Pending: Help - Dont know where to post this thread -

seawright217 · 06-28-2009

Ok so the other day i formatted my computer. Now after 2 or 3 days my computer is running really slow and I hit cntrl alt delete and notice my cpu usage is at 100% most of the time.... Still not really sure why this is... Scanned my computer with malwarebytes and superantispyware and superantispyware found adware.tracking tool which was then removed. Scanned my computer with Eset nod 32 and it found nothing. I dont have many applications installed on this computer because like i already said i formatted recently. This is really frustrating and annoying when all i want to do is browseeeee =/ .. So anyone know what could be the problem ?

chiaz · 06-28-2009

Hello.

Download and Run RSIT

Please download Random's System Information Tool by random/random from here and save it to your desktop.
Double click on RSIT.exe to run RSIT.
Click Continue at the disclaimer screen.
Once it has finished, two logs will open:
- log.txt will be opened maximized.
- info.txt will be opened minimized.
Please post the contents of both log.txt and info.txt.

seawright217 · 06-28-2009

Logfile of random's system information tool 1.06 (written by random/random) Run by Anthony at 2009-06-27 21:46:13 Microsoft Windows XP Professional Service Pack 2 System drive C: has 61 GB (80%) free of 76 GB Total RAM: 1014 MB (58% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:49:52 PM, on 6/27/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\stsystra.exe C:\WINDOWS\system32\WLTRAY.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\eHome\ehmsas.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Anthony\Desktop\RSIT.exe C:\Program Files\trend micro\Anthony.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local O1 - Hosts: ::1 localhost O1 - Hosts: 209.44.111.62 antivir-systempro.com O1 - Hosts: 209.44.111.62 Antivirus System PRO Powerfull PC Protection O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab O20 - AppInit_DLLs: O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE -- End of file - 4344 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}] Ask Toolbar BHO - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2009-06-25 262144] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - Ask Toolbar - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2009-06-25 262144] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run] "ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512] "SigmatelSysTrayApp"=C:\WINDOWS\stsystra.exe [2006-07-27 282624] "Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2005-12-19 1347584] "igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-12-13 98304] "igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-12-13 77824] "igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-12-13 118784] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-06-05 292136] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696] "egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-02-06 2021400] [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run] "SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-06-23 1830128] "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-06-26 321344] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6] C:\Program Files\AIM6\aim6.exe [2009-05-19 49968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-08 761947] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] C:\Program Files\Winamp\winampa.exe [2009-04-10 37888] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLS"=" " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon] C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2005-12-13 139264] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\System] "EnableProfileQuota"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\R oyale\Royale.msstyles "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale. theme [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Common Files\AOL\Loader\aolload.exe"="C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader" "C:\Program Files\AIM6\aim6.exe"="C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM" "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorre nt" "C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled

NA" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" [HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{7a596c6a-614c-11de-b361-0015c520cef4}] shell\AutoRun\command - setupSNK.exe ======List of files/folders created in the last 1 months====== 2009-06-27 21:46:22 ----D---- C:\Program Files\trend micro 2009-06-27 21:46:13 ----D---- C:\rsit 2009-06-27 20:31:55 ----D---- C:\WINDOWS\LastGood 2009-06-27 20:15:36 ----D---- C:\Program Files\ESET 2009-06-27 20:15:36 ----D---- C:\Documents and Settings\All Users\Application Data\ESET 2009-06-27 17:34:36 ----A---- C:\WINDOWS\ntbtlog.txt 2009-06-27 16:39:25 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-06-27 15:45:04 ----SHD---- C:\WINDOWS\CSC 2009-06-26 22:06:33 ----D---- C:\Program Files\QuickTime 2009-06-26 21:59:36 ----D---- C:\WINDOWS\system32\appmgmt 2009-06-26 21:42:11 ----D---- C:\Documents and Settings\Anthony\Application Data\Apple Computer 2009-06-26 21:41:53 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2009-06-26 21:41:28 ----D---- C:\Program Files\iPod 2009-06-26 21:41:24 ----D---- C:\Program Files\iTunes 2009-06-26 21:41:24 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2009-06-26 21:40:53 ----D---- C:\Program Files\Bonjour 2009-06-26 21:40:12 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer 2009-06-26 21:39:43 ----D---- C:\Program Files\Apple Software Update 2009-06-26 21:38:59 ----D---- C:\Program Files\Common Files\Apple 2009-06-26 21:38:58 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2009-06-26 19:44:03 ----D---- C:\Documents and Settings\Anthony\Application Data\vlc 2009-06-26 17:51:14 ----D---- C:\Documents and Settings\Anthony\Application Data\BitTorrent 2009-06-26 17:50:19 ----D---- C:\Program Files\DNA 2009-06-26 17:50:19 ----D---- C:\Documents and Settings\Anthony\Application Data\DNA 2009-06-26 17:50:18 ----D---- C:\Program Files\BitTorrent 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\muweb.dll 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\mucltui.dll 2009-06-25 23:52:05 ----D---- C:\Documents and Settings\Anthony\Application Data\acccore 2009-06-25 23:51:35 ----D---- C:\Documents and Settings\All Users\Application Data\Viewpoint 2009-06-25 23:51:33 ----D---- C:\Program Files\Viewpoint 2009-06-25 23:51:32 ----D---- C:\Documents and Settings\All Users\Application Data\acccore 2009-06-25 23:51:15 ----D---- C:\Documents and Settings\All Users\Application Data\AOL OCP 2009-06-25 23:51:14 ----D---- C:\Documents and Settings\All Users\Application Data\AOL 2009-06-25 23:50:53 ----D---- C:\Program Files\Common Files\AOL 2009-06-25 23:50:28 ----D---- C:\Program Files\AIM6 2009-06-25 23:41:02 ----D---- C:\Program Files\Microsoft 2009-06-25 23:39:52 ----D---- C:\Program Files\Windows Live SkyDrive 2009-06-25 23:39:25 ----D---- C:\Program Files\Windows Live 2009-06-25 23:36:33 ----D---- C:\Program Files\Common Files\Windows Live 2009-06-25 23:22:51 ----D---- C:\Documents and Settings\Anthony\Application Data\NoNameScript 2009-06-25 23:22:31 ----D---- C:\Documents and Settings\Anthony\Application Data\mIRC 2009-06-25 23:22:24 ----D---- C:\Program Files\mIRC 2009-06-25 22:15:29 ----D---- C:\Program Files\Alwil Software 2009-06-25 21:54:59 ----D---- C:\Program Files\VideoLAN 2009-06-25 21:40:10 ----D---- C:\Program Files\CCleaner 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxsfs.dll 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxafs.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\vxblock.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxwave.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxmas.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxdrv.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\px.dll 2009-06-25 21:30:55 ----D---- C:\Program Files\Winamp 2009-06-25 21:30:55 ----D---- C:\Documents and Settings\Anthony\Application Data\Winamp 2009-06-25 21:28:06 ----D---- C:\Documents and Settings\Anthony\Application Data\WinRAR 2009-06-25 21:24:09 ----A---- C:\WINDOWS\system32\igfxres.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\iglicd32.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igldev32.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxzoom.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxtray.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxsrvc.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxsrvc.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxress.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxpph.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxpers.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxext.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxexps.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxdo.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxdev.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxcfg.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmrnt5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmrem.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdnt5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdev5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdd5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\iAlmCoIn_v4446.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\hkcmd.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\hccutils.dll 2009-06-25 21:16:35 ----D---- C:\Documents and Settings\Anthony\Application Data\Adobe 2009-06-25 21:13:53 ----D---- C:\Program Files\WinRAR 2009-06-25 18:37:20 ----D---- C:\WINDOWS\pss 2009-06-25 13:07:19 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com 2009-06-25 13:05:53 ----D---- C:\Program Files\SUPERAntiSpyware 2009-06-25 13:05:53 ----D---- C:\Documents and Settings\Anthony\Application Data\SUPERAntiSpyware.com 2009-06-25 13:04:28 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2009-06-25 04:12:31 ----D---- C:\Documents and Settings\Anthony\Application Data\Mozilla 2009-06-25 04:10:46 ----D---- C:\Program Files\Mozilla Firefox 2009-06-25 04:02:38 ----A---- C:\WINDOWS\system32\KDSInterface.txt 2009-06-25 03:20:54 ----D---- C:\WINDOWS\system32\CatRoot_bak 2009-06-25 03:09:31 ----N---- C:\WINDOWS\kb913800.exe 2009-06-25 03:00:22 ----N---- C:\WINDOWS\system32\spmsg.dll 2009-06-25 03:00:22 ----D---- C:\WINDOWS\system32\PreInstall 2009-06-25 02:49:15 ----D---- C:\Documents and Settings\Anthony\Application Data\Macromedia 2009-06-25 02:47:43 ----D---- C:\Program Files\ATI Technologies 2009-06-25 02:46:50 ----D---- C:\Documents and Settings\Anthony\Application Data\Malwarebytes 2009-06-25 02:45:48 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-06-25 02:45:27 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-06-25 02:43:46 ----A---- C:\WINDOWS\system32\BCMLogon.dll 2009-06-25 02:43:39 ----A---- C:\WINDOWS\system32\bcmwlpkt.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\WLTRYSVC.EXE 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\wltrynt.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\WLTRAY.EXE 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\bcm1xsup.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\ATL71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\WLBCGCBPRO731.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\preflib.dll 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MSVCR71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MSVCP71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MFC71.DLL 2009-06-25 02:43:14 ----A---- C:\WINDOWS\system32\bcmwlu00.exe 2009-06-25 02:43:14 ----A---- C:\WINDOWS\system32\BCMWLTRY.EXE 2009-06-25 02:42:36 ----D---- C:\Program Files\Broadcom 2009-06-25 02:41:42 ----A---- C:\WINDOWS\system32\SynTPFcs.dll 2009-06-25 02:41:41 ----D---- C:\Program Files\Synaptics 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynTPCo2.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynCOM.dll 2009-06-25 02:40:56 ----D---- C:\Program Files\AMD 2009-06-25 02:40:01 ----D---- C:\WINDOWS\system32\ReinstallBackups 2009-06-25 02:38:36 ----A---- C:\WINDOWS\system32\Uci32103.dll 2009-06-25 02:38:35 ----D---- C:\Program Files\CONEXANT 2009-06-25 02:38:35 ----A---- C:\WINDOWS\system32\mdmxsdk.dll 2009-06-25 02:38:14 ----A---- C:\WINDOWS\system32\stlang.dll 2009-06-25 02:38:14 ----A---- C:\WINDOWS\stsystra.exe 2009-06-25 02:38:12 ----A---- C:\WINDOWS\system32\ksuser.dll 2009-06-25 02:38:10 ----A---- C:\WINDOWS\system32\staco.dll 2009-06-25 02:37:56 ----D---- C:\Program Files\SigmaTel 2009-06-25 02:37:56 ----A---- C:\WINDOWS\system32\stacapi.dll 2009-06-25 02:36:59 ----D---- C:\Program Files\DIFX 2009-06-25 02:36:53 ----DC---- C:\WINDOWS\system32\DRVSTORE 2009-06-25 02:36:50 ----A---- C:\WINDOWS\system32\rixdicon.dll 2009-06-25 02:36:49 ----HD---- C:\Program Files\InstallShield Installation Information 2009-06-25 02:36:49 ----A---- C:\WINDOWS\system32\snymsico.dll 2009-06-25 02:34:09 ----D---- C:\WINDOWS\system32\vmm32 2009-06-25 02:34:07 ----D---- C:\Program Files\Dell 2009-06-25 02:33:38 ----D---- C:\Program Files\Common Files\InstallShield 2009-06-25 02:17:39 ----D---- C:\Documents and Settings\Anthony\Application Data\Identities 2009-06-25 02:17:35 ----HD---- C:\Program Files\Uninstall Information 2009-06-25 02:15:19 ----D---- C:\WINDOWS\RegisteredPackages 2009-06-25 02:11:51 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2009-06-25 02:09:38 ----D---- C:\WINDOWS\system32\URTTemp 2009-06-25 02:09:11 ----D---- C:\Program Files\RGB 2009-06-25 02:07:18 ----D---- C:\Program Files\GemMaster 2009-06-25 02:07:16 ----D---- C:\Program Files\EnglishOtto 2009-06-25 02:01:53 ----ASH---- C:\Documents and Settings\Anthony\Application Data\desktop.ini 2009-06-25 02:01:52 ----SD---- C:\Documents and Settings\Anthony\Application Data\Microsoft 2009-06-25 02:01:10 ----D---- C:\WINDOWS\SoftwareDistribution 2009-06-25 02:01:07 ----D---- C:\WINDOWS\Prefetch 2009-06-25 02:01:06 ----SD---- C:\WINDOWS\system32\Microsoft 2009-06-25 01:57:24 ----HD---- C:\$AVG8.VAULT$ 2009-06-25 01:46:13 ----D---- C:\WINDOWS\system32\xircom 2009-06-25 01:46:13 ----D---- C:\Program Files\xerox 2009-06-25 01:46:13 ----D---- C:\Program Files\microsoft frontpage 2009-06-25 01:45:02 ----D---- C:\DELL 2009-06-25 01:44:50 ----HD---- C:\WINDOWS\$hf_mig$ 2009-06-25 01:44:47 ----A---- C:\WINDOWS\system32\xpsp3res.dll 2009-06-25 01:44:29 ----A---- C:\WINDOWS\control.ini 2009-06-25 01:44:29 ----A---- C:\AUTOEXEC.BAT 2009-06-25 01:44:11 ----A---- C:\WINDOWS\system32\mapi32.dll 2009-06-25 01:42:45 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-06-25 01:42:45 ----RD---- C:\WINDOWS\Offline Web Pages 2009-06-25 01:42:45 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2009-06-25 01:42:37 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2009-06-25 01:42:30 ----HD---- C:\Program Files\WindowsUpdate 2009-06-25 01:42:01 ----D---- C:\WINDOWS\system32\DirectX 2009-06-25 01:41:31 ----A---- C:\WINDOWS\system32\atrace.dll 2009-06-25 01:41:27 ----A---- C:\WINDOWS\system32\desktop.ini 2009-06-25 01:41:27 ----A---- C:\WINDOWS\desktop.ini 2009-06-25 01:41:20 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2009-06-25 01:41:19 ----A---- C:\WINDOWS\system32\acctres.dll 2009-06-25 01:41:18 ----D---- C:\Program Files\Common Files\Services 2009-06-25 01:41:15 ----SD---- C:\WINDOWS\Tasks 2009-06-25 01:41:15 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2009-06-25 01:41:14 ----D---- C:\Program Files\Common Files\MSSoap 2009-06-25 01:41:06 ----D---- C:\WINDOWS\srchasst 2009-06-25 01:41:05 ----D---- C:\WINDOWS\system32\Macromed 2009-06-25 01:41:00 ----A---- C:\WINDOWS\system32\wuweb.dll 2009-06-25 01:41:00 ----A---- C:\WINDOWS\system32\wucltui.dll 2009-06-25 01:40:59 ----A---- C:\WINDOWS\system32\wuauserv.dll 2009-06-25 01:40:59 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wups.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuaueng.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuauclt.exe 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\wuapi.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\qmgr.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrslv.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrdm.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\racpldlg.dll 2009-06-25 01:40:33 ----A---- C:\WINDOWS\system32\fltMc.exe 2009-06-25 01:40:33 ----A---- C:\WINDOWS\system32\fltlib.dll 2009-06-25 01:40:32 ----D---- C:\WINDOWS\system32\Restore 2009-06-25 01:40:32 ----A---- C:\WINDOWS\system32\srrstr.dll 2009-06-25 01:40:31 ----A---- C:\WINDOWS\system32\srsvc.dll 2009-06-25 01:40:31 ----A---- C:\WINDOWS\system32\srclient.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\mnmdd.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\ils.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\msconf.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2009-06-25 01:40:24 ----D---- C:\Program Files\NetMeeting 2009-06-25 01:40:24 ----A---- C:\WINDOWS\system32\msoert2.dll 2009-06-25 01:40:24 ----A---- C:\WINDOWS\system32\msoeacct.dll 2009-06-25 01:40:22 ----A---- C:\WINDOWS\system32\inetres.dll 2009-06-25 01:40:21 ----A---- C:\WINDOWS\system32\inetcomm.dll 2009-06-25 01:40:16 ----D---- C:\Program Files\Outlook Express 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\schedsvc.dll 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\mstinit.exe 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\mstask.dll 2009-06-25 01:40:15 ----A---- C:\WINDOWS\system32\icwphbk.dll 2009-06-25 01:40:15 ----A---- C:\WINDOWS\system32\icwdial.dll 2009-06-25 01:40:14 ----A---- C:\WINDOWS\system32\isign32.dll 2009-06-25 01:40:14 ----A---- C:\WINDOWS\system32\inetcfg.dll 2009-06-25 01:40:01 ----D---- C:\Program Files\Common Files\System 2009-06-25 01:39:56 ----D---- C:\Program Files\Internet Explorer 2009-06-25 01:38:30 ----RSD---- C:\WINDOWS\assembly 2009-06-25 01:37:09 ----D---- C:\Program Files\ComPlus Applications 2009-06-25 01:37:07 ----A---- C:\WINDOWS\vbaddin.ini 2009-06-25 01:37:07 ----A---- C:\WINDOWS\vb.ini 2009-06-25 01:37:01 ----D---- C:\WINDOWS\Registration 2009-06-25 01:36:53 ----D---- C:\Program Files\Online Services 2009-06-25 01:36:23 ----D---- C:\WINDOWS\Microsoft.NET 2009-06-25 01:36:17 ----D---- C:\Program Files\Windows Media Player 2009-06-25 01:35:43 ----D---- C:\Program Files\Windows Plus 2009-06-25 01:35:25 ----A---- C:\WINDOWS\system32\mhn.dll 2009-06-25 01:35:25 ----A---- C:\WINDOWS\system32\igdetect.dll 2009-06-25 01:35:20 ----D---- C:\Program Files\Movie Maker 2009-06-25 01:33:25 ----D---- C:\Program Files\Messenger 2009-06-25 01:33:22 ----D---- C:\Program Files\MSN Gaming Zone 2009-06-25 01:33:22 ----A---- C:\WINDOWS\system32\write.exe 2009-06-25 01:33:11 ----A---- C:\WINDOWS\system32\sndvol32.exe 2009-06-25 01:33:11 ----A---- C:\WINDOWS\system32\hticons.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\winchat.exe 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avwav.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avtapi.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avmeter.dll 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\getuname.dll 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\charmap.exe 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\calc.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\winmine.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\sol.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\mshearts.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\freecell.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tslabels.ini 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tskill.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tscon.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\shadow.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\rwinsta.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\reset.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\regini.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\qwinsta.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\qappsrv.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\msg.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\logoff.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\cdmodem.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\stclient.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxex.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxdm.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comsnap.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comrepl.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comaddin.dll 2009-06-25 01:32:53 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2009-06-25 01:32:33 ----D---- C:\Program Files\MSN 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\sndrec32.exe 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\mplay32.exe 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\accwiz.exe 2009-06-25 01:32:31 ----D---- C:\Program Files\Windows NT 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\mspaint.exe 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\hypertrm.dll 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\clipbrd.exe 2009-06-25 01:32:30 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2009-06-25 01:32:30 ----A---- C:\WINDOWS\system32\spider.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\sessmgr.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\remotepg.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdshost.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdchost.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\mstscax.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\mstsc.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\termsrv.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpclip.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\qprocess.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\icaapi.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2009-06-25 01:32:27 ----D---- C:\WINDOWS\system32\MsDtc 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\xolehlp.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\mtxoci.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtctm.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2009-06-25 01:32:26 ----D---- C:\WINDOWS\system32\Com 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\msdtclog.dll 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\msdtc.exe 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\colbact.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\clbcatex.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrvut.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrvps.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrv.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\comuid.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\comsvcs.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\clbcatq.dll 2009-06-25 01:32:16 ----A---- C:\WINDOWS\system32\servdeps.dll 2009-06-25 01:32:16 ----A---- C:\WINDOWS\system32\mmfutil.dll 2009-06-25 01:32:15 ----A---- C:\WINDOWS\system32\licwmi.dll 2009-06-25 01:32:15 ----A---- C:\WINDOWS\system32\cmprops.dll 2009-06-25 01:25:00 ----D---- C:\Program Files\AVG 2009-06-25 01:25:00 ----D---- C:\Documents and Settings\All Users\Application Data\avg8 2009-06-25 01:13:03 ----A---- C:\WINDOWS\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt 2009-06-25 01:08:14 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP 2009-06-25 00:35:09 ----A---- C:\WINDOWS\system32\cssdll32.dll 2009-06-25 00:35:08 ----D---- C:\Program Files\AskSBar 2009-06-25 00:34:43 ----D---- C:\Documents and Settings\Anthony\Application Data\Comodo 2009-06-25 00:34:41 ----D---- C:\Program Files\COMODO 2009-06-25 00:33:06 ----D---- C:\Program Files\sys 2009-06-25 00:23:17 ----SHD---- C:\RECYCLER 2009-06-25 00:23:08 ----D---- C:\Program Files\7-Zip 2009-06-24 23:58:40 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2009-06-24 18:21:58 ----A---- C:\WINDOWS\system32\h323log.txt 2009-06-24 18:18:29 ----A---- C:\WINDOWS\system32\usbui.dll 2009-06-24 18:17:05 ----SHD---- C:\WINDOWS\Installer 2009-06-24 18:17:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-06-24 18:17:04 ----D---- C:\Program Files\Common Files\ODBC 2009-06-24 18:17:04 ----A---- C:\WINDOWS\ODBCINST.INI 2009-06-24 18:17:00 ----D---- C:\Program Files\Common Files\SpeechEngines 2009-06-24 18:16:59 ----RD---- C:\Program Files 2009-06-24 18:16:59 ----D---- C:\Program Files\Common Files\Microsoft Shared 2009-06-24 18:16:59 ----D---- C:\Program Files\Common Files 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdur.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdru.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdest.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdro.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\spxcoins.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\irclass.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\dgsetup.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2009-06-24 18:16:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2009-06-24 18:16:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2009-06-24 18:16:43 ----A---- C:\WINDOWS\TASKMAN.EXE 2009-06-24 18:16:43 ----A---- C:\WINDOWS\system32\batt.dll 2009-06-24 18:16:43 ----A---- C:\WINDOWS\NOTEPAD.EXE 2009-06-24 18:16:42 ----A---- C:\WINDOWS\system32\storprop.dll 2009-06-24 18:16:32 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2009-06-24 18:16:31 ----RA---- C:\WINDOWS\SET2E.tmp 2009-06-24 18:16:31 ----RA---- C:\WINDOWS\SET2D.tmp 2009-06-24 18:16:27 ----RA---- C:\WINDOWS\SET8.tmp 2009-06-24 18:16:23 ----RA---- C:\WINDOWS\SET4.tmp 2009-06-24 18:16:23 ----RA---- C:\WINDOWS\SET3.tmp 2009-06-24 18:16:17 ----D---- C:\WINDOWS\system32\CatRoot2 2009-06-24 18:16:17 ----D---- C:\WINDOWS\system32\CatRoot 2009-06-24 18:16:11 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-06-24 18:15:43 ----D---- C:\Documents and Settings 2009-06-24 18:14:59 ----RSH---- C:\boot.ini 2009-06-24 18:10:14 ----SHD---- C:\System Volume Information 2009-06-24 18:00:18 ----RSHDC---- C:\WINDOWS\system32\dllcache 2009-06-24 18:00:18 ----RD---- C:\WINDOWS\Web 2009-06-24 18:00:18 ----D---- C:\WINDOWS\WinSxS 2009-06-24 18:00:18 ----D---- C:\WINDOWS\twain_32 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Temp 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\wbem 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\usmt 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\ShellExt 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\Setup 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\oobe 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\npp 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\mui 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\inetsrv 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\IME 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\icsxml 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\ias 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\export 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\3com_dmi 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\3076 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\2052 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1054 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1042 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1041 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1037 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1033 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1031 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1028 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1025 2009-06-24 18:00:18 ----D---- C:\WINDOWS\security 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Resources 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Provisioning 2009-06-24 18:00:18 ----D---- C:\WINDOWS\PeerNet 2009-06-24 18:00:18 ----D---- C:\WINDOWS\mui 2009-06-24 18:00:18 ----D---- C:\WINDOWS\msapps 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Media 2009-06-24 18:00:18 ----D---- C:\WINDOWS\java 2009-06-24 18:00:18 ----D---- C:\WINDOWS\ime 2009-06-24 18:00:18 ----D---- C:\WINDOWS\ehome 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Driver Cache 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Debug 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Connection Wizard 2009-06-24 18:00:18 ----D---- C:\WINDOWS\AppPatch 2009-06-24 18:00:18 ----D---- C:\WINDOWS\addins 2009-06-24 18:00:17 ----RSD---- C:\WINDOWS\Fonts 2009-06-24 18:00:17 ----HD---- C:\WINDOWS\inf 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\wins 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\spool 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\ras 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\drivers 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\dhcp 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\config 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system 2009-06-24 18:00:17 ----D---- C:\WINDOWS\repair 2009-06-24 18:00:17 ----D---- C:\WINDOWS\pchealth 2009-06-24 18:00:17 ----D---- C:\WINDOWS\msagent 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Help 2009-06-24 18:00:17 ----D---- C:\WINDOWS\dell 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Cursors 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Config 2009-06-24 18:00:17 ----D---- C:\WINDOWS ======List of files/folders modified in the last 1 months====== 2009-06-27 13:05:32 ----A---- C:\WINDOWS\win.ini 2009-06-27 13:05:31 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-02-06 106208] R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-02-06 93336] R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-10 36096] R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [] R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-02-06 113448] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544] R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-10 60800] R3 BCM43XX

ell Wireless WLAN Card Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-11-02 424320] R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-08-17 44544] R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-03 14080] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2005-12-01 936960] R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2005-12-01 192512] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-12-13 1364574] R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-10 61824] R3 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2005-07-14 28544] R3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-07-12 51328] R3 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2005-07-14 307968] R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [] R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-10 67584] R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-07-27 1171464] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-08 191872] R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-10 26624] R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-10 57600] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-10 20480] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys [2005-12-01 669696] S1 OMCI;OMCI; \??\C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS [] S3 BVRPMPR5;BVRPMPR5 NDIS Protocol Driver; \??\D:\INSTAL~E\Core\BVRPMPR5.SYS [] S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008] S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS [] S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712] R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888] R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2005-10-11 237568] R2 ehSched;Media Center Scheduler Service; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-02-06 727720] R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328] R2 Viewpoint Manager Service;Viewpoint Manager Service; C:\Program Files\Viewpoint\Common\ViewpointService.exe [2007-01-04 24652] R2 wltrysvc

ell Wireless WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2005-12-19 18944] R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-06-05 541992] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspn et_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe [2005-09-23 66240] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-02-06 20680] S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336] S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-08-03 38912] -----------------EOF-----------------

seawright217 · 06-28-2009

info.txt logfile of random's system information tool 1.06 2009-06-27 21:51:37 ======Uninstall list====== -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\070 1\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7875FD9-6ADB-4D4B-A756-3A2306A3D5E1}\setup.exe" -l0x9 anything -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe" AIM 6-->C:\Program Files\AIM6\uninst.exe AMD Processor Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x9 Apple Mobile Device Support-->MsiExec.exe /I{8355F970-601D-442D-A79B-1D7DB4F24CAD} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Ask Toolbar-->rundll32 C:\PROGRA~1\AskSBar\bar\1.bin\AskSBar.dll,O ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B} Broadcom 440x 10/100 Integrated Controller-->MsiExec.exe /X{9C9D0F85-5658-4A5E-95A9-65F7DB2916EE} CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E} Conexant HDA D110 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BF A&SUBSYS_14F100C3\HXFSETUP.EXE -U -Idel1028p.inf Dell Resource CD-->MsiExec.exe /X{FCD9CD52-7222-4672-94A0-A722BA702FD0} Dell Wireless WLAN Card-->"C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card" GemMaster Mystic-->"C:\Program Files\GemMaster\uninstallgemmaster.exe" HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall Intel(R) Graphics Media Accelerator Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2I D PCI\VEN_8086&DEV_27A6 PCI\VEN_8086&DEV_27A2 iTunes-->MsiExec.exe /I{5D601655-6D54-4384-B52C-17EC5385FBBD} Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Upd ates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Upda tes\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Mic rosoft .NET Framework 2.0\install.exe Microsoft VC9 runtime libraries-->MsiExec.exe /I{C4124E95-5061-4776-8D5D-E3D931C778E1} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} mIRC-->C:\Program Files\mIRC\uninstall.exe _?=C:\Program Files\mIRC Mozilla Firefox (3.0.11)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94} Otto-->"C:\Program Files\EnglishOtto\uninstallotto.exe" QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68} Security Update for Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x9 -remove -removeonly Sonic Encoders-->MsiExec.exe /I{9941F0AA-B903-4AF4-A055-83A9815CC011} SUPERAntiSpyware Professional-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUnin stall Viewpoint Media Player-->C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Driver Package - Ricoh Company Memorystick Host Controller (07/09/2005 1.00.01.12)-->C:\PROGRA~1\DIFX\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\rimsptsk_469677EEC4F8 D39ABD61046D242B2A1651DE8AEF\rimsptsk.inf Windows Driver Package - Ricoh Company MMC Host Controller (07/14/2005 1.00.00.06)-->C:\PROGRA~1\DIFX\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\rimmptsk_EA24AF82DAB6 BA6CF6FB1A3004EE91F51D3FDCF9\rimmptsk.inf Windows Driver Package - Ricoh Company xD-Picture Card/SmartMedia Host Controller (07/14/2005 1.00.02.04)-->C:\PROGRA~1\DIFX\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\rixdptsk_30B42BE4DA4D 11DB80E5D3DD10180621BA0A53DD\rixdptsk.inf Windows Live Call-->MsiExec.exe /I{F6BD194C-4190-4D73-B1B1-C48C99921BFE} Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52} Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe Windows Live Essentials-->MsiExec.exe /I{C6CA8874-5F22-4AF0-9BE3-016BF299C536} Windows Live Messenger-->MsiExec.exe /X{0AAA9C97-74D4-47CE-B089-0B147EF3553C} Windows Live Sign-in Assistant-->MsiExec.exe /I{45338B07-A236-4270-9A77-EBB4115517B5} Windows Live Upload Tool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238} Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe ======Hosts File====== 127.0.0.1 localhost ::1 localhost 209.44.111.62 antivir-systempro.com 209.44.111.62 Antivirus System PRO Powerfull PC Protection ======Security center information====== AV: ESET NOD32 Antivirus 4.0 FW: COMODO Firewall Pro ======System event log====== Computer Name: ANTHONY-7222209 Event Code: 1 Message: The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume. Record Number: 218 Source Name: sr Time Written: 20090625030341.000000-240 Event Type: error User: Computer Name: ANTHONY-7222209 Event Code: 7023 Message: The sys service terminated with the following error: Invalid access to memory location. Record Number: 186 Source Name: Service Control Manager Time Written: 20090625014844.000000-240 Event Type: error User: Computer Name: ANTHONY-7222209 Event Code: 4226 Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts. Record Number: 134 Source Name: Tcpip Time Written: 20090625000244.000000-240 Event Type: warning User: Computer Name: ANTHONY-7222209 Event Code: 51 Message: An error was detected on device \Device\CdRom0 during a paging operation. Record Number: 87 Source Name: Cdrom Time Written: 20090625023733.000000-240 Event Type: warning User: Computer Name: ANTHONY-7222209 Event Code: 7000 Message: The OMCI service failed to start due to the following error: The system cannot find the file specified. Record Number: 86 Source Name: Service Control Manager Time Written: 20090625023421.000000-240 Event Type: error User: =====Application event log===== Computer Name: ANTHONY-7222209 Event Code: 5603 Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality. Record Number: 26 Source Name: WinMgmt Time Written: 20090625014351.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ANTHONY-7222209 Event Code: 1031 Message: Record Number: 15 Source Name: ASP.NET 1.0.3705.6018 Time Written: 20090625013842.000000-240 Event Type: error User: Computer Name: ANTHONY-7222209 Event Code: 63 Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 13 Source Name: WinMgmt Time Written: 20090625013808.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ANTHONY-7222209 Event Code: 63 Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 12 Source Name: WinMgmt Time Written: 20090625013808.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ANTHONY-7222209 Event Code: 63 Message: A provider, HiPerfCooker_v1, has been registered in the WMI namespace, Root\WMI, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 11 Source Name: WinMgmt Time Written: 20090625013801.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemR oot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 14 Stepping 8, GenuineIntel "PROCESSOR_REVISION"=0e08 "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;. WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip "QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJava.zip -----------------EOF-----------------

chiaz · 06-28-2009

Hi,

Your logs are messed up. This is caused by having Word Wrap checked.
So before posting the new RSIT logs:

1. Click Start > All Programs > Accessories > Notepad
2. On the menu bar in Notepad select Format and click on WordWrap so it appears un-checked.
----------------------------------------------
Please post the logs again.

chiaz · 06-28-2009

No improvement there in the appearance of the log - but I do see an infection.

Please download Malwarebytes' Anti-Malware by clicking the link below:
Malwarebytes Anti-Malware - Reviews and free Malwarebytes Anti-Malware downloads at Download.com

Double Click mbam-setup.exe to install the application.

* Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select "Perform Quick Scan", then click Scan.
* The scan may take some time to finish,so please be patient.
* When the scan is complete, click OK, then Show Results to view the results.
* Make sure that everything is checked, and click Remove Selected.
* When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
* The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
* You'll be required to post the contents of this log later.

Please Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

==============================================

Ok. Next let's have you download ComboFix.exe. Please visit this webpage for downloading and instructions for running the tool:

Go here ======> A guide and tutorial on using ComboFix <====== Go here

Please ensure you read this guide carefully and install the Recovery Console first.This applies to XP Pro and XP Home users only.If you have SP3 installed you will need to use SP2

The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

Once installed, you should get a prompt that says:

The Recovery Console was successfully installed.

Please continue as follows:

(1) Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
(2) Click Yes to allow ComboFix to continue scanning for malware.

When the tool is finished, it will produce a report for you.

Please include the following reports for further review (copy and paste them, not attach), so that we may continue cleansing the system if necessary.

MBAM log
C:\ComboFix.txt
New RSIT logs

Caution: Never run and remove files with Combofix unless supervised by a qualified security analyst who is experienced in the use of Combofix. Misuse can cause serious computer problems.

seawright217 · 06-28-2009

Logfile of random's system information tool 1.06 (written by random/random) Run by Anthony at 2009-06-27 21:46:13 Microsoft Windows XP Professional Service Pack 2 System drive C: has 61 GB (80%) free of 76 GB Total RAM: 1014 MB (58% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:49:52 PM, on 6/27/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\stsystra.exe C:\WINDOWS\system32\WLTRAY.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\eHome\ehmsas.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Anthony\Desktop\RSIT.exe C:\Program Files\trend micro\Anthony.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local O1 - Hosts: ::1 localhost O1 - Hosts: 209.44.111.62 antivir-systempro.com O1 - Hosts: 209.44.111.62 Antivirus System PRO Powerfull PC Protection O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab O20 - AppInit_DLLs: O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE -- End of file - 4344 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}] Ask Toolbar BHO - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2009-06-25 262144] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - Ask Toolbar - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2009-06-25 262144] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run] "ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512] "SigmatelSysTrayApp"=C:\WINDOWS\stsystra.exe [2006-07-27 282624] "Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2005-12-19 1347584] "igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-12-13 98304] "igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-12-13 77824] "igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-12-13 118784] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-06-05 292136] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696] "egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-02-06 2021400] [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run] "SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-06-23 1830128] "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-06-26 321344] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6] C:\Program Files\AIM6\aim6.exe [2009-05-19 49968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-08 761947] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] C:\Program Files\Winamp\winampa.exe [2009-04-10 37888] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLS"=" " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon] C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2005-12-13 139264] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\System] "EnableProfileQuota"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\R oyale\Royale.msstyles "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale. theme [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Common Files\AOL\Loader\aolload.exe"="C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader" "C:\Program Files\AIM6\aim6.exe"="C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM" "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorre nt" "C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled

NA" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes" [HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{7a596c6a-614c-11de-b361-0015c520cef4}] shell\AutoRun\command - setupSNK.exe ======List of files/folders created in the last 1 months====== 2009-06-27 21:46:22 ----D---- C:\Program Files\trend micro 2009-06-27 21:46:13 ----D---- C:\rsit 2009-06-27 20:31:55 ----D---- C:\WINDOWS\LastGood 2009-06-27 20:15:36 ----D---- C:\Program Files\ESET 2009-06-27 20:15:36 ----D---- C:\Documents and Settings\All Users\Application Data\ESET 2009-06-27 17:34:36 ----A---- C:\WINDOWS\ntbtlog.txt 2009-06-27 16:39:25 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-06-27 15:45:04 ----SHD---- C:\WINDOWS\CSC 2009-06-26 22:06:33 ----D---- C:\Program Files\QuickTime 2009-06-26 21:59:36 ----D---- C:\WINDOWS\system32\appmgmt 2009-06-26 21:42:11 ----D---- C:\Documents and Settings\Anthony\Application Data\Apple Computer 2009-06-26 21:41:53 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2009-06-26 21:41:28 ----D---- C:\Program Files\iPod 2009-06-26 21:41:24 ----D---- C:\Program Files\iTunes 2009-06-26 21:41:24 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2009-06-26 21:40:53 ----D---- C:\Program Files\Bonjour 2009-06-26 21:40:12 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer 2009-06-26 21:39:43 ----D---- C:\Program Files\Apple Software Update 2009-06-26 21:38:59 ----D---- C:\Program Files\Common Files\Apple 2009-06-26 21:38:58 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2009-06-26 19:44:03 ----D---- C:\Documents and Settings\Anthony\Application Data\vlc 2009-06-26 17:51:14 ----D---- C:\Documents and Settings\Anthony\Application Data\BitTorrent 2009-06-26 17:50:19 ----D---- C:\Program Files\DNA 2009-06-26 17:50:19 ----D---- C:\Documents and Settings\Anthony\Application Data\DNA 2009-06-26 17:50:18 ----D---- C:\Program Files\BitTorrent 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\muweb.dll 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\mucltui.dll 2009-06-25 23:52:05 ----D---- C:\Documents and Settings\Anthony\Application Data\acccore 2009-06-25 23:51:35 ----D---- C:\Documents and Settings\All Users\Application Data\Viewpoint 2009-06-25 23:51:33 ----D---- C:\Program Files\Viewpoint 2009-06-25 23:51:32 ----D---- C:\Documents and Settings\All Users\Application Data\acccore 2009-06-25 23:51:15 ----D---- C:\Documents and Settings\All Users\Application Data\AOL OCP 2009-06-25 23:51:14 ----D---- C:\Documents and Settings\All Users\Application Data\AOL 2009-06-25 23:50:53 ----D---- C:\Program Files\Common Files\AOL 2009-06-25 23:50:28 ----D---- C:\Program Files\AIM6 2009-06-25 23:41:02 ----D---- C:\Program Files\Microsoft 2009-06-25 23:39:52 ----D---- C:\Program Files\Windows Live SkyDrive 2009-06-25 23:39:25 ----D---- C:\Program Files\Windows Live 2009-06-25 23:36:33 ----D---- C:\Program Files\Common Files\Windows Live 2009-06-25 23:22:51 ----D---- C:\Documents and Settings\Anthony\Application Data\NoNameScript 2009-06-25 23:22:31 ----D---- C:\Documents and Settings\Anthony\Application Data\mIRC 2009-06-25 23:22:24 ----D---- C:\Program Files\mIRC 2009-06-25 22:15:29 ----D---- C:\Program Files\Alwil Software 2009-06-25 21:54:59 ----D---- C:\Program Files\VideoLAN 2009-06-25 21:40:10 ----D---- C:\Program Files\CCleaner 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxsfs.dll 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxafs.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\vxblock.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxwave.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxmas.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxdrv.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\px.dll 2009-06-25 21:30:55 ----D---- C:\Program Files\Winamp 2009-06-25 21:30:55 ----D---- C:\Documents and Settings\Anthony\Application Data\Winamp 2009-06-25 21:28:06 ----D---- C:\Documents and Settings\Anthony\Application Data\WinRAR 2009-06-25 21:24:09 ----A---- C:\WINDOWS\system32\igfxres.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\iglicd32.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igldev32.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxzoom.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxtray.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxsrvc.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxsrvc.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxress.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxpph.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxpers.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxext.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxexps.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxdo.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxdev.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxcfg.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmrnt5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmrem.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdnt5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdev5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdd5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\iAlmCoIn_v4446.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\hkcmd.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\hccutils.dll 2009-06-25 21:16:35 ----D---- C:\Documents and Settings\Anthony\Application Data\Adobe 2009-06-25 21:13:53 ----D---- C:\Program Files\WinRAR 2009-06-25 18:37:20 ----D---- C:\WINDOWS\pss 2009-06-25 13:07:19 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com 2009-06-25 13:05:53 ----D---- C:\Program Files\SUPERAntiSpyware 2009-06-25 13:05:53 ----D---- C:\Documents and Settings\Anthony\Application Data\SUPERAntiSpyware.com 2009-06-25 13:04:28 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2009-06-25 04:12:31 ----D---- C:\Documents and Settings\Anthony\Application Data\Mozilla 2009-06-25 04:10:46 ----D---- C:\Program Files\Mozilla Firefox 2009-06-25 04:02:38 ----A---- C:\WINDOWS\system32\KDSInterface.txt 2009-06-25 03:20:54 ----D---- C:\WINDOWS\system32\CatRoot_bak 2009-06-25 03:09:31 ----N---- C:\WINDOWS\kb913800.exe 2009-06-25 03:00:22 ----N---- C:\WINDOWS\system32\spmsg.dll 2009-06-25 03:00:22 ----D---- C:\WINDOWS\system32\PreInstall 2009-06-25 02:49:15 ----D---- C:\Documents and Settings\Anthony\Application Data\Macromedia 2009-06-25 02:47:43 ----D---- C:\Program Files\ATI Technologies 2009-06-25 02:46:50 ----D---- C:\Documents and Settings\Anthony\Application Data\Malwarebytes 2009-06-25 02:45:48 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-06-25 02:45:27 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-06-25 02:43:46 ----A---- C:\WINDOWS\system32\BCMLogon.dll 2009-06-25 02:43:39 ----A---- C:\WINDOWS\system32\bcmwlpkt.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\WLTRYSVC.EXE 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\wltrynt.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\WLTRAY.EXE 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\bcm1xsup.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\ATL71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\WLBCGCBPRO731.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\preflib.dll 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MSVCR71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MSVCP71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MFC71.DLL 2009-06-25 02:43:14 ----A---- C:\WINDOWS\system32\bcmwlu00.exe 2009-06-25 02:43:14 ----A---- C:\WINDOWS\system32\BCMWLTRY.EXE 2009-06-25 02:42:36 ----D---- C:\Program Files\Broadcom 2009-06-25 02:41:42 ----A---- C:\WINDOWS\system32\SynTPFcs.dll 2009-06-25 02:41:41 ----D---- C:\Program Files\Synaptics 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynTPCo2.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynCOM.dll 2009-06-25 02:40:56 ----D---- C:\Program Files\AMD 2009-06-25 02:40:01 ----D---- C:\WINDOWS\system32\ReinstallBackups 2009-06-25 02:38:36 ----A---- C:\WINDOWS\system32\Uci32103.dll 2009-06-25 02:38:35 ----D---- C:\Program Files\CONEXANT 2009-06-25 02:38:35 ----A---- C:\WINDOWS\system32\mdmxsdk.dll 2009-06-25 02:38:14 ----A---- C:\WINDOWS\system32\stlang.dll 2009-06-25 02:38:14 ----A---- C:\WINDOWS\stsystra.exe 2009-06-25 02:38:12 ----A---- C:\WINDOWS\system32\ksuser.dll 2009-06-25 02:38:10 ----A---- C:\WINDOWS\system32\staco.dll 2009-06-25 02:37:56 ----D---- C:\Program Files\SigmaTel 2009-06-25 02:37:56 ----A---- C:\WINDOWS\system32\stacapi.dll 2009-06-25 02:36:59 ----D---- C:\Program Files\DIFX 2009-06-25 02:36:53 ----DC---- C:\WINDOWS\system32\DRVSTORE 2009-06-25 02:36:50 ----A---- C:\WINDOWS\system32\rixdicon.dll 2009-06-25 02:36:49 ----HD---- C:\Program Files\InstallShield Installation Information 2009-06-25 02:36:49 ----A---- C:\WINDOWS\system32\snymsico.dll 2009-06-25 02:34:09 ----D---- C:\WINDOWS\system32\vmm32 2009-06-25 02:34:07 ----D---- C:\Program Files\Dell 2009-06-25 02:33:38 ----D---- C:\Program Files\Common Files\InstallShield 2009-06-25 02:17:39 ----D---- C:\Documents and Settings\Anthony\Application Data\Identities 2009-06-25 02:17:35 ----HD---- C:\Program Files\Uninstall Information 2009-06-25 02:15:19 ----D---- C:\WINDOWS\RegisteredPackages 2009-06-25 02:11:51 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2009-06-25 02:09:38 ----D---- C:\WINDOWS\system32\URTTemp 2009-06-25 02:09:11 ----D---- C:\Program Files\RGB 2009-06-25 02:07:18 ----D---- C:\Program Files\GemMaster 2009-06-25 02:07:16 ----D---- C:\Program Files\EnglishOtto 2009-06-25 02:01:53 ----ASH---- C:\Documents and Settings\Anthony\Application Data\desktop.ini 2009-06-25 02:01:52 ----SD---- C:\Documents and Settings\Anthony\Application Data\Microsoft 2009-06-25 02:01:10 ----D---- C:\WINDOWS\SoftwareDistribution 2009-06-25 02:01:07 ----D---- C:\WINDOWS\Prefetch 2009-06-25 02:01:06 ----SD---- C:\WINDOWS\system32\Microsoft 2009-06-25 01:57:24 ----HD---- C:\$AVG8.VAULT$ 2009-06-25 01:46:13 ----D---- C:\WINDOWS\system32\xircom 2009-06-25 01:46:13 ----D---- C:\Program Files\xerox 2009-06-25 01:46:13 ----D---- C:\Program Files\microsoft frontpage 2009-06-25 01:45:02 ----D---- C:\DELL 2009-06-25 01:44:50 ----HD---- C:\WINDOWS\$hf_mig$ 2009-06-25 01:44:47 ----A---- C:\WINDOWS\system32\xpsp3res.dll 2009-06-25 01:44:29 ----A---- C:\WINDOWS\control.ini 2009-06-25 01:44:29 ----A---- C:\AUTOEXEC.BAT 2009-06-25 01:44:11 ----A---- C:\WINDOWS\system32\mapi32.dll 2009-06-25 01:42:45 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-06-25 01:42:45 ----RD---- C:\WINDOWS\Offline Web Pages 2009-06-25 01:42:45 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2009-06-25 01:42:37 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2009-06-25 01:42:30 ----HD---- C:\Program Files\WindowsUpdate 2009-06-25 01:42:01 ----D---- C:\WINDOWS\system32\DirectX 2009-06-25 01:41:31 ----A---- C:\WINDOWS\system32\atrace.dll 2009-06-25 01:41:27 ----A---- C:\WINDOWS\system32\desktop.ini 2009-06-25 01:41:27 ----A---- C:\WINDOWS\desktop.ini 2009-06-25 01:41:20 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2009-06-25 01:41:19 ----A---- C:\WINDOWS\system32\acctres.dll 2009-06-25 01:41:18 ----D---- C:\Program Files\Common Files\Services 2009-06-25 01:41:15 ----SD---- C:\WINDOWS\Tasks 2009-06-25 01:41:15 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2009-06-25 01:41:14 ----D---- C:\Program Files\Common Files\MSSoap 2009-06-25 01:41:06 ----D---- C:\WINDOWS\srchasst 2009-06-25 01:41:05 ----D---- C:\WINDOWS\system32\Macromed 2009-06-25 01:41:00 ----A---- C:\WINDOWS\system32\wuweb.dll 2009-06-25 01:41:00 ----A---- C:\WINDOWS\system32\wucltui.dll 2009-06-25 01:40:59 ----A---- C:\WINDOWS\system32\wuauserv.dll 2009-06-25 01:40:59 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wups.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuaueng.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuauclt.exe 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\wuapi.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\qmgr.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrslv.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrdm.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\racpldlg.dll 2009-06-25 01:40:33 ----A---- C:\WINDOWS\system32\fltMc.exe 2009-06-25 01:40:33 ----A---- C:\WINDOWS\system32\fltlib.dll 2009-06-25 01:40:32 ----D---- C:\WINDOWS\system32\Restore 2009-06-25 01:40:32 ----A---- C:\WINDOWS\system32\srrstr.dll 2009-06-25 01:40:31 ----A---- C:\WINDOWS\system32\srsvc.dll 2009-06-25 01:40:31 ----A---- C:\WINDOWS\system32\srclient.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\mnmdd.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\ils.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\msconf.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2009-06-25 01:40:24 ----D---- C:\Program Files\NetMeeting 2009-06-25 01:40:24 ----A---- C:\WINDOWS\system32\msoert2.dll 2009-06-25 01:40:24 ----A---- C:\WINDOWS\system32\msoeacct.dll 2009-06-25 01:40:22 ----A---- C:\WINDOWS\system32\inetres.dll 2009-06-25 01:40:21 ----A---- C:\WINDOWS\system32\inetcomm.dll 2009-06-25 01:40:16 ----D---- C:\Program Files\Outlook Express 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\schedsvc.dll 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\mstinit.exe 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\mstask.dll 2009-06-25 01:40:15 ----A---- C:\WINDOWS\system32\icwphbk.dll 2009-06-25 01:40:15 ----A---- C:\WINDOWS\system32\icwdial.dll 2009-06-25 01:40:14 ----A---- C:\WINDOWS\system32\isign32.dll 2009-06-25 01:40:14 ----A---- C:\WINDOWS\system32\inetcfg.dll 2009-06-25 01:40:01 ----D---- C:\Program Files\Common Files\System 2009-06-25 01:39:56 ----D---- C:\Program Files\Internet Explorer 2009-06-25 01:38:30 ----RSD---- C:\WINDOWS\assembly 2009-06-25 01:37:09 ----D---- C:\Program Files\ComPlus Applications 2009-06-25 01:37:07 ----A---- C:\WINDOWS\vbaddin.ini 2009-06-25 01:37:07 ----A---- C:\WINDOWS\vb.ini 2009-06-25 01:37:01 ----D---- C:\WINDOWS\Registration 2009-06-25 01:36:53 ----D---- C:\Program Files\Online Services 2009-06-25 01:36:23 ----D---- C:\WINDOWS\Microsoft.NET 2009-06-25 01:36:17 ----D---- C:\Program Files\Windows Media Player 2009-06-25 01:35:43 ----D---- C:\Program Files\Windows Plus 2009-06-25 01:35:25 ----A---- C:\WINDOWS\system32\mhn.dll 2009-06-25 01:35:25 ----A---- C:\WINDOWS\system32\igdetect.dll 2009-06-25 01:35:20 ----D---- C:\Program Files\Movie Maker 2009-06-25 01:33:25 ----D---- C:\Program Files\Messenger 2009-06-25 01:33:22 ----D---- C:\Program Files\MSN Gaming Zone 2009-06-25 01:33:22 ----A---- C:\WINDOWS\system32\write.exe 2009-06-25 01:33:11 ----A---- C:\WINDOWS\system32\sndvol32.exe 2009-06-25 01:33:11 ----A---- C:\WINDOWS\system32\hticons.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\winchat.exe 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avwav.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avtapi.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avmeter.dll 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\getuname.dll 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\charmap.exe 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\calc.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\winmine.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\sol.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\mshearts.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\freecell.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tslabels.ini 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tskill.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tscon.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\shadow.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\rwinsta.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\reset.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\regini.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\qwinsta.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\qappsrv.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\msg.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\logoff.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\cdmodem.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\stclient.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxex.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxdm.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comsnap.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comrepl.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comaddin.dll 2009-06-25 01:32:53 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2009-06-25 01:32:33 ----D---- C:\Program Files\MSN 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\sndrec32.exe 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\mplay32.exe 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\accwiz.exe 2009-06-25 01:32:31 ----D---- C:\Program Files\Windows NT 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\mspaint.exe 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\hypertrm.dll 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\clipbrd.exe 2009-06-25 01:32:30 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2009-06-25 01:32:30 ----A---- C:\WINDOWS\system32\spider.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\sessmgr.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\remotepg.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdshost.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdchost.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\mstscax.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\mstsc.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\termsrv.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpclip.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\qprocess.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\icaapi.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2009-06-25 01:32:27 ----D---- C:\WINDOWS\system32\MsDtc 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\xolehlp.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\mtxoci.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtctm.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2009-06-25 01:32:26 ----D---- C:\WINDOWS\system32\Com 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\msdtclog.dll 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\msdtc.exe 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\colbact.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\clbcatex.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrvut.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrvps.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrv.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\comuid.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\comsvcs.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\clbcatq.dll 2009-06-25 01:32:16 ----A---- C:\WINDOWS\system32\servdeps.dll 2009-06-25 01:32:16 ----A---- C:\WINDOWS\system32\mmfutil.dll 2009-06-25 01:32:15 ----A---- C:\WINDOWS\system32\licwmi.dll 2009-06-25 01:32:15 ----A---- C:\WINDOWS\system32\cmprops.dll 2009-06-25 01:25:00 ----D---- C:\Program Files\AVG 2009-06-25 01:25:00 ----D---- C:\Documents and Settings\All Users\Application Data\avg8 2009-06-25 01:13:03 ----A---- C:\WINDOWS\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt 2009-06-25 01:08:14 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP 2009-06-25 00:35:09 ----A---- C:\WINDOWS\system32\cssdll32.dll 2009-06-25 00:35:08 ----D---- C:\Program Files\AskSBar 2009-06-25 00:34:43 ----D---- C:\Documents and Settings\Anthony\Application Data\Comodo 2009-06-25 00:34:41 ----D---- C:\Program Files\COMODO 2009-06-25 00:33:06 ----D---- C:\Program Files\sys 2009-06-25 00:23:17 ----SHD---- C:\RECYCLER 2009-06-25 00:23:08 ----D---- C:\Program Files\7-Zip 2009-06-24 23:58:40 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2009-06-24 18:21:58 ----A---- C:\WINDOWS\system32\h323log.txt 2009-06-24 18:18:29 ----A---- C:\WINDOWS\system32\usbui.dll 2009-06-24 18:17:05 ----SHD---- C:\WINDOWS\Installer 2009-06-24 18:17:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-06-24 18:17:04 ----D---- C:\Program Files\Common Files\ODBC 2009-06-24 18:17:04 ----A---- C:\WINDOWS\ODBCINST.INI 2009-06-24 18:17:00 ----D---- C:\Program Files\Common Files\SpeechEngines 2009-06-24 18:16:59 ----RD---- C:\Program Files 2009-06-24 18:16:59 ----D---- C:\Program Files\Common Files\Microsoft Shared 2009-06-24 18:16:59 ----D---- C:\Program Files\Common Files 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdur.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdru.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdest.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdro.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\spxcoins.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\irclass.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\dgsetup.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2009-06-24 18:16:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2009-06-24 18:16:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2009-06-24 18:16:43 ----A---- C:\WINDOWS\TASKMAN.EXE 2009-06-24 18:16:43 ----A---- C:\WINDOWS\system32\batt.dll 2009-06-24 18:16:43 ----A---- C:\WINDOWS\NOTEPAD.EXE 2009-06-24 18:16:42 ----A---- C:\WINDOWS\system32\storprop.dll 2009-06-24 18:16:32 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2009-06-24 18:16:31 ----RA---- C:\WINDOWS\SET2E.tmp 2009-06-24 18:16:31 ----RA---- C:\WINDOWS\SET2D.tmp 2009-06-24 18:16:27 ----RA---- C:\WINDOWS\SET8.tmp 2009-06-24 18:16:23 ----RA---- C:\WINDOWS\SET4.tmp 2009-06-24 18:16:23 ----RA---- C:\WINDOWS\SET3.tmp 2009-06-24 18:16:17 ----D---- C:\WINDOWS\system32\CatRoot2 2009-06-24 18:16:17 ----D---- C:\WINDOWS\system32\CatRoot 2009-06-24 18:16:11 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-06-24 18:15:43 ----D---- C:\Documents and Settings 2009-06-24 18:14:59 ----RSH---- C:\boot.ini 2009-06-24 18:10:14 ----SHD---- C:\System Volume Information 2009-06-24 18:00:18 ----RSHDC---- C:\WINDOWS\system32\dllcache 2009-06-24 18:00:18 ----RD---- C:\WINDOWS\Web 2009-06-24 18:00:18 ----D---- C:\WINDOWS\WinSxS 2009-06-24 18:00:18 ----D---- C:\WINDOWS\twain_32 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Temp 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\wbem 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\usmt 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\ShellExt 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\Setup 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\oobe 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\npp 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\mui 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\inetsrv 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\IME 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\icsxml 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\ias 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\export 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\3com_dmi 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\3076 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\2052 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1054 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1042 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1041 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1037 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1033 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1031 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1028 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1025 2009-06-24 18:00:18 ----D---- C:\WINDOWS\security 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Resources 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Provisioning 2009-06-24 18:00:18 ----D---- C:\WINDOWS\PeerNet 2009-06-24 18:00:18 ----D---- C:\WINDOWS\mui 2009-06-24 18:00:18 ----D---- C:\WINDOWS\msapps 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Media 2009-06-24 18:00:18 ----D---- C:\WINDOWS\java 2009-06-24 18:00:18 ----D---- C:\WINDOWS\ime 2009-06-24 18:00:18 ----D---- C:\WINDOWS\ehome 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Driver Cache 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Debug 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Connection Wizard 2009-06-24 18:00:18 ----D---- C:\WINDOWS\AppPatch 2009-06-24 18:00:18 ----D---- C:\WINDOWS\addins 2009-06-24 18:00:17 ----RSD---- C:\WINDOWS\Fonts 2009-06-24 18:00:17 ----HD---- C:\WINDOWS\inf 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\wins 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\spool 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\ras 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\drivers 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\dhcp 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\config 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system 2009-06-24 18:00:17 ----D---- C:\WINDOWS\repair 2009-06-24 18:00:17 ----D---- C:\WINDOWS\pchealth 2009-06-24 18:00:17 ----D---- C:\WINDOWS\msagent 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Help 2009-06-24 18:00:17 ----D---- C:\WINDOWS\dell 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Cursors 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Config 2009-06-24 18:00:17 ----D---- C:\WINDOWS ======List of files/folders modified in the last 1 months====== 2009-06-27 13:05:32 ----A---- C:\WINDOWS\win.ini 2009-06-27 13:05:31 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-02-06 106208] R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-02-06 93336] R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-10 36096] R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [] R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-02-06 113448] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544] R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-10 60800] R3 BCM43XX

ell Wireless WLAN Card Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-11-02 424320] R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-08-17 44544] R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-03 14080] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2005-12-01 936960] R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2005-12-01 192512] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-12-13 1364574] R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-10 61824] R3 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2005-07-14 28544] R3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-07-12 51328] R3 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2005-07-14 307968] R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [] R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-10 67584] R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-07-27 1171464] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-08 191872] R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-10 26624] R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-10 57600] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-10 20480] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys [2005-12-01 669696] S1 OMCI;OMCI; \??\C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS [] S3 BVRPMPR5;BVRPMPR5 NDIS Protocol Driver; \??\D:\INSTAL~E\Core\BVRPMPR5.SYS [] S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008] S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS [] S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712] R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888] R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2005-10-11 237568] R2 ehSched;Media Center Scheduler Service; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-02-06 727720] R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328] R2 Viewpoint Manager Service;Viewpoint Manager Service; C:\Program Files\Viewpoint\Common\ViewpointService.exe [2007-01-04 24652] R2 wltrysvc

ell Wireless WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2005-12-19 18944] R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-06-05 541992] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspn et_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe [2005-09-23 66240] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-02-06 20680] S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336] S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-08-03 38912] -----------------EOF-----------------

06-28-2009	#1
seawright217 Bronze Member Join Date: May 2009 Posts: 71 PC Experience: PC Illiterate	Help - Dont know where to post this thread - Ok so the other day i formatted my computer. Now after 2 or 3 days my computer is running really slow and I hit cntrl alt delete and notice my cpu usage is at 100% most of the time.... Still not really sure why this is... Scanned my computer with malwarebytes and superantispyware and superantispyware found adware.tracking tool which was then removed. Scanned my computer with Eset nod 32 and it found nothing. I dont have many applications installed on this computer because like i already said i formatted recently. This is really frustrating and annoying when all i want to do is browseeeee =/ .. So anyone know what could be the problem ?

06-28-2009	#2
chiaz Senior Security Analyst Join Date: Jun 2006 Location: Singapore Posts: 5,177 PC Experience: PC Guru	Re: Help - Dont know where to post this threa Hello. Download and Run RSIT Please download Random's System Information Tool by random/random from here and save it to your desktop. Double click on RSIT.exe to run RSIT. Click Continue at the disclaimer screen. Once it has finished, two logs will open: log.txt will be opened maximized. info.txt will be opened minimized. Please post the contents of both log.txt and info.txt.

06-28-2009	#3
seawright217 Bronze Member Join Date: May 2009 Posts: 71 PC Experience: PC Illiterate	Re: Help - Dont know where to post this threa Logfile of random's system information tool 1.06 (written by random/random) Run by Anthony at 2009-06-27 21:46:13 Microsoft Windows XP Professional Service Pack 2 System drive C: has 61 GB (80%) free of 76 GB Total RAM: 1014 MB (58% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:49:52 PM, on 6/27/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\stsystra.exe C:\WINDOWS\system32\WLTRAY.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\eHome\ehmsas.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Anthony\Desktop\RSIT.exe C:\Program Files\trend micro\Anthony.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = .local O1 - Hosts: ::1 localhost O1 - Hosts: 209.44.111.62 antivir-systempro.com O1 - Hosts: 209.44.111.62 Antivirus System PRO Powerfull PC Protection O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab O20 - AppInit_DLLs: O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE -- End of file - 4344 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}] Ask Toolbar BHO - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2009-06-25 262144] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - Ask Toolbar - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL [2009-06-25 262144] {CCC7A320-B3CA-4199-B1A6-9F516DD69829} [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run] "ehTray"=C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512] "SigmatelSysTrayApp"=C:\WINDOWS\stsystra.exe [2006-07-27 282624] "Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2005-12-19 1347584] "igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2005-12-13 98304] "igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2005-12-13 77824] "igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2005-12-13 118784] "iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-06-05 292136] "QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696] "egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-02-06 2021400] [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Run] "SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-06-23 1830128] "BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-06-26 321344] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6] C:\Program Files\AIM6\aim6.exe [2009-05-19 49968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-02-06 3885408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-03-08 761947] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] C:\Program Files\Winamp\winampa.exe [2009-04-10 37888] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLS"=" " [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon] C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-12-22 356352] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2005-12-13 139264] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\System] "EnableProfileQuota"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\R oyale\Royale.msstyles "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale. theme [HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer] "HonorAutoRunSetting"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe::enabled:@xpsp2res.dll,-22019" "C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe::Enabled:mIRC" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe::Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger" "C:\Program Files\Common Files\AOL\Loader\aolload.exe"="C:\Program Files\Common Files\AOL\Loader\aolload.exe::Enabled:AOL Loader" "C:\Program Files\AIM6\aim6.exe"="C:\Program Files\AIM6\aim6.exe::Enabled:AIM" "C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe::Enabled:BitTorre nt" "C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe::EnabledNA" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe::Enabled:Bonjour" "C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe::Enabled:iTunes" [HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe::enabled:@xpsp2res.dll,-22019" "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe::Enabled:Windows Live Call" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe::Enabled:Windows Live Messenger" [HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{7a596c6a-614c-11de-b361-0015c520cef4}] shell\AutoRun\command - setupSNK.exe ======List of files/folders created in the last 1 months====== 2009-06-27 21:46:22 ----D---- C:\Program Files\trend micro 2009-06-27 21:46:13 ----D---- C:\rsit 2009-06-27 20:31:55 ----D---- C:\WINDOWS\LastGood 2009-06-27 20:15:36 ----D---- C:\Program Files\ESET 2009-06-27 20:15:36 ----D---- C:\Documents and Settings\All Users\Application Data\ESET 2009-06-27 17:34:36 ----A---- C:\WINDOWS\ntbtlog.txt 2009-06-27 16:39:25 ----A---- C:\WINDOWS\SchedLgU.Txt 2009-06-27 15:45:04 ----SHD---- C:\WINDOWS\CSC 2009-06-26 22:06:33 ----D---- C:\Program Files\QuickTime 2009-06-26 21:59:36 ----D---- C:\WINDOWS\system32\appmgmt 2009-06-26 21:42:11 ----D---- C:\Documents and Settings\Anthony\Application Data\Apple Computer 2009-06-26 21:41:53 ----A---- C:\WINDOWS\system32\GEARAspi.dll 2009-06-26 21:41:28 ----D---- C:\Program Files\iPod 2009-06-26 21:41:24 ----D---- C:\Program Files\iTunes 2009-06-26 21:41:24 ----D---- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2009-06-26 21:40:53 ----D---- C:\Program Files\Bonjour 2009-06-26 21:40:12 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer 2009-06-26 21:39:43 ----D---- C:\Program Files\Apple Software Update 2009-06-26 21:38:59 ----D---- C:\Program Files\Common Files\Apple 2009-06-26 21:38:58 ----D---- C:\Documents and Settings\All Users\Application Data\Apple 2009-06-26 19:44:03 ----D---- C:\Documents and Settings\Anthony\Application Data\vlc 2009-06-26 17:51:14 ----D---- C:\Documents and Settings\Anthony\Application Data\BitTorrent 2009-06-26 17:50:19 ----D---- C:\Program Files\DNA 2009-06-26 17:50:19 ----D---- C:\Documents and Settings\Anthony\Application Data\DNA 2009-06-26 17:50:18 ----D---- C:\Program Files\BitTorrent 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\muweb.dll 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\mucltui.dll.mui 2009-06-26 17:02:46 ----A---- C:\WINDOWS\system32\mucltui.dll 2009-06-25 23:52:05 ----D---- C:\Documents and Settings\Anthony\Application Data\acccore 2009-06-25 23:51:35 ----D---- C:\Documents and Settings\All Users\Application Data\Viewpoint 2009-06-25 23:51:33 ----D---- C:\Program Files\Viewpoint 2009-06-25 23:51:32 ----D---- C:\Documents and Settings\All Users\Application Data\acccore 2009-06-25 23:51:15 ----D---- C:\Documents and Settings\All Users\Application Data\AOL OCP 2009-06-25 23:51:14 ----D---- C:\Documents and Settings\All Users\Application Data\AOL 2009-06-25 23:50:53 ----D---- C:\Program Files\Common Files\AOL 2009-06-25 23:50:28 ----D---- C:\Program Files\AIM6 2009-06-25 23:41:02 ----D---- C:\Program Files\Microsoft 2009-06-25 23:39:52 ----D---- C:\Program Files\Windows Live SkyDrive 2009-06-25 23:39:25 ----D---- C:\Program Files\Windows Live 2009-06-25 23:36:33 ----D---- C:\Program Files\Common Files\Windows Live 2009-06-25 23:22:51 ----D---- C:\Documents and Settings\Anthony\Application Data\NoNameScript 2009-06-25 23:22:31 ----D---- C:\Documents and Settings\Anthony\Application Data\mIRC 2009-06-25 23:22:24 ----D---- C:\Program Files\mIRC 2009-06-25 22:15:29 ----D---- C:\Program Files\Alwil Software 2009-06-25 21:54:59 ----D---- C:\Program Files\VideoLAN 2009-06-25 21:40:10 ----D---- C:\Program Files\CCleaner 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxsfs.dll 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxinsa64.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxhpinst.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxcpya64.exe 2009-06-25 21:31:10 ----N---- C:\WINDOWS\system32\pxafs.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\vxblock.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxwave.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxmas.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\pxdrv.dll 2009-06-25 21:31:09 ----N---- C:\WINDOWS\system32\px.dll 2009-06-25 21:30:55 ----D---- C:\Program Files\Winamp 2009-06-25 21:30:55 ----D---- C:\Documents and Settings\Anthony\Application Data\Winamp 2009-06-25 21:28:06 ----D---- C:\Documents and Settings\Anthony\Application Data\WinRAR 2009-06-25 21:24:09 ----A---- C:\WINDOWS\system32\igfxres.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\iglicd32.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igldev32.dll 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxzoom.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxtray.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxsrvc.exe 2009-06-25 21:19:29 ----A---- C:\WINDOWS\system32\igfxsrvc.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxress.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxpph.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxpers.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxext.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxexps.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxdo.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxdev.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\igfxcfg.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmrnt5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmrem.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdnt5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdev5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\ialmdd5.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\iAlmCoIn_v4446.dll 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\hkcmd.exe 2009-06-25 21:19:28 ----A---- C:\WINDOWS\system32\hccutils.dll 2009-06-25 21:16:35 ----D---- C:\Documents and Settings\Anthony\Application Data\Adobe 2009-06-25 21:13:53 ----D---- C:\Program Files\WinRAR 2009-06-25 18:37:20 ----D---- C:\WINDOWS\pss 2009-06-25 13:07:19 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com 2009-06-25 13:05:53 ----D---- C:\Program Files\SUPERAntiSpyware 2009-06-25 13:05:53 ----D---- C:\Documents and Settings\Anthony\Application Data\SUPERAntiSpyware.com 2009-06-25 13:04:28 ----D---- C:\Program Files\Common Files\Wise Installation Wizard 2009-06-25 04:12:31 ----D---- C:\Documents and Settings\Anthony\Application Data\Mozilla 2009-06-25 04:10:46 ----D---- C:\Program Files\Mozilla Firefox 2009-06-25 04:02:38 ----A---- C:\WINDOWS\system32\KDSInterface.txt 2009-06-25 03:20:54 ----D---- C:\WINDOWS\system32\CatRoot_bak 2009-06-25 03:09:31 ----N---- C:\WINDOWS\kb913800.exe 2009-06-25 03:00:22 ----N---- C:\WINDOWS\system32\spmsg.dll 2009-06-25 03:00:22 ----D---- C:\WINDOWS\system32\PreInstall 2009-06-25 02:49:15 ----D---- C:\Documents and Settings\Anthony\Application Data\Macromedia 2009-06-25 02:47:43 ----D---- C:\Program Files\ATI Technologies 2009-06-25 02:46:50 ----D---- C:\Documents and Settings\Anthony\Application Data\Malwarebytes 2009-06-25 02:45:48 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2009-06-25 02:45:27 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2009-06-25 02:43:46 ----A---- C:\WINDOWS\system32\BCMLogon.dll 2009-06-25 02:43:39 ----A---- C:\WINDOWS\system32\bcmwlpkt.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\WLTRYSVC.EXE 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\wltrynt.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\WLTRAY.EXE 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\bcm1xsup.dll 2009-06-25 02:43:18 ----A---- C:\WINDOWS\system32\ATL71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\WLBCGCBPRO731.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\preflib.dll 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MSVCR71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MSVCP71.DLL 2009-06-25 02:43:17 ----A---- C:\WINDOWS\system32\MFC71.DLL 2009-06-25 02:43:14 ----A---- C:\WINDOWS\system32\bcmwlu00.exe 2009-06-25 02:43:14 ----A---- C:\WINDOWS\system32\BCMWLTRY.EXE 2009-06-25 02:42:36 ----D---- C:\Program Files\Broadcom 2009-06-25 02:41:42 ----A---- C:\WINDOWS\system32\SynTPFcs.dll 2009-06-25 02:41:41 ----D---- C:\Program Files\Synaptics 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynTPCo2.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynTPAPI.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynCtrl.dll 2009-06-25 02:41:41 ----A---- C:\WINDOWS\system32\SynCOM.dll 2009-06-25 02:40:56 ----D---- C:\Program Files\AMD 2009-06-25 02:40:01 ----D---- C:\WINDOWS\system32\ReinstallBackups 2009-06-25 02:38:36 ----A---- C:\WINDOWS\system32\Uci32103.dll 2009-06-25 02:38:35 ----D---- C:\Program Files\CONEXANT 2009-06-25 02:38:35 ----A---- C:\WINDOWS\system32\mdmxsdk.dll 2009-06-25 02:38:14 ----A---- C:\WINDOWS\system32\stlang.dll 2009-06-25 02:38:14 ----A---- C:\WINDOWS\stsystra.exe 2009-06-25 02:38:12 ----A---- C:\WINDOWS\system32\ksuser.dll 2009-06-25 02:38:10 ----A---- C:\WINDOWS\system32\staco.dll 2009-06-25 02:37:56 ----D---- C:\Program Files\SigmaTel 2009-06-25 02:37:56 ----A---- C:\WINDOWS\system32\stacapi.dll 2009-06-25 02:36:59 ----D---- C:\Program Files\DIFX 2009-06-25 02:36:53 ----DC---- C:\WINDOWS\system32\DRVSTORE 2009-06-25 02:36:50 ----A---- C:\WINDOWS\system32\rixdicon.dll 2009-06-25 02:36:49 ----HD---- C:\Program Files\InstallShield Installation Information 2009-06-25 02:36:49 ----A---- C:\WINDOWS\system32\snymsico.dll 2009-06-25 02:34:09 ----D---- C:\WINDOWS\system32\vmm32 2009-06-25 02:34:07 ----D---- C:\Program Files\Dell 2009-06-25 02:33:38 ----D---- C:\Program Files\Common Files\InstallShield 2009-06-25 02:17:39 ----D---- C:\Documents and Settings\Anthony\Application Data\Identities 2009-06-25 02:17:35 ----HD---- C:\Program Files\Uninstall Information 2009-06-25 02:15:19 ----D---- C:\WINDOWS\RegisteredPackages 2009-06-25 02:11:51 ----A---- C:\WINDOWS\system32\spupdsvc.exe 2009-06-25 02:09:38 ----D---- C:\WINDOWS\system32\URTTemp 2009-06-25 02:09:11 ----D---- C:\Program Files\RGB 2009-06-25 02:07:18 ----D---- C:\Program Files\GemMaster 2009-06-25 02:07:16 ----D---- C:\Program Files\EnglishOtto 2009-06-25 02:01:53 ----ASH---- C:\Documents and Settings\Anthony\Application Data\desktop.ini 2009-06-25 02:01:52 ----SD---- C:\Documents and Settings\Anthony\Application Data\Microsoft 2009-06-25 02:01:10 ----D---- C:\WINDOWS\SoftwareDistribution 2009-06-25 02:01:07 ----D---- C:\WINDOWS\Prefetch 2009-06-25 02:01:06 ----SD---- C:\WINDOWS\system32\Microsoft 2009-06-25 01:57:24 ----HD---- C:\$AVG8.VAULT$ 2009-06-25 01:46:13 ----D---- C:\WINDOWS\system32\xircom 2009-06-25 01:46:13 ----D---- C:\Program Files\xerox 2009-06-25 01:46:13 ----D---- C:\Program Files\microsoft frontpage 2009-06-25 01:45:02 ----D---- C:\DELL 2009-06-25 01:44:50 ----HD---- C:\WINDOWS\$hf_mig$ 2009-06-25 01:44:47 ----A---- C:\WINDOWS\system32\xpsp3res.dll 2009-06-25 01:44:29 ----A---- C:\WINDOWS\control.ini 2009-06-25 01:44:29 ----A---- C:\AUTOEXEC.BAT 2009-06-25 01:44:11 ----A---- C:\WINDOWS\system32\mapi32.dll 2009-06-25 01:42:45 ----SD---- C:\WINDOWS\Downloaded Program Files 2009-06-25 01:42:45 ----RD---- C:\WINDOWS\Offline Web Pages 2009-06-25 01:42:45 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2009-06-25 01:42:37 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2009-06-25 01:42:30 ----HD---- C:\Program Files\WindowsUpdate 2009-06-25 01:42:01 ----D---- C:\WINDOWS\system32\DirectX 2009-06-25 01:41:31 ----A---- C:\WINDOWS\system32\atrace.dll 2009-06-25 01:41:27 ----A---- C:\WINDOWS\system32\desktop.ini 2009-06-25 01:41:27 ----A---- C:\WINDOWS\desktop.ini 2009-06-25 01:41:20 ----A---- C:\WINDOWS\system32\nmevtmsg.dll 2009-06-25 01:41:19 ----A---- C:\WINDOWS\system32\acctres.dll 2009-06-25 01:41:18 ----D---- C:\Program Files\Common Files\Services 2009-06-25 01:41:15 ----SD---- C:\WINDOWS\Tasks 2009-06-25 01:41:15 ----A---- C:\WINDOWS\system32\icfgnt5.dll 2009-06-25 01:41:14 ----D---- C:\Program Files\Common Files\MSSoap 2009-06-25 01:41:06 ----D---- C:\WINDOWS\srchasst 2009-06-25 01:41:05 ----D---- C:\WINDOWS\system32\Macromed 2009-06-25 01:41:00 ----A---- C:\WINDOWS\system32\wuweb.dll 2009-06-25 01:41:00 ----A---- C:\WINDOWS\system32\wucltui.dll 2009-06-25 01:40:59 ----A---- C:\WINDOWS\system32\wuauserv.dll 2009-06-25 01:40:59 ----A---- C:\WINDOWS\system32\wuaueng1.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wups.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuaueng.dll 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuauclt1.exe 2009-06-25 01:40:58 ----A---- C:\WINDOWS\system32\wuauclt.exe 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\wuapi.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\qmgr.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2009-06-25 01:40:57 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrslv.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrdm.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2009-06-25 01:40:43 ----A---- C:\WINDOWS\system32\racpldlg.dll 2009-06-25 01:40:33 ----A---- C:\WINDOWS\system32\fltMc.exe 2009-06-25 01:40:33 ----A---- C:\WINDOWS\system32\fltlib.dll 2009-06-25 01:40:32 ----D---- C:\WINDOWS\system32\Restore 2009-06-25 01:40:32 ----A---- C:\WINDOWS\system32\srrstr.dll 2009-06-25 01:40:31 ----A---- C:\WINDOWS\system32\srsvc.dll 2009-06-25 01:40:31 ----A---- C:\WINDOWS\system32\srclient.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\mnmdd.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2009-06-25 01:40:30 ----A---- C:\WINDOWS\system32\ils.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\msconf.dll 2009-06-25 01:40:29 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2009-06-25 01:40:24 ----D---- C:\Program Files\NetMeeting 2009-06-25 01:40:24 ----A---- C:\WINDOWS\system32\msoert2.dll 2009-06-25 01:40:24 ----A---- C:\WINDOWS\system32\msoeacct.dll 2009-06-25 01:40:22 ----A---- C:\WINDOWS\system32\inetres.dll 2009-06-25 01:40:21 ----A---- C:\WINDOWS\system32\inetcomm.dll 2009-06-25 01:40:16 ----D---- C:\Program Files\Outlook Express 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\schedsvc.dll 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\mstinit.exe 2009-06-25 01:40:16 ----A---- C:\WINDOWS\system32\mstask.dll 2009-06-25 01:40:15 ----A---- C:\WINDOWS\system32\icwphbk.dll 2009-06-25 01:40:15 ----A---- C:\WINDOWS\system32\icwdial.dll 2009-06-25 01:40:14 ----A---- C:\WINDOWS\system32\isign32.dll 2009-06-25 01:40:14 ----A---- C:\WINDOWS\system32\inetcfg.dll 2009-06-25 01:40:01 ----D---- C:\Program Files\Common Files\System 2009-06-25 01:39:56 ----D---- C:\Program Files\Internet Explorer 2009-06-25 01:38:30 ----RSD---- C:\WINDOWS\assembly 2009-06-25 01:37:09 ----D---- C:\Program Files\ComPlus Applications 2009-06-25 01:37:07 ----A---- C:\WINDOWS\vbaddin.ini 2009-06-25 01:37:07 ----A---- C:\WINDOWS\vb.ini 2009-06-25 01:37:01 ----D---- C:\WINDOWS\Registration 2009-06-25 01:36:53 ----D---- C:\Program Files\Online Services 2009-06-25 01:36:23 ----D---- C:\WINDOWS\Microsoft.NET 2009-06-25 01:36:17 ----D---- C:\Program Files\Windows Media Player 2009-06-25 01:35:43 ----D---- C:\Program Files\Windows Plus 2009-06-25 01:35:25 ----A---- C:\WINDOWS\system32\mhn.dll 2009-06-25 01:35:25 ----A---- C:\WINDOWS\system32\igdetect.dll 2009-06-25 01:35:20 ----D---- C:\Program Files\Movie Maker 2009-06-25 01:33:25 ----D---- C:\Program Files\Messenger 2009-06-25 01:33:22 ----D---- C:\Program Files\MSN Gaming Zone 2009-06-25 01:33:22 ----A---- C:\WINDOWS\system32\write.exe 2009-06-25 01:33:11 ----A---- C:\WINDOWS\system32\sndvol32.exe 2009-06-25 01:33:11 ----A---- C:\WINDOWS\system32\hticons.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\winchat.exe 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avwav.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avtapi.dll 2009-06-25 01:33:10 ----A---- C:\WINDOWS\system32\avmeter.dll 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\getuname.dll 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\charmap.exe 2009-06-25 01:33:03 ----A---- C:\WINDOWS\system32\calc.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\winmine.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\sol.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\mshearts.exe 2009-06-25 01:33:02 ----A---- C:\WINDOWS\system32\freecell.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\usrlogon.cmd 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tsshutdn.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tslabels.ini 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tskill.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tsdiscon.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\tscon.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\shadow.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\rwinsta.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\reset.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\regini.exe 2009-06-25 01:33:01 ----A---- C:\WINDOWS\system32\rdpcfgex.dll 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\qwinsta.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\qappsrv.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\msg.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\msdtcprf.ini 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\logoff.exe 2009-06-25 01:33:00 ----A---- C:\WINDOWS\system32\cdmodem.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\stclient.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxex.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\mtxdm.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comsnap.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comrepl.dll 2009-06-25 01:32:59 ----A---- C:\WINDOWS\system32\comaddin.dll 2009-06-25 01:32:53 ----A---- C:\WINDOWS\system32\wmimgmt.msc 2009-06-25 01:32:33 ----D---- C:\Program Files\MSN 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\sndrec32.exe 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\mplay32.exe 2009-06-25 01:32:32 ----A---- C:\WINDOWS\system32\accwiz.exe 2009-06-25 01:32:31 ----D---- C:\Program Files\Windows NT 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\mspaint.exe 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\hypertrm.dll 2009-06-25 01:32:31 ----A---- C:\WINDOWS\system32\clipbrd.exe 2009-06-25 01:32:30 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2009-06-25 01:32:30 ----A---- C:\WINDOWS\system32\spider.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\sessmgr.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\remotepg.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdshost.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\rdchost.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\mstscax.dll 2009-06-25 01:32:29 ----A---- C:\WINDOWS\system32\mstsc.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\termsrv.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\rdpclip.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\qprocess.exe 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\icaapi.dll 2009-06-25 01:32:28 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2009-06-25 01:32:27 ----D---- C:\WINDOWS\system32\MsDtc 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\xolehlp.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\mtxoci.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtctm.dll 2009-06-25 01:32:27 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2009-06-25 01:32:26 ----D---- C:\WINDOWS\system32\Com 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\msdtclog.dll 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\msdtc.exe 2009-06-25 01:32:26 ----A---- C:\WINDOWS\system32\colbact.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\clbcatex.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrvut.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrvps.dll 2009-06-25 01:32:25 ----A---- C:\WINDOWS\system32\catsrv.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\comuid.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\comsvcs.dll 2009-06-25 01:32:24 ----A---- C:\WINDOWS\system32\clbcatq.dll 2009-06-25 01:32:16 ----A---- C:\WINDOWS\system32\servdeps.dll 2009-06-25 01:32:16 ----A---- C:\WINDOWS\system32\mmfutil.dll 2009-06-25 01:32:15 ----A---- C:\WINDOWS\system32\licwmi.dll 2009-06-25 01:32:15 ----A---- C:\WINDOWS\system32\cmprops.dll 2009-06-25 01:25:00 ----D---- C:\Program Files\AVG 2009-06-25 01:25:00 ----D---- C:\Documents and Settings\All Users\Application Data\avg8 2009-06-25 01:13:03 ----A---- C:\WINDOWS\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt 2009-06-25 01:08:14 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP 2009-06-25 00:35:09 ----A---- C:\WINDOWS\system32\cssdll32.dll 2009-06-25 00:35:08 ----D---- C:\Program Files\AskSBar 2009-06-25 00:34:43 ----D---- C:\Documents and Settings\Anthony\Application Data\Comodo 2009-06-25 00:34:41 ----D---- C:\Program Files\COMODO 2009-06-25 00:33:06 ----D---- C:\Program Files\sys 2009-06-25 00:23:17 ----SHD---- C:\RECYCLER 2009-06-25 00:23:08 ----D---- C:\Program Files\7-Zip 2009-06-24 23:58:40 ----D---- C:\WINDOWS\system32\SoftwareDistribution 2009-06-24 18:21:58 ----A---- C:\WINDOWS\system32\h323log.txt 2009-06-24 18:18:29 ----A---- C:\WINDOWS\system32\usbui.dll 2009-06-24 18:17:05 ----SHD---- C:\WINDOWS\Installer 2009-06-24 18:17:05 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2009-06-24 18:17:04 ----D---- C:\Program Files\Common Files\ODBC 2009-06-24 18:17:04 ----A---- C:\WINDOWS\ODBCINST.INI 2009-06-24 18:17:00 ----D---- C:\Program Files\Common Files\SpeechEngines 2009-06-24 18:16:59 ----RD---- C:\Program Files 2009-06-24 18:16:59 ----D---- C:\Program Files\Common Files\Microsoft Shared 2009-06-24 18:16:59 ----D---- C:\Program Files\Common Files 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdtuq.dll 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdtuf.dll 2009-06-24 18:16:56 ----RA---- C:\WINDOWS\system32\kbdazel.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbduzb.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdur.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdtat.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdru.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdmon.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdkyr.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdkaz.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll 2009-06-24 18:16:54 ----RA---- C:\WINDOWS\system32\kbdaze.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll 2009-06-24 18:16:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlv1.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlv.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlt1.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdlt.dll 2009-06-24 18:16:51 ----RA---- C:\WINDOWS\system32\kbdest.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdycl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdsl1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdsl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdro.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdpl1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdpl.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdhu1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdhu.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz2.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz1.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcz.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\kbdcr.dll 2009-06-24 18:16:49 ----RA---- C:\WINDOWS\system32\KBDAL.DLL 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\spxcoins.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\irclass.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\dgsetup.dll 2009-06-24 18:16:46 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2009-06-24 18:16:45 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2009-06-24 18:16:43 ----N---- C:\WINDOWS\system32\CONFIG.TMP 2009-06-24 18:16:43 ----A---- C:\WINDOWS\TASKMAN.EXE 2009-06-24 18:16:43 ----A---- C:\WINDOWS\system32\batt.dll 2009-06-24 18:16:43 ----A---- C:\WINDOWS\NOTEPAD.EXE 2009-06-24 18:16:42 ----A---- C:\WINDOWS\system32\storprop.dll 2009-06-24 18:16:32 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini 2009-06-24 18:16:31 ----RA---- C:\WINDOWS\SET2E.tmp 2009-06-24 18:16:31 ----RA---- C:\WINDOWS\SET2D.tmp 2009-06-24 18:16:27 ----RA---- C:\WINDOWS\SET8.tmp 2009-06-24 18:16:23 ----RA---- C:\WINDOWS\SET4.tmp 2009-06-24 18:16:23 ----RA---- C:\WINDOWS\SET3.tmp 2009-06-24 18:16:17 ----D---- C:\WINDOWS\system32\CatRoot2 2009-06-24 18:16:17 ----D---- C:\WINDOWS\system32\CatRoot 2009-06-24 18:16:11 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft 2009-06-24 18:15:43 ----D---- C:\Documents and Settings 2009-06-24 18:14:59 ----RSH---- C:\boot.ini 2009-06-24 18:10:14 ----SHD---- C:\System Volume Information 2009-06-24 18:00:18 ----RSHDC---- C:\WINDOWS\system32\dllcache 2009-06-24 18:00:18 ----RD---- C:\WINDOWS\Web 2009-06-24 18:00:18 ----D---- C:\WINDOWS\WinSxS 2009-06-24 18:00:18 ----D---- C:\WINDOWS\twain_32 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Temp 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\wbem 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\usmt 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\ShellExt 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\Setup 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\oobe 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\npp 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\mui 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\inetsrv 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\IME 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\icsxml 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\ias 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\export 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\3com_dmi 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\3076 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\2052 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1054 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1042 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1041 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1037 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1033 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1031 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1028 2009-06-24 18:00:18 ----D---- C:\WINDOWS\system32\1025 2009-06-24 18:00:18 ----D---- C:\WINDOWS\security 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Resources 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Provisioning 2009-06-24 18:00:18 ----D---- C:\WINDOWS\PeerNet 2009-06-24 18:00:18 ----D---- C:\WINDOWS\mui 2009-06-24 18:00:18 ----D---- C:\WINDOWS\msapps 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Media 2009-06-24 18:00:18 ----D---- C:\WINDOWS\java 2009-06-24 18:00:18 ----D---- C:\WINDOWS\ime 2009-06-24 18:00:18 ----D---- C:\WINDOWS\ehome 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Driver Cache 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Debug 2009-06-24 18:00:18 ----D---- C:\WINDOWS\Connection Wizard 2009-06-24 18:00:18 ----D---- C:\WINDOWS\AppPatch 2009-06-24 18:00:18 ----D---- C:\WINDOWS\addins 2009-06-24 18:00:17 ----RSD---- C:\WINDOWS\Fonts 2009-06-24 18:00:17 ----HD---- C:\WINDOWS\inf 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\wins 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\spool 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\ras 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\drivers 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\dhcp 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32\config 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system32 2009-06-24 18:00:17 ----D---- C:\WINDOWS\system 2009-06-24 18:00:17 ----D---- C:\WINDOWS\repair 2009-06-24 18:00:17 ----D---- C:\WINDOWS\pchealth 2009-06-24 18:00:17 ----D---- C:\WINDOWS\msagent 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Help 2009-06-24 18:00:17 ----D---- C:\WINDOWS\dell 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Cursors 2009-06-24 18:00:17 ----D---- C:\WINDOWS\Config 2009-06-24 18:00:17 ----D---- C:\WINDOWS ======List of files/folders modified in the last 1 months====== 2009-06-27 13:05:32 ----A---- C:\WINDOWS\win.ini 2009-06-27 13:05:31 ----A---- C:\WINDOWS\system.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-02-06 106208] R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-02-06 93336] R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-10 36096] R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [] R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-02-06 113448] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544] R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-10 60800] R3 BCM43XXell Wireless WLAN Card Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-11-02 424320] R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-08-17 44544] R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-03 14080] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2004-08-12 137728] R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys [2005-12-01 936960] R3 HSXHWAZL;HSXHWAZL; C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys [2005-12-01 192512] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2005-12-13 1364574] R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-10 61824] R3 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2005-07-14 28544] R3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-07-12 51328] R3 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2005-07-14 307968] R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [] R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-10 67584] R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2006-07-27 1171464] R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-03-08 191872] R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-10 26624] R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-10 57600] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-10 20480] R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys [2005-12-01 669696] S1 OMCI;OMCI; \??\C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS [] S3 BVRPMPR5;BVRPMPR5 NDIS Protocol Driver; \??\D:\INSTAL~E\Core\BVRPMPR5.SYS [] S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008] S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS [] S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712] R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888] R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2005-10-11 237568] R2 ehSched;Media Center Scheduler Service; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-02-06 727720] R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328] R2 Viewpoint Manager Service;Viewpoint Manager Service; C:\Program Files\Viewpoint\Common\ViewpointService.exe [2007-01-04 24652] R2 wltrysvcell Wireless WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2005-12-19 18944] R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-06-05 541992] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspn et_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe [2005-09-23 66240] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-02-06 20680] S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2004-08-10 14336] S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-08-03 38912] -----------------EOF-----------------

06-28-2009	#4
seawright217 Bronze Member Join Date: May 2009 Posts: 71 PC Experience: PC Illiterate	Re: Help - Dont know where to post this threa info.txt logfile of random's system information tool 1.06 2009-06-27 21:51:37 ======Uninstall list====== -->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\070 1\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B7875FD9-6ADB-4D4B-A756-3A2306A3D5E1}\setup.exe" -l0x9 anything -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe" AIM 6-->C:\Program Files\AIM6\uninst.exe AMD Processor Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x9 Apple Mobile Device Support-->MsiExec.exe /I{8355F970-601D-442D-A79B-1D7DB4F24CAD} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Ask Toolbar-->rundll32 C:\PROGRA~1\AskSBar\bar\1.bin\AskSBar.dll,O ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B} Broadcom 440x 10/100 Integrated Controller-->MsiExec.exe /X{9C9D0F85-5658-4A5E-95A9-65F7DB2916EE} CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe" Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E} Conexant HDA D110 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BF A&SUBSYS_14F100C3\HXFSETUP.EXE -U -Idel1028p.inf Dell Resource CD-->MsiExec.exe /X{FCD9CD52-7222-4672-94A0-A722BA702FD0} Dell Wireless WLAN Card-->"C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card" GemMaster Mystic-->"C:\Program Files\GemMaster\uninstallgemmaster.exe" HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall Intel(R) Graphics Media Accelerator Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2I D PCI\VEN_8086&DEV_27A6 PCI\VEN_8086&DEV_27A2 iTunes-->MsiExec.exe /I{5D601655-6D54-4384-B52C-17EC5385FBBD} Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe" Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Upd ates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Upda tes\M928366\M928366Uninstall.msp" Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Mic rosoft .NET Framework 2.0\install.exe Microsoft VC9 runtime libraries-->MsiExec.exe /I{C4124E95-5061-4776-8D5D-E3D931C778E1} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} mIRC-->C:\Program Files\mIRC\uninstall.exe _?=C:\Program Files\mIRC Mozilla Firefox (3.0.11)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94} Otto-->"C:\Program Files\EnglishOtto\uninstallotto.exe" QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68} Security Update for Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x9 -remove -removeonly Sonic Encoders-->MsiExec.exe /I{9941F0AA-B903-4AF4-A055-83A9815CC011} SUPERAntiSpyware Professional-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUnin stall Viewpoint Media Player-->C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u VLC media player 0.9.9-->C:\Program Files\VideoLAN\VLC\uninstall.exe Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Driver Package - Ricoh Company Memorystick Host Controller (07/09/2005 1.00.01.12)-->C:\PROGRA~1\DIFX\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\rimsptsk_469677EEC4F8 D39ABD61046D242B2A1651DE8AEF\rimsptsk.inf Windows Driver Package - Ricoh Company MMC Host Controller (07/14/2005 1.00.00.06)-->C:\PROGRA~1\DIFX\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\rimmptsk_EA24AF82DAB6 BA6CF6FB1A3004EE91F51D3FDCF9\rimmptsk.inf Windows Driver Package - Ricoh Company xD-Picture Card/SmartMedia Host Controller (07/14/2005 1.00.02.04)-->C:\PROGRA~1\DIFX\DPInst.exe /u C:\WINDOWS\system32\DRVSTORE\rixdptsk_30B42BE4DA4D 11DB80E5D3DD10180621BA0A53DD\rixdptsk.inf Windows Live Call-->MsiExec.exe /I{F6BD194C-4190-4D73-B1B1-C48C99921BFE} Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52} Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe Windows Live Essentials-->MsiExec.exe /I{C6CA8874-5F22-4AF0-9BE3-016BF299C536} Windows Live Messenger-->MsiExec.exe /X{0AAA9C97-74D4-47CE-B089-0B147EF3553C} Windows Live Sign-in Assistant-->MsiExec.exe /I{45338B07-A236-4270-9A77-EBB4115517B5} Windows Live Upload Tool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238} Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe ======Hosts File====== 127.0.0.1 localhost ::1 localhost 209.44.111.62 antivir-systempro.com 209.44.111.62 Antivirus System PRO Powerfull PC Protection ======Security center information====== AV: ESET NOD32 Antivirus 4.0 FW: COMODO Firewall Pro ======System event log====== Computer Name: ANTHONY-7222209 Event Code: 1 Message: The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume. Record Number: 218 Source Name: sr Time Written: 20090625030341.000000-240 Event Type: error User: Computer Name: ANTHONY-7222209 Event Code: 7023 Message: The sys service terminated with the following error: Invalid access to memory location. Record Number: 186 Source Name: Service Control Manager Time Written: 20090625014844.000000-240 Event Type: error User: Computer Name: ANTHONY-7222209 Event Code: 4226 Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts. Record Number: 134 Source Name: Tcpip Time Written: 20090625000244.000000-240 Event Type: warning User: Computer Name: ANTHONY-7222209 Event Code: 51 Message: An error was detected on device \Device\CdRom0 during a paging operation. Record Number: 87 Source Name: Cdrom Time Written: 20090625023733.000000-240 Event Type: warning User: Computer Name: ANTHONY-7222209 Event Code: 7000 Message: The OMCI service failed to start due to the following error: The system cannot find the file specified. Record Number: 86 Source Name: Service Control Manager Time Written: 20090625023421.000000-240 Event Type: error User: =====Application event log===== Computer Name: ANTHONY-7222209 Event Code: 5603 Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property. This provider will be run using the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality. Record Number: 26 Source Name: WinMgmt Time Written: 20090625014351.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ANTHONY-7222209 Event Code: 1031 Message: Record Number: 15 Source Name: ASP.NET 1.0.3705.6018 Time Written: 20090625013842.000000-240 Event Type: error User: Computer Name: ANTHONY-7222209 Event Code: 63 Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 13 Source Name: WinMgmt Time Written: 20090625013808.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ANTHONY-7222209 Event Code: 63 Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 12 Source Name: WinMgmt Time Written: 20090625013808.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM Computer Name: ANTHONY-7222209 Event Code: 63 Message: A provider, HiPerfCooker_v1, has been registered in the WMI namespace, Root\WMI, to use the LocalSystem account. This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests. Record Number: 11 Source Name: WinMgmt Time Written: 20090625013801.000000-240 Event Type: warning User: NT AUTHORITY\SYSTEM ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemR oot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\ "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 14 Stepping 8, GenuineIntel "PROCESSOR_REVISION"=0e08 "NUMBER_OF_PROCESSORS"=2 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;. WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip "QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJava.zip -----------------EOF-----------------

06-28-2009	#5
chiaz Senior Security Analyst Join Date: Jun 2006 Location: Singapore Posts: 5,177 PC Experience: PC Guru	Re: Help - Dont know where to post this threa Hi, Your logs are messed up. This is caused by having Word Wrap checked. So before posting the new RSIT logs: 1. Click Start > All Programs > Accessories > Notepad 2. On the menu bar in Notepad select Format and click on WordWrap so it appears un-checked. ---------------------------------------------- Please post the logs again.

Similar discussions...
Thread	Thread Starter	Forum	Replies	Last Post
Pending: dont really know what i am doing	sarkate	[Pending] HJT Logs	3	05-03-2009 05:23 AM
New here. Dont know were to go!	toejam	Introduce Yourself	5	12-10-2008 11:13 PM
Pending: Dont know what i have done....	jhchap	Windows XP/2000	3	07-15-2008 11:55 AM
Pending: I dont know what to do	HelplessFool765	Spyware / AdWare	6	07-08-2008 01:51 AM
Dont buy a AMD CPU	S33D3R	Processor/CPU	1	02-05-2008 03:54 PM

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode