ComboScan v20070226.18 run by Michael on 2007-02-27 at 16:27:42
Computer is in Normal Mode.
--------------------------------------------------------------------------------
Successfully created restore point.
Performed disk cleanup.
-- HijackThis (run as Michael.exe) ----------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 16:28:32, on 27/02/2007
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\rundll32.exe
C:\Windows\System32\CTHELPER.EXE
C:\Windows\System32\CTXFIHLP.EXE
G:\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe
C:\Windows\System32\wpcumi.exe
C:\Windows\System32\mobsync.exe
G:\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Windows\System32\CTXFISPI.EXE
G:\iTunes\iTunesHelper.exe
G:\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Michael\Downloads\USDownloader134b8\USDow nloader.exe
G:\FirefoxPreloader\FirefoxPreloader.exe
G:\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
E:\Valve\Steam\Steam.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Michael\Desktop\comboscan.exe
G:\HIJACK~1\Michael.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - G:\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [AVP] "G:\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe"
O4 - HKLM\..\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [AcronisTimounterMonitor] G:\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: "G:\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "G:\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [USDownloader] "C:\Users\Michael\Downloads\USDownloader134b8\USDow nloader.exe"
O4 - HKCU\..\Run: [Startup Manager] C:\Users\Michael\AppData\Roaming\Systweak\ASO 2\smstartUp manager.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Firefox Preloader.lnk = G:\FirefoxPreloader\FirefoxPreloader.exe
O4 - Global Startup: Logitech SetPoint.lnk = G:\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: Add to Anti-Banner - G:\Kaspersky Lab\Kaspersky Internet Security 6.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://G:\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - G:\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - G:\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - G:\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O11 - Options group: [INTERNATIONAL] International*
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - G:\MICROS~3\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DL L
O20 - AppInit_DLLs:
O20 - Winlogon Notify: klogon - C:\Windows\system32\klogon.dll
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Unknown owner - G:\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing)
O23 - Service: Diskeeper - Diskeeper Corporation - G:\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LEC TranslateDotNet Server - Language Engineering Corporation, LLC - G:\Power Translator 11\LogoMedia TranslateDotNet Server.exe
O23 - Service: NBService - Nero AG - G:\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: Sunbelt CounterSpy Antispyware (SBCSSvc) - Sunbelt Software - G:\Sunbelt Software\CounterSpy\SBCSSvc.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)
-- File Associations ------------------------------------------------------------
.bat - batfile - "%1" %*
.chm - chm.file - "%SystemRoot%\hh.exe" %1
.cmd - cmdfile - "%1" %*
.com - comfile - "%1" %*
.exe - exefile - "%1" %*
.hlp - hlpfile - %SystemRoot%\winhlp32.exe %1
.inf - inffile - %SystemRoot%\system32\NOTEPAD.EXE %1
.ini - inifile - %SystemRoot%\system32\NOTEPAD.EXE %1
.js - JSFile - %SystemRoot%\System32\WScript.exe "%1" %*
.lnk - lnkfile - {00021401-0000-0000-C000-000000000046}
.pif - piffile - "%1" %*
.reg - regfile - regedit.exe "%1"
.scr - scrfile - "%1" /S
.txt - txtfile - %SystemRoot%\system32\NOTEPAD.EXE %1
.vbs - VBSFile - "%SystemRoot%\System32\WScript.exe" "%1" %*
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ----------------------
3S COMMONFX.DLL - C:\Windows\System32\COMMONFX.DLL
3R CT20XUT.DLL - C:\Windows\System32\CT20XUT.DLL
3S ctac32k (Creative AC3 Software Decoder) - C:\Windows\System32\drivers\CTAC32K.SYS
3R ctaud2k (Creative Audio Driver (WDM)) - C:\Windows\System32\drivers\CTAUD2K.SYS
3S CTAUDFX.DLL - C:\Windows\System32\CTAUDFX.DLL
3S ctdvda2k (Creative DVD-Audio Device Driver) - C:\Windows\System32\drivers\CTDVDA2K.SYS
3S CTEAPSFX.DLL - C:\Windows\System32\CTEAPSFX.DLL
3S CTEDSPFX.DLL - C:\Windows\System32\CTEDSPFX.DLL
3S CTEDSPIO.DLL - C:\Windows\System32\CTEDSPIO.DLL
3S CTEDSPSY.DLL - C:\Windows\System32\CTEDSPSY.DLL
3S CTERFXFX.DLL - C:\Windows\System32\CTERFXFX.DLL
3R CTEXFIFX.DLL - C:\Windows\System32\CTEXFIFX.DLL
3R CTHWIUT.DLL - C:\Windows\System32\CTHWIUT.DLL
3R ctprxy2k (Creative Proxy Driver) - C:\Windows\System32\drivers\CTPRXY2K.SYS
3S CTSBLFX.DLL - C:\Windows\System32\CTSBLFX.DLL
3R ctsfm2k (Creative SoundFont Management Device Driver) - C:\Windows\System32\drivers\CTSFM2K.SYS
3R emupia (E-mu Plug-in Architecture Driver) - C:\Windows\System32\drivers\EMUPIA2K.SYS
3R GEARAspiWDM - C:\Windows\System32\drivers\GEARAspiWDM.sys
0R giveio - C:\Windows\System32\giveio.sys
3R ha20x2k (Creative 20X HAL Driver) - C:\Windows\System32\drivers\HA20X2K.SYS
2R irda (IrDA Protocol) - C:\Windows\System32\drivers\irda.sys
3R irsir (Microsoft Serial Infrared Driver) - C:\Windows\System32\drivers\irsir.sys
1R kl1 - C:\Windows\System32\drivers\kl1.sys
1R KLIF - C:\Windows\System32\drivers\klif.sys
1R KLIM6 (Kaspersky Anti-Virus NDIS 6 Filter) - C:\Windows\System32\drivers\klim6.sys
3R LHidFilt (Logitech SetPoint KMDF HID Filter Driver) - C:\Windows\System32\drivers\LHidFilt.Sys
3R LMouFilt (Logitech SetPoint KMDF Mouse Filter Driver) - C:\Windows\System32\drivers\LMouFilt.Sys
3R nvax (Service for NVIDIA(R) nForce(TM) Audio Enumerator) - C:\Windows\System32\drivers\nvax.sys
3R NVENETFD (NVIDIA nForce Networking Controller Driver) - C:\Windows\System32\drivers\nvmfdx32.sys
3R nvlddmkm - C:\Windows\System32\drivers\nvlddmkm.sys
3R nvnforce (Service for NVIDIA(R) nForce(TM) Audio) - C:\Windows\System32\drivers\nvapu.sys
3R ossrv (Creative OS Services Driver) - C:\Windows\System32\drivers\CTOSS2K.SYS
0R snapman (Acronis Snapshots Manager) - C:\Windows\System32\drivers\snapman.sys
0R speedfan - C:\Windows\System32\speedfan.sys
2R tifsfilter (Acronis True Image FS Filter) - C:\Windows\System32\drivers\tifsfilt.sys
2S TimerStop - \??\C:\Windows\system32\timerstop.sys
0R timounter (Acronis True Image Backup Archive Explorer) - C:\Windows\System32\drivers\timntr.sys
3R usbscan (USB Scanner Driver) - C:\Windows\System32\drivers\usbscan.sys
3R USBSTOR (USB Mass Storage Driver) - C:\Windows\System32\drivers\USBSTOR.SYS
3R WUDFRd - C:\Windows\System32\drivers\WUDFRd.sys
3R yukonwlh (NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller) - C:\Windows\System32\drivers\yk60x86.sys
3S Z550bus (Sony Ericsson Z550 driver (WDM)) - C:\Windows\System32\drivers\Z550bus.sys
3S Z550mdfl (Sony Ericsson Z550 USB WMC Modem Filter) - C:\Windows\System32\drivers\Z550mdfl.sys
3S Z550mdm (Sony Ericsson Z550 USB WMC Modem Driver) - C:\Windows\System32\drivers\Z550mdm.sys
3S Z550mgmt (Sony Ericsson Z550 USB WMC Device Management Drivers (WDM)) - C:\Windows\System32\drivers\Z550mgmt.sys
3S Z550obex (Sony Ericsson Z550 USB WMC OBEX Interface) - C:\Windows\System32\drivers\Z550obex.sys
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
2R AcrSch2Svc (Acronis Scheduler2 Service) - "C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe"
3S Adobe LM Service - "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"
2R AVP (Kaspersky Internet Security 6.0) - "G:\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r
2R Diskeeper - "G:\Diskeeper Corporation\Diskeeper\DkService.exe"
3S IDriverT (InstallDriver Table Manager) - "C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"
3R iPod Service - "C:\Program Files\iPod\bin\iPodService.exe"
2R Irmon (Infrared monitor service) - C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
2R LEC TranslateDotNet Server - "G:\Power Translator 11\LogoMedia TranslateDotNet Server.exe"
3S Microsoft Office Groove Audit Service - "G:\Microsoft Office\Office12\GrooveAuditService.exe"
3S NBService - G:\Nero 7\Nero BackItUp\NBService.exe
3S NMIndexingService - "C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe"
3S odserv (Microsoft Office Diagnostics Service) - "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE"
3S ose (Office Source Engine) - "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
2R SBCSSvc (Sunbelt CounterSpy Antispyware) - "G:\Sunbelt Software\CounterSpy\SBCSSvc.exe"
3S usnjsvc (Messenger USN Journal Reader service voor Gedeelde mappen) - "C:\Program Files\MSN Messenger\usnsvc.exe"
-- Scheduled Tasks --------------------------------------------------------------
2007-02-27 16:24:59 416 --ah----- C:\Windows\Tasks\User_Feed_Synchronization-{A6C59B6D-6CCE-4A43-803F-0F8FD4A5CADA}.job<USER_F~2.JOB>
2007-02-27 15:20:05 422 --ah----- C:\Windows\Tasks\User_Feed_Synchronization-{D2BC0948-9C07-4B2C-887F-24298D7E7C12}.job<USER_F~1.JOB>
2007-02-24 21:02:07 284 --a------ C:\Windows\Tasks\AppleSoftwareUpdate.job<APPLES~1.JOB>
-- Files created between 2007-01-27 and 2007-02-27 ------------------------------
-- Find3M Report ----------------------------------------------------------------
2099-02-19 17:15:30 0 d-------- C:\Users\Michael\AppData\Roaming\Identities<IDENTI~1>
2007-02-26 18:23:39 0 d-------- C:\Users\Michael\AppData\Roaming\AdobeUM
2007-02-26 18:23:04 0 d-------- C:\Users\Michael\AppData\Roaming\Adobe
2007-02-25 19:48:57 0 d-------- C:\Program Files\Common Files\Ahead
2007-02-25 19:44:10 690090 --a------ C:\Windows\system32\perfh013.dat
2007-02-25 19:44:10 122944 --a------ C:\Windows\system32\perfc013.dat
2007-02-25 18:40:09 0 d--h----- C:\Program Files\InstallShield Installation Information<INSTAL~1>
2007-02-25 18:31:53 0 d-------- C:\Program Files\Intuwave Ltd<INTUWA~1>
2007-02-25 18:00:33 0 d---s---- C:\Users\Michael\AppData\Roaming\Microsoft<MICROS~1>
2007-02-25 17:12:26 0 d-------- C:\Users\Michael\AppData\Roaming\Ahead
2007-02-25 14:23:38 0 d-------- C:\Program Files\Common Files\Adobe
2007-02-24 21:27:49 0 d-------- C:\Program Files\Mozilla Firefox<MOZILL~1>
2007-02-24 21:04:00 0 d-------- C:\Program Files\QuickTime<QUICKT~1>
2007-02-24 21:03:32 0 d-------- C:\Program Files\Apple Software Update<APPLES~1>
2007-02-23 21:53:54 0 --a------ C:\Windows\system32\SBRC.dat
2007-02-23 21:53:54 0 --a------ C:\Windows\system32\SBFC.dat
2007-02-23 11:57:02 0 d-------- C:\Users\Michael\AppData\Roaming\BSplayer Pro<BSPLAY~1>
2007-02-22 21:12:57 0 d-------- C:\Users\Michael\AppData\Roaming\Babylon
2007-02-22 19:18:57 1168 --a------ C:\Windows\mozver.dat
2007-02-22 18:44:42 0 d-------- C:\Program Files\MSXML 4.0<MSXML4~1.0>
2007-02-22 16:52:08 0 d-------- C:\Program Files\CyberLink<CYBERL~1>
2007-02-22 16:29:49 0 d-------- C:\Users\Michael\AppData\Roaming\CyberLink<CYBERL~1>
2007-02-22 16:20:16 0 d-------- C:\Program Files\Common Files\InstallShield<INSTAL~1>
2007-02-22 15:44:10 0 d-------- C:\Program Files\Generic
2007-02-22 15:43:53 724992 --a------ C:\Windows\iun6002.exe
2007-02-22 15:33:48 0 d-------- C:\Users\Michael\AppData\Roaming\Lavasoft
2007-02-22 14:37:33 98304 --a------ C:\Windows\system32\CmdLineExt.dll<CMDLIN~1.DLL>
2007-02-22 13:43:24 0 d-------- C:\Program Files\Common Files\Adobe Systems Shared<ADOBES~1>
2007-02-22 13:20:53 0 d-------- C:\Program Files\Common Files\Nova Development<NOVADE~1>
2007-02-22 12:38:55 0 -rahs---- C:\MSDOS.SYS
2007-02-22 12:38:55 0 -rahs---- C:\IO.SYS
2007-02-22 08:58:05 0 d-------- C:\Program Files\Microsoft Works<MICROS~4>
2007-02-22 08:57:43 0 d-------- C:\Program Files\MSBuild
2007-02-22 08:55:25 0 d-------- C:\Program Files\Microsoft.NET<MICROS~1.NET>
2007-02-22 08:52:09 0 d-------- C:\Program Files\Microsoft Visual Studio 8<MICROS~2>
2007-02-20 20:08:56 14 --a------ C:\Windows\system32\SysEngine2.SYS<SYSENG~1.SYS>
2007-02-20 18:46:18 0 d-------- C:\Program Files\Common Files\Acronis
2007-02-20 18:46:12 0 d-------- C:\Users\Michael\AppData\Roaming\Acronis
2007-02-20 18:39:16 0 d-------- C:\Program Files\Acronis
2007-02-20 18:35:23 0 --a------ C:\Windows\nsreg.dat
2007-02-20 18:34:58 0 d-------- C:\Users\Michael\AppData\Roaming\Mozilla
2007-02-20 18:18:16 0 d-------- C:\Users\Michael\AppData\Roaming\Apple Computer<APPLEC~1>
2007-02-20 18:17:48 0 d-------- C:\Program Files\iPod
2007-02-20 18:11:20 0 d-------- C:\Users\Michael\AppData\Roaming\Logitech
2007-02-20 18:07:25 0 d-------- C:\Program Files\Common Files\Logitech
2007-02-20 09:09:36 0 d-------- C:\Users\Michael\AppData\Roaming\InstallShield<INSTAL~1>
2007-02-19 21:43:35 0 d-------- C:\Users\Michael\AppData\Roaming\Systweak
2007-02-19 21:41:45 0 d-------- C:\Program Files\CCleaner
2007-02-19 20:29:12 0 d-------- C:\Users\Michael\AppData\Roaming\TuneUp Software<TUNEUP~1>
2007-02-19 20:01:58 0 d-------- C:\Users\Michael\AppData\Roaming\Macromedia<MACROM~1>
2007-02-19 18:35:25 0 d-------- C:\Program Files\Creative
2007-02-19 18:34:53 0 d-------- C:\Program Files\MSN Messenger<MSNMES~1>
2007-02-19 18:32:11 409600 --a------ C:\Windows\system32\wrap_oal.dll
2007-02-19 18:32:11 114688 --a------ C:\Windows\system32\OpenAL32.dll
2007-02-19 18:32:11 0 d-------- C:\Program Files\OpenAL
2007-02-19 18:23:12 0 d-------- C:\Program Files\Windows Sidebar<WICC9F~1>
2007-02-19 18:23:12 0 d-------- C:\Program Files\Windows Photo Gallery<WINDOW~4>
2007-02-19 18:23:12 0 d-------- C:\Program Files\Windows Mail<WINDOW~1>
2007-02-19 18:23:12 0 d-------- C:\Program Files\Windows Journal<WI0FCF~1>
2007-02-19 18:23:12 0 d-------- C:\Program Files\Windows Collaboration<WICE93~1>
2007-02-19 18:23:12 0 d-------- C:\Program Files\Windows Calendar<WIF3F6~1>
2007-02-19 18:23:12 0 d-------- C:\Program Files\Movie Maker<MOVIEM~1>
2007-02-19 18:23:10 0 d-------- C:\Program Files\Windows Defender<WINDOW~3>
2007-02-19 18:22:37 336440 --a------ C:\Windows\system32\perfi013.dat
2007-02-19 18:22:37 41976 --a------ C:\Windows\system32\perfd013.dat
2007-02-19 18:06:17 0 d-------- C:\Program Files\BitLocker<BITLOC~1>
2007-02-19 18:02:47 1162240 --a------ C:\Windows\system32\SecureKeyBackupCPL.dll
2007-02-19 18:02:03 104448 --a------ C:\Windows\system32\DWWIN.EXE
2007-02-19 18:01:51 229888 --a------ C:\Windows\system32\msshsq.dll
2007-02-19 18:01:14 383488 --a------ C:\Windows\system32\ieapfltr.dll
2007-02-19 18:01:01 1149440 --a------ C:\Windows\system32\themecpl.dll
2007-02-19 18:01:01 227744 --a------ C:\Windows\system32\DreamScene.dll
2007-02-19 18:00:32 4153344 --a------ C:\Windows\system32\GameUXLegacyGDFs.dll
2007-02-19 18:00:32 1686016 --a------ C:\Windows\system32\gameux.dll
2007-02-19 18:00:21 974336 --a------ C:\Windows\system32\crypt32.dll
2007-02-19 17:59:43 0 d-------- C:\Program Files\Microsoft Games<MICROS~1>
2007-02-10 10:24:54 24816 --a------ C:\Windows\system32\SBBD.exe
2007-02-09 20:39:26 14368 --a------ C:\Windows\system32\relog_ap.dll
2007-02-09 19:06:26 17440 --a------ C:\Windows\system32\acrotls.dll
2007-02-09 18:54:48 348160 --a------ C:\Windows\system32\msvcr71.dll
2007-02-09 18:54:48 499712 --a------ C:\Windows\system32\msvcp71.dll
2007-02-09 18:49:24 206368 --a------ C:\Windows\system32\snapapi.dll
2007-01-30 01:46:32 69632 --a------ C:\Windows\system32\KemXML.dll
2007-01-30 01:46:26 163840 --a------ C:\Windows\system32\kemutb.dll
2007-01-30 01:46:18 110592 --a------ C:\Windows\system32\KemWnd.dll
2007-01-30 01:46:08 135168 --a------ C:\Windows\system32\KemUtil.dll
2007-01-29 23:04:00 200768 --a------ C:\Windows\system32\klogon.dll
2007-01-23 15:45:00 1419024 --a------ C:\Windows\system32\WdfCoInstaller01005.dll<WDFCOI~1.DLL>
2007-01-23 15:44:00 101136 --a------ C:\Windows\KHALMNPR.Exe
2007-01-19 12:53:04 51056 --a------ C:\Windows\system32\sirenacm.dll
2007-01-15 16:46:44 198656 --a------ C:\Windows\system32\fdco1.dll
2007-01-10 15:08:20 225280 --a------ C:\Windows\system32\AutoFAT.exe
2007-01-10 15:08:16 185344 --a------ C:\Windows\system32\AutoNTFS.exe
2007-01-02 18:06:14 3584 --a------ C:\Windows\system32\timerstop.sys<TIMERS~1.SYS>
2006-12-19 11:54:10 73016 --a------ C:\Windows\system32\CTHWIUT.DLL
2006-12-19 11:53:40 170808 --a------ C:\Windows\system32\CT20XUT.DLL
2006-12-19 11:53:10 1323832 --a------ C:\Windows\system32\CTEXFIFX.DLL
2006-12-19 11:52:32 329528 --a------ C:\Windows\system32\CTEDSPSY.DLL
2006-12-19 11:52:04 134968 --a------ C:\Windows\system32\CTEDSPIO.DLL
2006-12-19 11:51:46 101176 --a------ C:\Windows\system32\CTERFXFX.DLL
2006-12-19 11:51:18 286520 --a------ C:\Windows\system32\CTEDSPFX.DLL
2006-12-19 11:50:52 174392 --a------ C:\Windows\system32\CTEAPSFX.DLL
2006-12-19 11:50:32 566584 --a------ C:\Windows\system32\CTSBLFX.DLL
2006-12-19 11:50:12 552248 --a------ C:\Windows\system32\CTAUDFX.DLL
2006-12-19 11:49:58 98616 --a------ C:\Windows\system32\COMMONFX.DLL
2006-12-18 20:08:26 43520 --a------ C:\Windows\system32\CTBURST.DLL
2006-12-18 20:08:12 11776 --a------ C:\Windows\INRES.DLL
2006-12-18 20:08:10 162816 --a------ C:\Windows\system32\CTDVINST.DLL
2006-12-18 20:08:10 86016 --a------ C:\Windows\system32\CTCOINST.DLL
2006-12-18 20:07:26 34816 --a------ C:\Windows\system32\A3D.DLL
2006-12-18 20:07:14 27648 --a------ C:\Windows\system32\AC3API.DLL
2006-12-18 20:07:02 38400 --a------ C:\Windows\system32\READREG.EXE
2006-12-18 20:07:00 46592 --a------ C:\Windows\system32\CTXFISPK.DLL
2006-12-18 20:07:00 35840 --a------ C:\Windows\system32\CTXFIBTN.DLL
2006-12-18 20:07:00 3072 --a------ C:\Windows\CTXFIRES.DLL
2006-12-18 20:06:58 37888 --a------ C:\Windows\system32\PSCONV.EXE
2006-12-18 20:06:58 19968 --a------ C:\Windows\system32\CTXFIHLP.EXE
2006-12-18 20:06:56 45568 --a------ C:\Windows\system32\CTSPKHLP.DLL
2006-12-18 20:06:56 19456 --a------ C:\Windows\system32\CTHELPER.EXE
2006-12-18 20:06:56 8704 --a------ C:\Windows\system32\CTAGENT.DLL
2006-12-18 20:06:54 56832 --a------ C:\Windows\system32\CTPCMCIA.DLL
2006-12-18 20:06:54 13312 --a------ C:\Windows\system32\CTMMEP.DLL
2006-12-18 20:06:46 69632 --a------ C:\Windows\system32\CTTHXCAL.DLL
2006-12-18 20:06:46 9216 --a------ C:\Windows\system32\CTPRES.DLL
2006-12-18 20:06:44 78336 --a------ C:\Windows\system32\CTSCAL.DLL
2006-12-18 20:06:44 131072 --a------ C:\Windows\system32\CTDCIFCE.DLL
2006-12-18 20:06:42 10240 --a------ C:\Windows\system32\CTDCRES.DLL
2006-12-18 20:06:42 334848 --a------ C:\Windows\system32\CTDC0001.DLL
2006-12-18 20:06:42 227840 --a------ C:\Windows\system32\CTDC0000.DLL
2006-12-18 20:06:42 10240 --a------ C:\Windows\CTDCRES.DLL
2006-12-18 20:03:38 43520 --a------ C:\Windows\system32\CTXFIREG.EXE
2006-12-18 20:03:36 10752 --a------ C:\Windows\system32\CT20XSPI.DLL
2006-12-18 20:03:34 935424 --a------ C:\Windows\system32\CTXFISPI.EXE
2006-12-18 19:58:20 46273 --a------ C:\Windows\system32\CTDNLSTR.DAT
2006-12-18 19:58:20 325821 --a------ C:\Windows\system32\CTDLANG.DAT
2006-12-18 19:57:50 110080 --a------ C:\Windows\system32\CTEMUPIA.DLL
2006-12-18 19:55:46 50176 --a------ C:\Windows\system32\CTEDASIO.DLL
2006-12-18 19:55:44 79872 --a------ C:\Windows\system32\CTASIO.DLL
2006-12-18 19:55:44 205312 --a------ C:\Windows\system32\CT_OAL.DLL
2006-12-18 19:55:42 76800 --a------ C:\Windows\system32\CTDPROXY.DLL
2006-12-18 19:55:24 22528 --a------ C:\Windows\system32\SFMAN32.DLL
2006-12-18 19:55:24 137728 --a------ C:\Windows\system32\CTOSUSER.DLL
2006-12-18 19:55:22 130048 --a------ C:\Windows\system32\SFMS32.DLL
2006-12-18 19:55:20 38912 --a------ C:\Windows\system32\REGPLIB.EXE
2006-12-18 19:55:18 81920 --a------ C:\Windows\system32\PIAPROXY.DLL
2006-12-18 19:55:00 149838 --a------ C:\Windows\system32\CTBAS2W.DAT
2006-12-18 19:53:12 274587 --a------ C:\Windows\system32\CTSBAS2W.DAT
2006-12-18 19:53:04 241084 --a------ C:\Windows\system32\CTSBASW.DAT
2006-12-18 19:53:04 115166 --a------ C:\Windows\system32\CTBASICW.DAT
2006-12-18 19:52:46 313207 --a------ C:\Windows\system32\CTSTATIC.DAT
2006-12-18 19:52:46 53932 --a------ C:\Windows\system32\CTDAUGHT.DAT
2006-12-18 19:52:44 5120 --a------ C:\Windows\system32\ENLOCSTR.EXE
2006-12-18 19:52:42 10240 --a------ C:\Windows\system32\KILLAPPS.EXE
2006-12-18 19:52:28 28672 --a------ C:\Windows\system32\MIDIDEF.EXE
2006-12-18 19:52:28 48640 --a------ C:\Windows\system32\DEVREG.DLL
2006-12-18 18:54:02 48400 --a------ C:\Windows\system32\AddCat.exe
2006-12-18 18:53:50 45568 --a------ C:\Windows\system32\CTPPLD.DLL
2006-12-18 18:53:28 444928 --a------ C:\Windows\system32\CTAPO32.DLL
2006-12-11 08:43:36 103936 -----n--- C:\Windows\system32\APOMngr.dll
2006-12-08 04:25:00 303104 --a------ C:\Windows\system32\nvapi.dll
2006-12-07 21:07:16 356352 --a------ C:\Windows\system32\NVUNINST.EXE
2006-12-07 20:25:00 2371584 --a------ C:\Windows\system32\nvwssr.dll
2006-12-07 20:25:00 2048000 --a------ C:\Windows\system32\nvwss.dll
2006-12-07 20:25:00 3338240 --a------ C:\Windows\system32\nvvitvsr.dll
2006-12-07 20:25:00 3321856 --a------ C:\Windows\system32\nvvitvs.dll
2006-12-07 20:25:00 356352 --a------ C:\Windows\system32\nvudisp.exe
2006-12-07 20:25:00 90191 --a------ C:\Windows\system32\nvsvc.dll
2006-12-07 20:25:00 5685248 --a------ C:\Windows\system32\nvoglv32.dll
2006-12-07 20:25:00 2854912 --a------ C:\Windows\system32\nvmoblsr.dll
2006-12-07 20:25:00 888832 --a------ C:\Windows\system32\nvmobls.dll
2006-12-07 20:25:00 81920 --a------ C:\Windows\system32\nvmctray.dll
2006-12-07 20:25:00 458752 --a------ C:\Windows\system32\nvmccssr.dll
2006-12-07 20:25:00 188416 --a------ C:\Windows\system32\nvmccss.dll
2006-12-07 20:25:00 45056 --a------ C:\Windows\system32\nvmccsrs.dll
2006-12-07 20:25:00 229376 --a------ C:\Windows\system32\nvmccs.dll
2006-12-07 20:25:00 3207168 --a------ C:\Windows\system32\nvgamesr.dll
2006-12-07 20:25:00 3063808 --a------ C:\Windows\system32\nvgames.dll
2006-12-07 20:25:00 307200 --a------ C:\Windows\system32\nvexpbar.dll
2006-12-07 20:25:00 5230592 --a------ C:\Windows\system32\nvdispsr.dll
2006-12-07 20:25:00 5619712 --a------ C:\Windows\system32\nvdisps.dll
2006-12-07 20:25:00 3055616 --a------ C:\Windows\system32\nvd3dum.dll
2006-12-07 20:25:00 1019904 --a------ C:\Windows\system32\nvcpluir.dll
2006-12-07 20:25:00 806912 --a------ C:\Windows\system32\nvcplui.exe
2006-12-07 20:25:00 7766016 --a------ C:\Windows\system32\nvcpl.dll
2006-12-07 20:25:00 147456 --a------ C:\Windows\system32\nvcolor.exe
2006-12-07 20:25:00 521128 --a------ C:\Windows\system32\dpinst.exe
-- Registry Dump ----------------------------------------------------------------
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\run]
"Sidebar"="C:\\Program Files\\Windows Sidebar\\sidebar.exe /autoRun"
"USDownloader"="\"C:\\Users\\Michael\\Downloads\\USDownloader134b8\\ USDownloader.exe\""
"Startup Manager"="C:\\Users\\Michael\\AppData\\Roaming\\Systweak\\AS O 2\\smstartUp manager.exe"
"Steam"=""
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run]
"Windows Defender"=hex(2):25,50,72,6f,67,72,61,6d,46,69,6c,65,73,25, 5c,57,69,\
6e,64,6f,77,73,20,44,65,66,65,6e,64,65,72,5c,4d,53 ,41,53,43,75,69,2e,65,78,\
65,20,2d,68,69,64,65,00
"NvSvc"="RUNDLL32.EXE C:\\Windows\\system32\\nvsvc.dll,nvsvcStart"
"NvCplDaemon"="RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup"
"NvMediaCenter"="RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit"
"CTHelper"="CTHELPER.EXE"
"CTxfiHlp"="CTXFIHLP.EXE"
"AVP"="\"G:\\Kaspersky Lab\\Kaspersky Internet Security 6.0\\avp.exe\""
"WPCUMI"="C:\\Windows\\system32\\WpcUmi.exe"
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE"
"AcronisTimounterMonitor"="G:\\Acronis\\TrueImageHome\\TimounterMonitor.exe"
"Acronis Scheduler2 Service"="\"C:\\Program Files\\Common Files\\Acronis\\Schedule2\\schedhlp.exe\""
"iTunesHelper"="\"G:\\iTunes\\iTunesHelper.exe\""
"GrooveMonitor"="\"G:\\Microsoft Office\\Office12\\GrooveMonitor.exe\""
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\run-]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="\"C:\\Program Files\\Common Files\\Ahead\\Lib\\NMBgMonitor.exe\""
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run-]
"TrueImageMonitor.exe"="G:\\Acronis\\TrueImageHome\\TrueImageMonitor.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Startup Manager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Startup Manager"
"hkey"="HKCU"
"command"="C:\\Users\\Michael\\AppData\\Roaming\\Systweak\\AS O 2\\smstartUp manager.exe"
"inimapping"="0"
"YEAR"=dword:000007d7
"MONTH"=dword:00000002
"DAY"=dword:00000018
"HOUR"=dword:00000012
"MINUTE"=dword:0000001c
"SECOND"=dword:0000001f
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services\BITS]
"BITS"=dword:00000002
"YEAR"=dword:000007d7
"MONTH"=dword:00000002
"DAY"=dword:00000018
"HOUR"=dword:00000012
"MINUTE"=dword:0000001c
"SECOND"=dword:0000001f
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services\Fax]
"Fax"=dword:00000003
"YEAR"=dword:000007d7
"MONTH"=dword:00000002
"DAY"=dword:00000018
"HOUR"=dword:00000012
"MINUTE"=dword:0000001c
"SECOND"=dword:0000001e
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\sharedtaskscheduler]
"{E31004D1-A431-41B8-826F-E902F9D95C81}"="Windows DreamScene"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shellexecutehooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"="Groove GFS Stub Execution Hook"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"ConsentPromptBehaviorAdmin"=dword:00000002
"ConsentPromptBehaviorUser"=dword:00000001
"EnableInstallerDetection"=dword:00000001
"EnableLUA"=dword:00000000
"EnableSecureUIAPaths"=dword:00000001
"EnableVirtualization"=dword:00000001
"PromptOnSecureDesktop"=dword:00000001
"ValidateAdminCodeSignatures"=dword:00000000
"scforceoption"=dword:00000000
"FilterAdministratorToken"=dword:00000000
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system\UIPI]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system\UIPI\Clipboard]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system\UIPI\Clipboard\Exceptio nFormats]
"CF_TEXT"=dword:00000001
"CF_BITMAP"=dword:00000002
"CF_OEMTEXT"=dword:00000007
"CF_DIB"=dword:00000008
"CF_PALETTE"=dword:00000009
"CF_UNICODETEXT"=dword:0000000d
"CF_DIBV5"=dword:00000011
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\policies\system]
"LogonHoursAction"=dword:00000002
"DontDisplayLogonHoursWarnings"=dword:00000001
[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders]
"SecurityProviders"="credssp.dll"
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\AppInfo
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\KeyIso
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\NTDS
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\ProfSvc
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\sacsvr
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\SBCSSvc
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\SWPRV
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\TabletInputService
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\TBS
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\TrustedInstaller
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\volmgr.sys
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\volmgrx.sys
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ nsi\0lltdsvc\0SSDPSRV\0upnphost\0SCardSvr\0w32time \0EventSystem\0RemoteRegistry\0WinHttpAutoProxySvc \0lanmanworkstation\0TBS\0SLUINotify\0THREADORDER\ 0fdrespub\0netprofm\0fdphost\0wcncsvc\0QWAVE\0Mcx2 Svc\0WebClient\0\0
LocalSystemNetworkRestricted REG_MULTI_SZ hidserv\0UxSms\0WdiSystemHost\0Netman\0trkwks\0Aud ioEndpointBuilder\0WUDFSvc\0irmon\0sysmain\0IPBusE num\0dot3svc\0PcaSvc\0CscService\0wlansvc\0UmRdpSe rvice\0EMDMgmt\0WPDBusEnum\0TabletInputService\0\0
NetworkServiceNetworkRestricted REG_MULTI_SZ PolicyAgent\0\0
LocalServiceNoNetwork REG_MULTI_SZ PLA\0DPS\0BFE\0mpssvc\0ehstart\0\0
NetworkService REG_MULTI_SZ CryptSvc\0DHCP\0TermService\0KtmRm\0DNSCache\0NapA gent\0nlasvc\0WinRM\0WECSVC\0Tapisrv\0\0
termsvcs REG_MULTI_SZ TermService\0\0
WerSvcGroup REG_MULTI_SZ wersvc\0\0
swprv REG_MULTI_SZ swprv\0\0
LocalServiceNetworkRestricted REG_MULTI_SZ DHCP\0eventlog\0AudioSrv\0LmHosts\0wscsvc\0p2pimsv c\0PNRPSvc\0p2psvc\0WPCSvc\0PnrpAutoReg\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
regsvc REG_MULTI_SZ RemoteRegistry\0\0
wcssvc REG_MULTI_SZ WcsPlugInService\0\0
DcomLaunch REG_MULTI_SZ PlugPlay\0DcomLaunch\0\0
wdisvc REG_MULTI_SZ WdiServiceHost\0\0
sdrsvc REG_MULTI_SZ sdrsvc\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
secsvcs REG_MULTI_SZ WinDefend\0\0
HKLM\software\Microsoft\Windows NT\CurrentVersion\Svchost *netsvcs*
AeLookupSvc
wercplsupport
CertPropSvc
SCPolicySvc
gpsvc
IKEEXT
LogonHours
PCAudit
iphlpsvc
AppInfo
msiscsi
MMCSS
ProfSvc
EapHost
SessionEnv
hkmsvc
-- End of ComboScan: finished at 2007-02-27 at 16:29:14 -------------------------
ComboScan v20070226.18 run by Michael on 2007-02-27 at 16:27:42
Supplementary logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information -----------------------------------------------------------
Microsoft® Windows Vista™ Ultimate (build 6000)
Architecture: X86; Language: English
CPU 0: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of Memory in Use: 59%
Physical Memory (total/avail): 1021.88 MiB / 415.84 MiB
Pagefile Memory (total/avail): 3297.38 MiB / 2318.63 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1950.04 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 19.87 GiB total, 4.57 GiB free.
D: is Fixed (NTFS) - 10.89 GiB total, 1.36 GiB free.
E: is Fixed (NTFS) - 103.26 GiB total, 19.4 GiB free.
F: is Fixed (NTFS) - 26.6 GiB total, 9.12 GiB free.
G: is Fixed (NTFS) - 29.29 GiB total, 13.9 GiB free.
H: is CDROM (No Media)
I: is Removable (No Media)
J: is Removable (No Media)
K: is Removable (No Media)
L: is Removable (No Media)
-- Security Center --------------------------------------------------------------
AUOptions is disabled.
Windows Internal Firewall is disabled.
FW: Kaspersky Internet Security v6.0.2.614 (??)
AV: Kaspersky Internet Security v6.0.2.614 (??) Disabled
AS: Windows Defender v1.1.1505.0 (Microsoft Corporation) Disabled
AS: Kaspersky Internet Security v6.0.2.614 (??) Disabled
AS: Sunbelt Software CounterSpy 2.01.0917 v2.01.0917 (Sunbelt Software) Disabled Outdated
-- Environment Variables --------------------------------------------------------
ALLUSERSPROFILE=C:\ProgramData
APPDATA=C:\Users\Michael\AppData\Roaming
CLASSPATH=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=MICHAEL-PC
ComSpec=C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Users\Michael
LOCALAPPDATA=C:\Users\Michael\AppData\Local
LOGONSERVER=\\MICHAEL-PC
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\Windows\system32;C:\Windows;C:\Windows\Sys tem32\Wbem;C:\Program Files\QuickTime\QTSystem\;G:\Diskeeper Corporation\Diskeeper\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WS F;.WSH;.MSC
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 43 Stepping 1, AuthenticAMD
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=2b01
ProgramData=C:\ProgramData
ProgramFiles=C:\Program Files
PROMPT=$P$G
PUBLIC=C:\Users\Public
QTJAVA=C:\Program Files\QuickTime\QTSystem\QTJava.zip
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\Windows
TEMP=C:\Users\Michael\AppData\Local\Temp
TMP=C:\Users\Michael\AppData\Local\Temp
USERDOMAIN=Michael-PC
USERNAME=Michael
USERPROFILE=C:\Users\Michael
windir=C:\Windows
-- User Profiles ----------------------------------------------------------------
Michael [I](admin)
Jens
ThaSleejR (new local, admin, net ready)
-- Add/Remove Programs ----------------------------------------------------------
--> C:\Windows\UNNeroBackItUp.exe /UNINSTALL
--> C:\Windows\UNNeroMediaHome.exe /UNINSTALL
--> C:\Windows\UNNeroShowTime.exe /UNINSTALL
--> C:\Windows\UNNeroVision.exe /UNINSTALL
--> C:\Windows\UNRecode.exe /UNINSTALL
--> G:\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9
Acronis True Image Home --> MsiExec.exe /X{419CF344-3D94-4DAD-99C8-EA7B00E5EA8B}
Adobe Flash Player 9 ActiveX --> C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Photoshop CS --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\070 1\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x9
Apple Software Update --> MsiExec.exe /I{A50C25D7-62E9-4511-AD70-8E2DA5E79B7D}
Battlefield 2142 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\ 50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ED50ECE9-EC54-4C05-B5ED-EE4741A9F2EC}\setup.exe" -l0x13 -removeonly
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
CDDRV_Installer --> MsiExec.exe /I{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}
Creative Audio Console --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove
Creative Audio Processing Object Interface Module --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9 /remove
Diskeeper 2007 Pro Premier --> MsiExec.exe /X{46B7CB90-69F3-4FB5-A9B7-56AE1E02F53E}
Firefox Preloader --> g:\FirefoxPreloader\unins000.exe
Generic USB Card Reader Driver v2.0 --> C:\Windows\iun6002.exe "C:\Program Files\Generic\USB Card Reader Driver v2.0\irunin.ini"
Hallmark Card Studio 2006 Deluxe --> MsiExec.exe /X{3B901CB2-9DAF-43FC-BDD2-4149AF19381C}
HijackThis 1.99.1 --> G:\HIJACK~1\HijackThis.exe /uninstall
iTunes --> MsiExec.exe /I{446DBFFA-4088-48E3-8932-74316BA4CAE4}
Kaspersky Internet Security 6.0 --> MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}
Kaspersky Internet Security 6.0 --> MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}
KhalSetup --> MsiExec.exe /I{C89C8D86-4423-4A58-AA40-DD259ACE07C1}
LEC Translate --> MsiExec.exe /X{0C123C63-84FD-4D13-96E7-EEB5C11893F2}
LEC Translate DotNet --> MsiExec.exe /I{3A2CD9AA-1167-440E-8633-6435F76FCE2C}
Logitech SetPoint --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\ 00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x13 -removeonly
Microsoft Office Access MUI (English) 2007 --> MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007 --> MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Enterprise 2007 --> "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007 --> MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007 --> MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Groove MUI (English) 2007 --> MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}
Microsoft Office Groove Setup Metadata MUI (English) 2007 --> MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007 --> MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007 --> MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007 --> MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007 --> MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007 --> MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007 --> MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007 --> MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007 --> MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007 --> MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007 --> MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007 --> MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007 --> MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Mozilla Firefox (2.0.0.2) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB927978) --> MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
Nero 7 Ultra Edition --> MsiExec.exe /I{FC98FBE9-E931-494C-8717-497185371043}
NVIDIA Drivers --> C:\Windows\system32\NVUNINST.EXE UninstallGUI
OpenAL --> "C:\Program Files\OpenAL\OALInst.exe" /U
Paint.NET v3.0 --> MsiExec.exe /X{267AB309-8021-4CAE-9698-D9A0BEEF7FBA}
QuickTime --> MsiExec.exe /I{50D8FFDD-90CD-4859-841F-AA1961C7767A}
SpeedFan (remove only) --> "g:\SpeedFan\uninstall.exe"
Spybot - Search & Destroy 1.4 --> "g:\Spybot - Search & Destroy\unins000.exe"
Sunbelt CounterSpy --> MsiExec.exe /I{480F1C60-D071-43DC-973B-89AD7A35B4E2}
Total Overdose --> MsiExec.exe /X{051E7B99-6D35-4905-BAF3-740893EF657A}
Update for Outlook Junk Email Filter 2007 (KB924884) --> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F2A79AEA-5B0E-4AB9-A082-5680A86D1E00}
Windows Live Messenger --> MsiExec.exe /I{9816B8B8-4B53-4D3D-9235-AD931252001D}
Windows Live Sign-in Assistant --> MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
WinRAR archiver --> G:\WinRAR\uninstall.exe
Worms 4 Mayhem (remove only) --> "d:\Worms 4 Mayhem\Uninstall.exe"
-- End of ComboScan: finished at 2007-02-27 at 16:29:14 -------------------------
ComboScan v20070226.18 run by Michael on 2007-02-27 at 16:27:42
Supplementary logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information -----------------------------------------------------------
Microsoft® Windows Vista™ Ultimate (build 6000)
Architecture: X86; Language: English
CPU 0: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of Memory in Use: 59%
Physical Memory (total/avail): 1021.88 MiB / 415.84 MiB
Pagefile Memory (total/avail): 3297.38 MiB / 2318.63 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1950.04 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 19.87 GiB total, 4.57 GiB free.
D: is Fixed (NTFS) - 10.89 GiB total, 1.36 GiB free.
E: is Fixed (NTFS) - 103.26 GiB total, 19.4 GiB free.
F: is Fixed (NTFS) - 26.6 GiB total, 9.12 GiB free.
G: is Fixed (NTFS) - 29.29 GiB total, 13.9 GiB free.
H: is CDROM (No Media)
I: is Removable (No Media)
J: is Removable (No Media)
K: is Removable (No Media)
L: is Removable (No Media)
-- Security Center --------------------------------------------------------------
AUOptions is disabled.
Windows Internal Firewall is disabled.
FW: Kaspersky Internet Security v6.0.2.614 (??)
AV: Kaspersky Internet Security v6.0.2.614 (??) Disabled
AS: Windows Defender v1.1.1505.0 (Microsoft Corporation) Disabled
AS: Kaspersky Internet Security v6.0.2.614 (??) Disabled
AS: Sunbelt Software CounterSpy 2.01.0917 v2.01.0917 (Sunbelt Software) Disabled Outdated
-- Environment Variables --------------------------------------------------------
ALLUSERSPROFILE=C:\ProgramData
APPDATA=C:\Users\Michael\AppData\Roaming
CLASSPATH=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=MICHAEL-PC
ComSpec=C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Users\Michael
LOCALAPPDATA=C:\Users\Michael\AppData\Local
LOGONSERVER=\\MICHAEL-PC
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\Windows\system32;C:\Windows;C:\Windows\Sys tem32\Wbem;C:\Program Files\QuickTime\QTSystem\;G:\Diskeeper Corporation\Diskeeper\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WS F;.WSH;.MSC
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 43 Stepping 1, AuthenticAMD
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=2b01
ProgramData=C:\ProgramData
ProgramFiles=C:\Program Files
PROMPT=$P$G
PUBLIC=C:\Users\Public
QTJAVA=C:\Program Files\QuickTime\QTSystem\QTJava.zip
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\Windows
TEMP=C:\Users\Michael\AppData\Local\Temp
TMP=C:\Users\Michael\AppData\Local\Temp
USERDOMAIN=Michael-PC
USERNAME=Michael
USERPROFILE=C:\Users\Michael
windir=C:\Windows
-- User Profiles ----------------------------------------------------------------
Michael (admin)
Jens
ThaSleejR (new local, admin, net ready)
-- Add/Remove Programs ----------------------------------------------------------
--> C:\Windows\UNNeroBackItUp.exe /UNINSTALL
--> C:\Windows\UNNeroMediaHome.exe /UNINSTALL
--> C:\Windows\UNNeroShowTime.exe /UNINSTALL
--> C:\Windows\UNNeroVision.exe /UNINSTALL
--> C:\Windows\UNRecode.exe /UNINSTALL
--> G:\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9
Acronis True Image Home --> MsiExec.exe /X{419CF344-3D94-4DAD-99C8-EA7B00E5EA8B}
Adobe Flash Player 9 ActiveX --> C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Photoshop CS --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\070 1\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFB21DE7-8C19-4A88-BB28-A766E16493BC}\setup.exe" -l0x9
Apple Software Update --> MsiExec.exe /I{A50C25D7-62E9-4511-AD70-8E2DA5E79B7D}
Battlefield 2142 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\ 50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ED50ECE9-EC54-4C05-B5ED-EE4741A9F2EC}\setup.exe" -l0x13 -removeonly
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
CDDRV_Installer --> MsiExec.exe /I{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}
Creative Audio Console --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove
Creative Audio Processing Object Interface Module --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\ 01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AA9944C8-7D34-475E-8C90-2788685B2C47}\setup.exe" -l0x9 /remove
Diskeeper 2007 Pro Premier --> MsiExec.exe /X{46B7CB90-69F3-4FB5-A9B7-56AE1E02F53E}
Firefox Preloader --> g:\FirefoxPreloader\unins000.exe
Generic USB Card Reader Driver v2.0 --> C:\Windows\iun6002.exe "C:\Program Files\Generic\USB Card Reader Driver v2.0\irunin.ini"
Hallmark Card Studio 2006 Deluxe --> MsiExec.exe /X{3B901CB2-9DAF-43FC-BDD2-4149AF19381C}
HijackThis 1.99.1 --> G:\HIJACK~1\HijackThis.exe /uninstall
iTunes --> MsiExec.exe /I{446DBFFA-4088-48E3-8932-74316BA4CAE4}
Kaspersky Internet Security 6.0 --> MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}
Kaspersky Internet Security 6.0 --> MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}
KhalSetup --> MsiExec.exe /I{C89C8D86-4423-4A58-AA40-DD259ACE07C1}
LEC Translate --> MsiExec.exe /X{0C123C63-84FD-4D13-96E7-EEB5C11893F2}
LEC Translate DotNet --> MsiExec.exe /I{3A2CD9AA-1167-440E-8633-6435F76FCE2C}
Logitech SetPoint --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\ 00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x13 -removeonly
Microsoft Office Access MUI (English) 2007 --> MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007 --> MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Enterprise 2007 --> "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007 --> MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007 --> MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Groove MUI (English) 2007 --> MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}
Microsoft Office Groove Setup Metadata MUI (English) 2007 --> MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007 --> MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007 --> MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007 --> MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007 --> MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007 --> MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007 --> MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007 --> MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007 --> MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007 --> MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007 --> MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007 --> MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007 --> MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Mozilla Firefox (2.0.0.2) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB927978) --> MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
Nero 7 Ultra Edition --> MsiExec.exe /I{FC98FBE9-E931-494C-8717-497185371043}
NVIDIA Drivers --> C:\Windows\system32\NVUNINST.EXE UninstallGUI
OpenAL --> "C:\Program Files\OpenAL\OALInst.exe" /U
Paint.NET v3.0 --> MsiExec.exe /X{267AB309-8021-4CAE-9698-D9A0BEEF7FBA}
QuickTime --> MsiExec.exe /I{50D8FFDD-90CD-4859-841F-AA1961C7767A}
SpeedFan (remove only) --> "g:\SpeedFan\uninstall.exe"
Spybot - Search & Destroy 1.4 --> "g:\Spybot - Search & Destroy\unins000.exe"
Sunbelt CounterSpy --> MsiExec.exe /I{480F1C60-D071-43DC-973B-89AD7A35B4E2}
Total Overdose --> MsiExec.exe /X{051E7B99-6D35-4905-BAF3-740893EF657A}
Update for Outlook Junk Email Filter 2007 (KB924884) --> msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F2A79AEA-5B0E-4AB9-A082-5680A86D1E00}
Windows Live Messenger --> MsiExec.exe /I{9816B8B8-4B53-4D3D-9235-AD931252001D}
Windows Live Sign-in Assistant --> MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
WinRAR archiver --> G:\WinRAR\uninstall.exe
Worms 4 Mayhem (remove only) --> "d:\Worms 4 Mayhem\Uninstall.exe"
-- End of ComboScan: finished at 2007-02-27 at 16:29:14 -------------------------