Logfile of random's system information tool 1.06 (written by random/random)
Run by Casie at 2009-08-06 11:57:11
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 10 GB (28%) free of 35 GB
Total RAM: 223 MB (38% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:57:41 AM, on 8/6/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Dynex G USB Network Adapter\DynexWCUI.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Casie\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Casie.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Dynex Wireless Networking Utility.lnk = ?
O8 - Extra context menu item: &AOL Toolbar search -
res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: Add to Windows &Live Favorites -
http://favorites.live.com/quickadd.aspxO8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.microsoft.com/microso ... 6997203375O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe
--
End of file - 4654 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-07-31 1111320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-07-24 1090816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-07-24 1090816]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2003-07-16 55296]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-07-31 2000152]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-07-27 341312]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Dynex Wireless Networking Utility.lnk - C:\Program Files\Dynex G USB Network Adapter\DynexWCUI.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2009-07-31 11952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoActiveDesktopChanges"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\pinaco1993\My Documents\LimeWire\LimeWire.exe"="C:\Documents and Settings\pinaco1993\My Documents\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\MySpace\IM\MySpaceIM.exe"="C:\Program Files\MySpace\IM\MySpaceIM.exe:*:Enabled:MySpace Instant Messenger"
"C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Files and Settings Transfer Wizard"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
shell\AutoRun\command - E:\setup.exe
======List of files/folders created in the last 1 months======
2009-08-06 11:57:11 ----D---- C:\rsit
2009-08-02 22:38:45 ----D---- C:\Program Files\Trend Micro
2009-08-02 22:25:51 ----D---- C:\Documents and Settings\Casie\Application Data\WinPatrol
2009-08-02 22:25:20 ----D---- C:\Program Files\BillP Studios
2009-08-01 16:32:51 ----D---- C:\Program Files\Common Files\NSV
2009-08-01 16:01:44 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-08-01 16:01:43 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-08-01 16:01:43 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-08-01 16:01:42 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-08-01 16:01:42 ----N---- C:\WINDOWS\system32\pxafs.dll
2009-08-01 16:01:41 ----N---- C:\WINDOWS\system32\pxdrv.dll
2009-08-01 16:01:40 ----N---- C:\WINDOWS\system32\vxblock.dll
2009-08-01 16:01:40 ----N---- C:\WINDOWS\system32\pxwave.dll
2009-08-01 16:01:39 ----N---- C:\WINDOWS\system32\pxmas.dll
2009-08-01 16:01:38 ----N---- C:\WINDOWS\system32\px.dll
2009-08-01 16:01:26 ----D---- C:\Program Files\Winamp
2009-08-01 16:01:26 ----D---- C:\Documents and Settings\Casie\Application Data\Winamp
2009-08-01 15:53:21 ----D---- C:\Program Files\QuickTime
2009-08-01 15:49:51 ----D---- C:\Program Files\Apple Software Update
2009-08-01 15:49:45 ----SHD---- C:\Config.Msi
2009-08-01 15:48:08 ----D---- C:\WINDOWS\system32\Adobe
2009-08-01 15:40:23 ----D---- C:\Documents and Settings\Casie\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2009-08-01 15:25:05 ----D---- C:\Program Files\Adobe
2009-08-01 15:23:38 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-08-01 15:23:25 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-08-01 15:01:28 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2009-08-01 13:47:52 ----A---- C:\WINDOWS\ODBC.INI
2009-08-01 13:47:33 ----A---- C:\WINDOWS\system32\mdimon.dll
2009-08-01 13:44:18 ----D---- C:\Program Files\Common Files\L&H
2009-08-01 13:43:35 ----D---- C:\Program Files\Microsoft ActiveSync
2009-08-01 13:42:09 ----D---- C:\Program Files\Common Files\DESIGNER
2009-08-01 13:41:48 ----D---- C:\Program Files\Microsoft Works
2009-08-01 13:41:13 ----D---- C:\Program Files\Microsoft Visual Studio
2009-08-01 13:40:43 ----D---- C:\WINDOWS\SHELLNEW
2009-08-01 13:40:35 ----D---- C:\Program Files\Microsoft.NET
2009-08-01 13:40:35 ----D---- C:\Program Files\Microsoft Office
2009-08-01 13:40:35 ----D---- C:\Program Files\Common Files\ODBC
2009-08-01 13:31:44 ----D---- C:\Program Files\PowerISO
2009-08-01 06:14:12 ----HD---- C:\$AVG8.VAULT$
2009-07-31 21:02:48 ----D---- C:\Program Files\Microsoft Bootvis
2009-07-31 20:10:28 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2009-07-31 20:09:57 ----D---- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
2009-07-31 20:09:21 ----D---- C:\Program Files\AVG
2009-07-31 20:09:20 ----D---- C:\Documents and Settings\All Users\Application Data\avg8
2009-07-31 19:54:23 ----D---- C:\Documents and Settings\Casie\Application Data\Malwarebytes
2009-07-31 19:54:09 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-07-31 19:54:08 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-07-31 19:52:06 ----D---- C:\Program Files\WinDirStat
2009-07-31 19:49:05 ----D---- C:\Documents and Settings\Casie\Application Data\Mozilla
2009-07-31 19:47:29 ----D---- C:\Program Files\Mozilla Firefox
2009-07-31 19:26:33 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-07-31 19:10:53 ----D---- C:\Program Files\Microsoft Silverlight
2009-07-31 18:59:13 ----D---- C:\WINDOWS\system32\XPSViewer
2009-07-31 18:59:05 ----D---- C:\Program Files\MSBuild
2009-07-31 18:58:47 ----D---- C:\Program Files\Reference Assemblies
2009-07-31 18:57:55 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-07-31 18:57:55 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-07-31 18:57:54 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-07-31 18:50:58 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-07-31 18:50:32 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-07-31 18:46:19 ----RSD---- C:\WINDOWS\assembly
2009-07-31 18:46:19 ----D---- C:\WINDOWS\Microsoft.NET
2009-07-31 18:46:16 ----D---- C:\WINDOWS\system32\URTTemp
2009-07-31 18:27:09 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-07-31 18:21:30 ----D---- C:\WINDOWS\Prefetch
2009-07-31 18:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-07-31 18:16:55 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-07-31 18:16:29 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-07-31 18:15:42 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-07-31 18:15:15 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-07-31 18:14:20 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-07-31 18:14:00 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
2009-07-31 18:13:43 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-07-31 18:13:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-07-31 18:13:16 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-07-31 18:13:03 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-07-31 18:12:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-07-31 18:12:33 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-07-31 18:12:21 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-07-31 18:12:09 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2009-07-31 18:11:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-07-31 18:11:45 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-07-31 18:11:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-07-31 18:10:39 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-07-31 18:10:20 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-07-31 18:10:09 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-07-31 18:09:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-07-31 18:09:44 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-07-31 18:09:32 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-07-31 18:09:19 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-07-31 18:09:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-07-31 18:08:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-07-31 18:08:45 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-07-31 18:08:33 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
2009-07-31 18:08:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-07-31 18:08:10 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-07-31 18:07:59 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-07-31 18:07:46 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-07-31 18:07:35 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2009-07-31 18:07:18 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-07-31 18:00:36 ----D---- C:\WINDOWS\system32\scripting
2009-07-31 18:00:34 ----D---- C:\WINDOWS\l2schemas
2009-07-31 18:00:33 ----D---- C:\WINDOWS\system32\en
2009-07-31 17:53:47 ----D---- C:\WINDOWS\network diagnostic
2009-07-31 17:29:26 ----D---- C:\WINDOWS\ie8updates
2009-07-31 17:26:04 ----HDC---- C:\WINDOWS\ie8
2009-07-31 13:53:58 ----D---- C:\Program Files\CCleaner
2009-07-15 22:45:11 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
2009-07-15 22:44:58 ----HDC---- C:\WINDOWS\$NtUninstallKB971633_0$
2009-07-15 22:37:48 ----HDC---- C:\WINDOWS\$NtUninstallKB968537_0$
2009-07-15 22:36:54 ----HDC---- C:\WINDOWS\$NtUninstallKB961371_0$
2009-07-14 21:40:56 ----D---- C:\Program Files\NOS
2009-07-14 21:40:56 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2009-07-07 22:31:59 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2009-07-07 22:31:48 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$
2009-07-07 22:31:24 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
======List of files/folders modified in the last 1 months======
2009-08-06 11:55:40 ----D---- C:\WINDOWS\Temp
2009-08-06 11:52:07 ----D---- C:\WINDOWS
2009-08-06 11:50:31 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-06 11:49:56 ----D---- C:\WINDOWS\system32
2009-08-04 12:04:14 ----D---- C:\Documents and Settings
2009-08-04 10:13:54 ----D---- C:\WINDOWS\system32\CatRoot2
2009-08-02 23:59:18 ----D---- C:\WINDOWS\system32\drivers
2009-08-02 22:38:45 ----RD---- C:\Program Files
2009-08-02 22:29:16 ----SD---- C:\WINDOWS\Tasks
2009-08-01 16:32:51 ----D---- C:\Program Files\Common Files
2009-08-01 15:54:45 ----SHD---- C:\WINDOWS\Installer
2009-08-01 15:53:17 ----D---- C:\Documents and Settings\All Users\Application Data\Apple Computer
2009-08-01 15:36:14 ----D---- C:\Documents and Settings\Casie\Application Data\Adobe
2009-08-01 15:26:49 ----D---- C:\Program Files\Common Files\Adobe
2009-08-01 15:11:26 ----SD---- C:\Documents and Settings\Casie\Application Data\Microsoft
2009-08-01 15:05:48 ----D---- C:\WINDOWS\security
2009-08-01 15:01:47 ----HD---- C:\WINDOWS\inf
2009-08-01 13:48:07 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-08-01 13:44:43 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-08-01 13:44:34 ----RSD---- C:\WINDOWS\Fonts
2009-08-01 13:37:14 ----D---- C:\WINDOWS\system
2009-08-01 13:21:00 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-08-01 13:12:39 ----D---- C:\Temp
2009-08-01 13:07:52 ----D---- C:\WINDOWS\Debug
2009-08-01 12:23:02 ----D---- C:\WINDOWS\WinSxS
2009-08-01 12:20:52 ----HD---- C:\WINDOWS\$hf_mig$
2009-07-31 23:56:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2009-07-31 22:45:01 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-07-31 22:23:30 ----D---- C:\Documents and Settings\All Users\Application Data\AOL
2009-07-31 22:22:45 ----D---- C:\Documents and Settings\Casie\Application Data\AOL
2009-07-31 21:54:34 ----D---- C:\WINDOWS\SoftwareDistribution
2009-07-31 21:43:45 ----RASH---- C:\boot.ini
2009-07-31 19:30:13 ----D---- C:\WINDOWS\Registration
2009-07-31 19:27:49 ----D---- C:\WINDOWS\system32\CatRoot
2009-07-31 19:10:10 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-07-31 18:59:07 ----D---- C:\WINDOWS\system32\en-US
2009-07-31 18:58:16 ----D---- C:\WINDOWS\system32\spool
2009-07-31 18:46:36 ----D---- C:\WINDOWS\system32\mui
2009-07-31 18:20:53 ----D---- C:\WINDOWS\system32\Setup
2009-07-31 18:20:53 ----D---- C:\WINDOWS\AppPatch
2009-07-31 18:20:52 ----D---- C:\WINDOWS\system32\wbem
2009-07-31 18:07:48 ----D---- C:\Program Files\Messenger
2009-07-31 18:01:04 ----D---- C:\WINDOWS\ServicePackFiles
2009-07-31 18:01:01 ----D---- C:\WINDOWS\ime
2009-07-31 18:01:00 ----D---- C:\WINDOWS\Help
2009-07-31 18:00:38 ----D---- C:\WINDOWS\system32\usmt
2009-07-31 18:00:32 ----D---- C:\WINDOWS\system32\bits
2009-07-31 18:00:32 ----D---- C:\WINDOWS\peernet
2009-07-31 18:00:32 ----D---- C:\Program Files\Movie Maker
2009-07-31 17:56:14 ----D---- C:\WINDOWS\system32\Restore
2009-07-31 17:56:14 ----D---- C:\WINDOWS\system32\npp
2009-07-31 17:56:12 ----D---- C:\WINDOWS\msagent
2009-07-31 17:56:10 ----D---- C:\WINDOWS\srchasst
2009-07-31 17:56:09 ----D---- C:\Program Files\NetMeeting
2009-07-31 17:56:07 ----D---- C:\WINDOWS\system32\Com
2009-07-31 17:56:04 ----D---- C:\Program Files\Windows Media Player
2009-07-31 17:56:03 ----D---- C:\Program Files\Windows NT
2009-07-31 17:56:03 ----D---- C:\Program Files\Outlook Express
2009-07-31 17:56:00 ----D---- C:\Program Files\Common Files\System
2009-07-31 17:55:40 ----D---- C:\WINDOWS\system32\oobe
2009-07-31 17:50:41 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-07-31 17:45:31 ----D---- C:\WINDOWS\EHome
2009-07-31 17:34:11 ----D---- C:\WINDOWS\Media
2009-07-31 17:34:10 ----D---- C:\Program Files\Internet Explorer
2009-07-31 15:10:34 ----D---- C:\Documents and Settings\Casie\Application Data\Apple Computer
2009-07-31 14:07:40 ----D---- C:\WINDOWS\Minidump
2009-07-19 19:48:58 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-07-19 07:18:59 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-07-15 00:18:35 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-07-15 00:18:15 ----D---- C:\Program Files\Pure Networks
2009-07-14 21:34:13 ----D---- C:\Program Files\Yahoo!
2009-07-14 21:33:50 ----D---- C:\Program Files\Windows Live Toolbar
2009-07-14 21:32:03 ----D---- C:\WINDOWS\PCHealth
2009-07-14 21:23:55 ----D---- C:\Program Files\Java
2009-07-08 15:20:59 ----D---- C:\WINDOWS\system32\Macromed
2009-07-07 09:10:58 ----A---- C:\WINDOWS\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-07-31 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-07-31 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-07-31 108552]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-11-02 56572]
R2 BCMWLNPF;Broadcom Netgroup Packet Filter; C:\WINDOWS\system32\drivers\bcmwlnpf.sys [2007-04-26 33664]
R2 Fallback;Fallback; C:\WINDOWS\System32\DRIVERS\HSF_FALL.sys [2001-08-17 289887]
R2 Fsks;Fsks; C:\WINDOWS\System32\DRIVERS\HSF_FSKS.sys [2001-08-17 115807]
R2 K56;K56; C:\WINDOWS\System32\DRIVERS\HSF_K56K.sys [2001-08-17 391199]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [2003-04-09 11043]
R2 SoftFax;SoftFax; C:\WINDOWS\System32\DRIVERS\HSF_FAXX.sys [2001-08-17 199711]
R2 Tones;Tones; C:\WINDOWS\System32\DRIVERS\HSF_TONE.sys [2001-08-17 50751]
R2 V124;V124; C:\WINDOWS\System32\DRIVERS\HSF_V124.sys [2001-08-17 488383]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2009-06-16 46592]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\System32\DRIVERS\Mtlmnt5.sys [2004-04-01 126686]
R3 S3Psddr;S3Psddr; C:\WINDOWS\System32\DRIVERS\s3gnbm.sys [2002-12-13 159744]
R3 Slntamr;Smart Link 56K Modem Driver; C:\WINDOWS\System32\DRIVERS\slntamr.sys [2004-04-01 404990]
R3 SlWdmSup;SlWdmSup; C:\WINDOWS\System32\DRIVERS\SlWdmSup.sys [2004-01-28 13240]
R3 SMBios;Intel (R) System Management BIOS Service; C:\WINDOWS\System32\DRIVERS\SMBios.sys [2003-10-14 36484]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2006-08-10 204672]
S3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-07-24 403968]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-07-24 461312]
S3 basic2;basic2; C:\WINDOWS\System32\DRIVERS\HSF_BSC2.sys [2001-08-17 67167]
S3 FETND5BV;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2009-06-16 46592]
S3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\System32\DRIVERS\fetnd5b.sys [2003-09-04 41984]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 HSF_DP;HSF_DP; C:\WINDOWS\System32\DRIVERS\HSF_DP.sys [2003-11-17 1042432]
S3 hsf_msft;hsf_msft; C:\WINDOWS\System32\DRIVERS\HSF_MSFT.sys [2001-08-17 542879]
S3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\System32\DRIVERS\HSFHWBS2.sys [2003-11-17 212224]
S3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
S3 Mtlstrm;Mtlstrm; C:\WINDOWS\System32\DRIVERS\Mtlstrm.sys [2004-01-28 1309184]
S3 NdisWDM;Dynex Wireless G USB Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ndiswdm.sys [2007-08-31 198528]
S3 NTACCESS;NTACCESS; \??\D:\NTACCESS.sys []
S3 NtMtlFax;NtMtlFax; C:\WINDOWS\System32\DRIVERS\NtMtlFax.sys [2004-01-28 180360]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\System32\ntsim.sys []
S3 Rksample;Rksample; C:\WINDOWS\System32\DRIVERS\HSF_SAMP.sys [2001-08-17 57471]
S3 SlNtHal;SlNtHal; C:\WINDOWS\System32\DRIVERS\Slnthal.sys [2004-01-28 95424]
S3 USB_RNDIS_XP;Westell WireSpeed Dual Connect Modem; C:\WINDOWS\System32\DRIVERS\usb8023.sys [2008-04-13 12800]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2008-02-18 30464]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Vsp;Vsp; \??\C:\WINDOWS\System32\drivers\Vsp.sys []
S3 wanatw;WAN Miniport (ATW); C:\WINDOWS\System32\DRIVERS\wanatw4.sys []
S3 winachsf;winachsf; C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys [2003-11-17 680704]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 avg8emc;AVG Free8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-07-31 908056]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-07-31 297752]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2004-01-08 73796]
R2 wltrysvc;Broadcom Wireless LAN Tray Service; C:\WINDOWS\System32\wltrysvc.exe [2007-06-14 20480]
S3 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------