Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest
CPU Erratic - Hijack this log?
-
19-09-2008 6:25am#1Can someone help me with my fathers computer, he had no protection and the computer is really slow reponding and CPU eratic even when idle.
Log file from hijak this ...... have i malware etc...... ty
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:17:31, on 19/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18241)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: E-Zsoft VideoDownloaderToolBar - {4322A444-92F8-4C3E-BD4C-013BA51E2871} - C:\Program Files\VersalSoft\InternetDownload\VDTB.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: E-Zsoft VideoDownloaderToolBar - {4322A444-92F8-4C3E-BD4C-013BA51E2871} - C:\Program Files\VersalSoft\InternetDownload\VDTB.dll
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [InternetDownload_upgrade] "C:\Program Files\VersalSoft\InternetDownload\InternetDownload.exe" /upgrade
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\RegMech.exe /H
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: ASAPHook,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
--
End of file - 8059 bytes0
Comments
-
Looks clean
Kaspersky is probably responsible- Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
- Double click on RSIT.exe to run RSIT.
- Click Continue at the disclaimer screen.
- Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)
0 -
Logfile of random's system information tool 1.04 (written by random/random)
Run by Terence McWilliams at 2008-10-02 02:13:17
Microsoft Windows XP Professional Service Pack 3
System drive C: has 47 GB (61%) free of 76 GB
Total RAM: 383 MB (8% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:14:18, on 02/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18241)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\DllHost.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Uniblue\SpeedUpMyPC\SUMP.exe
C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Documents and Settings\Terence McWilliams\Desktop\RSIT.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Program Files\trend micro\Terence McWilliams.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: E-Zsoft VideoDownloaderToolBar - {4322A444-92F8-4C3E-BD4C-013BA51E2871} - C:\Program Files\VersalSoft\InternetDownload\VDTB.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: E-Zsoft VideoDownloaderToolBar - {4322A444-92F8-4C3E-BD4C-013BA51E2871} - C:\Program Files\VersalSoft\InternetDownload\VDTB.dll
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Banner Ad Blocker - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send To Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\ssv.dll
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: ASAPHook,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
--
End of file - 9160 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1215030582.job
C:\WINDOWS\tasks\GlaryInitialize.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{6E612524-CE0E-4603-AA8C-682737D435DC}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4322A444-92F8-4C3E-BD4C-013BA51E2871}]
E-Zsoft VideoDownloaderToolBar - C:\Program Files\VersalSoft\InternetDownload\VDTB.dll [2008-08-17 42496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll [2008-07-07 1562448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-07-29 62728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\system32\dla\tfswshx.dll [2005-04-27 118844]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre6\bin\ssv.dll [2008-09-18 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-08-14 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll [2008-07-23 651760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-09-18 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
HP Credential Manager for ProtectTools - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll [2004-11-05 53760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-09-18 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-08-14 193136]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]
{4322A444-92F8-4C3E-BD4C-013BA51E2871} - E-Zsoft VideoDownloaderToolBar - C:\Program Files\VersalSoft\InternetDownload\VDTB.dll [2008-08-17 42496]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PHIME2002A"=C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-04 455168]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-07-16 61440]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-10-18 204288]
"Uniblue RegistryBooster 2009"=C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe [2008-08-26 2019624]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="ASAPHook,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-07-04 139264]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2008-07-29 218376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\OneCard]
C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll [2005-02-23 39424]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 241704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2008-05-26 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
AsWlnPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"NoSecCpl"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0
"NoDispCpl"=0
"NoDispScrSavPage"=0
"NoDispAppearancePage"=0
"NoDispSettingsPage"=0
"NoVisualStyleChoice"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoActiveDesktop"=0
"HideClock"=0
"NoStartMenuPinnedList"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"StartmenuLogoff"=0
"NoStartMenuSubFolders"=0
"NoCommonGroups"=0
"NoPrinterTabs"=0
"NoDeletePrinter"=0
"NoAddPrinter"=0
"NoPrinters"=0
"NoFavoritesMenu"=0
"NoRun"=0
"NoFind"=0
"NoClose"=0
"NoSetFolders"=0
"NoViewContextMenu"=0
"NoToolbarCustomize"=0
"NoRecentDocsNetHood"=0
"NoChangeAnimation"=0
"NoChangeKeyboardNavigationIndicators"=0
"NoThemesTab"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\OFFICE11\POWERPNT.EXE"="C:\Program Files\Microsoft Office\OFFICE11\POWERPNT.EXE:*:Enabled:Microsoft Office PowerPoint"
"C:\Program Files\Common Files\Microsoft Shared\MODI\11.0\MSPVIEW.EXE"="C:\Program Files\Common Files\Microsoft Shared\MODI\11.0\MSPVIEW.EXE:*:Enabled:Microsoft Office Document Imaging"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 2 months======
2008-10-02 02:13:17 ----D---- C:\rsit
2008-10-02 01:32:32 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-10-02 00:19:31 ----D---- C:\WINDOWS\LastGood
2008-10-01 17:46:30 ----D---- C:\WINDOWS\system32\XPSViewer
2008-10-01 17:45:55 ----D---- C:\Program Files\MSBuild
2008-10-01 17:44:53 ----D---- C:\Program Files\Reference Assemblies
2008-10-01 17:37:13 ----D---- C:\83d612624490495c5a00e6ef
2008-10-01 17:33:36 ----D---- C:\WINDOWS\SxsCaPendDel
2008-10-01 17:09:12 ----D---- C:\Program Files\Sun
2008-10-01 17:07:06 ----A---- C:\WINDOWS\system32\javaws.exe
2008-10-01 17:07:06 ----A---- C:\WINDOWS\system32\javaw.exe
2008-10-01 17:07:05 ----A---- C:\WINDOWS\system32\java.exe
2008-10-01 17:00:39 ----D---- C:\Program Files\Common Files\Java
2008-10-01 04:41:00 ----D---- C:\Program Files\Common Files\Adobe
2008-10-01 04:41:00 ----D---- C:\Program Files\Adobe
2008-10-01 04:23:00 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2008-10-01 04:22:59 ----A---- C:\WINDOWS\system32\pndx5032.dll
2008-10-01 04:22:58 ----A---- C:\WINDOWS\system32\pndx5016.dll
2008-10-01 04:22:56 ----A---- C:\WINDOWS\system32\pncrt.dll
2008-10-01 04:22:48 ----D---- C:\Program Files\Real Alternative
2008-10-01 04:22:48 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Real
2008-10-01 04:22:48 ----D---- C:\Documents and Settings\All Users\Application Data\Real
2008-10-01 03:53:53 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\ATI
2008-10-01 03:53:53 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
2008-10-01 03:34:45 ----D---- C:\Program Files\WIDCOMM
2008-10-01 03:15:09 ----D---- C:\Drivers
2008-10-01 03:03:58 ----A---- C:\WINDOWS\system32\wshirda.dll
2008-10-01 03:03:58 ----A---- C:\WINDOWS\system32\irmon.dll
2008-10-01 03:03:46 ----A---- C:\WINDOWS\system32\irftp.exe
2008-10-01 02:23:18 ----D---- C:\Program Files\ATI
2008-10-01 02:13:14 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2008-10-01 02:04:09 ----D---- C:\ATI
2008-10-01 01:13:10 ----N---- C:\WINDOWS\system32\spmsg2.dll
2008-10-01 00:56:25 ----D---- C:\Documents and Settings\All Users\Application Data\DriverScanner
2008-10-01 00:46:54 ----HDC---- C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}
2008-09-19 08:05:46 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Malwarebytes
2008-09-19 08:05:05 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-09-19 08:05:04 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-09-19 07:15:58 ----D---- C:\Program Files\Trend Micro
2008-09-19 01:34:35 ----D---- C:\Program Files\BitShape
2008-09-19 01:31:35 ----D---- C:\Program Files\ActiveXplorer
2008-09-19 01:07:22 ----D---- C:\VersalSoft
2008-09-19 01:06:14 ----D---- C:\Program Files\VersalSoft
2008-09-19 01:04:57 ----D---- C:\Program Files\Universal
2008-09-18 08:13:03 ----HDC---- C:\WINDOWS\ie8
2008-09-18 07:15:09 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Mozilla
2008-09-18 06:54:55 ----D---- C:\Program Files\Lavasoft
2008-09-18 06:54:53 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-09-18 06:49:39 ----D---- C:\Program Files\Mozilla Firefox
2008-09-18 05:17:35 ----D---- C:\WINDOWS\system32\appmgmt
2008-09-18 02:39:35 ----D---- C:\WINDOWS\pss
2008-09-18 01:43:35 ----D---- C:\Program Files\Microsoft Silverlight
2008-09-18 01:42:29 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Windows Desktop Search
2008-09-18 01:39:34 ----D---- C:\Program Files\Windows Desktop Search
2008-09-18 01:39:33 ----D---- C:\WINDOWS\system32\GroupPolicy
2008-09-18 01:38:44 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2008-09-18 01:37:42 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2008-09-17 23:59:03 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Godlike
2008-09-17 23:58:26 ----D---- C:\Program Files\Godlike Developers
2008-09-17 12:01:10 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-09-17 11:26:49 ----D---- C:\WINDOWS\Prefetch
2008-09-17 11:16:01 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-09-17 11:15:44 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-09-17 11:15:18 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-09-17 11:14:52 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-09-17 11:14:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-09-17 11:14:04 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-09-17 11:13:45 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-09-17 11:13:30 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-09-17 11:13:06 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-09-17 11:12:39 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-09-17 10:52:50 ----D---- C:\WINDOWS\system32\scripting
2008-09-17 10:52:47 ----D---- C:\WINDOWS\l2schemas
2008-09-17 10:52:43 ----D---- C:\WINDOWS\system32\en
2008-09-17 10:52:41 ----D---- C:\WINDOWS\system32\bits
2008-09-17 10:22:44 ----D---- C:\WINDOWS\ServicePackFiles
2008-09-17 10:06:42 ----D---- C:\WINDOWS\network diagnostic
2008-09-17 09:40:21 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-09-17 08:49:53 ----N---- C:\WINDOWS\system32\wmphoto.dll
2008-09-17 08:49:32 ----N---- C:\WINDOWS\system32\wlanapi.dll
2008-09-17 08:49:14 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2008-09-17 08:49:12 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2008-09-17 08:47:54 ----N---- C:\WINDOWS\system32\tspkg.dll
2008-09-17 08:47:53 ----N---- C:\WINDOWS\system32\tsgqec.dll
2008-09-17 08:46:30 ----N---- C:\WINDOWS\system32\spupdwxp.exe
2008-09-17 08:46:20 ----A---- C:\WINDOWS\system32\spdwnwxp.exe
2008-09-17 08:45:58 ----N---- C:\WINDOWS\system32\slserv.exe
2008-09-17 08:45:58 ----N---- C:\WINDOWS\system32\slrundll.exe
2008-09-17 08:45:58 ----N---- C:\WINDOWS\slrundll.exe
2008-09-17 08:45:55 ----N---- C:\WINDOWS\system32\slgen.dll
2008-09-17 08:45:55 ----N---- C:\WINDOWS\system32\slextspk.dll
2008-09-17 08:45:55 ----N---- C:\WINDOWS\system32\slcoinst.dll
2008-09-17 08:45:21 ----N---- C:\WINDOWS\system32\setupn.exe
2008-09-17 08:45:03 ----N---- C:\WINDOWS\system32\s3gnb.dll
2008-09-17 08:44:53 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2008-09-17 08:44:44 ----N---- C:\WINDOWS\system32\rasqec.dll
2008-09-17 08:44:39 ----N---- C:\WINDOWS\system32\qutil.dll
2008-09-17 08:44:25 ----N---- C:\WINDOWS\system32\qcliprov.dll
2008-09-17 08:44:24 ----N---- C:\WINDOWS\system32\qagentrt.dll
2008-09-17 08:44:24 ----N---- C:\WINDOWS\system32\qagent.dll
2008-09-17 08:44:09 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2008-09-17 08:43:46 ----N---- C:\WINDOWS\system32\onex.dll
2008-09-17 08:43:12 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2008-09-17 08:42:01 ----N---- C:\WINDOWS\system32\napstat.exe
2008-09-17 08:42:00 ----N---- C:\WINDOWS\system32\napmontr.dll
2008-09-17 08:42:00 ----N---- C:\WINDOWS\system32\napipsec.dll
2008-09-17 08:41:53 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2008-09-17 08:41:48 ----N---- C:\WINDOWS\system32\msxml6r.dll
2008-09-17 08:41:45 ----N---- C:\WINDOWS\system32\msxml6.dll
2008-09-17 08:41:19 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2008-09-17 08:41:19 ----N---- C:\WINDOWS\system32\mssha.dll
2008-09-17 08:38:16 ----N---- C:\WINDOWS\system32\mmcperf.exe
2008-09-17 08:38:13 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-09-17 08:38:11 ----N---- C:\WINDOWS\system32\mmcex.dll
2008-09-17 08:38:11 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-09-17 08:35:29 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2008-09-17 08:35:26 ----N---- C:\WINDOWS\system32\kmsvc.dll
2008-09-17 08:35:20 ----N---- C:\WINDOWS\system32\kbdpash.dll
2008-09-17 08:35:20 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2008-09-17 08:35:19 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2008-09-17 08:35:18 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2008-09-17 08:33:17 ----N---- C:\WINDOWS\system32\smtpapi.dll
2008-09-17 08:33:15 ----N---- C:\WINDOWS\system32\rwnh.dll
2008-09-17 08:32:36 ----N---- C:\WINDOWS\system32\comsdupd.exe
2008-09-17 08:31:59 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2008-09-17 08:31:08 ----N---- C:\WINDOWS\system32\faxpatch.exe
2008-09-17 08:30:49 ----N---- C:\WINDOWS\system32\eapsvc.dll
2008-09-17 08:30:49 ----N---- C:\WINDOWS\system32\eapqec.dll
2008-09-17 08:30:49 ----N---- C:\WINDOWS\system32\eappprxy.dll
2008-09-17 08:30:48 ----N---- C:\WINDOWS\system32\eapphost.dll
2008-09-17 08:30:48 ----N---- C:\WINDOWS\system32\eappgnui.dll
2008-09-17 08:30:48 ----N---- C:\WINDOWS\system32\eappcfg.dll
2008-09-17 08:30:48 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2008-09-17 08:30:48 ----N---- C:\WINDOWS\system32\eapolqec.dll
2008-09-17 08:30:18 ----N---- C:\WINDOWS\system32\dot3ui.dll
2008-09-17 08:30:18 ----N---- C:\WINDOWS\system32\dot3svc.dll
2008-09-17 08:30:18 ----N---- C:\WINDOWS\system32\dot3msm.dll
2008-09-17 08:30:18 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-09-17 08:30:18 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2008-09-17 08:30:17 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2008-09-17 08:30:17 ----N---- C:\WINDOWS\system32\dot3api.dll
2008-09-17 08:30:04 ----N---- C:\WINDOWS\system32\dimsroam.dll
2008-09-17 08:30:04 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2008-09-17 08:29:57 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2008-09-17 08:29:28 ----N---- C:\WINDOWS\system32\credssp.dll
2008-09-17 08:28:17 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2008-09-17 08:28:15 ----N---- C:\WINDOWS\system32\azroles.dll
2008-09-17 08:28:07 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2008-09-17 08:27:56 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2008-09-17 08:27:53 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2008-09-17 08:26:52 ----N---- C:\WINDOWS\system32\aaclient.dll
2008-09-17 06:01:12 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-09-17 06:01:12 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-09-17 05:01:08 ----A---- C:\WINDOWS\system32\STKIT432.DLL
2008-09-17 05:00:57 ----D---- C:\Program Files\Registry Mechanic
2008-09-17 04:32:31 ----D---- C:\Program Files\IObit
2008-09-17 04:27:58 ----D---- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-09-17 04:17:14 ----D---- C:\Program Files\Yahoo!
2008-09-17 04:16:49 ----D---- C:\Program Files\CCleaner
2008-09-17 04:08:40 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\GlarySoft
2008-09-17 04:05:34 ----D---- C:\Program Files\Glary Utilities
2008-09-17 03:47:32 ----A---- C:\WINDOWS\system32\deploytk.dll
2008-09-16 22:02:26 ----D---- C:\Program Files\Kaspersky Lab
2008-09-16 22:02:26 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-09-16 21:29:40 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-09-16 02:59:32 ----HDC---- C:\Documents and Settings\All Users\Application Data\{D994735B-8DC6-4AEE-B720-704A4EC0402E}
2008-09-16 02:46:43 ----RHD---- C:\AHCache
2008-09-15 02:48:02 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Uniblue
2008-09-15 02:45:48 ----D---- C:\Program Files\Uniblue
2008-09-15 02:43:35 ----HDC---- C:\Documents and Settings\All Users\Application Data\{2840BBCB-9BEC-47F6-BA0F-10D3C34BF151}
2008-09-15 02:31:35 ----DC---- C:\Documents and Settings\All Users\Application Data\{FCCD3ACF-B2F9-4087-B2A4-0DB5FADB9C32}
2008-09-14 00:12:35 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe
2008-09-13 23:58:48 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2008-09-13 23:55:09 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\TuneUp Software
2008-09-13 23:53:05 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2008-09-13 23:50:22 ----D---- C:\Program Files\TuneUp Utilities 2008
2008-09-13 23:48:21 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-09-13 20:37:36 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-09-13 20:00:31 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\BitTorrent
2008-09-13 19:54:52 ----D---- C:\Program Files\DNA
2008-09-13 19:54:52 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\DNA
2008-09-13 19:54:43 ----D---- C:\Program Files\BitTorrent
2008-09-12 03:36:28 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\uTorrent
2008-09-11 03:07:05 ----HDC---- C:\WINDOWS\$NtUninstallKB938464_0$
2008-09-11 03:05:46 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2008-09-10 12:13:39 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\F-Secure
2008-09-10 11:19:13 ----D---- C:\Documents and Settings\All Users\Application Data\F-Secure
2008-09-10 11:17:33 ----D---- C:\Documents and Settings\All Users\Application Data\fssg
2008-09-05 23:30:42 ----N---- C:\WINDOWS\system32\WgaLogon.dll
2008-09-05 23:29:58 ----N---- C:\WINDOWS\system32\WgaTray.exe
2008-09-01 21:27:13 ----A---- C:\WINDOWS\system32\muweb.dll
2008-09-01 21:27:13 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2008-09-01 21:27:13 ----A---- C:\WINDOWS\system32\mucltui.dll
2008-08-31 16:09:28 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller
2008-08-31 16:08:30 ----D---- C:\Program Files\Windows Live
2008-08-31 16:07:25 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-08-25 22:09:17 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Leadertech
2008-08-23 20:51:19 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\WinRAR
2008-08-22 03:05:00 ----N---- C:\WINDOWS\system32\PrivacIE.dll
2008-08-13 00:41:41 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2008-08-13 00:41:37 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2008-08-13 00:41:32 ----HDC---- C:\WINDOWS\$NtUninstallKB953839$
2008-08-13 00:41:27 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2008-08-13 00:40:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$
2008-08-13 00:40:11 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2008-08-13 00:39:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
2008-08-09 13:37:44 ----D---- C:\WINDOWS\Sun
2008-08-09 13:37:44 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Sun
2008-08-05 17:55:38 ----A---- C:\WINDOWS\system32\msdbg2.dll
======List of files/folders modified in the last 2 months======
2008-10-02 02:14:15 ----D---- C:\WINDOWS\Temp
2008-10-02 01:34:41 ----D---- C:\WINDOWS\system32\CatRoot
2008-10-02 01:32:59 ----HD---- C:\WINDOWS\inf
2008-10-02 01:32:48 ----D---- C:\WINDOWS
2008-10-02 01:32:32 ----D---- C:\WINDOWS\system32
2008-10-02 01:28:16 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-02 01:22:33 ----SHD---- C:\WINDOWS\Installer
2008-10-02 01:02:33 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-01 22:00:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-10-01 20:10:33 ----D---- C:\WINDOWS\Microsoft.NET
2008-10-01 20:10:14 ----RSD---- C:\WINDOWS\assembly
2008-10-01 18:36:25 ----D---- C:\WINDOWS\system32\config
2008-10-01 18:02:46 ----D---- C:\Program Files\WinRAR
2008-10-01 17:54:02 ----D---- C:\WINDOWS\WinSxS
2008-10-01 17:52:13 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-10-01 17:46:07 ----D---- C:\WINDOWS\system32\en-US
2008-10-01 17:45:55 ----RD---- C:\Program Files
2008-10-01 17:45:23 ----RSD---- C:\WINDOWS\Fonts
2008-10-01 17:18:32 ----D---- C:\Program Files\Internet Explorer
2008-10-01 17:07:01 ----D---- C:\Program Files\Java
2008-10-01 17:00:39 ----D---- C:\Program Files\Common Files
2008-10-01 04:57:25 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2008-10-01 03:40:13 ----D---- C:\WINDOWS\system32\drivers
2008-10-01 03:01:45 ----D---- C:\WINDOWS\security
2008-10-01 03:00:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-10-01 02:21:20 ----D---- C:\Program Files\ATI Technologies
2008-10-01 02:14:58 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-01 01:14:04 ----D---- C:\WINDOWS\system32\spool
2008-09-30 03:20:10 ----SHD---- C:\System Volume Information
2008-09-30 03:20:10 ----D---- C:\WINDOWS\system32\Restore
2008-09-19 02:53:31 ----D---- C:\WINDOWS\Debug
2008-09-19 00:50:31 ----SD---- C:\WINDOWS\Tasks
2008-09-18 17:40:29 ----D---- C:\WINDOWS\Media
2008-09-18 17:40:29 ----D---- C:\WINDOWS\Help
2008-09-18 02:42:20 ----SH---- C:\boot.ini
2008-09-18 02:42:20 ----A---- C:\WINDOWS\win.ini
2008-09-18 02:42:20 ----A---- C:\WINDOWS\system.ini
2008-09-18 01:43:10 ----SD---- C:\Documents and Settings\Terence McWilliams\Application Data\Microsoft
2008-09-18 01:40:34 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-09-18 01:39:33 ----D---- C:\WINDOWS\system32\wbem
2008-09-18 00:20:55 ----D---- C:\Program Files\Windows Media Connect 2
2008-09-17 11:57:43 ----HD---- C:\WINDOWS\$hf_mig$
2008-09-17 11:24:05 ----D---- C:\WINDOWS\system32\Setup
2008-09-17 11:24:05 ----D---- C:\WINDOWS\AppPatch
2008-09-17 11:13:09 ----D---- C:\Program Files\Messenger
2008-09-17 10:55:46 ----D---- C:\WINDOWS\system32\inetsrv
2008-09-17 10:55:39 ----D---- C:\WINDOWS\ime
2008-09-17 10:52:54 ----D---- C:\WINDOWS\system32\usmt
2008-09-17 10:52:40 ----D---- C:\WINDOWS\PeerNet
2008-09-17 10:52:38 ----D---- C:\Program Files\Movie Maker
2008-09-17 10:21:18 ----D---- C:\WINDOWS\system32\npp
2008-09-17 10:21:18 ----D---- C:\WINDOWS\mui
2008-09-17 10:21:12 ----D---- C:\WINDOWS\msagent
2008-09-17 10:21:04 ----D---- C:\WINDOWS\srchasst
2008-09-17 10:20:29 ----D---- C:\Program Files\NetMeeting
2008-09-17 10:20:21 ----D---- C:\WINDOWS\system32\Com
2008-09-17 10:20:03 ----D---- C:\Program Files\Windows Media Player
2008-09-17 10:20:00 ----D---- C:\Program Files\Windows NT
2008-09-17 10:19:59 ----D---- C:\Program Files\Outlook Express
2008-09-17 10:19:40 ----D---- C:\Program Files\Common Files\System
2008-09-17 10:17:10 ----D---- C:\WINDOWS\system32\oobe
2008-09-17 10:16:57 ----D---- C:\WINDOWS\system
2008-09-17 09:38:04 ----D---- C:\WINDOWS\ehome
2008-09-17 04:26:00 ----D---- C:\Program Files\Hewlett-Packard
2008-09-05 23:30:06 ----A---- C:\WINDOWS\system32\LegitCheckControl.dll
2008-09-01 23:49:59 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-08-26 21:28:12 ----A---- C:\WINDOWS\system32\MRT.exe
2008-08-25 22:09:34 ----D---- C:\Documents and Settings\Terence McWilliams\Application Data\Sonic
2008-08-22 03:15:56 ----A---- C:\WINDOWS\system32\ieframe.dll.mui
2008-08-22 03:14:40 ----A---- C:\WINDOWS\system32\advpack.dll.mui
2008-08-22 03:10:34 ----A---- C:\WINDOWS\system32\ieframe.dll
2008-08-22 03:09:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-08-22 03:08:22 ----A---- C:\WINDOWS\system32\WinFXDocObj.exe
2008-08-22 03:08:22 ----A---- C:\WINDOWS\system32\urlmon.dll
2008-08-22 03:08:08 ----A---- C:\WINDOWS\system32\webcheck.dll
2008-08-22 03:08:06 ----A---- C:\WINDOWS\system32\wininet.dll
2008-08-22 03:08:00 ----A---- C:\WINDOWS\system32\licmgr10.dll
2008-08-22 03:07:58 ----A---- C:\WINDOWS\system32\url.dll
2008-08-22 03:07:50 ----A---- C:\WINDOWS\system32\occache.dll
2008-08-22 03:07:50 ----A---- C:\WINDOWS\system32\msrating.dll
2008-08-22 03:07:08 ----A---- C:\WINDOWS\system32\corpol.dll
2008-08-22 03:06:58 ----A---- C:\WINDOWS\system32\jsproxy.dll
2008-08-22 03:06:44 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2008-08-22 03:06:40 ----A---- C:\WINDOWS\system32\ieaksie.dll
2008-08-22 03:06:36 ----A---- C:\WINDOWS\system32\vbscript.dll
2008-08-22 03:06:36 ----A---- C:\WINDOWS\system32\ieakeng.dll
2008-08-22 03:06:30 ----A---- C:\WINDOWS\system32\jscript.dll
2008-08-22 03:06:30 ----A---- C:\WINDOWS\system32\admparse.dll
2008-08-22 03:06:24 ----A---- C:\WINDOWS\system32\ieudinit.exe
2008-08-22 03:06:24 ----A---- C:\WINDOWS\system32\iesetup.dll
2008-08-22 03:06:24 ----A---- C:\WINDOWS\system32\ieakui.dll
2008-08-22 03:06:24 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2008-08-22 03:06:20 ----A---- C:\WINDOWS\system32\iernonce.dll
2008-08-22 03:06:16 ----A---- C:\WINDOWS\system32\inseng.dll
2008-08-22 03:06:16 ----A---- C:\WINDOWS\system32\advpack.dll
2008-08-22 03:06:02 ----A---- C:\WINDOWS\system32\iertutil.dll
2008-08-22 03:05:48 ----A---- C:\WINDOWS\system32\msfeeds.dll
2008-08-22 03:05:34 ----A---- C:\WINDOWS\system32\mstime.dll
2008-08-22 03:05:24 ----A---- C:\WINDOWS\system32\iepeers.dll
2008-08-22 03:05:22 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2008-08-22 03:05:22 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2008-08-22 03:05:20 ----A---- C:\WINDOWS\system32\icardie.dll
2008-08-22 03:05:16 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2008-08-22 03:05:14 ----A---- C:\WINDOWS\system32\pngfilt.dll
2008-08-22 03:05:14 ----A---- C:\WINDOWS\system32\imgutil.dll
2008-08-22 03:05:10 ----A---- C:\WINDOWS\system32\dxtrans.dll
2008-08-22 03:05:08 ----A---- C:\WINDOWS\system32\mshtmled.dll
2008-08-22 03:05:00 ----A---- C:\WINDOWS\system32\mshtmler.dll
2008-08-22 03:04:54 ----A---- C:\WINDOWS\system32\mshta.exe
2008-08-22 02:58:12 ----A---- C:\WINDOWS\system32\ieui.dll
2008-08-22 02:57:56 ----A---- C:\WINDOWS\system32\msls31.dll
2008-08-22 02:42:22 ----A---- C:\WINDOWS\system32\ieapfltr.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 ClntMgmt.sys;ClntMgmt.sys; C:\WINDOWS\System32\Drivers\ClntMgmt.sys [2004-02-20 59044]
R1 eabfiltr;EABFiltr; \??\C:\WINDOWS\system32\drivers\EABFiltr.sys []
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2008-09-16 213008]
R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2004-12-02 5627]
R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2004-12-02 23545]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-04 12032]
R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2004-12-23 40544]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2005-10-05 12544]
R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2005-04-27 25725]
R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2005-04-27 34845]
R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2005-04-27 4125]
R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2005-04-27 2241]
R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2005-04-27 86684]
R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2005-04-27 14877]
R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2005-04-27 6365]
R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2005-04-27 98716]
R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2005-04-27 100605]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-07-04 3230720]
R3 ATSWPDRV;AuthenTec TruePrint USB Driver (AES2500); C:\WINDOWS\System32\Drivers\ATSwpDrv.sys [2005-03-29 116594]
R3 b57w2k;Broadcom NetLink (TM) Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2005-01-27 128256]
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2007-09-21 1123328]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2008-02-16 879624]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2008-02-16 74688]
R3 CAMCAUD;Conexant AMC Audio; C:\WINDOWS\system32\drivers\camc6aud.sys [2005-07-20 38144]
R3 CAMCHALA;CAMCHALA; C:\WINDOWS\system32\drivers\camc6hal.sys [2005-07-20 346496]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-10-18 998656]
R3 HSFHWATI;HSFHWATI; C:\WINDOWS\system32\DRIVERS\HSFHWATI.sys [2005-10-18 235904]
R3 KLFLTDEV;Kaspersky Lab KLFltDev; C:\WINDOWS\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2008-04-30 24592]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-09-15 213696]
R3 tifm21;tifm21; C:\WINDOWS\system32\drivers\tifm21.sys [2005-06-23 162176]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-10-18 721280]
S3 btaudio;Bluetooth Audio Device; C:\WINDOWS\system32\drivers\btaudio.sys [2008-02-16 539640]
S3 BTDriver;Bluetooth Virtual Communications Driver; C:\WINDOWS\system32\DRIVERS\btport.sys [2008-02-16 37424]
S3 BthEnum;Bluetooth Request Block Driver; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\WINDOWS\system32\DRIVERS\bthpan.sys [2008-04-13 101120]
S3 BTHPORT;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2008-06-13 272128]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2008-04-13 18944]
S3 btwhid;btwhid; C:\WINDOWS\system32\DRIVERS\btwhid.sys [2008-02-16 55352]
S3 eabusb;eabusb; \??\C:\WINDOWS\system32\drivers\eabusb.sys []
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2003-03-09 51024]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2003-03-09 16080]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2003-03-09 21456]
S3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSF_DP.sys [2005-04-18 1038336]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-09-18 611664]
R2 ASChannel;Local Communication Channel; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-07-04 561152]
R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
R2 BthServ;Bluetooth Support Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-01-29 264800]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-09-18 152984]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-07-03 593920]
S2 spupdsvc;Windows Service Pack Installer update service; C:\WINDOWS\system32\spupdsvc.exe [2008-06-12 26144]
S2 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-07-23 156656]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2003-03-09 65795]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2008-09-14 355584]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
EOF
info.txt logfile of random's system information tool 1.04 2008-10-02 02:14:29
======Uninstall list======
-->C:\WINDOWS\system32\\MSIEXEC.EXE /I {09DA4F91-2A09-4232-AB8C-6BC740096DE3} REMOVE=UpdateMgrFeature
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
-->MsiExec.exe /I{E1D78C08-3477-470B-82B7-61BD4F63110B}
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AEF7A12C-CD9B-4773-8AD1-6916138CA7EA}\setup.exe" -l0x9 -removeonly -S
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
ActiveXplorer 4.0-->"C:\Program Files\ActiveXplorer\uninstall.exe"
ActiveXplorer 4.x .NET Assemblies Analysis-->MsiExec.exe /I{CDA64886-8D83-4FB6-BF28-6CFD518771EA}
Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
Advanced WindowsCare Personal-->"C:\Program Files\IObit\Advanced WindowsCare V2\unins000.exe"
Athlon 64 Processor Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x9
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0
ATI Catalyst Registration-->MsiExec.exe /X{72736F5F-520D-472A-88CC-7B02872FD34E}
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Broadcom 802.11 Wireless LAN Adapter-->C:\WINDOWS\system32\BCMWLU00.exe verbose /rootkey=Software\Broadcom\802.11\UninstallInfo
Broadcom NetXtreme Ethernet Controller-->MsiExec.exe /X{B7F54262-AB66-44B3-88BF-9FC69941B643}
Catalyst Control Center - Branding-->MsiExec.exe /I{FA3A247D-437A-455E-A88F-7EB6E5F9E799}
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
GD WinTools.net 8.9.0 Ultimate-->"C:\Program Files\Godlike Developers\WinTools.net Ultimate\unins000.exe"
Glary Utilities 2.6.1-->"C:\Program Files\Glary Utilities\unins000.exe"
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_FE4264652A965D92.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915800-v4)-->"C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
HP BIOS Configuration for ProtectTools 1.00 D4-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AE052EF7-2640-48D7-8915-69B810D975CB}\setup.exe" -l0x9 biosuninst
HP Credential Manager for ProtectTools-->MsiExec.exe /X{6413E233-FA34-47CE-A67C-955949BAE20F}
HP Help and Support-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}\setup.exe" -l0x9 -removeonly
HP Integrated Module with Bluetooth wireless technology-->MsiExec.exe /X{84814E6B-2581-46EC-926A-823BD1C670F6}
HP Photo and Imaging 2.0 - All-in-One Drivers-->MsiExec.exe /X{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}
HP Photo and Imaging 2.0 - All-in-One-->MsiExec.exe /X{9867A917-5D17-40DE-83BA-BEA5293194B1}
HP Photo and Imaging 2.0 - hp psc 1100 series-->C:\Program Files\Hewlett-Packard\Digital Imaging\{7C8BB31C-E09E-4c7d-BBF1-45E33B467FE1}\Setup\hpzscr01.exe -datfile hposcr02.dat -forcereboot
HP ProtectTools Security Manager 2.00 A4-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{914E1AB1-DCA0-4A7D-935F-B58C4B887A2B}\setup.exe" -l0x9 hpquninst
hp psc 1100 series-->MsiExec.exe /X{01161F64-6897-4885-93A0-A9F7BE9A4253}
HP Wireless Assistant 1.01 C1-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}\setup.exe" -l0x9 hpquninst
HP_User_Guides_0003-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5821272A-4A0B-4A0B-AE3B-9D8D04D39487}\setup.exe" -l0x9 -removeonly
InterVideo DVD Check-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5D97A4A7-C274-4B63-86D9-07A33435F505}\setup.exe" REMOVEALL
InterVideo WinDVD-->"C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
Java(TM) 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
Kaspersky Internet Security 2009-->MsiExec.exe /I{8CB14A64-CEF4-4C8F-B1C8-1C3B8752CB55}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{91110409-6000-11D3-8CFE-0150048383C9}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
OpenOffice.org Installer 1.0-->MsiExec.exe /X{0D499481-22C6-4B25-8AC2-6D3F6C885FB9}
Quick Launch Buttons 5.20 A3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CEB326EC-8F40-47B2-BA22-BB092565D66F}\setup.exe" -l0x9 -uninst
Real Alternative 1.9.0-->"C:\Program Files\Real Alternative\unins000.exe"
Registry Mechanic 8.0-->"C:\Program Files\Registry Mechanic\unins000.exe" /Log
Security Update for Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Security Update for Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Security Update for Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Security Update for Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Security Update for Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Security Update for Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Sonic DLA-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
Sonic Update Manager-->MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Texas Instruments PCIxx21/x515/xx12 drivers.-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{8D36FB6A-091D-45D7-9E3C-67787818A162} /l1033
TuneUp Utilities 2008-->MsiExec.exe /I{5888428E-699C-4E71-BF71-94EE06B497DA}
Uniblue DriverScanner 2009-->"C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}\DriverScanner_Setup.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue DriverScanner 2009-->C:\Documents and Settings\All Users\Application Data\{D5ABFFAD-D592-4F98-B02B-587125B4801F}\DriverScanner_Setup.exe
Uniblue RegistryBooster 2009-->"C:\Documents and Settings\All Users\Application Data\{2840BBCB-9BEC-47F6-BA0F-10D3C34BF151}\Uniblue RegistryBooster.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue RegistryBooster 2009-->C:\Documents and Settings\All Users\Application Data\{2840BBCB-9BEC-47F6-BA0F-10D3C34BF151}\Uniblue RegistryBooster.exe
Uniblue SpeedUpMyPC 2009-->"C:\Documents and Settings\All Users\Application Data\{D994735B-8DC6-4AEE-B720-704A4EC0402E}\SpeedUpMyPC.exe" REMOVE=TRUE MODIFY=FALSE
Uniblue SpeedUpMyPC 2009-->C:\Documents and Settings\All Users\Application Data\{D994735B-8DC6-4AEE-B720-704A4EC0402E}\SpeedUpMyPC.exe
Update for Windows XP (KB942763)-->"C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe"
Update for Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Versal FileDownload ActiveX Control Trial Version-->C:\Program Files\Universal\UFileDownloadD\USetup.exe
Windows Internet Explorer 8 Beta 2-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Search 4.0-->"C:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
World of Warcraft FREE Trial-->MsiExec.exe /X{02EBDBB9-4600-41D3-B566-40CB861511D2}
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
======Security center information======
AV: Kaspersky Internet Security
FW: Kaspersky Internet Security
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\HPQ\IAM\bin;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 36 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2402
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
EOF
0 -
The CPU is still really high whatever the SUMP is and idle is really high CPU usage as well. The Kapsersky was downloaded after the problems.
He used Norton before which i think is related to the 'SUMP' but dont know how to fix it.
ty0 -
Well its not malware related
Try download and run the norton removal tool
http://service1.symantec.com/Support/tsgeninfo.nsf/docid/2005033108162039
Other than that, all I can suggest is disabling Kaspersky0 -
Info on that sump.exe yoke:
http://www.download.com/SpeedUpMyPC/3000-2086_4-10602643.html
Not malicious but seems pretty useless anyway. Not related to Norton.
Could you elaborate on how "high" the CPU usage of Kaspersky is? Antivirus realtime scanners are always going to use a noticeable amount of CPU time, and this will be even more significant if it's an old enough PC. Is it running any scheduled scans?0 -
Advertisement
Advertisement