30 04:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
PRC - [2010/09/30 04:06:18 | 001,945,536 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\ElementsOrganizerSyncAgent.exe
PRC - [2010/08/05 05:45:46 | 000,058,760 | ---- | M] (IBM Corp) -- C:\Program Files (x86)\IBM\Lotus\Notes\ntmulti.exe
PRC - [2010/08/05 05:44:50 | 003,417,480 | ---- | M] (IBM) -- C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe
PRC - [2010/03/31 21:30:46 | 000,338,168 | -H-- | M] (DeviceVM, Inc.) -- C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
PRC - [2010/03/24 15:17:24 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/03/24 15:17:22 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/03/24 12:37:58 | 000,076,584 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe
PRC - [2010/03/01 15:07:18 | 002,320,920 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2010/03/01 15:06:30 | 000,268,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2010/02/26 19:27:16 | 000,127,984 | ---- | M] (CinemaNow, Inc.) -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
PRC - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
PRC - [2007/07/20 20:32:16 | 000,217,088 | ---- | M] (Brother Industries, Ltd.) -- C:\Program Files (x86)\Brownie\BRNIPMON.exe


========== Modules (No Company Name) ==========

MOD - [2012/03/10 05:21:42 | 000,429,040 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\ppgooglenaclpluginchrome.dll
MOD - [2012/03/10 05:21:41 | 003,772,912 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\pdf.dll
MOD - [2012/03/10 05:20:17 | 000,122,880 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\avutil-51.dll
MOD - [2012/03/10 05:20:16 | 000,220,672 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\avformat-53.dll
MOD - [2012/03/10 05:20:15 | 001,747,456 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\avcodec-53.dll
MOD - [2012/03/10 01:56:11 | 008,593,056 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\gcswf32.dll
MOD - [2012/02/22 21:49:56 | 000,921,600 | ---- | M] () -- C:\Program Files (x86)\Yahoo!\Messenger\yui.dll
MOD - [2012/02/22 21:49:38 | 000,078,336 | ---- | M] () -- C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll
MOD - [2012/02/15 11:33:05 | 000,452,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\55e58d91a4f5ca167baa14ecf8c406fb\IAStorUtil.ni.dll
MOD - [2012/02/15 11:11:48 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a1c4a635721f85bef0ea4194b888b871\System.Runtime.Remoting.ni.dll
MOD - [2012/02/15 11:11:19 | 012,433,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6c51e152e7404188914c9fa4d8503ff9\System.Windows.Forms.ni.dll
MOD - [2012/02/15 11:11:11 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ab87129c2b603f218e4aa5300c9b1bdd\System.Drawing.ni.dll
MOD - [2012/02/15 11:10:58 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\47b9e7f070271ff50f988f75ea68fa3e\WindowsBase.ni.dll
MOD - [2012/02/15 11:10:53 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\9866d1f6178e1cde25642f1ac293ff8d\System.Xml.ni.dll
MOD - [2012/02/15 11:10:38 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e620323cacb5b6bfd93fd28d263440e4\System.Configuration.ni.dll
MOD - [2012/02/15 11:10:37 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll
MOD - [2011/10/13 17:07:12 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\31fce331fded94dd06627603f6fe4562\Accessibility.ni.dll
MOD - [2011/10/13 17:06:45 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
MOD - [2011/06/24 22:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 22:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010/09/30 04:11:36 | 000,125,888 | ---- | M] () -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\QtPlugins\imageformats\qjpeg4.dll
MOD - [2010/09/30 04:07:02 | 008,560,576 | ---- | M] () -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\QtGui4.dll
MOD - [2010/09/30 04:07:00 | 002,386,368 | ---- | M] () -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\QtCore4.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/07/27 22:04:48 | 001,517,328 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng) Intel®
SRV:64bit: - [2011/07/27 21:48:34 | 000,340,240 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2011/07/27 21:44:18 | 000,844,560 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc) Intel®
SRV:64bit: - [2011/05/13 19:58:10 | 000,030,520 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Windows\SysNative\hpservice.exe -- (hpsrv)
SRV:64bit: - [2011/04/27 17:21:18 | 000,288,272 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)
SRV:64bit: - [2011/04/27 17:21:18 | 000,012,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2011/02/27 19:22:15 | 000,203,264 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2010/01/27 17:01:04 | 000,102,968 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe -- (HP Wireless Assistant Service)
SRV:64bit: - [2010/01/18 18:04:08 | 000,020,480 | ---- | M] () [Auto | Running] -- C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe -- (HPWMISVC)
SRV:64bit: - [2010/01/14 03:38:52 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\stacsv64.exe -- (STacSV)
SRV:64bit: - [2009/12/29 17:19:12 | 000,873,248 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV:64bit: - [2009/07/13 21:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/03/03 06:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe -- (AESTFilters)
SRV - [2012/02/15 14:30:18 | 000,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/01/03 09:10:42 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/10/14 02:01:50 | 000,994,360 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\psia.exe -- (Secunia PSI Agent)
SRV - [2011/10/14 02:01:48 | 000,399,416 | ---- | M] (Secunia) [Auto | Running] -- C:\Program Files (x86)\Secunia\PSI\sua.exe -- (Secunia Update Agent)
SRV - [2011/09/09 18:10:28 | 000,086,072 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2011/03/28 17:07:50 | 000,094,264 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe -- (HPDrvMntSvc.exe)
SRV - [2011/02/28 18:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 10:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/09/30 04:06:46 | 000,169,408 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor9.0)
SRV - [2010/08/05 05:45:46 | 000,058,760 | ---- | M] (IBM Corp) [Auto | Running] -- C:\Program Files (x86)\IBM\Lotus\Notes\ntmulti.exe -- (Multi-user Cleanup Service)
SRV - [2010/08/05 05:44:50 | 003,417,480 | ---- | M] (IBM) [Auto | Running] -- C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe -- (Lotus Notes Diagnostics)
SRV - [2010/03/31 21:30:46 | 000,338,168 | -H-- | M] (DeviceVM, Inc.) [Auto | Running] -- C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe -- (DvmMDES)
SRV - [2010/03/24 15:17:24 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel®
SRV - [2010/03/24 12:33:18 | 000,083,240 | ---- | M] (Hewlett-Packard Developement Company, L.P.) [On_Demand | Stopped] -- C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe -- (hpdoccardsvc)
SRV - [2010/03/18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/01 15:07:18 | 002,320,920 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS) Intel®
SRV - [2010/03/01 15:06:30 | 000,268,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS) Intel®
SRV - [2010/02/26 19:27:16 | 000,127,984 | ---- | M] (CinemaNow, Inc.) [Auto | Running] -- C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe -- (CinemaNow Service)
SRV - [2010/01/14 03:38:52 | 000,244,736 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe -- (STacSV)
SRV - [2009/06/10 17:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/09 12:56:16 | 000,337,200 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe -- (WindowBlinds)
SRV - [2009/03/03 06:42:58 | 000,089,600 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe -- (AESTFilters)
SRV - [2008/11/09 16:48:14 | 000,602,392 | ---- | M] (Yahoo! Inc.) [Auto | Running] -- C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe -- (YahooAUService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/02/15 12:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2011/10/01 02:16:50 | 000,393,264 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2011/08/03 18:28:32 | 008,604,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NETwNs64.sys -- (NETwNs64) ___ Intel®
DRV:64bit: - [2011/06/10 07:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2011/05/13 19:58:16 | 000,030,008 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hpdskflt.sys -- (hpdskflt)
DRV:64bit: - [2011/05/13 19:57:58 | 000,043,320 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Accelerometer.sys -- (Accelerometer)
DRV:64bit: - [2011/04/27 15:25:24 | 000,084,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:64bit: - [2011/03/11 02:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 02:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/02/27 19:22:18 | 010,610,400 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdpmd64.sys -- (intelkmd)
DRV:64bit: - [2011/02/27 19:22:18 | 010,610,400 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2011/02/27 19:22:15 | 007,767,552 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/02/27 19:22:15 | 000,279,040 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2010/11/20 09:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 07:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/20 05:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2010/11/18 08:29:37 | 000,158,976 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Impcd.sys -- (Impcd)
DRV:64bit: - [2010/11/18 08:24:49 | 000,116,240 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2010/09/01 04:30:58 | 000,017,976 | ---- | M] (Secunia) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\psi_mf.sys -- (PSI)
DRV:64bit: - [2010/03/24 14:55:56 | 000,540,696 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2010/03/19 04:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2010/03/01 15:06:18 | 000,056,344 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (HECIx64) Intel®
DRV:64bit: - [2010/02/01 15:12:00 | 007,675,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NETw5s64.sys -- (NETw5s64) Intel®
DRV:64bit: - [2010/01/28 14:33:38 | 000,116,736 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV:64bit: - [2010/01/14 03:38:52 | 000,505,856 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2010/01/07 14:22:44 | 000,021,160 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwrchid.sys -- (btwrchid)
DRV:64bit: - [2010/01/07 14:22:40 | 000,035,104 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwl2cap.sys -- (btwl2cap)
DRV:64bit: - [2010/01/07 14:22:36 | 000,132,648 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwavdt.sys -- (btwavdt)
DRV:64bit: - [2010/01/07 14:22:34 | 000,098,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btwaudio.sys -- (btwaudio)
DRV:64bit: - [2009/11/11 16:09:32 | 000,020,056 | -H-- | M] (DeviceVM, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dvmio.sys -- (DVMIO)
DRV:64bit: - [2009/08/17 17:58:58 | 000,040,448 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmUStor.sys -- (AmUStor)
DRV:64bit: - [2009/07/13 21:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 21:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 21:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/13 21:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 17:01:11 | 001,485,312 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTDPV6.SYS -- (SrvHsfV92)
DRV:64bit: - [2009/06/10 17:01:11 | 000,740,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS -- (SrvHsfWinac)
DRV:64bit: - [2009/06/10 17:01:11 | 000,292,864 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VSTAZL6.SYS -- (SrvHsfHDA)
DRV:64bit: - [2009/06/10 16:35:33 | 000,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7)
DRV:64bit: - [2009/06/10 16:35:28 | 005,434,368 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netw5v64.sys -- (netw5v64) Intel®
DRV:64bit: - [2009/06/10 16:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 16:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 16:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 16:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2008/05/06 16:06:00 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV - [2009/07/13 21:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {D1AFCB07-77AA-474B-98C4-7F3AF69498C2}
IE:64bit: - HKLM\..\SearchScopes\{9298E809-F94C-4A0B-B03F-E1BAD3670DBF}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE:64bit: - HKLM\..\SearchScopes\{D1AFCB07-77AA-474B-98C4-7F3AF69498C2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPNOT/1
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPNOT/1
IE - HKLM\..\SearchScopes,DefaultScope = {D1AFCB07-77AA-474B-98C4-7F3AF69498C2}
IE - HKLM\..\SearchScopes\{9298E809-F94C-4A0B-B03F-E1BAD3670DBF}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKLM\..\SearchScopes\{D1AFCB07-77AA-474B-98C4-7F3AF69498C2}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www22.verizon...ogin/Login.aspx
IE - HKCU\..\URLSearchHook: {6dfc55bb-bfff-485a-9709-90c3fdf6db58} - C:\Program Files (x86)\Wisdom-soft\tbWisd.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKCU\..\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}: "URL" = http://my.verizon.co...q={searchTerms}
IE - HKCU\..\SearchScopes\{61543007-EAC8-4745-8766-E1C4EAD81BF4}: "URL" = http://www.verizon.n...q={searchTerms}
IE - HKCU\..\SearchScopes\{9298E809-F94C-4A0B-B03F-E1BAD3670DBF}: "URL" = http://www.ask.com/w...}&l=dis&o=ushpl
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT1059861
IE - HKCU\..\SearchScopes\{D1AFCB07-77AA-474B-98C4-7F3AF69498C2}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://home.verizon....w.nytimes.com/"
FF - prefs.js..extensions.enabledItems: {96ce3418-8ef3-45b5-8808-de5dbe03fb13}:6.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.8.20100713041928
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..keyword.URL: "http://www.google.co...lient&hl=en&q="
FF - prefs.js..network.proxy.no_proxies_on: "*.local"
FF - prefs.js..network.proxy.type: 0


FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@hulu.com/Hulu Desktop: C:\Users\neverett\AppData\Local\HuluDesktop\instances\0.9.14.1\nphdplg.dll (Hulu LLC)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/03/21 09:18:07 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/01/12 09:45:25 | 000,000,000 | ---D | M]

[2010/11/16 08:33:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\neverett\AppData\Roaming\Mozilla\Extensions
[2010/11/17 18:30:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\aqx0x9n2.default\extensions
[2010/11/17 18:52:13 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\aqx0x9n2.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/11/17 18:52:13 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\aqx0x9n2.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2012/02/29 09:59:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\klu3ofol.default\extensions
[2010/11/21 14:55:08 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\klu3ofol.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2012/02/25 10:54:04 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\klu3ofol.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/12/06 17:04:28 | 000,000,000 | ---D | M] (Verizon Toolbar) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\klu3ofol.default\extensions\{96ce3418-8ef3-45b5-8808-de5dbe03fb13}
[2012/02/29 09:59:36 | 000,000,000 | ---D | M] (HTTPS-Everywhere) -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\klu3ofol.default\extensions\[email protected]
[2010/11/19 16:52:03 | 000,001,834 | ---- | M] () -- C:\Users\neverett\AppData\Roaming\Mozilla\Firefox\Profiles\klu3ofol.default\searchplugins\bing.xml
[2012/03/21 09:18:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2012/03/13 00:38:06 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll
[2012/02/25 11:24:48 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2012/03/13 01:38:05 | 000,001,538 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-en-GB.xml
[2012/03/13 01:06:36 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml
[2012/03/13 01:38:05 | 000,000,947 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\chambers-en-GB.xml
[2012/03/13 01:38:05 | 000,001,180 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-en-GB.xml
[2010/08/11 16:39:58 | 000,002,465 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\verizontb.xml
[2012/03/13 01:38:05 | 000,001,135 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-en-GB.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms},
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Disabled) = C:\Program Files (x86)\Google\Chrome\Application\17.0.963.79\pdf.dll
CHR - plugin: Chrome Remote Desktop Host (Enabled) = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\1.3.20237.4429_0\remoting_host_plugin.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.310.5 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: NPCIG.dll (Enabled) = C:\Program Files (x86)\Canon\MyCamera Download Plugin\NPCIG.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Hulu Desktop (Enabled) = C:\Users\neverett\AppData\Local\HuluDesktop\instances\0.9.14.1\nphdplg.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Entanglement = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\2.7.9_0\
CHR - Extension: Add to Amazon Wish List = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced\1.0.0.8_0\
CHR - Extension: Google Calendar = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0\
CHR - Extension: Chrome Remote Desktop BETA = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp\1.3.20237.4429_0\
CHR - Extension: HTTPS Everywhere = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp\2012.3.14_0\
CHR - Extension: Ochs = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\lejiflopkadmkjajbalpkglfhmkjchol\0.1.5.9_0\
CHR - Extension: Poppit = C:\Users\neverett\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi\2.2_0\

O1 HOSTS File: ([2009/06/10 17:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O2 - BHO: (Wisdom-soft toolbar) - {6dfc55bb-bfff-485a-9709-90c3fdf6db58} - C:\Program Files (x86)\Wisdom-soft\tbWisd.dll (Conduit Ltd.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Updater For Verizon Toolbar) - {96673559-e653-4cdc-8923-f89347a952c0} - C:\Program Files (x86)\verizontb\auxi\verizonAu.dll (Visicom Media)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Verizon Toolbar) - {f8d96645-337c-419b-8792-b6c126145811} - C:\Program Files (x86)\verizontb\verizonDx.dll ()
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Wisdom-soft toolbar) - {6dfc55bb-bfff-485a-9709-90c3fdf6db58} - C:\Program Files (x86)\Wisdom-soft\tbWisd.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (Verizon Toolbar) - {f8d96645-337c-419b-8792-b6c126145811} - C:\Program Files (x86)\verizontb\verizonDx.dll ()
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Wisdom-soft toolbar) - {6DFC55BB-BFFF-485A-9709-90C3FDF6DB58} - C:\Program Files (x86)\Wisdom-soft\tbWisd.dll (Conduit Ltd.)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (AlcorMicro Co., Ltd.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [HP Quick Launch] C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Company)
O4:64bit: - HKLM..\Run: [HPToneControl] C:\Program Files\Hewlett-Packard\HPToneControl\HPToneCtl.exe (Hewlett-Packard )
O4:64bit: - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe ()
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelPAN] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe (Intel® Corporation)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe ()
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BrStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe (brother)
O4 - HKLM..\Run: [HP Envy Guides AutoPlay] C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe (Hewlett-Packard Development Company, L.P.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKCU..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [MobileDocuments] C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe (Apple Inc.)
O4 - HKCU..\Run: [PhotoshopElements8SyncAgent] C:\Program Files (x86)\Adobe\Elements 9 Organizer\ElementsOrganizerSyncAgent.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Users\neverett\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\neverett\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20270.www2.h...tDetection2.cab (GMNRev Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} https://notesmail01.wnc.edu/dwa7W.cab (Domino Web Access 7 Control)
O16 - DPF: vzTCPConfig http://my.verizon.co...vzTCPConfig.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.242.0.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{35B63742-B8FB-41A4-B5F7-11B1F0AB74D2}: DhcpNameServer = 192.168.1.1 71.242.0.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CBC9F8EF-CCAA-4E1B-8FD5-559DBEFB90BE}: DhcpNameServer = 192.168.1.1 71.242.0.12
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O20:64bit: - Winlogon\Notify\WB: DllName - (C:\Program Files (x86)\Stardock\MyColors\fast64.dll) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22:64bit: - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll (Stardock)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{47ec9209-2bd7-11e0-a7a4-70f39558c0a7}\Shell - "" = AutoRun
O33 - MountPoints2\{47ec9209-2bd7-11e0-a7a4-70f39558c0a7}\Shell\AutoRun\command - "" = G:\StartClickFreeBackup.exe
O33 - MountPoints2\{6b0d4310-d4ae-11e0-8d0f-70f39558c0a7}\Shell - "" = AutoRun
O33 - MountPoints2\{6b0d4310-d4ae-11e0-8d0f-70f39558c0a7}\Shell\AutoRun\command - "" = H:\IronKey.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/03/22 08:01:17 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{D230167E-D240-41CA-BEF8-260B651CC48D}
[2012/03/22 08:01:05 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{987CE1EB-F307-44A9-B669-DD39871C475E}
[2012/03/21 08:44:20 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{BDBF1681-B9B3-4457-9333-9B7FB1E2AF87}
[2012/03/21 08:44:10 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{4042C2A7-596A-4E42-BD7D-CE34F3785812}
[2012/03/20 08:37:48 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{188772F0-CFE3-4428-A889-E96447674906}
[2012/03/20 08:37:36 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{39E41F03-891D-4B76-9A8E-9FA10F6B1546}
[2012/03/19 11:15:56 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{29331663-4C71-4D9C-9147-88AE14F5A72A}
[2012/03/19 11:15:46 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{E1767E3A-A193-4F9D-80BF-EA9C14C27A7B}
[2012/03/18 10:34:01 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{470BE40B-0C53-41DB-ACD6-7DC31AA19008}
[2012/03/18 10:33:51 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{1926E56A-5F2D-4B92-8940-AD936E206DF5}
[2012/03/17 11:43:45 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{8E5CD949-7D64-4EAF-834E-54C6B4A8710B}
[2012/03/16 09:12:06 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{CB9BAEC5-78BD-4777-B036-F700D9F0F185}
[2012/03/16 09:11:51 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{57FB945E-BB3F-4544-ACCE-7D5F39558C53}
[2012/03/15 08:52:45 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{8419E62E-55AE-403E-8488-AAD0FC47B28C}
[2012/03/15 08:52:35 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{B432DDC9-BBBB-48ED-A3C4-39B1A5203FFA}
[2012/03/14 10:07:31 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{D7CEDE87-9BA9-469E-81C5-2653713159A3}
[2012/03/14 10:07:19 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{D95993B9-4E8B-4C3D-B829-55A1F149D977}
[2012/03/14 10:02:57 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{242FA4CE-4B1D-4382-86FA-5791A336DBCC}
[2012/03/13 09:04:08 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{38D88758-C018-4E4A-BFFA-2F7E9CA8AA7C}
[2012/03/13 09:03:58 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{675C3328-E246-4956-996C-22D6DB38FE2C}
[2012/03/12 15:36:36 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{6C9901EF-7BFB-4AFA-B56C-53C86F3E57A2}
[2012/03/12 15:36:15 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{1A37D61D-1D31-4EFE-929F-63531C84EA18}
[2012/03/12 15:32:01 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{E31F70F5-F275-481C-A803-41420476FED6}
[2012/03/11 15:16:36 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{74B1A6DB-1847-4838-8CBB-EA1AD3BCB79F}
[2012/03/11 15:16:25 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{46235C63-C7F2-4305-AB6B-80041D00F6C5}
[2012/03/10 10:49:46 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Roaming\Mobile Atlas Creator
[2012/03/10 10:47:59 | 000,000,000 | ---D | C] -- C:\Users\neverett\New folder
[2012/03/10 10:04:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/03/10 10:04:16 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2012/03/10 10:04:16 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/03/10 09:17:30 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{0CD84230-D8DA-4852-9F83-DB10721594B5}
[2012/03/10 09:17:09 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{C0208350-23E2-4753-AB89-EE0BE822B4A4}
[2012/03/10 09:16:56 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{3AEE39F4-6765-47CA-9ED6-77BF5D3FF5B6}
[2012/03/09 17:55:34 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{D97E0B8F-BFB9-4694-BE25-BD64609158D7}
[2012/03/09 17:55:21 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{C83DCD77-0AC6-46BD-9BA8-90D0219A7F25}
[2012/03/07 11:08:20 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{A5CCFAAA-9928-493E-8370-45915C831252}
[2012/03/07 11:08:09 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{D35902B8-0F26-411D-B1D1-6EAA6D2DB7AE}
[2012/03/06 12:00:41 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{4A826A34-EFC2-492A-A108-6D526E10930D}
[2012/03/06 12:00:31 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{FA6BA7DB-0BEF-4CEA-882A-1E151717A7D3}
[2012/03/05 09:18:33 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{629D982E-97AE-40A8-925C-AC59152C134A}
[2012/03/05 09:18:23 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{22BC7AC8-BA9D-4CE7-8DC7-960979A2C63F}
[2012/03/04 13:12:26 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{F2C7CE61-23F3-402A-BC43-716F63DD28C0}
[2012/03/04 13:12:15 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{FFE1527C-49E6-465E-8EAC-D2080457278D}
[2012/03/03 13:10:19 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{962FA844-961E-45CF-8D17-85102742E127}
[2012/03/03 13:09:47 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{23EF754E-C4FC-438C-AA61-EF0C442FCD04}
[2012/03/03 13:09:36 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{A7171943-E6E6-41AF-81FB-BB342675472C}
[2012/03/02 15:17:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel
[2012/03/02 15:16:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel PROSet Wireless
[2012/03/02 15:16:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intel
[2012/03/02 15:16:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2012/03/02 15:09:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
[2012/03/02 15:08:30 | 000,000,000 | ---D | C] -- C:\ProgramData\{A8DA1505-E615-42BB-BB77-74D5CC91FE7E}
[2012/03/02 08:54:10 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{791AF03B-2CC0-43B6-A4FC-422B49A85CD1}
[2012/03/02 08:53:38 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{3ACC1A94-2E3D-4EBC-8414-DA3612C3F039}
[2012/03/02 08:53:26 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{8BBA75BC-4067-4071-8570-65D58B4F6E65}
[2012/03/01 17:59:13 | 000,000,000 | ---D | C] -- C:\Users\neverett\updilogs
[2012/03/01 09:31:40 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{C261764C-C965-4557-9D48-AB9E8B73E959}
[2012/03/01 09:31:31 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{115AC3E5-6C4D-4E53-9184-C1E1B3EB8E19}
[2012/02/29 09:42:25 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{C5C3916C-CFE8-4C86-89C6-13CAF81F07F5}
[2012/02/29 09:42:15 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{DBAC0B2B-CD2F-4528-89D5-BE841C17A0DA}
[2012/02/28 10:14:43 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{38B6C07A-945C-4AE9-9EAD-9358672F58DD}
[2012/02/28 10:13:43 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{67815880-7609-4728-A810-235DC015EE8D}
[2012/02/27 11:15:23 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{B3F3D626-C681-4B6B-A439-1C6A15530327}
[2012/02/27 11:15:13 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{6F0CB9D7-BD76-4866-BBC2-3BB3AFDBE259}
[2012/02/26 11:05:49 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\MediaSmart DVD
[2012/02/26 11:01:16 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\YesVideo
[2012/02/26 10:41:41 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\HP MediaSmart Video
[2012/02/26 10:39:39 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{28A882B4-F1D6-48AA-A765-6335A56386C5}
[2012/02/26 10:39:22 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{F027C516-1DFC-4872-B0E5-53067CD10173}
[2012/02/25 11:49:51 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Roaming\Macrovision
[2012/02/25 11:45:53 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{898B4315-D813-4127-A1B3-98386AA13506}
[2012/02/25 11:45:42 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{3B4E5800-7206-4DF2-960A-5BEBAC3800C4}
[2012/02/25 11:25:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2012/02/25 10:53:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Yahoo! Companion
[2012/02/25 10:53:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
[2012/02/25 08:37:13 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{4001E1E9-A4BA-4C3A-B225-BE8CDB32DAC3}
[2012/02/24 10:03:40 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{7BFE288B-4F1D-4756-8FE5-529CA72E0CE2}
[2012/02/24 10:03:29 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{BD93CD08-2867-4F38-B63D-01A855D32A7C}
[2012/02/23 09:07:02 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{1BBA9C49-E1BD-4DD9-B5A9-7B665A6B7CB0}
[2012/02/23 09:06:40 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{1FD892A9-18EF-43E8-A02C-DC51752A7850}
[2012/02/22 18:55:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012/02/22 18:55:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012/02/22 18:55:31 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2012/02/22 08:38:58 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{0AAD179E-5938-469A-9BAA-8D003D52D98A}
[2012/02/22 08:38:47 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{EBDB1AE4-C4E5-4340-AFC7-04F4FA06D1B3}
[2012/02/21 14:16:29 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{5671A725-D259-4F55-8872-0F1F018148EA}
[2012/02/21 14:16:17 | 000,000,000 | ---D | C] -- C:\Users\neverett\AppData\Local\{F1EA2880-E105-49A3-9CE6-44541B953452}
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/03/22 08:13:00 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/03/22 08:13:00 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/03/22 08:07:01 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/22 08:07:01 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/22 08:04:04 | 000,729,816 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/03/22 08:04:04 | 000,626,512 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/03/22 08:04:04 | 000,107,756 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/03/22 08:00:51 | 000,000,329 | ---- | M] () -- C:\Windows\Brownie.ini
[2012/03/22 07:58:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/22 07:58:27 | 1988,317,183 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/21 09:18:09 | 000,000,977 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/03/20 14:45:05 | 000,009,664 | ---- | M] () -- C:\Users\neverett\Desktop\cc_20120320_144454.reg
[2012/03/20 13:17:42 | 000,000,344 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForneverett.job
[2012/03/18 11:39:48 | 000,001,025 | ---- | M] () -- C:\Users\neverett\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/03/18 10:26:37 | 000,002,515 | ---- | M] () -- C:\Users\neverett\Application Data\Microsoft\Internet Explorer\Quick Launch\Apple Safari.lnk
[2012/03/18 10:26:36 | 000,002,491 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2012/03/15 08:51:52 | 000,316,840 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/03/12 16:13:43 | 000,002,344 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/03/10 10:07:27 | 000,001,245 | ---- | M] () -- C:\Windows\SysNative\mapisvc.inf
[2012/03/10 10:04:45 | 000,001,783 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/03/03 13:16:46 | 000,000,000 | -H-- | M] () -- C:\Users\neverett\Documents\Default.rdp
[2012/03/02 15:09:31 | 000,002,179 | ---- | M] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/03/01 18:07:02 | 000,001,094 | ---- | M] () -- C:\Windows\.nifregistry
[2012/03/01 10:22:52 | 000,001,024 | ---- | M] () -- C:\.rnd
[2012/02/27 12:42:06 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/02/26 14:53:13 | 001,288,138 | ---- | M] () -- C:\Users\neverett\Desktop\Windows Movie Maker User Guide.pdf
[2012/02/25 10:53:52 | 000,001,163 | ---- | M] () -- C:\Users\neverett\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/02/25 10:53:52 | 000,001,139 | ---- | M] () -- C:\Users\Public\Desktop\Yahoo! Messenger.lnk
[2012/02/25 09:13:45 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/02/25 08:41:53 | 000,001,029 | ---- | M] () -- C:\Users\neverett\Desktop\Dropbox.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/03/20 14:44:57 | 000,009,664 | ---- | C] () -- C:\Users\neverett\Desktop\cc_20120320_144454.reg
[2012/03/18 11:39:48 | 000,001,025 | ---- | C] () -- C:\Users\neverett\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012/03/10 10:04:45 | 000,001,783 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2012/03/03 13:16:46 | 000,000,000 | -H-- | C] () -- C:\Users\neverett\Documents\Default.rdp
[2012/03/02 15:09:31 | 000,002,179 | ---- | C] () -- C:\Users\Public\Desktop\HP Support Assistant.lnk
[2012/03/01 18:06:44 | 000,001,094 | ---- | C] () -- C:\Windows\.nifregistry
[2012/03/01 10:22:51 | 000,001,024 | ---- | C] () -- C:\.rnd
[2012/02/26 14:53:13 | 001,288,138 | ---- | C] () -- C:\Users\neverett\Desktop\Windows Movie Maker User Guide.pdf
[2012/02/25 11:49:08 | 000,000,977 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/02/25 10:53:52 | 000,001,163 | ---- | C] () -- C:\Users\neverett\Application Data\Microsoft\Internet Explorer\Quick Launch\Yahoo! Messenger.lnk
[2012/02/25 10:53:52 | 000,001,139 | ---- | C] () -- C:\Users\Public\Desktop\Yahoo! Messenger.lnk
[2011/03/06 13:44:06 | 000,040,960 | ---- | C] () -- C:\Windows\SysWow64\IPPCPUID.DLL
[2011/03/06 13:44:00 | 000,110,592 | ---- | C] () -- C:\Windows\SysWow64\NSPdf32.dll
[2011/03/06 13:44:00 | 000,037,552 | ---- | C] () -- C:\Windows\SysWow64\Newsoft.drv
[2011/03/06 13:44:00 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\NSPDF16.DLL
[2011/03/06 13:44:00 | 000,000,153 | ---- | C] () -- C:\Windows\SysWow64\PMDrvStr.ini
[2011/03/06 13:43:55 | 000,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll
[2011/03/06 13:41:24 | 000,000,431 | ---- | C] () -- C:\Windows\MAXLINK.INI
[2011/02/27 19:23:00 | 000,104,796 | ---- | C] () -- C:\Windows\SysWow64\igfcg575m.bin
[2011/02/27 19:22:58 | 000,002,857 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011/01/29 13:32:03 | 000,743,534 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/11/19 18:49:48 | 000,000,152 | ---- | C] () -- C:\Windows\BRVIDEO.INI
[2010/11/19 18:49:48 | 000,000,000 | ---- | C] () -- C:\Windows\brmx2001.ini
[2010/11/19 18:49:35 | 000,009,853 | ---- | C] () -- C:\Windows\HL-2170W.INI
[2010/11/19 18:49:35 | 000,000,114 | ---- | C] () -- C:\Windows\SysWow64\brlmw03a.ini
[2010/11/19 18:49:21 | 000,000,426 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2010/11/19 18:49:20 | 000,000,034 | ---- | C] () -- C:\Windows\SysWow64\BD2170W.DAT
[2010/11/19 18:48:20 | 000,000,329 | ---- | C] () -- C:\Windows\Brownie.ini
[2010/11/18 08:25:04 | 000,870,560 | ---- | C] () -- C:\Windows\SysWow64\igkrng575.bin
[2010/11/18 08:24:55 | 000,127,868 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng575.bin
[2010/11/16 19:55:24 | 000,000,171 | ---- | C] () -- C:\Windows\QUICKEN.INI
[2010/09/24 18:19:09 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/09/24 18:14:13 | 000,001,105 | ---- | C] () -- C:\Windows\SysWow64\atipblup.dat
[2010/09/24 18:09:50 | 000,000,300 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog2.ini
[2010/09/24 18:09:50 | 000,000,241 | ---- | C] () -- C:\Windows\SysWow64\RStoneLog.ini
[2010/05/03 16:58:15 | 000,000,188 | ---- | C] () -- C:\Windows\SysWow64\HPWA.ini

========== LOP Check ==========

[2011/03/06 13:50:46 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\Canon
[2010/11/18 07:58:59 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2012/01/24 15:06:40 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\Copyright © 2011-2012 RealNetworks
[2012/03/22 08:01:02 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\Dropbox
[2012/03/10 10:49:46 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\Mobile Atlas Creator
[2011/06/08 17:35:22 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\NewSoft
[2011/11/16 13:54:08 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\OverDrive
[2010/11/16 09:19:24 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\PhotoshopdotcomInspirationBrowser.4C35C4D325D350FE0114230CBADCA2DDD0AC8D25.1
[2012/01/24 15:19:36 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\rinsebyreal
[2011/03/06 13:41:20 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\ScanSoft
[2012/01/19 19:03:45 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\Spotify
[2010/11/15 14:17:14 | 000,000,000 | -H-D | M] -- C:\Users\neverett\AppData\Roaming\Stardock
[2010/11/23 07:58:03 | 000,000,000 | ---D | M] -- C:\Users\neverett\AppData\Roaming\Windows Live Writer
[2012/01/06 09:28:42 | 000,032,576 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP