Tech Support Forum - View Single Post - Search results being redirected in ANY web browser

Gunsmith_Cat · 11-06-2008, 03:45 PM

As of two days ago, I am now experiencing the redirection of any link I click on in a web browser's list of search results. I have tried searching under alternative search engines too, in case it was Google specific (as this is my default search engine).

Regardless of what search engine I use, they all redirect me to random sites. The most frequent site I get redirected to is this one: hxxp://www.filmannex.com/search/google_search?affiliate=6771-1982&cx=partner-pub-3234597233716948%3Ad8gqqbb3u35&cof=FORID%3A10&ie=U

I will get redirected to this, no matter what search engine I have used! (I am even more confused that Google Search is mentioned in the redirection link even when I have been redirected to this site from, say, clicking on a link in Yahoo search results).

This all started two days ago when I accidentally downloaded a file that turned out to contain the "autorun/boot.com" worm. Everything was fine before that. I managed to manually remove all traces of the "autorun.inf", "boot.com", and "resycled" files/folders using regedit. I assumed everything was fine. However, my search results are now being redirected. Links are fine if I manually type them into the address bar, but if I were to click on any link from a search engine search result list, I will always get redirected to sites that are trying to sell things or entice you into things. When I watch the address bar after clicking on a search result link, it seems to flash through a few redirected links before settling on one to load. One of the pages I have been directed to is: hxxp://unitedkingdom.funmobile.com/landing_e.jsp?a=411&l=1185

Below is the paste of my log file scan. And I have attached the info and gmer files as instructed in your how-to thread.

Please help! I recently paid a lot of money for this laptop and I'm panicking, as I'm not advanced enough to understand how to format a HDD and really want to avoid doing that if this can be solved by other means.

My log file:

Logfile of random's system information tool 1.04 (written by random/random)
Run by Nat at 2008-11-06 22:12:35
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 197 GB (68%) free of 289 GB
Total RAM: 2554 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:12:38, on 06/11/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hotkey\Hotkey.exe
C:\Windows\BisonCam\BisonHK.exe
C:\Windows\BisonCam\DeLay.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Nat\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Protector Suite QL\psqltray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Users\Nat\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Nat\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Nat\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Nat\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Nat\Desktop\RSIT.exe
C:\Users\Nat\Documents\Downloads\Nat.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.2.2:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HotkeyOSD Software] "C:\Program Files\Hotkey\HotKey.exe"
O4 - HKLM\..\Run: [BisonHK] C:\Windows\BisonCam\BisonHK.exe
O4 - HKLM\..\Run: [DeLay] C:\Windows\BisonCam\DeLay.exe
O4 - HKLM\..\Run: [PSQLLauncher] "C:\Program Files\Protector Suite QL\launcher.exe" /startup
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Google Update] "C:\Users\Nat\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1C1C7CA6-8231-44E3-B120-F890F7B185D1}: NameServer = 85.255.112.159;85.255.112.23
O17 - HKLM\System\CCS\Services\Tcpip\..\{AC4F7F74-B797-405D-9A07-1DAF18669E51}: NameServer = 85.255.112.159;85.255.112.23
O17 - HKLM\System\CS1\Services\Tcpip\..\{1C1C7CA6-8231-44E3-B120-F890F7B185D1}: NameServer = 85.255.112.159;85.255.112.23
O17 - HKLM\System\CS2\Services\Tcpip\..\{1C1C7CA6-8231-44E3-B120-F890F7B185D1}: NameServer = 85.255.112.159;85.255.112.23
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PowerBiosServer - Unknown owner - C:\Program Files\Hotkey\PowerBiosServer.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: Windows Tribute Service - Unknown owner - C:\Windows\system32\kdolb.exe (file missing)

--
End of file - 8533 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUser.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-07-29 62728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-06-19 13543968]
"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-06-19 92704]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2008-03-26 1208320]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-12-06 1029416]
"HotkeyOSD Software"=C:\Program Files\Hotkey\HotKey.exe [2008-07-16 1351680]
"BisonHK"=C:\Windows\BisonCam\BisonHK.exe [2008-03-25 77824]
"DeLay"=C:\Windows\BisonCam\DeLay.exe [2008-03-11 53248]
"PSQLLauncher"=C:\Program Files\Protector Suite QL\launcher.exe [2007-06-05 49168]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-09-12 182808]
"Kernel and Hardware Abstraction Layer"=C:\Windows\KHALMNPR.EXE [2008-02-29 76304]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2008-10-13 6335008]
"Skytel"=C:\Program Files\Realtek\Audio\HDA\Skytel.exe [2008-10-13 1833504]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]
"Google Update"=C:\Users\Nat\AppData\Local\Google\Update\GoogleUpdate.exe [2008-11-06 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Nat\AppData\Local\Google\Update\GoogleUpdate.exe [2008-11-06 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2008-07-29 218376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\Windows\system32\psqlpwd.dll [2007-06-05 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
psqlpwd

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"DisableCAD"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-11-06 22:10:20 ----D---- C:\rsit
2008-11-06 21:55:17 ----D---- C:\Windows\Minidump
2008-11-06 21:52:13 ----A---- C:\Windows\gmer.ini
2008-11-06 21:52:12 ----A---- C:\Windows\gmer_uninstall.cmd
2008-11-06 21:52:12 ----A---- C:\Windows\gmer.exe
2008-11-06 21:52:12 ----A---- C:\Windows\gmer.dll
2008-11-06 21:11:27 ----D---- C:\Users\Nat\AppData\Roaming\Mozilla
2008-11-06 21:11:19 ----D---- C:\Program Files\Mozilla Firefox
2008-11-06 20:07:49 ----D---- C:\Program Files\CCleaner
2008-11-06 02:37:58 ----D---- C:\Program Files\Kaspersky Lab
2008-11-06 02:37:57 ----D---- C:\ProgramData\Kaspersky Lab
2008-11-06 02:36:41 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2008-11-04 22:48:25 ----D---- C:\Program Files\Writer's Cafe 2
2008-11-04 22:21:17 ----HD---- C:\Program Files\Zero G Registry
2008-11-04 18:20:31 ----D---- C:\Program Files\Common Files\PX Storage Engine
2008-11-02 21:46:54 ----D---- C:\Users\Nat\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2008-11-02 21:42:51 ----D---- C:\ProgramData\NOS
2008-11-02 21:42:51 ----D---- C:\Program Files\NOS
2008-11-02 21:18:49 ----D---- C:\Program Files\Free Fire Screensaver
2008-11-02 21:18:28 ----D---- C:\Users\Nat\AppData\Roaming\Laconic Software
2008-11-02 21:14:09 ----D---- C:\ProgramData\FLEXnet
2008-11-02 21:12:41 ----D---- C:\ProgramData\Adobe
2008-11-02 21:12:20 ----D---- C:\Program Files\Bonjour
2008-11-02 21

53 ----D---- C:\Program Files\Adobe
2008-11-02 21

28 ----D---- C:\Program Files\Common Files\Macrovision Shared
2008-11-02 21:01:16 ----D---- C:\Program Files\Common Files\Adobe
2008-11-01 15:22:16 ----D---- C:\Program Files\Screenplay Systems
2008-11-01 15:01:54 ----D---- C:\Users\Nat\AppData\Roaming\Final Draft
2008-11-01 15:00:24 ----A---- C:\Windows\system32\EncDec.dll
2008-11-01 15:00:22 ----A---- C:\Windows\system32\psisdecd.dll
2008-10-29 23:17:09 ----D---- C:\Users\Nat\AppData\Roaming\Writer's Cafe 2
2008-10-29 23:15:12 ----D---- C:\Program Files\Black Obelisk Software
2008-10-29 23:13:27 ----D---- C:\ProgramData\Final Draft
2008-10-29 23:13:25 ----D---- C:\Program Files\Final Draft Tagger
2008-10-29 23:13:25 ----D---- C:\Program Files\Final Draft 7
2008-10-28 21:53:40 ----A---- C:\Windows\system32\wersvc.dll
2008-10-28 21:53:40 ----A---- C:\Windows\system32\Faultrep.dll
2008-10-28 21:44:22 ----A---- C:\Windows\system32\win32spl.dll
2008-10-28 20:22:09 ----A---- C:\Windows\system32\msonpmon.dll
2008-10-28 20:21:00 ----D---- C:\Program Files\Microsoft Works
2008-10-28 20:20:15 ----D---- C:\Program Files\Microsoft Visual Studio
2008-10-28 20:20:15 ----D---- C:\Program Files\Common Files\DESIGNER
2008-10-28 20:19:37 ----D---- C:\Program Files\Microsoft.NET
2008-10-28 20:16:02 ----D---- C:\ProgramData\Microsoft Help
2008-10-28 20:16:02 ----D---- C:\Program Files\Microsoft Office
2008-10-28 20:15:42 ----RHD---- C:\MSOCache
2008-10-28 19:41:36 ----A---- C:\Windows\IsUninst.exe
2008-10-28 17:40:17 ----D---- C:\Windows\pss
2008-10-26 20:15:07 ----D---- C:\Users\Nat\AppData\Roaming\Media Player Classic
2008-10-26 20:10:26 ----D---- C:\Program Files\Combined Community Codec Pack
2008-10-26 20:09:40 ----D---- C:\Program Files\Haali
2008-10-26 20:09:04 ----D---- C:\Program Files\CoreCodec
2008-10-24 18:23:32 ----A---- C:\Windows\system32\netapi32.dll
2008-10-20 15:18:20 ----D---- C:\Users\Nat\AppData\Roaming\Games
2008-10-20 15:17:13 ----A---- C:\Windows\system32\xactengine2_6.dll
2008-10-20 15:17:13 ----A---- C:\Windows\system32\xactengine2_5.dll
2008-10-20 15:17:12 ----A---- C:\Windows\system32\d3dx9_32.dll
2008-10-20 15:17:12 ----A---- C:\Windows\system32\d3dx10.dll
2008-10-20 15:17:10 ----A---- C:\Windows\system32\xactengine2_4.dll
2008-10-20 15:17:10 ----A---- C:\Windows\system32\x3daudio1_1.dll
2008-10-20 15:17:09 ----A---- C:\Windows\system32\xinput1_3.dll
2008-10-20 15:17:09 ----A---- C:\Windows\system32\xinput1_2.dll
2008-10-20 15:17:09 ----A---- C:\Windows\system32\xactengine2_3.dll
2008-10-20 15:17:09 ----A---- C:\Windows\system32\d3dx9_31.dll
2008-10-20 15:17:08 ----A---- C:\Windows\system32\xinput1_1.dll
2008-10-20 15:17:08 ----A---- C:\Windows\system32\xactengine2_2.dll
2008-10-20 15:17:08 ----A---- C:\Windows\system32\xactengine2_1.dll
2008-10-20 15:16:55 ----A---- C:\Windows\system32\xactengine2_0.dll
2008-10-20 15:16:55 ----A---- C:\Windows\system32\x3daudio1_0.dll
2008-10-20 15:16:55 ----A---- C:\Windows\system32\d3dx9_30.dll
2008-10-20 15:16:55 ----A---- C:\Windows\system32\d3dx9_29.dll
2008-10-20 15:16:54 ----A---- C:\Windows\system32\d3dx9_28.dll
2008-10-20 15:16:53 ----A---- C:\Windows\system32\d3dx9_27.dll
2008-10-20 15:16:53 ----A---- C:\Windows\system32\d3dx9_26.dll
2008-10-20 15:16:53 ----A---- C:\Windows\system32\d3dx9_25.dll
2008-10-20 15:16:52 ----A---- C:\Windows\system32\d3dx9_24.dll
2008-10-20 00:22:35 ----D---- C:\ProgramData\Blizzard
2008-10-19 21:15:20 ----A---- C:\Windows\system32\mshtml.dll
2008-10-19 21:15:20 ----A---- C:\Windows\system32\ieframe.dll
2008-10-19 21:15:19 ----A---- C:\Windows\system32\wininet.dll
2008-10-19 21:15:19 ----A---- C:\Windows\system32\urlmon.dll
2008-10-19 21:15:19 ----A---- C:\Windows\system32\mstime.dll
2008-10-19 21:15:19 ----A---- C:\Windows\system32\iertutil.dll
2008-10-19 21:15:18 ----A---- C:\Windows\system32\jsproxy.dll
2008-10-19 21:03:59 ----D---- C:\Windows\system32\RTCOM
2008-10-19 21:03:38 ----A---- C:\Windows\system32\WavesLib.dll
2008-10-19 21:03:37 ----A---- C:\Windows\system32\SRSWOW.dll
2008-10-19 21:03:37 ----A---- C:\Windows\system32\SRSTSXT.dll
2008-10-19 21:03:37 ----A---- C:\Windows\system32\SRSTSHD.dll
2008-10-19 21:03:37 ----A---- C:\Windows\system32\SRSHP360.dll
2008-10-19 21:03:34 ----A---- C:\Windows\system32\RtkPgExt.dll
2008-10-19 21:03:34 ----A---- C:\Windows\system32\RtkCoInst.dll
2008-10-19 21:03:33 ----A---- C:\Windows\system32\RtkApoApi.dll
2008-10-19 21:03:33 ----A---- C:\Windows\system32\RtkAPO.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\ppChain.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\FMAPO.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\ctppld.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\CTAPO32.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\AERTARen.dll
2008-10-19 21:03:32 ----A---- C:\Windows\system32\AERTACap.dll
2008-10-19 21:03:30 ----A---- C:\Windows\RtlExUpd.dll
2008-10-19 20:37:45 ----D---- C:\Windows\system32\AGEIA
2008-10-19 20:37:44 ----D---- C:\Program Files\AGEIA Technologies
2008-10-19 20:37:20 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-10-19 19:59:43 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-10-19 19:59:43 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-10-19 09:55:37 ----D---- C:\Users\Nat\AppData\Roaming\Lionhead Studios
2008-10-15 17:19:19 ----D---- C:\Program Files\Cisco
2008-10-15 17:19:15 ----D---- C:\Program Files\Common Files\Intel
2008-10-13 22:43:37 ----D---- C:\ProgramData\SteamPopCapv1005
2008-10-13 22:43:37 ----D---- C:\ProgramData\PopCap Games
2008-10-13 21:22:18 ----D---- C:\ProgramData\2DBoy
2008-10-12 22:24:31 ----D---- C:\Program Files\Activision
2008-10-12 16:03:34 ----D---- C:\Program Files\Steam
2008-10-12 16:03:34 ----D---- C:\Program Files\Common Files\Steam
2008-10-11 23:36:35 ----D---- C:\Users\Nat\AppData\Roaming\Macromedia
2008-10-11 23:36:35 ----D---- C:\Users\Nat\AppData\Roaming\Adobe
2008-10-11 23:36:34 ----D---- C:\Windows\system32\Macromed
2008-10-11 20:35:07 ----D---- C:\Users\Nat\AppData\Roaming\Logitech
2008-10-11 20:35:07 ----D---- C:\ProgramData\LogiShrd
2008-10-11 20:34:16 ----A---- C:\Windows\system32\BtCoreIf.dll
2008-10-11 20:34:15 ----A---- C:\Windows\system32\KemXML.dll
2008-10-11 20:34:15 ----A---- C:\Windows\system32\KemWnd.dll
2008-10-11 20:34:15 ----A---- C:\Windows\system32\KemUtil.dll
2008-10-11 20:34:15 ----A---- C:\Windows\system32\kemutb.dll
2008-10-11 20:34:08 ----D---- C:\ProgramData\Logitech
2008-10-11 20:34:05 ----D---- C:\Program Files\Logitech
2008-10-11 20:34:05 ----D---- C:\Program Files\Common Files\Logishrd
2008-10-11 20:16:04 ----D---- C:\Windows\PCHEALTH
2008-10-11 20:13:52 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller
2008-10-11 20:13:46 ----D---- C:\Program Files\Windows Live
2008-10-11 20:13:17 ----D---- C:\ProgramData\WLInstaller
2008-10-11 19:24:18 ----D---- C:\Program Files\World of Warcraft
2008-10-11 19:24:18 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2008-10-08 12:03:10 ----A---- C:\Windows\system32\results.txt
2008-10-08 02:39:49 ----D---- C:\Windows\Panther
2008-10-08 01:49:06 ----D---- C:\Windows\Debug
2008-10-08 01:44:59 ----D---- C:\Windows\SoftwareDistribution
2008-10-08 01:40:36 ----D---- C:\Windows\Prefetch
2008-10-07 20:56:28 ----A---- C:\Windows\system32\DaisyWrp.dll
2008-10-07 20:40:36 ----HD---- C:\Program Files\Temp
2008-10-07 20:38:29 ----A---- C:\Windows\system32\RtNicProp32.dll
2008-10-07 20:35:17 ----A---- C:\Windows\system32\difxapi.dll
2008-10-07 20:27:02 ----D---- C:\Program Files\PC Drivers HeadQuarters
2008-10-07 20:22:16 ----D---- C:\ProgramData\PC Drivers HeadQuarters
2008-10-07 19:58:57 ----A---- C:\Windows\system32\tzres.dll
2008-10-07 19:58:12 ----A---- C:\Windows\system32\msshooks.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\thawbrkr.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\srchadmin.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-10-07 19:58:11 ----A---- C:\Windows\system32\propsys.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\propdefs.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\msstrc.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\mssprxy.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\mssitlb.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\msshsq.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\msscb.dll
2008-10-07 19:58:11 ----A---- C:\Windows\system32\korwbrkr.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\xmlfilter.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\wsepno.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\tquery.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-10-07 19:58:10 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-10-07 19:58:10 ----A---- C:\Windows\system32\rtffilt.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\offfilt.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\nlhtml.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\mssvp.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\mssrch.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\mssphtb.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\mssph.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\msscntrs.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\mimefilt.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\chtbrkr.dll
2008-10-07 19:58:10 ----A---- C:\Windows\system32\chsbrkr.dll
2008-10-07 19:55:00 ----A---- C:\Windows\system32\winresume.exe
2008-10-07 19:55:00 ----A---- C:\Windows\system32\winload.exe
2008-10-07 19:55:00 ----A---- C:\Windows\system32\kd1394.dll
2008-10-07 19:55:00 ----A---- C:\Windows\system32\ci.dll
2008-10-07 19:54:59 ----A---- C:\Windows\system32\srdelayed.exe
2008-10-07 19:54:59 ----A---- C:\Windows\system32\srcore.dll
2008-10-07 19:54:59 ----A---- C:\Windows\system32\srclient.dll
2008-10-07 19:54:59 ----A---- C:\Windows\system32\setbcdlocale.dll
2008-10-07 19:54:59 ----A---- C:\Windows\system32\rstrui.exe
2008-10-07 19:54:59 ----A---- C:\Windows\system32\kbd106n.dll
2008-10-07 19:54:51 ----A---- C:\Windows\system32\fsquirt.exe
2008-10-07 19:54:48 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-10-07 19:54:46 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-10-07 19:54:40 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-10-07 19:54:17 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-10-07 19:54:17 ----A---- C:\Windows\system32\gameux.dll
2008-10-07 19:54:17 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-10-07 19:54:16 ----A---- C:\Windows\system32\wmpeffects.dll
2008-10-07 19:54:12 ----A---- C:\Windows\system32\shell32.dll
2008-10-07 19:54:10 ----A---- C:\Windows\system32\rpcrt4.dll
2008-10-07 19:54:09 ----A---- C:\Windows\system32\pacerprf.dll
2008-10-07 19:54:08 ----A---- C:\Windows\system32\emdmgmt.dll
2008-10-07 19:54:08 ----A---- C:\Windows\system32\dataclen.dll
2008-10-07 19:54:08 ----A---- C:\Windows\system32\cdd.dll
2008-10-07 19:54:05 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-10-07 19:54:04 ----A---- C:\Windows\system32\es.dll
2008-10-07 19:54:02 ----A---- C:\Windows\system32\gdi32.dll
2008-10-07 19:53:57 ----A---- C:\Windows\system32\wshext.dll
2008-10-07 19:53:57 ----A---- C:\Windows\system32\wscript.exe
2008-10-07 19:53:57 ----A---- C:\Windows\system32\vbscript.dll
2008-10-07 19:53:57 ----A---- C:\Windows\system32\scrrun.dll
2008-10-07 19:53:57 ----A---- C:\Windows\system32\scrobj.dll
2008-10-07 19:53:57 ----A---- C:\Windows\system32\jscript.dll
2008-10-07 19:53:57 ----A---- C:\Windows\system32\cscript.exe
2008-10-07 19:53:55 ----A---- C:\Windows\system32\inetcomm.dll
2008-10-07 19:52:57 ----A---- C:\Windows\system32\quartz.dll
2008-10-07 19:50:41 ----A---- C:\Windows\system32\input.txt
2008-10-07 19:48:07 ----A---- C:\Windows\system32\wups2.dll
2008-10-07 19:48:07 ----A---- C:\Windows\system32\wucltux.dll
2008-10-07 19:48:07 ----A---- C:\Windows\system32\wuaueng.dll
2008-10-07 19:48:07 ----A---- C:\Windows\system32\wuauclt.exe
2008-10-07 19:47:56 ----A---- C:\Windows\system32\wups.dll
2008-10-07 19:47:56 ----A---- C:\Windows\system32\wudriver.dll
2008-10-07 19:47:56 ----A---- C:\Windows\system32\wuapi.dll
2008-10-07 19:47:51 ----A---- C:\Windows\system32\wuwebv.dll
2008-10-07 19:47:51 ----A---- C:\Windows\system32\wuapp.exe
2008-10-07 19:07:21 ----DC---- C:\Windows\system32\DRVSTORE
2008-10-07 18:53:44 ----D---- C:\Program Files\Protector Suite QL
2008-10-07 18:53:26 ----D---- C:\ProgramData\UIB
2008-10-07 18:45:50 ----D---- C:\Windows\BisonC07
2008-10-07 18:45:32 ----R---- C:\Windows\OEM.ini
2008-10-07 18:45:31 ----D---- C:\Windows\Options
2008-10-07 18:45:31 ----D---- C:\Windows\BisonCam
2008-10-07 18:45:31 ----A---- C:\Windows\system32\BisonR07.dll
2008-10-07 18:45:31 ----A---- C:\Windows\M3000Twn.ini
2008-10-07 18:43:14 ----D---- C:\Users\Nat\AppData\Roaming\Intel
2008-10-07 18:43:13 ----D---- C:\ProgramData\Roaming
2008-10-07 18:42:54 ----D---- C:\ProgramData\Intel
2008-10-07 18:41:30 ----SHD---- C:\Windows\Installer
2008-10-07 18:34:24 ----D---- C:\Program Files\Intel
2008-10-07 18:34:24 ----A---- C:\Windows\system32\CSVer.dll
2008-10-07 18:31:33 ----D---- C:\Program Files\Hotkey
2008-10-07 18:31:33 ----A---- C:\Windows\system32\CLEVOMOF.dll
2008-10-07 18:30:53 ----A---- C:\Windows\xUninstall.bat
2008-10-07 18:30:08 ----D---- C:\Windows\JMCR_DIR
2008-10-07 18:21:04 ----D---- C:\Program Files\Synaptics
2008-10-07 18:20:45 ----A---- C:\Windows\system32\WdfCoInstaller01000.dll
2008-10-07 18:20:45 ----A---- C:\Windows\system32\SynTPCo4.dll
2008-10-07 18:20:45 ----A---- C:\Windows\system32\SynTPAPI.dll
2008-10-07 18:20:45 ----A---- C:\Windows\system32\SynCtrl.dll
2008-10-07 18:20:45 ----A---- C:\Windows\system32\SynCOM.dll
2008-10-07 18:19:35 ----D---- C:\Users\Nat\AppData\Roaming\InstallShield
2008-10-07 18:17:01 ----D---- C:\Program Files\Motorola
2008-10-07 18:16:34 ----A---- C:\Windows\system32\sm56co81.dll
2008-10-07 18:13:25 ----A---- C:\Windows\DIFxAPI.dll
2008-10-07 18:11:32 ----D---- C:\Program Files\Realtek
2008-10-07 18:11:10 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-07 18:10:37 ----D---- C:\Program Files\Common Files\InstallShield
2008-10-07 18:10:03 ----D---- C:\ProgramData\NVIDIA
2008-10-07 18

28 ----A---- C:\Windows\system32\nvudisp.exe
2008-10-07 18:05:01 ----D---- C:\Program Files\DIFX
2008-10-07 18:04:18 ----A---- C:\Windows\system32\NVUNINST.EXE
2008-10-07 17:57:02 ----D---- C:\Users\Nat\AppData\Roaming\Identities
2008-10-07 17:56:57 ----SD---- C:\Users\Nat\AppData\Roaming\Microsoft
2008-10-07 17:56:57 ----D---- C:\Users\Nat\AppData\Roaming\Media Center Programs

======List of files/folders modified in the last 1 months======

2008-11-06 22:12:34 ----D---- C:\Windows\Temp
2008-11-06 22:01:01 ----D---- C:\Windows\System32
2008-11-06 22:01:01 ----D---- C:\Windows\inf
2008-11-06 22:01:01 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-11-06 21:55:17 ----D---- C:\Windows
2008-11-06 21:52:12 ----D---- C:\Windows\system32\drivers
2008-11-06 21:11:19 ----RD---- C:\Program Files
2008-11-06 21:02:55 ----D---- C:\Windows\Tasks
2008-11-06 21:02:55 ----D---- C:\Windows\system32\Tasks
2008-11-06 02:43:44 ----D---- C:\Windows\system32\WDI
2008-11-06 02:38:20 ----D---- C:\Windows\system32\catroot
2008-11-06 02:37:57 ----HD---- C:\ProgramData
2008-11-06 02:37:35 ----SHD---- C:\System Volume Information
2008-11-04 18:20:31 ----D---- C:\Program Files\Common Files
2008-11-02 22:13:33 ----SD---- C:\Windows\Downloaded Program Files
2008-11-02 21:11:23 ----RSD---- C:\Windows\Fonts
2008-11-01 16:08:57 ----D---- C:\Windows\Microsoft.NET
2008-11-01 16:08:43 ----D---- C:\Windows\winsxs
2008-11-01 16:08:43 ----D---- C:\Windows\ehome
2008-11-01 16:08:19 ----A---- C:\Windows\win.ini
2008-11-01 16:07:57 ----RSD---- C:\Windows\assembly
2008-11-01 16:07:21 ----D---- C:\Program Files\Common Files\microsoft shared
2008-10-29 23:13:28 ----D---- C:\Windows\system
2008-10-29 23:12:34 ----D---- C:\Windows\system32\catroot2
2008-10-28 20:20:11 ----D---- C:\Windows\ShellNew
2008-10-28 20:19:37 ----SD---- C:\ProgramData\Microsoft
2008-10-28 20:16:25 ----D---- C:\Program Files\Common Files\System
2008-10-28 18:56:43 ----D---- C:\Windows\rescache
2008-10-20 18:01:45 ----D---- C:\Windows\system32\migration
2008-10-20 18:01:45 ----D---- C:\Program Files\Windows Mail
2008-10-19 10:27:20 ----D---- C:\Windows\system32\Msdtc
2008-10-19 10:27:18 ----D---- C:\Windows\system32\wbem
2008-10-19 10:26:29 ----D---- C:\Windows\system32\config
2008-10-19 10:26:22 ----D---- C:\Windows\system32\spool
2008-10-19 10:26:21 ----D---- C:\Windows\registration
2008-10-12 22:43:02 ----D---- C:\Windows\Logs
2008-10-11 20:45:43 ----D---- C:\Windows\system32\LogFiles
2008-10-11 19:39:47 ----D---- C:\Windows\system32\NDF
2008-10-08 02:39:36 ----RAS---- C:\BOOTSECT.BAK
2008-10-08 02:39:34 ----SHD---- C:\Boot
2008-10-07 20:01:26 ----D---- C:\Windows\system32\en-US
2008-10-07 20:01:26 ----D---- C:\Windows\AppPatch
2008-10-07 20:01:24 ----D---- C:\Windows\PolicyDefinitions
2008-10-07 20:01:23 ----D---- C:\Windows\system32\Boot
2008-10-07 19:19:40 ----A---- C:\Windows\system32\mrt.exe
2008-10-07 18:45:32 ----D---- C:\Windows\twain_32
2008-10-07 18

56 ----D---- C:\Windows\Help
2008-10-07 18:04:45 ----D---- C:\Windows\system32\restore
2008-10-07 17:57:15 ----SHD---- C:\$Recycle.Bin
2008-10-07 17:56:57 ----RD---- C:\Users

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-07-21 121872]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2008-11-06 216080]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2008-07-09 20496]
R3 Cam5607;BisonCam, NB Pro; C:\Windows\System32\Drivers\BisonC07.sys [2008-04-30 1073320]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 gmer;gmer; C:\Windows\System32\DRIVERS\gmer.sys [2008-11-06 85969]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-10-13 2176856]
R3 JMCR;JMCR; C:\Windows\system32\DRIVERS\jmcr.sys [2008-04-11 84240]
R3 KLFLTDEV;Kaspersky Lab KLFltDev; C:\Windows\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-06-26 3662848]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-06-19 7530848]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2008-10-04 133120]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2008-03-26 1094272]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-12-06 196400]
R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2007-09-10 47120]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-01-21 19456]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 NETw4v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw4v32.sys [2007-02-25 2216448]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-01-21 49664]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]
S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2008-01-21 73088]
S3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-04-30 815104]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-09-12 354840]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-06-19 196608]
R2 PowerBiosServer;PowerBiosServer; C:\Program Files\Hotkey\PowerBiosServer.exe [2008-07-10 36864]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-04-30 466944]
S2 Windows Tribute Service;Windows Tribute Service; C:\Windows\system32\kdolb.exe -srv []
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-11-02 654848]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2008-11-06 99576]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

-----------------EOF-----------------