info.txt logfile of random's system information tool 1.08 2010-11-19 23:35:37
======Uninstall list======
-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10k_A ctiveX.exe -maintain activex
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10l_P lugin.exe -maintain plugin
ASRock InstantBoot v1.24-->"C:\Program Files\ASRock Utility\InstantBoot\unins000.exe"
cFosSpeed v5.00-->"C:\Program Files\Topos\cFosSpeed\setup.exe" -uninstall
Cool Edit Pro 2.0-->C:\Program Files\coolpro2\cep2unin.exe
Error Repair Professional phiên bản 4.2.3-->"C:\Program Files\Error Repair Professional\unins000.exe"
FlashGet 3.5-->C:\Program Files\FlashGet Network\FlashGet 3\uninst.exe
Garena 2010-->C:\Program Files\Garena\uninst.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\ spuninst.exe"
Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
Internet Download Manager-->C:\Program Files\Internet Download Manager\Uninstall.exe
Kaspersky Internet Security 2011-->MsiExec.exe /I{66F1F013-008F-4875-B283-5A814B820347}
Kaspersky Internet Security 2011-->MsiExec.exe /I{66F1F013-008F-4875-B283-5A814B820347}
Kiem The 2.0.0-->"C:\Program Files\Vinagame\Kiem The\unins000.exe"
K-Lite Codec Pack 6.4.0 (Full)-->"C:\Program Files\K-Lite Codec Pack\unins000.exe"
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Mic rosoft .NET Framework 2.0\install.exe
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Mozilla Firefox (3.6.12)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Picasa 3-->"C:\Program Files\Google\Picasa3\Uninstall.exe"
REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\Setup.exe -runfromtemp -removeonly
Total Video Converter 3.50-->"C:\Program Files\Total Video Converter\unins000.exe"
VIA Platform Device Manager-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\I Driver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
Yahoo! Messenger-->C:\PROGRA~1\YAHOO!\MESSEN~1\UNWISE.EXE /S C:\PROGRA~1\YAHOO!\MESSEN~1\INSTALL.LOG
Yahoo! Search Protection-->C:\PROGRA~1\Yahoo!\SEARCH~1\UNINST~1.EXE
Yahoo! Software Update-->C:\PROGRA~1\Yahoo!\SOFTWA~1\UNINST~1.EXE
Yahoo! Toolbar-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE
======Security center information======
AV: Kaspersky Internet Security (disabled)
FW: Kaspersky Internet Security (disabled)
======System event log======
Computer Name: DL-FE5C40EC9D52
Event Code: 4199
Message: The system detected an address conflict for IP address 192.168.1.2 with the system
having network hardware address 44:87:FC:80:0D:C3. Network operations on this system may
be disrupted as a result.
Record Number: 4138
Source Name: Tcpip
Time Written: 20101105111655.000000+420
Event Type: error
User:
Computer Name: DL-FE5C40EC9D52
Event Code: 4199
Message: The system detected an address conflict for IP address 192.168.1.2 with the system
having network hardware address 44:87:FC:80:0D:C3. Network operations on this system may
be disrupted as a result.
Record Number: 4135
Source Name: Tcpip
Time Written: 20101105111655.000000+420
Event Type: error
User:
Computer Name: DL-FE5C40EC9D52
Event Code: 4199
Message: The system detected an address conflict for IP address 192.168.1.2 with the system
having network hardware address 44:87:FC:80:0D:C3. Network operations on this system may
be disrupted as a result.
Record Number: 4134
Source Name: Tcpip
Time Written: 20101105111655.000000+420
Event Type: error
User:
Computer Name: DL-FE5C40EC9D52
Event Code: 4199
Message: The system detected an address conflict for IP address 192.168.1.2 with the system
having network hardware address 44:87:FC:80:0D:C3. Network operations on this system may
be disrupted as a result.
Record Number: 4131
Source Name: Tcpip
Time Written: 20101105111653.000000+420
Event Type: error
User:
Computer Name: DL-FE5C40EC9D52
Event Code: 4199
Message: The system detected an address conflict for IP address 192.168.1.2 with the system
having network hardware address 44:87:FC:80:0D:C3. Network operations on this system may
be disrupted as a result.
Record Number: 4129
Source Name: Tcpip
Time Written: 20101105111653.000000+420
Event Type: error
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemR oot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;. WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
-----------------EOF-----------------
Logfile of random's system information tool 1.08 (written by random/random)
Run by dl at 2010-11-19 23:40:43
Microsoft Windows XP Professional Service Pack 2
System drive C: has 1 GB (7%) free of 20 GB
Total RAM: 1014 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:41:14 PM, on 11/19/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Topos\cFosSpeed\cFosSpeed.exe
C:\Program Files\Topos\cFosSpeed\spd.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ping.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtblfs.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
D:\game\RSIT_2.exe
C:\Program Files\trend micro\dl.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
You must be registered for see links
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: PK IE Plugin - {1E1B2879-88FF-11D3-8D96-D7ACAC95951A} - C:\WINDOWS\system32\bpkwb.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
O2 - BHO: FlashGetBHO - {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} - C:\Documents and Settings\dl\Application Data\FlashGetBHO\FlashGetBHO3.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingle Instance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"
O4 - HKLM\..\Run: [cFosSpeed] C:\Program Files\Topos\cFosSpeed\cFosSpeed.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O16 - DPF: {7FB87A62-C850-4FA8-A82F-A12468FEBC1F} (OnGameDownloader Control) -
You must be registered for see links
O17 - HKLM\System\CCS\Services\Tcpip\..\{51732043-0377-49A4-A2FB-1F50947CAD74}: NameServer = 192.168.1.1
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGR A~1\KASPER~1\KASPER~1\kloehk.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C:\Program Files\Topos\cFosSpeed\spd.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
--
End of file - 5122 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-04-26 193968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll [2009-09-20 1172280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{1E1B2879-88FF-11D3-8D96-D7ACAC95951A}]
IE Plugin Class - C:\WINDOWS\system32\bpkwb.dll [2009-11-16 40960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll [2010-07-01 68280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0}]
FlashGetBHO - C:\Documents and Settings\dl\Application Data\FlashGetBHO\FlashGetBHO3.dll [2010-05-11 144944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll [2010-07-01 191160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingle Instance.dll [2009-09-20 158008]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll [2009-09-20 1172280]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-09-16 150040]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-09-16 178712]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-09-16 150040]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-23 111856]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [2010-11-02 352976]
"cFosSpeed"=C:\Program Files\Topos\cFosSpeed\cFosSpeed.exe [2009-10-30 977624]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\KASPER~1\KASPER~1\mzvk bd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-09-11 217088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\WINDOWS\system32\klogon.dll [2010-07-01 228024]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\Curre ntVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer]
"NoDriveTypeAutoRun"=28
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:enabled
xpsp2res.dll,-22019"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Pro gram Files\Yahoo!\Messenger\YahooMessenger.exe:Enabled:Yahoo! Messenger"
"C:\Program Files\VTCGame\Fifa Online 2\FF2Client.exe"="C:\Program Files\VTCGame\Fifa Online 2\FF2Client.exe:Enabled:FIFA ONLINE"
"C:\Program Files\VTCGame\BoomSpeed\M01\NMService.exe"="C:\Pro gram Files\VTCGame\BoomSpeed\M01\NMService.exe:Enabled:Nexon Messenger Core"
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:Enabled:Flashget3"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:enabled
xpsp2res.dll,-22019"
======List of files/folders created in the last 1 months======
2010-11-19 23:35:02 ----D---- C:\Program Files\trend micro
2010-11-19 23:35:01 ----D---- C:\rsit
2010-11-18 22:55:49 ----A---- C:\WINDOWS\system32\drivers\cfosspeed.sys
2010-11-18 19:20:24 ----SHD---- C:\FOUND.001
2010-11-18 13:40:08 ----D---- C:\WINDOWS\Minidump
2010-11-18 13:40:04 ----SHD---- C:\FOUND.000
2010-11-18 11:35:27 ----A---- C:\WINDOWS\system32\kbdkor.dll
2010-11-18 11:35:27 ----A---- C:\WINDOWS\system32\kbdjpn.dll
2010-11-18 11:35:27 ----A---- C:\WINDOWS\system32\kbd106.dll
2010-11-18 11:35:27 ----A---- C:\WINDOWS\system32\kbd103.dll
2010-11-18 11:35:27 ----A---- C:\WINDOWS\system32\kbd101c.dll
2010-11-18 11:35:27 ----A---- C:\WINDOWS\system32\kbd101b.dll
2010-11-18 11:07:43 ----D---- C:\Program Files\ChineseGamer
2010-11-17 17:13:20 ----A---- C:\WINDOWS\libem.INI
2010-11-17 17:13:12 ----D---- C:\Documents and Settings\dl\Application Data\FlashGet
2010-11-17 17:13:10 ----D---- C:\Documents and Settings\dl\Application Data\BITS
2010-11-17 17:13:06 ----D---- C:\Documents and Settings\dl\Application Data\FlashGetBHO
2010-11-17 17:13:04 ----D---- C:\Program Files\FlashGet Network
2010-11-16 13:53:15 ----A---- C:\WINDOWS\system32\banner1.exe
2010-11-16 13:42:01 ----A---- C:\WINDOWS\system32\check.txt
2010-11-15 18:55:42 ----D---- C:\WINDOWS\system32\DT
2010-11-15 11:22:34 ----D---- C:\Program Files\Company
2010-11-14 07:30:37 ----D---- C:\Program Files\Vinagame
2010-11-14 00:15:21 ----A---- C:\WINDOWS\system32\ConduitEngine.tmp
2010-11-13 19:50:39 ----D---- C:\Program Files\MSECache
2010-11-09 21:01:18 ----D---- C:\Program Files\Google
2010-11-06 21:18:40 ----A---- C:\WINDOWS\XPva03.dll
2010-11-06 21:15:23 ----D---- C:\onGame
2010-11-06 00:13:36 ----D---- C:\Documents and Settings\dl\Application Data\MiniDm
2010-11-05 21:16:14 ----D---- C:\Log
2010-11-05 11:16:02 ----D---- C:\Program Files\Error Repair Professional
2010-11-02 11:18:47 ----D---- C:\Program Files\Kaspersky Lab
2010-11-02 11:18:47 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2010-11-02 11:18:40 ----A---- C:\WINDOWS\system32\drivers\klif.sys
2010-11-02 11:16:11 ----D---- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2010-10-28 18:20:24 ----D---- C:\Program Files\VTCGame
2010-10-27 12:08:56 ----D---- C:\Documents and Settings\dl\Application Data\IEPro
2010-10-24 20:45:59 ----D---- C:\Documents and Settings\All Users\Application Data\Piget
2010-10-24 20:44:46 ----RSD---- C:\WINDOWS\assembly
2010-10-24 20:44:35 ----D---- C:\WINDOWS\Microsoft.NET
2010-10-23 23:12:12 ----D---- C:\Program Files\Lineage II GraciaVH
2010-10-22 23:27:55 ----D---- C:\WINDOWS\system32\appmgmt
2010-10-22 22:59:27 ----D---- C:\Documents and Settings\dl\Application Data\uTorrent
======List of files/folders modified in the last 1 months======
2010-11-19 15:16:06 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-19 11:42:56 ----A---- C:\WINDOWS\cFosSpeed_Setup_Log.txt
2010-11-18 19:21:10 ----A---- C:\WINDOWS\OEWABLog.txt
2010-11-18 18:19:40 ----A---- C:\WINDOWS\imsins.BAK
2010-11-18 10:27:58 ----A---- C:\WINDOWS\system.ini
2010-11-17 12:26:30 ----A---- C:\WINDOWS\FOV2.ini
2010-11-06 19:38:00 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-10-30 16:34:08 ----A---- C:\WINDOWS\win.ini
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 KL1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2010-06-09 132184]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 36096]
R1 kl2;kl2; C:\WINDOWS\system32\DRIVERS\kl2.sys [2010-06-09 11352]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2010-11-02 475736]
R3 cFosSpeed;cFosSpeed Miniport; C:\WINDOWS\system32\DRIVERS\cfosspeed.sys [2009-10-30 872152]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-09-11 6047904]
R3 klim5;Kaspersky Anti-Virus NDIS Filter; C:\WINDOWS\system32\DRIVERS\klim5.sys [2010-05-07 32856]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2009-11-02 19472]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-07-28 143360]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2009-11-25 1617408]
S3 AMBFilt;AMBFilt; C:\WINDOWS\system32\drivers\AMBFilt.sys [2009-06-26 1656960]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 EagleNT;EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys []
S3 GarenaPEngine;GarenaPEngine; \??\C:\DOCUME~1\dl\LOCALS~1\Temp\IVF11.tmp []
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena\safedrv.sys []
S3 MonFilt;MonFilt; C:\WINDOWS\system32\drivers\MonFilt.sys [2008-12-02 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 usbvideo;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2004-08-03 78464]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 XDva349;XDva349; \??\C:\WINDOWS\system32\XDva349.sys []
S3 XDva362;XDva362; \??\C:\WINDOWS\system32\XDva362.sys []
S3 XDva366;XDva366; \??\C:\WINDOWS\system32\XDva366.sys []
S3 XDva368;XDva368; \??\C:\WINDOWS\system32\XDva368.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 cFosSpeedS;cFosSpeed System Service; C:\Program Files\Topos\cFosSpeed\spd.exe [2009-10-30 415960]
R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-10 602392]
S2 AVP;Kaspersky Anti-Virus Service; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [2010-11-02 352976]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-10-16 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspn et_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe [2005-09-23 66240]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2010-02-25 3432444]
-----------------EOF-----------------