Malwarebytes' Anti-Malware 1.32
Database version: 1632
Windows 5.1.2600 Service Pack 2
1/8/2009 11:44:02 PM
mbam-log-2009-01-08 (23-44-02).txt
Scan type: Full Scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|)
Objects scanned: 187403
Time elapsed: 1 hour(s), 57 minute(s), 6 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
Logfile of random's system information tool 1.05 (written by random/random)
Run by Compaq_Owner at 2009-01-08 23:49:49
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 30 GB (58%) free of 51 GB
Total RAM: 191 MB (21% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:49:54 PM, on 1/8/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\Java\jre1.5.0\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Compaq_Owner\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Compaq_Owner.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopR0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktopO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &Google Search -
res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward Links -
res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page -
res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages -
res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English -
res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) -
http://games.myspace.com/Gameshell/Game ... meHost.cabO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll,avgrsstx.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
--
End of file - 7427 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Norton Security Scan for Compaq_Owner.job
C:\WINDOWS\tasks\RegCure Program Check.job
C:\WINDOWS\tasks\RegCure.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03 54248]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2008-10-16 455960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2005-06-21 720896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2005-06-21 720896]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SiSPower"=C:\WINDOWS\system32\SiSPower.dll [2005-01-04 49152]
"HPBootOp"=C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [2005-02-26 245760]
"LSBWatcher"=c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe [2004-10-14 253952]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2005-06-21 180269]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2009-01-05 1797880]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2008-10-09 333120]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-01-05 1261336]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\WINDOWS\system32\guard32.dll,avgrsstx.dll"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe"="C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe:*:Enabled:BackWeb for Presario"
"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe"="C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%ProgramFiles%\iTunes\iTunes.exe"="%ProgramFiles%\iTunes\iTunes.exe:*:enabled:iTunes"
======List of files/folders created in the last 1 months======
2009-01-08 08:48:30 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Safer Networking
2009-01-08 08:25:48 ----A---- C:\WINDOWS\gmer.ini
2009-01-08 08:25:44 ----RA---- C:\WINDOWS\gmer.exe
2009-01-08 08:25:44 ----A---- C:\WINDOWS\gmer_uninstall.cmd
2009-01-08 08:25:44 ----A---- C:\WINDOWS\gmer.dll
2009-01-08 00:25:35 ----D---- C:\Program Files\Misc. Support Library (Spybot - Search & Destroy)
2009-01-08 00:25:22 ----D---- C:\Program Files\File Scanner Library (Spybot - Search & Destroy)
2009-01-07 02:49:33 ----D---- C:\Program Files\Lavasoft
2009-01-07 02:47:47 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2009-01-06 13:09:50 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\AdobeUM
2009-01-06 10:31:47 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Sun
2009-01-06 07:50:39 ----A---- C:\WINDOWS\system32\MRT.exe
2009-01-05 16:42:30 ----N---- C:\WINDOWS\system32\xpsp3res.dll
2009-01-05 16:26:39 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Adobe
2009-01-05 16:13:12 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-01-05 15:55:07 ----A---- C:\WINDOWS\system32\wajao.txt
2009-01-05 12:55:51 ----A---- C:\WINDOWS\system32\LuResult.txt
2009-01-05 12:47:08 ----RSHD---- C:\cmdcons
2009-01-05 12:32:48 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-01-05 12:31:49 ----ASH---- C:\Documents and Settings\Compaq_Owner\Application Data\desktop.ini
2009-01-05 12:31:47 ----SD---- C:\Documents and Settings\Compaq_Owner\Application Data\Microsoft
2009-01-05 12:31:47 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Symantec
2009-01-05 12:31:47 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\SampleView
2009-01-05 12:31:47 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Real
2009-01-05 12:31:47 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\InterMute
2009-01-05 12:31:47 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Identities
2009-01-05 12:31:47 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Apple Computer
2009-01-05 12:14:39 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Malwarebytes
2009-01-05 11:31:13 ----D---- C:\WINDOWS\system32\PreInstall
2009-01-05 11:31:12 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-01-05 11:25:19 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2009-01-05 11:24:53 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\AVGTOOLBAR
2009-01-05 11:20:22 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\WinPatrol
2009-01-05 11:18:23 ----RSHD---- C:\WINDOWS\system32\dllcache
2009-01-05 11:09:40 ----A---- C:\WINDOWS\system32\guard32.dll
2009-01-05 11:07:13 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-01-05 11:06:55 ----D---- C:\Documents and Settings\Compaq_Owner\Application Data\Macromedia
2009-01-05 08:57:14 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-01-05 07:59:19 ----A---- C:\rapport.txt
2009-01-02 22:36:28 ----D---- C:\USERDATA
2008-12-18 03:01:10 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2008-12-13 20:05:08 ----D---- C:\Program Files\Adobe Media Player
2008-12-13 20:04:57 ----D---- C:\Program Files\Common Files\Adobe AIR
2008-12-11 03:02:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-12-11 03:01:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-12-11 03:01:26 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2008-12-11 03:01:14 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-12-11 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2008-12-10 20:34:34 ----D---- C:\WINDOWS\wt
======List of files/folders modified in the last 1 months======
2009-01-08 23:49:53 ----D---- C:\WINDOWS\temp
2009-01-08 23:46:27 ----D---- C:\WINDOWS\Prefetch
2009-01-08 13:11:19 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-01-08 13:01:46 ----D---- C:\WINDOWS\system32\drivers
2009-01-08 08:58:20 ----D---- C:\Program Files
2009-01-08 08:30:57 ----D---- C:\WINDOWS
2009-01-08 08:12:22 ----HD---- C:\$AVG8.VAULT$
2009-01-08 01:57:35 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-01-08 01:52:45 ----AC---- C:\WINDOWS\wininit.ini
2009-01-08 00:11:09 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-01-08 00:09:51 ----D---- C:\Program Files\SpywareBlaster
2009-01-07 23:55:08 ----D---- C:\WINDOWS\system32\CatRoot2
2009-01-07 21:53:02 ----HD---- C:\Config.Msi
2009-01-07 21:51:36 ----SHD---- C:\WINDOWS\Installer
2009-01-07 21:51:08 ----D---- C:\WINDOWS\system32
2009-01-07 20:59:39 ----A---- C:\WINDOWS\IE4 Error Log.txt
2009-01-07 02:47:47 ----D---- C:\Program Files\Common Files
2009-01-06 08:41:05 ----D---- C:\WINDOWS\system32\CatRoot
2009-01-06 08:39:39 ----HD---- C:\WINDOWS\inf
2009-01-06 03:54:27 ----D---- C:\WINDOWS\system32\Macromed
2009-01-06 03:47:57 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-01-06 03:47:52 ----A---- C:\WINDOWS\imsins.BAK
2009-01-06 03:47:48 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-01-06 03:47:40 ----D---- C:\Program Files\Messenger
2009-01-06 03:47:37 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-01-06 03:47:27 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-01-06 03:47:05 ----HDC---- C:\WINDOWS\$NtUninstallKB923723$
2009-01-06 03:46:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2009-01-06 03:46:27 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2009-01-06 03:46:07 ----D---- C:\Program Files\Internet Explorer
2009-01-06 03:45:28 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-01-06 03:45:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-01-06 03:44:56 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-01-06 03:44:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-01-06 03:40:40 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-01-06 03:40:15 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-01-06 03:39:53 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-01-06 03:39:41 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-01-06 03:39:00 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2009-01-06 03:35:56 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-01-06 03:32:22 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-01-06 03:28:21 ----D---- C:\WINDOWS\WinSxS
2009-01-06 03:27:54 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2009-01-06 03:18:39 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-01-06 03:18:02 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-01-06 03:13:42 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-01-06 03:06:06 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2009-01-05 16:23:05 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-01-05 13:03:58 ----D---- C:\Program Files\Common Files\Symantec Shared
2009-01-05 13:03:45 ----SD---- C:\WINDOWS\Tasks
2009-01-05 13:00:02 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2009-01-05 12:59:24 ----D---- C:\WINDOWS\security
2009-01-05 12:53:47 ----D---- C:\Program Files\Easy Internet signup
2009-01-05 12:52:18 ----D---- C:\Program Files\Common Files\InstallShield
2009-01-05 12:52:17 ----D---- C:\Program Files\Hewlett-Packard
2009-01-05 12:51:49 ----HD---- C:\Program Files\InstallShield Installation Information
2009-01-05 12:48:37 ----RASH---- C:\boot.ini
2009-01-05 12:47:08 ----AC---- C:\WINDOWS\UPGRADE.TXT
2009-01-05 12:47:04 ----D---- C:\WINDOWS\setup.pss
2009-01-05 12:36:15 ----A---- C:\WINDOWS\system32\ssmute.ini
2009-01-05 12:34:38 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-01-05 12:32:51 ----A---- C:\WINDOWS\OEWABLog.txt
2009-01-05 12:31:46 ----D---- C:\Documents and Settings
2009-01-05 12:30:38 ----A---- C:\WINDOWS\setuplog.txt
2009-01-05 12:30:32 ----D---- C:\sysprep
2009-01-05 12:30:12 ----HD---- C:\HP
2009-01-05 12:28:54 ----RASH---- C:\BOOT.BAK
2009-01-05 12:28:02 ----D---- C:\WINDOWS\Registration
2009-01-05 12:25:55 ----A---- C:\WINDOWS\system.ini
2009-01-05 12:04:02 ----SHD---- C:\RECYCLER
2009-01-05 11:34:21 ----D---- C:\WINDOWS\system
2009-01-05 11:34:00 ----D---- C:\WINDOWS\I386
2009-01-05 11:32:42 ----D---- C:\Program Files\Symantec
2009-01-05 11:32:03 ----D---- C:\Program Files\Windows NT
2009-01-05 11:32:01 ----D---- C:\Program Files\Windows Media Player
2009-01-05 11:32:01 ----D---- C:\Program Files\Outlook Express
2009-01-05 11:32:00 ----D---- C:\Program Files\NetMeeting
2009-01-05 11:31:59 ----D---- C:\Program Files\Movie Maker
2009-01-05 11:31:53 ----D---- C:\Program Files\Common Files\System
2009-01-05 11:31:51 ----D---- C:\Program Files\Common Files\Services
2009-01-05 11:31:45 ----D---- C:\WINDOWS\system32\wbem
2009-01-05 11:31:40 ----D---- C:\WINDOWS\system32\usmt
2009-01-05 11:31:30 ----D---- C:\WINDOWS\system32\ras
2009-01-05 11:31:28 ----D---- C:\WINDOWS\system32\oobe
2009-01-05 11:31:20 ----D---- C:\WINDOWS\system32\npp
2009-01-05 11:31:11 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-01-05 11:31:06 ----D---- C:\WINDOWS\system32\icsxml
2009-01-05 11:31:06 ----D---- C:\WINDOWS\system32\ias
2009-01-05 11:29:17 ----D---- C:\WINDOWS\system32\Setup
2009-01-05 11:29:16 ----D---- C:\WINDOWS\system32\Restore
2009-01-05 11:29:14 ----D---- C:\WINDOWS\system32\Com
2009-01-05 11:29:12 ----D---- C:\WINDOWS\srchasst
2009-01-05 11:29:07 ----D---- C:\WINDOWS\msagent
2009-01-05 11:29:07 ----D---- C:\WINDOWS\ime
2009-01-05 11:29:06 ----RD---- C:\WINDOWS\Web
2009-01-05 11:29:06 ----D---- C:\WINDOWS\addins
2009-01-05 11:28:58 ----D---- C:\WINDOWS\PeerNet
2009-01-05 11:28:57 ----D---- C:\WINDOWS\Media
2009-01-05 11:28:48 ----RSD---- C:\WINDOWS\Fonts
2009-01-05 11:28:42 ----D---- C:\WINDOWS\Cursors
2009-01-05 11:28:38 ----D---- C:\WINDOWS\AppPatch
2009-01-05 11:28:38 ----AHDC---- C:\WINDOWS\$NtUninstallKB891781$
2009-01-05 11:28:38 ----AHDC---- C:\WINDOWS\$NtUninstallKB890175$
2009-01-05 11:28:38 ----AHDC---- C:\WINDOWS\$NtUninstallKB888239$
2009-01-05 11:28:37 ----AHDC---- C:\WINDOWS\$NtUninstallKB888113$
2009-01-05 11:28:37 ----AHDC---- C:\WINDOWS\$NtUninstallKB887742$
2009-01-05 11:28:37 ----AHDC---- C:\WINDOWS\$NtUninstallKB885836$
2009-01-05 11:28:37 ----AHDC---- C:\WINDOWS\$NtUninstallKB885835$
2009-01-05 11:28:37 ----AHDC---- C:\WINDOWS\$NtUninstallKB885250$
2009-01-05 11:28:36 ----AHDC---- C:\WINDOWS\$NtUninstallKB883667$
2009-01-05 11:28:36 ----AHDC---- C:\WINDOWS\$NtUninstallKB873339$
2009-01-05 11:28:36 ----AHDC---- C:\WINDOWS\$NtUninstallKB867282$
2009-01-05 11:28:32 ----RHD---- C:\MSOCache
2009-01-05 11:27:56 ----RD---- C:\WINDOWS\Offline Web Pages
2009-01-05 11:27:55 ----RSD---- C:\WINDOWS\assembly
2009-01-05 11:23:39 ----D---- C:\Documents and Settings\All Users\Application Data\avg8
2009-01-05 11:09:30 ----D---- C:\Program Files\COMODO
2009-01-05 11:07:21 ----D---- C:\WINDOWS\SoftwareDistribution
2009-01-05 11:07:21 ----D---- C:\WINDOWS\Help
2009-01-05 08:55:14 ----A---- C:\WINDOWS\ntbtlog.txt
2009-01-02 18:00:36 ----D---- C:\Program Files\Norton Security Scan
2009-01-02 09:55:05 ----D---- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2009-01-02 09:48:46 ----HD---- C:\WINDOWS\msdownld.tmp
2009-01-02 09:48:32 ----D---- C:\Program Files\Yahoo!
2009-01-02 09:46:22 ----HDC---- C:\WINDOWS\ie7
2009-01-02 09:41:45 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2008-12-17 23:38:36 ----D---- C:\Program Files\HP
2008-12-12 12:33:23 ----A---- C:\WINDOWS\system32\mshtml.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-01-05 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-01-05 26824]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2009-01-05 101776]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2009-01-05 31504]
R1 SiSkp;SiSkp; C:\WINDOWS\system32\DRIVERS\srvkp.sys [2005-04-12 11904]
R2 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-01-05 76040]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2004-06-29 1268204]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-04-20 2317696]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800]
R3 GEARAspiWDM;GEAR CDRom Filter; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2004-09-14 13872]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824]
R3 SiS315;SiS315; C:\WINDOWS\system32\DRIVERS\sisgrp.sys [2005-04-12 247296]
R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\sisnic.sys [2003-07-11 32768]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys []
S3 gmer;gmer; C:\WINDOWS\System32\DRIVERS\gmer.sys [2009-01-08 85969]
S3 PcdrNdisuio;PCDRNDISUIO Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\pcdrndisuio.sys [2005-01-19 12416]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-04 20480]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2004-08-04 5504]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-09-10 611664]
R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-10-16 875288]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-10-16 231704]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2009-01-05 618232]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 NetFxUpdate_v1.1.4322;Microsoft .NET Framework v1.1.4322 Update; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe [2007-01-15 73728]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
R3 iPodService;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2004-10-14 327680]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2004-08-04 267776]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
-----------------EOF-----------------
No Info.txt ever came up I tried doing it 3 different times and the only thing that would come up is the log.txt
Let me know if there is something else I need to dodifferently to get what you need.