.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_MSIVXserv.sys
((((((((((((((((((((((((( Files Created from 2009-05-28 to 2009-06-28 )))))))))))))))))))))))))))))))
.
2009-06-27 21:34 . 2009-06-27 21:34 -------- d-----w- c:\windows\system32\XPSViewer
2009-06-27 21:34 . 2009-06-27 21:34 -------- d-----w- c:\program files\MSBuild
2009-06-27 21:34 . 2009-06-27 21:34 -------- d-----w- c:\program files\Reference Assemblies
2009-06-27 21:33 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-06-27 21:33 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-06-27 21:33 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-06-27 21:33 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2009-06-27 21:33 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-06-27 21:33 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2009-06-27 21:33 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-06-27 21:33 . 2009-06-27 21:34 -------- d-----w- C:\379979cf5ea1fc6f6cce96898afacf21
2009-06-27 19:32 . 2009-06-27 19:32 -------- d-----w- c:\documents and settings\Ryan Fabello\Application Data\Malwarebytes
2009-06-27 13:05 . 2009-06-28 03:37 664 ----a-w- c:\windows\system32\d3d9caps.dat
2009-06-27 13:04 . 2009-06-27 13:04 -------- d-----w- c:\documents and settings\Ryan Fabello\Local Settings\Application Data\Cooliris
2009-06-27 13:04 . 2009-04-17 20:58 1161626 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\avcodec-51.dll
2009-06-27 13:04 . 2009-04-17 20:58 954368 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\PicLensHelper.exe
2009-06-27 13:04 . 2009-04-17 20:58 103424 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\pixomatic.dll
2009-06-27 13:04 . 2009-04-17 20:58 71652 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\avutil-49.dll
2009-06-27 13:04 . 2009-04-17 20:58 65536 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\components\coolirisstub.dll
2009-06-27 13:04 . 2009-04-17 20:58 4579328 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\cooliris18.dll
2009-06-27 13:04 . 2009-04-17 20:58 344064 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\LaunchCooliris.exe
2009-06-27 13:04 . 2009-04-17 20:58 4534272 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\cooliris19.dll
2009-06-27 13:04 . 2009-04-17 20:58 131868 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Mozilla\Firefox\Profiles\k0tz67m5.default\extensions\piclens@cooliris.com\libs\avformat-52.dll
2009-06-27 12:51 . 2009-05-14 03:25 40552 ----a-w- c:\windows\system32\drivers\mfesmfk.sys
2009-06-27 12:51 . 2009-05-14 03:25 35272 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2009-06-27 12:51 . 2009-05-14 03:25 79816 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2009-06-27 12:50 . 2009-04-09 18:23 120136 ----a-w- c:\windows\system32\drivers\Mpfp.sys
2009-06-27 12:45 . 2009-06-27 12:51 -------- d-----w- c:\program files\Common Files\McAfee
2009-06-27 12:45 . 2009-06-27 12:49 -------- d-----w- c:\program files\McAfee.com
2009-06-27 12:44 . 2009-06-28 03:34 -------- d-----w- c:\program files\McAfee
2009-06-27 11:01 . 2009-05-14 03:24 34248 ----a-w- c:\windows\system32\drivers\mferkdk.sys
2009-06-27 00:48 . 2009-06-27 00:45 92672 ----a-w- c:\windows\system32\KillBox.exe
2009-06-27 00:45 . 2009-06-27 10:03 -------- d-----w- C:\!KillBox
2009-06-26 01:25 . 2009-06-26 01:25 -------- d-----w- c:\program files\Trend Micro
2009-06-24 23:04 . 2009-06-17 15:27 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-06-24 23:04 . 2009-06-27 19:32 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-06-24 23:04 . 2009-06-24 23:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-06-24 23:04 . 2009-06-17 15:27 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-06-23 03:53 . 2009-06-23 03:53 -------- d--h--w- c:\windows\PIF
2009-06-22 15:02 . 2009-06-22 15:02 -------- d-----w- c:\documents and settings\All Users\Application Data\Symantec
2009-06-22 15:02 . 2009-06-27 21:18 -------- d-----w- c:\program files\Symantec
2009-06-22 15:02 . 2009-06-27 21:19 -------- d-----w- c:\program files\SAV
2009-06-22 15:00 . 2009-06-22 15:00 -------- d-----w- C:\Nav
2009-06-22 15:00 . 2009-06-27 17:09 -------- d-----w- c:\program files\Filzip
2009-06-21 13:30 . 2009-06-21 13:30 -------- d-----w- c:\program files\VideoTools
2009-06-14 03:42 . 2009-06-14 03:42 -------- d-----w- c:\documents and settings\Ryan Fabello\Application Data\Snapfish
2009-06-14 03:37 . 2009-06-14 03:37 -------- d-sh--w- c:\documents and settings\Ryan Fabello\IECompatCache
2009-06-13 10:10 . 2009-06-13 10:10 -------- d-sh--w- c:\documents and settings\Ryan Fabello\PrivacIE
2009-06-12 02:59 . 2009-06-12 02:59 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2009-06-12 02:58 . 2009-06-12 02:58 -------- d-sh--w- c:\documents and settings\Ryan Fabello\IETldCache
2009-06-12 01:28 . 2009-04-30 21:22 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2009-06-12 01:28 . 2009-04-30 21:22 1985024 -c----w- c:\windows\system32\dllcache\iertutil.dll
2009-06-12 01:28 . 2009-04-30 21:22 11064832 -c----w- c:\windows\system32\dllcache\ieframe.dll
2009-06-12 01:28 . 2009-04-30 21:22 246272 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2009-06-12 01:28 . 2009-06-12 01:28 -------- d-----w- c:\windows\ie8updates
2009-06-12 01:27 . 2009-05-12 05:11 102912 -c----w- c:\windows\system32\dllcache\iecompat.dll
2009-06-12 01:24 . 2009-06-12 01:25 -------- dc-h--w- c:\windows\ie8
2009-06-05 21:42 . 2009-06-05 21:42 -------- d-----w- c:\program files\iPod
2009-06-05 21:42 . 2009-06-05 21:42 -------- d-----w- c:\program files\iTunes
2009-06-05 21:37 . 2009-06-05 21:38 -------- d-----w- c:\program files\QuickTime
2009-06-05 21:30 . 2009-06-05 21:30 75048 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 8.2.0.23\SetupAdmin.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-27 21:26 . 2008-11-28 12:30 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-06-27 21:23 . 2006-02-16 10:39 -------- d-----w- c:\program files\Microsoft Works
2009-06-27 19:13 . 2006-02-16 09:55 -------- d-----w- c:\documents and settings\All Users\Application Data\Viewpoint
2009-06-27 19:13 . 2006-02-16 09:55 -------- d-----w- c:\program files\Viewpoint
2009-06-27 12:56 . 2006-05-13 23:44 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee
2009-06-24 02:50 . 2009-03-03 00:10 -------- d-----w- c:\documents and settings\Ryan Fabello\Application Data\InstallShield
2009-06-14 03:39 . 2006-02-15 16:20 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-06-13 13:53 . 2007-02-06 20:17 -------- d-----w- c:\documents and settings\All Users\Application Data\ZoomBrowser
2009-06-13 13:53 . 2007-02-06 21:54 -------- d-----w- c:\documents and settings\Ryan Fabello\Application Data\ZoomBrowser EX
2009-06-09 01:39 . 2008-10-04 12:13 -------- d-----w- c:\documents and settings\LocalService\Application Data\SACore
2009-06-05 21:42 . 2007-12-22 10:17 -------- d-----w- c:\program files\Common Files\Apple
2009-05-24 23:38 . 2009-05-24 23:38 390664 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Real\RealPlayer\Update\RealPlayer11.exe
2009-05-18 23:33 . 2009-03-03 00:17 -------- d-----w- c:\documents and settings\All Users\Application Data\ArcSoft
2009-05-17 21:58 . 2007-02-07 00:10 -------- d-----w- c:\documents and settings\Ryan Fabello\Application Data\Arcsoft
2009-05-14 03:25 . 2009-05-14 03:25 214024 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2009-05-14 02:17 . 2009-03-06 00:32 -------- d-----w- c:\documents and settings\Ryan Fabello\Application Data\Epson
2009-05-13 05:15 . 2006-02-15 14:04 915456 ----a-w- c:\windows\system32\wininet.dll
2009-05-07 15:32 . 2006-02-15 14:02 345600 ----a-w- c:\windows\system32\localspl.dll
2009-04-28 02:10 . 2009-04-28 02:10 1878984 ----a-w- c:\documents and settings\Ryan Fabello\Application Data\Macromedia\Flash Player\
www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe2009-04-17 12:26 . 2006-02-15 14:04 1847168 ----a-w- c:\windows\system32\win32k.sys
2009-04-15 14:51 . 2006-02-15 14:03 585216 ----a-w- c:\windows\system32\rpcrt4.dll
2009-04-13 15:52 . 2008-10-31 02:28 256 ----a-w- c:\windows\system32\pool.bin
2009-04-12 03:46 . 2006-02-16 16:59 56944 ----a-w- c:\documents and settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232]
"TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\toscdspd.exe" [2004-12-30 65536]
"ISUSPM"="c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-09-11 218032]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2005-12-16 761945]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-11-28 98304]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-11-28 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-11-28 118784]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"THotkey"="c:\program files\Toshiba\Toshiba Applet\thotkey.exe" [2006-01-05 352256]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2005-12-16 82009]
"Tvs"="c:\program files\Toshiba\Tvs\TvsTray.exe" [2005-11-30 73728]
"SmoothView"="c:\program files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe" [2005-04-27 122880]
"dla"="c:\windows\system32\dla\DLACTRLW.exe" [2005-10-06 122940]
"Pinger"="c:\toshiba\ivp\ism\pinger.exe" [2005-03-18 151552]
"IntelZeroConfig"="c:\program files\Intel\Wireless\bin\ZCfgSvc.exe" [2005-12-05 667718]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2005-11-28 602182]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe" [2004-03-04 172032]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2003-12-22 241664]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2008-05-06 185896]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2009-05-14 177472]
"RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2007-08-16 236016]
"EEventManager"="c:\progra~1\EPSONS~1\EVENTM~1\EEventManager.exe" [2008-02-19 591696]
"ArcSoft Connection Service"="c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2009-04-29 188728]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-05-30 292136]
"mcagent_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2009-05-01 645328]
"TFncKy"="TFncKy.exe" [BU]
"TDispVol"="TDispVol.exe" - c:\windows\system32\TDispVol.exe [2005-03-11 73728]
"AGRSMMSG"="AGRSMMSG.exe" - c:\windows\agrsmmsg.exe [2005-10-15 88203]
"NDSTray.exe"="NDSTray.exe" [BU]
"TPSMain"="TPSMain.exe" - c:\windows\system32\TPSMain.exe [2005-06-01 282624]