Hey Chuck, so yeah I couldn't run Safe Mode, got stuck on a black screen with all the Multi disk stuff finding the file sto run safe mode or whatever that is. But I went ahead and ran the RSIT here's what I got.
Log file:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Chris Jablonski at 2009-05-12 16:49:18
Microsoft Windows XP Professional Service Pack 3
System drive D: has 38 GB (46%) free of 81 GB
Total RAM: 1022 MB (69% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:49:24 PM, on 5/12/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
D:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\svchost.exe
d:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Documents and Settings\Chris Jablonski\Desktop\RSIT.exe
D:\Program Files\Trend Micro\HijackThis\Chris Jablonski.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.watch-movies-links.net/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - d:\program files\mcafee\virusscan\scriptsn.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: McAfee Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - d:\program files\mcafee\mps\mcpopup.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - D:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - D:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - D:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - D:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) -
http://www.fileplanet.com/fpdlmgr/cabs/ ... .6.108.cabO16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) -
http://lads.myspace.com/upload/MySpaceUploader1006.cabO16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://gfx2.hotmail.com/mail/w3/pr01/re ... NPUpld.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://www.update.microsoft.com/windows ... 6342352765O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) -
http://go.divx.com/plugin/DivXBrowserPlugin.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://update.microsoft.com/microsoftup ... 9072450140O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) -
https://h20436.www2.hp.com/ediags/dex/s ... DEXAXO.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{05A6128C-C0F4-4DEE-B3AC-485D775D3A7F}: NameServer = 85.255.112.19,85.255.112.120
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 85.255.112.19,85.255.112.120
O17 - HKLM\System\CS2\Services\Tcpip\..\{05A6128C-C0F4-4DEE-B3AC-485D775D3A7F}: NameServer = 85.255.112.19,85.255.112.120
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 85.255.112.19,85.255.112.120
O17 - HKLM\System\CS3\Services\Tcpip\..\{05A6128C-C0F4-4DEE-B3AC-485D775D3A7F}: NameServer = 85.255.112.19,85.255.112.120
O17 - HKLM\System\CS4\Services\Tcpip\Parameters: NameServer = 85.255.112.19,85.255.112.120
O17 - HKLM\System\CS4\Services\Tcpip\..\{05A6128C-C0F4-4DEE-B3AC-485D775D3A7F}: NameServer = 85.255.112.19,85.255.112.120
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.112.19,85.255.112.120
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - D:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - D:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
--
End of file - 6541 bytes
======Scheduled tasks folder======
D:\WINDOWS\tasks\McDefragTask.job
D:\WINDOWS\tasks\McQcTask.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - D:\Program Files\Java\jre6\bin\ssv.dll [2008-12-02 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - d:\program files\mcafee\virusscan\scriptsn.dll [2006-07-14 67136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-01 259696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - D:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll [2009-04-17 668656]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53}]
CPub Object - d:\program files\mcafee\mps\mcpopup.dll [2006-07-27 185896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - D:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll [2009-05-01 470512]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-12-02 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-12-02 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - D:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-06-19 352256]
{0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - Veoh Web Player Video Finder - D:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll [2009-02-24 429816]
{52836EB0-631A-47B1-94A6-61F9D9112DAE} - Veoh Video Compass - D:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll [2009-02-13 404216]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - D:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2009-05-01 259696]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=D:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"swg"=D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-07-23 68856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6]
D:\Program Files\AIM6\aim6.exe [2008-08-06 50472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG8_TRAY]
D:\PROGRA~1\AVG\AVG8\avgtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]
D:\Program Files\Common Files\Symantec Shared\ccApp.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
D:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\igndlm.exe]
D:\Program Files\Download Manager\DLM.exe [2007-03-05 1103480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IS CfgWiz]
D:\Program Files\Common Files\Symantec Shared\OPC\{31011D49-D90C-4da0-878B-78D28AD507AF}\cltUIStb.exe /MODULE CfgWiz /GUID {BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840} /MODE CfgWiz /CMDLINE REBOOT []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Media Codec Update Service]
D:\Program Files\Essentials Codec Pack\WECPUpdate.exe [2009-01-25 196608]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP4 Player]
D:\Program Files\MP4 Player\mp4Player.exe hmw []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MskAgentexe]
D:\Program Files\McAfee\MSK\MskAgent.exe [2006-07-24 157264]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
D:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
D:\Program Files\Windows Live\Messenger\msnmsgr.exe [2007-10-18 5724184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck]
D:\Program Files\Norton Internet Security\osCheck.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC ScanAndSweep]
D:\Program Files\Ascentive\PC ScanAndSweep\PCScanAndSweep.exe -m []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Performance Center]
D:\Program Files\Ascentive\Performance Center\APCMain.exe -m []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\phc600]
D:\WINDOWS\vphc600.exe [2005-07-20 339968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
D:\Program Files\QuickTime\qttask.exe -atboottime []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spyware Striker Pro]
D:\Program Files\Ascentive\Spyware Striker\SpywareStriker.exe -m []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
D:\Program Files\Java\jre6\bin\jusched.exe [2008-12-02 136600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
D:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-07-23 68856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPStart]
D:\Program Files\Synaptics\SynTP\SynTPStart.exe [2007-09-15 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
D:\Program Files\Veoh Networks\Veoh\VeohClient.exe [2008-09-26 3660848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VeohPlugin]
D:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [2009-02-24 3558136]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^All Users^Start Menu^Programs^Startup^TrayMin600.exe.lnk]
D:\PROGRA~1\Philips\SPC600~1\TRAYMI~1.EXE [2005-07-12 278528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\D:^Documents and Settings^Chris Jablonski^Start Menu^Programs^Startup^My_AutoWarkey_Script.lnk]
D:\PROGRA~1\Warkeys\AUTOWA~1\AUTOHO~1\AUTOHO~1.EXE [2008-03-09 240640]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"gusvc"=3
"rpcapd"=3
"WMPNetworkSvc"=3
"WLSetupSvc"=3
"usnjsvc"=3
"MioNet"=2
"Viewpoint Manager Service"=2
"JavaQuickStarterService"=2
"avg8emc"=2
"avg8wd"=2
"SymAppCore"=2
"Symantec Core LC"=3
"ISPwdSvc"=3
"comHost"=3
"CLTNetCnService"=2
"ccSetMgr"=2
"ccEvtMgr"=2
"MSK80Service"=2
"MPS9"=2
"MpfService"=2
"mcusrmgr"=2
"mctskshd.exe"=2
"McSysmon"=2
"McShield"=2
"McRedirector"=2
"McProxy"=2
"mcpromgr"=2
"McODS"=2
"McNASvc"=2
"mcmispupdmgr"=2
"McLogManagerService"=2
"McAfee HackerWatch Service"=2
"Emproxy"=3
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
D:\WINDOWS\system32\Ati2evxx.dll [2005-11-22 47104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
D:\WINDOWS\system32\WgaLogon.dll [2008-09-06 241704]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Internet Explorer\iexplore.exe"="D:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"D:\Documents and Settings\Chris Jablonski\Local Settings\Temporary Internet Files\Content.IE5\K1IZW5U3\WoW-BurningCrusade-Trial-enUS-Installer-downloader[1].exe"="D:\Documents and Settings\Chris Jablonski\Local Settings\Temporary Internet Files\Content.IE5\K1IZW5U3\WoW-BurningCrusade-Trial-enUS-Installer-downloader[1].exe:*:Enabled:Blizzard Downloader"
"D:\Program Files\World of Warcraft\Launcher.exe"="D:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:World of Warcraft"
"D:\Program Files\Download Manager\DLM.exe"="D:\Program Files\Download Manager\DLM.exe:*:Enabled:Download Manager"
"D:\Program Files\Warcraft III\Frozen Throne.exe"="D:\Program Files\Warcraft III\Frozen Throne.exe:*:Enabled:Warcraft III - The Frozen Throne"
"D:\Program Files\Ventrilo\Ventrilo.exe"="D:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo"
"D:\Program Files\Veoh Networks\Veoh\VeohClient.exe"="D:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Enabled:Veoh Client"
"D:\Program Files\Common Files\AOL\Loader\aolload.exe"="D:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"D:\Program Files\AIM6\aim6.exe"="D:\Program Files\AIM6\aim6.exe:*:Enabled:AIM"
"D:\Program Files\Warcraft III\pickup.listchecker.exe"="D:\Program Files\Warcraft III\pickup.listchecker.exe:*:Enabled:pickup.listchecker"
"D:\WINDOWS\system32\wupdmgr.exe"="D:\WINDOWS\system32\wupdmgr.exe:*:Enabled:wupdmgr"
"D:\Program Files\LimeWire\LimeWire.exe"="D:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"D:\Program Files\World of Warcraft\BNUpdate.exe"="D:\Program Files\World of Warcraft\BNUpdate.exe:*:Enabled:BNUpdate"
"D:\Program Files\World of Warcraft\BackgroundDownloader.exe"="D:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:BackgroundDownloader"
"D:\Program Files\World of Warcraft\WoW-2.4.0.8089-to-2.4.1.8125-enUS-downloader.exe"="D:\Program Files\World of Warcraft\WoW-2.4.0.8089-to-2.4.1.8125-enUS-downloader.exe:*:Enabled:WoW-2.4.0.8089-to-2.4.1.8125-enUS-downloader"
"D:\Program Files\World of Warcraft\WoW-3.0.2.9056-to-3.0.3.9183-enUS-downloader.exe"="D:\Program Files\World of Warcraft\WoW-3.0.2.9056-to-3.0.3.9183-enUS-downloader.exe:*:Enabled:WoW-3.0.2.9056-to-3.0.3.9183-enUS-downloader"
"D:\Program Files\World of Warcraft\Updates\WoW-3.0.1-to-3.0.2-Update\Updater.exe"="D:\Program Files\World of Warcraft\Updates\WoW-3.0.1-to-3.0.2-Update\Updater.exe:*:Enabled:Updater"
"D:\Program Files\World of Warcraft\WoW-BurningCrusade-enUS-Slim-Installer\Installer.exe"="D:\Program Files\World of Warcraft\WoW-BurningCrusade-enUS-Slim-Installer\Installer.exe:*:Enabled:Installer"
"D:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe"="D:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe:*:Enabled:Acrobat.com"
"D:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft Installer\Installer.exe"="D:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft Installer\Installer.exe:*:Enabled:Installer"
"D:\Program Files\Messenger\msmsgs.exe"="D:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"D:\Program Files\Windows Live\Messenger\msnmsgr.exe"="D:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"D:\Program Files\Windows Live\Messenger\livecall.exe"="D:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"D:\Program Files\uTorrent\uTorrent.exe"="D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\Program Files\World of Warcraft\WoW-3.0.8.9506-to-3.0.9.9551-enUS-downloader.exe"="D:\Program Files\World of Warcraft\WoW-3.0.8.9506-to-3.0.9.9551-enUS-downloader.exe:*:Enabled:Blizzard Downloader"
"D:\Documents and Settings\Chris Jablonski\Local Settings\Temp\Blizzard Launcher Temporary - 54807040\Launcher.exe"="D:\Documents and Settings\Chris Jablonski\Local Settings\Temp\Blizzard Launcher Temporary - 54807040\Launcher.exe:*:Enabled:Blizzard Launcher"
"D:\Documents and Settings\Chris Jablonski\Local Settings\Temp\Blizzard Launcher Temporary - 659823f0\Launcher.exe"="D:\Documents and Settings\Chris Jablonski\Local Settings\Temp\Blizzard Launcher Temporary - 659823f0\Launcher.exe:*:Enabled:Blizzard Launcher"
"D:\Documents and Settings\Chris Jablonski\My Documents\World of Warcraft Public Test\Launcher.exe"="D:\Documents and Settings\Chris Jablonski\My Documents\World of Warcraft Public Test\Launcher.exe:*:Enabled:Blizzard Launcher"
"D:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="D:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player "
"D:\WINDOWS\system32\sessmgr.exe"="D:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"D:\Program Files\AVG\AVG8\avgui.exe"="D:\Program Files\AVG\AVG8\avgui.exe:*:Enabled:AVG Free User Interface"
"D:\Program Files\AVG\AVG8\avgtray.exe"="D:\Program Files\AVG\AVG8\avgtray.exe:*:Enabled:AVG Free Tray Icon"
"D:\Program Files\World of Warcraft\WoW-3.0.9.9551-to-3.1.0.9767-enUS-downloader.exe"="D:\Program Files\World of Warcraft\WoW-3.0.9.9551-to-3.1.0.9767-enUS-downloader.exe:*:Enabled:Blizzard Downloader"
"D:\Program Files\Garena\Garena.exe"="D:\Program Files\Garena\Garena.exe:*:Enabled:Garena"
"D:\Documents and Settings\Chris Jablonski\Local Settings\Temp\7zS2.tmp\SymNRT.exe"="D:\Documents and Settings\Chris Jablonski\Local Settings\Temp\7zS2.tmp\SymNRT.exe:*:Enabled:Norton Removal Tool"
"D:\Program Files\Common Files\McAfee\MNA\McNASvc.exe"="D:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent"
"D:\Program Files\Malwarebytes' Anti-Malware\mbam.exe"="D:\Program Files\Malwarebytes' Anti-Malware\mbam.exe:*:Enabled:Malwarebytes' Anti-Malware"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Windows Live\Messenger\msnmsgr.exe"="D:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"D:\Program Files\Windows Live\Messenger\livecall.exe"="D:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
======List of files/folders created in the last 3 months======
2009-05-12 16:49:18 ----D---- D:\rsit
2009-05-11 16:38:15 ----D---- D:\Avenger
2009-05-11 16:38:14 ----A---- D:\avenger.txt
2009-05-10 22:29:30 ----D---- D:\Program Files\Malwarebytes' Anti-Malware
2009-05-10 22:29:30 ----D---- D:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-05-09 19:39:47 ----D---- D:\Documents and Settings\Chris Jablonski\Application Data\GetRightToGo
2009-04-29 16:55:17 ----A---- D:\WINDOWS\system32\dunzip32.dll
2009-04-29 16:53:16 ----D---- D:\Program Files\McAfee.com
2009-04-29 16:53:12 ----D---- D:\Program Files\Common Files\McAfee
2009-04-29 16:53:02 ----D---- D:\Program Files\McAfee
2009-04-29 16:52:42 ----D---- D:\Documents and Settings\All Users\Application Data\McAfee
2009-04-28 07:36:18 ----D---- D:\Program Files\Trend Micro
2009-04-22 03:26:39 ----D---- D:\Program Files\Garena
2009-04-16 03:00:47 ----D---- D:\Program Files\Defraggler
2009-04-13 03:46:43 ----A---- D:\WINDOWS\system32\capicom.dll
2009-04-13 03:46:39 ----D---- D:\Documents and Settings\All Users\Application Data\Symantec
2009-04-13 03:46:04 ----D---- D:\Program Files\Common Files\Symantec Shared
2009-04-06 20:28:33 ----SHD---- D:\Config.Msi
2009-04-06 20:27:59 ----D---- D:\WINDOWS\SxsCaPendDel
2009-04-06 20:17:31 ----AD---- D:\Documents and Settings\All Users\Application Data\TEMP
2009-04-06 17:35:25 ----HD---- D:\$AVG8.VAULT$
2009-04-06 17:15:31 ----D---- D:\Documents and Settings\All Users\Application Data\avg8
2009-03-26 17:19:57 ----A---- D:\WINDOWS\system32\BNCSutil.dll
2009-03-26 16:26:27 ----D---- D:\Documents and Settings\Chris Jablonski\Application Data\Media Player Classic
2009-03-22 17:50:11 ----D---- D:\Program Files\Warkeys
======List of files/folders modified in the last 3 months======
2009-05-12 16:46:34 ----D---- D:\WINDOWS\Temp
2009-05-12 16:37:35 ----A---- D:\WINDOWS\SchedLgU.Txt
2009-05-12 06:31:24 ----D---- D:\Program Files\Warcraft III
2009-05-12 04:18:59 ----D---- D:\WINDOWS\system32\CatRoot2
2009-05-12 00:48:09 ----D---- D:\WINDOWS\system32
2009-05-12 00:48:09 ----A---- D:\WINDOWS\system32\PerfStringBackup.INI
2009-05-11 19:51:11 ----D---- D:\WINDOWS\Prefetch
2009-05-11 16:38:15 ----D---- D:\WINDOWS\system32\drivers
2009-05-10 23:14:52 ----D---- D:\Documents and Settings\Chris Jablonski\Application Data\uTorrent
2009-05-10 22:29:30 ----RD---- D:\Program Files
2009-05-10 21:54:50 ----D---- D:\WINDOWS
2009-05-10 14:44:34 ----D---- D:\Program Files\LimeWire
2009-05-10 14:42:52 ----D---- D:\Documents and Settings\Chris Jablonski\Application Data\LimeWire
2009-05-09 20:38:47 ----A---- D:\WINDOWS\win.ini
2009-05-09 20:38:47 ----A---- D:\WINDOWS\system.ini
2009-05-08 15:13:41 ----SHD---- D:\RECYCLER
2009-05-07 05:51:28 ----D---- D:\WINDOWS\system32\LogFiles
2009-05-05 17:13:18 ----D---- D:\Program Files\World of Warcraft
2009-05-01 13:59:15 ----SHD---- D:\WINDOWS\Installer
2009-04-29 17:05:43 ----HD---- D:\WINDOWS\inf
2009-04-29 16:53:41 ----SD---- D:\WINDOWS\Tasks
2009-04-29 16:53:12 ----D---- D:\Program Files\Common Files
2009-04-26 08:13:42 ----D---- D:\Program Files\Common Files\Blizzard Entertainment
2009-04-26 07:19:17 ----A---- D:\WINDOWS\NeroDigital.ini
2009-04-16 02:56:45 ----D---- D:\Program Files\CCleaner
2009-04-13 03:25:53 ----SD---- D:\Documents and Settings\Chris Jablonski\Application Data\Microsoft
2009-04-06 20:29:38 ----D---- D:\Documents and Settings\All Users\Application Data\Viewpoint
2009-04-06 20:27:59 ----D---- D:\WINDOWS\WinSxS
2009-04-06 20:27:54 ----D---- D:\Program Files\Common Files\Microsoft Shared
2009-03-28 16:16:29 ----D---- D:\Program Files\DotA Gaming Network
2009-03-26 16:14:21 ----D---- D:\Program Files\Essentials Codec Pack
2009-03-26 16:11:35 ----HD---- D:\Program Files\InstallShield Installation Information
2009-03-13 19:48:06 ----D---- D:\WINDOWS\Debug
2009-03-13 13:26:15 ----D---- D:\Program Files\Internet Explorer
2009-03-13 13:23:59 ----RSHDC---- D:\WINDOWS\system32\dllcache
2009-03-13 13:23:10 ----HD---- D:\WINDOWS\$hf_mig$
2009-03-03 01:17:12 ----D---- D:\Program Files\Veoh Networks
2009-02-27 07:24:09 ----D---- D:\Documents and Settings
2009-02-25 12:55:00 ----A---- D:\WINDOWS\system32\MRT.exe
2009-02-24 20:56:34 ----D---- D:\Documents and Settings\Chris Jablonski\Application Data\Ventrilo
2009-02-24 17:58:00 ----D---- D:\WINDOWS\network diagnostic
2009-02-24 17:52:47 ----SD---- D:\Documents and Settings\All Users\Application Data\Microsoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AmdPPM;AMD HwPState Processor Driver; D:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 MPFP;MPFP; D:\WINDOWS\System32\Drivers\Mpfp.sys [2006-08-01 104536]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; D:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 mdmxsdk;mdmxsdk; D:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-03-17 13059]
R3 Arp1394;1394 ARP Client Protocol; D:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; D:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2005-11-22 1410560]
R3 CAMCAUD;Conexant AMC Audio; D:\WINDOWS\system32\drivers\camc6aud.sys [2005-08-01 38016]
R3 CAMCHALA;CAMCHALA; D:\WINDOWS\system32\drivers\camc6hal.sys [2005-08-01 349312]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; D:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 hidusb;Microsoft HID Class Driver; D:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DPV;HSF_DPV; D:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-08-22 1035008]
R3 HSFHWATI;HSFHWATI; D:\WINDOWS\system32\DRIVERS\HSFHWATI.sys [2005-08-22 231424]
R3 KMWDFILTER;HIDUASDesc; D:\WINDOWS\system32\DRIVERS\KMWDFILTER.sys [2008-10-09 17408]
R3 mfeavfk;McAfee Inc.; D:\WINDOWS\system32\drivers\mfeavfk.sys [2006-07-08 84744]
R3 mfebopk;McAfee Inc.; D:\WINDOWS\system32\drivers\mfebopk.sys [2006-07-14 33896]
R3 mfehidk;McAfee Inc.; D:\WINDOWS\system32\drivers\mfehidk.sys [2006-07-14 161768]
R3 mouhid;Mouse HID Driver; D:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-04 12160]
R3 NIC1394;1394 Net Driver; D:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 phc600;USB PC Camera (phc600); D:\WINDOWS\system32\DRIVERS\phc600.sys [2005-06-07 440064]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; D:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2008-12-02 118656]
R3 sdbus;sdbus; D:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-13 79232]
R3 SynTP;Synaptics TouchPad Driver; D:\WINDOWS\system32\DRIVERS\SynTP.sys [2007-09-15 213696]
R3 usbaudio;USB Audio Driver (WDM); D:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Microsoft USB Generic Parent Driver; D:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; D:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; D:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; D:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 winachsf;winachsf; D:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-08-22 718464]
S1 kbdhid;Keyboard HID Driver; D:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; D:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2008-10-23 1391104]
S3 Bridge;MAC Bridge; D:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;MAC Bridge Miniport; D:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 CCDECODE;Closed Caption Decoder; D:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 mferkdk;McAfee Inc.; D:\WINDOWS\system32\drivers\mferkdk.sys [2006-07-14 31560]
S3 mfesmfk;McAfee Inc.; D:\WINDOWS\system32\drivers\mfesmfk.sys [2006-07-14 37800]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; D:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; D:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; D:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nm;Network Monitor Driver; D:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 NPF;NetGroup Packet Filter Driver; D:\WINDOWS\system32\drivers\npf.sys [2007-11-06 34064]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; D:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]
S3 SLIP;BDA Slip De-Framer; D:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; D:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 WSTCODEC;World Standard Teletext Codec; D:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 IntelIde;IntelIde; D:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; D:\WINDOWS\system32\Ati2evxx.exe [2005-11-22 393216]
R2 McShield;McAfee Real-time Scanner; D:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2006-07-14 140864]
S4 Emproxy;McAfee E-mail Proxy; D:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe [2006-07-22 341584]
S4 gusvc;Google Software Updater; D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-05-01 182768]
S4 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2008-12-02 152984]
S4 McAfee HackerWatch Service;McAfee HackerWatch Service; D:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe [2006-07-24 554600]
S4 McLogManagerService;McAfee Log Manager; D:\PROGRA~1\McAfee\MSC\mclogsrv.exe [2006-07-22 178800]
S4 mcmispupdmgr;McAfee Update Manager; D:\PROGRA~1\McAfee\MSC\mcupdmgr.exe [2006-07-22 665200]
S4 McNASvc;McAfee Network Agent; d:\program files\common files\mcafee\mna\mcnasvc.exe [2006-07-21 2135592]
S4 McODS;McAfee Scanner; D:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2006-07-14 353872]
S4 mcpromgr;McAfee Protection Manager; D:\PROGRA~1\McAfee\MSC\mcpromgr.exe [2006-07-22 473200]
S4 McProxy;McAfee Proxy Service; d:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe [2006-07-22 341592]
S4 McRedirector;McAfee Redirector Service; d:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe [2006-07-16 231008]
S4 McSysmon;McAfee SystemGuards; D:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2006-07-14 624208]
S4 mctskshd.exe;McAfee Task Scheduler; D:\PROGRA~1\McAfee\MSC\mctskshd.exe [2006-07-22 189552]
S4 mcusrmgr;McAfee User Manager; D:\PROGRA~1\McAfee\MSC\mcusrmgr.exe [2006-07-22 304752]
S4 MpfService;McAfee Personal Firewall Service; D:\Program Files\McAfee\MPF\MPFSrv.exe [2006-07-25 804392]
S4 MPS9;McAfee Privacy Service; D:\Program Files\McAfee\MPS\mps.exe [2006-07-27 890408]
S4 MSK80Service;McAfee SpamKiller Service; D:\Program Files\McAfee\MSK\MskSrver.exe [2006-07-24 44624]
S4 rpcapd;Remote Packet Capture Protocol v.0 (experimental); D:\Program Files\WinPcap\rpcapd.exe [2007-11-06 92792]
S4 usnjsvc;Messenger Sharing Folders USN Journal Reader service; D:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S4 Viewpoint Manager Service;Viewpoint Manager Service; D:\Program Files\Viewpoint\Common\ViewpointService.exe []
S4 WLSetupSvc;Windows Live Setup Service; D:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S4 WMPNetworkSvc;Windows Media Player Network Sharing Service; D:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
-----------------EOF-----------------
Info file:
info.txt logfile of random's system information tool 1.06 2009-05-12 16:49:26
======Uninstall list======
-->D:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 D:\WINDOWS\INF\PCHealth.inf
Acrobat.com-->D:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Adobe AIR-->D:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Flash Player ActiveX-->D:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
AIM 6-->D:\Program Files\AIM6\uninst.exe
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ATI - Software Uninstall Utility-->D:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Display Driver-->rundll32 D:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Camgoo TwoPlay-->"D:\Program Files\Camgoo TwoPlay\unins000.exe"
CCleaner (remove only)-->"D:\Program Files\CCleaner\uninst.exe"
Conexant AC-Link Audio-->D:\Program Files\CONEXANT\CNXT_AUDIO\UIU32a.exe -U -ICPL309BA.INF
Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro 7.07-->"D:\avi-dvd-pro\unins000.exe"
Defraggler (remove only)-->"D:\Program Files\Defraggler\uninst.exe"
DivX Codec-->D:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->D:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->D:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->D:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DotA Client Build 2.2 Beta-->"D:\Program Files\DotA Gaming Network\unins001.exe"
DotA Client Build 2.3 Beta-->"D:\Program Files\DotA Gaming Network\unins000.exe"
Download Manager 2.3.6-->D:\Program Files\Download Manager\uninst.exe
Garena-->D:\Program Files\Garena\uninst.exe
Google Toolbar for Internet Explorer-->"D:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_BDA1448D3D255554.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
HijackThis 2.0.2-->"D:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
K-Lite Codec Pack 3.2.5 Standard-->"D:\Program Files\K-Lite Codec Pack\unins000.exe"
Malwarebytes' Anti-Malware-->"D:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
McAfee SecurityCenter-->D:\Program Files\McAfee\MSC\mcuninst.exe
Microsoft Internationalized Domain Names Mitigation APIs-->"D:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"D:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
MSN-->D:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
Philips SPC 600NC PC Camera-->RunDll32 D:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "D:\Program Files\InstallShield Installation Information\{E3F26FE7-4BFF-4740-A5C5-A7DC32ED14BD}\setup.exe" -l0x9
Philips VLounge-->RunDll32 D:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "D:\Program Files\InstallShield Installation Information\{269A4095-DB55-4D35-8FD0-39957D26BEEC}\Setup.exe" -l0x9
Security Update for Windows Internet Explorer 7 (KB938127-v2)-->"D:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB953838)-->"D:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB956390)-->"D:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB958215)-->"D:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB960714)-->"D:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB961260)-->"D:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
SIPPS-->D:\WINDOWS\UNSIPPS.exe /UNINSTALL
Soft Data Fax Modem with SmartCP-->D:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_1002&DEV_4378\HXFSETUP.EXE -U -Icpl309bk.inf
Synaptics Pointing Device Driver-->rundll32.exe "D:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Ventrilo Client-->MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F}
Veoh Video Compass-->D:\Program Files\Veoh Networks\Veoh Video Compass\uninst.exe
Veoh Web Player Beta-->"D:\Program Files\Veoh Networks\VeohWebPlayer\uninst.exe"
VeohTV BETA-->D:\Program Files\InstallShield Installation Information\{0405E51E-9582-4207-8F38-AC44201D3808}\setup.exe -runfromtemp -l0x0409
Warkeys 1.13.1.0b-->D:\Program Files\Warkeys\uninst.exe
WinAce Archiver-->"D:\Program Files\WinAce\SXUNINST.EXE" "D:\Program Files\WinAce\SXUNINST.INI"
Windows Essentials Media Codec Pack 2.2-->D:\Program Files\Essentials Codec Pack\uninst.exe
Windows Internet Explorer 7-->"D:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Live Messenger-->MsiExec.exe /X{508CE775-4BA4-4748-82DF-FE28DA9F03B0}
Windows Live Sign-in Assistant-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Windows Media Format 11 runtime-->"D:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"D:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"D:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"D:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"D:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinPcap 4.0.2-->D:\Program Files\WinPcap\uninstall.exe
======Security center information======
AV: McAfee VirusScan
FW: McAfee Personal Firewall
======System event log======
Computer Name: DRUID-6053DD59B
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Record Number: 47
Source Name: Tcpip
Time Written: 20090406211219.000000-240
Event Type: warning
User:
Computer Name: DRUID-6053DD59B
Event Code: 7031
Message: The Print Spooler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
Record Number: 45
Source Name: Service Control Manager
Time Written: 20090406205333.000000-240
Event Type: error
User:
Computer Name: DRUID-6053DD59B
Event Code: 59
Message: Generate Activation Context failed for D:\PROGRA~1\AVG\AVG8\avgtray.exe.
Reference error message: The operation completed successfully.
.
Record Number: 5
Source Name: SideBySide
Time Written: 20090406204150.000000-240
Event Type: error
User:
Computer Name: DRUID-6053DD59B
Event Code: 59
Message: Resolve Partial Assembly failed for Microsoft.VC80.MFC.
Reference error message: The referenced assembly is not installed on your system.
.
Record Number: 4
Source Name: SideBySide
Time Written: 20090406204150.000000-240
Event Type: error
User:
Computer Name: DRUID-6053DD59B
Event Code: 32
Message: Dependent Assembly Microsoft.VC80.MFC could not be found and Last Error was The referenced assembly is not installed on your system.
Record Number: 3
Source Name: SideBySide
Time Written: 20090406204150.000000-240
Event Type: error
User:
=====Application event log=====
Computer Name: DRUID-6053DD59B
Event Code: 1000
Message: Faulting application avi2mpg.exe, version 5.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Record Number: 641
Source Name: Application Error
Time Written: 20081213070751.000000-300
Event Type: error
User:
Computer Name: DRUID-6053DD59B
Event Code: 1000
Message: Faulting application avi2mpg.exe, version 5.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Record Number: 639
Source Name: Application Error
Time Written: 20081213070252.000000-300
Event Type: error
User:
Computer Name: DRUID-6053DD59B
Event Code: 1000
Message: Faulting application avi2mpg.exe, version 5.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Record Number: 633
Source Name: Application Error
Time Written: 20081213064504.000000-300
Event Type: error
User:
Computer Name: DRUID-6053DD59B
Event Code: 1000
Message: Faulting application avi2mpg.exe, version 5.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Record Number: 631
Source Name: Application Error
Time Written: 20081213064108.000000-300
Event Type: error
User:
Computer Name: DRUID-6053DD59B
Event Code: 1000
Message: Faulting application avi2mpg.exe, version 5.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Record Number: 629
Source Name: Application Error
Time Written: 20081213063902.000000-300
Event Type: error
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;D:\Program Files\QuickTime\QTSystem\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 36 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2402
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;D:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=D:\Program Files\Java\jre6\lib\ext\QTJava.zip
-----------------EOF-----------------