Help

[Blade81]

Sorry, meant fresh rsit log

 

[whytechocolate]

Rsit log

Logfile of random's system information tool 1.06 (written by random/random)
Run by Bonnie at 2009-09-24 13:37:19
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 150 GB (63%) free of 238 GB
Total RAM: 2559 MB (70% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:37:29 PM, on 9/24/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe
C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\PROGRA~1\ROADRU~2\PHOTOS~1\data\Xtras\mssysmgr.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\CAPPActiveProtection.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe
C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\IncrediMail\bin\IncMail.exe
C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\My Documents\Downloads\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Bonnie.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredigames.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\YTSingleInstance.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe
O4 - HKLM\..\Run: [CTDVDDet] C:\Program Files\Creative\SBAudigy2\DVDAudio\CTDVDDet.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [AsioReg] REGSVR32.EXE /S CTASIO.DLL
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [cctray] "C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe"
O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe"
O4 - HKLM\..\Run: [cafwc] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe -cl
O4 - HKLM\..\Run: [capfasem] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe
O4 - HKLM\..\Run: [capfupgrade] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfupgrade.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\RunOnce: [GrpConv] grpconv -o
O4 - HKLM\..\RunOnce: [ccube_TrustList] "C:\Program Files\CA\CA Internet Security Suite\caunst.exe" /trustlist
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Road Runner PhotoShow Media Manager] C:\PROGRA~1\ROADRU~2\PHOTOS~1\data\Xtras\mssysmgr.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: CaCCProvSP - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe
O23 - Service: PPCtlPriv - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe
O23 - Service: HIPS Event Manager (UmxAgent) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
O23 - Service: HIPS Configuration Interpreter (UmxCfg) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
O23 - Service: HIPS Firewall Helper (UmxFwHlp) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
O23 - Service: VET Message Service (VETMSGNT) - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 7289 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\CAAntiSpywareScan_Daily as Bonnie at 6 46 PM.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll [2009-07-30 909040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn2\YTSingleInstance.dll [2009-07-30 159472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDD3B846-8D59-4ffb-8758-209B6AD74ACC}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll [2009-07-30 909040]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"CTSysVol"=C:\Program Files\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe [2002-10-29 49152]
"CTDVDDet"=C:\Program Files\Creative\SBAudigy2\DVDAudio\CTDVDDet.EXE [2002-09-30 45056]
"CTHelper"=C:\WINDOWS\system32\CTHELPER.EXE [2003-02-20 28672]
"AsioReg"=REGSVR32.EXE /S CTASIO.DLL []
"UpdReg"=C:\WINDOWS\UpdReg.EXE [2000-05-11 90112]
"BCMSMMSG"=C:\WINDOWS\BCMSMMSG.exe [2003-08-29 122880]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-23 111856]
"cctray"=C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe [2009-09-16 177392]
"QOELOADER"=C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe [2009-09-16 14088]
"CAVRID"=C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe [2009-09-16 230664]
"cafwc"=C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe [2009-09-23 1193200]
"capfasem"=C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe [2009-09-23 173296]
"capfupgrade"=C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfupgrade.exe [2009-09-23 259312]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
""= []
"GrpConv"=grpconv -o []
"ccube_TrustList"=C:\Program Files\CA\CA Internet Security Suite\caunst.exe [2009-09-16 529648]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2009-08-10 251264]
"Messenger (Yahoo!)"=C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [2009-05-26 4351216]
"Search Protection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-23 111856]
"MoneyAgent"=C:\Program Files\Microsoft Money\System\mnyexpr.exe [2003-06-18 200704]
"Road Runner PhotoShow Media Manager"=C:\PROGRA~1\ROADRU~2\PHOTOS~1\data\Xtras\mssysmgr.exe [2008-05-09 361976]

C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\PFW]
C:\WINDOWS\system32\UmxWnp.Dll [2007-05-18 79368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-13 239616]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\ImApp.exe"="C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2009-09-24 11:01:39 ----A---- C:\ComboFix.txt
2009-09-24 10:47:42 ----D---- C:\ComboFix
2009-09-23 16:42:34 ----D---- C:\Program Files\ESET
2009-09-23 16:32:46 ----A---- C:\WINDOWS\_MSRSTRT.EXE
2009-09-22 15:38:06 ----A---- C:\Boot.bak
2009-09-22 15:37:48 ----RASHD---- C:\cmdcons
2009-09-22 15:36:43 ----A---- C:\WINDOWS\zip.exe
2009-09-22 15:36:43 ----A---- C:\WINDOWS\SWXCACLS.exe
2009-09-22 15:36:43 ----A---- C:\WINDOWS\SWSC.exe
2009-09-22 15:36:43 ----A---- C:\WINDOWS\SWREG.exe
2009-09-22 15:36:43 ----A---- C:\WINDOWS\sed.exe
2009-09-22 15:36:43 ----A---- C:\WINDOWS\PEV.exe
2009-09-22 15:36:43 ----A---- C:\WINDOWS\NIRCMD.exe
2009-09-22 15:36:43 ----A---- C:\WINDOWS\grep.exe
2009-09-22 15:36:37 ----D---- C:\WINDOWS\ERDNT
2009-09-22 15:36:26 ----D---- C:\Qoobox
2009-09-22 14:02:50 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Malwarebytes
2009-09-22 14:02:41 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Malwarebytes
2009-09-22 14:02:40 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-22 09:53:17 ----D---- C:\rsit
2009-09-19 13:48:09 ----DC---- C:\Documents and Settings\All Users.WINDOWS\Application Data\{C4C0E335-EDDF-46A0-A57D-F3802AE44275}
2009-09-19 13:42:39 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2009-09-19 13:42:39 ----N---- C:\WINDOWS\system32\prntvpt.dll
2009-09-19 13:42:38 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2009-09-19 13:42:38 ----D---- C:\234563fc4a7886848891d2c7
2009-09-19 13:30:00 ----RD---- C:\AHCache
2009-09-18 18:59:00 ----D---- C:\Program Files\Trend Micro
2009-09-17 11:29:04 ----D---- C:\WINDOWS\Prefetch
2009-09-16 21:28:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-09-16 21:27:43 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-09-16 21:27:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-09-16 21:26:38 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-09-16 21:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-09-16 21:25:26 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2009-09-16 21:24:54 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-09-16 21:24:21 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2009-09-16 21:23:49 ----HDC---- C:\WINDOWS\$NtUninstallKB968537$
2009-09-16 21:23:14 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2009-09-16 21:22:41 ----HDC---- C:\WINDOWS\$NtUninstallKB961503$
2009-09-16 21:22:09 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2009-09-16 21:21:36 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2009-09-16 21:21:03 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-09-16 21:20:30 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2009-09-16 21:19:58 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-09-16 21:19:24 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2009-09-16 21:18:50 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-09-16 21:18:17 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-09-16 21:17:45 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-09-16 21:17:12 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-09-16 21:16:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-09-16 21:16:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-09-16 21:15:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2009-09-16 21:14:53 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-09-16 21:14:20 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-09-16 21:13:45 ----HDC---- C:\WINDOWS\$NtUninstallKB953155$
2009-09-16 21:13:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-09-16 21:12:34 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-09-16 21:11:57 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2009-09-16 21:11:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-09-16 21:10:45 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-09-16 21:10:12 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-09-16 21:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-09-16 21:09:06 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2$
2009-09-16 21:08:31 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2009-09-16 20:15:42 ----AD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\TEMP
2009-09-16 20:14:32 ----D---- C:\Program Files\Common Files\Oberon Media
2009-09-16 20:14:31 ----D---- C:\Program Files\IncrediGames
2009-09-16 18:46:50 ----A---- C:\WINDOWS\system32\vetredir.dll
2009-09-16 18:46:50 ----A---- C:\WINDOWS\system32\isafprod.dll
2009-09-16 18:46:50 ----A---- C:\WINDOWS\system32\isafeif.dll
2009-09-16 18:46:16 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\CA
2009-09-16 17:29:00 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Road Runner
2009-09-16 17:27:31 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-09-16 17:27:31 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-09-16 17:27:31 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-09-16 17:27:31 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-09-16 17:26:30 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Simple Star Shared
2009-09-16 17:26:26 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Simple Star
2009-09-16 17:01:22 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Simple Star
2009-09-16 17:01:22 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Road Runner
2009-09-16 14:49:37 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Sun
2009-09-14 22:10:58 ----A---- C:\WINDOWS\TaxACT06.ini
2009-09-13 03:06:07 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2_0$
2009-09-13 03:05:50 ----HDC---- C:\WINDOWS\$NtUninstallKB972260$
2009-09-13 03:04:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956844_0$
2009-09-13 03:04:45 ----HDC---- C:\WINDOWS\$NtUninstallKB938464-v2_0$
2009-09-13 03:04:40 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-09-13 03:04:19 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9L$
2009-09-13 03:02:12 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2009-09-13 03:01:49 ----HDC---- C:\WINDOWS\$NtUninstallKB958470$
2009-09-13 03:01:05 ----D---- C:\Program Files\MSXML 4.0
2009-09-13 03:00:56 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-09-13 03:00:44 ----HDC---- C:\WINDOWS\$NtUninstallKB926247$
2009-09-12 17:40:55 ----N---- C:\WINDOWS\system32\wmphoto.dll
2009-09-12 17:40:54 ----N---- C:\WINDOWS\system32\wlanapi.dll
2009-09-12 17:40:53 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2009-09-12 17:40:53 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2009-09-12 17:40:51 ----N---- C:\WINDOWS\system32\tspkg.dll
2009-09-12 17:40:51 ----N---- C:\WINDOWS\system32\tsgqec.dll
2009-09-12 17:40:47 ----N---- C:\WINDOWS\system32\setupn.exe
2009-09-12 17:40:46 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2009-09-12 17:40:45 ----N---- C:\WINDOWS\system32\rasqec.dll
2009-09-12 17:40:45 ----N---- C:\WINDOWS\system32\qutil.dll
2009-09-12 17:40:45 ----N---- C:\WINDOWS\system32\qcliprov.dll
2009-09-12 17:40:45 ----N---- C:\WINDOWS\system32\qagentrt.dll
2009-09-12 17:40:45 ----N---- C:\WINDOWS\system32\qagent.dll
2009-09-12 17:40:45 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2009-09-12 17:40:44 ----N---- C:\WINDOWS\system32\onex.dll
2009-09-12 17:40:42 ----N---- C:\WINDOWS\system32\napstat.exe
2009-09-12 17:40:42 ----N---- C:\WINDOWS\system32\napmontr.dll
2009-09-12 17:40:42 ----N---- C:\WINDOWS\system32\napipsec.dll
2009-09-12 17:40:41 ----N---- C:\WINDOWS\system32\msxml6r.dll
2009-09-12 17:40:41 ----N---- C:\WINDOWS\system32\msxml6.dll
2009-09-12 17:40:40 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2009-09-12 17:40:40 ----N---- C:\WINDOWS\system32\mssha.dll
2009-09-12 17:40:36 ----N---- C:\WINDOWS\system32\mmcperf.exe
2009-09-12 17:40:36 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2009-09-12 17:40:36 ----N---- C:\WINDOWS\system32\mmcex.dll
2009-09-12 17:40:36 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2009-09-12 17:40:33 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2009-09-12 17:40:32 ----N---- C:\WINDOWS\system32\kmsvc.dll
2009-09-12 17:40:32 ----N---- C:\WINDOWS\system32\kbdpash.dll
2009-09-12 17:40:32 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2009-09-12 17:40:32 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2009-09-12 17:40:32 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2009-09-12 17:40:31 ----N---- C:\WINDOWS\system32\ieencode.dll
2009-09-12 17:40:29 ----A---- C:\WINDOWS\005143_.tmp
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eapsvc.dll
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eapqec.dll
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eappprxy.dll
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eapphost.dll
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eappgnui.dll
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eappcfg.dll
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2009-09-12 17:40:28 ----N---- C:\WINDOWS\system32\eapolqec.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dot3ui.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dot3svc.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dot3msm.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dot3api.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dimsroam.dll
2009-09-12 17:40:27 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2009-09-12 17:40:26 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2009-09-12 17:40:25 ----N---- C:\WINDOWS\system32\credssp.dll
2009-09-12 17:40:22 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2009-09-12 17:40:22 ----N---- C:\WINDOWS\system32\azroles.dll
2009-09-12 17:40:20 ----N---- C:\WINDOWS\system32\aaclient.dll
2009-09-12 15:45:37 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2009-09-12 15:45:22 ----N---- C:\WINDOWS\system32\tzchange.exe
2009-09-12 11:09:51 ----HDC---- C:\WINDOWS\$NtUninstallKB924496$
2009-09-12 11:09:36 ----HDC---- C:\WINDOWS\$NtUninstallKB924191$
2009-09-12 11:09:22 ----HDC---- C:\WINDOWS\$NtUninstallKB923414$
2009-09-12 11:09:08 ----HDC---- C:\WINDOWS\$NtUninstallKB923191$
2009-09-12 11:08:53 ----HDC---- C:\WINDOWS\$NtUninstallKB922819$
2009-09-12 11:08:34 ----HDC---- C:\WINDOWS\$NtUninstallKB922616$
2009-09-12 11:08:19 ----HDC---- C:\WINDOWS\$NtUninstallKB921883$
2009-09-12 11:08:04 ----HDC---- C:\WINDOWS\$NtUninstallKB921398$
2009-09-12 11:07:49 ----HDC---- C:\WINDOWS\$NtUninstallKB920685$
2009-09-12 11:07:34 ----HDC---- C:\WINDOWS\$NtUninstallKB920683$
2009-09-12 11:07:18 ----HDC---- C:\WINDOWS\$NtUninstallKB920670$
2009-09-12 11:07:03 ----HDC---- C:\WINDOWS\$NtUninstallKB919007$
2009-09-12 11:06:48 ----HDC---- C:\WINDOWS\$NtUninstallKB917953$
2009-09-12 11:06:33 ----HDC---- C:\WINDOWS\$NtUninstallKB917422$
2009-09-12 11:06:17 ----HDC---- C:\WINDOWS\$NtUninstallKB917344$
2009-09-12 11:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB914389$
2009-09-12 11:05:47 ----HDC---- C:\WINDOWS\$NtUninstallKB914388$
2009-09-12 11:05:31 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2009-09-12 11:05:15 ----HDC---- C:\WINDOWS\$NtUninstallKB912919$
2009-09-12 11:04:59 ----HDC---- C:\WINDOWS\$NtUninstallKB911927$
2009-09-12 11:04:44 ----HDC---- C:\WINDOWS\$NtUninstallKB911562$
2009-09-12 11:04:29 ----HDC---- C:\WINDOWS\$NtUninstallKB911280$
2009-09-12 11:04:13 ----HDC---- C:\WINDOWS\$NtUninstallKB910437$
2009-09-12 11:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB908531$
2009-09-12 11:03:29 ----HDC---- C:\WINDOWS\$NtUninstallKB908519$
2009-09-12 11:03:15 ----HDC---- C:\WINDOWS\$NtUninstallKB905749$
2009-09-12 11:02:58 ----HDC---- C:\WINDOWS\$NtUninstallKB905414$
2009-09-12 11:02:41 ----HDC---- C:\WINDOWS\$NtUninstallKB904706$
2009-09-12 11:02:21 ----HDC---- C:\WINDOWS\$NtUninstallKB902400$
2009-09-12 11:02:05 ----HDC---- C:\WINDOWS\$NtUninstallKB901214$
2009-09-12 11:01:49 ----HDC---- C:\WINDOWS\$NtUninstallKB901017$
2009-09-12 11:01:31 ----HDC---- C:\WINDOWS\$NtUninstallKB900725$
2009-09-12 11:01:15 ----HDC---- C:\WINDOWS\$NtUninstallKB899591$
2009-09-12 11:00:59 ----HDC---- C:\WINDOWS\$NtUninstallKB899587$
2009-09-12 11:00:42 ----HDC---- C:\WINDOWS\$NtUninstallKB896428$
2009-09-12 11:00:25 ----HDC---- C:\WINDOWS\$NtUninstallKB896424$
2009-09-12 11:00:07 ----HDC---- C:\WINDOWS\$NtUninstallKB896423$
2009-09-12 10:59:50 ----HDC---- C:\WINDOWS\$NtUninstallKB896358$
2009-09-12 10:59:32 ----HDC---- C:\WINDOWS\$NtUninstallKB893756$
2009-09-12 10:59:17 ----HDC---- C:\WINDOWS\$NtUninstallKB891781$
2009-09-12 10:58:43 ----HDC---- C:\WINDOWS\$NtUninstallKB890859$
2009-09-12 10:58:21 ----HDC---- C:\WINDOWS\$NtUninstallKB890046$
2009-09-12 10:51:26 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-09-12 08:57:55 ----A---- C:\WINDOWS\ODBC.INI
2009-09-12 02:38:51 ----N---- C:\WINDOWS\system32\spnpinst.exe
2009-09-10 15:45:28 ----HDC---- C:\WINDOWS\$NtUninstallKB899587_0$
2009-09-10 15:42:39 ----HDC---- C:\WINDOWS\$NtUninstallKB901017_0$
2009-09-10 15:42:29 ----HDC---- C:\WINDOWS\$NtUninstallKB899591_0$
2009-09-10 15:42:07 ----HDC---- C:\WINDOWS\$NtUninstallKB896424_0$
2009-09-10 15:41:57 ----HDC---- C:\WINDOWS\$NtUninstallKB893756_0$
2009-09-10 15:41:27 ----HDC---- C:\WINDOWS\$NtUninstallKB896423_0$
2009-09-10 15:41:21 ----A---- C:\WINDOWS\system32\MRT.INI
2009-09-10 15:40:12 ----A---- C:\WINDOWS\system32\MRT.exe
2009-09-10 15:39:28 ----HDC---- C:\WINDOWS\$NtUninstallKB925486-IE6SP1-20060918.120000$

 

[whytechocolate]

rsit log 2

2009-09-10 15:39:08 ----HDC---- C:\WINDOWS\$NtUninstallKB918439-IE6SP1-20060530.145346$
2009-09-10 15:39:00 ----HDC---- C:\WINDOWS\$NtUninstallKB896358_0$
2009-09-10 15:38:20 ----HDC---- C:\WINDOWS\$NtUninstallKB902400_0$
2009-09-10 15:37:26 ----HDC---- C:\WINDOWS\$NtUninstallKB905414_0$
2009-09-10 15:37:11 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP8$
2009-09-10 15:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB901214_0$
2009-09-10 15:36:25 ----HDC---- C:\WINDOWS\$NtUninstallKB900725_0$
2009-09-10 15:36:05 ----HDC---- C:\WINDOWS\$NtUninstallKB918899-IE6SP1-20060725.123917$
2009-09-10 15:35:58 ----HDC---- C:\WINDOWS\$NtUninstallKB911567-OE6SP1-20060316.165634$
2009-09-10 15:35:35 ----HDC---- C:\WINDOWS\$NtUninstallKB905749_0$
2009-09-10 15:35:24 ----HDC---- C:\WINDOWS\$NtUninstallKB896428_0$
2009-09-10 15:35:18 ----HDC---- C:\WINDOWS\$NtUninstallKB835409$
2009-09-10 15:34:53 ----HDC---- C:\WINDOWS\$NtUninstallKB890859_0$
2009-09-09 19:50:10 ----A---- C:\WINDOWS\system32\esent.dll
2009-09-08 16:18:28 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Mozilla
2009-09-08 09:21:59 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Yahoo!
2009-09-08 09:21:59 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Yahoo! Companion
2009-09-08 09:21:26 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Yahoo!
2009-09-08 09:17:57 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Macromedia
2009-09-08 09:15:23 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\IM
2009-09-08 09:14:47 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\IncrediMail
2009-09-08 09:14:12 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Adobe
2009-09-08 08:49:23 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-09-08 08:49:22 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-09-08 08:48:53 ----N---- C:\WINDOWS\system32\bitsprx3.dll
2009-09-08 08:48:53 ----N---- C:\WINDOWS\system32\bitsprx2.dll
2009-09-08 08:48:53 ----A---- C:\WINDOWS\system32\winhttp.dll
2009-09-08 08:48:53 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-09-08 08:46:41 ----A---- C:\WINDOWS\system32\wpa.bak
2009-09-08 08:45:29 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-09-08 08:45:29 ----A---- C:\WINDOWS\system32\wups.dll
2009-09-08 08:45:29 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-09-08 08:45:29 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-09-08 08:45:29 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-09-08 08:45:29 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-09-08 08:29:32 ----D---- C:\Program Files\Broadcom
2009-09-07 18:47:56 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-09-07 18:37:33 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-09-07 18:37:33 ----A---- C:\WINDOWS\system32\irclass.dll
2009-09-07 18:37:24 ----RA---- C:\WINDOWS\SET40.tmp
2009-09-07 18:37:23 ----RA---- C:\WINDOWS\SET2E.tmp
2009-09-07 18:37:22 ----RA---- C:\WINDOWS\SET22.tmp
2009-09-07 18:30:33 ----D---- C:\$WIN_NT$.~BT
2009-09-07 18:30:33 ----A---- C:\WINDOWS\UPGRADE.TXT
2009-09-07 18:30:32 ----D---- C:\WINDOWS\setup.pss
2009-09-07 14:54:25 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Creative
2009-09-07 14:54:20 ----A---- C:\WINDOWS\{00000002-00000000-00000003-00001102-00000004-10031102}.BAK
2009-09-07 14:53:17 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Jasc Software Inc
2009-09-07 14:49:50 ----A---- C:\WINDOWS\Updreg.EXE
2009-09-07 14:49:50 ----A---- C:\WINDOWS\system32\SFCVRT32.DLL
2009-09-07 14:49:50 ----A---- C:\WINDOWS\CTRES.DLL
2009-09-07 14:49:50 ----A---- C:\WINDOWS\CTCCW.DLL
2009-09-07 14:49:50 ----A---- C:\WINDOWS\AC3API.INI
2009-09-07 14:49:49 ----A---- C:\WINDOWS\system32\INETWH32.DLL
2009-09-07 14:49:49 ----A---- C:\WINDOWS\system32\CTWFLT32.DLL
2009-09-07 14:49:49 ----A---- C:\WINDOWS\system32\CTL3D.DLL
2009-09-07 14:49:17 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-09-07 14:49:14 ----A---- C:\WINDOWS\system32\ctzapxx.ini
2009-09-07 14:49:14 ----A---- C:\WINDOWS\system32\Aud2_Del.ini
2009-09-07 14:49:14 ----A---- C:\WINDOWS\INRES.DLL
2009-09-07 14:49:07 ----A---- C:\WINDOWS\CTDCRES.DLL
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\SFMS32.DLL
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\sfman32.dll
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\REGPLIB.EXE
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\PIAPROXY.DLL
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\OPENAL32.DLL
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\KILLAPPS.EXE
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\KILL.INI
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\ENSDEF.INI
2009-09-07 14:49:06 ----A---- C:\WINDOWS\system32\ENSDEF.EXE
2009-09-07 14:49:06 ----A---- C:\WINDOWS\READREG.EXE
2009-09-07 14:49:06 ----A---- C:\WINDOWS\PSCONV.EXE
2009-09-07 14:49:06 ----A---- C:\WINDOWS\MIDIDEF.EXE
2009-09-07 14:49:05 ----A---- C:\WINDOWS\system32\EAXAC3.DLL
2009-09-07 14:49:05 ----A---- C:\WINDOWS\system32\CTSPKHLP.DLL
2009-09-07 14:49:05 ----A---- C:\WINDOWS\DEVREG.DLL
2009-09-07 14:49:04 ----A---- C:\WINDOWS\system32\CTSCAL.DLL
2009-09-07 14:49:04 ----A---- C:\WINDOWS\system32\ctsblfx.dll
2009-09-07 14:49:04 ----A---- C:\WINDOWS\system32\CTOSUSER.DLL
2009-09-07 14:49:04 ----A---- C:\WINDOWS\system32\CTHELPER.EXE
2009-09-07 14:49:04 ----A---- C:\WINDOWS\system32\CTEMUPIA.DLL
2009-09-07 14:49:03 ----A---- C:\WINDOWS\system32\CTDPROXY.DLL
2009-09-07 14:49:02 ----A---- C:\WINDOWS\system32\CTDCIFCE.DLL
2009-09-07 14:49:02 ----A---- C:\WINDOWS\system32\CTDC0001.DLL
2009-09-07 14:49:02 ----A---- C:\WINDOWS\system32\CTDC0000.DLL
2009-09-07 14:49:02 ----A---- C:\WINDOWS\system32\ctaudfx.dll
2009-09-07 14:49:02 ----A---- C:\WINDOWS\system32\CTASIO.DLL
2009-09-07 14:49:01 ----A---- C:\WINDOWS\system32\CTAGENT.DLL
2009-09-07 14:49:00 ----A---- C:\WINDOWS\system32\commonfx.dll
2009-09-07 14:49:00 ----A---- C:\WINDOWS\system32\AC3API.DLL
2009-09-07 14:49:00 ----A---- C:\WINDOWS\system32\a3d.dll
2009-09-07 14:48:52 ----A---- C:\WINDOWS\system32\ctdvda32.dll
2009-09-07 14:48:49 ----A---- C:\WINDOWS\system32\AHQCpURes.dll
2009-09-07 14:47:59 ----A---- C:\WINDOWS\SBWIN.INI
2009-09-07 14:47:48 ----A---- C:\WINDOWS\system32\CTSVCCTL.EXE
2009-09-07 14:47:48 ----A---- C:\WINDOWS\system32\CTSVCCDA.EXE
2009-09-07 14:47:48 ----A---- C:\WINDOWS\system32\CTDetres.dll
2009-09-07 14:47:45 ----A---- C:\WINDOWS\system32\CTMEDENG.DLL
2009-09-07 14:47:44 ----A---- C:\WINDOWS\system32\CTMERes.DLL
2009-09-07 14:01:46 ----D---- C:\WINDOWS\system32\FxsTmp
2009-09-07 14:01:45 ----A---- C:\WINDOWS\ModemLog_BCM V.92 56K Voicemodem.txt
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\snmpmib.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\hostmib.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxssend.exe
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxsroute.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxsperf.ini
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxsmon.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxsevent.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxscom.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxsclntR.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\fxscfgwz.dll
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\evntwin.exe
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\evntcmd.exe
2009-09-07 14:01:41 ----A---- C:\WINDOWS\system32\evntagnt.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsxp32.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxswzrd.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsui.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxstiff.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxst30.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxssvc.exe
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsst.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsres.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsperf.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsext32.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsdrv.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxscover.exe
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxscomex.dll
2009-09-07 14:01:40 ----A---- C:\WINDOWS\system32\fxsclnt.exe
2009-09-07 14:01:38 ----A---- C:\WINDOWS\system32\fxsapi.dll
2009-09-07 13:22:17 ----A---- C:\WINDOWS\ModemLog_BCM V.90 56K Modem.txt
2009-09-07 13:08:37 ----RA---- C:\WINDOWS\system32\hhactivex.dll
2009-09-07 13:08:37 ----A---- C:\WINDOWS\system32\RcdScan.dll
2009-09-07 13:08:36 ----A---- C:\WINDOWS\system32\VB5DB.DLL
2009-09-07 12:38:48 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\MSN6
2009-09-07 12:38:48 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\MSN6
2009-09-07 12:35:15 ----D---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Identities
2009-09-07 12:35:10 ----HD---- C:\Program Files\Uninstall Information
2009-09-07 12:35:05 ----SD---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\Microsoft
2009-09-07 12:35:05 ----ASH---- C:\Documents and Settings\Bonnie.BONNIE-FM4OD1WD\Application Data\desktop.ini
2009-09-07 12:34:10 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-07 12:23:07 ----A---- C:\WINDOWS\system32\xpsp1hfm.exe
2009-09-07 12:22:43 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-09-07 12:22:29 ----A---- C:\WINDOWS\control.ini
2009-09-07 12:22:20 ----A---- C:\WINDOWS\OEWABLog.txt
2009-09-07 12:22:17 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-09-07 12:21:18 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-09-07 12:20:43 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-09-07 12:20:43 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-09-07 12:20:43 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-09-07 12:20:43 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-09-07 12:20:43 ----A---- C:\WINDOWS\system32\atrace.dll
2009-09-07 12:20:41 ----A---- C:\WINDOWS\system32\desktop.ini
2009-09-07 12:20:41 ----A---- C:\WINDOWS\desktop.ini
2009-09-07 12:20:37 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-09-07 12:20:37 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-09-07 12:20:36 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-09-07 12:20:36 ----A---- C:\WINDOWS\system32\acctres.dll
2009-09-07 12:20:35 ----A---- C:\WINDOWS\system32\inetres.dll
2009-09-07 12:20:34 ----A---- C:\WINDOWS\system32\isign32.dll
2009-09-07 12:20:34 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-09-07 12:20:34 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-09-07 12:20:34 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-09-07 12:20:34 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-09-07 12:20:29 ----N---- C:\WINDOWS\system32\qmgr.dll
2009-09-07 12:20:26 ----N---- C:\WINDOWS\system32\srsvc.dll
2009-09-07 12:20:26 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-09-07 12:20:26 ----A---- C:\WINDOWS\system32\srclient.dll
2009-09-07 12:20:26 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-09-07 12:20:26 ----A---- C:\WINDOWS\system32\ils.dll
2009-09-07 12:20:25 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-09-07 12:20:25 ----A---- C:\WINDOWS\system32\msconf.dll
2009-09-07 12:20:24 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-09-07 12:20:23 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-09-07 12:20:23 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-09-07 12:20:22 ----N---- C:\WINDOWS\system32\schedsvc.dll
2009-09-07 12:20:22 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-09-07 12:20:22 ----A---- C:\WINDOWS\system32\mstask.dll
2009-09-07 12:20:08 ----D---- C:\Program Files\ComPlus Applications
2009-09-07 12:20:07 ----A---- C:\WINDOWS\vbaddin.ini
2009-09-07 12:20:07 ----A---- C:\WINDOWS\vb.ini
2009-09-07 12:19:43 ----HD---- C:\Program Files\WindowsUpdate
2009-09-07 12:19:36 ----A---- C:\WINDOWS\system32\write.exe
2009-09-07 12:19:31 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-09-07 12:19:31 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-09-07 12:19:31 ----A---- C:\WINDOWS\system32\accwiz.exe
2009-09-07 12:19:30 ----A---- C:\WINDOWS\system32\winchat.exe
2009-09-07 12:19:30 ----A---- C:\WINDOWS\system32\hticons.dll
2009-09-07 12:19:30 ----A---- C:\WINDOWS\system32\avwav.dll
2009-09-07 12:19:30 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-09-07 12:19:30 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-09-07 12:19:26 ----A---- C:\WINDOWS\system32\getuname.dll
2009-09-07 12:19:26 ----A---- C:\WINDOWS\system32\charmap.exe
2009-09-07 12:19:25 ----A---- C:\WINDOWS\system32\winmine.exe
2009-09-07 12:19:25 ----A---- C:\WINDOWS\system32\sol.exe
2009-09-07 12:19:25 ----A---- C:\WINDOWS\system32\reset.exe
2009-09-07 12:19:25 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-09-07 12:19:25 ----A---- C:\WINDOWS\system32\mshearts.exe
2009-09-07 12:19:25 ----A---- C:\WINDOWS\system32\freecell.exe
2009-09-07 12:19:25 ----A---- C:\WINDOWS\system32\calc.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\tskill.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\tscon.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\shadow.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\regini.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\msg.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\logoff.exe
2009-09-07 12:19:24 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-09-07 12:19:23 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-09-07 12:19:23 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-09-07 12:19:23 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-09-07 12:19:23 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-09-07 12:19:23 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\stclient.dll
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-09-07 12:19:22 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-09-07 12:19:21 ----A---- C:\WINDOWS\system32\comuid.dll
2009-09-07 12:19:21 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-09-07 12:19:17 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-09-07 12:19:17 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-09-07 12:19:17 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-09-07 12:19:17 ----A---- C:\WINDOWS\system32\cmprops.dll
2009-09-07 12:19:16 ----A---- C:\WINDOWS\system32\mspaint.exe
2009-09-07 12:19:16 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-09-07 12:19:15 ----N---- C:\WINDOWS\system32\wuauclt.exe
2009-09-07 12:19:15 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-09-07 12:19:15 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-09-07 12:19:15 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-09-07 12:19:15 ----A---- C:\WINDOWS\system32\spider.exe
2009-09-07 12:19:15 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-09-07 12:19:15 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-09-07 12:19:14 ----N---- C:\WINDOWS\system32\termsrv.dll
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-09-07 12:19:14 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-09-07 12:19:13 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-09-07 12:19:11 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-09-07 05:18:25 ----A---- C:\WINDOWS\system32\h323log.txt
2009-09-07 05:09:27 ----A---- C:\WINDOWS\imsins.BAK
2009-09-07 05:09:24 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-09-07 05:09:23 ----A---- C:\WINDOWS\ODBCINST.INI
2009-09-07 05:09:13 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-09-07 05:09:12 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-09-07 05:09:11 ----A---- C:\WINDOWS\system32\CONFIG.TMP
2009-09-07 05:09:10 ----A---- C:\WINDOWS\system32\storprop.dll
2009-09-07 05:09:07 ----ASH---- C:\Documents and Settings\All Users.WINDOWS\Application Data\desktop.ini
2009-09-07 05:09:04 ----RA---- C:\WINDOWS\SETD.tmp
2009-09-07 05:09:04 ----RA---- C:\WINDOWS\SET7.tmp
2009-09-07 05:09:01 ----RA---- C:\WINDOWS\SET3.tmp
2009-09-07 05:08:50 ----SD---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft
2009-09-07 05:08:41 ----A---- C:\WINDOWS\setuplog.txt
2009-08-26 05:00:16 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$

======List of files/folders modified in the last 1 months======

2009-09-24 11:43:35 ----D---- C:\WINDOWS\SYSTEM32
2009-09-24 11:43:35 ----D---- C:\WINDOWS
2009-09-24 11:09:41 ----A---- C:\caisslog.txt
2009-09-24 11:03:07 ----D---- C:\Program Files\Mozilla Firefox
2009-09-24 11:01:02 ----D---- C:\WINDOWS\temp
2009-09-24 10:58:05 ----A---- C:\WINDOWS\system.ini
2009-09-24 10:53:02 ----D---- C:\WINDOWS\system32\DRIVERS
2009-09-24 10:53:02 ----D---- C:\WINDOWS\AppPatch
2009-09-24 10:52:51 ----D---- C:\Program Files\Common Files
2009-09-24 10:48:21 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-24 10:45:47 ----D---- C:\WINDOWS\CAVTemp
2009-09-24 05:33:12 ----SHD---- C:\WINDOWS\Installer
2009-09-24 05:33:11 ----D---- C:\Config.Msi
2009-09-23 16:42:34 ----RAD---- C:\Program Files
2009-09-22 15:59:12 ----D---- C:\WINDOWS\system32\CONFIG
2009-09-22 15:55:58 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-22 15:38:07 ----RASH---- C:\boot.ini
2009-09-20 03:24:43 ----D---- C:\WINDOWS\Microsoft.NET
2009-09-20 03:24:28 ----RSD---- C:\WINDOWS\assembly
2009-09-20 03:08:55 ----HD---- C:\WINDOWS\INF
2009-09-20 03:08:50 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-20 03:08:40 ----RSHDC---- C:\WINDOWS\system32\DLLCACHE
2009-09-20 03:04:19 ----D---- C:\WINDOWS\WinSxS
2009-09-19 13:44:01 ----D---- C:\WINDOWS\system32\XPSViewer
2009-09-19 13:43:58 ----D---- C:\WINDOWS\system32\en-US
2009-09-19 13:43:54 ----RSD---- C:\WINDOWS\Fonts
2009-09-18 18:58:16 ----SD---- C:\WINDOWS\Tasks
2009-09-18 03:01:54 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2009-09-18 03:01:40 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-09-18 03:01:29 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-09-18 03:00:23 ----HD---- C:\WINDOWS\$hf_mig$
2009-09-17 11:32:33 ----D---- C:\Program Files\Messenger
2009-09-17 11:28:35 ----D---- C:\WINDOWS\system32\Setup
2009-09-17 11:28:34 ----D---- C:\WINDOWS\system32\WBEM
2009-09-16 21:26:40 ----D---- C:\Program Files\Outlook Express
2009-09-16 21:14:01 ----D---- C:\WINDOWS\SECURITY
2009-09-16 21:03:52 ----D---- C:\Program Files\Windows Media Player
2009-09-16 21:03:51 ----D---- C:\WINDOWS\Help
2009-09-16 21:03:35 ----D---- C:\WINDOWS\network diagnostic
2009-09-16 21:03:35 ----D---- C:\WINDOWS\IME
2009-09-16 21:03:19 ----D---- C:\WINDOWS\system32\USMT
2009-09-16 21:03:18 ----D---- C:\WINDOWS\system32\scripting
2009-09-16 21:03:18 ----D---- C:\WINDOWS\l2schemas
2009-09-16 21:03:17 ----D---- C:\WINDOWS\system32\en
2009-09-16 21:03:17 ----D---- C:\WINDOWS\system32\bits
2009-09-16 21:03:17 ----D---- C:\WINDOWS\peernet
2009-09-16 21:03:16 ----D---- C:\Program Files\Movie Maker
2009-09-16 20:59:31 ----D---- C:\WINDOWS\system32\Restore
2009-09-16 20:59:31 ----D---- C:\WINDOWS\system32\NPP
2009-09-16 20:59:30 ----D---- C:\WINDOWS\MSAGENT
2009-09-16 20:59:28 ----D---- C:\WINDOWS\SRCHASST
2009-09-16 20:59:27 ----D---- C:\Program Files\NetMeeting
2009-09-16 20:59:25 ----D---- C:\WINDOWS\system32\Com
2009-09-16 20:59:22 ----D---- C:\Program Files\Windows NT
2009-09-16 20:59:18 ----D---- C:\Program Files\Common Files\System
2009-09-16 20:58:52 ----D---- C:\WINDOWS\system32\OOBE
2009-09-16 20:58:49 ----D---- C:\WINDOWS\SYSTEM
2009-09-16 20:55:46 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-09-16 20:30:20 ----D---- C:\WINDOWS\EHome
2009-09-16 20:14:32 ----D---- C:\Program Files\Oberon Media
2009-09-16 18:46:52 ----A---- C:\caavsetupLog.txt
2009-09-16 18:44:24 ----D---- C:\Documents and Settings
2009-09-16 17:27:30 ----D---- C:\Program Files\Common Files\Simple Star Shared
2009-09-16 17:26:28 ----D---- C:\Program Files\Road Runner
2009-09-16 17:00:40 ----D---- C:\Program Files\Internet Explorer
2009-09-16 16:52:40 ----D---- C:\WINDOWS\WBEM
2009-09-16 16:52:31 ----D---- C:\WINDOWS\Media
2009-09-16 16:52:18 ----HDC---- C:\WINDOWS\ie8
2009-09-13 03:06:31 ----HDC---- C:\WINDOWS\$NtUninstallKB959426_0$
2009-09-13 03:05:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956572_0$
2009-09-13 03:04:32 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-09-13 03:04:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952004_0$
2009-09-13 03:04:03 ----HDC---- C:\WINDOWS\$NtUninstallKB953155_0$
2009-09-13 03:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958687_0$
2009-09-13 03:02:19 ----HDC---- C:\WINDOWS\$NtUninstallKB951748_0$
2009-09-13 03:02:07 ----HDC---- C:\WINDOWS\$NtUninstallKB970238_0$
2009-09-13 03:00:50 ----HDC---- C:\WINDOWS\$NtUninstallKB923561_0$
2009-09-12 11:26:27 ----D---- C:\WINDOWS\Debug
2009-09-12 10:56:23 ----A---- C:\WINDOWS\win.ini
2009-09-12 10:53:19 ----RD---- C:\WINDOWS\Web
2009-09-12 10:53:11 ----RASH---- C:\NTDETECT.COM
2009-09-12 09:07:24 ----D---- C:\WINDOWS\system32\Macromed
2009-09-12 09:05:27 ----D---- C:\Program Files\Microsoft Picture It! 9
2009-09-12 09:03:16 ----D---- C:\Program Files\Microsoft Streets and Trips
2009-09-12 09:02:00 ----D---- C:\Program Files\Microsoft Money
2009-09-12 08:58:17 ----D---- C:\Program Files\Microsoft Works
2009-09-12 08:57:45 ----HD---- C:\WINDOWS\ShellNew
2009-09-12 08:57:20 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-09-10 15:45:32 ----D---- C:\WINDOWS\Registration
2009-09-10 15:44:09 ----HDC---- C:\WINDOWS\$NtUninstallKB922819_0$
2009-09-10 15:43:46 ----HDC---- C:\WINDOWS\$NtUninstallKB885835$
2009-09-10 15:43:35 ----HDC---- C:\WINDOWS\$NtUninstallKB885836$
2009-09-10 15:43:03 ----HDC---- C:\WINDOWS\$NtUninstallKB911927_0$
2009-09-10 15:42:50 ----HDC---- C:\WINDOWS\$NtUninstallKB922616_0$
2009-09-10 15:42:19 ----HDC---- C:\WINDOWS\$NtUninstallKB920685_0$
2009-09-10 15:41:49 ----HDC---- C:\WINDOWS\$NtUninstallKB911280_0$
2009-09-10 15:39:42 ----HDC---- C:\WINDOWS\$NtUninstallKB924496_0$
2009-09-10 15:39:19 ----HDC---- C:\WINDOWS\$NtUninstallKB921398_0$
2009-09-10 15:37:40 ----HDC---- C:\WINDOWS\$NtUninstallKB914388_0$
2009-09-10 15:36:51 ----HDC---- C:\WINDOWS\$NtUninstallKB923191_0$
2009-09-10 15:36:16 ----HDC---- C:\WINDOWS\$NtUninstallKB912919_0$
2009-09-10 15:35:51 ----HDC---- C:\WINDOWS\$NtUninstallKB904706_0$
2009-09-10 15:35:42 ----HDC---- C:\WINDOWS\$NtUninstallKB908531_0$
2009-09-10 15:35:31 ----HDC---- C:\WINDOWS\$NtUninstallKB913580_0$
2009-09-10 15:35:13 ----HDC---- C:\WINDOWS\$NtUninstallKB908519_0$
2009-09-10 15:35:08 ----HDC---- C:\WINDOWS\$NtUninstallKB920683_0$
2009-09-10 15:35:03 ----HDC---- C:\WINDOWS\$NtUninstallKB914389_0$
2009-09-08 09:22:09 ----D---- C:\Program Files\Yahoo!
2009-09-08 09:15:00 ----D---- C:\Program Files\IncrediMail
2009-09-08 08:49:37 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2009-09-08 08:49:33 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2009-09-08 08:46:59 ----D---- C:\WINDOWS\SoftwareDistribution
2009-09-07 18:53:09 ----SHD---- C:\System Volume Information
2009-09-07 15:01:29 ----D---- C:\Program Files\Modem Helper
2009-09-07 14:49:48 ----D---- C:\WINDOWS\system32\Defaults
2009-09-07 14:49:14 ----D---- C:\WINDOWS\system32\Data
2009-09-07 14:44:15 ----D---- C:\Program Files\Common Files\SureThing Shared
2009-09-07 14:44:14 ----D---- C:\Program Files\Sonic
2009-09-07 14:02:50 ----D---- C:\WINDOWS\system32\URTTemp
2009-09-07 14:01:41 ----D---- C:\WINDOWS\ADDINS
2009-09-07 13:29:32 ----D---- C:\WINDOWS\pss
2009-09-07 12:24:31 ----D---- C:\WINDOWS\REPAIR
2009-09-07 12:21:24 ----SD---- C:\WINDOWS\occache
2009-09-07 12:21:24 ----RD---- C:\WINDOWS\Offline Web Pages
2009-09-07 12:20:03 ----D---- C:\WINDOWS\system32\MsDtc
2009-09-07 12:19:34 ----D---- C:\WINDOWS\Cursors
2009-09-07 11:34:18 ----D---- C:\WINDOWS\TWAIN_32
2009-09-07 11:34:03 ----D---- C:\WINDOWS\system32\ICSXML
2009-09-07 11:33:37 ----D---- C:\WINDOWS\system32\IAS
2009-09-07 11:33:32 ----D---- C:\WINDOWS\system32\1033
2009-09-07 11:32:28 ----D---- C:\WINDOWS\Driver Cache
2009-09-07 05:02:41 ----D---- C:\WINDOWS\system32\RAS
2009-09-07 05:01:12 ----D---- C:\WINDOWS\zhenghe2
2009-09-07 05:01:12 ----D---- C:\WINDOWS\XPack with Serialz
2009-09-07 05:00:55 ----D---- C:\WINDOWS\system32\NtmsData
2009-09-07 05:00:35 ----D---- C:\WINDOWS\system32\dla
2009-09-07 05:00:25 ----D---- C:\WINDOWS\system32\(app)
2009-09-07 05:00:20 ----D---- C:\WINDOWS\SierraWireless3.5.4
2009-09-07 05:00:09 ----D---- C:\WINDOWS\PHOTOCD
2009-09-07 05:00:08 ----D---- C:\WINDOWS\nview
2009-09-07 05:00:08 ----D---- C:\WINDOWS\NewSoft
2009-09-07 05:00:07 ----D---- C:\WINDOWS\My Video Downloader
2009-09-07 05:00:07 ----D---- C:\WINDOWS\MVUNINST
2009-09-07 05:00:00 ----D---- C:\WINDOWS\Java
2009-09-07 05:00:00 ----D---- C:\WINDOWS\Intelli HyperSpeed 2005
2009-09-07 04:59:45 ----HDC---- C:\WINDOWS\ie7
2009-09-07 04:59:40 ----D---- C:\WINDOWS\Full Speed
2009-09-07 04:59:34 ----D---- C:\WINDOWS\DellPCH
2009-09-07 04:59:34 ----D---- C:\WINDOWS\Cache
2009-09-07 04:59:32 ----HDC---- C:\WINDOWS\$NtUninstallWudf01005$
2009-09-07 04:59:32 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-09-07 04:59:32 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ828026$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ817606$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ817287$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ815021$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ814033$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ810833$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ810577$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ810565$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ329834$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ329441$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallQ329115$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973869_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973815_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973507_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973354_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971657_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971633_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB971557_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB969898$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB968537_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB967715_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB961503_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB961501_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB961373$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB960859_0$
2009-09-07 04:59:31 ----HDC---- C:\WINDOWS\$NtUninstallKB960803_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB960225_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB953839$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2009-09-07 04:59:30 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376_0$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB950749$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB948881$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB948590$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB946026$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB945553$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB944653$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB943485$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB943460$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB943055$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB942763$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB941693$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB941644$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB941568$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB941202$
2009-09-07 04:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB938829$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB938828$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB936357$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB936021$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB935840$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB935839$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB933729$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB933360$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB932823-v3$
2009-09-07 04:59:28 ----HDC---- C:\WINDOWS\$NtUninstallKB932168$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB931784$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB931768$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB931261$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB930916$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB930178$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB929338$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB929123$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB928843$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB928255$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB928090$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB927891$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB927802$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB927779$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB926436$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB926255$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB926239$
2009-09-07 04:59:27 ----HDC---- C:\WINDOWS\$NtUninstallKB925902$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB925486$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB925454_0$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB925454$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB925398_WMP64$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB924667$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB924270$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB924191_0$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923980$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923723$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923694$
2009-09-07 04:59:26 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB923414_0$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB922760$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB922582$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB921883_0$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB921503$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB920872$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB920670_0$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB920214$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB920213$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB919007_0$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB918899$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB918439$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB918118$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB917953_0$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB917734_WMP10$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB917422_0$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB917344_0$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB917159$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB916595$
2009-09-07 04:59:25 ----HDC---- C:\WINDOWS\$NtUninstallKB916281$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB913446$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB912812$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB911567$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB911565$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB911564$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB911562_0$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB910437_0$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB906569$
2009-09-07 04:59:24 ----HDC---- C:\WINDOWS\$NtUninstallKB905915$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB905495$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB902344$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB900485$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB898458$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB896688-IE6SP1-20051004.130236$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB896344$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB891781_0$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB891711$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB890175_0$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB890175$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB890046_0$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB889293-IE6SP1-20041111.235619$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB888302_0$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB888302$
2009-09-07 04:59:23 ----HDC---- C:\WINDOWS\$NtUninstallKB888113_0$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB888113$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB886185$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB885884$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB885836_0$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB885835_0$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB885250$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB873376$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB873339_0$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB873339$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB871250$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB841533$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB841356$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB840987$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB840374$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB839643-DirectX9$
2009-09-07 04:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB837001$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB835732$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB828741$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB826939$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB825119$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB824141$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB824105$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB823182$
2009-09-07 04:59:21 ----HDC---- C:\WINDOWS\$NtUninstallKB821557$
2009-09-07 04:59:12 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803$
2009-09-05 10:35:19 ----D---- C:\Program Files\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 KmxAgent;KmxAgent; C:\WINDOWS\System32\DRIVERS\kmxagent.sys [2008-06-24 63504]
R1 KmxFile;KmxFile; C:\WINDOWS\System32\DRIVERS\KmxFile.sys [2008-06-24 45584]
R1 KmxFw;KmxFw; C:\WINDOWS\System32\DRIVERS\kmxfw.sys [2008-06-24 115216]
R1 OMCI;OMCI; C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS [2001-08-22 13632]
R1 VETEFILE;VET File Scan Engine; C:\WINDOWS\system32\drivers\VETEFILE.sys [2009-09-16 880560]
R1 VETFDDNT;VET Floppy Boot Sector Monitor; C:\WINDOWS\system32\drivers\VETFDDNT.sys [2007-08-20 21512]
R1 VET-FILT;VET File System Filter; C:\WINDOWS\system32\drivers\VET-FILT.sys [2007-08-20 26376]
R1 VETMONNT;VET File Monitor; C:\WINDOWS\system32\drivers\VETMONNT.sys [2007-08-20 32264]
R1 VET-REC;VET File System Recognizer; C:\WINDOWS\system32\drivers\VET-REC.sys [2007-08-20 21128]
R2 KmxCF;KmxCF; C:\WINDOWS\System32\DRIVERS\KmxCF.sys [2008-06-24 134648]
R2 KmxSbx;KmxSbx; C:\WINDOWS\System32\DRIVERS\KmxSbx.sys [2008-06-24 66576]
R2 PfModNT;PfModNT; \??\C:\WINDOWS\System32\drivers\PfModNT.sys []
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 BCMModem;BCM V.92 56K Modem; C:\WINDOWS\System32\DRIVERS\BCMSM.sys [2003-08-29 1101696]
R3 catchme;catchme; \??\C:\DOCUME~1\BONNIE~1.BON\LOCALS~1\Temp\catchme.sys []
R3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\System32\drivers\ctac32k.sys [2003-02-20 135040]
R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2003-03-26 498688]
R3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\System32\drivers\ctprxy2k.sys [2003-02-20 6144]
R3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\System32\drivers\ctsfm2k.sys [2003-02-20 135248]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2003-03-04 145408]
R3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\System32\drivers\emupia2k.sys [2003-02-20 116000]
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2003-03-26 823616]
R3 hap16v2k;Creative P16V HAL Driver; C:\WINDOWS\System32\drivers\hap16v2k.sys [2003-03-26 141536]
R3 KmxCfg;KmxCfg; C:\WINDOWS\System32\DRIVERS\kmxcfg.sys [2008-06-24 88816]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2004-08-03 1897408]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2003-03-26 189504]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbstor;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VETEBOOT;VET Boot Scan Engine; C:\WINDOWS\system32\drivers\VETEBOOT.sys [2009-09-16 108368]
S3 bvrp_pci;bvrp_pci; \??\C:\WINDOWS\System32\drivers\bvrp_pci.sys []
S3 ctdvda2k;Creative DVD-Audio Device Driver; C:\WINDOWS\System32\drivers\ctdvda2k.sys [2003-03-27 287920]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\System32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 CAISafe;CAISafe; C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe [2007-08-20 144960]
R2 Creative Service for CDROM Access;Creative Service for CDROM Access; C:\WINDOWS\System32\CTsvcCDA.exe [1999-12-13 44032]
R2 ITMRTSVC;CA Pest Patrol Realtime Protection Service; C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe [2007-01-04 280080]
R2 SimpTcp;Simple TCP/IP Services; C:\WINDOWS\System32\tcpsvcs.exe [2003-07-16 19456]
R2 SNMP;SNMP Service; C:\WINDOWS\System32\snmp.exe [2008-04-13 33280]
R2 UmxCfg;HIPS Configuration Interpreter; C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe [2007-10-18 801296]
R2 UmxFwHlp;HIPS Firewall Helper; C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe [2007-10-18 145936]
R2 VETMSGNT;VET Message Service; C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe [2009-09-16 242952]
R2 WMDM PMSP Service;WMDM PMSP Service; C:\WINDOWS\System32\MsPMSPSv.exe [2000-06-26 53520]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
R3 CaCCProvSP;CaCCProvSP; C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe [2009-09-16 214256]
R3 PPCtlPriv;PPCtlPriv; C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe [2007-08-16 189704]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-13 267776]
S2 UmxAgent;HIPS Event Manager; C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe [2007-10-18 1010192]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 SNMPTRAP;SNMP Trap Service; C:\WINDOWS\System32\snmptrap.exe [2008-04-13 8704]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

 

[Blade81]

any idea How my pc got in this condition?

This topic may give you some clue.


Well congrats, it appears your system is all clean Are you still noticing any problems? If not, it's time to secure your system to prevent against further intrusions.


THESE STEPS ARE VERY IMPORTANT

Let's reset system restore
Reset and Re-enable your System Restore to remove infected files that have been backed up by Windows. The files in System Restore are protected to prevent any programs changing those files. This is the only way to clean these files: You will lose all previous restore points which are likely to be infected. Please note you need Administrator Access to do clean the restore points.

1. Turn off System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
Check Turn off System Restore.
Click Apply, and then click OK.

2. Reboot.

3. Turn ON System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
UN-Check *Turn off System Restore*.
Click Apply, and then click OK.
NOTE: only do this ONCE,NOT on a regular basis



Now lets uninstall ComboFix:

• Click START then RUN
• Now copy-paste "c:\documents and settings\Bonnie.BONNIE-FM4OD1WD\My Documents\Downloads\ComboFix.exe" /u in the runbox and click OK

Next we remove all used tools.

Please download OTC and save it to desktop.

• Double-click OTC.exe.
• Click the CleanUp! button.
• Select Yes when the
  Begin cleanup Process?
  prompt appears.
• If you are prompted to Reboot during the cleanup, select Yes.
• The tool will delete itself once it finishes, if not delete it by yourself.

Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.



UPDATING WINDOWS AND INTERNET EXPLORER

IMPORTANT: You Need to Update Windows and Internet Explorer to protect your computer from the malware that is around on the Internet. Please go to the windows update site to get the critical updates.

If you are running Microsoft Office, or any portion thereof, go to the Microsoft's Office Update site and make sure you have at least all the critical updates installed (Free) Microsoft Office Update.


Make your Internet Explorer more secure

This can be done by following these simple instructions:
From within Internet Explorer click on the Tools menu and then click on Options.
Click once on the Security tab
Click once on the Internet icon so it becomes highlighted.
Click once on the Custom Level button.
Change the Download signed ActiveX controls to Prompt
Change the Download unsigned ActiveX controls to Disable
Change the Initialize and script ActiveX controls not marked as safe to Disable
Change the Installation of desktop items to Prompt
Change the Launching programs and files in an IFRAME to Prompt
Change the Navigate sub-frames across different domains to Prompt
When all these settings have been made, click on the OK button.
If it prompts you as to whether or not you want to save the settings, press the Yes button.
Next press the Apply button and then the OK to exit the Internet Properties page.



The following are recommended third party programs that are designed to keep your computer clean. A link as well as a brief description is included with each item.

• hosts file:
  • Every version of windows has a hosts file as part of them.
  • In a very basic sense, they are used to locate webpages.
  • We can customize a hosts file so that it blocks certain webpages.
  • However, it can slow down certain computers.
  • This is why using a hosts file is optional!!
  Download it here. Make sure you read the instructions on how to install the hosts file. There is a good tutorial here
  If you decide to download the hosts file, the slowdown problems can usually be avoided by following these steps:
  1. [*]Click the start button (at the lower left hand corner of your screen) [*]Click run [*]In the dialog box, type services.msc [*]hit enter, then locate dns client [*]Highlight it, then double-click it. [*]On the dropdown box, change the setting from automatic to manual. [*]Click ok

Just a final reminder for you. I am trying to stress these two points.
UPDATE UPDATE UPDATE!!! Make sure you do this about every 1-2 weeks.
Make sure all of your security programs are up to date.
Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.


Once again, please post and tell me how things are going with your system... problems etc.

Have a great day,
Blade

 

[whytechocolate]

Thank you

Blade you are the greatest thank you so much. Everything seems to be great no virus pop ups pc running smooth. Only one thing I have found and idk bought it sometimes when I reboot non of my icons on the desktop show so i reboot and then they are there. Other than that its great thank you so muc h

 

[Blade81]

You're welcome

Only one thing I have found and idk bought it sometimes when I reboot non of my icons on the desktop show so i reboot and then they are there.

Has this happened before the cleaning process? Have you tried to wait for a little moment to see if the icons eventually show up?

 

[whytechocolate]

You're welcome

Has this happened before the cleaning process? Have you tried to wait for a little moment to see if the icons eventually show up?

yes it don't happen very often and I have waited but maybe i should try to wait a little longer. I'm a little impatient at times thanks again for all your help. I have book marked this site and will recomend it to all my friends

 

[Blade81]

You're welcome

Since this issue appears to be resolved ... this Topic has been closed. Glad I could help.

Note:If it has been four days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.

If it has been less than four days since your last response and you need the thread re-opened, please send me or MOD a private message (pm). A valid, working link to the closed topic is required.