Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Win32/Cryptor or Trojan.TDSS


  • This topic is locked This topic is locked
13 replies to this topic

#1 SturmB

SturmB

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lexington, KY, USA
  • Local time:04:00 AM

Posted 28 July 2009 - 01:04 PM

I'm on a computer at work and it has the nastiest trojan on it that I've ever encountered. I'm now at my wits' end and I've torn out all my hair trying to remove it. I'll buy dinner for anyone who can truly get rid of this thing (without doing a complete flush-'n-fill, that is). I'm running Windows Vista Home Premium 32-bit and here's what I've found so far:

According to AVG Free, it's called Win32/Cryptor and appears as two files:
C:\Windows\System32\drivers\geyekrdpbrwhbi.sys
C:\Windows\System32\geyekrttiqbeep.dll

Every time I have AVG quarantine the files or forcefully remove them, they reappear immediately. Safe Mode doesn't help. I have to turn of Resident Shield in order to keep using the computer without being bugged every five seconds with AVG's warning.

So I then installed & ran Ad-Aware. It goes through life thinking everything is fine. So does Spybot Search & Destroy.

Searching Google, I try a software that appears to be highly recommended, Malwarebytes' Anti-Malware. It's quick scan sees "Trojan.TDSS" in two places:
As a Memory Module in \\?\globalroot\systemroot\System32\geyekrttiqbeep. dll
As a File in the same location and with the same filename.

Strange how MBAM doesn't detect the .SYS file that AVG detected earlier. Anyway, it claims to remove them and reboot, but they reappear. Same thing during Safe Mode.

Tried HiJackThis 2.0.2. The only thing it sees as bad is a service called "vhosts," but it can't do anything about it. I then got Trojan Remover, by Simply Super Software. It detects that vhosts service and even removes it with a reboot. Now HJT doesn't see it anymore. Small victory.

But the Trojan still exists and still won't go away. AVG, Ad-Aware, Spybot S&D, Multi Virus Cleaner 2009, MBAM, HJT, and Trojan Remover all failed me. (I know Ad-Aware & Spybot S&D aren't for viruses, but I thought I'd give them a shot anyway.)

So after SEVEN different programs and dozens of attempts to kill this trojan, I'm totally lost. As I said, I'll buy dinner for anyone who can recommend a program (or even manual solution) that WILL get rid of this trojan, short of reformatting & reinstalling Windows.

Probably the worst part of this trojan is that this evil lump of nastiness likes to redirect all of my Google search results to other sites, generally if I'm going to an anti-spyware or anti-virus site. I have to copy & paste the link or retype it in the address bar, or click on the link many times using the "Back" button whenever it redirects me until it finally works.

Attached Files


Edited by SturmB, 28 July 2009 - 01:05 PM.


BC AdBot (Login to Remove)

 


#2 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 28 July 2009 - 04:17 PM

Go HERE and download SysProt AntiRootkit. Unzip it to your Desktop
  • Run SysProt >> Click on the Log tab
  • Tick ALL the boxes at the "Write to log" section (Do NOT tick the "Hidden Objects Only" options)
  • Hit the Create Log button
  • When it asked for scanning option, choose Scanning all drives >> Hit Start button (Do NOT hit "Ok" button)
  • Let it scan until finish
  • Find the log.txt inside the SysProt folder and attach the log here.

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#3 SturmB

SturmB
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lexington, KY, USA
  • Local time:04:00 AM

Posted 29 July 2009 - 08:01 AM

Thank you for responding, fenzodoahl512. I've followed the steps you requested exactly and attached the log file it created.

Attached Files


Edited by SturmB, 29 July 2009 - 08:02 AM.


#4 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 29 July 2009 - 11:35 AM

Please make sure you disable ALL of your Antivirus/Antispyware/Firewall before running ComboFix.. Please visit HERE if you don't know how.. Please re-enable them back after performing all steps given..

Please download ComboFix by sUBs from HERE or HERE and save it to your Desktop.

During the download, rename Combofix to Combo-Fix as follows:

Posted Image

Posted Image


It is important you rename Combofix during the download, but not after.

**NOTE: If you are using Firefox, make sure that your download settings are as follows:
  • Tools->Options->Main tab
  • Set to "Always ask me where to Save the files".

After that, double-click and run Combo-Fix. Let it finish its job and post the log here

If ComboFix asked you to install Recovery Console, please do so.. It will be your best interest..

Note: DON'T do anything with your computer while ComboFix is running.. Let ComboFix finishes its job..

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#5 SturmB

SturmB
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lexington, KY, USA
  • Local time:04:00 AM

Posted 29 July 2009 - 02:12 PM

Thanks for the rapid resply, fenz… I followed your instructions to the letter and let it run undisturbed for over a half-hour without any response. I finally had to stop it so I could get some work done, but I intend to follow these steps again and run it once more overnight tonight and see what happens. I'll let you know tomorrow. Thanks again!

#6 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 29 July 2009 - 04:56 PM

If it happened again, try run Combo-Fix in Safe Mode :thumbup2:

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#7 SturmB

SturmB
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lexington, KY, USA
  • Local time:04:00 AM

Posted 30 July 2009 - 08:09 AM

What's your favorite restaurant, Wan? I owe you a big dinner! Just DM me your email address and I'll send you a gift certificate or something. :-)

Yes, ComboFix did the trick by removing that nasty rootkit off my system. Now MBAM and AVG aren't bugging me anymore about it. I've also uploaded the final log file generated by ComboFix just in case you might want to see it.

You're fantastic, Wan, and I owe you one!

Attached Files



#8 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 30 July 2009 - 09:07 AM

My favorite restaurant? Erm.. I always love to eat at Pizza Hut, or Shakeys Pizza :thumbup2:

Anyhow, ComboFix log looks clean to me.. Lets do an online scan to make sure we didn't miss anything..


Please run a free online scan with the ESET Online Scanner
Note: You will need to use Internet Explorer for this scan.
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  • Click Scan
    Wait for the scan to finish
  • Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  • Copy and paste that log as a reply to this topic
How's the computer now? :)

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#9 SturmB

SturmB
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lexington, KY, USA
  • Local time:04:00 AM

Posted 30 July 2009 - 01:37 PM

Took a good five or so hours, but that ESET scanner finally finished. Looks like it detected four threats and removed them. Here's the log you requested:
[codebox]ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=6
# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.5889
# api_version=3.0.2
# EOSSerial=2f36fd4db57d264791ee3e1e2b83f5a4
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2009-07-30 06:28:20
# local_time=2009-07-30 02:28:20 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1026 61 83 97 2809593495142
# compatibility_mode=5889 61 66 100 480962880800251
# scanned=1212021
# found=4
# cleaned=4
# scan_time=15012
C:\Qoobox\Quarantine\C\Windows\System32\geyekrttiqbeep.dll.vir Win32/Olmarik.JU trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Users\wildcat\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00015d multiple threats (deleted - quarantined) 00000000000000000000000000000000 C
C:\Users\wildcat\Documents\Downloads\setupxv.exe multiple threats (deleted - quarantined) 00000000000000000000000000000000 C
C:\Users\wildcat\Downloads\Fontexpert_2009.v10_DGN_CW\Fontexpert 2009.v10_DGN_CW\Fontexpert 2009.v10_DGN_CW\FontExpertSetup.exe a variant of Win32/Kryptik.YL trojan (deleted - quarantined) 00000000000000000000000000000000 C
[/codebox]

The computer doesn't really seem to be any zippier at the moment, but that's probably just because it's a slow machine to begin with. Hehehe...

#10 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 30 July 2009 - 04:10 PM

One last short scan..


Please download RSIT by random/random and save it to your Desktop.
  • Double click on RSIT.exe to run RSIT
  • Before you click "Continue", make sure you change the List files/folders created or modified in the last 3 months
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt and info.txt in your next reply.

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#11 SturmB

SturmB
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lexington, KY, USA
  • Local time:04:00 AM

Posted 31 July 2009 - 08:05 AM

Just ran RSIT this morning. Here are the results in the log.txt file:

Run by wildcat at 2009-07-31 09 _linenums:0'>Logfile of random's system information tool 1.06 (written by random/random)Run by wildcat at 2009-07-31 09:00:23Microsoft® Windows Vista™ Home Premium  Service Pack 2System drive C: has 134 GB (59%) free of 227 GBTotal RAM: 2942 MB (32% free)Logfile of Trend Micro HijackThis v2.0.2Scan saved at 9:00:43 AM, on 7/31/2009Platform: Windows Vista SP2 (WinNT 6.00.1906)MSIE: Internet Explorer v8.00 (8.00.6001.18813)Boot mode: NormalRunning processes:C:\Windows\system32\Dwm.exeC:\Windows\system32\taskeng.exeC:\Program Files\Lavasoft\Ad-Aware\AAWTray.exeC:\Program Files\Spybot - Search & Destroy\TeaTimer.exeC:\Program Files\PictureMover\Bin\PictureMover.exeC:\Windows\Explorer.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\AVG\AVG8\avgtray.exeC:\Program Files\Simplify Media\SimplifyMedia.exeC:\Program Files\iTunes\iTunes.exeC:\Program Files\Adobe\Adobe Illustrator CS4\Support Files\Contents\Windows\Illustrator.exeC:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Users\wildcat\AppData\Local\Google\Update\1.2.183.7\GoogleCrashHandler.exeC:\Windows\system32\NOTEPAD.EXEC:\Program Files\TweetDeck\TweetDeck.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Users\wildcat\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\wildcat\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\wildcat\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\wildcat\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\wildcat\AppData\Local\Google\Chrome\Application\chrome.exeC:\Users\wildcat\Desktop\RSIT.exeC:\Program Files\trend micro\wildcat.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt"]http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...buy&pf=cndt[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url="http://go.microsoft.com/fwlink/?LinkId=69157"]http://go.microsoft.com/fwlink/?LinkId=69157[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [url="http://go.microsoft.com/fwlink/?LinkId=54896"]http://go.microsoft.com/fwlink/?LinkId=54896[/url]R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=bestbuy&pf=cndt"]http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...buy&pf=cndt[/url]R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.localR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dllO1 - Hosts: ::1 localhostO2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dllO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dllO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dllO2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dllO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dllO2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dllO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dllO2 - BHO: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files\MSN\Toolbar\3.0.0541.0\msneshellx.dllO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllO3 - Toolbar: Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files\MSN\Toolbar\3.0.0541.0\msneshellx.dllO3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dllO3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dllO3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dllO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exeO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [UpdateP2GoShortCut] "c:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "c:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"O4 - HKLM\..\Run: [UpdatePDIRShortCut] "c:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "c:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0"O4 - HKLM\..\Run: [UpdatePSTShortCut] "c:\Program Files\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe" "c:\Program Files\CyberLink\CyberLink DVD Suite Deluxe" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"O4 - HKLM\..\Run: [CnwiDeviceAgent] C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwida.exeO4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logonO4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logonO4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exeO4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"O4 - HKLM\..\Run: [FontExpertType1Loader] C:\Program Files\FontExpert\Type1Loader.exeO4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbyloginO4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"O4 - HKLM\..\Run: [Adobe_ID0ENQBO] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXEO4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeO4 - HKCU\..\Run: [Simplify Media] "C:\Program Files\Simplify Media\SimplifyMedia.exe"O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exeO4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"O4 - Global Startup: imagePROGRAF Status Monitor.lnk = C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwism.exeO4 - Global Startup: PictureMover.lnk = C:\Program Files\PictureMover\Bin\PictureMover.exeO8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.htmlO8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.htmlO8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.htmlO8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.htmlO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLLO9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dllO9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dllO13 - Gopher Prefix: O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - [url="http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab"]http://appldnld.apple.com.edgesuite.net/co...ex/qtplugin.cab[/url]O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - [url="http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab"]http://dlm.tools.akamai.com/dlmanager/vers...vex-2.2.4.1.cab[/url]O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - [url="http://download.eset.com/special/eos/OnlineScanner.cab"]http://download.eset.com/special/eos/OnlineScanner.cab[/url]O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dllO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dllO18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dllO20 - AppInit_DLLs: C:\Windows\System32\avgrsstx.dllO23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exeO23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeO23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exeO23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exeO23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exeO23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exeO23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exeO23 - Service: iPF Device Agent Service (iPFDeviceAgentService) - CANON INC. - C:\Windows\system32\Cnwiolss.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exeO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exeO23 - Service: SAiAdmin - TODO: <Company name> - C:\Windows\System32\SAiAdmin.exeO23 - Service: SAiDownloader - TODO: <Company name> - C:\Program Files\SAi\SAi Production Suite\Program\SAiDownloaderVistaUI.exeO23 - Service: SAiDownloaderVista - TODO: <Company name> - C:\Windows\System32\SAiDownloaderVista.exeO23 - Service: SAiLicSvr - SA International - C:\Windows\System32\SAiLicSvr.exeO23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exeO23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exeO23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Windows\System32\TuneUpDefragService.exeO23 - Service: @%SystemRoot%\System32\TUProgSt.exe,-1 (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\Windows\System32\TUProgSt.exeO23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe--End of file - 12781 bytes======Scheduled tasks folder======C:\Windows\tasks\1-Click Maintenance.jobC:\Windows\tasks\Ad-Aware Update (Weekly).jobC:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1826164167-2625123954-291979102-1000Core.jobC:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1826164167-2625123954-291979102-1000UA.jobC:\Windows\tasks\HPCeeScheduleForwildcat.jobC:\Windows\tasks\SDMsgUpdate (TE).job======Registry dump======[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]ContributeBHO Class - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10 136560][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-07-27 1111320][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]AVG Security Toolbar BHO - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-06-26 1008896][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-21 259696][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll [2009-07-23 669168][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-04-24 470512][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]Microsoft Live Search Toolbar Helper - c:\Program Files\MSN\Toolbar\3.0.0541.0\msneshellx.dll [2008-08-29 86032][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-22 41368][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]{1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - Microsoft Live Search Toolbar - c:\Program Files\MSN\Toolbar\3.0.0541.0\msneshellx.dll [2008-08-29 86032]{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-07-21 259696]{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-06-26 1008896]{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files\Adobe\/Adobe Contribute CS4/contributeieplugin.dll [2008-09-10 136560][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-20 1008184]"hpsysdrv"=c:\hp\support\hpsysdrv.exe [2007-04-18 65536]"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2008-09-27 13539872]"NvMediaCenter"=C:\Windows\system32\NvMcTray.dll [2008-09-27 92704]"UpdateP2GoShortCut"=c:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2008-06-13 210216]"UpdatePDIRShortCut"=c:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2008-06-13 210216]"UpdatePSTShortCut"=c:\Program Files\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe [2008-09-11 210216]"CnwiDeviceAgent"=C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwida.exe [2007-08-21 71504]"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-10-25 652624]"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-09-13 1603152]"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-07-22 1948440]"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]"FontExpertType1Loader"=C:\Program Files\FontExpert\Type1Loader.exe [2009-03-04 294152]"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]"Adobe_ID0ENQBO"=C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE [2008-08-15 378224][HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-03-10 39408]"Simplify Media"=C:\Program Files\Simplify Media\SimplifyMedia.exe [2009-07-13 21427208]"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]"DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTProAgent.exe [2007-09-06 136136]C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartupimagePROGRAF Status Monitor.lnk - C:\Program Files\Canon\imagePROGRAFStatusMonitor\cnwism.exePictureMover.lnk - C:\Program Files\PictureMover\Bin\PictureMover.exe[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]"AppInit_DLLS"="C:\Windows\System32\avgrsstx.dll"[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= [][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]"ConsentPromptBehaviorAdmin"=0"EnableLUA"=0"dontdisplaylastusername"=0"legalnoticecaption"="legalnoticetext"="shutdownwithoutlogon"=1"undockwithoutlogon"=1"EnableUIADesktopToggle"=0[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]"NoDrives"=0[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]"BindDirectlyToPropertySetStorage"="NoDrives"=[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list][HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]======File associations======.js - edit - C:\Windows\System32\Notepad.exe %1.js - open - C:\Windows\System32\WScript.exe "%1" %*======List of files/folders created in the last 3 months======2009-07-31 09:00:23 ----D---- C:\rsit2009-07-30 13:55:55 ----D---- C:\Fonts2009-07-30 10:15:43 ----D---- C:\Program Files\ESET2009-07-30 09:46:07 ----D---- C:\Users\wildcat\AppData\Roaming\ACD Systems2009-07-30 09:45:02 ----D---- C:\ProgramData\ACD Systems2009-07-30 09:44:38 ----D---- C:\Program Files\Common Files\ACD Systems2009-07-30 09:44:38 ----D---- C:\Program Files\ACD Systems2009-07-30 08:46:15 ----A---- C:\log.txt2009-07-30 08:45:12 ----SHD---- C:\$RECYCLE.BIN2009-07-30 08:45:09 ----A---- C:\ComboFix.txt2009-07-29 17:02:27 ----SD---- C:\Combo-Fix2009-07-29 14:11:56 ----A---- C:\Windows\zip.exe2009-07-29 14:11:56 ----A---- C:\Windows\SWXCACLS.exe2009-07-29 14:11:56 ----A---- C:\Windows\SWSC.exe2009-07-29 14:11:56 ----A---- C:\Windows\SWREG.exe2009-07-29 14:11:56 ----A---- C:\Windows\sed.exe2009-07-29 14:11:56 ----A---- C:\Windows\PEV.exe2009-07-29 14:11:56 ----A---- C:\Windows\NIRCMD.exe2009-07-29 14:11:56 ----A---- C:\Windows\grep.exe2009-07-29 14:11:42 ----D---- C:\Windows\ERDNT2009-07-29 14:10:19 ----D---- C:\Qoobox2009-07-29 08:50:47 ----D---- C:\SysProt2009-07-29 02:57:43 ----A---- C:\Windows\system32\mshtml.dll2009-07-29 02:57:43 ----A---- C:\Windows\system32\ieframe.dll2009-07-29 02:57:42 ----A---- C:\Windows\system32\wininet.dll2009-07-29 02:57:42 ----A---- C:\Windows\system32\urlmon.dll2009-07-29 02:57:42 ----A---- C:\Windows\system32\occache.dll2009-07-29 02:57:42 ----A---- C:\Windows\system32\msfeeds.dll2009-07-29 02:57:42 ----A---- C:\Windows\system32\iertutil.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\msfeedssync.exe2009-07-29 02:57:41 ----A---- C:\Windows\system32\msfeedsbs.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\jsproxy.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\ieUnatt.exe2009-07-29 02:57:41 ----A---- C:\Windows\system32\ieui.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\iesysprep.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\iesetup.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\iernonce.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\iepeers.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\iedkcs32.dll2009-07-29 02:57:41 ----A---- C:\Windows\system32\ie4uinit.exe2009-07-28 17:05:09 ----D---- C:\ProgramData\DAEMON Tools Pro2009-07-28 17:05:00 ----D---- C:\Users\wildcat\AppData\Roaming\DAEMON Tools Pro2009-07-28 17:02:49 ----D---- C:\Program Files\DAEMON Tools Pro2009-07-28 15:37:09 ----D---- C:\ProgramData\ALM2009-07-28 15:32:18 ----D---- C:\Program Files\Common Files\PX Storage Engine2009-07-28 15:26:02 ----RA---- C:\Windows\system32\AdobePDFUI.dll2009-07-28 15:11:26 ----D---- C:\Program Files\Common Files\Macrovision Shared2009-07-28 13:30:34 ----D---- C:\VundoFix Backups2009-07-28 13:30:34 ----A---- C:\VundoFix.txt2009-07-28 08:43:22 ----A---- C:\Windows\system32\ztvunrar36.dll2009-07-28 08:43:22 ----A---- C:\Windows\system32\ztvunace26.dll2009-07-28 08:43:22 ----A---- C:\Windows\system32\ztvcabinet.dll2009-07-28 08:43:22 ----A---- C:\Windows\system32\UNRAR3.dll2009-07-28 08:43:22 ----A---- C:\Windows\system32\unacev2.dll2009-07-28 08:43:21 ----D---- C:\ProgramData\Simply Super Software2009-07-28 08:18:37 ----D---- C:\Program Files\Trend Micro2009-07-27 15:12:04 ----D---- C:\Users\wildcat\AppData\Roaming\Malwarebytes2009-07-27 15:11:57 ----D---- C:\ProgramData\Malwarebytes2009-07-27 14:53:00 ----D---- C:\ProgramData\Spybot - Search & Destroy2009-07-27 14:53:00 ----D---- C:\Program Files\Spybot - Search & Destroy2009-07-27 14:48:10 ----A---- C:\Windows\system32\lsdelete.exe2009-07-27 14:39:31 ----D---- C:\ProgramData\Lavasoft2009-07-27 14:39:31 ----D---- C:\Program Files\Lavasoft2009-07-27 14:09:58 ----HDC---- C:\ProgramData\{EF63305C-BAD7-4144-9208-D65528260864}2009-07-27 14:06:18 ----A---- C:\Windows\ntbtlog.txt2009-07-27 12:37:25 ----D---- C:\ProgramData\195929642009-07-27 12:22:19 ----D---- C:\Windows\Minidump2009-07-27 11:59:01 ----A---- C:\Windows\system32\Uninstal.exe2009-07-27 11:56:00 ----D---- C:\Program Files\EmergeIndustries2009-07-27 11:34:59 ----D---- C:\Master Collection2009-07-27 11:33:28 ----D---- C:\Users\wildcat\AppData\Roaming\Proxima Software2009-07-27 11:27:55 ----D---- C:\Program Files\FontExpert2009-07-27 11:13:44 ----D---- C:\Program Files\uTorrent2009-07-27 11:13:13 ----D---- C:\Users\wildcat\AppData\Roaming\uTorrent2009-07-27 11:08:37 ----D---- C:\Program Files\7-Zip2009-07-27 10:32:50 ----D---- C:\Windows\system32\eu-ES2009-07-27 10:32:50 ----D---- C:\Windows\system32\ca-ES2009-07-27 10:32:49 ----D---- C:\Windows\system32\vi-VN2009-07-27 10:25:27 ----D---- C:\Windows\system32\EventProviders2009-07-27 10:25:01 ----A---- C:\Windows\system32\NlsLexicons0007.dll2009-07-27 10:24:58 ----A---- C:\Windows\system32\SLsvc.exe2009-07-27 10:24:58 ----A---- C:\Windows\system32\SLCExt.dll2009-07-27 10:24:57 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll2009-07-27 10:24:57 ----A---- C:\Windows\system32\DevicePairingWizard.exe2009-07-27 10:24:56 ----A---- C:\Windows\system32\NlsLexicons0009.dll2009-07-27 10:24:54 ----A---- C:\Windows\system32\mssrch.dll2009-07-27 10:24:53 ----A---- C:\Windows\system32\tquery.dll2009-07-27 10:24:52 ----A---- C:\Windows\system32\scavenge.dll2009-07-27 10:24:52 ----A---- C:\Windows\system32\RMActivate_isv.exe2009-07-27 10:24:52 ----A---- C:\Windows\system32\PresentationNative_v0300.dll2009-07-27 10:24:52 ----A---- C:\Windows\system32\lsasrv.dll2009-07-27 10:24:51 ----A---- C:\Windows\system32\RMActivate.exe2009-07-27 10:24:50 ----A---- C:\Windows\system32\msi.dll2009-07-27 10:24:49 ----A---- C:\Windows\system32\WscEapPr.dll2009-07-27 10:24:49 ----A---- C:\Windows\system32\wcnwiz2.dll2009-07-27 10:24:49 ----A---- C:\Windows\system32\sysmain.dll2009-07-27 10:24:49 ----A---- C:\Windows\system32\secproc_isv.dll2009-07-27 10:24:49 ----A---- C:\Windows\system32\imapi2fs.dll2009-07-27 10:24:48 ----A---- C:\Windows\system32\mf.dll2009-07-27 10:24:48 ----A---- C:\Windows\system32\icardagt.exe2009-07-27 10:24:47 ----A---- C:\Windows\system32\spreview.exe2009-07-27 10:24:47 ----A---- C:\Windows\system32\spinstall.exe2009-07-27 10:24:47 ----A---- C:\Windows\system32\EhStorShell.dll2009-07-27 10:24:47 ----A---- C:\Windows\system32\drmv2clt.dll2009-07-27 10:24:47 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll2009-07-27 10:24:46 ----A---- C:\Windows\system32\spwizui.dll2009-07-27 10:24:46 ----A---- C:\Windows\system32\shell32.dll2009-07-27 10:24:46 ----A---- C:\Windows\system32\secproc.dll2009-07-27 10:24:46 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll2009-07-27 10:24:45 ----A---- C:\Windows\system32\SearchIndexer.exe2009-07-27 10:24:45 ----A---- C:\Windows\system32\p2psvc.dll2009-07-27 10:24:44 ----A---- C:\Windows\system32\mssvp.dll2009-07-27 10:24:44 ----A---- C:\Windows\system32\mscoree.dll2009-07-27 10:24:43 ----A---- C:\Windows\system32\mssphtb.dll2009-07-27 10:24:43 ----A---- C:\Windows\system32\mssph.dll2009-07-27 10:24:43 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL2009-07-27 10:24:43 ----A---- C:\Windows\system32\imapi2.dll2009-07-27 10:24:42 ----A---- C:\Windows\system32\sdohlp.dll2009-07-27 10:24:42 ----A---- C:\Windows\system32\ntkrnlpa.exe2009-07-27 10:24:42 ----A---- C:\Windows\system32\esent.dll2009-07-27 10:24:41 ----A---- C:\Windows\system32\sperror.dll2009-07-27 10:24:41 ----A---- C:\Windows\system32\RMActivate_ssp.exe2009-07-27 10:24:41 ----A---- C:\Windows\system32\IMJP10K.DLL2009-07-27 10:24:41 ----A---- C:\Windows\system32\DevicePairing.dll2009-07-27 10:24:40 ----A---- C:\Windows\system32\wevtsvc.dll2009-07-27 10:24:40 ----A---- C:\Windows\system32\SLC.dll2009-07-27 10:24:40 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe2009-07-27 10:24:40 ----A---- C:\Windows\system32\PresentationHostProxy.dll2009-07-27 10:24:40 ----A---- C:\Windows\system32\korwbrkr.dll2009-07-27 10:24:40 ----A---- C:\Windows\system32\IasMigReader.exe2009-07-27 10:24:39 ----A---- C:\Windows\system32\wmp.dll2009-07-27 10:24:39 ----A---- C:\Windows\system32\msshsq.dll2009-07-27 10:24:38 ----A---- C:\Windows\system32\WMVCORE.DLL2009-07-27 10:24:38 ----A---- C:\Windows\system32\ntoskrnl.exe2009-07-27 10:24:38 ----A---- C:\Windows\system32\msjet40.dll2009-07-27 10:24:38 ----A---- C:\Windows\system32\MPSSVC.dll2009-07-27 10:24:37 ----A---- C:\Windows\system32\Query.dll2009-07-27 10:24:37 ----A---- C:\Windows\system32\qmgr.dll2009-07-27 10:24:37 ----A---- C:\Windows\system32\P2PGraph.dll2009-07-27 10:24:37 ----A---- C:\Windows\system32\msxml6.dll2009-07-27 10:24:37 ----A---- C:\Windows\system32\msexch40.dll2009-07-27 10:24:37 ----A---- C:\Windows\system32\diagperf.dll2009-07-27 10:24:36 ----A---- C:\Windows\system32\winload.exe2009-07-27 10:24:36 ----A---- C:\Windows\system32\srchadmin.dll2009-07-27 10:24:36 ----A---- C:\Windows\system32\ole32.dll2009-07-27 10:24:36 ----A---- C:\Windows\system32\ntdll.dll2009-07-27 10:24:36 ----A---- C:\Windows\system32\msxml3.dll2009-07-27 10:24:36 ----A---- C:\Windows\system32\mblctr.exe2009-07-27 10:24:36 ----A---- C:\Windows\system32\EncDec.dll2009-07-27 10:24:35 ----A---- C:\Windows\system32\uDWM.dll2009-07-27 10:24:35 ----A---- C:\Windows\system32\riched20.dll2009-07-27 10:24:35 ----A---- C:\Windows\system32\mmc.exe2009-07-27 10:24:35 ----A---- C:\Windows\system32\IasMigPlugin.dll2009-07-27 10:24:35 ----A---- C:\Windows\system32\fdBth.dll2009-07-27 10:24:35 ----A---- C:\Windows\system32\dfsr.exe2009-07-27 10:24:34 ----A---- C:\Windows\system32\SearchProtocolHost.exe2009-07-27 10:24:34 ----A---- C:\Windows\system32\SearchFilterHost.exe2009-07-27 10:24:34 ----A---- C:\Windows\system32\RacEngn.dll2009-07-27 10:24:34 ----A---- C:\Windows\system32\milcore.dll2009-07-27 10:24:34 ----A---- C:\Windows\system32\kernel32.dll2009-07-27 10:24:33 ----A---- C:\Windows\system32\spoolss.dll2009-07-27 10:24:33 ----A---- C:\Windows\system32\schedsvc.dll2009-07-27 10:24:33 ----A---- C:\Windows\system32\NaturalLanguage6.dll2009-07-27 10:24:33 ----A---- C:\Windows\system32\msjtes40.dll2009-07-27 10:24:33 ----A---- C:\Windows\system32\EhStorAPI.dll2009-07-27 10:24:33 ----A---- C:\Windows\system32\CertEnroll.dll2009-07-27 10:24:33 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll2009-07-27 10:24:32 ----A---- C:\Windows\system32\WinSAT.exe2009-07-27 10:24:32 ----A---- C:\Windows\system32\msvcp60.dll2009-07-27 10:24:32 ----A---- C:\Windows\system32\infocardapi.dll2009-07-27 10:24:32 ----A---- C:\Windows\system32\gpedit.dll2009-07-27 10:24:31 ----A---- C:\Windows\system32\PresentationSettings.exe2009-07-27 10:24:31 ----A---- C:\Windows\system32\mstext40.dll2009-07-27 10:24:31 ----A---- C:\Windows\system32\Magnify.exe2009-07-27 10:24:31 ----A---- C:\Windows\system32\es.dll2009-07-27 10:24:31 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll2009-07-27 10:24:31 ----A---- C:\Windows\system32\advapi32.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\WMPhoto.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\WebClnt.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\vssapi.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\slwmi.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\msxbde40.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\msexcl40.dll2009-07-27 10:24:30 ----A---- C:\Windows\system32\comsvcs.dll2009-07-27 10:24:29 ----A---- C:\Windows\system32\propsys.dll2009-07-27 10:24:29 ----A---- C:\Windows\system32\PresentationHost.exe2009-07-27 10:24:29 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll2009-07-27 10:24:29 ----A---- C:\Windows\system32\newdev.dll2009-07-27 10:24:29 ----A---- C:\Windows\system32\NetProjW.dll2009-07-27 10:24:29 ----A---- C:\Windows\system32\mstscax.dll2009-07-27 10:24:29 ----A---- C:\Windows\system32\msrepl40.dll2009-07-27 10:24:29 ----A---- C:\Windows\system32\authui.dll2009-07-27 10:24:28 ----A---- C:\Windows\system32\setupapi.dll2009-07-27 10:24:28 ----A---- C:\Windows\system32\rpcss.dll2009-07-27 10:24:28 ----A---- C:\Windows\system32\mspbde40.dll2009-07-27 10:24:28 ----A---- C:\Windows\system32\iasrecst.dll2009-07-27 10:24:28 ----A---- C:\Windows\system32\gpsvc.dll2009-07-27 10:24:28 ----A---- C:\Windows\system32\eudcedit.exe2009-07-27 10:24:28 ----A---- C:\Windows\system32\d3d9.dll2009-07-27 10:24:28 ----A---- C:\Windows\system32\crypt32.dll2009-07-27 10:24:28 ----A---- C:\Windows\explorer.exe2009-07-27 10:24:27 ----A---- C:\Windows\system32\shlwapi.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\msrd3x40.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\msltus40.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\msdtctm.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\mfc42.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\EhStorPwdMgr.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\EhStorAuthn.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\davclnt.dll2009-07-27 10:24:27 ----A---- C:\Windows\system32\browseui.dll2009-07-27 10:24:26 ----A---- C:\Windows\system32\wevtapi.dll2009-07-27 10:24:26 ----A---- C:\Windows\system32\photowiz.dll2009-07-27 10:24:26 ----A---- C:\Windows\system32\nlhtml.dll2009-07-27 10:24:25 ----A---- C:\Windows\system32\user32.dll2009-07-27 10:24:25 ----A---- C:\Windows\system32\samsrv.dll2009-07-27 10:24:25 ----A---- C:\Windows\system32\quartz.dll2009-07-27 10:24:25 ----A---- C:\Windows\system32\ci.dll2009-07-27 10:24:24 ----A---- C:\Windows\system32\win32spl.dll2009-07-27 10:24:24 ----A---- C:\Windows\system32\WcnNetsh.dll2009-07-27 10:24:24 ----A---- C:\Windows\system32\SLCommDlg.dll2009-07-27 10:24:24 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe2009-07-27 10:24:24 ----A---- C:\Windows\system32\oleaut32.dll2009-07-27 10:24:24 ----A---- C:\Windows\system32\kerberos.dll2009-07-27 10:24:23 ----A---- C:\Windows\system32\winhttp.dll2009-07-27 10:24:23 ----A---- C:\Windows\system32\netshell.dll2009-07-27 10:24:23 ----A---- C:\Windows\system32\mswstr10.dll2009-07-27 10:24:23 ----A---- C:\Windows\system32\msv1_0.dll2009-07-27 10:24:23 ----A---- C:\Windows\system32\IKEEXT.DLL2009-07-27 10:24:23 ----A---- C:\Windows\system32\compcln.exe2009-07-27 10:24:23 ----A---- C:\Windows\system32\audiosrv.dll2009-07-27 10:24:23 ----A---- C:\Windows\system32\apds.dll2009-07-27 10:24:22 ----A---- C:\Windows\system32\xmlfilter.dll2009-07-27 10:24:22 ----A---- C:\Windows\system32\VSSVC.exe2009-07-27 10:24:22 ----A---- C:\Windows\system32\QAGENTRT.DLL2009-07-27 10:24:22 ----A---- C:\Windows\system32\msvcrt.dll2009-07-27 10:24:22 ----A---- C:\Windows\system32\msctf.dll2009-07-27 10:24:22 ----A---- C:\Windows\system32\mfc42u.dll2009-07-27 10:24:22 ----A---- C:\Windows\system32\iphlpsvc.dll2009-07-27 10:24:22 ----A---- C:\Windows\system32\gdi32.dll2009-07-27 10:24:22 ----A---- C:\Windows\system32\emdmgmt.dll2009-07-27 10:24:21 ----A---- C:\Windows\system32\winresume.exe2009-07-27 10:24:21 ----A---- C:\Windows\system32\sqlsrv32.dll2009-07-27 10:24:21 ----A---- C:\Windows\system32\SLUI.exe2009-07-27 10:24:21 ----A---- C:\Windows\system32\propdefs.dll2009-07-27 10:24:21 ----A---- C:\Windows\system32\odbc32.dll2009-07-27 10:24:21 ----A---- C:\Windows\system32\msrd2x40.dll2009-07-27 10:24:21 ----A---- C:\Windows\system32\eapphost.dll2009-07-27 10:24:20 ----A---- C:\Windows\system32\wevtutil.exe2009-07-27 10:24:20 ----A---- C:\Windows\system32\shdocvw.dll2009-07-27 10:24:20 ----A---- C:\Windows\system32\mssitlb.dll2009-07-27 10:24:20 ----A---- C:\Windows\system32\dbgeng.dll2009-07-27 10:24:19 ----A---- C:\Windows\system32\WsmSvc.dll2009-07-27 10:24:19 ----A---- C:\Windows\system32\usp10.dll2009-07-27 10:24:19 ----A---- C:\Windows\system32\swprv.dll2009-07-27 10:24:19 ----A---- C:\Windows\system32\mmcndmgr.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\vds.exe2009-07-27 10:24:18 ----A---- C:\Windows\system32\schannel.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\netlogon.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\msscb.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\msctfp.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\fdBthProxy.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\evr.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\drvinst.exe2009-07-27 10:24:18 ----A---- C:\Windows\system32\devmgr.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\DevicePairingProxy.dll2009-07-27 10:24:18 ----A---- C:\Windows\system32\BFE.DLL2009-07-27 10:24:18 ----A---- C:\Windows\system32\adsldpc.dll2009-07-27 10:24:17 ----A---- C:\Windows\system32\WSDApi.dll2009-07-27 10:24:17 ----A---- C:\Windows\system32\WMVSDECD.DLL2009-07-27 10:24:17 ----A---- C:\Windows\system32\Wldap32.dll2009-07-27 10:24:17 ----A---- C:\Windows\system32\WindowsCodecs.dll2009-07-27 10:24:17 ----A---- C:\Windows\system32\wcnwiz.dll2009-07-27 10:24:17 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll2009-07-27 10:24:16 ----A---- C:\Windows\system32\wercon.exe2009-07-27 10:24:16 ----A---- C:\Windows\system32\services.exe2009-07-27 10:24:15 ----A---- C:\Windows\system32\wcncsvc.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\taskeng.exe2009-07-27 10:24:15 ----A---- C:\Windows\system32\PortableDeviceApi.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\mswdat10.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\msjter40.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\msdtcprx.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\msdrm.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\mimefilt.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\ipsmsnap.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\comdlg32.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\certcli.dll2009-07-27 10:24:15 ----A---- C:\Windows\system32\adtschema.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\WMNetMgr.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\w32time.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\umpnpmgr.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\rtffilt.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\reg.exe2009-07-27 10:24:14 ----A---- C:\Windows\system32\msshooks.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\msscntrs.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\IPSECSVC.DLL2009-07-27 10:24:14 ----A---- C:\Windows\system32\dnsapi.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\certutil.exe2009-07-27 10:24:14 ----A---- C:\Windows\system32\bthserv.dll2009-07-27 10:24:14 ----A---- C:\Windows\system32\bcrypt.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\TsWpfWrp.exe2009-07-27 10:24:13 ----A---- C:\Windows\system32\rsaenh.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\netapi32.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\mtxclu.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\msstrc.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\msihnd.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\mscories.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\MMDevAPI.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\inetpp.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\inetcomm.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\hidserv.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\fundisc.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\dhcpcsvc6.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\dfshim.dll2009-07-27 10:24:13 ----A---- C:\Windows\system32\cryptsvc.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\wmicmiplugin.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\wdc.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\termsrv.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\shsvcs.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\profsvc.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\msiexec.exe2009-07-27 10:24:12 ----A---- C:\Windows\system32\imapi.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\gameux.dll2009-07-27 10:24:12 ----A---- C:\Windows\system32\chsbrkr.dll2009-07-27 10:24:11 ----A---- C:\Windows\system32\wersvc.dll2009-07-27 10:24:11 ----A---- C:\Windows\system32\spoolsv.exe2009-07-27 10:24:11 ----A---- C:\Windows\system32\scrrun.dll2009-07-27 10:24:11 ----A---- C:\Windows\system32\rasmans.dll2009-07-27 10:24:11 ----A---- C:\Windows\system32\PSHED.DLL2009-07-27 10:24:11 ----A---- C:\Windows\system32\pnidui.dll2009-07-27 10:24:11 ----A---- C:\Windows\system32\icardres.dll2009-07-27 10:24:11 ----A---- C:\Windows\system32\iassdo.dll2009-07-27 10:24:11 ----A---- C:\Windows\system32\autofmt.exe2009-07-27 10:24:10 ----A---- C:\Windows\system32\slmgr.vbs2009-07-27 10:24:10 ----A---- C:\Windows\system32\pidgenx.dll2009-07-27 10:24:10 ----A---- C:\Windows\system32\pdh.dll2009-07-27 10:24:10 ----A---- C:\Windows\system32\dhcpcsvc.dll2009-07-27 10:24:10 ----A---- C:\Windows\system32\CertEnrollUI.dll2009-07-27 10:24:10 ----A---- C:\Windows\system32\azroles.dll2009-07-27 10:24:09 ----A---- C:\Windows\system32\wmpmde.dll2009-07-27 10:24:09 ----A---- C:\Windows\system32\winlogon.exe2009-07-27 10:24:09 ----A---- C:\Windows\system32\SyncCenter.dll2009-07-27 10:24:08 ----A---- C:\Windows\system32\SLUINotify.dll2009-07-27 10:24:08 ----A---- C:\Windows\system32\ncrypt.dll2009-07-27 10:24:08 ----A---- C:\Windows\system32\msjetoledb40.dll2009-07-27 10:24:08 ----A---- C:\Windows\system32\comuid.dll2009-07-27 10:24:08 ----A---- C:\Windows\system32\certmgr.dll2009-07-27 10:24:07 ----A---- C:\Windows\system32\WindowsCodecsExt.dll2009-07-27 10:24:07 ----A---- C:\Windows\system32\untfs.dll2009-07-27 10:24:07 ----A---- C:\Windows\system32\spp.dll2009-07-27 10:24:07 ----A---- C:\Windows\system32\sethc.exe2009-07-27 10:24:07 ----A---- C:\Windows\system32\scrobj.dll2009-07-27 10:24:07 ----A---- C:\Windows\system32\rtutils.dll2009-07-27 10:24:07 ----A---- C:\Windows\system32\kd1394.dll2009-07-27 10:24:07 ----A---- C:\Windows\system32\iassam.dll2009-07-27 10:24:06 ----A---- C:\Windows\system32\wisptis.exe2009-07-27 10:24:06 ----A---- C:\Windows\system32\taskcomp.dll2009-07-27 10:24:06 ----A---- C:\Windows\system32\printui.dll2009-07-27 10:24:06 ----A---- C:\Windows\system32\iasnap.dll2009-07-27 10:24:06 ----A---- C:\Windows\system32\dwm.exe2009-07-27 10:24:06 ----A---- C:\Windows\system32\autochk.exe2009-07-27 10:24:05 ----A---- C:\Windows\system32\wow32.dll2009-07-27 10:24:05 ----A---- C:\Windows\system32\winsrv.dll2009-07-27 10:24:05 ----A---- C:\Windows\system32\userenv.dll2009-07-27 10:24:05 ----A---- C:\Windows\system32\osk.exe2009-07-27 10:24:05 ----A---- C:\Windows\system32\onex.dll2009-07-27 10:24:05 ----A---- C:\Windows\system32\kdcom.dll2009-07-27 10:24:05 ----A---- C:\Windows\system32\cscript.exe2009-07-27 10:24:05 ----A---- C:\Windows\system32\basecsp.dll2009-07-27 10:24:05 ----A---- C:\Windows\system32\autoconv.exe2009-07-27 10:24:05 ----A---- C:\Windows\system32\audiodg.exe2009-07-27 10:24:04 ----A---- C:\Windows\system32\mswsock.dll2009-07-27 10:24:03 ----A---- C:\Windows\system32\WinSCard.dll2009-07-27 10:24:03 ----A---- C:\Windows\system32\winmm.dll2009-07-27 10:24:03 ----A---- C:\Windows\system32\spcmsg.dll2009-07-27 10:24:03 ----A---- C:\Windows\system32\RelMon.dll2009-07-27 10:24:03 ----A---- C:\Windows\system32\rdpencom.dll2009-07-27 10:24:03 ----A---- C:\Windows\system32\msftedit.dll2009-07-27 10:24:03 ----A---- C:\Windows\system32\kdusb.dll2009-07-27 10:24:02 ----A---- C:\Windows\system32\wsepno.dll2009-07-27 10:24:02 ----A---- C:\Windows\system32\WerFaultSecure.exe2009-07-27 10:24:02 ----A---- C:\Windows\system32\WerFault.exe2009-07-27 10:24:02 ----A---- C:\Windows\system32\Utilman.exe2009-07-27 10:24:02 ----A---- C:\Windows\system32\secproc_ssp_isv.dll2009-07-27 10:24:02 ----A---- C:\Windows\system32\secproc_ssp.dll2009-07-27 10:24:02 ----A---- C:\Windows\system32\offfilt.dll2009-07-27 10:24:02 ----A---- C:\Windows\system32\dnsrslvr.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\wiaservc.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\sysclass.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\stobject.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\SndVol.exe2009-07-27 10:24:01 ----A---- C:\Windows\system32\prnntfy.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\msnetobj.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\mscms.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\mfplat.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\mcmde.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\diskraid.exe2009-07-27 10:24:01 ----A---- C:\Windows\system32\apphelp.dll2009-07-27 10:24:01 ----A---- C:\Windows\system32\adsmsext.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\wscript.exe2009-07-27 10:24:00 ----A---- C:\Windows\system32\wscntfy.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\wlansvc.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\ulib.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\secur32.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\rastapi.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\pnpsetup.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\odbccp32.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\ipsecsnp.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\IPHLPAPI.DLL2009-07-27 10:24:00 ----A---- C:\Windows\system32\iasdatastore.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\fdProxy.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\dsound.dll2009-07-27 10:24:00 ----A---- C:\Windows\system32\cryptui.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\wscsvc.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\WMVENCOD.DLL2009-07-27 10:23:59 ----A---- C:\Windows\system32\wlangpui.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\vdsdyn.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\regsvc.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\rastls.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\rasapi32.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\ntprint.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\netiohlp.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\logman.exe2009-07-27 10:23:59 ----A---- C:\Windows\system32\iashlpr.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\gpapi.dll2009-07-27 10:23:59 ----A---- C:\Windows\system32\diskpart.exe2009-07-27 10:23:59 ----A---- C:\Windows\system32\brcpl.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\zipfldr.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\wusa.exe2009-07-27 10:23:58 ----A---- C:\Windows\system32\wshext.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\wpccpl.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\rasdlg.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\netcenter.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\mscorier.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\iasrad.dll2009-07-27 10:23:58 ----A---- C:\Windows\system32\findstr.exe2009-07-27 10:23:57 ----A---- C:\Windows\system32\wsnmp32.dll2009-07-27 10:23:57 ----A---- C:\Windows\system32\wer.dll2009-07-27 10:23:57 ----A---- C:\Windows\system32\themecpl.dll2009-07-27 10:23:57 ----A---- C:\Windows\system32\iassvcs.dll2009-07-27 10:23:56 ----A---- C:\Windows\system32\uxsms.dll2009-07-27 10:23:56 ----A---- C:\Windows\system32\srvsvc.dll2009-07-27 10:23:56 ----A---- C:\Windows\system32\mssprxy.dll2009-07-27 10:23:55 ----A---- C:\Windows\system32\tsbyuv.dll2009-07-27 10:23:55 ----A---- C:\Windows\system32\slcc.dll2009-07-27 10:23:55 ----A---- C:\Windows\system32\scansetting.dll2009-07-27 10:23:55 ----A---- C:\Windows\system32\ntmarta.dll2009-07-27 10:23:55 ----A---- C:\Windows\system32\msutb.dll2009-07-27 10:23:55 ----A---- C:\Windows\system32\mstlsapi.dll2009-07-27 10:23:55 ----A---- C:\Windows\system32\iasads.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\wlanhlp.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\powrprof.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\powercpl.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\PerfCenterCPL.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\newdev.exe2009-07-27 10:23:54 ----A---- C:\Windows\system32\networkmap.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\mstsc.exe2009-07-27 10:23:54 ----A---- C:\Windows\system32\iasacct.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\connect.dll2009-07-27 10:23:54 ----A---- C:\Windows\system32\authz.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\usercpl.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\themeui.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\systemcpl.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\sud.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\samlib.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\pcaui.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\mmci.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\dot3svc.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\autoplay.dll2009-07-27 10:23:53 ----A---- C:\Windows\system32\accessibilitycpl.dll2009-07-27 10:23:52 ----A---- C:\Windows\system32\wpcao.dll2009-07-27 10:23:52 ----A---- C:\Windows\system32\wlanpref.dll2009-07-27 10:23:52 ----A---- C:\Windows\system32\vdsutil.dll2009-07-27 10:23:52 ----A---- C:\Windows\system32\rpchttp.dll2009-07-27 10:23:52 ----A---- C:\Windows\system32\regapi.dll2009-07-27 10:23:52 ----A---- C:\Windows\system32\qdvd.dll2009-07-27 10:23:52 ----A---- C:\Windows\system32\msinfo32.exe2009-07-27 10:23:51 ----A---- C:\Windows\system32\tapisrv.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\scksp.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\scesrv.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\psisdecd.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\oleprn.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\mpr.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\imm32.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\feclient.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\dot3msm.dll2009-07-27 10:23:51 ----A---- C:\Windows\system32\AudioSes.dll2009-07-27 10:23:50 ----A---- C:\Windows\system32\wscisvif.dll2009-07-27 10:23:50 ----A---- C:\Windows\system32\sdclt.exe2009-07-27 10:23:50 ----A---- C:\Windows\system32\rekeywiz.exe2009-07-27 10:23:50 ----A---- C:\Windows\system32\iaspolcy.dll2009-07-27 10:23:50 ----A---- C:\Windows\system32\Faultrep.dll2009-07-27 10:23:50 ----A---- C:\Windows\system32\dpapimig.exe2009-07-27 10:23:50 ----A---- C:\Windows\system32\DeviceEject.exe2009-07-27 10:23:49 ----A---- C:\Windows\system32\scecli.dll2009-07-27 10:23:49 ----A---- C:\Windows\system32\rasgcw.dll2009-07-27 10:23:49 ----A---- C:\Windows\system32\qedit.dll2009-07-27 10:23:49 ----A---- C:\Windows\system32\pnpui.dll2009-07-27 10:23:49 ----A---- C:\Windows\system32\perfdisk.dll2009-07-27 10:23:49 ----A---- C:\Windows\system32\ncryptui.dll2009-07-27 10:23:49 ----A---- C:\Windows\system32\hdwwiz.exe2009-07-27 10:23:49 ----A---- C:\Windows\system32\FWPUCLNT.DLL2009-07-27 10:23:49 ----A---- C:\Windows\system32\certreq.exe2009-07-27 10:23:48 ----A---- C:\Windows\system32\whealogr.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\TSTheme.exe2009-07-27 10:23:48 ----A---- C:\Windows\system32\tcpmon.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\tcpipcfg.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\srcore.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\spwinsat.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\rasplap.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\PnPUnattend.exe2009-07-27 10:23:48 ----A---- C:\Windows\system32\fdWSD.dll2009-07-27 10:23:48 ----A---- C:\Windows\system32\cmmon32.exe2009-07-27 10:23:48 ----A---- C:\Windows\system32\cmdial32.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\WMVXENCD.DLL2009-07-27 10:23:47 ----A---- C:\Windows\system32\wlanui.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\wiaaut.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\SnippingTool.exe2009-07-27 10:23:47 ----A---- C:\Windows\system32\shwebsvc.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\SCardSvr.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\rasppp.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\raschap.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\PnPutil.exe2009-07-27 10:23:47 ----A---- C:\Windows\system32\MSVidCtl.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\fontext.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\dsprop.dll2009-07-27 10:23:47 ----A---- C:\Windows\system32\conime.exe2009-07-27 10:23:46 ----A---- C:\Windows\system32\wlanmsm.dll2009-07-27 10:23:46 ----A---- C:\Windows\system32\shsetup.dll2009-07-27 10:23:46 ----A---- C:\Windows\system32\rasmontr.dll2009-07-27 10:23:46 ----A---- C:\Windows\system32\oobefldr.dll2009-07-27 10:23:46 ----A---- C:\Windows\system32\modemui.dll2009-07-27 10:23:46 ----A---- C:\Windows\system32\dimsroam.dll2009-07-27 10:23:45 ----A---- C:\Windows\system32\wmdrmsdk.dll2009-07-27 10:23:45 ----A---- C:\Windows\system32\mscandui.dll2009-07-27 10:23:45 ----A---- C:\Windows\system32\chtbrkr.dll2009-07-27 10:23:44 ----A---- C:\Windows\system32\wlgpclnt.dll2009-07-27 10:23:44 ----A---- C:\Windows\system32\dataclen.dll2009-07-27 10:23:44 ----A---- C:\Windows\system32\blackbox.dll2009-07-27 10:23:43 ----A---- C:\Windows\system32\smss.exe2009-07-27 10:23:43 ----A---- C:\Windows\system32\rdpwsx.dll2009-07-27 10:23:43 ----A---- C:\Windows\system32\netplwiz.dll2009-07-27 10:23:43 ----A---- C:\Windows\system32\credui.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\WSDMon.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\wpcsvc.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\wmpeffects.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\networkexplorer.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\msscp.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\logagent.exe2009-07-27 10:23:42 ----A---- C:\Windows\system32\InkEd.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\ifmon.dll2009-07-27 10:23:42 ----A---- C:\Windows\system32\cipher.exe2009-07-27 10:23:42 ----A---- C:\Windows\system32\certprop.dll2009-07-27 10:23:41 ----A---- C:\Windows\system32\wscapi.dll2009-07-27 10:23:41 ----A---- C:\Windows\system32\thawbrkr.dll2009-07-27 10:23:41 ----A---- C:\Windows\system32\softkbd.dll2009-07-27 10:23:41 ----A---- C:\Windows\system32\sendmail.dll2009-07-27 10:23:41 ----A---- C:\Windows\system32\msimtf.dll2009-07-27 10:23:41 ----A---- C:\Windows\system32\gpresult.exe2009-07-27 10:23:40 ----A---- C:\Windows\system32\olepro32.dll2009-07-27 10:23:40 ----A---- C:\Windows\system32\msctfui.dll2009-07-27 10:23:40 ----A---- C:\Windows\system32\MediaMetadataHandler.dll2009-07-27 10:23:40 ----A---- C:\Windows\system32\drmmgrtn.dll2009-07-27 10:23:40 ----A---- C:\Windows\system32\dmsynth.dll2009-07-27 10:23:40 ----A---- C:\Windows\system32\Apphlpdm.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\wshbth.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\version.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\SLLUA.exe2009-07-27 10:23:39 ----A---- C:\Windows\system32\puiapi.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\msisip.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\mprapi.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\input.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\fc.exe2009-07-27 10:23:39 ----A---- C:\Windows\system32\ExplorerFrame.dll2009-07-27 10:23:39 ----A---- C:\Windows\system32\cdd.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\msjint40.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\MsCtfMonitor.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\l2nacp.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\ftp.exe2009-07-27 10:23:38 ----A---- C:\Windows\system32\fdSSDP.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\eapp3hst.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\dmusic.dll2009-07-27 10:23:38 ----A---- C:\Windows\system32\cscapi.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\wsdchngr.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\Storprop.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\SMBHelperClass.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\rrinstaller.exe2009-07-27 10:23:37 ----A---- C:\Windows\system32\rasdial.exe2009-07-27 10:23:37 ----A---- C:\Windows\system32\rasdiag.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\PortableDeviceTypes.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\fdWCN.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\cscdll.dll2009-07-27 10:23:37 ----A---- C:\Windows\system32\bthudtask.exe2009-07-27 10:23:37 ----A---- C:\Windows\system32\bthci.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\tscupgrd.exe2009-07-27 10:23:36 ----A---- C:\Windows\system32\slcinst.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\ocsetup.exe2009-07-27 10:23:36 ----A---- C:\Windows\system32\nslookup.exe2009-07-27 10:23:36 ----A---- C:\Windows\system32\networkitemfactory.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\mfps.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\ipconfig.exe2009-07-27 10:23:36 ----A---- C:\Windows\system32\hbaapi.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\FwRemoteSvr.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\eappgnui.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\eappcfg.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\dot3cfg.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\CHxReadingStringIME.dll2009-07-27 10:23:36 ----A---- C:\Windows\system32\aaclient.dll2009-07-27 10:23:35 ----A---- C:\Windows\system32\tsgqec.dll2009-07-27 10:23:35 ----A---- C:\Windows\system32\PNPXAssoc.dll2009-07-27 10:23:35 ----A---- C:\Windows\system32\mmcico.dll2009-07-27 10:23:35 ----A---- C:\Windows\system32\mfpmp.exe2009-07-27 10:23:35 ----A---- C:\Windows\system32\iscsilog.dll2009-07-27 10:23:35 ----A---- C:\Windows\system32\gpupdate.exe2009-07-27 10:23:35 ----A---- C:\Windows\system32\fdeploy.dll2009-07-27 10:23:35 ----A---- C:\Windows\system32\csrstub.exe2009-07-27 10:23:35 ----A---- C:\Windows\system32\cbsra.exe2009-07-27 10:23:35 ----A---- C:\Windows\system32\bitsigd.dll2009-07-27 10:23:34 ----A---- C:\Windows\system32\winrnr.dll2009-07-27 10:23:34 ----A---- C:\Windows\system32\vdmdbg.dll2009-07-27 10:23:34 ----A---- C:\Windows\system32\slwga.dll2009-07-27 10:23:34 ----A---- C:\Windows\system32\odbcconf.dll2009-07-27 10:23:34 ----A---- C:\Windows\system32\NcdProp.dll2009-07-27 10:23:34 ----A---- C:\Windows\system32\inetppui.dll2009-07-27 10:23:33 ----A---- C:\Windows\system32\midimap.dll2009-07-27 10:23:32 ----A---- C:\Windows\system32\spwmp.dll2009-07-27 10:23:31 ----A---- C:\Windows\system32\wmploc.DLL2009-07-27 10:23:31 ----A---- C:\Windows\system32\f3ahvoas.dll2009-07-27 10:23:31 ----A---- C:\Windows\system32\dxmasf.dll2009-07-27 10:23:30 ----A---- C:\Windows\system32\msimsg.dll2009-07-27 10:23:30 ----A---- C:\Windows\system32\mferror.dll2009-07-27 10:23:19 ----A---- C:\Windows\system32\SmiEngine.dll2009-07-27 10:23:16 ----A---- C:\Windows\system32\wdscore.dll2009-07-27 10:23:16 ----A---- C:\Windows\system32\PkgMgr.exe2009-07-27 10:23:09 ----A---- C:\Windows\system32\drvstore.dll2009-07-27 09:25:40 ----D---- C:\Program Files\Microsoft Visual Studio2009-07-27 09:25:40 ----D---- C:\Program Files\Common Files\DESIGNER2009-07-27 09:25:07 ----D---- C:\Windows\PCHEALTH2009-07-27 09:25:07 ----D---- C:\Program Files\Microsoft.NET2009-07-27 09:23:09 ----D---- C:\Program Files\Microsoft Visual Studio 82009-07-27 09:21:32 ----RHD---- C:\MSOCache2009-07-27 09:08:11 ----A---- C:\Windows\system32\TUProgSt.exe2009-07-27 09:08:10 ----A---- C:\Windows\system32\uxtuneup.dll2009-07-27 09:08:10 ----A---- C:\Windows\system32\authuitu.dll2009-07-27 09:08:07 ----A---- C:\Windows\system32\TuneUpDefragService.exe2009-07-27 09:06:37 ----D---- C:\Users\wildcat\AppData\Roaming\TuneUp Software2009-07-27 09:06:14 ----D---- C:\Program Files\TuneUp Utilities 20092009-07-27 09:06:13 ----D---- C:\ProgramData\TuneUp Software2009-07-27 09:05:44 ----SHD---- C:\ProgramData\{55A29068-F2CE-456C-9148-C869879E2357}2009-07-24 09:32:34 ----D---- C:\Program Files\Simplify Media2009-07-23 17:04:00 ----A---- C:\Windows\system32\GEARAspi.dll2009-07-23 17:03:52 ----D---- C:\Program Files\iPod2009-07-23 17:03:50 ----D---- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}2009-07-23 17:03:50 ----D---- C:\Program Files\iTunes2009-07-23 17:02:36 ----D---- C:\Program Files\QuickTime2009-07-23 16:55:16 ----D---- C:\Program Files\Bonjour2009-07-23 16:53:01 ----D---- C:\Users\wildcat\AppData\Roaming\Apple Computer2009-07-23 16:52:35 ----DC---- C:\Windows\system32\DRVSTORE2009-07-23 16:51:28 ----D---- C:\ProgramData\Apple Computer2009-07-23 16:51:06 ----D---- C:\Program Files\Apple Software Update2009-07-23 16:50:33 ----D---- C:\Program Files\Common Files\Apple2009-07-23 16:50:32 ----D---- C:\ProgramData\Apple2009-07-22 11:03:08 ----A---- C:\Windows\system32\deploytk.dll2009-07-22 11:03:07 ----A---- C:\Windows\system32\javaws.exe2009-07-22 11:03:07 ----A---- C:\Windows\system32\javaw.exe2009-07-22 11:03:07 ----A---- C:\Windows\system32\java.exe2009-07-22 09:58:57 ----D---- C:\Users\wildcat\AppData\Roaming\TweetDeckFast.F9107117265DB7542C1A806C8DB837742CE14C21.12009-07-22 09:58:53 ----D---- C:\Program Files\TweetDeck2009-07-22 09:45:01 ----D---- C:\Users\wildcat\AppData\Roaming\Mozilla2009-07-22 09:44:50 ----D---- C:\Program Files\Mozilla Firefox2009-07-22 08:59:13 ----D---- C:\ProgramData\AVG Security Toolbar2009-07-21 15:18:43 ----D---- C:\Users\wildcat\AppData\Roaming\Mimaki2009-07-21 13:20:55 ----A---- C:\Windows\system32\netfxperf.dll2009-07-21 13:19:19 ----A---- C:\Windows\system32\mshtmled.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\msls31.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\mshtmler.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\imgutil.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\ieakeng.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\icardie.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\dxtrans.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\dxtmsft.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\corpol.dll2009-07-21 13:19:18 ----A---- C:\Windows\system32\admparse.dll2009-07-21 13:19:17 ----A---- C:\Windows\system32\webcheck.dll2009-07-21 13:19:17 ----A---- C:\Windows\system32\msrating.dll2009-07-21 13:19:17 ----A---- C:\Windows\system32\licmgr10.dll2009-07-21 13:19:17 ----A---- C:\Windows\system32\inseng.dll2009-07-21 13:19:17 ----A---- C:\Windows\system32\ieakui.dll2009-07-21 13:19:17 ----A---- C:\Windows\system32\ieaksie.dll2009-07-21 13:19:16 ----A---- C:\Windows\system32\WinFXDocObj.exe2009-07-21 13:19:16 ----A---- C:\Windows\system32\wextract.exe2009-07-21 13:19:16 ----A---- C:\Windows\system32\vbscript.dll2009-07-21 13:19:16 ----A---- C:\Windows\system32\pngfilt.dll2009-07-21 13:19:16 ----A---- C:\Windows\system32\mstime.dll2009-07-21 13:19:16 ----A---- C:\Windows\system32\jscript.dll2009-07-21 13:19:16 ----A---- C:\Windows\system32\ieapfltr.dll2009-07-21 13:19:16 ----A---- C:\Windows\system32\advpack.dll2009-07-21 13:19:15 ----A---- C:\Windows\system32\url.dll2009-07-21 13:19:15 ----A---- C:\Windows\system32\mshta.exe2009-07-21 13:19:15 ----A---- C:\Windows\system32\iexpress.exe2009-07-21 13:19:14 ----A---- C:\Windows\system32\SetIEInstalledDate.exe2009-07-21 13:19:14 ----A---- C:\Windows\system32\SetDepNx.exe2009-07-21 13:19:14 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe2009-07-21 13:19:14 ----A---- C:\Windows\system32\PDMSetup.exe2009-07-21 12:28:19 ----A---- C:\Windows\system32\t2embed.dll2009-07-21 12:28:19 ----A---- C:\Windows\system32\lpk.dll2009-07-21 12:28:19 ----A---- C:\Windows\system32\fontsub.dll2009-07-21 12:28:19 ----A---- C:\Windows\system32\dciman32.dll2009-07-21 12:28:19 ----A---- C:\Windows\system32\atmlib.dll2009-07-21 12:28:19 ----A---- C:\Windows\system32\atmfd.dll2009-07-21 12:28:17 ----A---- C:\Windows\system32\localspl.dll2009-07-21 12:28:16 ----A---- C:\Windows\system32\rpcrt4.dll2009-07-20 16:46:25 ----A---- C:\Windows\system32\ftserui2.dll2009-07-20 16:46:25 ----A---- C:\Windows\system32\FTLang.dll2009-07-20 16:45:53 ----A---- C:\Windows\system32\ftdiunin.exe2009-07-20 16:45:53 ----A---- C:\Windows\system32\ftdiun2k.ini2009-07-20 16:45:53 ----A---- C:\Windows\system32\ftd2xx.dll2009-07-20 16:45:53 ----A---- C:\Windows\system32\ftbusui.dll2009-06-26 15:56:39 ----R---- C:\Windows\system32\SAiLicSvr.exe2009-06-26 15:56:31 ----D---- C:\Sprint2009-06-26 15:55:40 ----D---- C:\Program Files\Common Files\SafeNet Sentinel2009-06-26 15:55:38 ----D---- C:\Windows\Downloaded Installations2009-06-26 15:54:42 ----N---- C:\Windows\system32\SAiDownloaderVista.exe2009-06-26 15:54:42 ----N---- C:\Windows\system32\SAiAdmin.exe2009-06-26 15:54:42 ----N---- C:\Windows\system32\gdiplus.dll2009-06-26 15:54:42 ----D---- C:\Program Files\Common Files\SAi2009-06-26 15:53:15 ----D---- C:\Program Files\SAi2009-06-26 15:53:14 ----RA---- C:\Windows\system32\HotFldrUI.dll2009-06-16 14:13:51 ----D---- C:\Users\wildcat\AppData\Roaming\Ludia2009-06-16 14:13:51 ----D---- C:\ProgramData\Ludia2009-06-16 14:12:52 ----D---- C:\ProgramData\Sony Online Entertainment======List of files/folders modified in the last 3 months======2009-07-31 09:00:37 ----D---- C:\Windows\Prefetch2009-07-31 09:00:28 ----D---- C:\Windows\Temp2009-07-31 04:06:07 ----HD---- C:\$AVG8.VAULT$2009-07-31 03:02:12 ----SHD---- C:\Windows\Installer2009-07-31 03:01:54 ----D---- C:\Program Files\Microsoft Silverlight2009-07-31 03:01:13 ----SHD---- C:\System Volume Information2009-07-30 15:09:37 ----D---- C:\Windows\system32\Tasks2009-07-30 10:15:44 ----SD---- C:\Windows\Downloaded Program Files2009-07-30 10:15:43 ----RD---- C:\Program Files2009-07-30 09:45:02 ----HD---- C:\ProgramData2009-07-30 09:45:02 ----D---- C:\Windows\System322009-07-30 09:44:50 ----D---- C:\Windows\inf2009-07-30 09:44:50 ----A---- C:\Windows\system32\PerfStringBackup.INI2009-07-30 09:44:38 ----D---- C:\Program Files\Common Files2009-07-30 09:26:51 ----D---- C:\Windows\system32\drivers2009-07-30 08:45:16 ----D---- C:\Windows\system32\en-US2009-07-30 08:43:16 ----D---- C:\Windows2009-07-30 08:43:16 ----A---- C:\Windows\system.ini2009-07-30 08:36:56 ----D---- C:\Windows\AppPatch2009-07-29 03:06:06 ----D---- C:\Windows\system32\migration2009-07-29 03:06:06 ----D---- C:\Program Files\Internet Explorer2009-07-29 03:00:52 ----D---- C:\Windows\winsxs2009-07-29 02:56:30 ----D---- C:\Windows\system32\catroot22009-07-29 02:56:30 ----D---- C:\Windows\system32\catroot2009-07-28 22:12:05 ----RSD---- C:\Windows\Fonts2009-07-28 16:13:47 ----D---- C:\Program Files\Common Files\Adobe2009-07-28 16:13:09 ----D---- C:\Users\wildcat\AppData\Roaming\Adobe2009-07-28 15:39:33 ----D---- C:\Program Files\Adobe2009-07-28 15:24:20 ----D---- C:\ProgramData\Adobe2009-07-28 09:19:12 ----AD---- C:\ProgramData\Temp2009-07-27 15:21:00 ----D---- C:\Windows\system32\WDI2009-07-27 14:43:00 ----D---- C:\ProgramData\avg82009-07-27 14:41:09 ----D---- C:\Windows\Tasks2009-07-27 12:23:37 ----D---- C:\ProgramData\NVIDIA2009-07-27 11:00:46 ----D---- C:\Windows\Microsoft.NET2009-07-27 11:00:45 ----RSD---- C:\Windows\assembly2009-07-27 10:55:33 ----D---- C:\Windows\rescache2009-07-27 10:50:30 ----D---- C:\ProgramData\Microsoft Help2009-07-27 10:39:42 ----SHD---- C:\Boot2009-07-27 10:33:19 ----D---- C:\Program Files\Windows Sidebar2009-07-27 10:33:19 ----D---- C:\Program Files\Windows Media Player2009-07-27 10:33:19 ----D---- C:\Program Files\Windows Mail2009-07-27 10:33:19 ----D---- C:\Program Files\Windows Journal2009-07-27 10:33:19 ----D---- C:\Program Files\Windows Collaboration2009-07-27 10:33:19 ----D---- C:\Program Files\Windows Calendar2009-07-27 10:33:19 ----D---- C:\Program Files\Movie Maker2009-07-27 10:33:18 ----D---- C:\Windows\servicing2009-07-27 10:33:18 ----D---- C:\Windows\ehome2009-07-27 10:33:18 ----D---- C:\Program Files\Windows Photo Gallery2009-07-27 10:33:18 ----D---- C:\Program Files\Windows Defender2009-07-27 10:33:18 ----D---- C:\Program Files\Common Files\System2009-07-27 10:33:10 ----D---- C:\Windows\system32\XPSViewer2009-07-27 10:33:10 ----D---- C:\Windows\system32\sk-SK2009-07-27 10:33:10 ----D---- C:\Windows\system32\lv-LV2009-07-27 10:33:10 ----D---- C:\Windows\system32\ko-KR2009-07-27 10:33:10 ----D---- C:\Windows\system32\hr-HR2009-07-27 10:33:10 ----D---- C:\Windows\system32\et-EE2009-07-27 10:33:10 ----D---- C:\Windows\system32\da-DK2009-07-27 10:33:10 ----D---- C:\Windows\IME2009-07-27 10:33:08 ----D---- C:\Windows\system32\sv-SE2009-07-27 10:33:08 ----D---- C:\Windows\system32\SLUI2009-07-27 10:33:08 ----D---- C:\Windows\system32\setup2009-07-27 10:33:08 ----D---- C:\Windows\system32\ru-RU2009-07-27 10:33:08 ----D---- C:\Windows\system32\pt-PT2009-07-27 10:33:08 ----D---- C:\Windows\system32\oobe2009-07-27 10:33:08 ----D---- C:\Windows\system32\it-IT2009-07-27 10:33:08 ----D---- C:\Windows\system32\hu-HU2009-07-27 10:33:08 ----D---- C:\Windows\system32\he-IL2009-07-27 10:33:08 ----D---- C:\Windows\system32\fr-FR2009-07-27 10:33:08 ----D---- C:\Windows\system32\fi-FI2009-07-27 10:33:08 ----D---- C:\Windows\system32\el-GR2009-07-27 10:33:08 ----D---- C:\Windows\system32\de-DE2009-07-27 10:33:08 ----D---- C:\Windows\system32\cs-CZ2009-07-27 10:33:08 ----D---- C:\Windows\system32\AdvancedInstallers2009-07-27 10:33:05 ----D---- C:\Windows\system32\zh-TW2009-07-27 10:33:05 ----D---- C:\Windows\system32\zh-CN2009-07-27 10:33:05 ----D---- C:\Windows\system32\uk-UA2009-07-27 10:33:05 ----D---- C:\Windows\system32\th-TH2009-07-27 10:33:05 ----D---- C:\Windows\system32\sr-Latn-CS2009-07-27 10:33:05 ----D---- C:\Windows\system32\sl-SI2009-07-27 10:33:05 ----D---- C:\Windows\system32\ro-RO2009-07-27 10:33:05 ----D---- C:\Windows\system32\pl-PL2009-07-27 10:33:05 ----D---- C:\Windows\system32\manifeststore2009-07-27 10:33:05 ----D---- C:\Windows\system32\ja-JP2009-07-27 10:33:05 ----D---- C:\Windows\system32\es-ES2009-07-27 10:33:05 ----D---- C:\Windows\system32\en2009-07-27 10:33:05 ----D---- C:\Windows\system32\bg-BG2009-07-27 10:33:04 ----D---- C:\Windows\system32\wbem2009-07-27 10:33:04 ----D---- C:\Windows\system32\tr-TR2009-07-27 10:33:03 ----D---- C:\Windows\system32\pt-BR2009-07-27 10:33:03 ----D---- C:\Windows\system32\nl-NL2009-07-27 10:33:03 ----D---- C:\Windows\system32\nb-NO2009-07-27 10:33:03 ----D---- C:\Windows\system32\migwiz2009-07-27 10:33:03 ----D---- C:\Windows\system32\lt-LT2009-07-27 10:33:03 ----D---- C:\Windows\system32\ar-SA2009-07-27 10:32:49 ----D---- C:\Windows\system32\Boot2009-07-27 10:32:11 ----D---- C:\Windows\system32\RTCOM2009-07-27 10:01:45 ----SD---- C:\Users\wildcat\AppData\Roaming\Microsoft2009-07-27 09:55:07 ----D---- C:\Program Files\Common Files\microsoft shared2009-07-27 09:54:40 ----D---- C:\Program Files\Microsoft Works2009-07-27 09:52:39 ----A---- C:\Windows\win.ini2009-07-27 09:26:03 ----D---- C:\Program Files\MSBuild2009-07-27 09:25:53 ----D---- C:\Program Files\Microsoft Office2009-07-27 09:25:37 ----D---- C:\Windows\ShellNew2009-07-27 09:25:07 ----SD---- C:\ProgramData\Microsoft2009-07-27 08:50:57 ----D---- C:\Program Files\Common Files\InstallShield2009-07-27 08:50:54 ----HD---- C:\Program Files\InstallShield Installation Information2009-07-22 11:02:40 ----D---- C:\Program Files\Java2009-07-22 09:58:51 ----D---- C:\Program Files\Common Files\Adobe AIR2009-07-22 08:58:45 ----A---- C:\Windows\system32\avgrsstx.dll2009-07-21 13:44:28 ----D---- C:\Windows\PolicyDefinitions2009-07-21 08:53:48 ----D---- C:\Windows\Debug2009-07-07 08:10:58 ----A---- C:\Windows\system32\mrt.exe2009-07-06 16:25:39 ----D---- C:\Program Files\SMINST2009-06-26 15:56:40 ----SD---- C:\Windows\system32\Microsoft2009-06-23 15:27:17 ----D---- C:\ProgramData\WildTangent2009-06-11 17:04:24 ----D---- C:\Windows\system32\NDF2009-06-01 16:55:26 ----D---- C:\Windows\system32\LogFiles======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2009-07-27 335752]R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\Windows\System32\Drivers\avgmfx86.sys [2009-07-22 27784]R1 AvgTdiX;AVG Free8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2009-05-02 108552]R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720]R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2008-09-04 8704]R3 catchme;catchme; \??\C:\Combo-Fix\catchme.sys []R3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2006-05-17 47249]R3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2006-05-17 61067]R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]R3 HSF_DP;HSF_DP; C:\Windows\system32\DRIVERS\HSX_DP.sys [2008-09-10 980992]R3 HSXHWBS2;HSXHWBS2; C:\Windows\system32\DRIVERS\HSXHWBS2.sys [2008-09-10 266752]R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-09-24 2171672]R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2008-08-01 1052704]R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-09-27 7478496]R3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\Windows\system32\DRIVERS\SNTNLUSB.SYS [2008-07-11 37088]R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-09-10 661504]S3 aael039y;aael039y; C:\Windows\system32\drivers\aael039y.sys []S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-20 5632]S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-20 8192]S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-20 5888]S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-20 5504]S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-20 6016]S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-20 39936]S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-20 83328]S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-20 6656]S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-20 386616]S4 nvrd32;NVIDIA nForce RAID Driver; C:\Windows\system32\drivers\nvrd32.sys [2008-07-21 133152]S4 nvsmu;nvsmu; C:\Windows\system32\drivers\nvsmu.sys [2008-05-22 15360]S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2008-01-20 11264]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712]R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-07-27 907032]R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-07-22 298776]R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-10-09 94208]R2 iPFDeviceAgentService;iPF Device Agent Service; C:\Windows\system32\Cnwiolss.exe [2007-03-12 161872]R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-07-03 1029456]R2 LightScribeService;LightScribeService Direct Disc Labeling Service; c:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-08-22 73728]R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-09-27 118784]R2 SAiAdmin;SAiAdmin; C:\Windows\System32\SAiAdmin.exe [2007-08-27 65536]R2 SAiDownloader;SAiDownloader; C:\Program Files\SAi\SAi Production Suite\Program\SAiDownloaderVistaUI.exe [2007-09-11 417792]R2 SAiDownloaderVista;SAiDownloaderVista; C:\Windows\System32\SAiDownloaderVista.exe [2007-09-11 77824]R2 SAiLicSvr;SAiLicSvr; C:\Windows\System32\SAiLicSvr.exe [2007-12-19 86016]R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]R2 SentinelKeysServer;Sentinel Keys Server; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2008-07-11 328992]R2 TuneUp.ProgramStatisticsSvc;@%SystemRoot%\System32\TUProgSt.exe,-1; C:\Windows\System32\TUProgSt.exe [2009-07-27 604416]R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2008-01-20 21504]R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2008-09-04 403968]R3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-07-28 655624]R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496]S3 Adobe Version Cue CS4;Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2008-05-05 165416]S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-24 182768]S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]S3 TuneUp.Defrag;@%SystemRoot%\System32\TuneUpDefragService.exe,-1; C:\Windows\System32\TuneUpDefragService.exe [2009-07-27 361216]-----------------EOF-----------------

and here are the results in the info.txt file:

info.txt logfile of random's system information tool 1.06 2009-07-31 09:00:49======Uninstall list======-->"C:\Program Files\HP Games\Agatha Christie - Death on the Nile\Uninstall.exe"-->"C:\Program Files\HP Games\Bejeweled 2 Deluxe\Uninstall.exe"-->"C:\Program Files\HP Games\Big City Adventures San Francisco\Uninstall.exe"-->"C:\Program Files\HP Games\Blackhawk Striker 2\Uninstall.exe"-->"C:\Program Files\HP Games\Blasterball 3\Uninstall.exe"-->"C:\Program Files\HP Games\Build-a-lot 2\Uninstall.exe"-->"C:\Program Files\HP Games\Chuzzle Deluxe\Uninstall.exe"-->"C:\Program Files\HP Games\Diner Dash Hometown Hero\Uninstall.exe"-->"C:\Program Files\HP Games\Dream Chronicles 2\Uninstall.exe"-->"C:\Program Files\HP Games\Family Feud 3\Uninstall.exe"-->"C:\Program Files\HP Games\FATE\Uninstall.exe"-->"C:\Program Files\HP Games\Jewel Quest Solitaire 2\Uninstall.exe"-->"C:\Program Files\HP Games\JoJo's Fashion Show\Uninstall.exe"-->"C:\Program Files\HP Games\Luxor 3\Uninstall.exe"-->"C:\Program Files\HP Games\My HP Game Console\Uninstall.exe"-->"C:\Program Files\HP Games\Mystery P.I. - The Vegas Heist\Uninstall.exe"-->"C:\Program Files\HP Games\Peggle\Uninstall.exe"-->"C:\Program Files\HP Games\Penguins!\Uninstall.exe"-->"C:\Program Files\HP Games\Poker Superstars III\Uninstall.exe"-->"C:\Program Files\HP Games\Polar Bowler\Uninstall.exe"-->"C:\Program Files\HP Games\Polar Golfer\Uninstall.exe"-->"C:\Program Files\HP Games\Polar Pool\Uninstall.exe"-->"C:\Program Files\HP Games\Slingo Deluxe\Uninstall.exe"-->"C:\Program Files\HP Games\SPORE Creature Creator Trial Edition\Uninstall.exe"-->"C:\Program Files\HP Games\The Hidden Object Game Show\Uninstall.exe"-->"C:\Program Files\HP Games\The Price is Right\Uninstall.exe"-->"C:\Program Files\HP Games\Tradewinds Legends\Uninstall.exe"-->"C:\Program Files\HP Games\Virtual Villagers - A New Home\Uninstall.exe"-->"C:\Program Files\HP Games\Virtual Villagers - The Secret City\Uninstall.exe"-->"C:\Program Files\HP Games\Wedding Dash\Uninstall.exe"-->"C:\Program Files\HP Games\Wheel of Fortune 2\Uninstall.exe"-->"C:\Program Files\HP Games\Zuma Deluxe\Uninstall.exe"-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-00BA-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0114-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}2007 Microsoft Office Suite Service Pack 2 (SP2)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"ACDSee Photo Manager 2009-->MsiExec.exe /I{300578F9-9EFF-4B93-9AB1-C0E5707EF463}Acrobat.com-->MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}ActiveCheck component for HP Active Support Library-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}Ad-Aware-->"C:\ProgramData\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exe" REMOVE=TRUE MODIFY=FALSEAd-Aware-->C:\ProgramData\{EF63305C-BAD7-4144-9208-D65528260864}\Ad-AwareAE.exeAdobe After Effects CS4 Presets-->MsiExec.exe /I{44E240EC-2224-4078-A88B-2CEE0D3016EF}Adobe After Effects CS4-->MsiExec.exe /I{45EC816C-0771-4C14-AE6D-72D1B578F4C8}Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstallAdobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}Adobe Asset Services CS4-->MsiExec.exe /I{B9F4561A-924D-4510-A85A-BB0960C338CB}Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191}Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}Adobe Color EU Extra Settings CS4-->MsiExec.exe /I{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}Adobe Color NA Recommended Settings CS4-->MsiExec.exe /I{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}Adobe Color Video Profiles AE CS4-->MsiExec.exe /I{B15381DD-FF97-4FCD-A881-ED4DB0975500}Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D}Adobe Contribute CS4-->MsiExec.exe /I{A6EC82A0-1414-475D-8AFD-469089F3080D}Adobe Creative Suite 4 Master Collection-->C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02\Setup.exe --uninstall=1Adobe Creative Suite 4 Master Collection-->MsiExec.exe /I{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}Adobe CS4 American English Speech Analysis Models-->MsiExec.exe /I{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683}Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}Adobe Dreamweaver CS4-->MsiExec.exe /I{30C8AA56-4088-426F-91D1-0EDFD3A25678}Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C}Adobe Dynamiclink Support-->MsiExec.exe /I{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}Adobe Encore CS4-->MsiExec.exe /I{5EAD5443-7194-46CC-A055-428E6ABB1BAF}Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5}Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}Adobe Fireworks CS4-->MsiExec.exe /I{428FDF9F-E010-4C4C-A8BB-156960AFCA1C}Adobe Flash CS4 Extension - Flash Lite STI en-->MsiExec.exe /I{793D1D88-6141-43DE-BE58-59BCE31B4090}Adobe Flash CS4 STI-en-->MsiExec.exe /I{2168245A-B5AD-40D8-A641-48E3E070B5B6}Adobe Flash CS4-->MsiExec.exe /I{F6E99614-F042-4459-82B7-8B38B2601356}Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exeAdobe Flash Player 10 ActiveX-->MsiExec.exe /X{3A6829EF-0791-4FDD-9382-C690DD0821B9}Adobe Flash Player 10 Plugin-->MsiExec.exe /X{03DEEAD2-F3B7-45BF-9006-A25D015F00D2}Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794}Adobe Illustrator CS4-->MsiExec.exe /I{87532CAB-7932-4F84-8937-823337622807}Adobe InDesign CS4 Application Feature Set Files (Roman)-->MsiExec.exe /I{2BAF2B96-7560-48B4-87D4-10178DDBE217}Adobe InDesign CS4 Common Base Files-->MsiExec.exe /I{7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C}Adobe InDesign CS4 Icon Handler-->MsiExec.exe /I{1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1}Adobe InDesign CS4-->MsiExec.exe /I{1DCA3EAA-6EB5-4563-A970-EA14D75037BA}Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67}Adobe Media Encoder CS4 Additional Exporter-->MsiExec.exe /I{BE9CEAAA-F069-4331-BF2F-8D350F6504F4}Adobe Media Encoder CS4 Dolby-->MsiExec.exe /I{EE353798-E875-42E0-B58D-7E6696182EA8}Adobe Media Encoder CS4-->MsiExec.exe /I{DEB90B8E-0DCB-48CE-B90E-8842A2BD643E}Adobe Media Player-->msiexec /qb /x {39F6E2B4-CFE8-C30A-66E8-489651F0F34C}Adobe Media Player-->MsiExec.exe /I{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}Adobe MotionPicture Color Files CS4-->MsiExec.exe /I{B05DE7B7-0B40-4411-BD4B-222CAE2D8F15}Adobe OnLocation CS4-->MsiExec.exe /I{7406DF60-016D-476B-A2C7-55D997592047}Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A}Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353}Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494}Adobe Premiere Pro CS4 Functional Content-->MsiExec.exe /I{B169BC97-B8AA-4ACA-9CF2-9D0FF5BABDF7}Adobe Premiere Pro CS4-->MsiExec.exe /I{D499F8DE-3F31-4900-9157-61061613704B}Adobe Reader 9.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A91000000001}Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA}Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}Adobe Setup-->MsiExec.exe /I{E8EE9410-8AC4-4F43-A626-DDECA75C79F3}Adobe SGM CS4-->MsiExec.exe /I{15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B}Adobe SING CS4-->MsiExec.exe /I{4A52555C-032A-4083-BDD9-6A85ABFB39A8}Adobe Soundbooth CS4-->MsiExec.exe /I{14F70205-1940-4000-88C7-BE799A6B2CAD}Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}Adobe Version Cue CS4 Server-->MsiExec.exe /I{1B7C06E1-4888-47A6-992A-0990B9683486}Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}Apple Mobile Device Support-->MsiExec.exe /I{C337BDAF-CB4E-47E2-BE1A-CB31BB7DD0E3}Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}AVG 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALLBonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}Canon Digital Photo Front-Access-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E889FDD-54DE-409D-9118-41D66D31C8D3}\setup.exe" -l0x9 Canon iP2600 series User Registration-->C:\Program Files\Canon\IJEREG\iP2600 series\UNINST.EXECanon iP2600 series-->"C:\Windows\system32\CanonIJ Uninstaller Information\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP2600_series\DelDrv.exe" /U:{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP2600_series /L0x0009Canon iPF8100 User Manual-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3E104B5F-7445-4A39-8B9B-6E8527108478}\setup.exe" -l0x9 Canon My Printer-->C:\Program Files\Canon\MyPrinter\uninst.exe uninst.iniCanon Utilities Easy-PhotoPrint EX-->C:\Program Files\Canon\Easy-PhotoPrint EX\uninst.exe uninst.iniCanon Utilities Solution Menu-->C:\Program Files\Canon\SolutionMenu\uninst.exe uninst.iniConnect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D}CyberLink DVD Suite Deluxe-->"C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" /z-uninstallCyberLink DVD Suite Deluxe-->"C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" /z-uninstallESET Online Scanner v3-->C:\Program Files\ESET\ESET Online Scanner\OnlineScannerUninstaller.exeFontExpert 2009-->C:\Program Files\FontExpert\pssetupFontExpert2009v10.exe /u psuninstFontExpert2009v10.infFTDI USB Serial Converter Drivers-->C:\Windows\system32\ftdiunin.exe C:\Windows\system32\ftdiun2k.iniGoogle Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_9DE96A29E721D90A.exe" /uninstallGoogle Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}Hardware Diagnostic Tools-->C:\Program Files\PC-Doctor for Windows\uninst.exeHijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstallHotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall  /qb+ REBOOTPROMPT=""Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""HP Active Support Library-->"C:\Program Files\InstallShield Installation Information\{CE7E3BE0-2DD3-4416-A690-F9E4A99A8CFF}\setup.exe" -runfromtemp -l0x0409 -removeonlyHP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{64B9E2F5-558E-4C56-B419-A1679518F6E7}\setup.exe" -l0x9  -removeonlyHP Demo-->MsiExec.exe /X{48BF4489-0C58-4E80-BB17-94A673CE310A}HP Recovery Manager RSS-->MsiExec.exe /X{A0640EC2-B97E-4FC1-AD14-227C9E386BB4}HP Total Care Advisor-->MsiExec.exe /X{154A4184-1A3D-4BF9-A5AE-4FA1660445F3}HP Total Care Setup-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{38058455-8C21-4C2F-B2F6-14ED166039CB}\setup.exe" -l0x9  -removeonlyHP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}HPAsset component for HP Active Support Library-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}imagePROGRAF Status Monitor-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{66392B7C-C522-450D-97B7-B3E41E170C3B}\setup.exe" -l0x9 iPF8100 Media Configuration Tool-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{953D95EF-AC24-42AB-8F2B-73FED431803C}\setup.exe" -l0x9 iPF8100 Printer Driver Extra Kit-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{85FE9703-3826-4928-AFE9-3DCEAF1A26BC}\setup.exe" -l0x9 iTunes-->MsiExec.exe /I{99ECF41F-5CCA-42BD-B8B8-A8333E2E2944}Java(tm) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}Java(tm) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}Juno Preloader-->MsiExec.exe /X{6423EF83-6E1D-4D22-A36F-689CD19FD4D2}kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}LabelPrint-->"C:\Program Files\InstallShield Installation Information\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\setup.exe" /z-uninstallLabelPrint-->"C:\Program Files\InstallShield Installation Information\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\setup.exe" /z-uninstallLight Source Check Tool-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAB257FB-D34A-444F-A70C-55C4719B24B5}\setup.exe" -l0x9 LightScribe System Software  1.14.25.1-->MsiExec.exe /X{DA9DAC64-C947-47BA-B411-8A1959B177CF}LightScribe Template Labeler-->MsiExec.exe /X{5BD0CB24-11AF-4BA8-A198-38D25257C656}Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exeMicrosoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}Microsoft Digital Image Suite 2006-->"C:\Program Files\Common Files\Microsoft Shared\Picture It!\RmvSuite.exe" ADDREMOVE=1 SKU=SUITE VERSION=11Microsoft Live Search Toolbar-->MsiExec.exe /X{2CD352BA-1F8A-4302-B972-2529E82A5679}Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLLMicrosoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}Microsoft Office Groove MUI (English) 2007-->MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}Microsoft Office Groove Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}Mozilla Firefox (3.5.1)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exemuvee Reveal-->MsiExec.exe /X{19506BDB-4EA7-491F-E8AB-E97109FDB296}My HP Games-->"C:\Program Files\HP Games\Uninstall.exe"NetZero Preloader-->MsiExec.exe /X{352310C3-E46B-42D3-8F32-54721FDD72D9}Norton Internet Security-->MsiExec.exe /I{7B15D70E-9449-4CFB-B9BC-798465B2BD5C}NVIDIA Drivers-->C:\Windows\system32\nvuninst.exe UninstallGUIPDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}Photoshop Camera Raw-->MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8}PictureMover-->MsiExec.exe /X{1896E712-2B3D-45eb-BCE9-542742A51032}Pixel Bender Toolkit-->MsiExec.exe /I{43509E18-076E-40FE-AF38-CA5ED400A5A9}Power2Go-->"C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\setup.exe" /z-uninstallPower2Go-->"C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\setup.exe" /z-uninstallPowerDirector-->"C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstallPowerDirector-->"C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstallPython 2.5.2-->MsiExec.exe /I{6B976ADF-8AE8-434E-B282-A06C7F624D2F}QuickTime-->MsiExec.exe /I{C78EAC6F-7A73-452E-8134-DBB2165C5A68}Realtek High Definition Audio Driver-->C:\Program Files\Realtek\Audio\HDA\RtlUpd.exe -r -m -nrg2709SAi Production Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0CDA4F2-1D4A-4CC5-9D21-7504F7423DD4}\SETUP.EXE" -l0x9  -removeonlySecurity Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}Security Update for 2007 Microsoft Office System (KB969679)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C66E4A6C-6E07-4C63-8CCD-2493B5087C73}Security Update for Microsoft Office Excel 2007 (KB969682)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C03803BD-745A-46F8-8557-817DED578780}Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}Security Update for Microsoft Office Publisher 2007 (KB969693)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E}Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}Security Update for Microsoft Office Word 2007 (KB969604)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {CF3D6499-709C-43D0-8908-BC5652656050}Sentinel Protection Installer 7.5.0-->MsiExec.exe /I{A5A63519-F5C2-4F4A-849A-F28A1AB3D522}Simplify Media-->MsiExec.exe /X{43274993-56DB-472B-95FD-73C7B5B4B598}Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1\UIU32m.exe -U -ITrx200Cz.INFSPORE Creature Creator Trial Edition-->"C:\Program Files\HP Games\SPORE Creature Creator Trial Edition\Uninstall.exe"Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"StickyYardPlus-->MsiExec.exe /I{A318BCC3-2A88-46C1-B359-DA74533758A5}Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434}TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}TweetDeck-->MsiExec.exe /X{362F8AC6-4EA5-C5AC-ED7E-1F49F0EE20D5}Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}Update for Microsoft Office Access 2007 Help (KB963663)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}Update for Microsoft Office Infopath 2007 Help (KB963662)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {716B81B8-B13C-41DF-8EAC-7A2F656CAB63}Update for Microsoft Office OneNote 2007 Help (KB963670)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2744EF05-38E1-4D5D-B333-E021EDAEA245}Update for Microsoft Office Outlook 2007 (KB969907)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {74F98B24-AFBD-4800-9BD6-87D349B5C462}Update for Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {0451F231-E3E3-4943-AB9F-58EB96171784}Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}Update for Microsoft Office Publisher 2007 Help (KB963667)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2E40DE55-B289-4C8B-8901-5D369B16814F}Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}Update for Outlook 2007 Junk Email Filter (kb971933)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {53C200F4-3B4B-49A5-8539-2C61F1A88CA2}Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\Windows\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""======Security center information======AS: Spybot - Search and DestroyAS: Lavasoft Ad-Watch Live!AS: Windows Defender======System event log======Computer Name: HOOEvent Code: 1003Message: Your computer was not able to renew its address from the network (from the DHCP Server) for the Network Card with network address 0021974D1F3D.  The following error occurred: The operation was canceled by the user.. Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.Record Number: 13805Source Name: Microsoft-Windows-Dhcp-ClientTime Written: 20090316220932.000000-000Event Type: WarningUser: Computer Name: HOOEvent Code: 7011Message: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.Record Number: 13728Source Name: Service Control ManagerTime Written: 20090316181056.000000-000Event Type: ErrorUser: Computer Name: HOOEvent Code: 7011Message: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.Record Number: 13720Source Name: Service Control ManagerTime Written: 20090316174952.000000-000Event Type: ErrorUser: Computer Name: HOOEvent Code: 7011Message: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.Record Number: 13712Source Name: Service Control ManagerTime Written: 20090316172848.000000-000Event Type: ErrorUser: Computer Name: HOOEvent Code: 7011Message: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.Record Number: 13703Source Name: Service Control ManagerTime Written: 20090316170533.000000-000Event Type: ErrorUser: =====Application event log=====Computer Name: HOOEvent Code: 8194Message: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation:   Gathering Writer DataContext:   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}   Writer Name: System Writer   Writer Instance ID: {833f8d50-5408-464e-9014-07175dbd6d8e}Record Number: 432Source Name: VSSTime Written: 20090219221506.000000-000Event Type: ErrorUser: Computer Name: HOOEvent Code: 8194Message: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation:   Gathering Writer DataContext:   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}   Writer Name: System Writer   Writer Instance ID: {833f8d50-5408-464e-9014-07175dbd6d8e}Record Number: 429Source Name: VSSTime Written: 20090219221436.000000-000Event Type: ErrorUser: Computer Name: HOOEvent Code: 8194Message: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005. This is often caused by incorrect security settings in either the writer or requestor process. Operation:   Gathering Writer DataContext:   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}   Writer Name: System Writer   Writer Instance ID: {833f8d50-5408-464e-9014-07175dbd6d8e}Record Number: 426Source Name: VSSTime Written: 20090219221349.000000-000Event Type: ErrorUser: Computer Name: HOOEvent Code: 1008Message: The Windows Search Service is attempting to remove the old catalog. Record Number: 355Source Name: Microsoft-Windows-SearchTime Written: 20090219190037.000000-000Event Type: WarningUser: Computer Name: WIN-LZ9KYR73QX9Event Code: 10Message: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.Record Number: 346Source Name: Microsoft-Windows-WMITime Written: 20090107170324.000000-000Event Type: ErrorUser: =====Security event log=====Computer Name: WIN-LZ9KYR73QX9Event Code: 4648Message: A logon was attempted using explicit credentials.Subject:	Security ID:		S-1-5-18	Account Name:		WIN-LZ9KYR73QX9$	Account Domain:		WORKGROUP	Logon ID:		0x3e7	Logon GUID:		{00000000-0000-0000-0000-000000000000}Account Whose Credentials Were Used:	Account Name:		SYSTEM	Account Domain:		NT AUTHORITY	Logon GUID:		{00000000-0000-0000-0000-000000000000}Target Server:	Target Server Name:	localhost	Additional Information:	localhostProcess Information:	Process ID:		0x260	Process Name:		C:\Windows\System32\services.exeNetwork Information:	Network Address:	-	Port:			-This event is generated when a process attempts to log on an account by explicitly specifying that account’s credentials.  This most commonly occurs in batch-type configurations such as scheduled tasks, or when using the RUNAS command.Record Number: 304Source Name: Microsoft-Windows-Security-AuditingTime Written: 20090107170242.679752-000Event Type: Audit SuccessUser: Computer Name: WIN-LZ9KYR73QX9Event Code: 4672Message: Special privileges assigned to new logon.Subject:	Security ID:		S-1-5-18	Account Name:		SYSTEM	Account Domain:		NT AUTHORITY	Logon ID:		0x3e7Privileges:		SeAssignPrimaryTokenPrivilege			SeTcbPrivilege			SeSecurityPrivilege			SeTakeOwnershipPrivilege			SeLoadDriverPrivilege			SeBackupPrivilege			SeRestorePrivilege			SeDebugPrivilege			SeAuditPrivilege			SeSystemEnvironmentPrivilege			SeImpersonatePrivilegeRecord Number: 303Source Name: Microsoft-Windows-Security-AuditingTime Written: 20090107170242.461352-000Event Type: Audit SuccessUser: Computer Name: WIN-LZ9KYR73QX9Event Code: 4624Message: An account was successfully logged on.Subject:	Security ID:		S-1-5-18	Account Name:		WIN-LZ9KYR73QX9$	Account Domain:		WORKGROUP	Logon ID:		0x3e7Logon Type:			5New Logon:	Security ID:		S-1-5-18	Account Name:		SYSTEM	Account Domain:		NT AUTHORITY	Logon ID:		0x3e7	Logon GUID:		{00000000-0000-0000-0000-000000000000}Process Information:	Process ID:		0x260	Process Name:		C:\Windows\System32\services.exeNetwork Information:	Workstation Name:		Source Network Address:	-	Source Port:		-Detailed Authentication Information:	Logon Process:		Advapi  	Authentication Package:	Negotiate	Transited Services:	-	Package Name (NTLM only):	-	Key Length:		0This event is generated when a logon session is created. It is generated on the computer that was accessed.The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.The authentication information fields provide detailed information about this specific logon request.	- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.	- Transited services indicate which intermediate services have participated in this logon request.	- Package name indicates which sub-protocol was used among the NTLM protocols.	- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.Record Number: 302Source Name: Microsoft-Windows-Security-AuditingTime Written: 20090107170242.461352-000Event Type: Audit SuccessUser: Computer Name: WIN-LZ9KYR73QX9Event Code: 4648Message: A logon was attempted using explicit credentials.Subject:	Security ID:		S-1-5-18	Account Name:		WIN-LZ9KYR73QX9$	Account Domain:		WORKGROUP	Logon ID:		0x3e7	Logon GUID:		{00000000-0000-0000-0000-000000000000}Account Whose Credentials Were Used:	Account Name:		SYSTEM	Account Domain:		NT AUTHORITY	Logon GUID:		{00000000-0000-0000-0000-000000000000}Target Server:	Target Server Name:	localhost	Additional Information:	localhostProcess Information:	Process ID:		0x260	Process Name:		C:\Windows\System32\services.exeNetwork Information:	Network Address:	-	Port:			-This event is generated when a process attempts to log on an account by explicitly specifying that account’s credentials.  This most commonly occurs in batch-type configurations such as scheduled tasks, or when using the RUNAS command.Record Number: 301Source Name: Microsoft-Windows-Security-AuditingTime Written: 20090107170242.461352-000Event Type: Audit SuccessUser: Computer Name: WIN-LZ9KYR73QX9Event Code: 1102Message: The audit log was cleared.Subject:	Security ID:	S-1-5-21-1826164167-2625123954-291979102-500	Account Name:	Administrator	Domain Name:	WIN-LZ9KYR73QX9	Logon ID:	0x25ab4Record Number: 300Source Name: Microsoft-Windows-EventlogTime Written: 20090107170237.375752-000Event Type: Audit SuccessUser: ======Environment variables======"ComSpec"=%SystemRoot%\system32\cmd.exe"FP_NO_HOST_CHECK"=NO"OS"=Windows_NT"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\hp\bin\Python;C:\Program Files\QuickTime\QTSystem"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC"PROCESSOR_ARCHITECTURE"=x86"TEMP"=%SystemRoot%\TEMP"TMP"=%SystemRoot%\TEMP"USERNAME"=SYSTEM"windir"=%SystemRoot%"PROCESSOR_LEVEL"=15"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 107 Stepping 2, AuthenticAMD"PROCESSOR_REVISION"=6b02"NUMBER_OF_PROCESSORS"=2"TRACE_FORMAT_SEARCH_PATH"=\\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat"DFSTRACINGON"=FALSE"OnlineServices"=Online Services"Platform"=HPD"PCBRAND"=Presario"MSWorksProductCode"={15BC8CD0-A65B-47D0-A2DD-90A824590FA8}"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip-----------------EOF-----------------

And if you want to DM me your email address, I'll send you a Pizza Hut Gift Card! ;-)

#12 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 31 July 2009 - 09:27 AM

Total RAM: 2942 MB (32% free)


You have a lot of RAM but only 32% free RAM, which means you run too many applications on background.. This might contribute to lag factor in the computer.. Please uninstall all programs that you no longer use..

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#13 SturmB

SturmB
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lexington, KY, USA
  • Local time:04:00 AM

Posted 31 July 2009 - 09:40 AM

It's actually not all that slow to me, but I have to run all those apps in the background, as my job necessitates it. Regardless, I've just been approved to purchase a new PC next week anyway, so I plan to make sure it uses today's tech (Core i7, 6GB RAM, 1TB HDD, etc.).

#14 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 31 July 2009 - 09:49 AM

(Core i7, 6GB RAM, 1TB HDD, etc.).


Oww.. I can only dream of that spec :thumbup2: :)

I will now close this topic. If you need this topic to be re-open, please pm me or Moderators regarding the matter..

If you have any new malware related questions or issues in the future please start a new topic.

Cheers and Happy Computing !

fenzodahl512

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users