Logfile of random's system information tool (written by random/random)
Run by Sam James at 2008-09-01 21:07:21
Microsoft® Windows Vista™ Ultimate
System drive C: has 38 GB (20%) free of 191 GB
Total RAM: 1023 MB (16% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:07:44, on 01/09/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\ProgramData\xezafylg\xqzwrivc.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Grisoft\AVG7\avgcc.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\ProgramData\setapimon\chmzabmd.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Windows\ehome\ehshell.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Sam James\Desktop\RSIT.exe
C:\Users\Sam James\Downloads\Sam James.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft....k/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft....k/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft....k/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft....k/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [MSConfig] "C:\Windows\system32\msconfig.exe" /auto
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
O4 - HKCU\..\Run: [ChkCfgSet] C:\Windows\system32\nsbwxuvm.exe
O4 - HKCU\..\Run: [sysuicfg] C:\ProgramData\sysuicfg\orgzivgj.exe
O4 - HKCU\..\Run: [setapimon] C:\ProgramData\setapimon\chmzabmd.exe
O4 - HKLM\..\Policies\Explorer\Run: [5FxBjJt4u9] C:\ProgramData\xezafylg\xqzwrivc.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Startup: deskview.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) -
http://download.bitd...can8/oscan8.cabO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.m...ash/swflash.cabO20 - Winlogon Notify: avgwlntf - C:\Windows\SYSTEM32\avgwlntf.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
--
End of file - 7006 bytes
Registry dump
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-06-20 1006264]
"MSConfig"=C:\Windows\system32\msconfig.exe [2006-11-02 222208]
"NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]
"NBKeyScan"=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-12-03 2213160]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2008-08-17 1195640]
"AVG7_CC"=C:\PROGRA~1\Grisoft\AVG7\avgcc.exe [2008-08-31 579584]
"!AVG Anti-Spyware"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe [2007-06-11 6731312]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"5FxBjJt4u9"=C:\ProgramData\xezafylg\xqzwrivc.exe [2008-08-31 69632]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2006-11-02 125440]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2007-12-13 1688872]
"ChkCfgSet"=C:\Windows\system32\nsbwxuvm.exe [2008-08-31 90112]
"sysuicfg"=C:\ProgramData\sysuicfg\orgzivgj.exe [2008-08-31 90112]
"setapimon"=C:\ProgramData\setapimon\chmzabmd.exe [2008-09-01 102400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-07-10 116040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EnvyHFCPL]
C:\Program Files\VIA\VIAudioi\EnvyADeck\EnMixCPL.exe [2008-06-20 524288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2008-07-30 289064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2008-08-10 3739672]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2008-05-27 413696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe [2008-03-25 144784]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-02 201728]
C:\Users\Sam James\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
deskview.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgwlntf]
C:\Windows\system32\avgwlntf.dll [2008-08-31 9216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll [2008-06-20 233888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [2007-05-30 79408]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"NoDispScrSavPage"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
File associations
.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*
List of files/folders created in the last three months
2008-09-01 21:07:21 ----D---- C:\rsit
2008-09-01 08:23:46 ----D---- C:\ProgramData\setapimon
2008-08-31 18:56:52 ----D---- C:\ProgramData\Spybot - Search & Destroy
2008-08-31 18:56:52 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-08-31 18:55:22 ----D---- C:\Windows\Sun
2008-08-31 18:45:34 ----D---- C:\Users\Sam James\AppData\Roaming\Download Manager
2008-08-31 16:01:18 ----D---- C:\Users\Sam James\AppData\Roaming\AVS4YOU
2008-08-31 16:00:41 ----D---- C:\ProgramData\AVS4YOU
2008-08-31 15:56:03 ----D---- C:\Program Files\Common Files\AVSMedia
2008-08-31 15:54:08 ----A---- C:\Windows\system32\msvcr70.dll
2008-08-31 15:54:08 ----A---- C:\Windows\system32\msvcp70.dll
2008-08-31 15:54:08 ----A---- C:\Windows\system32\mfc70.dll
2008-08-31 15:54:07 ----A---- C:\Windows\system32\msxml3a.dll
2008-08-31 15:54:07 ----A---- C:\Windows\system32\GdiPlus.dll
2008-08-31 15:54:06 ----D---- C:\Program Files\AVS4YOU
2008-08-31 15:36:52 ----D---- C:\Users\Sam James\AppData\Roaming\NeroDigital™
2008-08-31 15:08:48 ----D---- C:\Users\Sam James\AppData\Roaming\AVG7
2008-08-31 15:08:16 ----D---- C:\Users\Sam James\AppData\Roaming\Grisoft
2008-08-31 15:07:13 ----A---- C:\Windows\system32\avgwlntf.dll
2008-08-31 15:06:00 ----D---- C:\ProgramData\Grisoft
2008-08-31 15:06:00 ----D---- C:\ProgramData\avg7
2008-08-31 15:06:00 ----D---- C:\Program Files\Grisoft
2008-08-31 14:50:25 ----D---- C:\Program Files\WinRAR
2008-08-31 12:57:15 ----D---- C:\ProgramData\sysuicfg
2008-08-31 11:59:21 ----D---- C:\Windows\BDOSCAN8
2008-08-31 11:56:21 ----D---- C:\Avenger
2008-08-31 11:56:21 ----A---- C:\avenger.txt
2008-08-31 11:48:25 ----D---- C:\Users\Sam James\AppData\Roaming\Malwarebytes
2008-08-31 11:48:21 ----D---- C:\ProgramData\Malwarebytes
2008-08-31 11:48:21 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-08-31 11:34:55 ----A---- C:\Windows\system32\F7FF.tmp
2008-08-31 11:34:40 ----D---- C:\ProgramData\xezafylg
2008-08-31 11:34:40 ----A---- C:\Windows\system32\nsbwxuvm.exe
2008-08-31 11:06:49 ----D---- C:\Users\Sam James\AppData\Roaming\Nero
2008-08-31 11:06:18 ----A---- C:\Windows\system32\MsiExec.exe.log
2008-08-31 11:01:44 ----D---- C:\ProgramData\Nero
2008-08-31 11:01:44 ----D---- C:\Program Files\Nero
2008-08-31 11:01:44 ----D---- C:\Program Files\Common Files\Nero
2008-08-31 10:59:44 ----A---- C:\Windows\system32\d3dx9_30.dll
2008-08-31 10:59:41 ----A---- C:\Windows\system32\d3dx9_28.dll
2008-08-28 22:43:27 ----D---- C:\Program Files\Microsoft Works
2008-08-28 22:43:18 ----D---- C:\Program Files\Microsoft Visual Studio
2008-08-23 21:58:01 ----A---- C:\Windows\ntbtlog.txt
2008-08-23 20:59:29 ----D---- C:\Program Files\Microsoft Silverlight
2008-08-23 19:35:07 ----D---- C:\ProgramData\FLEXnet
2008-08-23 18:58:09 ----D---- C:\ProgramData\ALM
2008-08-23 18:56:55 ----D---- C:\Program Files\Bonjour
2008-08-23 18:43:08 ----D---- C:\Program Files\Common Files\Macrovision Shared
2008-08-22 20:45:35 ----D---- C:\Program Files\Audacity
2008-08-15 19:50:17 ----A---- C:\Windows\system32\INETRES.dll
2008-08-15 19:50:17 ----A---- C:\Windows\system32\inetcomm.dll
2008-08-15 19:09:29 ----D---- C:\Program Files\EvilLyrics
2008-08-13 19:42:19 ----D---- C:\Users\Sam James\AppData\Roaming\vlc
2008-08-12 20:59:07 ----A---- C:\Windows\system32\tzres.dll
2008-08-12 20:54:25 ----A---- C:\Windows\system32\es.dll
2008-08-12 20:54:16 ----A---- C:\Windows\system32\winipsec.dll
2008-08-12 20:54:16 ----A---- C:\Windows\system32\polstore.dll
2008-08-12 20:54:16 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-08-12 20:54:16 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-08-12 20:53:55 ----A---- C:\Windows\system32\mshtml.dll
2008-08-12 20:53:52 ----A---- C:\Windows\system32\ieframe.dll
2008-08-12 20:53:50 ----A---- C:\Windows\system32\wininet.dll
2008-08-12 20:53:49 ----A---- C:\Windows\system32\mstime.dll
2008-08-12 20:53:48 ----A---- C:\Windows\system32\urlmon.dll
2008-08-12 20:53:46 ----A---- C:\Windows\system32\ieapfltr.dll
2008-08-12 20:53:45 ----A---- C:\Windows\system32\mshtmled.dll
2008-08-12 20:53:45 ----A---- C:\Windows\system32\ie4uinit.exe
2008-08-12 20:53:45 ----A---- C:\Windows\system32\icardie.dll
2008-08-12 20:53:45 ----A---- C:\Windows\system32\dxtmsft.dll
2008-08-12 20:53:43 ----A---- C:\Windows\system32\pngfilt.dll
2008-08-12 20:53:43 ----A---- C:\Windows\system32\jsproxy.dll
2008-08-12 20:53:43 ----A---- C:\Windows\system32\ieui.dll
2008-08-12 20:53:43 ----A---- C:\Windows\system32\iernonce.dll
2008-08-12 20:53:43 ----A---- C:\Windows\system32\dxtrans.dll
2008-08-12 20:53:43 ----A---- C:\Windows\system32\advpack.dll
2008-08-12 20:53:42 ----A---- C:\Windows\system32\ieUnatt.exe
2008-08-12 20:53:42 ----A---- C:\Windows\system32\iesetup.dll
2008-08-07 19:09:46 ----D---- C:\Users\Sam James\AppData\Roaming\Notepad++
2008-07-31 09:49:36 ----D---- C:\Program Files\iPod
2008-07-31 09:49:29 ----D---- C:\Program Files\iTunes
2008-07-09 09:42:40 ----A---- C:\Windows\system32\shell32.dll
2008-07-09 09:40:50 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-07-09 09:40:49 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-07-09 09:40:36 ----A---- C:\Windows\system32\NlsData0009.dll
2008-07-09 09:40:36 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-07-09 09:40:35 ----A---- C:\Windows\system32\NlsData000c.dll
2008-07-09 09:40:35 ----A---- C:\Windows\system32\NlsData000a.dll
2008-07-09 09:40:34 ----A---- C:\Windows\system32\NlsData0027.dll
2008-07-09 09:40:34 ----A---- C:\Windows\system32\NlsData0011.dll
2008-07-09 09:40:34 ----A---- C:\Windows\system32\NlsData000d.dll
2008-07-09 09:40:34 ----A---- C:\Windows\system32\NlsData0001.dll
2008-07-09 09:40:33 ----A---- C:\Windows\system32\NlsData003e.dll
2008-07-09 09:40:33 ----A---- C:\Windows\system32\NlsData0021.dll
2008-07-09 09:40:33 ----A---- C:\Windows\system32\NlsData0007.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData002a.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData0024.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData0022.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData001a.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData0019.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData0018.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData000f.dll
2008-07-09 09:40:32 ----A---- C:\Windows\system32\NlsData0002.dll
2008-07-09 09:40:31 ----A---- C:\Windows\system32\NlsData0816.dll
2008-07-09 09:40:31 ----A---- C:\Windows\system32\NlsData001d.dll
2008-07-09 09:40:31 ----A---- C:\Windows\system32\NlsData0010.dll
2008-07-09 09:40:30 ----A---- C:\Windows\system32\NlsData0013.dll
2008-07-09 09:40:29 ----A---- C:\Windows\system32\NlsData0049.dll
2008-07-09 09:40:29 ----A---- C:\Windows\system32\NlsData0039.dll
2008-07-09 09:40:29 ----A---- C:\Windows\system32\NlsData0020.dll
2008-07-09 09:40:28 ----A---- C:\Windows\system32\NlsData0416.dll
2008-07-09 09:40:28 ----A---- C:\Windows\system32\NlsData0414.dll
2008-07-09 09:40:28 ----A---- C:\Windows\system32\NlsData004c.dll
2008-07-09 09:40:28 ----A---- C:\Windows\system32\NlsData0047.dll
2008-07-09 09:40:27 ----A---- C:\Windows\system32\NlsData081a.dll
2008-07-09 09:40:27 ----A---- C:\Windows\system32\NlsData004a.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData0c1a.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData004e.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData004b.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData0046.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData0045.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData0026.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData001b.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData0003.dll
2008-07-09 09:40:26 ----A---- C:\Windows\system32\NlsData0000.dll
2008-07-09 09:40:12 ----A---- C:\Windows\system32\NlsModels0011.dll
2008-07-09 09:40:12 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2008-07-09 09:40:11 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2008-07-09 09:40:11 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2008-07-09 09:40:10 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2008-07-09 09:40:10 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2008-07-09 09:40:09 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2008-07-09 09:40:09 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2008-07-09 09:40:08 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2008-07-09 09:40:07 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2008-07-09 09:40:07 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2008-07-09 09:40:06 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2008-07-09 09:40:06 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2008-07-09 09:40:05 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2008-07-09 09:40:05 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2008-07-09 09:40:05 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2008-07-09 09:40:04 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2008-07-09 09:40:03 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2008-07-09 09:40:03 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2008-07-09 09:40:02 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2008-07-09 09:40:02 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2008-07-09 09:40:01 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2008-07-09 09:40:00 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2008-07-09 09:40:00 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2008-07-09 09:39:59 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2008-07-09 09:39:59 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2008-07-09 09:39:58 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2008-07-09 09:39:57 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2008-07-09 09:39:57 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2008-07-09 09:39:57 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2008-07-09 09:39:57 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2008-07-09 09:39:57 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2008-07-09 09:39:56 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2008-07-09 09:39:56 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2008-07-09 09:39:56 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2008-07-09 09:39:55 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2008-07-09 09:39:55 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2008-07-09 09:39:55 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2008-07-08 15:33:07 ----D---- C:\Program Files\Common Files\Adobe AIR
2008-07-08 15:30:17 ----D---- C:\ProgramData\Adobe
2008-07-08 15:29:28 ----D---- C:\Program Files\Common Files\Adobe
2008-07-08 15:29:28 ----D---- C:\Program Files\Adobe
2008-07-02 23:15:22 ----D---- C:\Program Files\Xvid
2008-07-02 23:15:22 ----A---- C:\Windows\system32\xvidvfw.dll
2008-07-02 23:15:22 ----A---- C:\Windows\system32\xvidcore.dll
2008-07-01 16:16:53 ----D---- C:\Users\Sam James\AppData\Roaming\PC Suite
2008-07-01 16:16:48 ----D---- C:\ProgramData\PC Suite
2008-07-01 16:16:24 ----D---- C:\Users\Sam James\AppData\Roaming\Nokia
2008-07-01 16:15:20 ----D---- C:\Program Files\DIFX
2008-07-01 16:14:34 ----DC---- C:\Windows\system32\DRVSTORE
2008-07-01 16:12:06 ----A---- C:\Windows\system32\nmwcdcls.dll
2008-07-01 16:11:22 ----D---- C:\ProgramData\Installations
2008-06-30 21:36:10 ----D---- C:\Users\Sam James\AppData\Roaming\WebGuide
2008-06-30 15:31:48 ----D---- C:\Program Files\Apple Software Update
2008-06-30 15:17:01 ----D---- C:\Users\Sam James\AppData\Roaming\WinRAR
2008-06-29 18:06:04 ----D---- C:\Program Files\Now Playing Plugin for Windows Live Writer
2008-06-28 22:13:13 ----D---- C:\Users\Sam James\AppData\Roaming\Windows Sidebar Styler
2008-06-28 19:10:35 ----D---- C:\Users\Sam James\AppData\Roaming\MessengerGadget
2008-06-28 00:28:02 ----D---- C:\ProgramData\VistaCodecs
2008-06-28 00:24:23 ----D---- C:\Users\Sam James\AppData\Roaming\Media Player Classic
2008-06-26 21:00:41 ----D---- C:\Program Files\CCleaner
2008-06-25 11:01:33 ----A---- C:\Windows\system32\msvcr71.dll
2008-06-25 11:01:33 ----A---- C:\Windows\system32\msvcp71.dll
2008-06-25 11:01:27 ----D---- C:\Windows\system32\Adobe
2008-06-25 10:49:13 ----D---- C:\Users\Sam James\AppData\Roaming\Ace
2008-06-25 10:38:55 ----A---- C:\Windows\system32\xinput1_3.dll
2008-06-25 10:38:52 ----A---- C:\Windows\system32\d3dx9_32.dll
2008-06-25 10:38:51 ----A---- C:\Windows\system32\d3dx9_31.dll
2008-06-23 11:40:48 ----A---- C:\Windows\system32\javaws.exe
2008-06-23 11:40:48 ----A---- C:\Windows\system32\javaw.exe
2008-06-23 11:40:48 ----A---- C:\Windows\system32\java.exe
2008-06-23 11:39:25 ----D---- C:\Program Files\Java
2008-06-23 11:39:14 ----D---- C:\Program Files\Common Files\Java
2008-06-21 23:42:56 ----D---- C:\Program Files\VideoLAN
2008-06-21 20:01:29 ----A---- C:\Windows\system32\setupapi.dll
2008-06-21 20:00:02 ----A---- C:\Windows\system32\srclient.dll
2008-06-21 20:00:01 ----A---- C:\Windows\system32\srdelayed.exe
2008-06-21 20:00:01 ----A---- C:\Windows\system32\srcore.dll
2008-06-21 20:00:01 ----A---- C:\Windows\system32\rstrui.exe
2008-06-21 20:00:00 ----A---- C:\Windows\system32\wpd_ci.dll
2008-06-21 20:00:00 ----A---- C:\Windows\system32\kd1394.dll
2008-06-21 19:59:59 ----A---- C:\Windows\system32\winresume.exe
2008-06-21 19:59:57 ----A---- C:\Windows\system32\winload.exe
2008-06-21 19:59:54 ----A---- C:\Windows\system32\ci.dll
2008-06-21 19:59:52 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-06-21 19:59:52 ----A---- C:\Windows\system32\drvinst.exe
2008-06-21 19:59:52 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-06-21 19:59:51 ----A---- C:\Windows\system32\oleaut32.dll
2008-06-21 19:59:51 ----A---- C:\Windows\system32\nshhttp.dll
2008-06-21 19:59:51 ----A---- C:\Windows\system32\kbd106n.dll
2008-06-21 19:59:51 ----A---- C:\Windows\system32\dpx.dll
2008-06-21 19:59:50 ----A---- C:\Windows\system32\unlodctr.exe
2008-06-21 19:59:50 ----A---- C:\Windows\system32\lodctr.exe
2008-06-21 19:59:50 ----A---- C:\Windows\system32\loadperf.dll
2008-06-21 19:59:49 ----A---- C:\Windows\system32\prflbmsg.dll
2008-06-21 19:59:47 ----A---- C:\Windows\system32\schedsvc.dll
2008-06-21 19:59:46 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-06-21 19:59:46 ----A---- C:\Windows\system32\dispci.dll
2008-06-21 19:59:46 ----A---- C:\Windows\system32\batt.dll
2008-06-21 01:14:04 ----D---- C:\Windows\Panther
2008-06-21 01:13:49 ----SHD---- C:\Boot
2008-06-20 22:17:51 ----D---- C:\Program Files\BitLocker
2008-06-20 22:11:57 ----A---- C:\Windows\system32\riched32.dll
2008-06-20 22:11:57 ----A---- C:\Windows\system32\riched20.dll
2008-06-20 22:11:56 ----A---- C:\Windows\system32\rasser.dll
2008-06-20 22:11:56 ----A---- C:\Windows\system32\rascfg.dll
2008-06-20 22:11:55 ----A---- C:\Windows\system32\rasmxs.dll
2008-06-20 22:11:55 ----A---- C:\Windows\system32\rasdiag.dll
2008-06-20 22:11:55 ----A---- C:\Windows\system32\netcfgx.dll
2008-06-20 22:11:55 ----A---- C:\Windows\system32\msftedit.dll
2008-06-20 22:11:54 ----A---- C:\Windows\system32\wshqos.dll
2008-06-20 22:11:54 ----A---- C:\Windows\system32\ipnathlp.dll
2008-06-20 22:11:54 ----A---- C:\Windows\system32\icsunattend.exe
2008-06-20 22:11:53 ----A---- C:\Windows\system32\traffic.dll
2008-06-20 22:11:53 ----A---- C:\Windows\system32\pacerprf.dll
2008-06-20 22:11:53 ----A---- C:\Windows\system32\localspl.dll
2008-06-20 22:11:53 ----A---- C:\Windows\system32\dps.dll
2008-06-20 22:11:53 ----A---- C:\Windows\system32\cdd.dll
2008-06-20 22:11:08 ----A---- C:\Windows\system32\msoert2.dll
2008-06-20 22:11:08 ----A---- C:\Windows\system32\msoeacct.dll
2008-06-20 22:11:08 ----A---- C:\Windows\system32\ACCTRES.dll
2008-06-20 22:10:17 ----A---- C:\Windows\system32\wtsapi32.dll
2008-06-20 22:10:15 ----A---- C:\Windows\explorer.exe
2008-06-20 22:10:14 ----A---- C:\Windows\system32\sysmain.dll
2008-06-20 22:10:13 ----A---- C:\Windows\system32\wlansvc.dll
2008-06-20 22:10:13 ----A---- C:\Windows\system32\wlansec.dll
2008-06-20 22:10:13 ----A---- C:\Windows\system32\wlanmsm.dll
2008-06-20 22:10:13 ----A---- C:\Windows\system32\wlanhlp.dll
2008-06-20 22:10:13 ----A---- C:\Windows\system32\wlanapi.dll
2008-06-20 22:09:31 ----A---- C:\Windows\system32\WebClnt.dll
2008-06-20 22:07:46 ----A---- C:\Windows\system32\winsrv.dll
2008-06-20 22:07:46 ----A---- C:\Windows\system32\csrsrv.dll
2008-06-20 22:03:56 ----A---- C:\Windows\system32\themecpl.dll
2008-06-20 22:03:55 ----A---- C:\Windows\system32\DreamScene.dll
2008-06-20 22:01:52 ----A---- C:\Windows\system32\msscp.dll
2008-06-20 22:01:13 ----A---- C:\Windows\system32\wmploc.DLL
2008-06-20 22:01:13 ----A---- C:\Windows\system32\wmp.dll
2008-06-20 22:01:12 ----A---- C:\Windows\system32\spwmp.dll
2008-06-20 22:01:12 ----A---- C:\Windows\system32\dxmasf.dll
2008-06-20 22:01:11 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-06-20 22:00:31 ----A---- C:\Windows\system32\MPSSVC.dll
2008-06-20 22:00:31 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-06-20 22:00:30 ----A---- C:\Windows\system32\wfapigp.dll
2008-06-20 22:00:30 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-06-20 22:00:30 ----A---- C:\Windows\system32\icfupgd.dll
2008-06-20 22:00:30 ----A---- C:\Windows\system32\cmifw.dll
2008-06-20 21:58:32 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-06-20 21:58:32 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-06-20 21:57:22 ----A---- C:\Windows\system32\DWWIN.EXE
2008-06-20 21:56:49 ----A---- C:\Windows\system32\msxml3r.dll
2008-06-20 21:56:49 ----A---- C:\Windows\system32\msxml3.dll
2008-06-20 21:56:06 ----A---- C:\Windows\system32\MUILanguageCleanup.dll
2008-06-20 21:56:06 ----A---- C:\Windows\system32\lpremove.exe
2008-06-20 21:56:06 ----A---- C:\Windows\system32\lpksetup.exe
2008-06-20 21:56:06 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-06-20 21:55:35 ----A---- C:\Windows\system32\msshsq.dll
2008-06-20 21:55:06 ----A---- C:\Windows\system32\hcrstco.dll
2008-06-20 21:55:06 ----A---- C:\Windows\system32\hccoin.dll
2008-06-20 21:53:58 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-06-20 21:53:58 ----A---- C:\Windows\system32\netiougc.exe
2008-06-20 21:53:58 ----A---- C:\Windows\system32\netcfg.exe
2008-06-20 21:53:24 ----A---- C:\Windows\system32\fsquirt.exe
2008-06-20 21:51:45 ----A---- C:\Windows\system32\WMASF.DLL
2008-06-20 21:51:45 ----A---- C:\Windows\system32\LAPRXY.DLL
2008-06-20 21:51:45 ----A---- C:\Windows\system32\asferror.dll
2008-06-20 21:51:12 ----A---- C:\Windows\system32\gdi32.dll
2008-06-20 21:50:31 ----A---- C:\Windows\system32\slwmi.dll
2008-06-20 21:50:31 ----A---- C:\Windows\system32\SLC.dll
2008-06-20 21:50:31 ----A---- C:\Windows\system32\mcbuilder.exe
2008-06-20 21:50:30 ----A---- C:\Windows\system32\SLUINotify.dll
2008-06-20 21:50:30 ----A---- C:\Windows\system32\SLUI.exe
2008-06-20 21:50:30 ----A---- C:\Windows\system32\SLLUA.exe
2008-06-20 21:50:30 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-06-20 21:50:29 ----A---- C:\Windows\system32\SLsvc.exe
2008-06-20 21:50:29 ----A---- C:\Windows\system32\slcinst.dll
2008-06-20 21:49:06 ----A---- C:\Windows\system32\SecureKeyBackupCPL.dll
2008-06-20 21:48:06 ----A---- C:\Windows\system32\msxml6r.dll
2008-06-20 21:48:06 ----A---- C:\Windows\system32\msxml6.dll
2008-06-20 21:46:59 ----A---- C:\Windows\system32\CscMig.dll
2008-06-20 21:46:54 ----A---- C:\Windows\system32\schannel.dll
2008-06-20 21:46:54 ----A---- C:\Windows\system32\ntprint.exe
2008-06-20 21:46:54 ----A---- C:\Windows\system32\ntprint.dll
2008-06-20 21:46:53 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-06-20 21:46:53 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-06-20 21:46:53 ----A---- C:\Windows\system32\dhcpcmonitor.dll
2008-06-20 21:46:53 ----A---- C:\Windows\system32\authui.dll
2008-06-20 21:46:52 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-06-20 21:46:51 ----A---- C:\Windows\system32\msvidc32.dll
2008-06-20 21:46:51 ----A---- C:\Windows\system32\msvfw32.dll
2008-06-20 21:46:51 ----A---- C:\Windows\system32\msrle32.dll
2008-06-20 21:46:51 ----A---- C:\Windows\system32\mciavi32.dll
2008-06-20 21:46:51 ----A---- C:\Windows\system32\avifil32.dll
2008-06-20 21:46:51 ----A---- C:\Windows\system32\avicap32.dll
2008-06-20 21:46:50 ----A---- C:\Windows\system32\sendmail.dll
2008-06-20 21:46:13 ----A---- C:\Windows\system32\gpprefcl.dll
2008-06-20 21:44:53 ----A---- C:\Windows\system32\wshrm.dll
2008-06-20 21:44:23 ----A---- C:\Windows\system32\sbunattend.exe
2008-06-20 21:43:27 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-06-20 21:43:27 ----A---- C:\Windows\system32\gameux.dll
2008-06-20 21:42:53 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-06-20 21:42:53 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-06-20 21:42:53 ----A---- C:\Windows\system32\dnsapi.dll
2008-06-20 21:34:02 ----A---- C:\Windows\system32\rpcrt4.dll
2008-06-20 21:33:19 ----A---- C:\Windows\system32\wmi.dll
2008-06-20 21:33:19 ----A---- C:\Windows\system32\imagehlp.dll
2008-06-20 21:32:50 ----A---- C:\Windows\system32\quartz.dll
2008-06-20 21:31:58 ----A---- C:\Windows\system32\mcmde.dll
2008-06-20 21:31:58 ----A---- C:\Windows\system32\EncDec.dll
2008-06-20 21:31:57 ----A---- C:\Windows\system32\psisdecd.dll
2008-06-20 21:31:21 ----A---- C:\Windows\system32\crypt32.dll
2008-06-20 21:24:52 ----A---- C:\Windows\system32\user32.dll
2008-06-20 21:21:20 ----A---- C:\Windows\system32\qmgr.dll
2008-06-20 18:54:48 ----D---- C:\Program Files\Common Files\DESIGNER
2008-06-20 18:53:41 ----D---- C:\Program Files\Microsoft.NET
2008-06-20 18:50:39 ----D---- C:\Program Files\Microsoft Office
2008-06-20 18:50:33 ----D---- C:\ProgramData\Microsoft Help
2008-06-20 18:47:40 ----RHD---- C:\MSOCache
2008-06-20 18:40:38 ----A---- C:\Windows\system32\wups2.dll
2008-06-20 18:40:38 ----A---- C:\Windows\system32\wucltux.dll
2008-06-20 18:40:38 ----A---- C:\Windows\system32\wuaueng.dll
2008-06-20 18:40:38 ----A---- C:\Windows\system32\wuauclt.exe
2008-06-20 18:39:30 ----A---- C:\Windows\system32\wuwebv.dll
2008-06-20 18:39:30 ----A---- C:\Windows\system32\wuapp.exe
2008-06-20 18:08:03 ----D---- C:\Windows\system32\appmgmt
2008-06-20 18:07:10 ----D---- C:\Windows\pss
2008-06-20 18:00:12 ----D---- C:\Program Files\CodeGazer
2008-06-20 17:22:38 ----D---- C:\Program Files\uTorrent
2008-06-20 17:22:16 ----D---- C:\Users\Sam James\AppData\Roaming\uTorrent
2008-06-20 16:55:34 ----HD---- C:\Program Files\InstallShield Installation Information
2008-06-20 16:54:57 ----A---- C:\Windows\system32\nQAPO.dll
2008-06-20 16:54:57 ----A---- C:\Windows\system32\Audio3D.dll
2008-06-20 16:54:57 ----A---- C:\Windows\system32\A3D.dll
2008-06-20 16:54:40 ----N---- C:\Windows\system32\difxapi.dll
2008-06-20 16:54:40 ----D---- C:\Program Files\VIA
2008-06-20 16:54:27 ----D---- C:\Program Files\Common Files\InstallShield
2008-06-20 16:54:10 ----D---- C:\Users\Sam James\AppData\Roaming\Apple Computer
2008-06-20 16:52:49 ----D---- C:\Program Files\QuickTime
2008-06-20 16:52:48 ----D---- C:\ProgramData\Apple Computer
2008-06-20 16:51:25 ----D---- C:\Program Files\Common Files\Apple
2008-06-20 16:51:24 ----D---- C:\ProgramData\Apple
2008-06-20 16:47:16 ----D---- C:\Users\Sam James\AppData\Roaming\Mozilla
2008-06-20 16:47:08 ----D---- C:\Program Files\Mozilla Firefox
2008-06-20 16:44:42 ----D---- C:\Program Files\ATI
2008-06-20 16:44:25 ----D---- C:\Program Files\ATI Technologies
2008-06-20 16:38:04 ----D---- C:\Windows\PCHEALTH
2008-06-20 16:33:53 ----SHDC---- C:\Program Files\Common Files\WindowsLiveInstaller
2008-06-20 16:33:38 ----D---- C:\Program Files\Windows Live
2008-06-20 16:33:19 ----SHD---- C:\Windows\Installer
2008-06-20 16:33:16 ----D---- C:\ProgramData\WLInstaller
2008-06-20 16:32:51 ----D---- C:\Users\Sam James\AppData\Roaming\Macromedia
2008-06-20 16:32:51 ----D---- C:\Users\Sam James\AppData\Roaming\Adobe
2008-06-20 16:32:50 ----D---- C:\Windows\system32\Macromed
2008-06-20 16:29:30 ----D---- C:\Users\Sam James\AppData\Roaming\Identities
2008-06-20 16:29:23 ----SD---- C:\Users\Sam James\AppData\Roaming\Microsoft
2008-06-20 16:29:23 ----D---- C:\Users\Sam James\AppData\Roaming\Media Center Programs
2008-06-20 16:18:39 ----D---- C:\Windows\SoftwareDistribution
2008-06-20 16:16:30 ----D---- C:\Windows\Debug
2008-06-20 16:16:29 ----D---- C:\Windows\CSC
2008-06-20 16:15:22 ----D---- C:\Windows\Prefetch
2008-06-20 16:15:08 ----SHD---- C:\System Volume Information
2008-06-03 04:35:30 ----A---- C:\Windows\system32\ATIDEMGX.dll
2008-06-03 04:35:04 ----A---- C:\Windows\system32\atipdlxx.dll
2008-06-03 04:34:53 ----A---- C:\Windows\system32\Oemdspif.dll
2008-06-03 04:34:41 ----A---- C:\Windows\system32\ati2edxx.dll
2008-06-03 04:34:30 ----A---- C:\Windows\system32\Ati2evxx.dll
2008-06-03 04:33:17 ----A---- C:\Windows\system32\Ati2evxx.exe
2008-06-03 03:50:05 ----A---- C:\Windows\system32\amdpcom32.dll
2008-06-03 03:49:44 ----A---- C:\Windows\system32\atiadlxx.dll
2008-06-03 03:48:38 ----A---- C:\Windows\system32\atioglxx.dll
List of drivers
R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys [2007-05-30 11000]
R1 AvgClean;AVG7 Clean Driver; C:\Windows\system32\System32\Drivers\avgclean.sys []
R1 AvgMfx86;AVG Minifilter x86 Resident Driver; C:\Windows\system32\System32\Drivers\avgmfx86.sys []
R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [2008-06-20 320000]
R2 30551;30551; \??\C:\Windows\System32\30551.sys [2008-06-20 4096]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2006-11-02 95744]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-06-03 3695104]
R3 Envy24HFS;ICE Envy24 Family Audio Controller WDM; C:\Windows\system32\drivers\Envy24HF.sys [2007-12-01 651712]
R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 hcw95bda;Hauppauge MOD7700 Tuner Driver; C:\Windows\System32\Drivers\hcw95bda.sys [2008-06-20 560640]
R3 hcw95rc;Hauppauge MOD7700 IR Driver; C:\Windows\system32\DRIVERS\hcw95rc.sys [2008-06-20 15616]
R3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2006-11-02 20992]
R3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
R3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-11-18 1040544]
S1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\Windows\System32\DRIVERS\AvgAsCln.sys [2007-05-30 10872]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-06-20 19456]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2006-11-02 92160]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2008-06-20 220160]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2008-06-20 29184]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-06-03 3695104]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2006-11-02 49664]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-07-10 32000]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\system32\drivers\wmiacpi.sys []
List of services
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-07-22 116040]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-06-03 684032]
R2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe [2007-05-30 312880]
R2 Avg7Alrt;AVG7 Alert Manager Server; C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe [2008-08-31 418816]
R2 Avg7UpdSvc;AVG7 Update Service; C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe [2008-08-31 49664]
R2 AvgCoreSvc;AVG7 Resident Shield Service; C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe [2008-08-31 192512]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2006-11-02 22016]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-12-03 869672]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-07-30 532264]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2006-11-02 22016]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2006-11-02 521216]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-08-23 654848]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2006-11-02 22016]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-11-07 98840]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2006-11-02 562176]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
info.txt logfile of random's system information tool 2008-09-01 21:07:50
Uninstall list
-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL
-->C:\Windows\UNNeroMediaHome.exe /UNINSTALL
-->C:\Windows\UNNeroShowTime.exe /UNINSTALL
-->C:\Windows\UNNeroVision.exe /UNINSTALL
-->C:\Windows\UNRecode.exe /UNINSTALL
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00BA-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00E0-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0114-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Camera Raw 4.0-->MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color Common Settings-->MsiExec.exe /I{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}
Adobe Color EU Extra Settings-->MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
Adobe Color EU Recommended Settings-->MsiExec.exe /I{73B5D990-04EA-4751-B10F-5534770B91F2}
Adobe Color JA Extra Settings-->MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
Adobe Color NA Extra Settings-->MsiExec.exe /I{FF29A7E2-FF40-4D07-B7E4-2093DE59E10A}
Adobe Color NA Recommended Settings-->MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
Adobe Default Language CS3-->MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Illustrator CS3-->C:\Program Files\Common Files\Adobe\Installers\a04a925a57548091300ada368235fc6\Setup.exe
Adobe Illustrator CS3-->MsiExec.exe /I{F08E8D2E-F132-4742-9C87-D5FF223A016A}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe PDF Library Files-->MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
Adobe Photoshop CS3-->C:\Program Files\Common Files\Adobe\Installers\2ac78060bc5856b0c1cf873bb919b58\Setup.exe
Adobe Photoshop CS3-->MsiExec.exe /I{0046FA01-C5B9-4985-BACB-398DC480FC05}
Adobe Reader 9-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
Adobe Setup-->MsiExec.exe /I{4F3E17F8-F1C8-4A4B-9EB8-1EE2D190CDA9}
Adobe Setup-->MsiExec.exe /I{D1BB4446-AE9C-4256-9A7F-4D46604D2462}
Adobe Shockwave Player-->C:\Windows\System32\Adobe\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Adobe\SHOCKW~1\Install.log
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe Update Manager CS3-->MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
Adobe Version Cue CS3 Client-->MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
Apple Mobile Device Support-->MsiExec.exe /I{49C88E44-1B38-4FC6-824E-2BDA3063B0E3}
Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
Audacity 1.2.6-->"C:\Program Files\Audacity\unins000.exe"
AVG 7.5-->C:\Program Files\Grisoft\AVG7\setup.exe /UNINSTALL
AVG Anti-Spyware 7.5-->C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
HijackThis 2.0.2-->"C:\Users\Sam James\Downloads\HijackThis.exe" /uninstall
iTunes-->MsiExec.exe /I{3DE0053C-FD9A-483E-B7C9-B06E4392206E}
Java™ 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL<
Sign In
Create Account
