Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Computer Freezes/Stops for Minutes at a Time

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 3rd, 2010, 5:17 pm

Adobe Acrobat 9 Pro
Adobe Acrobat 9 Pro
Adobe Acrobat 9.3.3 - CPSID_83708
Adobe Flash Player 10 ActiveX
Adobe Reader 7.0.5 Language Support
Adobe Reader 7.0.7
AV220
CCleaner
EPSON Printer Software
HiJackThis
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB981793)
ING's Illustrator
InvestmentLink Import Wizard
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional 2007
Microsoft Office Professional 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server Desktop Engine
Microsoft SQL Server Desktop Engine (INGAUSTRALIA)
Microsoft User-Mode Driver Framework Feature Pack 1.0
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
MYOB Accounting Plus v12
MYOB Accounting Plus v15
MYOB Accounting Plus v17
MYOB ODBC Direct v7
Nero OEM
NVIDIA Drivers
NVIDIA PhysX
OGA Notifier 2.0.0048.0
PlanTech XML Export
Pro-Planner 5.0
ProPlanner Import Wizard for Morningstar Data
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Realtek High Definition Audio Driver
Risk Researcher Installation/Upgrade - February 2006 (v5.5.602)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for 2007 Microsoft Office System (KB982312)
Security Update for 2007 Microsoft Office System (KB982331)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB982308)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office Outlook 2007 (KB980376)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office Publisher 2007 (KB982124)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB982135)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Search 4 - KB963093
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB982381)
ShadowProtect Desktop
TeamViewer 5 Host
Trend Micro Internet Security Pro
Trend Micro Internet Security Pro
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft Windows (KB971513)
Update for Outlook 2007 Junk Email Filter (kb2202131)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB982632)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows Search 4.0
WinRAR archiver
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am
Advertisement
Register to Remove

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 4th, 2010, 3:53 am

Hi. :)

You have posted another HijackThis uninstall log, I requested the MGADiag log. Please run the tool as outlined here and then in turn post the corresponding log back in this topic, thank you.

This is what I am asking for if still unclear:-
  • Please download this tool from Microsoft.
  • Double click on MGADiag.exe to run it.
  • Click Continue.
  • The program will run. It takes a while to finish the diagnosis, please be patient.
  • Once done, click on Copy.
  • Open Notepad and paste the contents in. Save this file and post it in your next reply.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8804
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 4th, 2010, 5:07 am

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->
Validation Status: Genuine
Validation Code: 0
Cached Validation Code: N/A
Windows Product Key: *****-*****-277QH-FWV6Q-9KQPQ
Windows Product Key Hash: El0sqtfFDGNqvyi5nyvf4DjOMNw=
Windows Product ID: 76487-OEM-2227591-39505
Windows Product ID Type: 3
Windows License Type: OEM System Builder
Windows OS version: 5.1.2600.2.00010100.3.0.pro
ID: {642713A2-23BE-4008-81C9-79CFB65124D7}(3)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: Registered, 1.9.40.0
Signed By: Microsoft
Product Name: N/A
Architecture: N/A
Build lab: N/A
TTS Error: N/A
Validation Diagnostic: 025D1FF3-230-1
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A
Version: N/A

Windows XP Notifications Data-->
Cached Result: 0
File Exists: Yes
Version: 1.9.40.0
WgaTray.exe Signed By: Microsoft
WgaLogon.dll Signed By: Microsoft

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: 2.0.48.0
OGAExec.exe Signed By: Microsoft
OGAAddin.dll Signed By: Microsoft

OGA Data-->
Office Status: 100 Genuine
Microsoft Office Professional 2007 - 100 Genuine
OGA Version: Registered, 2.0.48.0
Signed By: Microsoft
Office Diagnostics: 025D1FF3-230-1

Browser Data-->
Proxy settings: N/A
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files\Internet Explorer\IEXPLORE.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{642713A2-23BE-4008-81C9-79CFB65124D7}</UGUID><Version>1.9.0027.0</Version><OS>5.1.2600.2.00010100.3.0.pro</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-9KQPQ</PKey><PID>76487-OEM-2227591-39505</PID><PIDType>3</PIDType><SID>S-1-5-21-1202660629-823518204-682003330</SID><SYSTEM><Manufacturer>System manufacturer</Manufacturer><Model>System Product Name</Model></SYSTEM><BIOS><Manufacturer>American Megatrends Inc.</Manufacturer><Version>0806 </Version><SMBIOSVersion major="2" minor="5"/><Date>20090818000000.000000+000</Date></BIOS><HWID>60953EFF01846079</HWID><UserLCID>0C09</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>E. Australia Standard Time(GMT+10:00)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM/><GANotification><File Name="WgaTray.exe" Version="1.9.40.0"/><File Name="WgaLogon.dll" Version="1.9.40.0"/><File Name="OGAAddin.dll" Version="2.0.48.0"/></GANotification></MachineData><Software><Office><Result>100</Result><Products><Product GUID="{91120000-0014-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office Professional 2007</Name><Ver>12</Ver><Val>A6320D75D65E778</Val><Hash>GKduN9JfMYT7twfePDn3K2tBTIM=</Hash><Pid>81605-956-0193233-65034</Pid><PidType>1</PidType></Product></Products><Applications><App Id="15" Version="12" Result="100"/><App Id="16" Version="12" Result="100"/><App Id="18" Version="12" Result="100"/><App Id="19" Version="12" Result="100"/><App Id="1A" Version="12" Result="100"/><App Id="1B" Version="12" Result="100"/></Applications></Office></Software></GenuineResults>

Licensing Data-->
N/A

Windows Activation Technologies-->
N/A

HWID Data-->
N/A

OEM Activation 1.0 Data-->
BIOS string matches: yes
Marker string from BIOS: 13450:ASUSTeK Computer Inc|14B0F:GENUINE C&C INC
Marker string from OEMBIOS.DAT: N/A, hr = 0x80004005

OEM Activation 2.0 Data-->
N/A
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 4th, 2010, 5:43 am

Hi. :)

Take your time with the below:-

TFC(Temp File Cleaner):

  • Please download TFC to your desktop,
  • Save any unsaved work. TFC will close all open application windows.
  • Double-click TFC.exe to run the program.
  • Click the Start button in the bottom left of TFC
  • If prompted, click "Yes" to reboot.

Note: Save your work. TFC will automatically close any open programs, let it run uninterrupted. It should not take longer than a couple of minutes , and may only take a few seconds. Only if needed will you be prompted to reboot.

Next:

If your machine was not rebooted please do so now and then run Rkill again. I do not need to review a new Rkill log.

Reset Host File:

  • Open Notepad.
  • Copy and Paste everything from the Code Box below into Notepad: <-- Start >> Run... type in notepad and select OK
Code: Select all
@Echo off
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
del %0
  • Go to File >> Save As
  • Save File name as "Dakeyras.bat" <-- Make sure to include the quotes.
  • Change Save as Type to All Files and save the file to your Desktop.
  • It should look like this: Image

Now double click on the desktop Dakeyras.bat to run the batch file. It will self-delete when completed.

Malwarebytes Anti-Malware:

  • Launch the application, Check for Updates >> Perform a Quick Scan
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply.

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.

Next:

Please make sure that RSIT.exe is still on the Desktop.(if not inform myself straight away please)

Click on Start >> Run...(or the Windows key and R together) to bring up the Run box and and copy and paste in:
"%userprofile%\desktop\rsit.exe" /info
and click on OK

  • Click on Run and RSIT will start.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open:
    • log.txt will be opened maximized.
    • info.txt will be opened minimized.
  • Please post the contents of both log.txt and info.txt.

When completed the above, please post back the following in the order asked for:

  • How is you computer performing now, any other symptoms and or problems encountered?
  • Malwarebytes Anti-Malware Log.
  • A new set of RSIT logs. <-- Post them individually please, IE: one Log per post/reply.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8804
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 4th, 2010, 6:02 am

Question on reset Host File
Do I type the <<--Start>>Run...
before the commands I copy and paste into notebook or after???
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 4th, 2010, 6:08 am

No that is merely a instruction on how to open the notepad. You can also open notepad via:-

Start >> All Programs >> Accessories >> Notepad

Then copy and paste the contents of the code-box into the notepad window and follow the rest of the instructions etc. :)
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8804
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 4th, 2010, 6:25 am

Puter seems ok but once again the problem is intermittent so will have to monitor !

After running TFC got error messages from Trend and also Adobe But they seem to be working ok
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 4th, 2010, 6:27 am

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4387

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

4/08/2010 8:12:46 PM
mbam-log-2010-08-04 (20-12-46).txt

Scan type: Quick scan
Objects scanned: 130168
Time elapsed: 4 minute(s), 5 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 4th, 2010, 6:27 am

Logfile of random's system information tool 1.08 (written by random/random)
Run by Ben at 2010-08-04 20:15:10
Microsoft Windows XP Professional Service Pack 3
System drive C: has 131 GB (88%) free of 150 GB
Total RAM: 3326 MB (80% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:15:19 PM, on 4/08/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Microsoft SQL Server\MSSQL$INGAUSTRALIA\Binn\sqlservr.exe
C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe
C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
C:\WINDOWS\System32\vssvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\TeamViewer\Version5\TeamViewer.exe
C:\WINDOWS\system32\vsnapvss.exe
C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlagent.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\eFax Messenger 4.4\J2GTray.exe
C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\ProToolbarUpdate.exe
C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
C:\Program Files\Trend Micro\Internet Security\TmPfw.exe
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\PlatformDependent\ProToolbarComm.exe
C:\Program Files\Trend Micro\TrendSecure\TSCFPlatformCOMSvr.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Ben\desktop\rsit.exe
C:\Program Files\trend micro\Ben.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Trend Micro Toolbar BHO - {43C6D902-A1C5-45c9-91F6-FD9E90337E18} - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [UfSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [eFax 4.4] "C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe" /R
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe"
O4 - Startup: eFax 4.4.lnk = C:\Program Files\eFax Messenger 4.4\J2GTray.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {5BCC24A7-7D3F-4CC9-AC86-4380FCD68D1E} (PCInfoOcxEN Control) - http://esupport.trendmicro.com/_layouts ... PCInfo.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9880923000
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
O23 - Service: ShadowProtect Service (ShadowProtectSvc) - StorageCraft Technology Corporation - C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
O23 - Service: StorageCraft Shadow Copy Provider (VSNAPVSS) - StorageCraft Technology Corporation - C:\WINDOWS\system32\vsnapvss.exe

--
End of file - 8637 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2010-06-19 61888]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{43C6D902-A1C5-45c9-91F6-FD9E90337E18}]
TSToolbarBHO - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll [2009-07-27 148816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-06-19 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-06-19 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCAC5586-44D7-4c43-B64A-F042461A97D2} - Trend Micro Toolbar - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll [2009-07-27 148816]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-06-19 349640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-27 17567744]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-09-27 13918208]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-09-27 86016]
"UfSeAgnt.exe"=C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe [2010-01-26 1020248]
"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2010-06-19 38840]
""= []
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2010-06-19 640440]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"Scheduler"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eFax 4.4"=C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe [2010-07-03 95744]
"updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [2005-10-24 307200]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OE"=C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe [2010-07-05 492808]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

C:\Documents and Settings\Ben\Start Menu\Programs\Startup
eFax 4.4.lnk - C:\Program Files\eFax Messenger 4.4\J2GTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\TeamViewer\Version5\TeamViewer.exe"="C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-08-03 20:50:42 ----D---- C:\rsit
2010-08-03 18:52:45 ----D---- C:\WINDOWS\system32\NtmsData
2010-08-03 16:09:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-07-27 19:14:14 ----D---- C:\WINDOWS\system32\Service
2010-07-24 07:50:21 ----D---- C:\WINDOWS\system32\appmgmt
2010-07-23 23:54:12 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-07-23 23:54:12 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-07-23 22:20:42 ----D---- C:\WINDOWS\pss
2010-07-23 22:02:41 ----D---- C:\Program Files\Microsoft Silverlight
2010-07-23 21:58:08 ----D---- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2010-07-23 21:57:58 ----D---- C:\Documents and Settings\Ben\Application Data\Office Genuine Advantage
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\zh-TW
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\zh-HK
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\tr-TR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\sv-SE
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\pt-BR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\nl-NL
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\nb-NO
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\ko-KR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\it-IT
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\he-IL
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\fr-FR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\fi-FI
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\es-ES
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\el-GR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\de-DE
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\da-DK
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\ar-SA
2010-07-23 20:09:30 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-07-23 20:09:04 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-07-23 20:09:00 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-07-23 20:08:48 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-07-23 20:08:35 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-07-23 20:07:35 ----D---- C:\WINDOWS\system32\URTTEMP
2010-07-23 19:14:59 ----D---- C:\Program Files\Microsoft.NET
2010-07-23 19:13:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2010-07-23 19:10:12 ----D---- C:\WINDOWS\system32\XPSViewer
2010-07-23 19:10:10 ----D---- C:\Program Files\MSBuild
2010-07-23 19:10:04 ----D---- C:\Program Files\Reference Assemblies
2010-07-23 19:09:39 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-07-23 19:09:39 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-07-23 19:09:39 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-07-23 19:09:05 ----RSD---- C:\WINDOWS\assembly
2010-07-23 19:08:37 ----D---- C:\WINDOWS\Microsoft.NET
2010-07-23 19:07:10 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-07-23 19:07:09 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-07-23 19:06:52 ----D---- C:\Program Files\Windows Media Connect 2
2010-07-23 19:06:42 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-07-23 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-07-23 19:05:47 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-07-23 19:05:43 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-07-23 18:52:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-07-12 10:11:16 ----D---- C:\Program Files\CCleaner
2010-07-12 09:53:54 ----D---- C:\Documents and Settings\Ben\Application Data\Malwarebytes
2010-07-12 09:53:48 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-07-12 09:53:47 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-07-12 09:53:47 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-07-12 09:53:44 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-07-12 08:44:39 ----D---- C:\Program Files\ING Illustrator
2010-07-09 14:04:12 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2010-07-09 14:02:18 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-07-09 14:01:57 ----RA---- C:\WINDOWS\system32\AdobePDFUI.dll
2010-07-09 14:01:57 ----A---- C:\WINDOWS\system32\AdobePDF.dll
2010-07-09 09:28:33 ----D---- C:\Program Files\Acro Software
2010-07-07 22:12:48 ----D---- C:\WINDOWS\system32\LogFiles
2010-07-06 09:17:45 ----D---- C:\Documents and Settings\Ben\Application Data\AdobeUM
2010-07-06 08:05:11 ----D---- C:\Documents and Settings\Ben\Application Data\j2 Global
2010-07-06 08:01:38 ----D---- C:\Documents and Settings\Ben\Application Data\eFax Messenger
2010-07-06 08:01:28 ----D---- C:\Documents and Settings\All Users\Application Data\eFax Messenger 4.4 Output
2010-07-06 08:00:57 ----D---- C:\Program Files\eFax Messenger 4.4
2010-07-06 07:24:34 ----A---- C:\WINDOWS\openrda.ini
2010-07-06 07:24:29 ----D---- C:\MYOBODBC
2010-07-06 07:22:54 ----D---- C:\myob17
2010-07-06 07:12:34 ----D---- C:\Program Files\MYOB
2010-07-06 07:12:34 ----D---- C:\myob15
2010-07-06 07:05:32 ----A---- C:\WINDOWS\SwDrvs.ini
2010-07-06 07:05:32 ----A---- C:\WINDOWS\MYOBP.INI
2010-07-06 07:05:32 ----A---- C:\WINDOWS\MYOB.INI
2010-07-06 06:59:19 ----A---- C:\WINDOWS\drvxl32.INI
2010-07-06 06:59:17 ----A---- C:\WINDOWS\drvwd32.INI
2010-07-06 06:59:15 ----A---- C:\WINDOWS\drvwp32.INI
2010-07-06 06:56:27 ----D---- C:\myob12
2010-07-06 06:37:50 ----D---- C:\Documents and Settings\Ben\Application Data\Windows Search
2010-07-05 14:46:39 ----A---- C:\WINDOWS\system32\XceedSco.dll
2010-07-05 14:46:19 ----N---- C:\WINDOWS\system32\dao360.dll
2010-07-05 14:46:19 ----A---- C:\WINDOWS\system32\msxml4a.dll
2010-07-05 14:45:43 ----D---- C:\Program Files\Common Files\Adobe
2010-07-05 14:45:39 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-07-05 14:45:33 ----D---- C:\Program Files\Adobe
2010-07-05 14:41:09 ----A---- C:\WINDOWS\system32\XcedZip5.dll
2010-07-05 14:41:09 ----A---- C:\WINDOWS\system32\txobj32.dll
2010-07-05 14:41:09 ----A---- C:\WINDOWS\system32\tx_word.dll
2010-07-05 14:41:09 ----A---- C:\WINDOWS\system32\tx_rtf32.dll
2010-07-05 14:41:09 ----A---- C:\WINDOWS\system32\tx_htm32.dll
2010-07-05 14:41:09 ----A---- C:\WINDOWS\system32\ic32.ini
2010-07-05 14:41:09 ----A---- C:\WINDOWS\system32\ic32.dll
2010-07-05 14:41:08 ----A---- C:\WINDOWS\system32\wndtls32.dll
2010-07-05 14:41:08 ----A---- C:\WINDOWS\system32\txtls32.dll
2010-07-05 14:41:07 ----A---- C:\WINDOWS\system32\Tx32.dll
2010-07-05 14:41:07 ----A---- C:\WINDOWS\system32\MSBIND.DLL
2010-07-05 14:41:05 ----N---- C:\WINDOWS\system32\rtfexpt.dll
2010-07-05 14:41:05 ----A---- C:\WINDOWS\system32\VCFIWZ5.dll
2010-07-05 14:41:05 ----A---- C:\WINDOWS\system32\textexpt.dll
2010-07-05 14:41:04 ----A---- C:\WINDOWS\system32\pdfexpt.dll
2010-07-05 14:41:04 ----A---- C:\WINDOWS\system32\actrpt2.dll
2010-07-05 14:41:04 ----A---- C:\WINDOWS\system32\actrpt.dll
2010-07-05 14:41:01 ----A---- C:\WINDOWS\system32\ssr2c.dll
2010-07-05 14:41:01 ----A---- C:\WINDOWS\system32\ssprn32.dll
2010-07-05 14:41:01 ----A---- C:\WINDOWS\system32\ssmedt32.dll
2010-07-05 14:41:00 ----A---- C:\WINDOWS\system32\Olemsg32.dll
2010-07-05 14:40:53 ----A---- C:\WINDOWS\system32\msxml3a.dll
2010-07-05 14:38:18 ----A---- C:\WINDOWS\system32\dbmsqlgc.dll
2010-07-05 14:38:18 ----A---- C:\WINDOWS\system32\dbmsgnet.dll
2010-07-05 14:37:59 ----A---- C:\WINDOWS\IsUninst.exe
2010-07-05 14:37:23 ----D---- C:\Program Files\Microsoft SQL Server
2010-07-05 14:36:49 ----A---- C:\WINDOWS\system32\Vb5db.dll
2010-07-05 14:36:49 ----A---- C:\WINDOWS\system32\Odbctl32.dll
2010-07-05 14:36:49 ----A---- C:\WINDOWS\system32\Msrepl35.dll
2010-07-05 14:36:49 ----A---- C:\WINDOWS\system32\Msrd2x35.dll
2010-07-05 14:36:48 ----A---- C:\WINDOWS\system32\Msjter35.dll
2010-07-05 14:36:48 ----A---- C:\WINDOWS\system32\Msjint35.dll
2010-07-05 14:36:48 ----A---- C:\WINDOWS\system32\Msjet35.dll
2010-07-05 14:34:42 ----D---- C:\PP5
2010-07-05 14:05:05 ----A---- C:\WINDOWS\system32\drivers\tmevtmgr.sys
2010-07-05 14:05:05 ----A---- C:\WINDOWS\system32\drivers\tmcomm.sys
2010-07-05 14:05:05 ----A---- C:\WINDOWS\system32\drivers\tmactmon.sys
2010-07-05 14:04:46 ----D---- C:\Documents and Settings\All Users\Application Data\Trend Micro
2010-07-05 14:04:38 ----D---- C:\Program Files\Trend Micro
2010-07-05 14:03:58 ----A---- C:\WINDOWS\system32\drivers\vsapint.sys
2010-07-05 14:03:58 ----A---- C:\WINDOWS\system32\drivers\tmxpflt.sys
2010-07-05 14:03:58 ----A---- C:\WINDOWS\system32\drivers\tmtdi.sys
2010-07-05 14:03:58 ----A---- C:\WINDOWS\system32\drivers\tmpreflt.sys
2010-07-05 14:03:58 ----A---- C:\WINDOWS\system32\drivers\TM_CFW.sys
2010-07-05 14:00:41 ----D---- C:\Documents and Settings\Ben\Application Data\uTorrent
2010-07-05 13:49:24 ----D---- C:\Documents and Settings\Ben\Application Data\TeamViewer
2010-07-05 13:49:16 ----D---- C:\Program Files\TeamViewer
2010-07-05 13:48:21 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-07-05 13:46:37 ----D---- C:\WINDOWS\system32\Lang
2010-07-05 13:42:17 ----D---- C:\WINDOWS\system32\AGEIA
2010-07-05 13:42:17 ----D---- C:\Program Files\AGEIA Technologies
2010-07-05 13:42:13 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-07-05 13:42:12 ----D---- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
2010-07-05 13:41:56 ----D---- C:\Program Files\NVIDIA Corporation
2010-07-05 13:41:40 ----A---- C:\WINDOWS\system32\nvoglnt.dll
2010-07-05 13:41:40 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2010-07-05 13:41:40 ----A---- C:\WINDOWS\system32\nvcuvenc.dll
2010-07-05 13:41:40 ----A---- C:\WINDOWS\system32\nvcuda.dll
2010-07-05 13:41:39 ----A---- C:\WINDOWS\system32\nvcodins.dll
2010-07-05 13:41:39 ----A---- C:\WINDOWS\system32\nvcod.dll
2010-07-05 13:41:39 ----A---- C:\WINDOWS\system32\nvapi.dll
2010-07-05 13:41:38 ----A---- C:\WINDOWS\system32\nv4_disp.dll
2010-07-05 13:41:38 ----A---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-07-05 13:37:57 ----D---- C:\temp
2010-07-05 13:34:45 ----N---- C:\WINDOWS\system32\ltkrn12n.dll
2010-07-05 13:34:45 ----N---- C:\WINDOWS\system32\ltimg12n.dll
2010-07-05 13:34:45 ----N---- C:\WINDOWS\system32\ltfil12n.DLL
2010-07-05 13:34:45 ----N---- C:\WINDOWS\system32\lftif12n.dll
2010-07-05 13:34:45 ----N---- C:\WINDOWS\system32\lffax12n.dll
2010-07-05 13:34:45 ----N---- C:\WINDOWS\system32\LFCMP12n.DLL
2010-07-05 13:34:45 ----N---- C:\WINDOWS\rmreg.exe
2010-07-05 13:34:45 ----N---- C:\WINDOWS\CM3.INI
2010-07-05 13:34:45 ----D---- C:\AV220
2010-07-05 13:32:07 ----SHD---- C:\RECYCLER
2010-07-05 13:27:56 ----D---- C:\Program Files\EPSON
2010-07-05 13:27:54 ----A---- C:\WINDOWS\system32\E_SL2404.DLL
2010-07-05 13:25:42 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-07-05 13:25:40 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-07-05 13:25:39 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2010-07-05 13:25:37 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-07-05 13:25:35 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-07-05 13:25:34 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-07-05 13:25:32 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-07-05 13:25:30 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-07-05 13:25:29 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010-07-05 13:25:27 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2010-07-05 13:25:25 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010-07-05 13:22:30 ----D---- C:\WINDOWS\system32\RTCOM
2010-07-05 13:22:28 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-07-05 13:22:28 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-07-05 13:22:28 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-07-05 13:22:24 ----A---- C:\WINDOWS\vncutil.exe
2010-07-05 13:22:24 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-07-05 13:22:24 ----A---- C:\WINDOWS\SkyTel.exe
2010-07-05 13:22:23 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2010-07-05 13:22:23 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-07-05 13:22:23 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2010-07-05 13:22:23 ----A---- C:\WINDOWS\RtlUpd.exe
2010-07-05 13:22:23 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-07-05 13:22:23 ----A---- C:\WINDOWS\RtkAudioService.exe
2010-07-05 13:22:23 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-07-05 13:22:22 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2010-07-05 13:22:22 ----A---- C:\WINDOWS\MicCal.exe
2010-07-05 13:22:22 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-07-05 13:22:22 ----A---- C:\WINDOWS\ALCMTR.EXE
2010-07-05 13:21:59 ----A---- C:\WINDOWS\RtlExUpd.dll
2010-07-05 13:21:56 ----D---- C:\Program Files\Common Files\InstallShield
2010-07-05 13:14:05 ----A---- C:\WINDOWS\system32\drivers\sbmount.sys
2010-07-05 13:13:59 ----A---- C:\WINDOWS\system32\drivers\stcvsm.sys
2010-07-05 13:13:49 ----A---- C:\WINDOWS\system32\vsnapvss.exe
2010-07-05 13:13:43 ----D---- C:\Program Files\StorageCraft
2010-07-05 13:13:43 ----A---- C:\WINDOWS\system32\stcsnap.dll
2010-07-05 13:13:14 ----D---- C:\Documents and Settings\Ben\Application Data\InstallShield
2010-07-05 13:03:44 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-07-05 13:03:40 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2010-07-05 12:57:45 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2010-07-05 12:57:41 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2010-07-05 08:17:01 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-07-05 08:16:58 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-07-05 06:05:31 ----A---- C:\WINDOWS\system32\h323log.txt
2010-07-05 02:56:38 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2010-07-05 02:56:11 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-07-05 02:55:23 ----A---- C:\WINDOWS\system32\drivers\enum1394.sys
2010-07-05 02:55:02 ----A---- C:\WINDOWS\system32\usbui.dll
2010-07-05 02:54:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-07-05 02:54:01 ----SHD---- C:\WINDOWS\Installer
2010-07-05 02:54:01 ----D---- C:\Program Files\Common Files\ODBC
2010-07-05 02:54:01 ----A---- C:\WINDOWS\ODBCINST.INI
2010-07-05 02:53:58 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-07-05 02:53:57 ----RD---- C:\Program Files
2010-07-05 02:53:57 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-07-05 02:53:57 ----D---- C:\Program Files\Common Files
2010-07-05 02:53:53 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-07-05 02:53:53 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-07-05 02:53:53 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-07-05 02:53:51 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-07-05 02:53:51 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-07-05 02:53:51 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-07-05 02:53:51 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-07-05 02:53:51 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-07-05 02:53:51 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-07-05 02:53:50 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-07-05 02:53:50 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-07-05 02:53:50 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-07-05 02:53:50 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-07-05 02:53:50 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-07-05 02:53:50 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-07-05 02:53:48 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-07-05 02:53:48 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-07-05 02:53:48 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-07-05 02:53:48 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-07-05 02:53:48 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-07-05 02:53:47 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-07-05 02:53:47 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-07-05 02:53:45 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-07-05 02:53:45 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-07-05 02:53:45 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-07-05 02:53:45 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-07-05 02:53:45 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-07-05 02:53:43 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2010-07-05 02:53:43 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2010-07-05 02:53:43 ----RA---- C:\WINDOWS\system32\kbdro.dll
2010-07-05 02:53:43 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2010-07-05 02:53:43 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2010-07-05 02:53:42 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2010-07-05 02:53:40 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-07-05 02:53:40 ----A---- C:\WINDOWS\system32\irclass.dll
2010-07-05 02:53:40 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-07-05 02:53:40 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-07-05 02:53:39 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-07-05 02:53:37 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-07-05 02:53:37 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-07-05 02:53:36 ----A---- C:\WINDOWS\system32\batt.dll
2010-07-05 02:53:36 ----A---- C:\WINDOWS\NOTEPAD.EXE
2010-07-05 02:53:35 ----A---- C:\WINDOWS\system32\storprop.dll
2010-07-05 02:53:28 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2010-07-05 02:53:16 ----D---- C:\WINDOWS\system32\CatRoot2
2010-07-05 02:53:16 ----D---- C:\WINDOWS\system32\CatRoot
2010-07-05 02:53:11 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-07-05 02:50:27 ----SHD---- C:\System Volume Information
2010-07-05 02:50:27 ----D---- C:\Documents and Settings
2010-07-05 02:49:43 ----SH---- C:\boot.ini
2010-07-05 02:44:39 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-07-05 02:44:39 ----RSD---- C:\WINDOWS\Fonts
2010-07-05 02:44:39 ----RD---- C:\WINDOWS\Web
2010-07-05 02:44:39 ----HD---- C:\WINDOWS\inf
2010-07-05 02:44:39 ----D---- C:\WINDOWS\WinSxS
2010-07-05 02:44:39 ----D---- C:\WINDOWS\twain_32
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Temp
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\wins
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\wbem
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\usmt
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\spool
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\ShellExt
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\Setup
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\scripting
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\ras
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\oobe
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\npp
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\mui
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\inetsrv
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\IME
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\icsxml
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\ias
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\export
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\en
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\drivers\etc
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\drivers\disdn
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\drivers
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\dhcp
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\config
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\3com_dmi
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\3076
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\2052
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1054
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1042
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1041
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1037
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1033
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1031
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1028
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32\1025
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system32
2010-07-05 02:44:39 ----D---- C:\WINDOWS\system
2010-07-05 02:44:39 ----D---- C:\WINDOWS\security
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Resources
2010-07-05 02:44:39 ----D---- C:\WINDOWS\repair
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Provisioning
2010-07-05 02:44:39 ----D---- C:\WINDOWS\PeerNet
2010-07-05 02:44:39 ----D---- C:\WINDOWS\pchealth
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Network Diagnostic
2010-07-05 02:44:39 ----D---- C:\WINDOWS\mui
2010-07-05 02:44:39 ----D---- C:\WINDOWS\msapps
2010-07-05 02:44:39 ----D---- C:\WINDOWS\msagent
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Media
2010-07-05 02:44:39 ----D---- C:\WINDOWS\L2Schemas
2010-07-05 02:44:39 ----D---- C:\WINDOWS\java
2010-07-05 02:44:39 ----D---- C:\WINDOWS\ime
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Help
2010-07-05 02:44:39 ----D---- C:\WINDOWS\ehome
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Driver Cache
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Debug
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Cursors
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Connection Wizard
2010-07-05 02:44:39 ----D---- C:\WINDOWS\Config
2010-07-05 02:44:39 ----D---- C:\WINDOWS\AppPatch
2010-07-05 02:44:39 ----D---- C:\WINDOWS\addins
2010-07-05 02:44:39 ----D---- C:\WINDOWS
2010-07-05 02:44:39 ----ASH---- C:\pagefile.sys
2010-07-05 00:10:41 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2010-07-05 00:10:37 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-07-05 00:10:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-07-05 00:10:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-07-05 00:10:03 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-07-05 00:10:00 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-07-05 00:09:56 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-07-05 00:09:53 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-07-05 00:09:50 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-07-05 00:09:48 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-07-05 00:09:44 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-07-05 00:09:40 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-07-05 00:09:37 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-07-05 00:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-07-05 00:09:31 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-07-05 00:09:28 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-07-05 00:09:25 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-07-05 00:09:22 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-07-05 00:09:19 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-07-05 00:09:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-07-05 00:09:12 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-07-05 00:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-07-05 00:09:05 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-07-05 00:09:02 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-07-05 00:08:59 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-07-05 00:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-07-05 00:08:52 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-07-05 00:08:49 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-07-05 00:08:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-07-05 00:08:44 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-07-05 00:08:41 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-07-05 00:08:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-07-05 00:08:35 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-07-05 00:08:32 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-07-05 00:08:13 ----D---- C:\WINDOWS\ie8updates
2010-07-05 00:08:05 ----D---- C:\WINDOWS\WBEM
2010-07-05 00:06:55 ----HDC---- C:\WINDOWS\ie8
2010-07-05 00:06:29 ----A---- C:\WINDOWS\system32\MRT.exe
2010-07-05 00:00:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-07-05 00:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-07-05 00:00:48 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-07-05 00:00:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-07-05 00:00:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-07-05 00:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-07-05 00:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
2010-07-05 00:00:26 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-07-05 00:00:23 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-07-05 00:00:20 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-07-05 00:00:17 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-07-05 00:00:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-07-05 00:00:09 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-07-05 00:00:05 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-07-05 00:00:02 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$

======List of files/folders modified in the last 1 months======

2010-08-04 20:15:17 ----D---- C:\WINDOWS\Prefetch
2010-08-04 19:57:13 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-08-04 19:54:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-03 18:54:53 ----D---- C:\WINDOWS\Registration
2010-08-03 14:51:26 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-03 08:54:25 ----A---- C:\WINDOWS\NeroDigital.ini
2010-07-29 20:03:47 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-07-27 19:34:46 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2010-07-27 19:31:55 ----A---- C:\WINDOWS\win.ini
2010-07-27 16:30:35 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-24 07:50:20 ----SD---- C:\WINDOWS\Tasks
2010-07-23 22:21:46 ----N---- C:\WINDOWS\system.ini
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\en-US
2010-07-23 21:46:55 ----D---- C:\Program Files\Microsoft Works
2010-07-23 19:08:43 ----D---- C:\Program Files\Internet Explorer
2010-07-23 19:06:52 ----D---- C:\Program Files\Windows Media Player
2010-07-09 14:07:07 ----D---- C:\Documents and Settings\Ben\Application Data\Adobe
2010-07-08 09:35:31 ----SD---- C:\Documents and Settings\Ben\Application Data\Microsoft
2010-07-06 07:16:55 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-05 14:38:16 ----HD---- C:\Program Files\Uninstall Information
2010-07-05 13:22:22 ----D---- C:\Program Files\Realtek
2010-07-05 08:10:19 ----D---- C:\Program Files\Outlook Express
2010-07-05 02:53:28 ----SH---- C:\Documents and Settings\Ben\Application Data\desktop.ini
2010-07-05 00:09:33 ----D---- C:\Program Files\Movie Maker
2010-07-05 00:00:36 ----D---- C:\Program Files\Windows Desktop Search
2010-07-05 00:00:00 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;VIA OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 stcvsm;stcvsm; C:\WINDOWS\system32\drivers\stcvsm.sys [2010-04-21 182048]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sbmount;StorageCraft Image Mount Driver; C:\WINDOWS\system32\drivers\sbmount.sys [2010-04-21 102560]
R1 tmtdi;Trend Micro TDI Driver; C:\WINDOWS\system32\DRIVERS\tmtdi.sys [2010-07-05 89872]
R2 tmcomm;tmcomm; \??\C:\WINDOWS\system32\drivers\tmcomm.sys []
R2 tmpreflt;tmpreflt; C:\WINDOWS\system32\DRIVERS\tmpreflt.sys [2009-12-05 36368]
R2 tmxpflt;tmxpflt; C:\WINDOWS\system32\DRIVERS\tmxpflt.sys [2009-12-05 230928]
R2 vsapint;vsapint; C:\WINDOWS\system32\DRIVERS\vsapint.sys [2009-12-05 1322680]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-30 5063168]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-09-28 7655872]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-05-25 142336]
R3 tmactmon;tmactmon; \??\C:\WINDOWS\system32\drivers\tmactmon.sys []
R3 tmcfw;Trend Micro Common Firewall Service; C:\WINDOWS\system32\DRIVERS\TM_CFW.sys [2010-07-05 339984]
R3 tmevtmgr;tmevtmgr; \??\C:\WINDOWS\system32\drivers\tmevtmgr.sys []
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MSSQL$INGAUSTRALIA;MSSQL$INGAUSTRALIA; C:\Program Files\Microsoft SQL Server\MSSQL$INGAUSTRALIA\Binn\sqlservr.exe [2002-12-17 7520337]
R2 MSSQLSERVER;MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe [2002-12-17 7520337]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-09-27 172100]
R2 SfCtlCom;Trend Micro Central Control Component; C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe [2010-01-26 715368]
R2 ShadowProtectSvc;ShadowProtect Service; C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe [2010-04-21 1649184]
R2 SQLSERVERAGENT;SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlagent.EXE [2002-12-17 311872]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-06-28 173352]
R2 VSNAPVSS;StorageCraft Shadow Copy Provider; C:\WINDOWS\system32\vsnapvss.exe [2010-04-21 67616]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 TMBMServer;Trend Micro Unauthorized Change Prevention Service; C:\Program Files\Trend Micro\BM\TMBMSRV.exe [2010-07-05 345352]
R3 TmPfw;Trend Micro Personal Firewall; C:\Program Files\Trend Micro\Internet Security\TmPfw.exe [2010-07-05 497008]
R3 TmProxy;Trend Micro Proxy Service; C:\Program Files\Trend Micro\Internet Security\TmProxy.exe [2010-07-05 689416]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-07-09 651720]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SQLAgent$INGAUSTRALIA;SQLAgent$INGAUSTRALIA; C:\Program Files\Microsoft SQL Server\MSSQL$INGAUSTRALIA\Binn\sqlagent.EXE [2002-12-17 311872]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 4th, 2010, 6:28 am

info.txt logfile of random's system information tool 1.08 2010-08-04 20:15:21

======Uninstall list======

-->MsiExec /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat 9 Pro-->msiexec /I {AC76BA86-1033-0000-7760-000000000004}
Adobe Acrobat 9 Pro-->msiexec /I {AC76BA86-1033-0000-7760-000000000004}
Adobe Acrobat 9.3.3 - CPSID_83708-->msiexec /I {AC76BA86-1033-0000-7760-000000000004}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -maintain activex
Adobe Reader 7.0.5 Language Support-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-7050000000A7}
Adobe Reader 7.0.7-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70700000002}
AV220-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{65D71785-BAF0-4995-9F55-E1651D343CD1}\Setup.exe"
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
EPSON Printer Software-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
HiJackThis-->MsiExec.exe /X{45A66726-69BC-466B-A7A4-12FCBA4883D7}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915800-v4)-->"C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
ING's Illustrator-->MsiExec.exe /X{41F00B6F-2A1E-4748-A3F2-D978F02543F5}
InvestmentLink Import Wizard-->C:\PP5\ILImport\ILIMPO~1\UNWISE.EXE C:\PP5\ILImport\ILIMPO~1\INSTALL.LOG
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft .NET Framework 4 Client Profile-->C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Professional 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROR /dll OSETUP.DLL
Microsoft Office Professional 2007-->MsiExec.exe /X{91120000-0014-0000-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server Desktop Engine (INGAUSTRALIA)-->MsiExec.exe /X{689404D2-1C94-44B3-9203-BEC5594FDA7A}
Microsoft SQL Server Desktop Engine-->MsiExec.exe /X{2B5EE14F-39EC-4a51-888F-B5A698823B2A}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
MYOB Accounting Plus v12-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{21057832-D865-4049-BCA4-CEF3C55A394F}
MYOB Accounting Plus v15-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5A2AC23A-7B54-47D1-9B66-A0644FF9C769}
MYOB Accounting Plus v17-->C:\Program Files\InstallShield Installation Information\{89D94B11-4C0A-44E4-A8FA-A6F5BD107043}\setup.exe -runfromtemp -l0x0409
MYOB ODBC Direct v7-->C:\Program Files\InstallShield Installation Information\{C71F2873-3229-4A9E-A2A2-F14DCBF63F56}\setup.exe -runfromtemp -l0x0409
Nero OEM-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
NVIDIA Drivers-->C:\Program Files\NVIDIA Corporation\Uninstall\nvuninst.exe UninstallGUI
NVIDIA PhysX-->MsiExec.exe /X{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}
OGA Notifier 2.0.0048.0-->MsiExec.exe /I{B2544A03-10D0-4E5E-BA69-0362FFC20D18}
PlanTech XML Export-->C:\PP5\XMLifE\UNWISE.EXE C:\PP5\XMLifE\XMLIFE~1.LOG
Pro-Planner 5.0-->C:\PP5\\PP5UNI~1\UNWISE.EXE C:\PP5\\PP5UNI~1\INSTALL.LOG
ProPlanner Import Wizard for Morningstar Data-->C:\PP5\MSImport\MSIMPO~1\UNWISE.EXE C:\PP5\MSImport\MSIMPO~1\INSTALL.LOG
REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\Setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -l0x9 -removeonly
Risk Researcher Installation/Upgrade - February 2006 (v5.5.602)-->C:\PP5\RRUNIN~1\UNWISE.EXE C:\PP5\RRUNIN~1\INSTALL.LOG
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB976321)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {7F207DCA-3399-40CB-A968-6E5991B1421A}
Security Update for 2007 Microsoft Office System (KB982312)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {B0EC5722-241F-4CDA-83B4-AA5846B6F9F4}
Security Update for 2007 Microsoft Office System (KB982331)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {E8766951-2B6C-4022-86E8-80D2D1762B76}
Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}
Security Update for Microsoft Office Access 2007 (KB979440)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5A4E43D5-858F-49BD-BA72-8F30E1793060}
Security Update for Microsoft Office Excel 2007 (KB982308)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B}
Security Update for Microsoft Office InfoPath 2007 (KB979441)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
Security Update for Microsoft Office Outlook 2007 (KB980376)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {48113C06-9BA2-4D54-A731-D1D2C5B3144A}
Security Update for Microsoft Office PowerPoint 2007 (KB982158)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {F5B70033-E79C-4569-90BF-BC9B4E4F3F46}
Security Update for Microsoft Office Publisher 2007 (KB982124)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {289FA8BC-6A8E-4341-B194-EB26B49E9F5D}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Word 2007 (KB982135)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {0112C750-A06F-4F92-9C40-E5C1EA9A70EB}
Security Update for Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Security Update for Windows Search 4 - KB963093-->"C:\WINDOWS\$NtUninstallKB963093$\spuninst\spuninst.exe"
Security Update for Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Security Update for Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Security Update for Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Security Update for Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Security Update for Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Security Update for Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Security Update for Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Security Update for Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Security Update for Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Security Update for Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Security Update for Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Security Update for Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Security Update for Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Security Update for Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Security Update for Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Security Update for Windows XP (KB981349)-->"C:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe"
Security Update for Windows XP (KB982381)-->"C:\WINDOWS\$NtUninstallKB982381$\spuninst\spuninst.exe"
ShadowProtect Desktop-->C:\Program Files\InstallShield Installation Information\{8850DEC8-22FD-4F05-A3AA-49B91200C24F}\setup.exe -runfromtemp -l0x0009 -removeonly
TeamViewer 5 Host-->C:\Program Files\TeamViewer\Version5\uninstall.exe
Trend Micro Internet Security Pro-->C:\Program Files\Trend Micro\Internet Security\remove.exe
Trend Micro Internet Security Pro-->MsiExec.exe /X{9D2B0322-44AE-460E-9283-4D2D7A9205AE}
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}
Update for Microsoft Office Access 2007 Help (KB963663)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}
Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}
Update for Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {0451F231-E3E3-4943-AB9F-58EB96171784}
Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}
Update for Microsoft Office Publisher 2007 Help (KB963667)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2E40DE55-B289-4C8B-8901-5D369B16814F}
Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}
Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}
Update for Microsoft Windows (KB971513)-->"C:\WINDOWS\$NtUninstallKB971513$\spuninst\spuninst.exe"
Update for Outlook 2007 Junk Email Filter (kb2202131)-->msiexec /package {91120000-0014-0000-0000-0000000FF1CE} /uninstall {A67392E8-282B-4BEF-8020-EF3DD664DE7B}
Update for Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe"
Update for Windows Internet Explorer 8 (KB982632)-->"C:\WINDOWS\ie8updates\KB982632-IE8\spuninst\spuninst.exe"
Update for Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update for Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Update for Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Update for Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Update for Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Update for Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Update for Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Search 4.0-->"C:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe"
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: Trend Micro Internet Security Pro
FW: Trend Micro Personal Firewall

======System event log======

Computer Name: INFINITE
Event Code: 7000
Message: The Windows Search service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.


Record Number: 1080
Source Name: Service Control Manager
Time Written: 20100709135637.000000+600
Event Type: error
User:

Computer Name: INFINITE
Event Code: 7009
Message: Timeout (30000 milliseconds) waiting for the Windows Search service to connect.

Record Number: 1079
Source Name: Service Control Manager
Time Written: 20100709135637.000000+600
Event Type: error
User:

Computer Name: INFINITE
Event Code: 10005
Message: DCOM got error "%1053" attempting to start the service WSearch with arguments ""
in order to run the server:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Record Number: 1078
Source Name: DCOM
Time Written: 20100709135637.000000+600
Event Type: error
User: NT AUTHORITY\SYSTEM

Computer Name: INFINITE
Event Code: 20
Message: Printer Driver CutePDF Writer for Windows NT x86 Version-3 was added or updated. Files:- PSCRIPT5.DLL, PS5UI.DLL, CUTEPDFW.PPD, PSCRIPT.HLP, PSCRIPT.NTF.

Record Number: 1040
Source Name: Print
Time Written: 20100709092837.000000+600
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: INFINITE
Event Code: 36
Message: The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.

Record Number: 1003
Source Name: W32Time
Time Written: 20100708184014.000000+600
Event Type: warning
User:

=====Application event log=====

Computer Name: INFINITE
Event Code: 1002
Message: ShadowProtect Service Started

Record Number: 1567
Source Name: ShadowProtectSvc
Time Written: 20100719050734.000000+600
Event Type:
User: NT AUTHORITY\SYSTEM

Computer Name: INFINITE
Event Code: 19011
Message: SuperSocket info: (SpnRegister) : Error 1355.

Record Number: 1554
Source Name: MSSQLServer
Time Written: 20100719050724.000000+600
Event Type: warning
User:

Computer Name: INFINITE
Event Code: 19011
Message:
Record Number: 1550
Source Name: MSSQL$INGAUSTRALIA
Time Written: 20100719050723.000000+600
Event Type: warning
User:

Computer Name: INFINITE
Event Code: 1120
Message: Backup status: completed
Image file: D:\Image\C_VOL-b003.spf
Log file: C:\Program Files\StorageCraft\ShadowProtect\Logs\{EDF7774C-5882-4514-AE8A-D0BD208B1475}.txt
Start time: 18/07/2010 6:00:00 PM


Record Number: 1541
Source Name: ShadowProtectSvc
Time Written: 20100718181552.000000+600
Event Type:
User: NT AUTHORITY\SYSTEM

Computer Name: INFINITE
Event Code: 1120
Message: Backup status: completed
Image file: D:\Image\F_VOL-b003.spf
Log file: C:\Program Files\StorageCraft\ShadowProtect\Logs\{63BF8A92-2E98-4438-A2BC-F43FED7D9913}.txt
Start time: 18/07/2010 6:00:00 PM


Record Number: 1540
Source Name: ShadowProtectSvc
Time Written: 20100718181308.000000+600
Event Type:
User: NT AUTHORITY\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=4
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 4th, 2010, 8:20 am

Hi. :)

Puter seems ok but once again the problem is intermittent so will have to monitor !
At this time I do not think the problem is malware related persay but not ruling this out just yet.

After running TFC got error messages from Trend and also Adobe But they seem to be working ok
OK, if anything else untoward occurs by all means do inform myself.

Reset SP3 Firewall:

Click on Start >> Run... and cut/paste in the following and click on OK
Code: Select all
firewall.cpl
Click on the Advanced tab >> Restore Defaults >> At the prompt click on Yes >> OK

Now click on the General tab >> select Off(not recommended) >> OK.

Note: No need for it to be active after the reset because you have the Trend Micro Personal Firewall active.

Scan with GMER:

Please download GMER Rootkit Scanner from here.
  • Double click the .exe file. If asked to allow gmer.sys driver to load, please consent
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO

    Image

    Click the image to enlarge it

  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • IAT/EAT
    • Drives/Partition other than Systemdrive (typically C:\)
    • Show All (don't miss this one)
  • Then click the Scan button & wait for it to finish
  • Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file
  • Save it where you can easily find it, such as your desktop, and post it in reply
**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Note: Do not run any programs while Gmer is running.

ESET Online Scanner:

Note: Use Internet Explorer for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

  • Please go here then click on: Image
  • Select the option YES, I accept the Terms of Use then click on: Image
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: Image
  • The virus signature database... will begin to download. Be patient this may take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on: Image
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

  • How is your computer performing now, any further symptoms and or problems encountered?
  • GMER Log.
  • ESET Log.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8804
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 5th, 2010, 2:38 am

Tried to run GMER 3 times . first time it froze which i put down to Trend Micro taking an update. Second time froze again mid run
3rd time finished but when I went to save that froze and i get "not responding" message

It took about 2 hours to run. what do you want me to do now? I have not run the virus check you gave me yet thats probably an overnight job???

Regards

and Thanks Ben
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 5th, 2010, 4:45 am

Hi and you're welcome! :)

Tried to run GMER 3 times . first time it froze which i put down to Trend Micro taking an update. Second time froze again mid run
3rd time finished but when I went to save that froze and i get "not responding" message
OK some of the software you have installed might be impeding the scan. So rather than disabling as this may actually corrupt some installations, please download and run this alternative scan instead which should not encounter any problems.

F-Secure Blacklight:

Please download Blacklight from here to your desktop.

or

Link to it from the ftp site: ftp://ftp.f-secure.com/anti-virus/tools/fsbl.exe
and save it to your desktop from there.

Go to Start-->Run, copy in the following text, and press Enter:
"%userprofile%\desktop\fsbl.exe" /expert
Accept the license agreement.
Click > scan, wait for it to finish, then click Close

There will be a log on your desktop with the name fsbl.xxxxxxx.log (the xxxxxxx stand for numbers).
Copy and paste the contents of this log into your next reply.

I have not run the virus check you gave me yet thats probably an overnight job???
OK leave the online scan and we can come back to this another time. Please carry out the below scan instead, thank you.

Check Hard Disk For Errors:

Press Start->Run, then copy/paste the following command into the box and press OK:
cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"
A blank command window will open on your desktop, then close in a few minutes. This is normal.
A file icon named checkhd.txt should appear on your Desktop. Please post the contents of this file.

When completed the above, please post back the following in the order asked for:

  • How is your computer performing now, any further symptoms and or problems encountered?
  • Blacklight Log.
  • checkhd.txt.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8804
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 12:36 am

After running F Secure and Check Hard Disk I tried to load Outlook but ir would not respond. IE froze too.
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 12:37 am

08/06/10 14:23:06 [Info]: BlackLight Engine 2.2.1092 initialized
08/06/10 14:23:06 [Info]: OS: 5.1 build 2600 (Service Pack 3)
08/06/10 14:23:06 [Note]: 7019 4
08/06/10 14:23:06 [Note]: 7005 0
08/06/10 14:24:09 [Note]: 7006 0
08/06/10 14:24:09 [Note]: 7022 0
08/06/10 14:24:09 [Note]: 7011 756
08/06/10 14:24:09 [Note]: 7035 0
08/06/10 14:24:10 [Note]: 7026 0
08/06/10 14:24:10 [Note]: 7026 0
08/06/10 14:24:10 [Note]: FSRAW library version 1.7.1024
08/06/10 14:31:44 [Note]: 7007 0
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 296 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware