DDS (Ver_10-10-21.02) - NTFS_AMD64 Run by Cdds at 6:53:15,19 on 2010-10-29

1.  
2. DDS (Ver_10-10-21.02) - NTFS_AMD64
3. Run by Cdds at 6:53:15,19 on 2010-10-29
4. Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_21
5. Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.2.1036.18.6134.4397 [GMT -4:00]
6.  
7.  
8. ============== Running Processes ===============
9.  
10. C:\Windows\system32\wininit.exe
11. C:\Windows\system32\lsm.exe
12. C:\Windows\system32\svchost.exe -k DcomLaunch
13. C:\Windows\system32\nvvsvc.exe
14. C:\Windows\system32\svchost.exe -k RPCSS
15. C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
16. C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
17. C:\Windows\system32\svchost.exe -k netsvcs
18. C:\Windows\system32\svchost.exe -k LocalService
19. C:\Windows\system32\svchost.exe -k NetworkService
20. C:\Windows\system32\nvvsvc.exe
21. C:\Windows\System32\spoolsv.exe
22. C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
23. C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
24. C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
25. C:\Program Files (x86)\Bonjour\mDNSResponder.exe
26. C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
27. C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
28. C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
29. C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
30. C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
31. C:\Windows\System32\svchost.exe -k HPZ12
32. C:\Windows\SysWOW64\IoctlSvc.exe
33. C:\Windows\System32\svchost.exe -k HPZ12
34. C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe
35. C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe
36. C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtWlan.exe
37. C:\Windows\system32\taskhost.exe
38. C:\Windows\system32\Dwm.exe
39. C:\Windows\Explorer.EXE
40. C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
41. C:\Windows\system32\svchost.exe -k imgsvc
42. C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
43. C:\Windows\SysWOW64\vmnat.exe
44. C:\Windows\System32\svchost.exe -k WerSvcGroup
45. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
46. C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
47. C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
48. C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
49. C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe
50. C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
51. C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
52. C:\Program Files (x86)\iTunes\iTunesHelper.exe
53. C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
54. C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
55. C:\Windows\SysWOW64\vmnetdhcp.exe
56. C:\Program Files\iPod\bin\iPodService.exe
57. C:\Windows\system32\SearchIndexer.exe
58. C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
59. C:\Program Files\Windows Media Player\wmpnetwk.exe
60. C:\Windows\system32\wbem\wmiprvse.exe
61. C:\Program Files (x86)\Mozilla Firefox\firefox.exe
62. C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\x64\klwtblfs.exe
63. C:\Windows\System32\svchost.exe -k secsvcs
64. C:\Windows\system32\SearchProtocolHost.exe
65. C:\Windows\system32\SearchFilterHost.exe
66. C:\Windows\explorer.exe
67. C:\Users\Cdds\Desktop\dds.scr
68. C:\Windows\system32\conhost.exe
69. C:\Windows\system32\wbem\wmiprvse.exe
70.  
71. ============== Pseudo HJT Report ===============
72.  
73. uInternet Settings,ProxyOverride = *.local
74. BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
75. BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
76. BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
77. BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
78. BHO: Programme d'aide de l'Assistant de connexion Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
79. BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
80. BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
81. BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
82. BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
83. EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
84. uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
85. uRun: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
86. mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
87. mRun: [NBKeyScan] "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
88. mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
89. mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
90. mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
91. mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
92. mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
93. mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
94. mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
95. mRun: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"
96. mRun: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
97. mPolicies-explorer: NoActiveDesktop = 1 (0x1)
98. mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
99. mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
100. mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
101. mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
102. IE: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
103. IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
104. IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
105. IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
106. IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
107. IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
108. IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
109. IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
110. LSP: C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll
111. DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
112. DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
113. DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
114. Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
115. Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
116. Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
117. AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll
118. SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
119. {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}
120. {9030D464-4C02-4ABF-8ECC-5164760863C6}
121. {E33CF602-D945-461A-83F0-819F76A199F8}
122. EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
123. AppInit_DLLs-X64: C:\PROGRA~2\KASPER~1\KASPER~1\x64\sbhook64.dll,C:\PROGRA~2\KASPER~1\KASPER~1\x64\kloehk.dll
124.  
125. ================= FIREFOX ===================
126.  
127. FF - ProfilePath - C:\Users\Cdds\AppData\Roaming\Mozilla\Firefox\Profiles\53392qwi.default\
128. FF - prefs.js: network.proxy.type - 0
129. FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
130. FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru\components\abhelperxpcom.dll
131. FF - component: C:\Program Files (x86)\Mozilla Firefox\extensions\linkfilter@kaspersky.ru\components\KavLinkFilter.dll
132. FF - component: C:\Users\Cdds\AppData\Roaming\Mozilla\Firefox\Profiles\53392qwi.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\platform\WINNT_x86-msvc\components\SSSLauncher.dll
133. FF - component: C:\Users\Cdds\AppData\Roaming\Mozilla\Firefox\Profiles\53392qwi.default\extensions\{a8864317-e18b-4292-99d9-e6e65ab905d3}\components\FFExternalAlert.dll
134. FF - component: C:\Users\Cdds\AppData\Roaming\Mozilla\Firefox\Profiles\53392qwi.default\extensions\{a8864317-e18b-4292-99d9-e6e65ab905d3}\components\RadioWMPCore.dll
135. FF - plugin: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
136. FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
137. FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
138. FF - plugin: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll
139. FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
140. FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
141. FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
142. FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
143. FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
144. FF - HiddenExtension: Java Console: No Registry Reference - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
145.  
146. ---- FIREFOX POLICIES ----
147. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
148. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
149. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
150. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
151. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
152. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
153. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
154. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
155. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
156. C:\Program Files (x86)\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
157.  
158. ============= SERVICES / DRIVERS ===============
159.  
160. R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2010-3-19 55024]
161. R1 kl2;kl2;C:\Windows\System32\drivers\kl2.sys [2010-6-9 11864]
162. R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;C:\Windows\System32\drivers\klim6.sys [2010-4-22 27736]
163. R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
164. R2 AVP;Kaspersky Anti-Virus Service;C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [2010-7-1 352976]
165. R2 Realtek87B;Realtek87B;C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe [2010-3-26 40960]
166. R2 RealtekUSB;RealtekUSB;C:\Program Files (x86)\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe [2010-3-26 40960]
167. R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-9-21 539184]
168. R3 klmouflt;Kaspersky Lab KLMOUFLT;C:\Windows\System32\drivers\klmouflt.sys [2009-11-2 22544]
169. R3 LVUSBS64;Logitech USB Monitor Filter;C:\Windows\System32\drivers\LVUSBS64.sys [2008-7-26 50072]
170. R3 netr28ux;Pilote de carte réseau sans fil RT2870 USB pour Vista;C:\Windows\System32\drivers\netr28ux.sys [2009-6-10 867328]
171. R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2010-6-23 344680]
172. R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\System32\drivers\vwifimp.sys [2009-7-13 17920]
173. RUnknown SASDIFSV;SASDIFSV; [x]
174. RUnknown SASKUTIL;SASKUTIL; [x]
175. S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
176. S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
177. S3 lvpepf64;Volume Adapter;C:\Windows\System32\drivers\lv302a64.sys [2008-7-26 15768]
178. S3 LVRS64;Logitech RightSound Filter Driver;C:\Windows\System32\drivers\lvrs64.sys [2008-7-26 790424]
179. S3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;C:\Windows\System32\drivers\RTL8187.sys [2010-1-7 448512]
180. S3 RtlProt;RtlProt;C:\Windows\System32\drivers\RtlProt.sys [2010-3-25 31016]
181. S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2010-4-19 50688]
182. S3 VSPerfDrv100;Performance Tools Driver 10.0;C:\Program Files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [2010-3-17 68440]
183. S3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-3-27 1255736]
184. S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2009-7-22 61976]
185. S4 RsFx0103;RsFx0103 Driver;C:\Windows\System32\drivers\RsFx0103.sys [2009-3-30 311656]
186. S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-3-30 427880]
187.  
188. =============== Created Last 30 ================
189.  
190. 2010-10-29 06:38:47 8006480 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{D6AA73A7-A562-4784-A75D-EBA6AA00B801}\mpengine.dll
191. 2010-10-29 03:40:29 -------- d-----w- C:\PROGRA~3\SUPERAntiSpyware.com
192. 2010-10-27 15:20:31 -------- d-----w- C:\_OTS
193. 2010-10-27 13:59:47 -------- d-----w- C:\_OTL
194. 2010-10-27 00:34:30 -------- d-----w- C:\Program Files (x86)\ESET
195. 2010-10-26 23:07:35 -------- d-----w- C:\Users\Cdds\AppData\Roaming\Malwarebytes
196. 2010-10-26 23:07:27 38224 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
197. 2010-10-26 23:07:26 -------- d-----w- C:\PROGRA~3\Malwarebytes
198. 2010-10-26 23:07:25 24664 ----a-w- C:\Windows\System32\drivers\mbam.sys
199. 2010-10-26 23:07:25 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
200. 2010-10-26 22:43:49 -------- d-----w- C:\Users\Cdds\AppData\Local\Windows Live
201. 2010-10-26 22:43:30 257024 ----a-w- C:\Windows\System32\mfreadwrite.dll
202. 2010-10-26 22:43:30 206848 ----a-w- C:\Windows\System32\mfps.dll
203. 2010-10-26 22:43:30 196608 ----a-w- C:\Windows\SysWow64\mfreadwrite.dll
204. 2010-10-26 22:43:30 1888256 ----a-w- C:\Windows\System32\WMVDECOD.DLL
205. 2010-10-26 22:43:30 1619456 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
206. 2010-10-26 22:43:29 4068864 ----a-w- C:\Windows\System32\mf.dll
207. 2010-10-26 22:43:29 3181568 ----a-w- C:\Windows\SysWow64\mf.dll
208. 2010-10-26 22:25:31 -------- d-----w- C:\RES for Borland
209. 2010-10-26 20:28:20 961024 ----a-w- C:\Windows\System32\CPFilters.dll
210. 2010-10-26 20:28:20 641536 ----a-w- C:\Windows\SysWow64\CPFilters.dll
211. 2010-10-26 20:28:20 552960 ----a-w- C:\Windows\System32\msdri.dll
212. 2010-10-26 20:28:20 288256 ----a-w- C:\Windows\System32\MSNP.ax
213. 2010-10-26 20:28:20 258560 ----a-w- C:\Windows\System32\mpg2splt.ax
214. 2010-10-26 20:28:20 204288 ----a-w- C:\Windows\SysWow64\MSNP.ax
215. 2010-10-26 20:28:19 199680 ----a-w- C:\Windows\SysWow64\mpg2splt.ax
216. 2010-10-26 20:28:05 27008 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
217. 2010-10-26 15:16:18 38 ---h--w- C:\Windows\rebootKIS.bat
218. 2010-10-25 17:16:08 80944 ----a-w- C:\Windows\System32\drivers\vmci.sys
219. 2010-10-25 17:16:03 68656 ----a-w- C:\Windows\System32\drivers\vmx86.sys
220. 2010-10-25 17:15:16 334384 ----a-w- C:\Windows\SysWow64\vmnetdhcp.exe
221. 2010-10-25 17:15:15 404016 ----a-w- C:\Windows\SysWow64\vmnat.exe
222. 2010-10-25 17:15:13 30256 ----a-w- C:\Windows\System32\drivers\vmnetuserif.sys
223. 2010-10-25 17:15:09 968752 ----a-w- C:\Windows\System32\vnetlib64.dll
224. 2010-10-25 17:14:57 31792 ----a-w- C:\Windows\System32\drivers\VMkbd.sys
225. 2010-10-25 17:14:54 38448 ----a-w- C:\Windows\System32\drivers\hcmon.sys
226. 2010-10-25 17:14:06 -------- d-----w- C:\Program Files (x86)\Common Files\VMware
227. 2010-10-25 16:33:42 -------- d-----w- C:\Program Files (x86)\VMware
228. 2010-10-25 16:31:20 109240 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\KavAntiBanner@Kaspersky.ru\components\abhelperxpcom.dll
229. 2010-10-25 16:29:40 -------- d-----w- C:\Program Files (x86)\Kaspersky Lab
230. 2010-10-25 16:29:40 -------- d-----w- C:\PROGRA~3\Kaspersky Lab
231. 2010-10-25 16:27:55 -------- d-----w- C:\PROGRA~3\Kaspersky Lab Setup Files
232. 2010-10-22 19:15:49 30 ----a-w- C:\Windows\bin.bat
233. 2010-10-22 02:47:45 -------- d-----w- C:\Users\Cdds\AppData\Roaming\Axialis
234. 2010-10-22 02:47:38 -------- d-----w- C:\Program Files (x86)\Axialis
235. 2010-10-22 02:47:32 -------- d-----w- C:\Users\Cdds\AppData\Local\Axialis
236. 2010-10-17 23:15:39 23 --sha-w- C:\Windows\SysWow64\ffcccbfddb4_d.dll
237. 2010-10-14 19:33:57 148992 ----a-w- C:\Windows\System32\t2embed.dll
238. 2010-10-14 19:33:57 109056 ----a-w- C:\Windows\SysWow64\t2embed.dll
239. 2010-10-14 19:33:49 4582912 ----a-w- C:\Program Files\Windows NT\Accessories\wordpad.exe
240. 2010-10-14 19:33:48 4247040 ----a-w- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe
241. 2010-10-14 19:33:48 2085376 ----a-w- C:\Windows\System32\ole32.dll
242. 2010-10-14 19:33:48 1413632 ----a-w- C:\Windows\SysWow64\ole32.dll
243. 2010-10-14 19:33:43 483840 ----a-w- C:\Windows\System32\StructuredQuery.dll
244. 2010-10-14 19:33:43 363520 ----a-w- C:\Windows\SysWow64\StructuredQuery.dll
245. 2010-10-14 19:31:55 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
246. 2010-10-14 19:31:55 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
247. 2010-10-14 19:31:55 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
248. 2010-10-14 19:31:55 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
249. 2010-10-14 19:31:50 9728 ----a-w- C:\Windows\SysWow64\sscore.dll
250. 2010-10-14 19:31:50 463360 ----a-w- C:\Windows\System32\drivers\srv.sys
251. 2010-10-14 19:31:50 402944 ----a-w- C:\Windows\System32\drivers\srv2.sys
252. 2010-10-14 19:31:50 236032 ----a-w- C:\Windows\System32\srvsvc.dll
253. 2010-10-14 19:31:50 161792 ----a-w- C:\Windows\System32\drivers\srvnet.sys
254. 2010-10-14 19:31:44 3123712 ----a-w- C:\Windows\System32\win32k.sys
255. 2010-10-13 02:30:59 -------- d-----w- C:\Users\Cdds\AppData\Roaming\OpenOffice.org
256. 2010-10-13 02:29:27 -------- d-----w- C:\Program Files (x86)\OpenOffice.org 3
257.  
258. ==================== Find3M ====================
259.  
260. 2010-10-19 15:41:44 270720 ------w- C:\Windows\System32\MpSigStub.exe
261. 2010-09-23 04:47:28 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll
262. 2010-09-21 18:49:02 252800 ----a-w- C:\Windows\System32\LIVESSP.DLL
263. 2010-09-21 18:03:14 208768 ----a-w- C:\Windows\SysWow64\LIVESSP.DLL
264. 2010-09-21 05:15:54 252464 ----a-w- C:\Windows\SysWow64\vmnc.dll
265. 2010-09-21 03:18:14 56880 ----a-w- C:\Windows\System32\vmnetbridge.dll
266. 2010-09-21 03:18:14 55344 ----a-w- C:\Windows\System32\vnetinst.dll
267. 2010-09-21 03:18:14 45104 ----a-w- C:\Windows\System32\drivers\vmnetbridge.sys
268. 2010-09-21 03:18:14 37680 ----a-w- C:\Windows\System32\drivers\vmusb.sys
269. 2010-09-21 03:18:14 24112 ----a-w- C:\Windows\System32\drivers\vmnet.sys
270. 2010-09-21 03:18:14 20016 ----a-w- C:\Windows\System32\drivers\vmnetadapter.sys
271. 2010-09-10 05:35:44 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
272. 2010-09-10 05:35:43 347648 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
273. 2010-09-08 05:36:17 1192960 ----a-w- C:\Windows\System32\wininet.dll
274. 2010-09-08 05:34:34 57856 ----a-w- C:\Windows\System32\licmgr10.dll
275. 2010-09-08 04:30:04 978432 ----a-w- C:\Windows\SysWow64\wininet.dll
276. 2010-09-08 04:28:15 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
277. 2010-09-08 04:16:38 482816 ----a-w- C:\Windows\System32\html.iec
278. 2010-09-08 03:35:30 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
279. 2010-09-08 03:22:31 386048 ----a-w- C:\Windows\SysWow64\html.iec
280. 2010-09-08 02:48:16 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
281. 2010-08-31 04:32:30 954752 ----a-w- C:\Windows\SysWow64\mfc40.dll
282. 2010-08-31 04:32:30 954288 ----a-w- C:\Windows\SysWow64\mfc40u.dll
283. 2010-08-21 06:38:47 1024512 ----a-w- C:\Windows\System32\wmpmde.dll
284. 2010-08-21 06:36:49 340992 ----a-w- C:\Windows\System32\schannel.dll
285. 2010-08-21 06:31:06 633856 ----a-w- C:\Windows\System32\comctl32.dll
286. 2010-08-21 06:29:47 558592 ----a-w- C:\Windows\System32\spoolsv.exe
287. 2010-08-21 05:36:33 738816 ----a-w- C:\Windows\SysWow64\wmpmde.dll
288. 2010-08-21 05:36:24 224256 ----a-w- C:\Windows\SysWow64\schannel.dll
289. 2010-08-21 05:33:24 530432 ----a-w- C:\Windows\SysWow64\comctl32.dll
290. 2010-08-10 09:15:58 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
291. 2010-08-10 09:15:58 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
292.  
293. ============= FINISH: 6:54:34,57 ===============