« previous next »
Pages: [1]   Go Down

Author Topic: Ad-Aware crashes.  (Read 855 times)

0 Members and 2 Guests are viewing this topic.

Offline slipknotForSouljaBoy

  • Newbie
  • *
  • Posts: 10
Ad-Aware crashes.
« on: August 12, 2010, 05:04:21 PM »
hi. i start a scan with Ad-Aware and in the middle of the scan i get a message saying "Ad-Aware has shut down unexpectedly". please help me.
here're the logs:

RootRepeal:
ROOTREPEAL (c) AD, 2007-2009
==================================================
Scan Start Time:      2010/08/12 19:55
Program Version:      Version 1.3.5.0
Windows Version:      Windows XP SP3
==================================================

Drivers
-------------------
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xB6317000   Size: 98304   File Visible: No   Signed: -
Status: -

Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xF79B9000   Size: 8192   File Visible: No   Signed: -
Status: -

Name: Ntfs.sys
Image Path: Ntfs.sys
Address: 0xF7B52000   Size: 574976   File Visible: -   Signed: -
Status: Hidden from the Windows API!

Name: PCI_PNP5162
Image Path: \Driver\PCI_PNP5162
Address: 0x00000000   Size: 0   File Visible: No   Signed: -
Status: -

Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xB3D6D000   Size: 49152   File Visible: No   Signed: -
Status: -

Name: spdn.sys
Image Path: spdn.sys
Address: 0xF74D5000   Size: 1052672   File Visible: No   Signed: -
Status: -

Name: sptd
Image Path: \Driver\sptd
Address: 0x00000000   Size: 0   File Visible: No   Signed: -
Status: -

Name: tcpip.sys
Image Path: C:\WINDOWS\system32\DRIVERS\tcpip.sys
Address: 0xB65A1000   Size: 361600   File Visible: -   Signed: -
Status: Hidden from the Windows API!

SSDT
-------------------
#: 025   Function Name: NtClose
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635fcd2

#: 041   Function Name: NtCreateKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635fb8e

#: 063   Function Name: NtDeleteKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb6360142

#: 065   Function Name: NtDeleteValueKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb636006c

#: 068   Function Name: NtDuplicateObject
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635f764

#: 071   Function Name: NtEnumerateKey
Status: Hooked by "spdn.sys" at address 0xf74f4da4

#: 073   Function Name: NtEnumerateValueKey
Status: Hooked by "spdn.sys" at address 0xf74f5132

#: 119   Function Name: NtOpenKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635fc68

#: 122   Function Name: NtOpenProcess
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635f6a4

#: 128   Function Name: NtOpenThread
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635f708

#: 160   Function Name: NtQueryKey
Status: Hooked by "spdn.sys" at address 0xf74f520a

#: 177   Function Name: NtQueryValueKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635fd88

#: 192   Function Name: NtRenameKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb6360210

#: 204   Function Name: NtRestoreKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635fd48

#: 247   Function Name: NtSetValueKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xb635fec8

==EOF==

RSIT- log.txt:
Logfile of random's system information tool 1.08 (written by random/random)
Run by arsenal at 2010-08-12 19:48:19
Microsoft Windows XP Professional Service Pack 3
System drive C: has 12 GB (61%) free of 20 GB
Total RAM: 1791 MB (66% free)

HijackThis download failed

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42-4900-B3F7-F4B073EFC214}]
Octh Class - d:\Program Files\Orbitdownloader\orbitcth.dll [2010-05-07 240912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - D:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-24 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-07-24 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - d:\Program Files\Orbitdownloader\GrabPro.dll [2010-05-07 666816]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"=D:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2010-06-01 2039240]
"avast5"=d:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-29 2837864]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WallpaperChanger"=d:\Program Files\Wallpaper Master\Wallpaper.exe [2005-11-08 321536]
"SuperCopier2.exe"=D:\Program Files\SuperCopier2\SuperCopier2.exe [2006-07-07 1052672]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast5]
d:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-06-29 2837864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2008-04-13 208952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]
C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2008-04-13 59392]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2007-10-04 8491008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2007-10-04 81920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-13 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2008-04-13 455168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2008-10-28 17331200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"StarWindServiceAE"=2
"ReflectService"=2
"ose"=3
"odserv"=3
"NMSAccessU"=2
"Lavasoft Ad-Aware Service"=3
"JavaQuickStarterService"=2
"idsvc"=3
"gusvc"=3
"NVSvc"=2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="    C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=181

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"D:\Program Files\uTorrent\uTorrent.exe"="D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"d:\Program Files\Orbitdownloader\orbitdm.exe"="d:\Program Files\Orbitdownloader\orbitdm.exe:*:Enabled:Orbit"
"d:\Program Files\Orbitdownloader\orbitnet.exe"="d:\Program Files\Orbitdownloader\orbitnet.exe:*:Enabled:Orbit"
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"="C:\Program Files\Internet Explorer\IEXPLORE.EXE:*:Disabled:Internet Explorer"
"D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="D:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-08-12 19:48:19 ----D---- C:\rsit
2010-08-12 19:48:19 ----D---- C:\Program Files\trend micro
2010-08-12 08:31:16 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-08-12 08:31:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-08-12 08:30:48 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-08-12 08:30:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-08-12 08:27:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2160329$
2010-08-12 08:27:28 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-08-12 08:25:59 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-08-12 08:25:51 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-08-10 09:35:15 ----D---- C:\WINDOWS\Sun
2010-08-03 14:49:34 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-08-03 14:37:32 ----A---- C:\WINDOWS\system32\drivers\aswSP.sys
2010-08-03 14:37:32 ----A---- C:\WINDOWS\system32\drivers\aswFsBlk.sys
2010-08-03 14:37:31 ----A---- C:\WINDOWS\system32\drivers\aswTdi.sys
2010-08-03 14:37:31 ----A---- C:\WINDOWS\system32\drivers\aswRdr.sys
2010-08-03 14:37:30 ----A---- C:\WINDOWS\system32\drivers\aswmon2.sys
2010-08-03 14:37:30 ----A---- C:\WINDOWS\system32\drivers\aswmon.sys
2010-08-03 14:37:30 ----A---- C:\WINDOWS\system32\drivers\aavmker4.sys
2010-08-03 14:37:15 ----A---- C:\WINDOWS\system32\aswBoot.exe
2010-08-03 14:24:32 ----A---- C:\WINDOWS\ntbtlog.txt
2010-08-02 18:12:15 ----D---- C:\Program Files\Microsoft Works
2010-08-02 18:12:04 ----D---- C:\Program Files\Microsoft Visual Studio
2010-08-02 18:12:03 ----D---- C:\Program Files\Common Files\DESIGNER
2010-08-02 18:11:44 ----D---- C:\Program Files\Microsoft.NET
2010-08-02 18:09:43 ----D---- C:\Program Files\Microsoft Visual Studio 8
2010-08-02 18:09:08 ----D---- C:\WINDOWS\SHELLNEW
2010-08-02 18:08:39 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2010-07-30 19:12:33 ----D---- C:\Documents and Settings\arsenal\Application Data\USBSafelyRemove
2010-07-25 14:15:33 ----A---- C:\WINDOWS\system32\lsdelete.exe
2010-07-25 02:54:28 ----A---- C:\Documents and Settings\arsenal\Application Data\coreavc.ini
2010-07-24 19:36:25 ----D---- C:\Documents and Settings\All Users\Application Data\Alwil Software
2010-07-24 18:12:08 ----A---- C:\WINDOWS\imsins.BAK
2010-07-24 18:12:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952011$
2010-07-24 15:28:59 ----D---- C:\Program Files\Common Files\Java
2010-07-24 15:28:59 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-07-24 15:28:44 ----A---- C:\WINDOWS\system32\javaws.exe
2010-07-24 15:28:44 ----A---- C:\WINDOWS\system32\javaw.exe
2010-07-24 15:28:44 ----A---- C:\WINDOWS\system32\java.exe
2010-07-24 15:28:44 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-07-24 15:16:10 ----D---- C:\Documents and Settings\arsenal\Application Data\Sun
2010-07-22 11:21:59 ----D---- C:\Documents and Settings\arsenal\Application Data\Vso
2010-07-22 11:21:59 ----A---- C:\WINDOWS\system32\drivers\pcouffin.sys
2010-07-22 11:21:59 ----A---- C:\Documents and Settings\arsenal\Application Data\pcouffin.sys
2010-07-22 11:21:59 ----A---- C:\Documents and Settings\arsenal\Application Data\inst.exe
2010-07-22 08:43:37 ----D---- C:\Documents and Settings\arsenal\Application Data\dvdcss
2010-07-21 10:09:29 ----A---- C:\WINDOWS\system32\chtbrkr.dll
2010-07-21 10:09:29 ----A---- C:\WINDOWS\system32\chsbrkr.dll
2010-07-21 10:09:28 ----A---- C:\WINDOWS\system32\msir3jp.dll
2010-07-21 10:09:28 ----A---- C:\WINDOWS\system32\korwbrkr.dll
2010-07-21 10:09:15 ----A---- C:\WINDOWS\system32\kbd101a.dll
2010-07-21 10:09:08 ----A---- C:\WINDOWS\system32\kbdnecNT.dll
2010-07-21 10:09:08 ----A---- C:\WINDOWS\system32\kbdnecAT.dll
2010-07-21 10:09:08 ----A---- C:\WINDOWS\system32\kbdnec95.dll
2010-07-21 10:08:55 ----A---- C:\WINDOWS\system32\c_is2022.dll
2010-07-21 10:08:52 ----A---- C:\WINDOWS\system32\uniime.dll
2010-07-21 10:08:44 ----A---- C:\WINDOWS\system32\c_g18030.dll
2010-07-21 10:08:43 ----A---- C:\WINDOWS\system32\kbdlk41j.dll
2010-07-21 10:08:43 ----A---- C:\WINDOWS\system32\kbdlk41a.dll
2010-07-21 10:08:43 ----A---- C:\WINDOWS\system32\kbdibm02.dll
2010-07-21 10:08:43 ----A---- C:\WINDOWS\system32\kbd106n.dll
2010-07-21 10:08:43 ----A---- C:\WINDOWS\system32\f3ahvoas.dll
2010-07-21 10:08:42 ----A---- C:\WINDOWS\system32\kbdax2.dll
2010-07-21 10:08:42 ----A---- C:\WINDOWS\system32\kbd101.dll
2010-07-21 10:08:42 ----A---- C:\WINDOWS\system32\imjp81k.dll
2010-07-21 10:08:04 ----A---- C:\WINDOWS\system32\kbdkor.dll
2010-07-21 10:08:04 ----A---- C:\WINDOWS\system32\kbdjpn.dll
2010-07-21 10:08:04 ----A---- C:\WINDOWS\system32\kbd103.dll
2010-07-21 10:08:04 ----A---- C:\WINDOWS\system32\kbd101c.dll
2010-07-21 10:08:01 ----A---- C:\WINDOWS\system32\kbd101b.dll
2010-07-21 10:08:00 ----A---- C:\WINDOWS\system32\kbd106.dll
2010-07-20 22:49:51 ----D---- C:\Documents and Settings\arsenal\Application Data\Hulubulu
2010-07-19 23:47:01 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2010-07-19 23:46:53 ----D---- C:\WINDOWS\RegisteredPackages
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\psisdecd.dll
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\msdv.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\mpe.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2010-07-19 23:46:39 ----A---- C:\WINDOWS\system32\drivers\bdasup.sys
2010-07-19 23:46:37 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2010-07-19 18:49:14 ----HDC---- C:\Documents and Settings\All Users\Application Data\{BD986C1B-72EC-4B82-B47B-6CAC4E6F494E}
2010-07-19 09:26:04 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-07-19 09:08:59 ----A---- C:\WINDOWS\system32\drivers\SBREDrv.sys
2010-07-19 09:03:39 ----D---- C:\Documents and Settings\arsenal\Application Data\Malwarebytes
2010-07-19 09:03:30 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-07-18 20:58:44 ----D---- C:\Documents and Settings\arsenal\Application Data\TeamViewer
2010-07-18 20:57:43 ----D---- C:\WINDOWS\system32\appmgmt
2010-07-18 20:53:30 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-07-17 14:19:39 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-07-17 14:19:30 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-07-17 14:16:46 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-07-17 14:16:38 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-07-17 14:16:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-07-17 14:16:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-07-17 14:16:16 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-07-17 14:16:14 ----D---- C:\Documents and Settings\arsenal\Application Data\Foxit Software
2010-07-17 14:16:08 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-07-17 14:15:53 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-07-17 14:15:45 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-07-17 14:15:41 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-07-17 14:15:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-07-17 14:15:23 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-07-17 14:15:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-07-17 14:11:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-07-17 14:11:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-07-17 14:11:19 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-07-17 14:11:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-07-17 14:10:54 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-07-17 14:10:46 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-07-17 14:10:38 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-07-17 14:10:30 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-07-17 14:10:20 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$
2010-07-17 14:10:14 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-07-17 14:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-07-17 14:09:32 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-07-17 14:09:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-07-17 14:09:15 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-07-17 14:09:09 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-07-17 14:08:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-07-17 13:14:52 ----D---- C:\Documents and Settings\arsenal\Application Data\Mp3tag
2010-07-17 09:10:39 ----HD---- C:\WINDOWS\system32\GroupPolicy
2010-07-16 22:33:01 ----D---- C:\WINDOWS\system32\XPSViewer
2010-07-16 22:32:59 ----D---- C:\Program Files\MSBuild
2010-07-16 22:32:54 ----D---- C:\Program Files\Reference Assemblies
2010-07-16 22:32:25 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-07-16 22:32:24 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-07-16 22:32:24 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-07-16 18:18:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-07-16 18:18:25 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-07-16 18:18:20 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-07-16 18:18:15 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-07-16 18:18:10 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-07-16 18:18:06 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-07-16 18:17:59 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-07-16 18:17:49 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-07-16 18:17:45 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-07-16 18:17:40 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-07-16 18:17:33 ----HDC---- C:\WINDOWS\$NtUninstallKB979402_WM9$
2010-07-16 18:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-07-16 18:17:24 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-07-16 18:17:19 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-07-16 18:17:14 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-07-16 18:17:09 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-07-16 18:16:12 ----A---- C:\WINDOWS\system32\MRT.exe
2010-07-16 18:16:06 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-07-16 18:16:01 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-07-16 18:15:54 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-07-16 18:15:48 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-07-16 18:15:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-07-16 18:15:36 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-07-16 18:15:31 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-07-16 18:15:25 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-07-16 18:15:14 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2010-07-16 18:15:09 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-07-16 18:15:00 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-07-16 18:14:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-07-16 18:14:48 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-07-16 18:14:43 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-07-16 18:14:38 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-07-16 18:14:32 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-07-16 18:14:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-07-16 18:14:21 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-07-16 18:14:16 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-07-16 18:14:11 ----D---- C:\WINDOWS\ie8updates
2010-07-16 18:14:06 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-07-16 18:14:00 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-07-16 18:13:55 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-07-16 18:13:49 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-07-16 18:13:44 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-07-16 18:13:37 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-07-16 07:23:28 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2010-07-16 07:23:01 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-07-15 23:52:13 ----ASH---- C:\pagefile.sys
2010-07-14 21:56:30 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2010-07-14 20:14:22 ----SHD---- C:\Diskeeper
2010-07-14 16:35:45 ----D---- C:\Documents and Settings\arsenal\Application Data\Macromedia
2010-07-14 16:35:44 ----D---- C:\Documents and Settings\arsenal\Application Data\Adobe
2010-07-14 16:09:59 ----D---- C:\WINDOWS\system32\PreInstall
2010-07-14 16:09:58 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-07-14 16:09:57 ----HD---- C:\WINDOWS\$hf_mig$
2010-07-14 15:32:08 ----D---- C:\Documents and Settings\arsenal\Application Data\Dev-Cpp
2010-07-14 15:24:13 ----D---- C:\Program Files\Common Files\Diskeeper Corporation
2010-07-14 15:24:12 ----D---- C:\Documents and Settings\All Users\Application Data\Diskeeper Corporation
2010-07-14 15:18:33 ----D---- C:\WINDOWS\WBEM
2010-07-14 15:18:20 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-07-14 15:18:17 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-07-14 15:17:43 ----HDC---- C:\WINDOWS\ie8
2010-07-14 15:17:12 ----HD---- C:\WINDOWS\msdownld.tmp
2010-07-14 15:17:12 ----D---- C:\Program Files\Google
2010-07-14 15:17:12 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2010-07-14 15:07:09 ----A---- C:\WINDOWS\WORDPAD.INI
2010-07-14 15:04:39 ----D---- C:\Documents and Settings\arsenal\Application Data\GrabPro
2010-07-14 15:04:36 ----D---- C:\Documents and Settings\arsenal\Application Data\Orbit
2010-07-14 14:57:33 ----D---- C:\Documents and Settings\arsenal\Application Data\vlc
2010-07-14 14:52:01 ----A---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-07-14 14:52:01 ----A---- C:\WINDOWS\system32\ff_vfw.dll
2010-07-14 14:50:10 ----D---- C:\Documents and Settings\arsenal\Application Data\Media Player Classic
2010-07-14 14:46:32 ----D---- C:\Program Files\CoreCodec
2010-07-14 14:45:07 ----D---- C:\Documents and Settings\arsenal\Application Data\WinRAR
2010-07-14 14:41:12 ----D---- C:\Documents and Settings\arsenal\Application Data\Canneverbe_Limited
2010-07-14 14:38:14 ----D---- C:\Documents and Settings\arsenal\Application Data\foobar2000
2010-07-14 14:37:48 ----RSD---- C:\WINDOWS\assembly
2010-07-14 14:37:24 ----D---- C:\WINDOWS\Microsoft.NET
2010-07-14 14:35:37 ----D---- C:\Documents and Settings\arsenal\Application Data\avidemux
2010-07-14 14:34:02 ----D---- C:\Documents and Settings\arsenal\Application Data\Audacity
2010-07-14 14:32:23 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-07-14 14:31:03 ----D---- C:\Documents and Settings\arsenal\Application Data\uTorrent
2010-07-13 23:56:21 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2010-07-13 23:37:55 ----D---- C:\Documents and Settings\All Users\Application Data\COMODO
2010-07-13 23:35:06 ----D---- C:\Documents and Settings\All Users\Application Data\Comodo Downloader
2010-07-13 23:26:46 ----D---- C:\WINDOWS\pss
2010-07-13 23:24:56 ----D---- C:\WINDOWS\system32\Lang
2010-07-13 23:23:16 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-07-13 23:23:15 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-07-13 23:23:14 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2010-07-13 23:23:13 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-07-13 23:23:12 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-07-13 23:23:10 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-07-13 23:23:10 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-07-13 23:23:09 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-07-13 23:23:07 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010-07-13 23:23:06 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2010-07-13 23:23:05 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010-07-13 23:23:00 ----D---- C:\WINDOWS\system32\RTCOM
2010-07-13 23:22:58 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-07-13 23:22:58 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-07-13 23:22:58 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-07-13 23:22:52 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2010-07-13 23:22:52 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-07-13 23:22:52 ----A---- C:\WINDOWS\SkyTel.exe
2010-07-13 23:22:52 ----A---- C:\WINDOWS\RtlUpd.exe
2010-07-13 23:22:51 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-07-13 23:22:51 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-07-13 23:22:50 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-07-13 23:22:49 ----D---- C:\Program Files\Realtek
2010-07-13 23:22:49 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2010-07-13 23:22:49 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2010-07-13 23:22:49 ----A---- C:\WINDOWS\MicCal.exe
2010-07-13 23:22:49 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-07-13 23:22:49 ----A---- C:\WINDOWS\ALCMTR.EXE
2010-07-13 23:22:48 ----HD---- C:\Program Files\InstallShield Installation Information
2010-07-13 23:22:42 ----R---- C:\WINDOWS\RtlExUpd.dll
2010-07-13 23:22:40 ----D---- C:\Program Files\Common Files\InstallShield
2010-07-13 23:21:08 ----D---- C:\WINDOWS\nview
2010-07-13 23:21:08 ----A---- C:\WINDOWS\system32\nvudisp.exe
2010-07-13 23:16:21 ----RA---- C:\WINDOWS\system32\fdco1ins.dll
2010-07-13 23:16:21 ----RA---- C:\WINDOWS\system32\fdco1.dll
2010-07-13 23:16:21 ----RA---- C:\WINDOWS\system32\drivers\NVENETFD.sys
2010-07-13 23:16:20 ----A---- C:\WINDOWS\system32\nvunrm.exe
2010-07-13 23:15:50 ----RA---- C:\WINDOWS\system32\nvconrm.dll
2010-07-13 23:15:50 ----RA---- C:\WINDOWS\system32\drivers\nvnrm.sys
2010-07-13 23:15:50 ----RA---- C:\WINDOWS\system32\drivers\nvnetbus.sys
2010-07-13 23:15:50 ----RA---- C:\WINDOWS\system32\bdco1ins.dll
2010-07-13 23:15:50 ----RA---- C:\WINDOWS\system32\bdco1.dll
2010-07-13 23:15:49 ----RA---- C:\WINDOWS\system32\nvusmu.exe
2010-07-13 23:15:48 ----RA---- C:\WINDOWS\system32\drivers\nvsmu.sys
2010-07-13 23:15:47 ----RA---- C:\WINDOWS\system32\nvusmb.exe
2010-07-13 23:15:38 ----A---- C:\WINDOWS\system32\NVUNINST.EXE
2010-07-13 23:15:36 ----D---- C:\Documents and Settings\arsenal\Application Data\InstallShield
2010-07-13 23:14:41 ----A---- C:\WINDOWS\Ascd_tmp.ini
2010-07-13 23:14:40 ----A---- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2010-07-13 23:13:10 ----SHD---- C:\RECYCLER
2010-07-13 23:09:59 ----A---- C:\WINDOWS\system32\TweakUI.exe
2010-07-13 23:08:28 ----A---- C:\WINDOWS\system32\drivers\sptd.sys

======List of files/folders modified in the last 1 months======

2010-08-12 19:48:19 ----RD---- C:\Program Files
2010-08-12 19:47:58 ----D---- C:\WINDOWS\Prefetch
2010-08-12 19:40:38 ----SHD---- C:\WINDOWS\Installer
2010-08-12 17:47:24 ----D---- C:\WINDOWS\Temp
2010-08-12 15:51:03 ----D---- C:\WINDOWS\system32
2010-08-12 09:48:59 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-12 09:46:10 ----D---- C:\WINDOWS
2010-08-12 09:44:50 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-12 08:31:22 ----HD---- C:\WINDOWS\inf
2010-08-12 08:31:18 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-12 08:31:18 ----D---- C:\WINDOWS\system32\drivers
2010-08-12 08:30:06 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-08-12 08:29:49 ----D---- C:\WINDOWS\WinSxS
2010-08-12 08:27:55 ----D---- C:\Program Files\Internet Explorer
2010-08-12 08:26:15 ----D---- C:\WINDOWS\Debug
2010-08-12 08:26:01 ----D---- C:\Program Files\Movie Maker
2010-08-03 22:50:05 ----SH---- C:\boot.ini
2010-08-03 22:50:05 ----A---- C:\WINDOWS\win.ini
2010-08-03 22:50:05 ----A---- C:\WINDOWS\system.ini
2010-08-03 14:53:58 ----D---- C:\WINDOWS\repair
2010-08-03 14:53:44 ----D---- C:\WINDOWS\Registration
2010-08-03 14:37:24 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-08-03 14:24:43 ----D---- C:\Documents and Settings
2010-08-02 22:28:43 ----SD---- C:\Documents and Settings\arsenal\Application Data\Microsoft
2010-08-02 18:12:52 ----D---- C:\WINDOWS\system32\config
2010-08-02 18:12:03 ----D---- C:\Program Files\Common Files
2010-08-02 18:11:51 ----RSD---- C:\WINDOWS\Fonts
2010-08-02 18:11:44 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-08-02 18:09:14 ----D---- C:\Program Files\Common Files\System
2010-07-27 12:00:35 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-25 21:31:22 ----D---- C:\WINDOWS\system32\Macromed
2010-07-25 21:31:15 ----D---- C:\WINDOWS\system32\DirectX
2010-07-25 12:17:14 ----SD---- C:\WINDOWS\Tasks
2010-07-24 15:26:57 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-07-21 10:09:19 ----D---- C:\WINDOWS\Help
2010-07-17 14:26:00 ----D---- C:\WINDOWS\system32\wbem
2010-07-17 14:17:12 ----D---- C:\WINDOWS\system32\CatRoot
2010-07-16 22:33:00 ----D---- C:\WINDOWS\system32\en-US
2010-07-16 22:32:30 ----D---- C:\WINDOWS\system32\spool
2010-07-16 22:31:42 ----D---- C:\WINDOWS\system32\mui
2010-07-16 19:06:02 ----D---- C:\WINDOWS\AppPatch
2010-07-16 18:18:17 ----D---- C:\Program Files\Messenger
2010-07-16 18:14:55 ----D---- C:\Program Files\Outlook Express
2010-07-15 23:51:43 ----SHD---- C:\System Volume Information
2010-07-15 23:51:43 ----D---- C:\WINDOWS\system32\Restore
2010-07-14 15:18:27 ----D---- C:\WINDOWS\Media
2010-07-14 14:37:24 ----D---- C:\WINDOWS\pchealth
2010-07-14 14:32:33 ----D---- C:\WINDOWS\SoftwareDistribution

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2010-06-01 87824]
R0 pssnap;Paramount Software Snapshot Filter; C:\WINDOWS\system32\DRIVERS\pssnap.sys [2008-05-20 15328]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-07-13 721904]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-06-29 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-06-29 165456]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-06-29 46672]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2010-06-04 229312]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2010-06-01 25240]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2009-03-15 56268]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-06-29 17744]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-06-29 100176]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-10-31 4942336]
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\d:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys []
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-10-04 6854464]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2007-09-20 53632]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2007-09-20 22016]
R3 nvsmu;nvsmu; C:\WINDOWS\system32\DRIVERS\nvsmu.sys [2007-07-07 12032]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2010-07-22 47360]
S3 ashiuvmo;ashiuvmo; C:\WINDOWS\system32\drivers\ashiuvmo.sys []
S3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-06-29 23376]
S3 ATP;Comodo EasyVPN Miniport Driver; C:\WINDOWS\system32\DRIVERS\cmdatp.sys []
S3 teamviewervpn;TeamViewer VPN Adapter; C:\WINDOWS\system32\DRIVERS\teamviewervpn.sys [2010-03-11 25088]
S3 usb_rndis;Broadcom USB Remote NDIS Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-14 12800]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; d:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-29 40384]
R2 cmdAgent;COMODO Internet Security Helper Service; D:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2010-06-01 1778480]
R2 Diskeeper;Diskeeper; D:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe [2008-11-22 1333016]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 avast! Mail Scanner;avast! Mail Scanner; d:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-29 40384]
S3 avast! Web Scanner;avast! Web Scanner; d:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-06-29 40384]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; d:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2010-08-12 1355416]
S4 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-23 136120]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S4 JavaQuickStarterService;Java Quick Starter; D:\Program Files\Java\jre6\bin\jqs.exe [2010-07-24 153376]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMSAccessU;NMSAccessU; d:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-10-20 71096]
S4 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-10-04 155716]
S4 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 ReflectService;Macrium Reflect Image Mounting Service; D:\Program Files\Macrium\Reflect\ReflectService.exe [2009-08-25 220128]
S4 StarWindServiceAE;StarWind AE Service; d:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [2007-05-28 275968]

-----------------EOF-----------------

RSIT- info.txt:
info.txt logfile of random's system information tool 1.08 2010-08-12 19:49:05

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"d:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
Ad-Aware-->"C:\Documents and Settings\All Users\Application Data\{BD986C1B-72EC-4B82-B47B-6CAC4E6F494E}\Ad-AwareInstall.exe" REMOVE=TRUE MODIFY=FALSE
Ad-Aware-->C:\Documents and Settings\All Users\Application Data\{BD986C1B-72EC-4B82-B47B-6CAC4E6F494E}\Ad-AwareInstall.exe
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -maintain activex
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_Plugin.exe -maintain plugin
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Advanced Renamer-->"d:\Program Files\Advanced Renamer\unins000.exe"
Audacity 1.3.12 (Unicode)-->"d:\Program Files\Audacity 1.3 Beta (Unicode)\unins000.exe"
avast! Free Antivirus-->d:\Program Files\Alwil Software\Avast5\aswRunDll.exe "d:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
Avidemux 2.5-->d:\Program Files\Avidemux 2.5\uninstall.exe
CCleaner-->"d:\Program Files\CCleaner\uninst.exe"
CDBurnerXP-->"d:\Program Files\CDBurnerXP\unins000.exe"
Comical 0.8-->"d:\Program Files\Comical\unins000.exe"
COMODO Internet Security-->MsiExec.exe /I{CC6B1BB4-4E06-4A5B-A166-B371B551324B}
CoreAVC Professional Edition (remove only)-->"C:\Program Files\CoreCodec\CoreAVC Professional Edition\CoreAVC Professional Edition-uninstall.exe"
Diskeeper 2009 Pro Premier-->MsiExec.exe /X{593D4F8A-5F11-4901-A74A-6E7971E45790}
DVDFab 6.0.4.0 (28/07/2009)-->"d:\Program Files\DVDFab 6\unins000.exe"
ffdshow v1.1.3452 [2010-05-24]-->"d:\Program Files\ffdshow\unins000.exe"
FIFA 08-->MsiExec.exe /X{0A2A5039-B37F-489D-B1DC-A5258DF9E697}
foobar2000 v1.0.3-->"d:\Program Files\foobar2000\uninstall.exe" _?=d:\Program Files\foobar2000
Foxit Reader-->MsiExec.exe /I{62DC441E-0FD3-4606-9D9B-90FE325B29E5}
HiJackThis-->MsiExec.exe /X{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall  /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
IrfanView (remove only)-->d:\Program Files\IrfanView\iv_uninstall.exe
Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
Macrium Reflect - Free Edition-->MsiExec.exe /I{3BAD2D97-4900-4014-A2F5-B549802CEEE2}
Media Player Classic - Home Cinema v. 1.3.1249.0-->"d:\Program Files\MPC HomeCinema\unins000.exe"
MediaInfo 0.7.30-->d:\Program Files\MediaInfo\uninst.exe
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
MKVtoolnix 2.9.8-->d:\Program Files\MKVtoolnix\uninst.exe
Need for Speed™ Most Wanted-->d:\Program Files\EA GAMES\Need for Speed Most Wanted\EAUninstall.exe
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
Orbit Downloader-->"d:\Program Files\Orbitdownloader\unins000.exe"
Picasa 3-->"d:\Program Files\Google\Picasa3\Uninstall.exe"
PowerISO-->"d:\Program Files\PowerISO\uninstall.exe"
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x9  -removeonly
Revo Uninstaller 1.83-->d:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
Security Update for Windows Internet Explorer 8 (KB2183461)-->"C:\WINDOWS\ie8updates\KB2183461-IE8\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB979402)-->"C:\WINDOWS\$NtUninstallKB979402_WM9$\spuninst\spuninst.exe"
Security Update for Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Security Update for Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe"
Security Update for Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Security Update for Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Security Update for Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Security Update for Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Security Update for Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Security Update for Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Security Update for Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Security Update for Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Security Update for Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Security Update for Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Security Update for Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Security Update for Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Security Update for Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Security Update for Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Security Update for Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Security Update for Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Security Update for Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Security Update for Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Security Update for Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Security Update for Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Security Update for Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Security Update for Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
SuperCopier2-->"d:\Program Files\SuperCopier2\SC2Uninst.exe"
Tweak UI-->"C:\WINDOWS\system32\mshta.exe" "res://C:\WINDOWS\system32\TweakUI.exe/uninstall.hta"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe"
Update for Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update for Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Update for Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Update for Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Update for Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Update for Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Update for Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Visual C++ 2008 x86 Runtime - (v9.0.30729)-->MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}
Visual C++ 2008 x86 Runtime - v9.0.30729.01-->C:\WINDOWS\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""
VLC media player 1.0.5-->d:\Program Files\VideoLAN\VLC\uninstall.exe
VOB2MPG v3-->MsiExec.exe /I{EC6B304A-044A-46AE-B761-D1202720D93A}
Wallpaper Master v2.16-->"d:\Program Files\Wallpaper Master\unins000.exe"
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray-->"C:\WINDOWS\$NtUninstallKB952011$\spuninst\spuninst.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
WinRAR archiver-->d:\Program Files\WinRAR\uninstall.exe

======Security center information======

AV: avast! Antivirus
FW: COMODO Firewall

======System event log======

Computer Name: DEFAULT-13D3199
Event Code: 36
Message: The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.

Record Number: 936
Source Name: W32Time
Time Written: 20100718040543.000000+330
Event Type: warning
User:

Computer Name: DEFAULT-13D3199
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 935
Source Name: Tcpip
Time Written: 20100717182753.000000+330
Event Type: warning
User:

Computer Name: DEFAULT-13D3199
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 934
Source Name: Tcpip
Time Written: 20100717160254.000000+330
Event Type: warning
User:

Computer Name: DEFAULT-13D3199
Event Code: 4226
Message: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.

Record Number: 823
Source Name: Tcpip
Time Written: 20100717131845.000000+330
Event Type: warning
User:

Computer Name: DEFAULT-13D3199
Event Code: 1002
Message: The IP address lease 192.168.1.2 for the Network Card with network address 001966B2B967 has been
denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

Record Number: 748
Source Name: Dhcp
Time Written: 20100717084501.000000+330
Event Type: error
User:

=====Application event log=====

Computer Name: DEFAULT-13D3199
Event Code: 5603
Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property.  This provider will be run using the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.  Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 15
Source Name: WinMgmt
Time Written: 20090707110728.000000+330
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: DEFAULT-13D3199
Event Code: 5603
Message: A provider, Rsop Planning Mode Provider, has been registered in the WMI namespace, root\RSOP, but did not specify the HostingModel property.  This provider will be run using the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.  Ensure that provider has been reviewed for security behavior and update the HostingModel property of the provider registration to an account with the least privileges possible for the required functionality.

Record Number: 14
Source Name: WinMgmt
Time Written: 20090707110728.000000+330
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: DEFAULT-13D3199
Event Code: 63
Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 13
Source Name: WinMgmt
Time Written: 20090707110728.000000+330
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: DEFAULT-13D3199
Event Code: 63
Message: A provider, CmdTriggerConsumer, has been registered in the WMI namespace, Root\cimv2, to use the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 12
Source Name: WinMgmt
Time Written: 20090707110728.000000+330
Event Type: warning
User: NT AUTHORITY\SYSTEM

Computer Name: DEFAULT-13D3199
Event Code: 63
Message: A provider, HiPerfCooker_v1, has been registered in the WMI namespace, Root\WMI, to use the LocalSystem account.  This account is privileged and the provider may cause a security violation if it does not correctly impersonate user requests.

Record Number: 11
Source Name: WinMgmt
Time Written: 20090707110726.000000+330
Event Type: warning
User: NT AUTHORITY\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;D:\PROGRA~1\DISKEE~1\DISKEE~1\;d:\Program Files\MKVtoolnix
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=0407
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------
Logged

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 11539
  • "Stronger than the past, united in our goal."
    • Security Garden
Re: Ad-Aware crashes.
« Reply #1 on: August 12, 2010, 07:20:24 PM »
Hi, slipknotForSouljaBoy.

I have not used Ad-Aware for about five years so if that is your only problem, I suggest you post at the Lavasoft Support Forums.  However, if you suspect your computer might be infected, please do the following:

Please download Malwarebytes' Anti-Malware to your desktop.
  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to
    Update Malwarebytes' Anti-Malware and
    Launch Malwarebytes' Anti-Malware
  • Click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, be sure Quick scan is selected, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, EXCEPT items in System Restore as shown in this sample:
  • Click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See the Note below)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Please post contents of that file in your next reply.

** Note **

If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.
Logged
,  

Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Offline winchester73

  • Administrator
  • Hero Member
  • *****
  • Posts: 5125
  • Half a bubble off plumb
Re: Ad-Aware crashes.
« Reply #2 on: August 12, 2010, 08:13:21 PM »
I haven't used Ad-Aware for at least that long myself, tracking cookies were never really a problem for me ... sorry I can't help you with the crashing issue.  Their support forum is here:  http://www.lavasoftsupport.com/index.php

You might try something as simple as an uninstall and reinstall of the program, perhaps it became corrupted.  As Corrine said, if you think it is another issue, we'll be happy to help you sort things out.
Logged
Speak softly, but carry a big Winchester ... Winchester Arms Collectors Association member


Offline slipknotForSouljaBoy

  • Newbie
  • *
  • Posts: 10
Re: Ad-Aware crashes.
« Reply #3 on: August 13, 2010, 02:42:13 AM »
ok. what's the best free anti-spyware out there?
Logged

Offline MikeW

  • Full Member
  • ***
  • Posts: 123
Re: Ad-Aware crashes.
« Reply #4 on: August 13, 2010, 08:39:47 AM »
Quote from: slipknotForSouljaBoy on August 13, 2010, 02:42:13 AM
ok. what's the best free anti-spyware out there?

The clue is in Corrine's post
http://www.malwarebytes.org/
Logged
XP Home SP3 IE8 Nis 2011 Mbam

Offline GR@PH;<'S

  • Administrator
  • Hero Member
  • *****
  • Posts: 15651
    • http://www.taktmobiles.co.uk
Re: Ad-Aware crashes.
« Reply #5 on: August 13, 2010, 08:20:07 PM »
slipknotForSouljaBoy,
I have to agree with the others as I also recommend the use of Malwarebytes' Anti-Malware
As for Ad-aware as winchester73 said
Quote
uninstall and reinstall of the program, perhaps it became corrupted
However do not run the two programs of the same type, at the at the same time as they can conflicked with each other.
Do  as Corrine has posted and then post your log files here.

GR@PH;<'S   :Hammys pint:
Logged
press Enter then have a Brandy then if the problem is still there have another Brandy
Q: does it work
A: It does seem to for a few hours at least.

Offline slipknotForSouljaBoy

  • Newbie
  • *
  • Posts: 10
Re: Ad-Aware crashes.
« Reply #6 on: August 15, 2010, 01:47:46 PM »
hey. i'm using mbam now. ditched ad-aware. didn't get any detections on full scan with mbam. will post logs soon. thanks you guys :Hammys pint:
Logged

Offline Corrine

  • The Mystical Rose
  • Administrator
  • Hero Member
  • *****
  • Posts: 11539
  • "Stronger than the past, united in our goal."
    • Security Garden
Re: Ad-Aware crashes.
« Reply #7 on: August 15, 2010, 10:46:26 PM »
Hi, slipknotForSouijaBoy.

It sounds like it was a problem with AAW.  Glad to hear MBAM didn't find anything.  Let us know if you have any additional problems.
Logged
,  

Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.
Pages: [1]   Go Up
« previous next »