Inactive [InActive] Hit with Win32:Adware-gen[Adw],VBS:Malware-gen

baka101 · 2008/10/28

Hi having some problems, I did a scan with Avast and checked the log viewer and found I had Win32:Adware-gen[Adw],VBS:Malware-gen and Win32:Trojan-gen {other}.

Here is what you requested

log.txt

Logfile of random's system information tool 1.04 (written by random/random)
Run by karen at 2008-10-28 14:15:08
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 31 GB (41%) free of 76 GB
Total RAM: 223 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:15:19 PM, on 10/28/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre6\bin\java.exe
C:\Program Files\GetRight\GetRight.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\ashLogV.exe
C:\Documents and Settings\karen\Desktop\Fix_download.exe
C:\Documents and Settings\karen\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\karen.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.nz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 0.0.0.0:80
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: GetRight IE Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG Free\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe "
O4 - HKLM\..\Run: [RegistryMechanic] C:\Program Files\Registry Mechanic\regmech.exe /H
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe "
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG Free\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG Free\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG Free\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG Free\avgw.exe /RUNONCE (User 'Default user')
O4 - Startup: PowerReg Scheduler.exe
O4 - Startup: SpamPal.lnk = C:\Program Files\SpamPal\spampal.exe
O4 - Global Startup: GetRight.lnk = C:\Program Files\GetRight\GetRight.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: Download with GetRight Pro - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: Open with GetRight Pro Browser - C:\Program Files\GetRight\GRbrowse.htm
O10 - Unknown file in Winsock LSP: xfire_lsp_9028.dll
O10 - Unknown file in Winsock LSP: xfire_lsp_9028.dll
O10 - Unknown file in Winsock LSP: xfire_lsp_9028.dll
O10 - Unknown file in Winsock LSP: xfire_lsp_9028.dll
O10 - Unknown file in Winsock LSP: xfire_lsp_9028.dll
O10 - Unknown file in Winsock LSP: xfire_lsp_9028.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} (PSFormX Control) - http://www.pcpitstop.com/pestscan/pestscan.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1188962222375
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG Free\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG Free\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG Free\avgemc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 7306 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\SDMsgUpdate (SmartDrawTrial).job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-04-16 37808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31FF080D-12A3-439A-A2EF-4BA95A3148E8}]
GetRight IE Helper - C:\Program Files\GetRight\xx2gr.dll [2008-06-23 344336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-10-27 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-10-27 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-10-27 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan "=C:\WINDOWS\SOUNDMAN.EXE [2005-07-22 81920]
"Microsoft Works Update Detection "=C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe [2003-06-10 50688]
"AVG7_CC "=C:\PROGRA~1\Grisoft\AVG Free\avgcc.exe /STARTUP []
"avast! "=C:\Program Files\Alwil Software\Avast4\ashDisp.exe [2007-12-05 79224]
"RegistryMechanic "=C:\Program Files\Registry Mechanic\regmech.exe [2007-08-20 2483496]
"NvCplDaemon "=C:\WINDOWS\system32\NvCpl.dll [2006-10-22 7700480]
"nwiz "=nwiz.exe /install []
"NvMediaCenter "=C:\WINDOWS\system32\NvMCTray.dll [2006-10-22 86016]
"DownloadAccelerator "=C:\Program Files\DAP\DAP.EXE [2008-08-26 6930432]
"SunJavaUpdateSched "=C:\Program Files\Java\jre6\bin\jusched.exe [2008-10-27 136600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr "=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
"ctfmon.exe "=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2006-02-23 278528]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MoneyAgent]
C:\Program Files\Microsoft Money\System\mnyexpr.exe [2003-06-18 200704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
C:\WINDOWS\system32\\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2006-09-04 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WireLessMouse]
C:\Program Files\Multimedia Mouse Driver\StartAutorun.exe [2005-11-30 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^LUMIX Simple Viewer.lnk]
C:\PROGRA~1\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe [2005-11-14 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AppMgmt "=3

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
GetRight.lnk - C:\Program Files\GetRight\GetRight.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

C:\Documents and Settings\karen\Start Menu\Programs\Startup
PowerReg Scheduler.exe
SpamPal.lnk - C:\Program Files\SpamPal\spampal.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoSecCPL "=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername "=0
"legalnoticecaption "=
"legalnoticetext "=
"shutdownwithoutlogon "=1
"undockwithoutlogon "=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun "=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019 "
"C:\Program Files\Internet Explorer\iexplore.exe "= "C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer "
"C:\Program Files\Messenger\msmsgs.exe "= "C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger "
"C:\Documents and Settings\All Users\Documents\incredimail_install.exe "= "C:\Documents and Settings\All Users\Documents\incredimail_install.exe:*:Enabled:IncrediMail Installer "
"C:\Program Files\Warcraft III\Warcraft III.exe "= "C:\Program Files\Warcraft III\Warcraft III.exe:*isabled:Warcraft III "
"C:\Program Files\Grisoft\AVG Free\avginet.exe "= "C:\Program Files\Grisoft\AVG Free\avginet.exe:*:Enabled:avginet.exe "
"C:\Program Files\Grisoft\AVG Free\avgemc.exe "= "C:\Program Files\Grisoft\AVG Free\avgemc.exe:*:Enabled:avgemc.exe "
"C:\WINDOWS\explorer.exe "= "C:\WINDOWS\explorer.exe:*:Enabled:Windows Explorer "
"C:\Program Files\iTunes\iTunes.exe "= "C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes "
"C:\Documents and Settings\Kimberley\My Documents\incredimail_install.exe "= "C:\Documents and Settings\Kimberley\My Documents\incredimail_install.exe:*:Enabled:IncrediMail Installer "
"C:\Program Files\IncrediMail\bin\IMApp.exe "= "C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail "
"C:\Program Files\IncrediMail\bin\IncMail.exe "= "C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail "
"C:\Program Files\IncrediMail\bin\ImpCnt.exe "= "C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail "
"C:\Program Files\IncrediMail\bin\IncrediMail_Install.exe "= "C:\Program Files\IncrediMail\bin\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer "
"C:\Documents and Settings\karen\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe "= "C:\Documents and Settings\karen\Local Settings\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe:*:Enabled:IncrediMail Installer "
"C:\Program Files\Warcraft III\War3.exe "= "C:\Program Files\Warcraft III\War3.exe:*isabled:Warcraft III "
"C:\Program Files\EA GAMES\Medal of Honor Pacific Assault(tm)\mohpa.exe "= "C:\Program Files\EA GAMES\Medal of Honor Pacific Assault(tm)\mohpa.exe:*:Enabled:Medal of Honor Pacific Assault(tm) "
"C:\WINDOWS\system32\mmc.exe "= "C:\WINDOWS\system32\mmc.exe:*isabled:Microsoft Management Console "
"C:\Program Files\Bonjour\mDNSResponder.exe "= "C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour "
"C:\Program Files\uTorrent\uTorrent.exe "= "C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent "
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe "= "C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger "
"C:\Program Files\Windows Live\Messenger\livecall.exe "= "C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019 "
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe "= "C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger "
"C:\Program Files\Windows Live\Messenger\livecall.exe "= "C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone) "

======List of files/folders created in the last 3 months======

2008-10-28 14:15:08 ----D---- C:\rsit
2008-10-28 14:13:08 ----D---- C:\Program Files\Trend Micro
2008-10-28 13:49:53 ----D---- C:\Program Files\CCleaner
2008-10-27 23:06:43 ----D---- C:\WINDOWS\Sun
2008-10-27 22:59:03 ----A---- C:\WINDOWS\system32\javaws.exe
2008-10-27 22:59:03 ----A---- C:\WINDOWS\system32\deploytk.dll
2008-10-27 22:59:02 ----A---- C:\WINDOWS\system32\javaw.exe
2008-10-27 22:59:01 ----A---- C:\WINDOWS\system32\java.exe
2008-10-27 22:57:00 ----D---- C:\Program Files\Java
2008-10-27 21:19:48 ----D---- C:\Downloads
2008-10-27 21:18:13 ----D---- C:\Documents and Settings\karen\Application Data\GetRight Pro
2008-10-27 21:17:56 ----D---- C:\Program Files\GetRight
2008-10-27 20:58:56 ----D---- C:\Documents and Settings\karen\Application Data\Sun
2008-10-27 20:47:20 ----A---- C:\WINDOWS\system32\wbhelp2.dll
2008-10-27 20:47:18 ----D---- C:\Program Files\DAP
2008-10-27 17:43:22 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$
2008-10-27 17:41:24 ----D---- C:\Documents and Settings\karen\Application Data\DivX
2008-10-27 17:41:02 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-10-27 17:40:17 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2008-10-27 17:38:38 ----D---- C:\Program Files\Windows Media Connect 2
2008-10-27 17:38:02 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2008-10-27 17:33:12 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2008-10-27 17:30:02 ----D---- C:\WINDOWS\system32\LogFiles
2008-10-27 17:29:09 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2008-10-27 17:19:39 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\vxblock.dll
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxwave.dll
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxsfs.dll
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxmas.dll
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxdrv.dll
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2008-10-27 17:19:38 ----N---- C:\WINDOWS\system32\pxafs.dll
2008-10-27 17:19:37 ----N---- C:\WINDOWS\system32\px.dll
2008-10-27 17:19:34 ----D---- C:\Program Files\Xvid
2008-10-27 17:19:15 ----D---- C:\Program Files\DivX
2008-10-27 15:09:23 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-10-27 14:59:56 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller
2008-10-27 14:58:57 ----D---- C:\Program Files\Windows Live
2008-10-27 14:57:23 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-27 13:02:46 ----D---- C:\Documents and Settings\karen\Application Data\Auslogics
2008-10-27 13:02:16 ----D---- C:\Program Files\Auslogics
2008-10-27 12:18:51 ----A---- C:\WINDOWS\isRS-000.tmp
2008-10-27 12:18:50 ----A---- C:\WINDOWS\system32\XceedZip.dll
2008-10-27 12:18:42 ----D---- C:\Program Files\Driver-Soft
2008-10-27 11:56:11 ----D---- C:\Documents and Settings\karen\Application Data\SiteAdvisor
2008-10-27 11:56:11 ----D---- C:\Documents and Settings\All Users\Application Data\SiteAdvisor
2008-10-27 11:56:11 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee
2008-10-27 10:52:32 ----D---- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2008-10-27 10:45:44 ----D---- C:\Documents and Settings\All Users\Application Data\NVIDIA
2008-10-27 10:39:09 ----D---- C:\Documents and Settings\karen\Application Data\Media Player Classic
2008-10-27 03:03:46 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-10-27 03:03:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-10-27 03:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-10-27 03:03:23 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-10-27 03:03:13 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-10-27 03:02:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-10-27 03:02:24 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-10-27 03:02:10 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-10-27 03:02:01 ----D---- C:\WINDOWS\ie7updates
2008-10-27 03:01:50 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-10-27 03:01:39 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2008-10-27 03:01:16 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-10-26 23:46:51 ----D---- C:\Documents and Settings\karen\Application Data\WinRAR
2008-10-26 22:29:45 ----D---- C:\Program Files\WinRAR
2008-10-26 21:53:27 ----D---- C:\Avenger
2008-10-26 20:57:12 ----D---- C:\Documents and Settings\karen\Application Data\Malwarebytes
2008-10-26 20:45:53 ----D---- C:\Program Files\uTorrent
2008-10-26 20:45:50 ----D---- C:\Documents and Settings\karen\Application Data\uTorrent
2008-10-26 20:42:21 ----D---- C:\Documents and Settings\karen\Application Data\SpamPal
2008-10-26 20:41:36 ----D---- C:\Program Files\SpamPal
2008-10-26 20:02:00 ----A---- C:\WINDOWS\system32\nvudisp.exe
2008-10-26 19:58:27 ----D---- C:\NVIDIA
2008-10-26 19:47:56 ----D---- C:\Documents and Settings\karen\Application Data\Thunderbird
2008-10-26 19:47:35 ----D---- C:\WINDOWS\system32\CatRoot_bak
2008-10-26 19:46:46 ----D---- C:\Program Files\Mozilla Thunderbird
2008-10-26 19:39:34 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2008-10-26 19:39:34 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2008-10-26 19:39:33 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2008-10-26 19:39:32 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2008-10-26 19:39:32 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2008-10-26 19:39:30 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2008-10-26 19:39:28 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2008-10-26 19:39:28 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2008-10-26 19:39:27 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2008-10-26 19:39:26 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2008-10-26 19:39:25 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2008-10-26 19:39:25 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2008-10-26 19:39:21 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2008-10-26 19:39:18 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2008-10-26 19:39:16 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2008-10-26 19:39:15 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2008-10-26 19:39:14 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2008-10-26 19:39:14 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2008-10-26 19:39:13 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2008-10-26 19:39:12 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2008-10-26 19:39:11 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2008-10-26 19:39:11 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2008-10-26 19:39:10 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2008-10-26 19:39:09 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2008-10-26 19:39:08 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2008-10-26 19:39:08 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2008-10-26 19:39:07 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2008-10-26 19:39:00 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2008-10-26 19:39:00 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2008-10-26 19:38:57 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2008-10-26 19:38:57 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2008-10-26 19:38:55 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2008-10-26 19:38:54 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2008-10-26 19:38:53 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2008-10-26 19:38:37 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2008-10-26 19:38:37 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2008-10-26 19:38:24 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2008-10-26 19:38:20 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2008-10-26 19:38:17 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2008-10-26 19:38:15 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2008-10-26 19:38:12 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2008-10-26 19:38:12 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2008-10-26 19:38:10 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2008-10-26 19:38:07 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2008-10-26 19:38:06 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2008-10-26 19:38:05 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2008-10-26 19:38:04 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2008-10-26 19:38:02 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2008-10-26 19:38:01 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2008-10-26 19:37:56 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2008-10-26 19:37:56 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2008-10-26 19:37:51 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2008-10-26 19:37:47 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2008-10-26 19:37:45 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2008-10-26 19:37:44 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2008-10-26 19:37:41 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2008-10-26 19:37:39 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2008-10-26 19:37:23 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2008-10-26 19:34:54 ----D---- C:\WINDOWS\Logs
2008-10-26 18:25:21 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-10-26 18:25:18 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-26 18:21:03 ----D---- C:\Documents and Settings\karen\Application Data\Mozilla
2008-10-26 18:20:53 ----A---- C:\WINDOWS\system32\STKIT432.DLL
2008-10-26 18:20:34 ----D---- C:\Program Files\Registry Mechanic
2008-10-26 18:20:24 ----D---- C:\Program Files\Mozilla Firefox
2008-10-26 18:11:50 ----D---- C:\Documents and Settings\karen\Application Data\URSoft
2008-10-26 18:11:49 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-10-26 18:11:42 ----D---- C:\Program Files\Your Uninstaller 2008
2008-10-26 18:11:04 ----AC---- C:\WINDOWS\system32\aswBoot.exe
2008-10-26 18:10:55 ----D---- C:\Program Files\Alwil Software
2008-10-26 16:06:28 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-10-18 16:35:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-09-27 20:51:35 ----D---- C:\WINDOWS\WBEM
2008-09-27 20:51:33 ----D---- C:\WINDOWS\system32\en-US
2008-09-27 20:49:59 ----HDC---- C:\WINDOWS\ie7
2008-09-27 20:49:36 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2008-09-27 20:49:03 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2008-09-27 20:48:25 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2008-09-27 20:47:35 ----N---- C:\WINDOWS\system32\xmllite.dll
2008-08-30 14:26:05 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-08-29 18:23:04 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$

======List of files/folders modified in the last 3 months======

2008-10-28 14:13:08 ----RD---- C:\Program Files
2008-10-28 13:21:15 ----D---- C:\WINDOWS\system32
2008-10-28 13:19:47 ----D---- C:\WINDOWS\Temp
2008-10-28 13:19:40 ----AC---- C:\WINDOWS\ntbtlog.txt
2008-10-28 13:19:30 ----D---- C:\Documents and Settings
2008-10-28 03:16:38 ----D---- C:\WINDOWS\Prefetch
2008-10-28 03:05:47 ----D---- C:\WINDOWS
2008-10-28 03:05:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-10-27 22:59:53 ----SHD---- C:\WINDOWS\Installer
2008-10-27 22:59:41 ----D---- C:\Config.Msi
2008-10-27 20:25:37 ----HD---- C:\WINDOWS\inf
2008-10-27 20:25:22 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-27 20:25:19 ----D---- C:\Program Files\Internet Explorer
2008-10-27 20:24:10 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-27 20:18:36 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-10-27 19:07:42 ----D---- C:\WINDOWS\Minidump
2008-10-27 19:07:36 ----D---- C:\WINDOWS\AppPatch
2008-10-27 19:07:36 ----D---- C:\Program Files\Windows Media Player
2008-10-27 17:44:56 ----A---- C:\WINDOWS\imsins.BAK
2008-10-27 17:41:20 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-10-27 17:39:35 ----AC---- C:\WINDOWS\win.ini
2008-10-27 17:38:24 ----D---- C:\WINDOWS\Help
2008-10-27 17:35:08 ----D---- C:\Program Files\Common Files
2008-10-27 17:34:23 ----D---- C:\WINDOWS\system32\drivers
2008-10-27 17:21:06 ----D---- C:\WINDOWS\WinSxS
2008-10-27 16:01:31 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-10-27 15:49:54 ----SD---- C:\Documents and Settings\karen\Application Data\Microsoft
2008-10-27 15:04:21 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-10-27 14:18:37 ----AC---- C:\WINDOWS\ModemLog_Intel(R) 536EP Modem.txt
2008-10-27 11:56:07 ----RASH---- C:\boot.ini
2008-10-27 11:56:07 ----AC---- C:\WINDOWS\SYSTEM.INI
2008-10-27 11:56:05 ----D---- C:\WINDOWS\pss
2008-10-27 03:03:45 ----HD---- C:\WINDOWS\$hf_mig$
2008-10-26 23:39:33 ----D---- C:\WINDOWS\system32\CatRoot
2008-10-26 21:50:46 ----D---- C:\Documents and Settings\karen\Application Data\Adobe
2008-10-26 20:04:46 ----D---- C:\WINDOWS\nview
2008-10-26 20:00:52 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-10-26 19:47:34 ----D---- C:\WINDOWS\Debug
2008-10-26 19:39:39 ----D---- C:\WINDOWS\system32\DirectX
2008-10-26 19:31:12 ----D---- C:\WINDOWS\system32\config
2008-10-26 18:14:05 ----D---- C:\WINDOWS\system
2008-10-16 05:57:55 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-07 12:19:42 ----AC---- C:\WINDOWS\system32\MRT.exe
2008-10-04 06:41:15 ----A---- C:\WINDOWS\system32\ieframe.dll
2008-09-27 20:51:26 ----D---- C:\WINDOWS\Media
2008-08-30 14:26:08 ----D---- C:\Program Files\Messenger
2008-08-27 21:24:32 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-08-26 20:24:31 ----A---- C:\WINDOWS\system32\wininet.dll
2008-08-26 20:24:31 ----A---- C:\WINDOWS\system32\webcheck.dll
2008-08-26 20:24:31 ----A---- C:\WINDOWS\system32\urlmon.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\url.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\pngfilt.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\occache.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\mstime.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\msrating.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\mshtmled.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\msfeeds.dll
2008-08-26 20:24:30 ----A---- C:\WINDOWS\system32\jsproxy.dll
2008-08-26 20:24:29 ----A---- C:\WINDOWS\system32\iertutil.dll
2008-08-26 20:24:29 ----A---- C:\WINDOWS\system32\iernonce.dll
2008-08-26 20:24:29 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\ieaksie.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\ieakeng.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\icardie.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\extmgr.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\dxtrans.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2008-08-26 20:24:28 ----A---- C:\WINDOWS\system32\advpack.dll
2008-08-25 21:38:00 ----A---- C:\WINDOWS\system32\ieudinit.exe
2008-08-25 21:37:59 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2008-08-23 18:54:51 ----A---- C:\WINDOWS\system32\ieakui.dll
2008-08-14 23:00:45 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2008-08-14 22:22:13 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2007-12-05 42912]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-03 14848]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2003-04-01 12032]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 GEARAspiWDM;GEAR CDRom Filter; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2005-02-02 14408]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 NVENET;NVIDIA nForce MCP Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENET.sys [2002-11-28 80896]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-20 21248]
R3 RT2400PCI;802.11b WLAN PCI; C:\WINDOWS\system32\DRIVERS\RT2400.sys [2003-04-04 81408]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 usbstor;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2007-12-05 26624]
S1 AmdK7;AMD K7 Processor Driver; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2004-08-03 37376]
S1 Avg7Core;AVG7 Kernel; C:\WINDOWS\System32\Drivers\avg7core.sys [2007-01-06 778656]
S1 Avg7RsW;AVG7 Wrap Driver; C:\WINDOWS\System32\Drivers\avg7rsw.sys [2006-03-05 4288]
S1 Avg7RsXP;AVG7 Resident Driver XP; C:\WINDOWS\System32\Drivers\avg7rsxp.sys [2006-09-10 27904]
S2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2007-12-05 94544]
S2 AvgTdi;AVG Network Redirector; C:\WINDOWS\System32\Drivers\avgtdi.sys [2006-03-05 4992]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-07-26 3644032]
S3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2004-08-03 60800]
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2007-12-05 23152]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 IntelS51;Intel(R) 536EP Modem; C:\WINDOWS\system32\DRIVERS\IntelS51.sys [2004-12-10 1903338]
S3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2004-08-03 61824]
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2006-10-22 3994624]
S3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2003-10-24 38784]
S3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2003-10-24 311936]
S3 StillCam;Still Serial Digital Camera Driver; C:\WINDOWS\system32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 vsdatant;vsdatant; \??\C:\WINDOWS\system32\vsdatant.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2007-12-05 17272]
S2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2007-12-05 140664]
S2 Avg7Alrt;AVG7 Alert Manager Server; C:\PROGRA~1\Grisoft\AVG Free\avgamsvr.exe [2006-03-05 336896]
S2 Avg7UpdSvc;AVG7 Update Service; C:\PROGRA~1\Grisoft\AVG Free\avgupsvc.exe [2006-03-05 84480]
S2 AVGEMS;AVG E-mail Scanner; C:\PROGRA~1\Grisoft\AVG Free\avgemc.exe [2006-09-10 281088]
S2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
S2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [2002-01-29 77824]
S2 EPSONStatusAgent2;EPSON Printer Status Agent2; C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe [2002-07-17 94208]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-10-27 152984]
S2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-22 159810]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2007-12-05 247160]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2007-12-05 345464]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-03-18 654848]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPodService;iPodService; C:\Program Files\iPod\bin\iPodService.exe [2006-02-23 323584]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]

-----------------EOF-----------------

baka101 · 2008/10/28

info.txt

info.txt logfile of random's system information tool 1.04 2008-10-28 14:15:24

======Uninstall list======

-->C:\WINDOWS\uninst.exe -fC:\Maxis\Simtower\DeIsL3.isu
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11E83B33-972B-4512-A447-FF0FD0246EE9}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{21B6F79B-2286-4BB0-B1E3-BA6B9498D110}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{23EFDB58-0874-4883-9810-EDA510B19FAE}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2BB79C8D-9DCC-4861-8A23-AE1B0B45E2B6}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2BFBC62A-3353-443D-93BE-7AC641D9F342}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{775FFF70-4A8C-4500-908D-3C34DBEB11D5}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B100B05B-E290-41EF-9366-8BC4C76D7769}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B14F9B26-D695-4C4A-8B11-0FE6CDCC797B}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D3568156-59C3-42DF-A520-2C25B6706C91}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E213C271-AEFA-481D-A9B4-914D88925B8D}\setup.exe" -l0x9
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FAD9402A-1A9B-4ABE-A410-393A3622FA5A}\setup.exe" -l0x9
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
101 Puzzle & Logic Games-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\Professional\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{05108C14-956B-4723-8346-7EA8982CD2FC}\SETUP.EXE" -l0x9
Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
Adobe Acrobat 5.0-->C:\WINDOWS\ISUNINST.EXE -f "C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu" -c "C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.dll "
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings-->MsiExec.exe /I{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}
Adobe Color EU Extra Settings-->MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
Adobe Color NA Recommended Settings-->MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3-->C:\Program Files\Common Files\Adobe\Installers\2ac78060bc5856b0c1cf873bb919b58\Setup.exe
Adobe Photoshop CS3-->MsiExec.exe /I{0046FA01-C5B9-4985-BACB-398DC480FC05}
Adobe Reader 6.0.1-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A00000000001}
Adobe Setup-->MsiExec.exe /I{D1BB4446-AE9C-4256-9A7F-4D46604D2462}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
ArcSoft PhotoImpression-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6C5D7191-140A-11D6-B5A0-0050DA208A93}\setup.exe" -l0x9 -uninst
ArcSoft Software Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9E397B40-13F7-4CA2-9943-ADB29ACBBFDF}\setup.exe" -l0x9
AusLogics Disk Defrag--> "C:\Program Files\Auslogics\AusLogics Disk Defrag\unins000.exe "
avast! Antivirus-->rundll32 "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll ",RunSetup
Big Fish Games Client-->C:\Program Files\bfgclient\Uninstall.exe
Call of Duty - United Offensive-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\Intel 32\IDriver.exe /M{A662E280-64A8-4CF5-8407-13D0808602B3}
Call of Duty Game of the Year Edition-->C:\PROGRA~1\Call of Duty Game of the Year Edition\Uninstall\Unwise.exe /u C:\PROGRA~1\Call of Duty Game of the Year Edition\Uninstall\Install.log
CCleaner (remove only)--> "C:\Program Files\CCleaner\uninst.exe "
Command & Conquer Red Alert 2-->C:\Westwood\RA2\Uninstll.EXE
Command & Conquer Tiberian Sun-->C:\Westwood\SUN\Uninstll.EXE
Command && Conquer Red Alert 2 - Yuri's Revenge-->C:\Westwood\RA2\Uninstll.EXE
Dawn Of War-->MsiExec.exe /X{83F12F73-D52E-40C0-93B1-463C311C4E17}
Delta Force Task Force Dagger-->C:\WINDOWS\IsUninst.exe -f "C:\Program Files\NovaLogic\Delta Force Task Force Dagger\Uninst.isu "
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
Download Accelerator Plus (DAP)-->C:\PROGRA~1\DAP\DAPREMOVE.EXE
Driver Genius Professional Edition--> "C:\Program Files\Driver-Soft\DriverGenius\unins000.exe "
EPSON Copy Utility-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B69CC1A5-0404-11D6-ABCB-005004C21D30}\setup.exe" -l0x9 ADDREMOVEDLG
EPSON Photo Print-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9391F2BC-B6F3-4AAC-82CC-5A74A4ED388E}\setup.exe" -l0x9 MyUninstall
EPSON PhotoQuicker3.2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B2EFE303-A594-11D5-95EB-005004BC1C65}\setup.exe" uninst
EPSON Printer Software-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
EPSON Smart Panel-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6C11D561-620B-47DA-A693-4C597F3CDF40}\SETUP.EXE" -l0x9 Uninstall
EPSON TWAIN 5-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A3EABC0-CA06-11D4-BF77-00104B130C19}\setup.exe" -l0x9 UNINSTALL
Freedom Force-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{75AD7D33-EF26-4609-9D8D-CBF7F9AC5E08}\Setup.exe" -l0x9
GetRight--> "C:\Program Files\GetRight\unins000.exe "
HijackThis 2.0.2--> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hitman 2: Silent Assassin-->C:\PROGRA~1\Eidos Interactive\Hitman 2 Silent Assassin\uninstall.exe
Hotfix for Windows XP (KB915865)--> "C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe "
Hotfix for Windows XP (KB926239)--> "C:\WINDOWS\$NtUninstallKB926239$\spuninst\spuninst.exe "
Hotfix for Windows XP (KB952287)--> "C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe "
Intel(R) 536EP Modem-->rundll32 IntelSdi.dll,iSMUninstallation "Intel(R) 536EP Modem "
InterActual Player-->C:\Program Files\InterActual\InterActual Player\inuninst.exe
InterVideo WinDVD 4--> "C:\Program Files\InstallShield Installation Information\{98E8A2EF-4EAE-43B8-A172-74842B764777}\setup.exe" REMOVEALL
iPod for Windows 2006-03-23-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2070F79D-46BC-4EEA-8F02-9B4DCABAE7CB} /l1033
iPod Updater 2004-08-06-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2F8C106A-7DFC-45DE-8006-F9145AADF1D8} /l1033
iTunes-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\Intel 32\IDriver.exe /M{59C4F14F-7590-45FC-BE9F-A67AB3590709} /l1033
Java(TM) 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
King Jester Version 1.0--> "C:\Program Files\JetacerGames\King Jester\unins000.exe "
K-Lite Codec Pack 2.43 Full--> "C:\Program Files\K-Lite Codec Pack\unins000.exe "
LUMIX Simple Viewer-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\Professional\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}\setup.exe" -l0x9
Macromedia Flash Player 8-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5
Mahjong Match (remove only)-->C:\Program Files\Mahjong Match\Uninstall.exe
Malwarebytes' Anti-Malware--> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe "
Medal of Honor Pacific Assault(tm)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\Professional\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}\Setup.exe" -l0x9 -removeonly
Merry Frog v.2.0--> "C:\Program Files\Merry Frog\unins000.exe "
Microsoft Compression Client Pack 1.0 for Windows XP--> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe "
Microsoft Encarta Encyclopedia Standard - WE 2004-->MsiExec.exe /I{045A0044-9149-45C6-A806-F2BF9CFCE762}
Microsoft Internationalized Domain Names Mitigation APIs--> "C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe "
Microsoft Money System Pack-->MsiExec.exe /I{8C64E149-54BA-11D6-91B1-00500462BE80}
Microsoft Money-->MsiExec.exe /I{1D643CD2-4DD6-11D7-A4E0-000874180BB3}
Microsoft National Language Support Downlevel APIs--> "C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe "
Microsoft Picture It! Photo Standard 9-->C:\WINDOWS\system32\msiexec.exe /i {DBA8B9E1-C6FF-4624-9598-73D3B41A0903}
Microsoft User-Mode Driver Framework Feature Pack 1.0--> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe "
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Word 2002-->MsiExec.exe /I{911B0409-6000-11D3-8CFE-0050048383C9}
Microsoft Works 2004 Setup Launcher-->C:\Program Files\Microsoft Works Suite 2004\Setup\Launcher.exe /ARP D:\
Microsoft Works Suite Add-in for Microsoft Word-->MsiExec.exe /I{33BEE6F3-9987-4F98-A069-97A64EC8321A}
Microsoft Works-->MsiExec.exe /I{B9966F27-9678-4620-9579-925E3084647E}
Monopoly Tycoon-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B975F4A1-63B6-11D4-BFEC-005004AF2D32}\Setup.exe"
Mozilla Firefox (3.0.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.17)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
Multimedia Mouse Driver-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{DB28FC86-D05E-4992-A8B4-A00AF3D777B8}
NeoPhoto-->C:\PROGRA~1\NeoPhoto\AskSurvey.exe
Nero - Burning Rom-->MsiExec.exe /X{A4D7B764-4140-11D4-88EB-0050DA3579C0}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
NVIDIA nForce Drivers-->C:\WINDOWS\System32\nvuninst.exe Uninstall C:\WINDOWS\System32\NVU001.nvu,NVIDIA nForce Drivers
OLYMPUS CAMEDIA Master 4.2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{30BB4D60-81DB-11D5-BB77-00400536ABAC}\setup.exe" CAMEDIA Master 4.2
OpenOffice.org 1.0.2-->C:\Program Files\OpenOffice.org1.0.2\program\setup.exe -deinstall
OurPictures-->MsiExec.exe /X{CD55BC4A-C299-4632-91A9-88705157EAC2}
PDF Settings-->MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
Philips GoGear Digital Audio Player-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\Professional\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8C99E9B3-292B-4E0D-A719-998AFF4DB27C}\Setup.exe" -l0x9
Photo Frame Show-->C:\PROGRA~1\FrameShow\UNWISE.EXE C:\PROGRA~1\FrameShow\INSTALL.LOG
PHOTOfunSTUDIO -viewer--->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\Professional\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\Setup.exe" -l0x9 Package
Picasa 2--> "C:\Program Files\Picasa2\Uninstall.exe "
QuickTime-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\Intel 32\IDriver.exe /M{929408E6-D265-4174-805F-81D1D914E2A4} /l1033
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\Professional\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x9 -removeonly
Registry Mechanic 7.0--> "C:\Program Files\Registry Mechanic\unins000.exe "
ScanToWeb-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}\setup.exe" ADDREMOVEDLG
Security Update for Windows Internet Explorer 7 (KB938127)--> "C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe "
Security Update for Windows Internet Explorer 7 (KB938127-v2)--> "C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe "
Security Update for Windows Internet Explorer 7 (KB956390)--> "C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe "
Security Update for Windows Media Player (KB911564)--> "C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe "
Security Update for Windows Media Player 6.4 (KB925398)--> "C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe "
Security Update for Windows Media Player 9 (KB911565)--> "C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe "
Security Update for Windows Media Player 9 (KB917734)--> "C:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe "
Security Update for Windows Media Player 9 (KB936782)--> "C:\WINDOWS\$NtUninstallKB936782_WMP9$\spuninst\spuninst.exe "
Security Update for Windows XP (KB890046)--> "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe "
Security Update for Windows XP (KB893066)--> "C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe "
Security Update for Windows XP (KB893756)--> "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe "
Security Update for Windows XP (KB896358)--> "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe "
Security Update for Windows XP (KB896422)--> "C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe "
Security Update for Windows XP (KB896423)--> "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe "
Security Update for Windows XP (KB896424)--> "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe "
Security Update for Windows XP (KB896428)--> "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe "
Security Update for Windows XP (KB896688)--> "C:\WINDOWS\$NtUninstallKB896688$\spuninst\spuninst.exe "
Security Update for Windows XP (KB899587)--> "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe "
Security Update for Windows XP (KB899588)--> "C:\WINDOWS\$NtUninstallKB899588$\spuninst\spuninst.exe "
Security Update for Windows XP (KB899591)--> "C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe "
Security Update for Windows XP (KB900725)--> "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe "
Security Update for Windows XP (KB901190)--> "C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe "
Security Update for Windows XP (KB901214)--> "C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe "
Security Update for Windows XP (KB902400)--> "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe "
Security Update for Windows XP (KB904706)--> "C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe "
Security Update for Windows XP (KB905414)--> "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe "
Security Update for Windows XP (KB905749)--> "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe "
Security Update for Windows XP (KB905915)--> "C:\WINDOWS\$NtUninstallKB905915$\spuninst\spuninst.exe "
Security Update for Windows XP (KB908519)--> "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe "
Security Update for Windows XP (KB908531)--> "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe "
Security Update for Windows XP (KB911562)--> "C:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe "
Security Update for Windows XP (KB911567)--> "C:\WINDOWS\$NtUninstallKB911567$\spuninst\spuninst.exe "
Security Update for Windows XP (KB911927)--> "C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe "
Security Update for Windows XP (KB912812)--> "C:\WINDOWS\$NtUninstallKB912812$\spuninst\spuninst.exe "
Security Update for Windows XP (KB912919)--> "C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe "
Security Update for Windows XP (KB913446)--> "C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe "
Security Update for Windows XP (KB913580)--> "C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe "
Security Update for Windows XP (KB914388)--> "C:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe "
Security Update for Windows XP (KB914389)--> "C:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe "
Security Update for Windows XP (KB916281)--> "C:\WINDOWS\$NtUninstallKB916281$\spuninst\spuninst.exe "
Security Update for Windows XP (KB917159)--> "C:\WINDOWS\$NtUninstallKB917159$\spuninst\spuninst.exe "
Security Update for Windows XP (KB917344)--> "C:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe "
Security Update for Windows XP (KB917422)--> "C:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe "
Security Update for Windows XP (KB917953)--> "C:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe "
Security Update for Windows XP (KB918118)--> "C:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe "
Security Update for Windows XP (KB918439)--> "C:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe "
Security Update for Windows XP (KB918899)--> "C:\WINDOWS\$NtUninstallKB918899$\spuninst\spuninst.exe "
Security Update for Windows XP (KB919007)--> "C:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe "
Security Update for Windows XP (KB920213)--> "C:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe "
Security Update for Windows XP (KB920214)--> "C:\WINDOWS\$NtUninstallKB920214$\spuninst\spuninst.exe "
Security Update for Windows XP (KB920670)--> "C:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe "
Security Update for Windows XP (KB920683)--> "C:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe "
Security Update for Windows XP (KB920685)--> "C:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe "
Security Update for Windows XP (KB921398)--> "C:\WINDOWS\$NtUninstallKB921398$\spuninst\spuninst.exe "
Security Update for Windows XP (KB921503)--> "C:\WINDOWS\$NtUninstallKB921503$\spuninst\spuninst.exe "
Security Update for Windows XP (KB921883)--> "C:\WINDOWS\$NtUninstallKB921883$\spuninst\spuninst.exe "
Security Update for Windows XP (KB922616)--> "C:\WINDOWS\$NtUninstallKB922616$\spuninst\spuninst.exe "
Security Update for Windows XP (KB922819)--> "C:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe "
Security Update for Windows XP (KB923191)--> "C:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe "
Security Update for Windows XP (KB923414)--> "C:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe "
Security Update for Windows XP (KB923689)--> "C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe "
Security Update for Windows XP (KB923694)--> "C:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe "
Security Update for Windows XP (KB923980)--> "C:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe "
Security Update for Windows XP (KB924191)--> "C:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe "
Security Update for Windows XP (KB924270)--> "C:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe "
Security Update for Windows XP (KB924496)--> "C:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe "
Security Update for Windows XP (KB924667)--> "C:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe "
Security Update for Windows XP (KB925454)--> "C:\WINDOWS\$NtUninstallKB925454$\spuninst\spuninst.exe "
Security Update for Windows XP (KB925486)--> "C:\WINDOWS\$NtUninstallKB925486$\spuninst\spuninst.exe "
Security Update for Windows XP (KB925902)--> "C:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe "
Security Update for Windows XP (KB926255)--> "C:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe "
Security Update for Windows XP (KB926436)--> "C:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe "
Security Update for Windows XP (KB927779)--> "C:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe "
Security Update for Windows XP (KB927802)--> "C:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe "
Security Update for Windows XP (KB928090)--> "C:\WINDOWS\$NtUninstallKB928090$\spuninst\spuninst.exe "
Security Update for Windows XP (KB928255)--> "C:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe "
Security Update for Windows XP (KB928843)--> "C:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe "
Security Update for Windows XP (KB929123)--> "C:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe "
Security Update for Windows XP (KB929969)--> "C:\WINDOWS\$NtUninstallKB929969$\spuninst\spuninst.exe "
Security Update for Windows XP (KB930178)--> "C:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe "
Security Update for Windows XP (KB931261)--> "C:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe "
Security Update for Windows XP (KB931768)--> "C:\WINDOWS\$NtUninstallKB931768$\spuninst\spuninst.exe "
Security Update for Windows XP (KB931784)--> "C:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe "
Security Update for Windows XP (KB932168)--> "C:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe "
Security Update for Windows XP (KB933566)--> "C:\WINDOWS\$NtUninstallKB933566$\spuninst\spuninst.exe "
Security Update for Windows XP (KB933729)--> "C:\WINDOWS\$NtUninstallKB933729$\spuninst\spuninst.exe "
Security Update for Windows XP (KB935839)--> "C:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe "
Security Update for Windows XP (KB935840)--> "C:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe "
Security Update for Windows XP (KB936021)--> "C:\WINDOWS\$NtUninstallKB936021$\spuninst\spuninst.exe "
Security Update for Windows XP (KB937143)--> "C:\WINDOWS\$NtUninstallKB937143$\spuninst\spuninst.exe "
Security Update for Windows XP (KB938127)--> "C:\WINDOWS\$NtUninstallKB938127$\spuninst\spuninst.exe "
Security Update for Windows XP (KB938464)--> "C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe "
Security Update for Windows XP (KB938829)--> "C:\WINDOWS\$NtUninstallKB938829$\spuninst\spuninst.exe "
Security Update for Windows XP (KB939653)--> "C:\WINDOWS\$NtUninstallKB939653$\spuninst\spuninst.exe "
Security Update for Windows XP (KB941202)--> "C:\WINDOWS\$NtUninstallKB941202$\spuninst\spuninst.exe "
Security Update for Windows XP (KB941568)--> "C:\WINDOWS\$NtUninstallKB941568$\spuninst\spuninst.exe "
Security Update for Windows XP (KB941569)--> "C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe "
Security Update for Windows XP (KB941644)--> "C:\WINDOWS\$NtUninstallKB941644$\spuninst\spuninst.exe "
Security Update for Windows XP (KB941693)--> "C:\WINDOWS\$NtUninstallKB941693$\spuninst\spuninst.exe "
Security Update for Windows XP (KB942615)--> "C:\WINDOWS\$NtUninstallKB942615$\spuninst\spuninst.exe "
Security Update for Windows XP (KB943055)--> "C:\WINDOWS\$NtUninstallKB943055$\spuninst\spuninst.exe "
Security Update for Windows XP (KB943460)--> "C:\WINDOWS\$NtUninstallKB943460$\spuninst\spuninst.exe "
Security Update for Windows XP (KB943485)--> "C:\WINDOWS\$NtUninstallKB943485$\spuninst\spuninst.exe "
Security Update for Windows XP (KB944338)--> "C:\WINDOWS\$NtUninstallKB944338$\spuninst\spuninst.exe "
Security Update for Windows XP (KB944533)--> "C:\WINDOWS\$NtUninstallKB944533$\spuninst\spuninst.exe "
Security Update for Windows XP (KB944653)--> "C:\WINDOWS\$NtUninstallKB944653$\spuninst\spuninst.exe "
Security Update for Windows XP (KB945553)--> "C:\WINDOWS\$NtUninstallKB945553$\spuninst\spuninst.exe "
Security Update for Windows XP (KB946026)--> "C:\WINDOWS\$NtUninstallKB946026$\spuninst\spuninst.exe "
Security Update for Windows XP (KB946648)--> "C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe "
Security Update for Windows XP (KB947864)--> "C:\WINDOWS\$NtUninstallKB947864$\spuninst\spuninst.exe "
Security Update for Windows XP (KB948590)--> "C:\WINDOWS\$NtUninstallKB948590$\spuninst\spuninst.exe "
Security Update for Windows XP (KB948881)--> "C:\WINDOWS\$NtUninstallKB948881$\spuninst\spuninst.exe "
Security Update for Windows XP (KB950749)--> "C:\WINDOWS\$NtUninstallKB950749$\spuninst\spuninst.exe "
Security Update for Windows XP (KB950760)--> "C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe "
Security Update for Windows XP (KB950762)--> "C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe "
Security Update for Windows XP (KB950974)--> "C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951066)--> "C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951376-v2)--> "C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951698)--> "C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951748)--> "C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe "
Security Update for Windows XP (KB952954)--> "C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe "
Security Update for Windows XP (KB954211)--> "C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe "
Security Update for Windows XP (KB956391)--> "C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe "
Security Update for Windows XP (KB956803)--> "C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe "
Security Update for Windows XP (KB956841)--> "C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe "
Security Update for Windows XP (KB957095)--> "C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe "
Security Update for Windows XP (KB958644)--> "C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe "
Shockwave-->C:\WINDOWS\system32\Macromed\Shockwave 8\UNWISE.EXE C:\WINDOWS\system32\Macromed\Shockwave 8\Install.log
SimIsle-->C:\WINDOWS\uninst.exe -f "C:\Program Files\Maxis\SimIsle\DeIsL1.isu "
SimSafari-->C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\DeIsL1.isu
SpamPal--> "C:\Program Files\SpamPal\Uninstall.exe" "C:\Program Files\SpamPal\install.log "
Streets of SimCity-->C:\WINDOWS\uninst.exe -f "C:\Program Files\Maxis\Streets of SimCity\DeIsL1.isu "
Sudoku Unlimited-->MsiExec.exe /I{7080C5C0-F621-4C0C-AA37-29AC6EFB6B42}
Triscape FxFoto-->C:\Program Files\FxFoto\FxViewer.exe -U1
Update for Windows XP (KB894391)--> "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe "
Update for Windows XP (KB896727)--> "C:\WINDOWS\$NtUninstallKB896727$\spuninst\spuninst.exe "
Update for Windows XP (KB898461)--> "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe "
Update for Windows XP (KB900485)--> "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe "
Update for Windows XP (KB910437)--> "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe "
Update for Windows XP (KB911280)--> "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe "
Update for Windows XP (KB916595)--> "C:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe "
Update for Windows XP (KB920872)--> "C:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe "
Update for Windows XP (KB922582)--> "C:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe "
Update for Windows XP (KB927891)--> "C:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe "
Update for Windows XP (KB929338)--> "C:\WINDOWS\$NtUninstallKB929338$\spuninst\spuninst.exe "
Update for Windows XP (KB930916)--> "C:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe "
Update for Windows XP (KB931836)--> "C:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe "
Update for Windows XP (KB932823-v3)--> "C:\WINDOWS\$NtUninstallKB932823-v3$\spuninst\spuninst.exe "
Update for Windows XP (KB933360)--> "C:\WINDOWS\$NtUninstallKB933360$\spuninst\spuninst.exe "
Update for Windows XP (KB938828)--> "C:\WINDOWS\$NtUninstallKB938828$\spuninst\spuninst.exe "
Update for Windows XP (KB942763)--> "C:\WINDOWS\$NtUninstallKB942763$\spuninst\spuninst.exe "
Update for Windows XP (KB942840)--> "C:\WINDOWS\$NtUninstallKB942840$\spuninst\spuninst.exe "
Update for Windows XP (KB946627)--> "C:\WINDOWS\$NtUninstallKB946627$\spuninst\spuninst.exe "
Update for Windows XP (KB951072-v2)--> "C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe "
USB2.0 CARD READER Icons and Drivers-->MsiExec.exe /I{CF7049C6-C595-46E9-BED7-50F6A28ACB00}
WConfig-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\Professional\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{76C68741-1D67-466A-9F18-E7FE37F49DFD}\Setup.exe" -l0x9
Westwood Shared Internet Components-->C:\Westwood\Internet\UnstllAP.EXE
Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
Windows Installer 3.1 (KB893803)--> "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe "
Windows Internet Explorer 7--> "C:\WINDOWS\ie7\spuninst\spuninst.exe "
Windows Live installer-->MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Live Messenger-->MsiExec.exe /X{508CE775-4BA4-4748-82DF-FE28DA9F03B0}
Windows Live Sign-in Assistant-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Windows Media Format 11 runtime--> "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime--> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe "
Windows Media Player 11--> "C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11--> "C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe "
Windows XP Hotfix - KB873333-->C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst.exe
Windows XP Hotfix - KB873339-->C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
Windows XP Hotfix - KB885250-->C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
Windows XP Hotfix - KB885835-->C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
Windows XP Hotfix - KB885836-->C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
Windows XP Hotfix - KB885884-->C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
Windows XP Hotfix - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
Windows XP Hotfix - KB887472-->C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
Windows XP Hotfix - KB887742-->C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
Windows XP Hotfix - KB888113-->C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
Windows XP Hotfix - KB888302-->C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
Windows XP Hotfix - KB890859--> "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe "
Windows XP Hotfix - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
Windows XP Hotfix - KB893086--> "C:\WINDOWS\$NtUninstallKB893086$\spuninst\spuninst.exe "
Windows XP Service Pack 2-->C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
WinZip--> "C:\Program Files\WinZip\WINZIP32.EXE" /uninstall
Xfire (remove only)--> "C:\Program Files\Xfire\uninst.exe "
Xvid 1.1.3 final uninstall--> "C:\Program Files\Xvid\unins000.exe "
Your Uninstaller! 2008 Version 6.0--> "C:\Program Files\Your Uninstaller 2008\unins000.exe "

======Hosts File======

66.98.148.65 auto.search.msn.com
66.98.148.65 auto.search.msn.es

======Security center information======

AV: 0.-1.2089878893 (disabled) (outdated)
AV: avast! antivirus 4.7.1098 [VPS 081026-0]

======Environment variables======

"ComSpec "=%SystemRoot%\system32\cmd.exe
"Path "=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
"windir "=%SystemRoot%
"OS "=Windows_NT
"PROCESSOR_ARCHITECTURE "=x86
"PROCESSOR_LEVEL "=6
"PROCESSOR_IDENTIFIER "=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION "=0a00
"NUMBER_OF_PROCESSORS "=1
"PATHEXT "=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP "=%SystemRoot%\TEMP
"TMP "=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK "=NO
"CLASSPATH "=C:\Program Files\QuickTime\QTSystem\QTJava.zip
"QTJAVA "=C:\Program Files\QuickTime\QTSystem\QTJava.zip
"SAFEBOOT_OPTION "=NETWORK

-----------------EOF-----------------

noahdfear · 2008/10/29

Welcome to WindowsBBS baka101

Please scan with HijackThis and place a check next to each of the following entries.

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 0.0.0.0:80
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es

Close all open browser windows then click Fixed Checked.
Restart your computer and run a new scan with HijackThis, this time saving the logfile. Post the contents of that log here please.

Does the avast! log give you any details about the detection(s), such as path or name?

baka101 · 2008/10/31

I disabled internet explorer myself to prevent it from accessing the internet by changing the proxy to 0.0.0.80, also this is really odd I can only get into safe mode but not normal windows cause when I try to the monitor kicks into powersafe mode then ticks down from 5 then goes blank and no amount of click with mouse or keyboard will get me out of that state, so please help me get out of this state.

Thanks

noahdfear · 2008/11/02

First, I ask again. Does the avast! log give you any details about the detection(s), such as path or name?

Download ComboFix by sUBs from here, saving the file to your desktop.

Please disable realtime protection applications as they sometimes interfere with the tool. Check this link for your applicable programs.

Close all open programs and windows

Double click ComboFix.exe and follow the prompts.

It may reboot your computer and resume running when you logon. Wait for it to complete. When finished, it will open a log for you. Post that log and give me an update on the computer in your next reply.

Note: Do not mouseclick combofix's window while its running. That may cause it to stall

Log in or Sign up

Inactive [InActive] Hit with Win32:Adware-gen[Adw],VBS:Malware-gen

baka101 Inactive Thread Starter

baka101 Inactive Thread Starter

noahdfear Inactive

baka101 Inactive Thread Starter

noahdfear Inactive

Share This Page

Log in or Sign up

Inactive [InActive] Hit with Win32:Adware-gen[Adw],VBS:Malware-gen

baka101 Inactive Thread Starter

baka101 Inactive Thread Starter

noahdfear Inactive

baka101 Inactive Thread Starter

noahdfear Inactive

Share This Page

Useful Searches