Atheos
2010-11-09, 00:45
I have noticed a few entries in my LOG concerning Global browser toolbar.
I think it may be suspicious.
---------------------------------
DDS (Ver_10-11-08.01) - NTFS_AMD64
Run by Win7 at 23:38:39.47 on 08/11/2010
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_22
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.44.1033.18.4095.1683 [GMT 0:00]
SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe
C:\Program Files (x86)\Creative\Shared Files\CTSched.exe
C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
C:\Program Files (x86)\FeedDemon\FeedDemon.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
H:\Program Files (x86)\Steam\Steam.exe
C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe
C:\Program Files\UltraMon\UltraMon.exe
C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe
C:\Windows\SysWOW64\Ctxfihlp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\CTXFISPI.EXE
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.exe
C:\Users\Win7\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\MagicDisc\MagicDisc.exe
C:\Program Files\UltraMon\UltraMonTaskbar.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Xfire\Xfire.exe
C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\UltraMon\UltraMonUiAcc.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Everything\Everything.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Xfire\Xfire.exe
C:\Program Files (x86)\Xfire\xfire64.exe
C:\Windows\system32\DllHost.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Zune\ZuneNss.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Win7\Downloads\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
mWinlogon: Userinit=userinit.exe
BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Download Guard for Internet Explorer: {20c1a7f0-528e-444f-bac5-5804a61cca7f} - C:\Program Files (x86)\Lavasoft\Download Guard for Internet Explorer\DownloadGuardBHO.dll
BHO: HistoryTriggerBHO Class: {21a88cb9-84d2-4020-a2d1-b25a21034884} - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: : {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: N/A: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
uRun: [Creative MediaSource Go] "C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe" /SCB
uRun: [CreativeTaskScheduler] "C:\Program Files (x86)\Creative\Shared Files\CTSched.exe" /logon
uRun: [LG LinkAir] C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
uRun: [FeedDemon] "C:\Program Files (x86)\FeedDemon\FeedDemon.exe" /startminimized
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
uRun: [Google Update] "C:\Users\Win7\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Steam] "H:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
mRun: [VolPanel] "C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
mRun: [Module Loader] C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Win7\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MAGICD~1.LNK - C:\Program Files (x86)\MagicDisc\MagicDisc.exe
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Xfire.lnk - C:\Program Files (x86)\Xfire\Xfire.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\UltraMon.lnk - C:\Windows\Installer\{B49673F8-7AB6-4A14-8213-C8A7BE370010}\IcoUltraMon.ico
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: LG Air Sync (R-Click) - Save as Mobile Image - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/206
IE: LG Air Sync (R-Click) - Save as Mobile Memo - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/208
IE: LG Air Sync (R-Click) - Save as Mobile Text file - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/210
IE: LG Air Sync (R-Click) - Set as Mobile Wallpaper - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/205
IE: LG Air Sync Option - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/209
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
mRun-x64: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
mRun-x64: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
mRun-x64: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe"
mRun-x64: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
mRun-x64: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
mRun-x64: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe"
STS-X64: FencesShlExt Class: {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
Hosts: 127.0.0.1 www.spywareinfo.com
================= FIREFOX ===================
FF - ProfilePath - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\8o709sq9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ie/ig?hl=en&source=iglk
FF - component: C:\Users\Win7\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll
FF - component: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\8o709sq9.default\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
FF - plugin: C:\Users\Win7\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
============= SERVICES / DRIVERS ===============
R0 hotcore3;hc3ServiceName;C:\Windows\System32\drivers\hotcore3.sys [2010-10-20 37392]
R0 Lbd;Lbd;C:\Windows\System32\drivers\Lbd.sys [2010-10-24 69152]
R1 cmderd;COMODO Internet Security Eradication Driver;C:\Windows\System32\drivers\cmderd.sys [2010-9-10 20864]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\System32\drivers\cmdGuard.sys [2010-9-10 249496]
R1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\System32\drivers\cmdhlp.sys [2010-9-10 33208]
R2 UltraMonUtility;UltraMon Utility Driver;C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
R3 CT20XUT.SYS;CT20XUT.SYS;C:\Windows\System32\drivers\CT20XUT.sys [2010-10-17 202840]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-10-17 1417304]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [2010-10-17 26752]
R3 lgbusenum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2010-9-23 1375992]
S2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2010-10-17 1153368]
S3 Andbus;LGE Android Platform Composite USB Device;C:\Windows\System32\drivers\lgandbus64.sys [2010-3-30 19456]
S3 AndDiag;LGE Android Platform USB Serial Port;C:\Windows\System32\drivers\lganddiag64.sys [2010-3-30 27648]
S3 AndGps;LGE Android Platform USB GPS NMEA Port;C:\Windows\System32\drivers\lgandgps64.sys [2010-3-30 27136]
S3 ANDModem;LGE Android Platform USB Modem;C:\Windows\System32\drivers\lgandmodem64.sys [2010-3-30 33792]
S3 androidusb;ADB Interface Driver;C:\Windows\System32\drivers\lgandadb.sys [2010-1-11 31744]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-10-17 79360]
S3 Creative Dolby Digital Live Pack Licensing Service;Creative Dolby Digital Live Pack Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\DDLLicensing.exe [2010-10-17 79360]
S3 CT20XUT;CT20XUT;C:\Windows\System32\drivers\CT20XUT.sys [2010-10-17 202840]
S3 CTEXFIFX;CTEXFIFX;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-10-17 1417304]
S3 CTHWIUT.SYS;CTHWIUT.SYS;C:\Windows\System32\drivers\CTHWIUT.sys [2010-10-17 94808]
S3 CTHWIUT;CTHWIUT;C:\Windows\System32\drivers\CTHWIUT.sys [2010-10-17 94808]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;H:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe [2010-11-4 25832]
S3 LgBttPort;LGE Bluetooth TransPort;C:\Windows\System32\drivers\lgbtpt64.sys [2009-9-29 16384]
S3 LGVMODEM;LGE Virtual Modem;C:\Windows\System32\drivers\lgvmdm64.sys [2009-9-29 17408]
S3 pwdrvio;pwdrvio;C:\Windows\System32\pwdrvio.sys [2010-10-20 19936]
S3 pwdspio;pwdspio;C:\Windows\System32\pwdspio.sys [2010-10-20 13280]
S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2010-11-4 31800]
S3 RTCore64;RTCore64;C:\Program Files (x86)\EVGA Precision\RTCore64.sys [2010-9-7 14440]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-10-17 1255736]
S3 WiselinkPro;SAMSUNG WiselinkPro Service;C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [2010-2-17 3007488]
S3 WMZuneComm;Zune Windows Mobile Connectivity Service;C:\Program Files\Zune\WMZuneComm.exe [2010-9-24 306416]
=============== Created Last 30 ================
2010-11-07 18:53:16 1892184 ----a-w- C:\Windows\SysWow64\D3DX9_42.dll
2010-11-07 18:52:55 -------- d-----w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2010-11-07 18:27:15 -------- d-----w- C:\Windows\FOOK2
2010-11-07 17:41:48 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2010-11-07 16:44:27 -------- d-----w- C:\Users\Win7\AppData\Local\Fallout3
2010-11-07 15:44:11 -------- d-----w- C:\Users\Win7\AppData\Roaming\EurekaLog
2010-11-06 21:30:34 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ispB7A4.tmp\setup.dll
2010-11-06 21:01:31 -------- d-----w- C:\Windows\SysWow64\xlive
2010-11-06 21:00:27 753664 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2010-11-06 21:00:27 69714 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2010-11-06 21:00:27 63488 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe
2010-11-06 21:00:27 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2010-11-06 21:00:27 184320 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2010-11-06 21:00:26 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2010-11-06 21:00:25 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2010-11-06 19:10:31 -------- d-----w- C:\PROGRA~3\Media Center Programs
2010-11-06 18:53:20 -------- d-sh--w- C:\Windows\ftpcache
2010-11-05 16:05:25 -------- d-----w- C:\Users\Win7\AppData\Roaming\TrueCrypt
2010-11-05 16:04:49 230352 ----a-w- C:\Windows\System32\drivers\truecrypt.sys
2010-11-05 16:04:41 -------- d-----w- C:\Program Files\TrueCrypt
2010-11-05 13:07:16 8006480 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{D5562566-54A7-4AFB-9432-499D41F91B57}\mpengine.dll
2010-11-04 23:57:58 -------- d-----w- C:\Users\Win7\AppData\Local\VS Revo Group
2010-11-04 23:57:54 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys
2010-11-04 23:57:53 -------- d-----w- C:\Program Files\VS Revo Group
2010-11-03 22:07:25 -------- d-----w- C:\Program Files (x86)\Everything
2010-11-03 19:31:43 49752 ----a-w- C:\Windows\System32\drivers\SBREDrv.sys
2010-11-01 19:50:18 -------- d-----w- C:\PROGRA~3\BioWare
2010-11-01 18:53:03 -------- d-----w- C:\Program Files (x86)\Common Files\BioWare
2010-10-31 19:29:35 -------- d-----w- C:\Windows\en
2010-10-31 19:29:08 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-10-31 19:27:32 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
2010-10-31 19:27:32 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2010-10-31 19:27:30 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2010-10-31 19:27:30 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2010-10-31 19:27:13 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
2010-10-31 19:27:13 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
2010-10-31 19:25:15 -------- d-----w- C:\Users\Win7\AppData\Local\Windows Live
2010-10-31 19:25:14 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2010-10-27 22:40:01 15880 ----a-w- C:\Windows\System32\lsdelete.exe
2010-10-27 20:26:17 -------- d-----w- C:\Users\Win7\AppData\Roaming\Tor
2010-10-27 18:29:53 189248 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2010-10-27 18:29:52 75064 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2010-10-27 18:29:52 2434856 ----a-w- C:\Windows\SysWow64\pbsvc_bc2.exe
2010-10-27 18:25:27 -------- d-----w- C:\Users\Win7\AppData\Local\Electronic Arts
2010-10-27 18:25:12 -------- d-----w- C:\PROGRA~3\Electronic Arts
2010-10-27 18:23:17 519000 ----a-w- C:\Windows\System32\d3dx10_40.dll
2010-10-27 18:23:17 452440 ----a-w- C:\Windows\SysWow64\d3dx10_40.dll
2010-10-27 18:23:17 2605920 ----a-w- C:\Windows\System32\D3DCompiler_40.dll
2010-10-27 18:23:17 2036576 ----a-w- C:\Windows\SysWow64\D3DCompiler_40.dll
2010-10-27 18:23:16 5631312 ----a-w- C:\Windows\System32\D3DX9_40.dll
2010-10-27 18:23:16 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll
2010-10-27 15:17:23 961024 ----a-w- C:\Windows\System32\CPFilters.dll
2010-10-27 15:17:23 641536 ----a-w- C:\Windows\SysWow64\CPFilters.dll
2010-10-27 15:17:23 552960 ----a-w- C:\Windows\System32\msdri.dll
2010-10-27 15:17:23 288256 ----a-w- C:\Windows\System32\MSNP.ax
2010-10-27 15:17:23 258560 ----a-w- C:\Windows\System32\mpg2splt.ax
2010-10-27 15:17:23 204288 ----a-w- C:\Windows\SysWow64\MSNP.ax
2010-10-27 15:17:22 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
2010-10-27 15:13:58 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2010-10-26 23:53:11 -------- d-----w- C:\Users\Win7\AppData\Roaming\Malwarebytes
2010-10-26 23:53:04 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2010-10-26 23:53:04 -------- d-----w- C:\PROGRA~3\Malwarebytes
2010-10-26 23:53:02 24664 ----a-w- C:\Windows\System32\drivers\mbam.sys
2010-10-26 23:53:02 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-10-26 23:52:25 118784 ----a-w- C:\Windows\SysWow64\MSSTDFMT.DLL
2010-10-26 23:52:24 -------- d-----w- C:\Program Files (x86)\SpywareBlaster
2010-10-26 23:24:59 5425496 ----a-w- C:\Windows\System32\D3DX9_41.dll
2010-10-26 23:21:39 -------- d-----w- C:\Windows\SysWow64\directx
2010-10-26 23:05:17 -------- d-----w- C:\Users\Win7\AppData\Roaming\Mp3tag
2010-10-26 23:05:13 -------- d-----w- C:\Program Files (x86)\Mp3tag
2010-10-26 22:48:49 -------- d-----r- C:\Users\Win7\Podcasts
2010-10-26 19:53:29 -------- d-----w- C:\Program Files (x86)\EVGA Precision
2010-10-26 19:41:07 -------- d-----w- C:\PROGRA~3\Nexon
2010-10-26 19:37:53 -------- d-----w- C:\Program Files (x86)\BandiMPEG1
2010-10-26 19:35:59 -------- d-----w- C:\PROGRA~3\NexonUS
2010-10-26 16:56:41 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-BR
2010-10-26 16:56:40 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-PT
2010-10-26 16:56:39 -------- d-----w- C:\Windows\System32\drivers\UMDF\nl-NL
2010-10-26 16:56:37 -------- d-----w- C:\Windows\System32\drivers\UMDF\it-IT
2010-10-26 16:56:35 -------- d-----w- C:\Windows\System32\drivers\UMDF\de-DE
2010-10-26 16:56:34 -------- d-----w- C:\Windows\System32\drivers\UMDF\fr-FR
2010-10-26 16:56:33 -------- d-----w- C:\Windows\System32\drivers\UMDF\es-ES
2010-10-26 16:55:08 758272 ----a-w- C:\Windows\System32\PortableDeviceApi.dll
2010-10-26 16:55:08 547840 ----a-w- C:\Windows\SysWow64\PortableDeviceApi.dll
2010-10-26 16:54:59 -------- d-----w- C:\Windows\PCHEALTH
2010-10-26 16:03:46 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2010-10-26 15:32:20 -------- d-----w- C:\Users\Win7\AppData\Roaming\Smart Recorder
2010-10-26 15:14:19 -------- d-----w- C:\Users\Win7\AppData\Roaming\TS3Client
2010-10-26 15:13:34 -------- d-----w- C:\Users\Win7\AppData\Roaming\Xfire
2010-10-26 15:13:32 -------- d-----w- C:\Program Files (x86)\Xfire
2010-10-26 15:13:32 -------- d-----w- C:\PROGRA~3\Xfire
2010-10-26 15:13:01 -------- d-----w- C:\Program Files\TeamSpeak 3 Client
2010-10-24 18:08:45 69152 ----a-w- C:\Windows\System32\drivers\Lbd.sys
2010-10-24 17:29:00 255552 ----a-w- C:\Windows\SysWow64\drivers\mcdbus.sys
2010-10-24 17:29:00 255552 ----a-w- C:\Windows\System32\drivers\mcdbus.sys
2010-10-24 17:29:00 -------- d-----w- C:\Program Files (x86)\MagicDisc
2010-10-24 16:53:35 -------- d-----w- C:\Program Files (x86)\uTorrent
2010-10-24 16:53:32 -------- d-----w- C:\Users\Win7\AppData\Local\Sunbelt Software
2010-10-24 16:52:51 -------- d-----w- C:\Users\Win7\AppData\Roaming\uTorrent
2010-10-24 16:52:37 -------- dc-h--w- C:\PROGRA~3\{CCE9E666-4D7C-4946-A98B-CFDE0A0C1706}
2010-10-24 16:52:32 -------- dc-h--w- C:\PROGRA~3\{E961CE1B-C3EA-4882-9F67-F859B555D097}
2010-10-24 16:52:20 -------- d-----w- C:\Program Files (x86)\Lavasoft
2010-10-23 16:55:07 -------- d-----w- C:\Users\Win7\AppData\Local\WBFSManager
2010-10-23 16:29:34 -------- d-----w- C:\Program Files\WBFS
2010-10-23 15:46:00 -------- d-----w- C:\Program Files (x86)\JDownloader
2010-10-23 15:12:50 -------- d-----w- C:\Users\Win7\AppData\Local\Mgeni
2010-10-23 15:12:46 -------- d-----w- C:\Program Files (x86)\Mgeni
2010-10-23 15:10:09 -------- d-----w- C:\Program Files (x86)\Vidalia Bundle
2010-10-23 14:04:21 -------- d-----w- C:\Users\Win7\AppData\Local\Google
2010-10-22 19:49:30 -------- d-----w- C:\Users\Win7\AppData\Local\AskToolbar
2010-10-21 14:27:20 -------- d-----w- C:\Users\Win7\AppData\Roaming\Dropbox
2010-10-20 23:45:55 -------- d-----w- C:\PROGRA~3\createpart
2010-10-20 23:45:37 -------- d-----w- C:\PROGRA~3\explauncher
2010-10-20 23:45:36 -------- d-----w- C:\PROGRA~3\launcher
2010-10-20 23:45:12 37392 ----a-w- C:\Windows\System32\drivers\hotcore3.sys
2010-10-20 23:45:02 -------- d-----w- C:\Program Files (x86)\Paragon Software
2010-10-20 23:05:28 801352 ----a-w- C:\Windows\System32\pwNative.exe
2010-10-20 23:05:27 19936 ------w- C:\Windows\System32\pwdrvio.sys
2010-10-20 23:05:27 13280 ------w- C:\Windows\System32\pwdspio.sys
2010-10-20 23:05:16 -------- d-----w- C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 5.2
2010-10-20 21:28:06 521448 ----a-w- C:\Windows\System32\deployJava1.dll
2010-10-20 19:13:22 -------- d-----w- C:\Users\Win7\.android
2010-10-20 19:12:40 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2010-10-20 19:12:40 472808 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
2010-10-19 12:21:02 8006480 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2010-10-18 17:26:15 -------- d-----w- C:\Users\Win7\AppData\Roaming\KeePass
2010-10-18 16:49:27 -------- d-----w- C:\Program Files (x86)\KeePass Password Safe
2010-10-18 16:12:47 25048 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browserdirprovider.dll
2010-10-18 16:12:47 140248 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\brwsrcmp.dll
2010-10-18 15:56:20 -------- d-----w- C:\Users\Win7\AppData\Roaming\IDM
2010-10-18 15:56:19 -------- d-----w- C:\Users\Win7\AppData\Roaming\DMCache
2010-10-18 15:56:16 -------- d-----w- C:\Program Files (x86)\Internet Download Manager
2010-10-18 15:41:03 -------- d-----w- C:\Windows\SysWow64\CSP
2010-10-18 15:29:28 -------- d-----w- C:\Users\Win7\AppData\Roaming\Foxit Software
2010-10-18 15:29:22 75208 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
2010-10-18 15:29:10 -------- d-----w- C:\Program Files (x86)\Foxit Software
2010-10-18 15:25:12 -------- d-----w- C:\Program Files (x86)\Samsung
2010-10-18 15:10:27 -------- d-----w- C:\Users\Win7\AppData\Roaming\DVD Flick
2010-10-18 15:10:17 662288 ----a-w- C:\Windows\SysWow64\mscomct2.ocx
2010-10-18 15:10:17 609824 ----a-w- C:\Windows\SysWow64\comctl32.ocx
2010-10-18 15:10:17 40960 ----a-w- C:\Windows\SysWow64\ssubtmr6.dll
2010-10-18 15:10:17 36864 ----a-w- C:\Windows\SysWow64\trayicon_handler.ocx
2010-10-18 15:10:17 28672 ----a-w- C:\Windows\SysWow64\mousewheel.ocx
2010-10-18 15:10:17 212240 ----a-w- C:\Windows\SysWow64\richtx32.ocx
2010-10-18 15:10:17 164144 ----a-w- C:\Windows\SysWow64\comct232.ocx
2010-10-18 15:10:17 1071088 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2010-10-18 15:10:17 -------- d-----w- C:\Program Files (x86)\DVD Flick
2010-10-18 11:53:34 -------- d-----w- C:\Users\Win7\AppData\Local\Logitech
2010-10-18 11:46:34 53248 ----a-r- C:\Users\Win7\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2010-10-18 11:46:21 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2010-10-18 11:44:55 -------- d-----w- C:\Users\Win7\AppData\Roaming\Logishrd
2010-10-18 05:49:03 -------- d-----w- C:\Windows\Panther
2010-10-17 22:14:16 169064 ----a-w- C:\Windows\SysWow64\everest_cpl.cpl
2010-10-17 22:07:43 -------- d-----w- C:\Users\Win7\AppData\Local\QuickPar
2010-10-17 22:07:12 -------- d-----w- C:\Program Files (x86)\QuickPar
2010-10-17 21:48:06 -------- d-----w- C:\Users\Win7\AppData\Roaming\NVIDIA
2010-10-17 21:44:19 -------- d-----w- C:\Program Files\UltraMon
2010-10-17 21:44:19 -------- d-----w- C:\Program Files (x86)\Common Files\Realtime Soft
2010-10-17 21:44:19 -------- d-----w- C:\PROGRA~3\Realtime Soft
2010-10-17 21:41:58 -------- d-----w- C:\Windows\System32\appmgmt
2010-10-17 21:34:45 -------- d-----w- C:\Users\Win7\AppData\Roaming\Realtime Soft
2010-10-17 21:25:11 311808 ----a-w- C:\Windows\System32\msv1_0.dll
2010-10-17 21:25:11 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2010-10-17 21:24:10 -------- d-----w- C:\Windows\SysWow64\Wat
2010-10-17 21:24:10 -------- d-----w- C:\Windows\System32\Wat
2010-10-17 21:10:19 -------- d-----w- C:\Users\Win7\AppData\Local\sabnzbd
2010-10-17 21:10:13 -------- d-----w- C:\Program Files (x86)\SABnzbd
2010-10-17 21:05:15 -------- d-----w- C:\Program Files (x86)\CoreCodec
2010-10-17 21:04:05 -------- d-----w- C:\Users\Win7\AppData\Local\COMODO
2010-10-17 21:03:05 270720 ------w- C:\Windows\System32\MpSigStub.exe
2010-10-17 21:01:57 220672 ----a-w- C:\Windows\System32\wintrust.dll
2010-10-17 21:01:57 172032 ----a-w- C:\Windows\SysWow64\wintrust.dll
2010-10-17 21:01:57 139264 ----a-w- C:\Windows\System32\cabview.dll
2010-10-17 21:01:57 132608 ----a-w- C:\Windows\SysWow64\cabview.dll
2010-10-17 20:58:08 -------- d-----w- C:\Program Files (x86)\VideoLAN
2010-10-17 20:56:53 14336 ----a-w- C:\Windows\System32\drivers\sffp_sd.sys
2010-10-17 20:55:46 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
2010-10-17 20:55:46 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
2010-10-17 20:55:46 48960 ----a-w- C:\Windows\System32\netfxperf.dll
2010-10-17 20:55:46 444752 ----a-w- C:\Windows\System32\mscoree.dll
2010-10-17 20:55:46 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
2010-10-17 20:55:46 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
2010-10-17 20:55:46 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
2010-10-17 20:55:46 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2010-10-17 20:55:46 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2010-10-17 20:55:46 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
2010-10-17 20:55:29 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2010-10-17 20:49:59 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2010-10-17 20:47:45 -------- d-----w- C:\Program Files (x86)\Ask.com
2010-10-17 20:47:32 -------- d-----w- C:\Program Files (x86)\The KMPlayer
2010-10-17 20:46:07 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2010-10-17 20:46:07 -------- d-----w- C:\PROGRA~3\Spybot - Search & Destroy
2010-10-17 20:45:32 3123712 ----a-w- C:\Windows\System32\win32k.sys
2010-10-17 20:40:20 -------- d-----w- C:\Users\Win7\AppData\Local\LG Electronics
2010-10-17 20:39:30 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2010-10-17 20:39:04 -------- d-----w- C:\Program Files (x86)\LG Electronics
2010-10-17 20:36:49 -------- d--h--w- C:\VritualRoot
2010-10-17 20:34:50 -------- d-----w- C:\Program Files\COMODO
2010-10-17 20:34:30 -------- d-----w- C:\PROGRA~3\Comodo
2010-10-17 20:32:11 -------- d-----w- C:\Users\Win7\AppData\Roaming\Stardock
2010-10-17 20:32:08 -------- dc-h--w- C:\PROGRA~3\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}
2010-10-17 20:32:08 -------- d-----w- C:\Program Files (x86)\Stardock
2010-10-17 20:31:59 -------- d-----w- C:\Users\Win7\AppData\Local\PackageAware
2010-10-17 20:31:54 -------- d-----w- C:\Users\Win7\AppData\Local\FeedDemon
2010-10-17 20:31:51 -------- d-----w- C:\Program Files (x86)\FeedDemon
2010-10-17 20:30:52 -------- d-----w- C:\Program Files (x86)\Lavalys
2010-10-17 20:25:56 9548 ----a-w- C:\Windows\System32\drivers\nvphy.bin
2010-10-17 20:25:56 729600 ----a-w- C:\Windows\System32\cohelper.dll
2010-10-17 20:25:46 645224 ----a-w- C:\Windows\System32\NVUNINST.EXE
2010-10-17 20:21:27 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2010-10-17 20:21:25 -------- d-sh--w- C:\Windows\Installer
2010-10-17 20:21:24 -------- d-----w- C:\PROGRA~3\NVIDIA Corporation
2010-10-17 20:21:21 -------- d-----w- C:\Program Files\NVIDIA Corporation
2010-10-17 20:12:55 -------- d-----w- C:\PROGRA~3\Creative Labs
2010-10-17 20:09:27 90112 ------w- C:\Windows\Updreg.EXE
2010-10-17 20:08:00 -------- d-----w- C:\Program Files (x86)\Common Files\Creative
2010-10-17 20:06:20 7062 ----a-w- C:\Windows\SysWow64\audiopid.vxd
2010-10-17 20:05:38 61440 ------w- C:\Windows\SysWow64\CTChkAud.dll
2010-10-17 20:05:38 49664 ------w- C:\Windows\System32\CTChkAud.dll
2010-10-17 20:05:38 42496 ------w- C:\Windows\System32\AddCat.exe
2010-10-17 20:05:38 183296 ------w- C:\Windows\System32\CTOPT352.dll
2010-10-17 20:05:38 166912 ------w- C:\Windows\SysWow64\CTOPT352.dll
2010-10-17 20:05:16 -------- d-----w- C:\Program Files (x86)\Common Files\Creative Labs Shared
2010-10-17 20:04:44 -------- d-----w- C:\Program Files\Creative
2010-10-17 20:04:38 -------- d-----w- C:\Program Files (x86)\Creative
2010-10-17 20:03:42 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2010-10-17 20:03:42 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2010-10-17 20:03:42 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2010-10-17 20:03:42 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2010-10-17 20:03:42 192512 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2010-10-17 20:03:41 729088 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2010-10-17 20:03:41 188548 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2010-10-17 20:03:40 311428 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2010-10-14 23:44:02 4280320 ----a-w- C:\Windows\SysWow64\GPhotos.scr
==================== Find3M ====================
2010-10-17 20:07:39 466520 ----a-w- C:\Windows\System32\wrap_oal.dll
2010-10-17 20:07:39 445016 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
2010-10-17 20:07:39 123480 ----a-w- C:\Windows\System32\OpenAL32.dll
2010-10-17 20:07:39 109144 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2010-09-24 12:17:16 467696 ----a-w- C:\Windows\System32\ZuneWlanCfgSvc.exe
2010-09-24 10:50:02 67072 ----a-w- C:\Windows\System32\ZuneTcp2Udp.dll
2010-09-24 10:50:02 60928 ----a-w- C:\Windows\System32\ZuneRegUtil.dll
2010-09-24 10:50:02 45568 ----a-w- C:\Windows\System32\ZunePTDNS.dll
2010-09-24 10:50:02 405504 ----a-w- C:\Windows\System32\ZuneNetProxy.dll
2010-09-24 10:50:02 249344 ----a-w- C:\Windows\System32\ZuneMTPZ.dll
2010-09-24 10:50:02 149504 ----a-w- C:\Windows\System32\ZuneUsbTransport.dll
2010-09-24 10:50:00 708168 ----a-w- C:\Windows\System32\WinUSBCoInstaller.dll
2010-09-24 10:50:00 227328 ----a-w- C:\Windows\System32\ZuneCoInst.dll
2010-09-24 10:50:00 2152176 ----a-w- C:\Windows\System32\WUDFUpdate_01009.dll
2010-09-24 10:50:00 1721576 ----a-w- C:\Windows\System32\WdfCoInstaller01009.dll
2010-09-24 10:50:00 1093632 ----a-w- C:\Windows\System32\drivers\UMDF\ZuneDriver.dll
2010-09-23 00:32:56 301936 ----a-w- C:\Windows\WLXPGSS.SCR
2010-09-21 14:49:02 252800 ----a-w- C:\Windows\System32\LIVESSP.DLL
2010-09-21 14:03:14 208768 ----a-w- C:\Windows\SysWow64\LIVESSP.DLL
2010-09-10 22:41:40 362784 ----a-w- C:\Windows\System32\guard64.dll
2010-09-10 22:41:40 285480 ----a-w- C:\Windows\SysWow64\guard32.dll
2010-09-10 22:40:44 33208 ----a-w- C:\Windows\System32\drivers\cmdhlp.sys
2010-09-10 22:40:44 249496 ----a-w- C:\Windows\System32\drivers\cmdGuard.sys
2010-09-10 22:40:42 20864 ----a-w- C:\Windows\System32\drivers\cmderd.sys
2010-09-10 05:35:44 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2010-09-10 05:35:43 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2010-09-08 05:36:17 1192960 ----a-w- C:\Windows\System32\wininet.dll
2010-09-08 05:34:34 57856 ----a-w- C:\Windows\System32\licmgr10.dll
2010-09-08 04:30:04 978432 ----a-w- C:\Windows\SysWow64\wininet.dll
2010-09-08 04:28:15 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2010-09-08 04:16:38 482816 ----a-w- C:\Windows\System32\html.iec
2010-09-08 03:35:30 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2010-09-08 03:22:31 386048 ----a-w- C:\Windows\SysWow64\html.iec
2010-09-08 02:48:16 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2010-09-01 05:12:09 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2010-09-01 04:23:49 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2010-08-31 04:32:30 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll
2010-08-31 04:32:30 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll
2010-08-27 06:14:02 236032 ----a-w- C:\Windows\System32\srvsvc.dll
2010-08-27 05:46:48 9728 ----a-w- C:\Windows\SysWow64\sscore.dll
2010-08-27 03:38:04 463360 ----a-w- C:\Windows\System32\drivers\srv.sys
2010-08-27 03:37:48 402944 ----a-w- C:\Windows\System32\drivers\srv2.sys
2010-08-27 03:37:26 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2010-08-26 05:27:28 148992 ----a-w- C:\Windows\System32\t2embed.dll
2010-08-26 04:39:58 109056 ----a-w- C:\Windows\SysWow64\t2embed.dll
2010-08-21 06:38:47 1024512 ----a-w- C:\Windows\System32\wmpmde.dll
2010-08-21 06:36:49 340992 ----a-w- C:\Windows\System32\schannel.dll
2010-08-21 06:31:06 633856 ----a-w- C:\Windows\System32\comctl32.dll
2010-08-21 06:29:47 558592 ----a-w- C:\Windows\System32\spoolsv.exe
2010-08-21 05:36:33 738816 ----a-w- C:\Windows\SysWow64\wmpmde.dll
2010-08-21 05:36:24 224256 ----a-w- C:\Windows\SysWow64\schannel.dll
2010-08-21 05:33:24 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
2010-08-11 05:19:44 3860992 ----a-w- C:\Windows\System32\UIRibbon.dll
2010-08-11 05:13:54 1164800 ----a-w- C:\Windows\System32\UIRibbonRes.dll
2010-08-11 04:44:17 2983424 ----a-w- C:\Windows\SysWow64\UIRibbon.dll
2010-08-11 04:35:47 1164800 ----a-w- C:\Windows\SysWow64\UIRibbonRes.dll
============= FINISH: 23:41:29.73 ===============
I think it may be suspicious.
---------------------------------
DDS (Ver_10-11-08.01) - NTFS_AMD64
Run by Win7 at 23:38:39.47 on 08/11/2010
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_22
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.44.1033.18.4095.1683 [GMT 0:00]
SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\Logitech\SetPointP\SetPoint.exe
C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
C:\Program Files\Zune\ZuneLauncher.exe
C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe
C:\Program Files (x86)\Creative\Shared Files\CTSched.exe
C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
C:\Program Files (x86)\FeedDemon\FeedDemon.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
H:\Program Files (x86)\Steam\Steam.exe
C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe
C:\Program Files\UltraMon\UltraMon.exe
C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe
C:\Windows\SysWOW64\Ctxfihlp.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\CTXFISPI.EXE
C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE
C:\Program Files (x86)\Creative\ShareDLL\CADI\NotiMan.exe
C:\Users\Win7\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\MagicDisc\MagicDisc.exe
C:\Program Files\UltraMon\UltraMonTaskbar.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Xfire\Xfire.exe
C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\everest.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\SysWOW64\PnkBstrB.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\UltraMon\UltraMonUiAcc.exe
C:\Program Files (x86)\Common Files\Realtime Soft\RTSHookInterop\x32\RTSHookInterop.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files (x86)\Everything\Everything.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\Xfire\Xfire.exe
C:\Program Files (x86)\Xfire\xfire64.exe
C:\Windows\system32\DllHost.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Zune\ZuneNss.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Win7\Downloads\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
mWinlogon: Userinit=userinit.exe
BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Download Guard for Internet Explorer: {20c1a7f0-528e-444f-bac5-5804a61cca7f} - C:\Program Files (x86)\Lavasoft\Download Guard for Internet Explorer\DownloadGuardBHO.dll
BHO: HistoryTriggerBHO Class: {21a88cb9-84d2-4020-a2d1-b25a21034884} - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: : {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: N/A: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
uRun: [Creative MediaSource Go] "C:\Program Files (x86)\Creative\MediaSource5\Go\CTCMSGoU.exe" /SCB
uRun: [CreativeTaskScheduler] "C:\Program Files (x86)\Creative\Shared Files\CTSched.exe" /logon
uRun: [LG LinkAir] C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAir.exe
uRun: [FeedDemon] "C:\Program Files (x86)\FeedDemon\FeedDemon.exe" /startminimized
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
uRun: [Google Update] "C:\Users\Win7\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [Steam] "H:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
mRun: [VolPanel] "C:\Program Files (x86)\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe" /r
mRun: [Module Loader] C:\Program Files (x86)\Creative\Shared Files\Module Loader\DLLML.exe -StartUpRun
mRun: [CTxfiHlp] CTXFIHLP.EXE
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Win7\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\MAGICD~1.LNK - C:\Program Files (x86)\MagicDisc\MagicDisc.exe
StartupFolder: C:\Users\Win7\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Xfire.lnk - C:\Program Files (x86)\Xfire\Xfire.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\UltraMon.lnk - C:\Windows\Installer\{B49673F8-7AB6-4A14-8213-C8A7BE370010}\IcoUltraMon.ico
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Add to Google Photos Screensa&ver - C:\Windows\system32\GPhotos.scr/200
IE: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: LG Air Sync (R-Click) - Save as Mobile Image - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/206
IE: LG Air Sync (R-Click) - Save as Mobile Memo - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/208
IE: LG Air Sync (R-Click) - Save as Mobile Text file - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/210
IE: LG Air Sync (R-Click) - Set as Mobile Wallpaper - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/205
IE: LG Air Sync Option - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\IEContextMenu.dll/209
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
TB-X64: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
mRun-x64: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
mRun-x64: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming
mRun-x64: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe"
mRun-x64: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe"
mRun-x64: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE
mRun-x64: [Zune Launcher] "C:\Program Files\Zune\ZuneLauncher.exe"
STS-X64: FencesShlExt Class: {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
Hosts: 127.0.0.1 www.spywareinfo.com
================= FIREFOX ===================
FF - ProfilePath - C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\8o709sq9.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ie/ig?hl=en&source=iglk
FF - component: C:\Users\Win7\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll
FF - component: C:\Users\Win7\AppData\Roaming\Mozilla\Firefox\Profiles\8o709sq9.default\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll
FF - plugin: C:\Users\Win7\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
---- FIREFOX POLICIES ----
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
============= SERVICES / DRIVERS ===============
R0 hotcore3;hc3ServiceName;C:\Windows\System32\drivers\hotcore3.sys [2010-10-20 37392]
R0 Lbd;Lbd;C:\Windows\System32\drivers\Lbd.sys [2010-10-24 69152]
R1 cmderd;COMODO Internet Security Eradication Driver;C:\Windows\System32\drivers\cmderd.sys [2010-9-10 20864]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\System32\drivers\cmdGuard.sys [2010-9-10 249496]
R1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\System32\drivers\cmdhlp.sys [2010-9-10 33208]
R2 UltraMonUtility;UltraMon Utility Driver;C:\Program Files (x86)\Common Files\Realtime Soft\UltraMonMirrorDrv\x64\UltraMonUtility.sys [2008-11-14 20512]
R3 CT20XUT.SYS;CT20XUT.SYS;C:\Windows\System32\drivers\CT20XUT.sys [2010-10-17 202840]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-10-17 1417304]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;C:\Program Files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [2010-10-17 26752]
R3 lgbusenum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2010-9-23 1375992]
S2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2010-10-17 1153368]
S3 Andbus;LGE Android Platform Composite USB Device;C:\Windows\System32\drivers\lgandbus64.sys [2010-3-30 19456]
S3 AndDiag;LGE Android Platform USB Serial Port;C:\Windows\System32\drivers\lganddiag64.sys [2010-3-30 27648]
S3 AndGps;LGE Android Platform USB GPS NMEA Port;C:\Windows\System32\drivers\lgandgps64.sys [2010-3-30 27136]
S3 ANDModem;LGE Android Platform USB Modem;C:\Windows\System32\drivers\lgandmodem64.sys [2010-3-30 33792]
S3 androidusb;ADB Interface Driver;C:\Windows\System32\drivers\lgandadb.sys [2010-1-11 31744]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-10-17 79360]
S3 Creative Dolby Digital Live Pack Licensing Service;Creative Dolby Digital Live Pack Licensing Service;C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\DDLLicensing.exe [2010-10-17 79360]
S3 CT20XUT;CT20XUT;C:\Windows\System32\drivers\CT20XUT.sys [2010-10-17 202840]
S3 CTEXFIFX;CTEXFIFX;C:\Windows\System32\drivers\CTEXFIFX.sys [2010-10-17 1417304]
S3 CTHWIUT.SYS;CTHWIUT.SYS;C:\Windows\System32\drivers\CTHWIUT.sys [2010-10-17 94808]
S3 CTHWIUT;CTHWIUT;C:\Windows\System32\drivers\CTHWIUT.sys [2010-10-17 94808]
S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;H:\Program Files (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe [2010-11-4 25832]
S3 LgBttPort;LGE Bluetooth TransPort;C:\Windows\System32\drivers\lgbtpt64.sys [2009-9-29 16384]
S3 LGVMODEM;LGE Virtual Modem;C:\Windows\System32\drivers\lgvmdm64.sys [2009-9-29 17408]
S3 pwdrvio;pwdrvio;C:\Windows\System32\pwdrvio.sys [2010-10-20 19936]
S3 pwdspio;pwdspio;C:\Windows\System32\pwdspio.sys [2010-10-20 13280]
S3 Revoflt;Revoflt;C:\Windows\System32\drivers\revoflt.sys [2010-11-4 31800]
S3 RTCore64;RTCore64;C:\Program Files (x86)\EVGA Precision\RTCore64.sys [2010-9-7 14440]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-10-17 1255736]
S3 WiselinkPro;SAMSUNG WiselinkPro Service;C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [2010-2-17 3007488]
S3 WMZuneComm;Zune Windows Mobile Connectivity Service;C:\Program Files\Zune\WMZuneComm.exe [2010-9-24 306416]
=============== Created Last 30 ================
2010-11-07 18:53:16 1892184 ----a-w- C:\Windows\SysWow64\D3DX9_42.dll
2010-11-07 18:52:55 -------- d-----w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2010-11-07 18:27:15 -------- d-----w- C:\Windows\FOOK2
2010-11-07 17:41:48 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2010-11-07 16:44:27 -------- d-----w- C:\Users\Win7\AppData\Local\Fallout3
2010-11-07 15:44:11 -------- d-----w- C:\Users\Win7\AppData\Roaming\EurekaLog
2010-11-06 21:30:34 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ispB7A4.tmp\setup.dll
2010-11-06 21:01:31 -------- d-----w- C:\Windows\SysWow64\xlive
2010-11-06 21:00:27 753664 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2010-11-06 21:00:27 69714 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2010-11-06 21:00:27 63488 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe
2010-11-06 21:00:27 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2010-11-06 21:00:27 184320 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2010-11-06 21:00:26 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2010-11-06 21:00:25 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2010-11-06 19:10:31 -------- d-----w- C:\PROGRA~3\Media Center Programs
2010-11-06 18:53:20 -------- d-sh--w- C:\Windows\ftpcache
2010-11-05 16:05:25 -------- d-----w- C:\Users\Win7\AppData\Roaming\TrueCrypt
2010-11-05 16:04:49 230352 ----a-w- C:\Windows\System32\drivers\truecrypt.sys
2010-11-05 16:04:41 -------- d-----w- C:\Program Files\TrueCrypt
2010-11-05 13:07:16 8006480 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{D5562566-54A7-4AFB-9432-499D41F91B57}\mpengine.dll
2010-11-04 23:57:58 -------- d-----w- C:\Users\Win7\AppData\Local\VS Revo Group
2010-11-04 23:57:54 31800 ----a-w- C:\Windows\System32\drivers\revoflt.sys
2010-11-04 23:57:53 -------- d-----w- C:\Program Files\VS Revo Group
2010-11-03 22:07:25 -------- d-----w- C:\Program Files (x86)\Everything
2010-11-03 19:31:43 49752 ----a-w- C:\Windows\System32\drivers\SBREDrv.sys
2010-11-01 19:50:18 -------- d-----w- C:\PROGRA~3\BioWare
2010-11-01 18:53:03 -------- d-----w- C:\Program Files (x86)\Common Files\BioWare
2010-10-31 19:29:35 -------- d-----w- C:\Windows\en
2010-10-31 19:29:08 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2010-10-31 19:27:32 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
2010-10-31 19:27:32 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
2010-10-31 19:27:30 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
2010-10-31 19:27:30 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
2010-10-31 19:27:13 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
2010-10-31 19:27:13 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
2010-10-31 19:25:15 -------- d-----w- C:\Users\Win7\AppData\Local\Windows Live
2010-10-31 19:25:14 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
2010-10-27 22:40:01 15880 ----a-w- C:\Windows\System32\lsdelete.exe
2010-10-27 20:26:17 -------- d-----w- C:\Users\Win7\AppData\Roaming\Tor
2010-10-27 18:29:53 189248 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2010-10-27 18:29:52 75064 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2010-10-27 18:29:52 2434856 ----a-w- C:\Windows\SysWow64\pbsvc_bc2.exe
2010-10-27 18:25:27 -------- d-----w- C:\Users\Win7\AppData\Local\Electronic Arts
2010-10-27 18:25:12 -------- d-----w- C:\PROGRA~3\Electronic Arts
2010-10-27 18:23:17 519000 ----a-w- C:\Windows\System32\d3dx10_40.dll
2010-10-27 18:23:17 452440 ----a-w- C:\Windows\SysWow64\d3dx10_40.dll
2010-10-27 18:23:17 2605920 ----a-w- C:\Windows\System32\D3DCompiler_40.dll
2010-10-27 18:23:17 2036576 ----a-w- C:\Windows\SysWow64\D3DCompiler_40.dll
2010-10-27 18:23:16 5631312 ----a-w- C:\Windows\System32\D3DX9_40.dll
2010-10-27 18:23:16 4379984 ----a-w- C:\Windows\SysWow64\D3DX9_40.dll
2010-10-27 15:17:23 961024 ----a-w- C:\Windows\System32\CPFilters.dll
2010-10-27 15:17:23 641536 ----a-w- C:\Windows\SysWow64\CPFilters.dll
2010-10-27 15:17:23 552960 ----a-w- C:\Windows\System32\msdri.dll
2010-10-27 15:17:23 288256 ----a-w- C:\Windows\System32\MSNP.ax
2010-10-27 15:17:23 258560 ----a-w- C:\Windows\System32\mpg2splt.ax
2010-10-27 15:17:23 204288 ----a-w- C:\Windows\SysWow64\MSNP.ax
2010-10-27 15:17:22 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
2010-10-27 15:13:58 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2010-10-26 23:53:11 -------- d-----w- C:\Users\Win7\AppData\Roaming\Malwarebytes
2010-10-26 23:53:04 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
2010-10-26 23:53:04 -------- d-----w- C:\PROGRA~3\Malwarebytes
2010-10-26 23:53:02 24664 ----a-w- C:\Windows\System32\drivers\mbam.sys
2010-10-26 23:53:02 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-10-26 23:52:25 118784 ----a-w- C:\Windows\SysWow64\MSSTDFMT.DLL
2010-10-26 23:52:24 -------- d-----w- C:\Program Files (x86)\SpywareBlaster
2010-10-26 23:24:59 5425496 ----a-w- C:\Windows\System32\D3DX9_41.dll
2010-10-26 23:21:39 -------- d-----w- C:\Windows\SysWow64\directx
2010-10-26 23:05:17 -------- d-----w- C:\Users\Win7\AppData\Roaming\Mp3tag
2010-10-26 23:05:13 -------- d-----w- C:\Program Files (x86)\Mp3tag
2010-10-26 22:48:49 -------- d-----r- C:\Users\Win7\Podcasts
2010-10-26 19:53:29 -------- d-----w- C:\Program Files (x86)\EVGA Precision
2010-10-26 19:41:07 -------- d-----w- C:\PROGRA~3\Nexon
2010-10-26 19:37:53 -------- d-----w- C:\Program Files (x86)\BandiMPEG1
2010-10-26 19:35:59 -------- d-----w- C:\PROGRA~3\NexonUS
2010-10-26 16:56:41 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-BR
2010-10-26 16:56:40 -------- d-----w- C:\Windows\System32\drivers\UMDF\pt-PT
2010-10-26 16:56:39 -------- d-----w- C:\Windows\System32\drivers\UMDF\nl-NL
2010-10-26 16:56:37 -------- d-----w- C:\Windows\System32\drivers\UMDF\it-IT
2010-10-26 16:56:35 -------- d-----w- C:\Windows\System32\drivers\UMDF\de-DE
2010-10-26 16:56:34 -------- d-----w- C:\Windows\System32\drivers\UMDF\fr-FR
2010-10-26 16:56:33 -------- d-----w- C:\Windows\System32\drivers\UMDF\es-ES
2010-10-26 16:55:08 758272 ----a-w- C:\Windows\System32\PortableDeviceApi.dll
2010-10-26 16:55:08 547840 ----a-w- C:\Windows\SysWow64\PortableDeviceApi.dll
2010-10-26 16:54:59 -------- d-----w- C:\Windows\PCHEALTH
2010-10-26 16:03:46 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2010-10-26 15:32:20 -------- d-----w- C:\Users\Win7\AppData\Roaming\Smart Recorder
2010-10-26 15:14:19 -------- d-----w- C:\Users\Win7\AppData\Roaming\TS3Client
2010-10-26 15:13:34 -------- d-----w- C:\Users\Win7\AppData\Roaming\Xfire
2010-10-26 15:13:32 -------- d-----w- C:\Program Files (x86)\Xfire
2010-10-26 15:13:32 -------- d-----w- C:\PROGRA~3\Xfire
2010-10-26 15:13:01 -------- d-----w- C:\Program Files\TeamSpeak 3 Client
2010-10-24 18:08:45 69152 ----a-w- C:\Windows\System32\drivers\Lbd.sys
2010-10-24 17:29:00 255552 ----a-w- C:\Windows\SysWow64\drivers\mcdbus.sys
2010-10-24 17:29:00 255552 ----a-w- C:\Windows\System32\drivers\mcdbus.sys
2010-10-24 17:29:00 -------- d-----w- C:\Program Files (x86)\MagicDisc
2010-10-24 16:53:35 -------- d-----w- C:\Program Files (x86)\uTorrent
2010-10-24 16:53:32 -------- d-----w- C:\Users\Win7\AppData\Local\Sunbelt Software
2010-10-24 16:52:51 -------- d-----w- C:\Users\Win7\AppData\Roaming\uTorrent
2010-10-24 16:52:37 -------- dc-h--w- C:\PROGRA~3\{CCE9E666-4D7C-4946-A98B-CFDE0A0C1706}
2010-10-24 16:52:32 -------- dc-h--w- C:\PROGRA~3\{E961CE1B-C3EA-4882-9F67-F859B555D097}
2010-10-24 16:52:20 -------- d-----w- C:\Program Files (x86)\Lavasoft
2010-10-23 16:55:07 -------- d-----w- C:\Users\Win7\AppData\Local\WBFSManager
2010-10-23 16:29:34 -------- d-----w- C:\Program Files\WBFS
2010-10-23 15:46:00 -------- d-----w- C:\Program Files (x86)\JDownloader
2010-10-23 15:12:50 -------- d-----w- C:\Users\Win7\AppData\Local\Mgeni
2010-10-23 15:12:46 -------- d-----w- C:\Program Files (x86)\Mgeni
2010-10-23 15:10:09 -------- d-----w- C:\Program Files (x86)\Vidalia Bundle
2010-10-23 14:04:21 -------- d-----w- C:\Users\Win7\AppData\Local\Google
2010-10-22 19:49:30 -------- d-----w- C:\Users\Win7\AppData\Local\AskToolbar
2010-10-21 14:27:20 -------- d-----w- C:\Users\Win7\AppData\Roaming\Dropbox
2010-10-20 23:45:55 -------- d-----w- C:\PROGRA~3\createpart
2010-10-20 23:45:37 -------- d-----w- C:\PROGRA~3\explauncher
2010-10-20 23:45:36 -------- d-----w- C:\PROGRA~3\launcher
2010-10-20 23:45:12 37392 ----a-w- C:\Windows\System32\drivers\hotcore3.sys
2010-10-20 23:45:02 -------- d-----w- C:\Program Files (x86)\Paragon Software
2010-10-20 23:05:28 801352 ----a-w- C:\Windows\System32\pwNative.exe
2010-10-20 23:05:27 19936 ------w- C:\Windows\System32\pwdrvio.sys
2010-10-20 23:05:27 13280 ------w- C:\Windows\System32\pwdspio.sys
2010-10-20 23:05:16 -------- d-----w- C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 5.2
2010-10-20 21:28:06 521448 ----a-w- C:\Windows\System32\deployJava1.dll
2010-10-20 19:13:22 -------- d-----w- C:\Users\Win7\.android
2010-10-20 19:12:40 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2010-10-20 19:12:40 472808 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
2010-10-19 12:21:02 8006480 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2010-10-18 17:26:15 -------- d-----w- C:\Users\Win7\AppData\Roaming\KeePass
2010-10-18 16:49:27 -------- d-----w- C:\Program Files (x86)\KeePass Password Safe
2010-10-18 16:12:47 25048 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\browserdirprovider.dll
2010-10-18 16:12:47 140248 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\brwsrcmp.dll
2010-10-18 15:56:20 -------- d-----w- C:\Users\Win7\AppData\Roaming\IDM
2010-10-18 15:56:19 -------- d-----w- C:\Users\Win7\AppData\Roaming\DMCache
2010-10-18 15:56:16 -------- d-----w- C:\Program Files (x86)\Internet Download Manager
2010-10-18 15:41:03 -------- d-----w- C:\Windows\SysWow64\CSP
2010-10-18 15:29:28 -------- d-----w- C:\Users\Win7\AppData\Roaming\Foxit Software
2010-10-18 15:29:22 75208 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npFoxitReaderPlugin.dll
2010-10-18 15:29:10 -------- d-----w- C:\Program Files (x86)\Foxit Software
2010-10-18 15:25:12 -------- d-----w- C:\Program Files (x86)\Samsung
2010-10-18 15:10:27 -------- d-----w- C:\Users\Win7\AppData\Roaming\DVD Flick
2010-10-18 15:10:17 662288 ----a-w- C:\Windows\SysWow64\mscomct2.ocx
2010-10-18 15:10:17 609824 ----a-w- C:\Windows\SysWow64\comctl32.ocx
2010-10-18 15:10:17 40960 ----a-w- C:\Windows\SysWow64\ssubtmr6.dll
2010-10-18 15:10:17 36864 ----a-w- C:\Windows\SysWow64\trayicon_handler.ocx
2010-10-18 15:10:17 28672 ----a-w- C:\Windows\SysWow64\mousewheel.ocx
2010-10-18 15:10:17 212240 ----a-w- C:\Windows\SysWow64\richtx32.ocx
2010-10-18 15:10:17 164144 ----a-w- C:\Windows\SysWow64\comct232.ocx
2010-10-18 15:10:17 1071088 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2010-10-18 15:10:17 -------- d-----w- C:\Program Files (x86)\DVD Flick
2010-10-18 11:53:34 -------- d-----w- C:\Users\Win7\AppData\Local\Logitech
2010-10-18 11:46:34 53248 ----a-r- C:\Users\Win7\AppData\Roaming\Microsoft\Installer\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}\ARPPRODUCTICON.exe
2010-10-18 11:46:21 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys
2010-10-18 11:44:55 -------- d-----w- C:\Users\Win7\AppData\Roaming\Logishrd
2010-10-18 05:49:03 -------- d-----w- C:\Windows\Panther
2010-10-17 22:14:16 169064 ----a-w- C:\Windows\SysWow64\everest_cpl.cpl
2010-10-17 22:07:43 -------- d-----w- C:\Users\Win7\AppData\Local\QuickPar
2010-10-17 22:07:12 -------- d-----w- C:\Program Files (x86)\QuickPar
2010-10-17 21:48:06 -------- d-----w- C:\Users\Win7\AppData\Roaming\NVIDIA
2010-10-17 21:44:19 -------- d-----w- C:\Program Files\UltraMon
2010-10-17 21:44:19 -------- d-----w- C:\Program Files (x86)\Common Files\Realtime Soft
2010-10-17 21:44:19 -------- d-----w- C:\PROGRA~3\Realtime Soft
2010-10-17 21:41:58 -------- d-----w- C:\Windows\System32\appmgmt
2010-10-17 21:34:45 -------- d-----w- C:\Users\Win7\AppData\Roaming\Realtime Soft
2010-10-17 21:25:11 311808 ----a-w- C:\Windows\System32\msv1_0.dll
2010-10-17 21:25:11 257024 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2010-10-17 21:24:10 -------- d-----w- C:\Windows\SysWow64\Wat
2010-10-17 21:24:10 -------- d-----w- C:\Windows\System32\Wat
2010-10-17 21:10:19 -------- d-----w- C:\Users\Win7\AppData\Local\sabnzbd
2010-10-17 21:10:13 -------- d-----w- C:\Program Files (x86)\SABnzbd
2010-10-17 21:05:15 -------- d-----w- C:\Program Files (x86)\CoreCodec
2010-10-17 21:04:05 -------- d-----w- C:\Users\Win7\AppData\Local\COMODO
2010-10-17 21:03:05 270720 ------w- C:\Windows\System32\MpSigStub.exe
2010-10-17 21:01:57 220672 ----a-w- C:\Windows\System32\wintrust.dll
2010-10-17 21:01:57 172032 ----a-w- C:\Windows\SysWow64\wintrust.dll
2010-10-17 21:01:57 139264 ----a-w- C:\Windows\System32\cabview.dll
2010-10-17 21:01:57 132608 ----a-w- C:\Windows\SysWow64\cabview.dll
2010-10-17 20:58:08 -------- d-----w- C:\Program Files (x86)\VideoLAN
2010-10-17 20:56:53 14336 ----a-w- C:\Windows\System32\drivers\sffp_sd.sys
2010-10-17 20:55:46 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
2010-10-17 20:55:46 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
2010-10-17 20:55:46 48960 ----a-w- C:\Windows\System32\netfxperf.dll
2010-10-17 20:55:46 444752 ----a-w- C:\Windows\System32\mscoree.dll
2010-10-17 20:55:46 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
2010-10-17 20:55:46 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
2010-10-17 20:55:46 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
2010-10-17 20:55:46 1942856 ----a-w- C:\Windows\System32\dfshim.dll
2010-10-17 20:55:46 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
2010-10-17 20:55:46 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
2010-10-17 20:55:29 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2010-10-17 20:49:59 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2010-10-17 20:47:45 -------- d-----w- C:\Program Files (x86)\Ask.com
2010-10-17 20:47:32 -------- d-----w- C:\Program Files (x86)\The KMPlayer
2010-10-17 20:46:07 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2010-10-17 20:46:07 -------- d-----w- C:\PROGRA~3\Spybot - Search & Destroy
2010-10-17 20:45:32 3123712 ----a-w- C:\Windows\System32\win32k.sys
2010-10-17 20:40:20 -------- d-----w- C:\Users\Win7\AppData\Local\LG Electronics
2010-10-17 20:39:30 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
2010-10-17 20:39:04 -------- d-----w- C:\Program Files (x86)\LG Electronics
2010-10-17 20:36:49 -------- d--h--w- C:\VritualRoot
2010-10-17 20:34:50 -------- d-----w- C:\Program Files\COMODO
2010-10-17 20:34:30 -------- d-----w- C:\PROGRA~3\Comodo
2010-10-17 20:32:11 -------- d-----w- C:\Users\Win7\AppData\Roaming\Stardock
2010-10-17 20:32:08 -------- dc-h--w- C:\PROGRA~3\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6}
2010-10-17 20:32:08 -------- d-----w- C:\Program Files (x86)\Stardock
2010-10-17 20:31:59 -------- d-----w- C:\Users\Win7\AppData\Local\PackageAware
2010-10-17 20:31:54 -------- d-----w- C:\Users\Win7\AppData\Local\FeedDemon
2010-10-17 20:31:51 -------- d-----w- C:\Program Files (x86)\FeedDemon
2010-10-17 20:30:52 -------- d-----w- C:\Program Files (x86)\Lavalys
2010-10-17 20:25:56 9548 ----a-w- C:\Windows\System32\drivers\nvphy.bin
2010-10-17 20:25:56 729600 ----a-w- C:\Windows\System32\cohelper.dll
2010-10-17 20:25:46 645224 ----a-w- C:\Windows\System32\NVUNINST.EXE
2010-10-17 20:21:27 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2010-10-17 20:21:25 -------- d-sh--w- C:\Windows\Installer
2010-10-17 20:21:24 -------- d-----w- C:\PROGRA~3\NVIDIA Corporation
2010-10-17 20:21:21 -------- d-----w- C:\Program Files\NVIDIA Corporation
2010-10-17 20:12:55 -------- d-----w- C:\PROGRA~3\Creative Labs
2010-10-17 20:09:27 90112 ------w- C:\Windows\Updreg.EXE
2010-10-17 20:08:00 -------- d-----w- C:\Program Files (x86)\Common Files\Creative
2010-10-17 20:06:20 7062 ----a-w- C:\Windows\SysWow64\audiopid.vxd
2010-10-17 20:05:38 61440 ------w- C:\Windows\SysWow64\CTChkAud.dll
2010-10-17 20:05:38 49664 ------w- C:\Windows\System32\CTChkAud.dll
2010-10-17 20:05:38 42496 ------w- C:\Windows\System32\AddCat.exe
2010-10-17 20:05:38 183296 ------w- C:\Windows\System32\CTOPT352.dll
2010-10-17 20:05:38 166912 ------w- C:\Windows\SysWow64\CTOPT352.dll
2010-10-17 20:05:16 -------- d-----w- C:\Program Files (x86)\Common Files\Creative Labs Shared
2010-10-17 20:04:44 -------- d-----w- C:\Program Files\Creative
2010-10-17 20:04:38 -------- d-----w- C:\Program Files (x86)\Creative
2010-10-17 20:03:42 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2010-10-17 20:03:42 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2010-10-17 20:03:42 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2010-10-17 20:03:42 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2010-10-17 20:03:42 192512 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2010-10-17 20:03:41 729088 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2010-10-17 20:03:41 188548 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2010-10-17 20:03:40 311428 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2010-10-14 23:44:02 4280320 ----a-w- C:\Windows\SysWow64\GPhotos.scr
==================== Find3M ====================
2010-10-17 20:07:39 466520 ----a-w- C:\Windows\System32\wrap_oal.dll
2010-10-17 20:07:39 445016 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
2010-10-17 20:07:39 123480 ----a-w- C:\Windows\System32\OpenAL32.dll
2010-10-17 20:07:39 109144 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2010-09-24 12:17:16 467696 ----a-w- C:\Windows\System32\ZuneWlanCfgSvc.exe
2010-09-24 10:50:02 67072 ----a-w- C:\Windows\System32\ZuneTcp2Udp.dll
2010-09-24 10:50:02 60928 ----a-w- C:\Windows\System32\ZuneRegUtil.dll
2010-09-24 10:50:02 45568 ----a-w- C:\Windows\System32\ZunePTDNS.dll
2010-09-24 10:50:02 405504 ----a-w- C:\Windows\System32\ZuneNetProxy.dll
2010-09-24 10:50:02 249344 ----a-w- C:\Windows\System32\ZuneMTPZ.dll
2010-09-24 10:50:02 149504 ----a-w- C:\Windows\System32\ZuneUsbTransport.dll
2010-09-24 10:50:00 708168 ----a-w- C:\Windows\System32\WinUSBCoInstaller.dll
2010-09-24 10:50:00 227328 ----a-w- C:\Windows\System32\ZuneCoInst.dll
2010-09-24 10:50:00 2152176 ----a-w- C:\Windows\System32\WUDFUpdate_01009.dll
2010-09-24 10:50:00 1721576 ----a-w- C:\Windows\System32\WdfCoInstaller01009.dll
2010-09-24 10:50:00 1093632 ----a-w- C:\Windows\System32\drivers\UMDF\ZuneDriver.dll
2010-09-23 00:32:56 301936 ----a-w- C:\Windows\WLXPGSS.SCR
2010-09-21 14:49:02 252800 ----a-w- C:\Windows\System32\LIVESSP.DLL
2010-09-21 14:03:14 208768 ----a-w- C:\Windows\SysWow64\LIVESSP.DLL
2010-09-10 22:41:40 362784 ----a-w- C:\Windows\System32\guard64.dll
2010-09-10 22:41:40 285480 ----a-w- C:\Windows\SysWow64\guard32.dll
2010-09-10 22:40:44 33208 ----a-w- C:\Windows\System32\drivers\cmdhlp.sys
2010-09-10 22:40:44 249496 ----a-w- C:\Windows\System32\drivers\cmdGuard.sys
2010-09-10 22:40:42 20864 ----a-w- C:\Windows\System32\drivers\cmderd.sys
2010-09-10 05:35:44 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2010-09-10 05:35:43 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2010-09-08 05:36:17 1192960 ----a-w- C:\Windows\System32\wininet.dll
2010-09-08 05:34:34 57856 ----a-w- C:\Windows\System32\licmgr10.dll
2010-09-08 04:30:04 978432 ----a-w- C:\Windows\SysWow64\wininet.dll
2010-09-08 04:28:15 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2010-09-08 04:16:38 482816 ----a-w- C:\Windows\System32\html.iec
2010-09-08 03:35:30 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2010-09-08 03:22:31 386048 ----a-w- C:\Windows\SysWow64\html.iec
2010-09-08 02:48:16 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2010-09-01 05:12:09 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2010-09-01 04:23:49 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2010-08-31 04:32:30 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll
2010-08-31 04:32:30 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll
2010-08-27 06:14:02 236032 ----a-w- C:\Windows\System32\srvsvc.dll
2010-08-27 05:46:48 9728 ----a-w- C:\Windows\SysWow64\sscore.dll
2010-08-27 03:38:04 463360 ----a-w- C:\Windows\System32\drivers\srv.sys
2010-08-27 03:37:48 402944 ----a-w- C:\Windows\System32\drivers\srv2.sys
2010-08-27 03:37:26 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2010-08-26 05:27:28 148992 ----a-w- C:\Windows\System32\t2embed.dll
2010-08-26 04:39:58 109056 ----a-w- C:\Windows\SysWow64\t2embed.dll
2010-08-21 06:38:47 1024512 ----a-w- C:\Windows\System32\wmpmde.dll
2010-08-21 06:36:49 340992 ----a-w- C:\Windows\System32\schannel.dll
2010-08-21 06:31:06 633856 ----a-w- C:\Windows\System32\comctl32.dll
2010-08-21 06:29:47 558592 ----a-w- C:\Windows\System32\spoolsv.exe
2010-08-21 05:36:33 738816 ----a-w- C:\Windows\SysWow64\wmpmde.dll
2010-08-21 05:36:24 224256 ----a-w- C:\Windows\SysWow64\schannel.dll
2010-08-21 05:33:24 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
2010-08-11 05:19:44 3860992 ----a-w- C:\Windows\System32\UIRibbon.dll
2010-08-11 05:13:54 1164800 ----a-w- C:\Windows\System32\UIRibbonRes.dll
2010-08-11 04:44:17 2983424 ----a-w- C:\Windows\SysWow64\UIRibbon.dll
2010-08-11 04:35:47 1164800 ----a-w- C:\Windows\SysWow64\UIRibbonRes.dll
============= FINISH: 23:41:29.73 ===============