SystemLook 30.07.11 by jpshortstuff Log created at 02:55 on 08/06/2012 by MiBosz Administrator - Elevation successful ========== reg ========== [HKEY_CURRENT_USER\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}] (No values found) [HKEY_CURRENT_USER\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InprocServer32] "ThreadingModel"="Both" @="C:\Users\MiBosz\AppData\Local\{0470921c-4089-477e-d9fc-9c133856bdfd}\n." [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}] @="Microsoft WBEM New Event Subsystem" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32] @="\\.\globalroot\systemroot\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\n." "ThreadingModel"="Both" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}] @="MruPidlList" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] @="%SystemRoot%\system32\shell32.dll" "ThreadingModel"="Apartment" ========== filefind ========== Searching for "services.exe" C:\Windows\System32\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe --a---- 328704 bytes [23:19 13/07/2009] [01:39 14/07/2009] 24ACB7E5BE595468E3B9AA488B9B4FCB Searching for "*.@" C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\L\00000004.@ --a---- 740 bytes [21:09 26/05/2012] [13:50 07/06/2012] B791853E7FA03AD205D24944C9DC4DB3 C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\L\00000008.@ --a---- 231936 bytes [21:14 26/05/2012] [13:55 07/06/2012] 64645E81435058738C137A67DF84A5C5 C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\U\00000004.@ --a---- 1536 bytes [21:09 26/05/2012] [21:44 06/06/2012] 8F73E3865A18D152B7D5BA7A7674906C C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\U\00000008.@ --a---- 232960 bytes [21:09 26/05/2012] [21:09 26/05/2012] 77CA54DD6CD4E6283384AF74332BA1E7 C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\U\000000cb.@ --a---- 1584 bytes [21:09 26/05/2012] [21:09 26/05/2012] 896C0E98EF83A94139B1E1F148CA37E9 C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\U\80000000.@ --a---- 16896 bytes [21:09 26/05/2012] [21:09 26/05/2012] 3BA69999F27F85670CFA627204427584 C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\U\80000032.@ --a---- 93696 bytes [21:09 26/05/2012] [06:01 05/06/2012] F2A0C085F4A21754DD5FC9CDAF59D462 C:\Windows\Installer\{0470921c-4089-477e-d9fc-9c133856bdfd}\U\80000064.@ --a---- 76800 bytes [21:09 26/05/2012] [21:09 26/05/2012] 07A0849128FEB54856BBC3437A195A24 -= EOF =-