Hi
I have recomended to use your site to sort out my computer problem, as iv not done this sort of thing before hope I get it all right.

My computer seems lately to run very slow and keeps filling my tempory file very quickly even when im not on line.
Norton regularly tells me it has cleaned an infection called Bloodhound exploit 106 but this keeps reoccuring. I was advised to turn off system restore but have read on your site this is not a good idea but when I did look at doing this (before reading your site) I found it was not possable as the check box was grey'd out and the proportion of of hard drive was moved to max, don't know if this is significant or not.

My log file is below, hope you can help

Thanks

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:44:06, on 14/11/08
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Office keyboard utility\1.1\nhksrv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Common Files\EPSON\eEBAPI\SAgent2.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\lxdxcoms.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Webroot\Washer\WasherSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Office keyboard utility\1.1\OFFICEKB.exe
C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
C:\Program Files\Lexmark 3600-4600 Series\lxdxMsdMon.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Office keyboard utility\1.1\MMKEYB.EXE
C:\Program Files\Webroot\Washer\wwDisp.exe
C:\Program Files\Office keyboard utility\1.1\TrayMon.exe
C:\Program Files\Office keyboard utility\1.1\osd.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = "C:\Program Files\Outlook Express\msimn.exe"
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Wanadoo
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [FLMOFFICEKEYBOARD] "C:\Program Files\Office keyboard utility\1.1\OFFICEKB.exe"
O4 - HKLM\..\Run: [lxdxmon.exe] "C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe"
O4 - HKLM\..\Run: [lxdxamon] "C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe"
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe" /startintray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [Window Washer] "C:\Program Files\Webroot\Washer\wwDisp.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [] (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [] (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [] (User 'Default user')
O4 - Global Startup: AutorunsDisabled
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Search with Wanadoo - res://C:\PROGRA~1\Wanadoo\WSBar\WSBar.dll/VSearch.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - http://www.musicnotes.com/download/mnviewer.cab
O16 - DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} (AxProdInfoCtl Class) - http://www.symantec.com/techsupp/activedata/nprdtinf.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1124052369328
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {DA8484DE-52DB-4860-A986-61A8682E298A} (LiveX_v7.0.2.0) - http://gwithian.dipmap.com/cab/OCXChecker_6110.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\eEBAPI\SAgent2.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: KService - Kontiki Inc. - C:\Program Files\Kontiki\KService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: lxdxCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdxserv.exe
O23 - Service: lxdx_device - - C:\WINDOWS\system32\lxdxcoms.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Program Files\Office keyboard utility\1.1\nhksrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: Window Washer Engine (wwEngineSvc) - Webroot Software, Inc. - C:\Program Files\Webroot\Washer\WasherSvc.exe
O24 - Desktop Component 0: (no name) - http://www.lighthouse-media.co.uk/Gwithian%20Lines/Daily%20Images/dec28.jpg

--
End of file - 11624 bytes

Hi Jamie Rail

Download random's system information tool (RSIT) by random/random from here (http://images.malwareremoval.com/random/RSIT.exe) and save it to your desktop.
Double click on RSIT.exe to run RSIT.
Click Continue at the disclaimer screen.
Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

Thanks for your response, i have tried to post both at once but am told they are too big so will try to do them seperatly

Many thanks

Jamie

info.txt logfile of random's system information tool 1.04 2008-11-18 21:30:40

======Uninstall list======

-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 4.57-->"C:\Program Files\7-Zip\Uninstall.exe"
ABBYY FineReader 6.0 Sprint-->MsiExec.exe /X{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
AppCore-->MsiExec.exe /I{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}
Apple Software Update-->MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
ArcSoft PhotoImpression-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6C5D7191-140A-11D6-B5A0-0050DA208A93}\SETUP.EXE" -l0x9 -uninst
Assessing the Workplace Provider Training Tool-->"C:\Program Files\Dynamic Distance Learning\AWETT\unins000.exe"
AV-->MsiExec.exe /I{F4DB525F-A986-4249-B98B-42A8066251CA}
AVG Free 8.0-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
BBC iPlayer Download Manager-->MsiExec.exe /I {D466F3D9-510C-4729-B7D4-2E70490E4CDF}
BEHRINGER USB AUDIO DRIVER-->C:\WINDOWS\usb-audio.deBehringer2902\Setup.exe /l1
Bluetooth Stack for Windows-->MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}
ccCommon-->MsiExec.exe /I{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}
C-Media 3D Audio-->C:\WINDOWS\CMIUnInstall.exe
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
Dance eJay 2.0 Demo-->C:\games\DANCEE~1.0DE\UNWISE.EXE C:\games\DANCEE~1.0DE\INSTALL.LOG
Driver Detective-->C:\Program Files\InstallShield Installation Information\{621C02EA-AAFF-4026-A903-165D59529A16}\setup.exe -runfromtemp -l0x0409
Drug Lord 2-->C:\Program Files\Drug Lord 2\druglord2.exe remove
DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
Empire Earth Demo-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2447500B-22D7-47BD-9B13-1A927F43A267}\Setup.exe"
EPSON Printer Software-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
getPlus(R)_ocx-->rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\inf\GETPLUSo.INF, DefaultUninstall
Google Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}
guidesaverxp Screen Saver-->guidesaverxp /u
Guitar Pro 5.2-->"C:\Program Files\Guitar Pro 5\unins000.exe"
hh_screensaver_2-->C:\WINDOWS\hh_screensaver_2.scr /u
HH_screensaver_v3-->C:\WINDOWS\HH_screensaver_v3.scr /u
HighGrow-->C:\games\highgr30\HighGrow\UNGROW.EXE C:\games\highgr30\HighGrow\INSTALL.LOG
HighMAT Extension to Microsoft Windows XP CD Writing Wizard-->MsiExec.exe /X{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
InCD-->C:\WINDOWS\NuNInst.exe /UNINSTALL
Intel(R) 536EP Modem-->rundll32 IntelSdi.dll,iSMUninstallation "Intel(R) 536EP Modem"
Internet Worm Protection-->MsiExec.exe /I{2908F0CB-C1D4-447F-97A2-CFC135C9F8D4}
InterVideo DVDCopy-->"C:\Program Files\InstallShield Installation Information\{DD28F8FE-CC0B-47BD-A833-CBBC19D6A8E2}\setup.exe" --u:{DD28F8FE-CC0B-47BD-A833-CBBC19D6A8E2}
InterVideo WinDVD Creator 2-->"C:\Program Files\InstallShield Installation Information\{2FCE4FC5-6930-40E7-A4F1-F862207424EF}\setup.exe" REMOVEALL
InterVideo WinDVD Recorder 5-->"C:\Program Files\InstallShield Installation Information\{0B168FED-B9EC-4DA8-AC17-9A41F284640B}\setup.exe" REMOVEALL
iPhoto Plus 4-->C:\WINDOWS\uninst.exe -f"C:\Program Files\iPhoto Plus 4\DeIsL1.isu"
J2SE Runtime Environment 5.0 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150010}
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
J2SE Runtime Environment 5.0 Update 9-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Lexmark 3600-4600 Series-->C:\Program Files\Lexmark 3600-4600 Series\Install\x86\Uninst.exe
LiveUpdate 3.1 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation)-->MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
LSP Explorer plug-in for Ad-Aware SE-->C:\PROGRA~1\Lavasoft\AD-AWA~2\Plugins\LSPEXP~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~2\Plugins\LSPEXP~1\INSTALL.LOG
M-->C:\Program Files\MidiType\U
Macromedia Dreamweaver MX-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8B4AB829-DFD3-436D-B808-D9733D76C590}\Setup.exe" -l0x9 mmUninstall
Macromedia Extension Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}\setup.exe" -l0x9 mmUninstall
Map Button (Windows Live Toolbar)-->MsiExec.exe /X{7745B7A9-F323-4BB9-9811-01BF57A028DA}
Media Library Management Wizard-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\mplibwiz.inf,DefaultUninstall
Messenger-Control plug-in for Ad-Aware SE-->C:\PROGRA~1\Lavasoft\AD-AWA~2\Plugins\MESSEN~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~2\Plugins\MESSEN~1\INSTALL.LOG
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft Age of Empires II: The Conquerors Expansion-->"C:\games\age\UNINSTALX.EXE" /runtemp /addremove
Microsoft Age of Empires II-->"C:\games\age\UNINSTAL.EXE" /runtemp /uninstall
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Microsoft Outlook Personal Folders Backup-->MsiExec.exe /X{C63E7C60-25EB-11D3-8EDA-00A0C911E8E5}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Movie Maker Background Music Files-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\mmmusic.inf,DefaultUninstall
Movie Maker Sound Effects-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\mmsounds.inf,DefaultUninstall
Movie Maker Title Images-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\mmtitle.inf,DefaultUninstall
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6 Service Pack 2 (KB954459)-->MsiExec.exe /I{1A528690-6A2D-4BC5-B143-8C4AE8D19D96}
Native Instruments Guitar Combo III-->C:\PROGRA~1\NATIVE~1\GUITAR~1\GUITAR~3\UNWISE.EXE C:\PROGRA~1\NATIVE~1\GUITAR~1\GUITAR~3\INSTALL.LOG
Native Instruments Guitar Combos Behringer Edition-->C:\PROGRA~1\NATIVE~1\GUITAR~1\UNWISE.EXE C:\PROGRA~1\NATIVE~1\GUITAR~1\INSTALL.LOG
Nero 6 Ultra Edition-->C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
Nero Media Player-->C:\WINDOWS\UNNMP.exe /UNINSTALL
NeroVision Express 3-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
NeroVision Express Content-->C:\WINDOWS\UNNVEContent.exe /UNINSTALL
Norton AntiVirus (Symantec Corporation)-->"C:\Program Files\Common Files\Symantec Shared\SymSetup\{830D8CBD-C668-49e2-A969-C2C2106332E0}_14_0_0_89\{830D8CBD-C668-49e2-A969-C2C2106332E0}.exe" /X
Norton AntiVirus Help-->MsiExec.exe /I{34EEB1F5-E939-40A1-A6BA-957282A4B2C8}
Norton AntiVirus Parent MSI-->MsiExec.exe /I{E5EE9939-259F-4DE2-8023-5C49E16A4F43}
Norton AntiVirus SYMLT MSI-->MsiExec.exe /I{D1FF75E7-DD42-4CFD-B052-20B3FFF4EDB8}
Norton AntiVirus-->MsiExec.exe /X{830D8CBD-C668-49e2-A969-C2C2106332E0}
Norton Ghost 9.0-->MsiExec.exe /X{3C759736-8347-4031-BB9C-D75ADFE6B101}
Norton Protection Center-->MsiExec.exe /I{9A129ABC-A53A-4209-A21E-D5DEDFB7CCA8}
NVIDIA Display Driver-->C:\WINDOWS\System32\nvudisp.exe Uninstall C:\WINDOWS\System32\nvdisp.nvu,NVIDIA Display Driver
Office keyboard utility 1.1-->C:\Program Files\Office keyboard utility\1.1\uninst00.exe
OneCare Advisor (Windows Live Toolbar)-->MsiExec.exe /X{53B2CFE9-A508-4457-B2CA-5D253536BFB7}
OpenMG Secure Module 3.4.00-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{657DD6DA-B07B-40FF-9DBD-2116F7E83CF6}\setup.exe" -l0x9 UNINSTALL
PCFriendly-->C:\Program Files\PCFriendly\inuninst.exe
PDFCreator-->"C:\Program Files\PDFCreator\unins000.exe"
Personal License Update Wizard for Windows Media Player-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\drmtool.inf,DefaultUninstall
Plus! MP3 Audio Converter LE-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\audcle.inf,DefaultUninstall
Popup Blocker (Windows Live Toolbar)-->MsiExec.exe /X{66A7A386-6F35-41A7-A731-101F0C0153C8}
Power Tab Editor 1.7-->MsiExec.exe /I{6B3CA80E-6AC0-4725-BABF-9B0FEF880CB3}
QuickTime-->MsiExec.exe /I{E0D51394-1D45-460A-B62D-383BC4F8B335}
RealPlayer-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Registry Mechanic-->"C:\Program Files\Registry Mechanic\unins000.exe"
Roll-->C:\WINDOWS\UniFish3.exe C:\Program Files\Hasbro Interactive\RollerCoaster Tycoon\RollerCoaster Tycoon.log
ScanToWeb-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}\setup.exe" ADDREMOVEDLG
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Security Update for Windows Media Encoder (KB954156)-->"C:\WINDOWS\$NtUninstallKB954156_WM9L$\spuninst\spuninst.exe"
Security Update for Windows Media Player 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Security Update for Windows Media Player 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Security Update for Windows Media Player 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Security Update for Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Security Update for Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Shockwave-->C:\WINDOWS\system32\Macromed\SHOCKW~2\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~2\Install.log
SiS 900 PCI Fast Ethernet Adapter Driver-->C:\Progra~1\SiSLan\Uninst.exe
Smart Menus (Windows Live Toolbar)-->MsiExec.exe /X{F084395C-40FB-4DB3-981C-B51E74E1E83D}
SonicStage 2.0.00-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{71D6CE84-B7DC-4166-8E0D-56C1C37BFB5A}\setup.exe" -l0x9 UNINSTALL
SPBBC 32bit-->MsiExec.exe /I{77772678-817F-4401-9301-ED1D01A8DA56}
SpeedTouch USB Software-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D41FAAA9-8048-4906-86B2-9AADEA1FA0B7}\Setup.exe" /l0009 -Control_Panel
Spy Sweeper-->"C:\Program Files\Webroot\Spy Sweeper\unins000.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins001.exe"
Symantec-->MsiExec.exe /I{228F6876-A313-40A3-91C0-C3CBE6997D09}
SymNet-->MsiExec.exe /I{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}
TomTom HOME-->C:\Program Files\TomTom HOME 2\Uninstall TomTom HOME.exe
Ulead Disc-Direct SDK-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8D2C1E44-7685-4D05-8342-B0DC6422FA47}\Setup.exe" -l0x9
Ulead DVD MovieFactory 2.5 SE-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{88F93347-0F9B-4FED-BA71-6C2A4CDFE61D}\setup.exe" -l0x9
Ulead VideoStudio 7 SE DVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{757AD3D4-036B-42FA-B0A4-96BD6F4605A0}\setup.exe" -l0x9
Unreal Tournament 2004 Demo-->C:\games\unreal\System\Setup.exe uninstall "UT2004-Demo"
Update for Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
VC_MergeModuleToMSI-->MsiExec.exe /I{900A92BA-19EF-4A34-86CF-7B6C85BDD971}
VX2 Cleaner plug-in for Ad-Aware SE-->C:\PROGRA~1\Lavasoft\AD-AWA~2\Plugins\VX2CLE~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~2\Plugins\VX2CLE~1\INSTALL.LOG
Window Washer-->C:\WINDOWS\Unwash6.exe
Windows Defender-->MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401}
Windows Genuine Advantage v1.3.0254.0-->MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
Windows Live Favorites for Windows Live Toolbar-->MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live Messenger-->MsiExec.exe /I{571700F0-DB9D-4B3A-B03D-35A14BB5939F}
Windows Live Outlook Toolbar (Windows Live Toolbar)-->MsiExec.exe /X{35E1A8C8-6646-4101-B0AA-42D1EB2AB3AE}
Windows Live Sign-in Assistant-->MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
Windows Live Toolbar Extension (Windows Live Toolbar)-->MsiExec.exe /X{341201D4-4F61-4ADB-987E-9CCE4D83A58D}
Windows Live Toolbar Feed Detector (Windows Live Toolbar)-->MsiExec.exe /X{68108E66-D13A-4EE8-A6F4-40E4B90C2A26}
Windows Live Toolbar-->"C:\Program Files\Windows Live Toolbar\UnInstall.exe" {D5A145FC-D00C-4F1A-9119-EB4D9D659750}
Windows Live Toolbar-->MsiExec.exe /X{D5A145FC-D00C-4F1A-9119-EB4D9D659750}
Windows Media Connect-->msiexec.exe /I {F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B}
Windows Media Connect-->MsiExec.exe /I{F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B}
Windows Media Encoder 9 Series-->msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Windows Media Encoder 9 Series-->MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format SDK Hotfix - KB891122-->"C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe"
Windows Media Player 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinFast Entertainment Center(WDM Driver)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BE4AA694-815A-4045-BD49-C94F2BED7458}\setup.exe"
WinFast PVR-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C882DE6B-1482-42D6-A7C2-A9F946EDBAF6}\setup.exe"
WWRY Screensaver-->C:\WINDOWS\system32\WWRYSC~1.SCR /UNINSTALL "C:\WINDOWS\system32\WWRY Screensaver.log"

=====HijackThis Backups=====

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe" /startintray
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [SpybotSD TeaTimer] "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKCU\..\Run: [Window Washer] "C:\Program Files\Webroot\Washer\wwDisp.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O2 - BHO: Need2Find Bar BHO - {4D1C4E81-A32A-416b-BCDB-33B3EF3617D3} - blank (file missing)
R3 - URLSearchHook: (no name) - {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O16 - DPF: {0A50726E-51A2-42BB-8392-98F050C40A10} (SkillJamLoader Class) - http://skill.skilljam.com/ssp/SkillJamLoader.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1DB93715-3B60-43EE-93E6-279BB3E1DF76} (OCXDownloadChecker Control) - http://81.137.207.178/cab/OCXChecker_6100.cab
O16 - DPF: {7CA3D0A3-7E2E-4AAB-A75E-FAB8ECA8BD95} (Skilljam Game Player Object) - http://skill.skilljam.com/ssp/SSP.cab
O16 - DPF: {A243F6C2-34D2-4549-BCCD-A7BEF759B236} (Seekford Solutions, Inc.'s ssiPictureUploader Control) - http://img.funtigo.com/images/uploader/ssiPictureUploader.cab
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Symantec\Norton Ghost\Agent\PQV2iSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: AVG Anti-Virus Free
AV: Spy Sweeper with AntiVirus
AV: Norton AntiVirus
FW: Norton AntiVirus

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Common Files\Ulead Systems\MPEG;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 10 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=0a00
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"FP_NO_HOST_CHECK"=NO
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

-----------------EOF-----------------

Here is the second file my computer also keeps telling me that it is low on vertual memory, dont know if this helps.
still being told this file is too big so this is the secong half
Many thanks

Jamie




2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\defrag.exe
2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\ddrawex.dll
2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\ddraw.dll
2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\ddeshare.exe
2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\dciman32.dll
2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\dbnmpntw.dll
2008-11-12 05:15:59 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2008-11-12 05:15:58 ----A---- C:\WINDOWS\system32\dfsshlex.dll
2008-11-12 05:15:58 ----A---- C:\WINDOWS\system32\dfrgui.dll
2008-11-12 05:15:58 ----A---- C:\WINDOWS\system32\dfrgsnap.dll
2008-11-12 05:15:58 ----A---- C:\WINDOWS\system32\dfrgntfs.exe
2008-11-12 05:15:58 ----A---- C:\WINDOWS\system32\dfrgfat.exe
2008-11-12 05:15:58 ----A---- C:\WINDOWS\system32\devmgr.dll
2008-11-12 05:15:58 ----A---- C:\WINDOWS\system32\devenum.dll
2008-11-12 05:15:57 ----A---- C:\WINDOWS\system32\dinput8.dll
2008-11-12 05:15:57 ----A---- C:\WINDOWS\system32\dinput.dll
2008-11-12 05:15:57 ----A---- C:\WINDOWS\system32\digest.dll
2008-11-12 05:15:57 ----A---- C:\WINDOWS\system32\diantz.exe
2008-11-12 05:15:57 ----A---- C:\WINDOWS\system32\dhcpmon.dll
2008-11-12 05:15:57 ----A---- C:\WINDOWS\system32\dgnet.dll
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\dmdlgs.dll
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\dmcompos.dll
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\dmband.dll
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\dmadmin.exe
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\dllhost.exe
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\dispex.dll
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\diskpart.exe
2008-11-12 05:15:56 ----A---- C:\WINDOWS\system32\diskcopy.dll
2008-11-12 05:15:55 ----A---- C:\WINDOWS\system32\dmstyle.dll
2008-11-12 05:15:55 ----A---- C:\WINDOWS\system32\dmserver.dll
2008-11-12 05:15:55 ----A---- C:\WINDOWS\system32\dmscript.dll
2008-11-12 05:15:55 ----A---- C:\WINDOWS\system32\dmremote.exe
2008-11-12 05:15:55 ----A---- C:\WINDOWS\system32\dmloader.dll
2008-11-12 05:15:55 ----A---- C:\WINDOWS\system32\dmime.dll
2008-11-12 05:15:55 ----A---- C:\WINDOWS\system32\dmdskmgr.dll
2008-11-12 05:15:54 ----A---- C:\WINDOWS\system32\dplaysvr.exe
2008-11-12 05:15:54 ----A---- C:\WINDOWS\system32\docprop2.dll
2008-11-12 05:15:54 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2008-11-12 05:15:54 ----A---- C:\WINDOWS\system32\dnsapi.dll
2008-11-12 05:15:54 ----A---- C:\WINDOWS\system32\dmutil.dll
2008-11-12 05:15:54 ----A---- C:\WINDOWS\system32\dmusic.dll
2008-11-12 05:15:54 ----A---- C:\WINDOWS\system32\dmsynth.dll
2008-11-12 05:15:53 ----A---- C:\WINDOWS\system32\dpnlobby.dll
2008-11-12 05:15:53 ----A---- C:\WINDOWS\system32\dpnhupnp.dll
2008-11-12 05:15:53 ----A---- C:\WINDOWS\system32\dpnhpast.dll
2008-11-12 05:15:53 ----A---- C:\WINDOWS\system32\dpnet.dll
2008-11-12 05:15:53 ----A---- C:\WINDOWS\system32\dpnaddr.dll
2008-11-12 05:15:53 ----A---- C:\WINDOWS\system32\dpmodemx.dll
2008-11-12 05:15:53 ----A---- C:\WINDOWS\system32\dplayx.dll
2008-11-12 05:15:52 ----A---- C:\WINDOWS\system32\drprov.dll
2008-11-12 05:15:52 ----A---- C:\WINDOWS\system32\dpwsockx.dll
2008-11-12 05:15:52 ----A---- C:\WINDOWS\system32\dpvvox.dll
2008-11-12 05:15:52 ----A---- C:\WINDOWS\system32\dpvsetup.exe
2008-11-12 05:15:52 ----A---- C:\WINDOWS\system32\dpvoice.dll
2008-11-12 05:15:52 ----A---- C:\WINDOWS\system32\dpvacm.dll
2008-11-12 05:15:52 ----A---- C:\WINDOWS\system32\dpnsvr.exe
2008-11-12 05:15:51 ----A---- C:\WINDOWS\system32\dsound.dll
2008-11-12 05:15:51 ----A---- C:\WINDOWS\system32\dskquoui.dll
2008-11-12 05:15:51 ----A---- C:\WINDOWS\system32\dskquota.dll
2008-11-12 05:15:51 ----A---- C:\WINDOWS\system32\dsdmoprp.dll
2008-11-12 05:15:51 ----A---- C:\WINDOWS\system32\dsdmo.dll
2008-11-12 05:15:51 ----A---- C:\WINDOWS\system32\ds32gt.dll
2008-11-12 05:15:50 ----A---- C:\WINDOWS\system32\dswave.dll
2008-11-12 05:15:50 ----A---- C:\WINDOWS\system32\dsuiext.dll
2008-11-12 05:15:50 ----A---- C:\WINDOWS\system32\dssenh.dll
2008-11-12 05:15:50 ----A---- C:\WINDOWS\system32\dssec.dll
2008-11-12 05:15:50 ----A---- C:\WINDOWS\system32\dsquery.dll
2008-11-12 05:15:50 ----A---- C:\WINDOWS\system32\dsprop.dll
2008-11-12 05:15:50 ----A---- C:\WINDOWS\system32\dsound3d.dll
2008-11-12 05:15:49 ----A---- C:\WINDOWS\system32\dx8vb.dll
2008-11-12 05:15:49 ----A---- C:\WINDOWS\system32\dx7vb.dll
2008-11-12 05:15:49 ----A---- C:\WINDOWS\system32\dwwin.exe
2008-11-12 05:15:49 ----A---- C:\WINDOWS\system32\dvdupgrd.exe
2008-11-12 05:15:49 ----A---- C:\WINDOWS\system32\duser.dll
2008-11-12 05:15:49 ----A---- C:\WINDOWS\system32\dumprep.exe
2008-11-12 05:15:48 ----A---- C:\WINDOWS\system32\esent.dll
2008-11-12 05:15:48 ----A---- C:\WINDOWS\system32\es.dll
2008-11-12 05:15:48 ----A---- C:\WINDOWS\system32\ersvc.dll
2008-11-12 05:15:48 ----A---- C:\WINDOWS\system32\els.dll
2008-11-12 05:15:48 ----A---- C:\WINDOWS\system32\dxmasf.dll
2008-11-12 05:15:48 ----A---- C:\WINDOWS\system32\dxdiag.exe
2008-11-12 05:15:47 ----A---- C:\WINDOWS\system32\feclient.dll
2008-11-12 05:15:47 ----A---- C:\WINDOWS\system32\faultrep.dll
2008-11-12 05:15:47 ----A---- C:\WINDOWS\system32\exts.dll
2008-11-12 05:15:47 ----A---- C:\WINDOWS\system32\extrac32.exe
2008-11-12 05:15:47 ----A---- C:\WINDOWS\system32\expsrv.dll
2008-11-12 05:15:47 ----A---- C:\WINDOWS\system32\eventlog.dll
2008-11-12 05:15:47 ----A---- C:\WINDOWS\system32\eudcedit.exe
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\framebuf.dll
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\forcedos.exe
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\fontview.exe
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\fontsub.dll
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\fontext.dll
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\fldrclnr.dll
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\findstr.exe
2008-11-12 05:15:46 ----A---- C:\WINDOWS\system32\filemgmt.dll
2008-11-12 05:15:45 ----A---- C:\WINDOWS\system32\fxsevent.dll
2008-11-12 05:15:45 ----A---- C:\WINDOWS\system32\fxsdrv.dll
2008-11-12 05:15:45 ----A---- C:\WINDOWS\system32\fxscover.exe
2008-11-12 05:15:45 ----A---- C:\WINDOWS\system32\fxscomex.dll
2008-11-12 05:15:45 ----A---- C:\WINDOWS\system32\fxscom.dll
2008-11-12 05:15:45 ----A---- C:\WINDOWS\system32\fxsclnt.exe
2008-11-12 05:15:45 ----A---- C:\WINDOWS\system32\fxsapi.dll
2008-11-12 05:15:44 ----A---- C:\WINDOWS\system32\fxst30.dll
2008-11-12 05:15:44 ----A---- C:\WINDOWS\system32\fxssvc.exe
2008-11-12 05:15:44 ----A---- C:\WINDOWS\system32\fxsst.dll
2008-11-12 05:15:44 ----A---- C:\WINDOWS\system32\fxsres.dll
2008-11-12 05:15:44 ----A---- C:\WINDOWS\system32\fxsperf.dll
2008-11-12 05:15:44 ----A---- C:\WINDOWS\system32\fxsmon.dll
2008-11-12 05:15:44 ----A---- C:\WINDOWS\system32\fxsext32.dll
2008-11-12 05:15:43 ----A---- C:\WINDOWS\system32\gpkrsrc.dll
2008-11-12 05:15:43 ----A---- C:\WINDOWS\system32\glu32.dll
2008-11-12 05:15:43 ----A---- C:\WINDOWS\system32\gdi32.dll
2008-11-12 05:15:43 ----A---- C:\WINDOWS\system32\fxsxp32.dll
2008-11-12 05:15:43 ----A---- C:\WINDOWS\system32\fxswzrd.dll
2008-11-12 05:15:43 ----A---- C:\WINDOWS\system32\fxsui.dll
2008-11-12 05:15:43 ----A---- C:\WINDOWS\system32\fxstiff.dll
2008-11-12 05:15:42 ----A---- C:\WINDOWS\system32\hhsetup.dll
2008-11-12 05:15:42 ----A---- C:\WINDOWS\system32\help.exe
2008-11-12 05:15:42 ----A---- C:\WINDOWS\system32\h323msp.dll
2008-11-12 05:15:42 ----A---- C:\WINDOWS\system32\grpconv.exe
2008-11-12 05:15:41 ----A---- C:\WINDOWS\system32\hnetwiz.dll
2008-11-12 05:15:41 ----A---- C:\WINDOWS\system32\hnetcfg.dll
2008-11-12 05:15:41 ----A---- C:\WINDOWS\system32\hlink.dll
2008-11-12 05:15:41 ----A---- C:\WINDOWS\system32\hidserv.dll
2008-11-12 05:15:41 ----A---- C:\WINDOWS\system32\hid.dll
2008-11-12 05:15:40 ----A---- C:\WINDOWS\system32\iccvid.dll
2008-11-12 05:15:40 ----A---- C:\WINDOWS\system32\icaapi.dll
2008-11-12 05:15:40 ----A---- C:\WINDOWS\system32\iasrad.dll
2008-11-12 05:15:40 ----A---- C:\WINDOWS\system32\hypertrm.dll
2008-11-12 05:15:40 ----A---- C:\WINDOWS\system32\htui.dll
2008-11-12 05:15:40 ----A---- C:\WINDOWS\system32\hotplug.dll
2008-11-12 05:15:39 ----A---- C:\WINDOWS\system32\iexpress.exe
2008-11-12 05:15:39 ----A---- C:\WINDOWS\system32\idq.dll
2008-11-12 05:15:39 ----A---- C:\WINDOWS\system32\icwphbk.dll
2008-11-12 05:15:39 ----A---- C:\WINDOWS\system32\icwdial.dll
2008-11-12 05:15:39 ----A---- C:\WINDOWS\system32\icmp.dll
2008-11-12 05:15:39 ----A---- C:\WINDOWS\system32\icm32.dll
2008-11-12 05:15:38 ----A---- C:\WINDOWS\system32\imeshare.dll
2008-11-12 05:15:38 ----A---- C:\WINDOWS\system32\imapi.exe
2008-11-12 05:15:38 ----A---- C:\WINDOWS\system32\ils.dll
2008-11-12 05:15:38 ----A---- C:\WINDOWS\system32\igmpagnt.dll
2008-11-12 05:15:38 ----A---- C:\WINDOWS\system32\ifmon.dll
2008-11-12 05:15:37 ----A---- C:\WINDOWS\system32\inetmib1.dll
2008-11-12 05:15:37 ----A---- C:\WINDOWS\system32\inetcomm.dll
2008-11-12 05:15:37 ----A---- C:\WINDOWS\system32\inetcfg.dll
2008-11-12 05:15:37 ----A---- C:\WINDOWS\system32\imm32.dll
2008-11-12 05:15:37 ----A---- C:\WINDOWS\system32\imjp81k.dll
2008-11-12 05:15:36 ----A---- C:\WINDOWS\system32\input.dll
2008-11-12 05:15:36 ----A---- C:\WINDOWS\system32\initpki.dll
2008-11-12 05:15:36 ----A---- C:\WINDOWS\system32\inetres.dll
2008-11-12 05:15:36 ----A---- C:\WINDOWS\system32\inetppui.dll
2008-11-12 05:15:36 ----A---- C:\WINDOWS\system32\inetpp.dll
2008-11-12 05:15:35 ----A---- C:\WINDOWS\system32\ipnathlp.dll
2008-11-12 05:15:35 ----A---- C:\WINDOWS\system32\ipmontr.dll
2008-11-12 05:15:35 ----A---- C:\WINDOWS\system32\iphlpapi.dll
2008-11-12 05:15:35 ----A---- C:\WINDOWS\system32\ipconfig.exe
2008-11-12 05:15:34 ----A---- C:\WINDOWS\system32\ipsmsnap.dll
2008-11-12 05:15:34 ----A---- C:\WINDOWS\system32\ipsecsvc.dll
2008-11-12 05:15:34 ----A---- C:\WINDOWS\system32\ipsecsnp.dll
2008-11-12 05:15:34 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2008-11-12 05:15:34 ----A---- C:\WINDOWS\system32\ippromon.dll
2008-11-12 05:15:33 ----A---- C:\WINDOWS\system32\itircl.dll
2008-11-12 05:15:33 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2008-11-12 05:15:33 ----A---- C:\WINDOWS\system32\isign32.dll
2008-11-12 05:15:33 ----A---- C:\WINDOWS\system32\ipxwan.dll
2008-11-12 05:15:33 ----A---- C:\WINDOWS\system32\ipxroute.exe
2008-11-12 05:15:33 ----A---- C:\WINDOWS\system32\ipv6mon.dll
2008-11-12 05:15:33 ----A---- C:\WINDOWS\system32\ipv6.exe
2008-11-12 05:15:32 ----A---- C:\WINDOWS\system32\jscript.dll
2008-11-12 05:15:32 ----A---- C:\WINDOWS\system32\jgpl400.dll
2008-11-12 05:15:32 ----A---- C:\WINDOWS\system32\jgdw400.dll
2008-11-12 05:15:32 ----A---- C:\WINDOWS\system32\iyuv_32.dll
2008-11-12 05:15:32 ----A---- C:\WINDOWS\system32\ixsso.dll
2008-11-12 05:15:32 ----A---- C:\WINDOWS\system32\itss.dll
2008-11-12 05:15:31 ----A---- C:\WINDOWS\system32\keymgr.dll
2008-11-12 05:15:31 ----A---- C:\WINDOWS\system32\kerberos.dll
2008-11-12 05:15:31 ----A---- C:\WINDOWS\system32\kd1394.dll
2008-11-12 05:15:31 ----A---- C:\WINDOWS\system32\kbdnec.dll
2008-11-12 05:15:31 ----A---- C:\WINDOWS\system32\kbd106.dll
2008-11-12 05:15:30 ----A---- C:\WINDOWS\system32\licdll.dll
2008-11-12 05:15:30 ----A---- C:\WINDOWS\system32\ksuser.dll
2008-11-12 05:15:29 ----A---- C:\WINDOWS\system32\localui.dll
2008-11-12 05:15:29 ----A---- C:\WINDOWS\system32\localsec.dll
2008-11-12 05:15:29 ----A---- C:\WINDOWS\system32\loadperf.dll
2008-11-12 05:15:29 ----A---- C:\WINDOWS\system32\lmrt.dll
2008-11-12 05:15:29 ----A---- C:\WINDOWS\system32\linkinfo.dll
2008-11-12 05:15:29 ----A---- C:\WINDOWS\system32\licwmi.dll
2008-11-12 05:15:28 ----A---- C:\WINDOWS\system32\mcastmib.dll
2008-11-12 05:15:28 ----A---- C:\WINDOWS\system32\makecab.exe
2008-11-12 05:15:28 ----A---- C:\WINDOWS\system32\magnify.exe
2008-11-12 05:15:28 ----A---- C:\WINDOWS\system32\lsass.exe
2008-11-12 05:15:28 ----A---- C:\WINDOWS\system32\lprhelp.dll
2008-11-12 05:15:28 ----A---- C:\WINDOWS\system32\lpk.dll
2008-11-12 05:15:28 ----A---- C:\WINDOWS\system32\logonui.exe
2008-11-12 05:15:27 ----A---- C:\WINDOWS\system32\mfc40u.dll
2008-11-12 05:15:27 ----A---- C:\WINDOWS\system32\mf3216.dll
2008-11-12 05:15:27 ----A---- C:\WINDOWS\system32\mdminst.dll
2008-11-12 05:15:27 ----A---- C:\WINDOWS\system32\mciwave.dll
2008-11-12 05:15:27 ----A---- C:\WINDOWS\system32\mciseq.dll
2008-11-12 05:15:27 ----A---- C:\WINDOWS\system32\mciqtz32.dll
2008-11-12 05:15:27 ----A---- C:\WINDOWS\system32\mciavi32.dll
2008-11-12 05:15:26 ----A---- C:\WINDOWS\system32\mlang.dll
2008-11-12 05:15:26 ----A---- C:\WINDOWS\system32\mimefilt.dll
2008-11-12 05:15:26 ----A---- C:\WINDOWS\system32\miglibnt.dll
2008-11-12 05:15:26 ----A---- C:\WINDOWS\system32\midimap.dll
2008-11-12 05:15:26 ----A---- C:\WINDOWS\system32\mfcsubs.dll
2008-11-12 05:15:26 ----A---- C:\WINDOWS\system32\mfc42.dll
2008-11-12 05:15:25 ----A---- C:\WINDOWS\system32\mmfutil.dll
2008-11-12 05:15:25 ----A---- C:\WINDOWS\system32\mmcshext.dll
2008-11-12 05:15:25 ----A---- C:\WINDOWS\system32\mmcndmgr.dll
2008-11-12 05:15:25 ----A---- C:\WINDOWS\system32\mmcbase.dll
2008-11-12 05:15:25 ----A---- C:\WINDOWS\system32\mmc.exe
2008-11-12 05:15:24 ----A---- C:\WINDOWS\system32\moricons.dll
2008-11-12 05:15:24 ----A---- C:\WINDOWS\system32\more.com
2008-11-12 05:15:24 ----A---- C:\WINDOWS\system32\modemui.dll
2008-11-12 05:15:24 ----A---- C:\WINDOWS\system32\mobsync.exe
2008-11-12 05:15:24 ----A---- C:\WINDOWS\system32\mobsync.dll
2008-11-12 05:15:24 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2008-11-12 05:15:24 ----A---- C:\WINDOWS\system32\mnmdd.dll
2008-11-12 05:15:23 ----A---- C:\WINDOWS\system32\mprdim.dll
2008-11-12 05:15:23 ----A---- C:\WINDOWS\system32\mprapi.dll
2008-11-12 05:15:23 ----A---- C:\WINDOWS\system32\mpr.dll
2008-11-12 05:15:23 ----A---- C:\WINDOWS\system32\mplay32.exe
2008-11-12 05:15:23 ----A---- C:\WINDOWS\system32\mpg4dmod.dll
2008-11-12 05:15:22 ----A---- C:\WINDOWS\system32\msasn1.dll
2008-11-12 05:15:22 ----A---- C:\WINDOWS\system32\msapsspc.dll
2008-11-12 05:15:22 ----A---- C:\WINDOWS\system32\msafd.dll
2008-11-12 05:15:22 ----A---- C:\WINDOWS\system32\msacm32.dll
2008-11-12 05:15:21 ----A---- C:\WINDOWS\system32\msctfp.dll
2008-11-12 05:15:21 ----A---- C:\WINDOWS\system32\msctf.dll
2008-11-12 05:15:21 ----A---- C:\WINDOWS\system32\mscpxl32.dll
2008-11-12 05:15:21 ----A---- C:\WINDOWS\system32\mscpx32r.dll
2008-11-12 05:15:21 ----A---- C:\WINDOWS\system32\msconf.dll
2008-11-12 05:15:21 ----A---- C:\WINDOWS\system32\mscms.dll
2008-11-12 05:15:20 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2008-11-12 05:15:20 ----A---- C:\WINDOWS\system32\msdtclog.dll
2008-11-12 05:15:20 ----A---- C:\WINDOWS\system32\msdtc.exe
2008-11-12 05:15:20 ----A---- C:\WINDOWS\system32\msdmo.dll
2008-11-12 05:15:20 ----A---- C:\WINDOWS\system32\msdart.dll
2008-11-12 05:15:19 ----A---- C:\WINDOWS\system32\msgina.dll
2008-11-12 05:15:19 ----A---- C:\WINDOWS\system32\msdxmlc.dll
2008-11-12 05:15:19 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2008-11-12 05:15:19 ----A---- C:\WINDOWS\system32\msdtctm.dll
2008-11-12 05:15:18 ----A---- C:\WINDOWS\system32\msidle.dll
2008-11-12 05:15:18 ----A---- C:\WINDOWS\system32\msident.dll
2008-11-12 05:15:18 ----A---- C:\WINDOWS\system32\msi.dll
2008-11-12 05:15:17 ----A---- C:\WINDOWS\system32\msimtf.dll
2008-11-12 05:15:17 ----A---- C:\WINDOWS\system32\msimsg.dll
2008-11-12 05:15:17 ----A---- C:\WINDOWS\system32\msimg32.dll
2008-11-12 05:15:17 ----A---- C:\WINDOWS\system32\msihnd.dll
2008-11-12 05:15:17 ----A---- C:\WINDOWS\system32\msiexec.exe
2008-11-12 05:15:17 ----A---- C:\WINDOWS\system32\msieftp.dll
2008-11-12 05:15:16 ----A---- C:\WINDOWS\system32\msoert2.dll
2008-11-12 05:15:16 ----A---- C:\WINDOWS\system32\msoeacct.dll
2008-11-12 05:15:16 ----A---- C:\WINDOWS\system32\msnsspc.dll
2008-11-12 05:15:16 ----A---- C:\WINDOWS\system32\mslbui.dll
2008-11-12 05:15:16 ----A---- C:\WINDOWS\system32\msjint40.dll
2008-11-12 05:15:16 ----A---- C:\WINDOWS\system32\msisip.dll
2008-11-12 05:15:15 ----A---- C:\WINDOWS\system32\msrle32.dll
2008-11-12 05:15:15 ----A---- C:\WINDOWS\system32\msprivs.dll
2008-11-12 05:15:15 ----A---- C:\WINDOWS\system32\mspatcha.dll
2008-11-12 05:15:15 ----A---- C:\WINDOWS\system32\mspaint.exe
2008-11-12 05:15:15 ----A---- C:\WINDOWS\system32\msorcl32.dll
2008-11-12 05:15:15 ----A---- C:\WINDOWS\system32\msorc32r.dll
2008-11-12 05:15:14 ----A---- C:\WINDOWS\system32\msvcirt.dll
2008-11-12 05:15:14 ----A---- C:\WINDOWS\system32\msvbvm60.dll
2008-11-12 05:15:14 ----A---- C:\WINDOWS\system32\msutb.dll
2008-11-12 05:15:14 ----A---- C:\WINDOWS\system32\mstlsapi.dll
2008-11-12 05:15:14 ----A---- C:\WINDOWS\system32\mstinit.exe
2008-11-12 05:15:14 ----A---- C:\WINDOWS\system32\mstask.dll
2008-11-12 05:15:13 ----A---- C:\WINDOWS\system32\msw3prt.dll
2008-11-12 05:15:13 ----A---- C:\WINDOWS\system32\msvidctl.dll
2008-11-12 05:15:13 ----A---- C:\WINDOWS\system32\msvfw32.dll
2008-11-12 05:15:13 ----A---- C:\WINDOWS\system32\msvcrt40.dll
2008-11-12 05:15:13 ----A---- C:\WINDOWS\system32\msvcrt.dll
2008-11-12 05:15:13 ----A---- C:\WINDOWS\system32\msvcp60.dll
2008-11-12 05:15:12 ----A---- C:\WINDOWS\system32\msyuv.dll
2008-11-12 05:15:12 ----A---- C:\WINDOWS\system32\msxml2.dll
2008-11-12 05:15:12 ----A---- C:\WINDOWS\system32\msxml.dll
2008-11-12 05:15:12 ----A---- C:\WINDOWS\system32\mswsock.dll
2008-11-12 05:15:12 ----A---- C:\WINDOWS\system32\mswebdvd.dll
2008-11-12 05:15:11 ----A---- C:\WINDOWS\system32\mydocs.dll
2008-11-12 05:15:11 ----A---- C:\WINDOWS\system32\mtxoci.dll
2008-11-12 05:15:11 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2008-11-12 05:15:11 ----A---- C:\WINDOWS\system32\mtxex.dll
2008-11-12 05:15:11 ----A---- C:\WINDOWS\system32\mtxdm.dll
2008-11-12 05:15:11 ----A---- C:\WINDOWS\system32\mtxclu.dll
2008-11-12 05:15:10 ----A---- C:\WINDOWS\system32\net1.exe
2008-11-12 05:15:10 ----A---- C:\WINDOWS\system32\net.exe
2008-11-12 05:15:10 ----A---- C:\WINDOWS\system32\nddenb32.dll
2008-11-12 05:15:10 ----A---- C:\WINDOWS\system32\nddeapir.exe
2008-11-12 05:15:10 ----A---- C:\WINDOWS\system32\nddeapi.dll
2008-11-12 05:15:10 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2008-11-12 05:15:10 ----A---- C:\WINDOWS\system32\narrator.exe
2008-11-12 05:15:09 ----A---- C:\WINDOWS\system32\netplwiz.dll
2008-11-12 05:15:09 ----A---- C:\WINDOWS\system32\netman.dll
2008-11-12 05:15:09 ----A---- C:\WINDOWS\system32\netlogon.dll
2008-11-12 05:15:09 ----A---- C:\WINDOWS\system32\netid.dll
2008-11-12 05:15:09 ----A---- C:\WINDOWS\system32\netdde.exe
2008-11-12 05:15:09 ----A---- C:\WINDOWS\system32\netcfgx.dll
2008-11-12 05:15:09 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-11-12 05:15:08 ----A---- C:\WINDOWS\system32\netstat.exe
2008-11-12 05:15:08 ----A---- C:\WINDOWS\system32\netshell.dll
2008-11-12 05:15:08 ----A---- C:\WINDOWS\system32\netsh.exe
2008-11-12 05:15:08 ----A---- C:\WINDOWS\system32\netsetup.exe
2008-11-12 05:15:08 ----A---- C:\WINDOWS\system32\netrap.dll
2008-11-12 05:15:07 ----A---- C:\WINDOWS\system32\npptools.dll
2008-11-12 05:15:07 ----A---- C:\WINDOWS\system32\notepad.exe
2008-11-12 05:15:07 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2008-11-12 05:15:07 ----A---- C:\WINDOWS\system32\nlhtml.dll
2008-11-12 05:15:07 ----A---- C:\WINDOWS\system32\newdev.dll
2008-11-12 05:15:07 ----A---- C:\WINDOWS\system32\netui1.dll
2008-11-12 05:15:07 ----A---- C:\WINDOWS\system32\netui0.dll
2008-11-12 05:15:07 ----A---- C:\WINDOWS\notepad.exe
2008-11-12 05:15:06 ----A---- C:\WINDOWS\system32\ntmssvc.dll
2008-11-12 05:15:06 ----A---- C:\WINDOWS\system32\ntmsmgr.dll
2008-11-12 05:15:06 ----A---- C:\WINDOWS\system32\ntmsdba.dll
2008-11-12 05:15:06 ----A---- C:\WINDOWS\system32\ntmsapi.dll
2008-11-12 05:15:06 ----A---- C:\WINDOWS\system32\ntmarta.dll
2008-11-12 05:15:06 ----A---- C:\WINDOWS\system32\ntlanman.dll
2008-11-12 05:15:06 ----A---- C:\WINDOWS\system32\ntdsapi.dll
2008-11-12 05:15:05 ----A---- C:\WINDOWS\system32\ocmanage.dll
2008-11-12 05:15:05 ----A---- C:\WINDOWS\system32\objsel.dll
2008-11-12 05:15:05 ----A---- C:\WINDOWS\system32\oakley.dll
2008-11-12 05:15:05 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2008-11-12 05:15:05 ----A---- C:\WINDOWS\system32\ntshrui.dll
2008-11-12 05:15:04 ----A---- C:\WINDOWS\system32\odbcconf.exe
2008-11-12 05:15:04 ----A---- C:\WINDOWS\system32\odbcconf.dll
2008-11-12 05:15:04 ----A---- C:\WINDOWS\system32\odbcbcp.dll
2008-11-12 05:15:04 ----A---- C:\WINDOWS\system32\odbcad32.exe
2008-11-12 05:15:04 ----A---- C:\WINDOWS\system32\odbc32gt.dll
2008-11-12 05:15:04 ----A---- C:\WINDOWS\system32\odbc32.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbctrac.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbcp32r.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbcjt32.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbcji32.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbcint.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbccu32.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbccr32.dll
2008-11-12 05:15:03 ----A---- C:\WINDOWS\system32\odbccp32.dll
2008-11-12 05:15:02 ----A---- C:\WINDOWS\system32\ole32.dll
2008-11-12 05:15:02 ----A---- C:\WINDOWS\system32\offfilt.dll
2008-11-12 05:15:02 ----A---- C:\WINDOWS\system32\odtext32.dll
2008-11-12 05:15:02 ----A---- C:\WINDOWS\system32\odpdx32.dll
2008-11-12 05:15:02 ----A---- C:\WINDOWS\system32\odfox32.dll
2008-11-12 05:15:02 ----A---- C:\WINDOWS\system32\odexl32.dll
2008-11-12 05:15:02 ----A---- C:\WINDOWS\system32\oddbse32.dll
2008-11-12 05:15:01 ----A---- C:\WINDOWS\system32\osk.exe
2008-11-12 05:15:01 ----A---- C:\WINDOWS\system32\opengl32.dll
2008-11-12 05:15:01 ----A---- C:\WINDOWS\system32\olepro32.dll
2008-11-12 05:15:01 ----A---- C:\WINDOWS\system32\oleprn.dll
2008-11-12 05:15:01 ----A---- C:\WINDOWS\system32\oledlg.dll
2008-11-12 05:15:01 ----A---- C:\WINDOWS\system32\olecli32.dll
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\perfos.dll
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\perfnet.dll
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\perfmon.exe
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\perfdisk.dll
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\pdh.dll
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\pautoenr.dll
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\packager.exe
2008-11-12 05:15:00 ----A---- C:\WINDOWS\system32\osuninst.dll
2008-11-12 05:14:59 ----A---- C:\WINDOWS\system32\ping.exe
2008-11-12 05:14:59 ----A---- C:\WINDOWS\system32\pid.dll
2008-11-12 05:14:59 ----A---- C:\WINDOWS\system32\photowiz.dll
2008-11-12 05:14:59 ----A---- C:\WINDOWS\system32\perfproc.dll
2008-11-12 05:14:58 ----A---- C:\WINDOWS\system32\proquota.exe
2008-11-12 05:14:58 ----A---- C:\WINDOWS\system32\progman.exe
2008-11-12 05:14:58 ----A---- C:\WINDOWS\system32\profmap.dll
2008-11-12 05:14:58 ----A---- C:\WINDOWS\system32\powrprof.dll
2008-11-12 05:14:58 ----A---- C:\WINDOWS\system32\polstore.dll
2008-11-12 05:14:58 ----A---- C:\WINDOWS\system32\pjlmon.dll
2008-11-12 05:14:57 ----A---- C:\WINDOWS\system32\qcap.dll
2008-11-12 05:14:57 ----A---- C:\WINDOWS\system32\pstorsvc.dll
2008-11-12 05:14:57 ----A---- C:\WINDOWS\system32\pstorec.dll
2008-11-12 05:14:57 ----A---- C:\WINDOWS\system32\psisdecd.dll
2008-11-12 05:14:57 ----A---- C:\WINDOWS\system32\psbase.dll
2008-11-12 05:14:57 ----A---- C:\WINDOWS\system32\psapi.dll
2008-11-12 05:14:56 ----A---- C:\WINDOWS\system32\qprocess.exe
2008-11-12 05:14:56 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2008-11-12 05:14:56 ----A---- C:\WINDOWS\system32\qedwipes.dll
2008-11-12 05:14:56 ----A---- C:\WINDOWS\system32\qedit.dll
2008-11-12 05:14:56 ----A---- C:\WINDOWS\system32\qdvd.dll
2008-11-12 05:14:56 ----A---- C:\WINDOWS\system32\qdv.dll
2008-11-12 05:14:55 ----A---- C:\WINDOWS\system32\rasmans.dll
2008-11-12 05:14:55 ----A---- C:\WINDOWS\system32\raschap.dll
2008-11-12 05:14:55 ----A---- C:\WINDOWS\system32\rasadhlp.dll
2008-11-12 05:14:55 ----A---- C:\WINDOWS\system32\racpldlg.dll
2008-11-12 05:14:55 ----A---- C:\WINDOWS\system32\query.dll
2008-11-12 05:14:55 ----A---- C:\WINDOWS\system32\quartz.dll
2008-11-12 05:14:54 ----A---- C:\WINDOWS\system32\rcp.exe
2008-11-12 05:14:54 ----A---- C:\WINDOWS\system32\rcimlby.exe
2008-11-12 05:14:54 ----A---- C:\WINDOWS\system32\rcbdyctl.dll
2008-11-12 05:14:54 ----A---- C:\WINDOWS\system32\rastls.dll
2008-11-12 05:14:54 ----A---- C:\WINDOWS\system32\rassapi.dll
2008-11-12 05:14:54 ----A---- C:\WINDOWS\system32\rasppp.dll
2008-11-12 05:14:54 ----A---- C:\WINDOWS\system32\rasphone.exe
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\reg.exe
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\rdshost.exe
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\rdpdd.dll
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\rdpclip.exe
2008-11-12 05:14:53 ----A---- C:\WINDOWS\system32\rdchost.dll
2008-11-12 05:14:52 ----A---- C:\WINDOWS\system32\rexec.exe
2008-11-12 05:14:52 ----A---- C:\WINDOWS\system32\resutils.dll
2008-11-12 05:14:52 ----A---- C:\WINDOWS\system32\remotepg.dll
2008-11-12 05:14:52 ----A---- C:\WINDOWS\system32\regwizc.dll
2008-11-12 05:14:52 ----A---- C:\WINDOWS\system32\regsvr32.exe
2008-11-12 05:14:52 ----A---- C:\WINDOWS\system32\regsvc.dll
2008-11-12 05:14:52 ----A---- C:\WINDOWS\system32\regapi.dll
2008-11-12 05:14:51 ----A---- C:\WINDOWS\system32\rsmps.dll
2008-11-12 05:14:51 ----A---- C:\WINDOWS\system32\rsh.exe
2008-11-12 05:14:51 ----A---- C:\WINDOWS\system32\rsaenh.dll
2008-11-12 05:14:51 ----A---- C:\WINDOWS\system32\rpcss.dll
2008-11-12 05:14:51 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2008-11-12 05:14:51 ----A---- C:\WINDOWS\system32\riched20.dll
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\safrdm.dll
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\runonce.exe
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\rundll32.exe
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\rtutils.dll
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\rtipxmib.dll
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\rtcshare.exe
2008-11-12 05:14:50 ----A---- C:\WINDOWS\system32\rsvpsp.dll
2008-11-12 05:14:49 ----A---- C:\WINDOWS\system32\schedsvc.dll
2008-11-12 05:14:49 ----A---- C:\WINDOWS\system32\scesrv.dll
2008-11-12 05:14:49 ----A---- C:\WINDOWS\system32\scecli.dll
2008-11-12 05:14:49 ----A---- C:\WINDOWS\system32\sccsccp.dll
2008-11-12 05:14:49 ----A---- C:\WINDOWS\system32\scarddlg.dll
2008-11-12 05:14:49 ----A---- C:\WINDOWS\system32\safrslv.dll
2008-11-12 05:14:48 ----A---- C:\WINDOWS\system32\secur32.dll
2008-11-12 05:14:48 ----A---- C:\WINDOWS\system32\seclogon.dll
2008-11-12 05:14:48 ----A---- C:\WINDOWS\system32\sdbinst.exe
2008-11-12 05:14:48 ----A---- C:\WINDOWS\system32\scrrun.dll
2008-11-12 05:14:48 ----A---- C:\WINDOWS\system32\scrobj.dll
2008-11-12 05:14:48 ----A---- C:\WINDOWS\system32\sclgntfy.dll
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\setup.exe
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\sethc.exe
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\servdeps.dll
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\sensapi.dll
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\sens.dll
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\sendmail.dll
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\sendcmsg.dll
2008-11-12 05:14:47 ----A---- C:\WINDOWS\system32\security.dll
2008-11-12 05:14:46 ----A---- C:\WINDOWS\system32\shdocvw.dll
2008-11-12 05:14:46 ----A---- C:\WINDOWS\system32\shdoclc.dll
2008-11-12 05:14:46 ----A---- C:\WINDOWS\system32\sfcfiles.dll
2008-11-12 05:14:46 ----A---- C:\WINDOWS\system32\sfc_os.dll
2008-11-12 05:14:46 ----A---- C:\WINDOWS\system32\sfc.dll
2008-11-12 05:14:45 ----A---- C:\WINDOWS\system32\shell32.dll
2008-11-12 05:14:44 ----A---- C:\WINDOWS\system32\shmedia.dll
2008-11-12 05:14:44 ----A---- C:\WINDOWS\system32\shlwapi.dll
2008-11-12 05:14:44 ----A---- C:\WINDOWS\system32\shimgvw.dll
2008-11-12 05:14:44 ----A---- C:\WINDOWS\system32\shimeng.dll
2008-11-12 05:14:44 ----A---- C:\WINDOWS\system32\shgina.dll
2008-11-12 05:14:44 ----A---- C:\WINDOWS\system32\shfolder.dll
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\skeys.exe
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\sigverif.exe
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\sigtab.dll
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\shutdown.exe
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\shsvcs.dll
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\shscrap.dll
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\shrpubw.exe
2008-11-12 05:14:43 ----A---- C:\WINDOWS\system32\shmgrate.exe
2008-11-12 05:14:42 ----A---- C:\WINDOWS\system32\snmpapi.dll
2008-11-12 05:14:42 ----A---- C:\WINDOWS\system32\sndrec32.exe
2008-11-12 05:14:42 ----A---- C:\WINDOWS\system32\smlogsvc.exe
2008-11-12 05:14:42 ----A---- C:\WINDOWS\system32\smlogcfg.dll
2008-11-12 05:14:42 ----A---- C:\WINDOWS\system32\slbiop.dll
2008-11-12 05:14:42 ----A---- C:\WINDOWS\system32\slayerxp.dll
2008-11-12 05:14:41 ----A---- C:\WINDOWS\system32\sqlunirl.dll
2008-11-12 05:14:41 ----A---- C:\WINDOWS\system32\sqlsrv32.dll
2008-11-12 05:14:41 ----A---- C:\WINDOWS\system32\spoolsv.exe
2008-11-12 05:14:41 ----A---- C:\WINDOWS\system32\spoolss.dll
2008-11-12 05:14:41 ----A---- C:\WINDOWS\system32\spider.exe
2008-11-12 05:14:41 ----A---- C:\WINDOWS\system32\sort.exe
2008-11-12 05:14:41 ----A---- C:\WINDOWS\system32\snmpsnap.dll
2008-11-12 05:14:40 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2008-11-12 05:14:40 ----A---- C:\WINDOWS\system32\ssdpapi.dll
2008-11-12 05:14:40 ----A---- C:\WINDOWS\system32\srsvc.dll
2008-11-12 05:14:40 ----A---- C:\WINDOWS\system32\srrstr.dll
2008-11-12 05:14:40 ----A---- C:\WINDOWS\system32\srclient.dll
2008-11-12 05:14:39 ----A---- C:\WINDOWS\system32\stclient.dll
2008-11-12 05:14:38 ----A---- C:\WINDOWS\system32\strmdll.dll
2008-11-12 05:14:38 ----A---- C:\WINDOWS\system32\storprop.dll
2008-11-12 05:14:38 ----A---- C:\WINDOWS\system32\stobject.dll
2008-11-12 05:14:38 ----A---- C:\WINDOWS\system32\stimon.exe
2008-11-12 05:14:38 ----A---- C:\WINDOWS\system32\sti_ci.dll
2008-11-12 05:14:38 ----A---- C:\WINDOWS\system32\sti.dll
2008-11-12 05:14:37 ----A---- C:\WINDOWS\system32\syncui.dll
2008-11-12 05:14:37 ----A---- C:\WINDOWS\system32\synceng.dll
2008-11-12 05:14:37 ----A---- C:\WINDOWS\system32\sxs.dll
2008-11-12 05:14:37 ----A---- C:\WINDOWS\system32\svchost.exe
2008-11-12 05:14:36 ----A---- C:\WINDOWS\system32\taskmgr.exe
2008-11-12 05:14:36 ----A---- C:\WINDOWS\system32\tapisrv.dll
2008-11-12 05:14:36 ----A---- C:\WINDOWS\system32\tapi32.dll
2008-11-12 05:14:36 ----A---- C:\WINDOWS\system32\tapi3.dll
2008-11-12 05:14:36 ----A---- C:\WINDOWS\system32\t2embed.dll
2008-11-12 05:14:36 ----A---- C:\WINDOWS\system32\sysocmgr.exe
2008-11-12 05:14:35 ----A---- C:\WINDOWS\system32\themeui.dll
2008-11-12 05:14:35 ----A---- C:\WINDOWS\system32\termsrv.dll
2008-11-12 05:14:35 ----A---- C:\WINDOWS\system32\termmgr.dll
2008-11-12 05:14:35 ----A---- C:\WINDOWS\system32\telnet.exe
2008-11-12 05:14:35 ----A---- C:\WINDOWS\system32\tcpmon.dll
2008-11-12 05:14:35 ----A---- C:\WINDOWS\system32\tcpmib.dll
2008-11-12 05:14:34 ----A---- C:\WINDOWS\system32\txflog.dll
2008-11-12 05:14:34 ----A---- C:\WINDOWS\system32\tsddd.dll
2008-11-12 05:14:34 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2008-11-12 05:14:34 ----A---- C:\WINDOWS\system32\trkwks.dll
2008-11-12 05:14:34 ----A---- C:\WINDOWS\system32\tree.com
2008-11-12 05:14:34 ----A---- C:\WINDOWS\system32\tracert.exe
2008-11-12 05:14:34 ----A---- C:\WINDOWS\system32\tourstart.exe
2008-11-12 05:14:33 ----A---- C:\WINDOWS\system32\upnp.dll
2008-11-12 05:14:33 ----A---- C:\WINDOWS\system32\uniplat.dll
2008-11-12 05:14:33 ----A---- C:\WINDOWS\system32\unimdmat.dll
2008-11-12 05:14:33 ----A---- C:\WINDOWS\system32\umpnpmgr.dll
2008-11-12 05:14:33 ----A---- C:\WINDOWS\system32\umandlg.dll
2008-11-12 05:14:33 ----A---- C:\WINDOWS\system32\udhisapi.dll
2008-11-12 05:14:32 ----A---- C:\WINDOWS\system32\usbui.dll
2008-11-12 05:14:32 ----A---- C:\WINDOWS\system32\usbmon.dll
2008-11-12 05:14:32 ----A---- C:\WINDOWS\system32\ups.exe
2008-11-12 05:14:32 ----A---- C:\WINDOWS\system32\upnpui.dll
2008-11-12 05:14:32 ----A---- C:\WINDOWS\system32\upnphost.dll
2008-11-12 05:14:32 ----A---- C:\WINDOWS\system32\upnpcont.exe
2008-11-12 05:14:31 ----A---- C:\WINDOWS\system32\vbajet32.dll
2008-11-12 05:14:31 ----A---- C:\WINDOWS\system32\uxtheme.dll
2008-11-12 05:14:31 ----A---- C:\WINDOWS\system32\utilman.exe
2008-11-12 05:14:31 ----A---- C:\WINDOWS\system32\usp10.dll
2008-11-12 05:14:31 ----A---- C:\WINDOWS\system32\userenv.dll
2008-11-12 05:14:31 ----A---- C:\WINDOWS\system32\user32.dll
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\vssvc.exe
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\vssapi.dll
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\version.dll
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\verifier.dll
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\vdmredir.dll
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\vdmdbg.dll
2008-11-12 05:14:30 ----A---- C:\WINDOWS\system32\vbscript.dll
2008-11-12 05:14:29 ----A---- C:\WINDOWS\system32\webvw.dll
2008-11-12 05:14:29 ----A---- C:\WINDOWS\system32\webclnt.dll
2008-11-12 05:14:29 ----A---- C:\WINDOWS\system32\wdigest.dll
2008-11-12 05:14:29 ----A---- C:\WINDOWS\system32\wavemsp.dll
2008-11-12 05:14:29 ----A---- C:\WINDOWS\system32\w32time.dll
2008-11-12 05:14:28 ----A---- C:\WINDOWS\system32\wiascr.dll
2008-11-12 05:14:28 ----A---- C:\WINDOWS\system32\wiadss.dll
2008-11-12 05:14:28 ----A---- C:\WINDOWS\system32\wiadefui.dll
2008-11-12 05:14:28 ----A---- C:\WINDOWS\system32\wiaacmgr.exe
2008-11-12 05:14:28 ----A---- C:\WINDOWS\system32\wextract.exe
2008-11-12 05:14:27 ----A---- C:\WINDOWS\system32\winipsec.dll
2008-11-12 05:14:27 ----A---- C:\WINDOWS\system32\wiavideo.dll
2008-11-12 05:14:27 ----A---- C:\WINDOWS\system32\wiashext.dll
2008-11-12 05:14:27 ----A---- C:\WINDOWS\system32\wiaservc.dll
2008-11-12 05:14:26 ----A---- C:\WINDOWS\system32\winrnr.dll
2008-11-12 05:14:26 ----A---- C:\WINDOWS\system32\winntbbu.dll
2008-11-12 05:14:26 ----A---- C:\WINDOWS\system32\winmm.dll
2008-11-12 05:14:26 ----A---- C:\WINDOWS\system32\winlogon.exe
2008-11-12 05:14:25 ----A---- C:\WINDOWS\system32\winver.exe
2008-11-12 05:14:25 ----A---- C:\WINDOWS\system32\wintrust.dll
2008-11-12 05:14:25 ----A---- C:\WINDOWS\system32\winsta.dll
2008-11-12 05:14:25 ----A---- C:\WINDOWS\system32\winsrv.dll
2008-11-12 05:14:25 ----A---- C:\WINDOWS\system32\winscard.dll
2008-11-12 05:14:24 ----A---- C:\WINDOWS\system32\wmstream.dll
2008-11-12 05:14:24 ----A---- C:\WINDOWS\system32\wmsdmoe.dll
2008-11-12 05:14:24 ----A---- C:\WINDOWS\system32\wmi.dll
2008-11-12 05:14:24 ----A---- C:\WINDOWS\system32\wlnotify.dll
2008-11-12 05:14:24 ----A---- C:\WINDOWS\system32\wldap32.dll
2008-11-12 05:14:23 ----A---- C:\WINDOWS\system32\wshcon.dll
2008-11-12 05:14:23 ----A---- C:\WINDOWS\system32\wscript.exe
2008-11-12 05:14:23 ----A---- C:\WINDOWS\system32\ws2help.dll
2008-11-12 05:14:23 ----A---- C:\WINDOWS\system32\ws2_32.dll
2008-11-12 05:14:23 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2008-11-12 05:14:23 ----A---- C:\WINDOWS\system32\wpabaln.exe
2008-11-12 05:14:23 ----A---- C:\WINDOWS\system32\wow32.dll
2008-11-12 05:14:22 ----A---- C:\WINDOWS\system32\wsock32.dll
2008-11-12 05:14:22 ----A---- C:\WINDOWS\system32\wsnmp32.dll
2008-11-12 05:14:22 ----A---- C:\WINDOWS\system32\wshtcpip.dll
2008-11-12 05:14:22 ----A---- C:\WINDOWS\system32\wshrm.dll
2008-11-12 05:14:22 ----A---- C:\WINDOWS\system32\wship6.dll
2008-11-12 05:14:22 ----A---- C:\WINDOWS\system32\wshext.dll
2008-11-12 05:14:21 ----A---- C:\WINDOWS\system32\xcopy.exe
2008-11-12 05:14:21 ----A---- C:\WINDOWS\system32\xactsrv.dll
2008-11-12 05:14:21 ----A---- C:\WINDOWS\system32\wzcsvc.dll
2008-11-12 05:14:21 ----A---- C:\WINDOWS\system32\wzcsapi.dll
2008-11-12 05:14:21 ----A---- C:\WINDOWS\system32\wzcdlg.dll
2008-11-12 05:14:21 ----A---- C:\WINDOWS\system32\wtsapi32.dll
2008-11-12 05:14:21 ----A---- C:\WINDOWS\system32\wstdecod.dll
2008-11-12 05:14:20 ----A---- C:\WINDOWS\system32\zipfldr.dll
2008-11-12 05:14:20 ----A---- C:\WINDOWS\system32\xolehlp.dll
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\csrsrv.dll
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\comdlg32.dll
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\comctl32.dll
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\cmd.exe
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\cacls.exe
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\autoconv.exe
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\autochk.exe
2008-11-12 05:14:18 ----A---- C:\WINDOWS\system32\advapi32.dll
2008-11-12 05:14:17 ----A---- C:\WINDOWS\system32\lmhsvc.dll
2008-11-12 05:14:17 ----A---- C:\WINDOWS\system32\kernel32.dll
2008-11-12 05:14:17 ----A---- C:\WINDOWS\system32\imagehlp.dll
2008-11-12 05:14:17 ----A---- C:\WINDOWS\system32\ftp.exe
2008-11-12 05:14:17 ----A---- C:\WINDOWS\system32\format.com
2008-11-12 05:14:17 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll
2008-11-12 05:14:16 ----A---- C:\WINDOWS\system32\msv1_0.dll
2008-11-12 05:14:16 ----A---- C:\WINDOWS\system32\msgsvc.dll
2008-11-12 05:14:16 ----A---- C:\WINDOWS\system32\mgmtapi.dll
2008-11-12 05:14:16 ----A---- C:\WINDOWS\system32\lsasrv.dll
2008-11-12 05:14:16 ----A---- C:\WINDOWS\system32\locator.exe
2008-11-12 05:14:16 ----A---- C:\WINDOWS\system32\localspl.dll
2008-11-12 05:14:15 ----A---- C:\WINDOWS\system32\ntvdm.exe
2008-11-12 05:14:15 ----A---- C:\WINDOWS\system32\ntprint.dll
2008-11-12 05:14:15 ----A---- C:\WINDOWS\system32\ntlsapi.dll
2008-11-12 05:14:15 ----A---- C:\WINDOWS\system32\ntdll.dll
2008-11-12 05:14:15 ----A---- C:\WINDOWS\system32\nslookup.exe
2008-11-12 05:14:14 ----A---- C:\WINDOWS\system32\rasapi32.dll
2008-11-12 05:14:14 ----A---- C:\WINDOWS\system32\printui.dll
2008-11-12 05:14:14 ----A---- C:\WINDOWS\system32\perfctrs.dll
2008-11-12 05:14:14 ----A---- C:\WINDOWS\system32\olecnv32.dll
2008-11-12 05:14:14 ----A---- C:\WINDOWS\system32\oleaut32.dll
2008-11-12 05:14:14 ----A---- C:\WINDOWS\system32\nwprovau.dll
2008-11-12 05:14:13 ----A---- C:\WINDOWS\system32\samlib.dll
2008-11-12 05:14:13 ----A---- C:\WINDOWS\system32\rshx32.dll
2008-11-12 05:14:13 ----A---- C:\WINDOWS\system32\rastapi.dll
2008-11-12 05:14:13 ----A---- C:\WINDOWS\system32\rasman.dll
2008-11-12 05:14:13 ----A---- C:\WINDOWS\system32\rasdlg.dll
2008-11-12 05:14:13 ----A---- C:\WINDOWS\system32\rasauto.dll
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\smss.exe
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\setupapi.dll
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\sessmgr.exe
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\services.exe
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\schannel.dll
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\scardsvr.exe
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\savedump.exe
2008-11-12 05:14:12 ----A---- C:\WINDOWS\system32\samsrv.dll
2008-11-12 05:14:11 ----A---- C:\WINDOWS\system32\ulib.dll
2008-11-12 05:14:11 ----A---- C:\WINDOWS\system32\tcpmonui.dll
2008-11-12 05:14:11 ----A---- C:\WINDOWS\system32\syssetup.dll
2008-11-12 05:14:11 ----A---- C:\WINDOWS\system32\srvsvc.dll
2008-11-12 05:14:10 ----A---- C:\WINDOWS\system32\wkssvc.dll
2008-11-12 05:14:10 ----A---- C:\WINDOWS\system32\win32spl.dll
2008-11-12 05:14:10 ----A---- C:\WINDOWS\system32\userinit.exe
2008-11-12 05:14:10 ----A---- C:\WINDOWS\system32\untfs.dll
2008-11-12 05:14:02 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2008-11-12 05:14:02 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe
2008-11-12 05:14:02 ----A---- C:\WINDOWS\system32\HAL.DLL
2008-11-12 03:08:36 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
2008-11-12 03:04:09 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2008-11-10 21:42:19 ----D---- C:\Program Files\Trend Micro
2008-11-10 18:17:09 ----D---- C:\fixwareout
2008-11-10 17:48:59 ----D---- C:\Program Files\Common Files\Webroot Shared
2008-11-10 17:41:12 ----A---- C:\WINDOWS\Unwash6.exe
2008-11-09 17:22:27 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2008-11-09 17:21:09 ----D---- C:\Program Files\AVG
2008-11-09 11:55:33 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-11-01 12:33:42 ----N---- C:\WINDOWS\system32\aaclient.dll
2008-11-01 12:33:03 ----N---- C:\WINDOWS\system32\azroles.dll
2008-11-01 12:33:01 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2008-11-01 12:32:37 ----N---- C:\WINDOWS\system32\credssp.dll
2008-11-01 12:32:25 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2008-11-01 12:32:23 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2008-11-01 12:32:22 ----N---- C:\WINDOWS\system32\dimsroam.dll
2008-11-01 12:32:15 ----N---- C:\WINDOWS\system32\dot3msm.dll
2008-11-01 12:32:15 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-11-01 12:32:15 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2008-11-01 12:32:15 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2008-11-01 12:32:15 ----N---- C:\WINDOWS\system32\dot3api.dll
2008-11-01 12:32:14 ----N---- C:\WINDOWS\system32\dot3ui.dll
2008-11-01 12:32:14 ----N---- C:\WINDOWS\system32\dot3svc.dll
2008-11-01 12:32:02 ----N---- C:\WINDOWS\system32\eappcfg.dll
2008-11-01 12:32:02 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2008-11-01 12:32:02 ----N---- C:\WINDOWS\system32\eapolqec.dll
2008-11-01 12:32:01 ----N---- C:\WINDOWS\system32\eapsvc.dll
2008-11-01 12:32:01 ----N---- C:\WINDOWS\system32\eapqec.dll
2008-11-01 12:32:01 ----N---- C:\WINDOWS\system32\eappprxy.dll
2008-11-01 12:32:01 ----N---- C:\WINDOWS\system32\eapphost.dll
2008-11-01 12:32:01 ----N---- C:\WINDOWS\system32\eappgnui.dll
2008-11-01 12:31:54 ----A---- C:\WINDOWS\005413_.tmp
2008-11-01 12:31:54 ----A---- C:\WINDOWS\003300_.tmp
2008-11-01 12:31:01 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2008-11-01 12:31:01 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2008-11-01 12:31:00 ----N---- C:\WINDOWS\system32\kbdpash.dll
2008-11-01 12:31:00 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2008-11-01 12:30:58 ----N---- C:\WINDOWS\system32\kmsvc.dll
2008-11-01 12:30:56 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2008-11-01 12:30:34 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-11-01 12:30:33 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-11-01 12:30:33 ----N---- C:\WINDOWS\system32\mmcex.dll
2008-11-01 12:30:32 ----N---- C:\WINDOWS\system32\mmcperf.exe
2008-11-01 12:30:00 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2008-11-01 12:30:00 ----N---- C:\WINDOWS\system32\mssha.dll
2008-11-01 12:29:54 ----A---- C:\WINDOWS\system32\msxml6r.dll
2008-11-01 12:29:52 ----N---- C:\WINDOWS\system32\napmontr.dll
2008-11-01 12:29:52 ----N---- C:\WINDOWS\system32\napipsec.dll
2008-11-01 12:29:51 ----N---- C:\WINDOWS\system32\napstat.exe
2008-11-01 12:29:30 ----N---- C:\WINDOWS\system32\onex.dll
2008-11-01 12:29:22 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2008-11-01 12:29:17 ----N---- C:\WINDOWS\system32\qcliprov.dll
2008-11-01 12:29:17 ----N---- C:\WINDOWS\system32\qagentrt.dll
2008-11-01 12:29:17 ----N---- C:\WINDOWS\system32\qagent.dll
2008-11-01 12:29:14 ----N---- C:\WINDOWS\system32\qutil.dll
2008-11-01 12:29:12 ----N---- C:\WINDOWS\system32\rasqec.dll
2008-11-01 12:29:08 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2008-11-01 12:28:56 ----N---- C:\WINDOWS\system32\setupn.exe
2008-11-01 12:28:19 ----N---- C:\WINDOWS\system32\tsgqec.dll
2008-11-01 12:28:17 ----N---- C:\WINDOWS\system32\tspkg.dll
2008-11-01 12:27:48 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2008-11-01 12:27:48 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2008-11-01 12:27:45 ----N---- C:\WINDOWS\system32\wlanapi.dll
2008-11-01 12:27:41 ----N---- C:\WINDOWS\system32\wmphoto.dll
2008-10-23 20:15:54 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$

======List of files/folders modified in the last 1 months======

2008-11-18 21:30:30 ----AD---- C:\WINDOWS\Temp
2008-11-18 20:44:56 ----D---- C:\Program Files\Common Files\Symantec Shared
2008-11-18 20:41:51 ----A---- C:\WINDOWS\msiosd.ini
2008-11-18 20:36:47 ----SD---- C:\WINDOWS\Tasks
2008-11-17 22:29:39 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-11-17 22:29:29 ----D---- C:\WINDOWS\system32\CatRoot2
2008-11-15 17:18:55 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-11-15 12:44:07 ----SHD---- C:\WINDOWS\Installer
2008-11-15 12:44:07 ----D---- C:\Config.Msi
2008-11-15 12:43:10 ----D---- C:\Program Files\Common Files
2008-11-14 18:31:15 ----A---- C:\WINDOWS\ntbtlog.txt
2008-11-14 18:06:46 ----D---- C:\WINDOWS
2008-11-14 18:06:39 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-11-14 18:01:46 ----D---- C:\WINDOWS\system32
2008-11-14 17:54:29 ----HD---- C:\WINDOWS\inf
2008-11-14 17:54:22 ----D---- C:\WINDOWS\Help
2008-11-14 17:43:50 ----AD---- C:\Program Files
2008-11-13 21:13:32 ----D---- C:\Program Files\Google
2008-11-13 21:13:30 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2008-11-13 20:06:06 ----D---- C:\Program Files\Windows Media Player
2008-11-13 20:06:00 ----D---- C:\Program Files\Registry Mechanic
2008-11-13 20:05:36 ----D---- C:\Program Files\Lavasoft
2008-11-13 19:57:01 ----D---- C:\WINDOWS\system32\drivers
2008-11-13 14:09:57 ----HD---- C:\WINDOWS\$hf_mig$
2008-11-13 13:31:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-11-13 13:28:04 ----A---- C:\WINDOWS\OEWABLog.txt
2008-11-13 13:22:27 ----A---- C:\WINDOWS\setuplog.txt
2008-11-13 13:20:42 ----D---- C:\WINDOWS\system32\Setup
2008-11-13 13:20:41 ----D---- C:\WINDOWS\system32\wbem
2008-11-13 13:20:41 ----D---- C:\WINDOWS\AppPatch
2008-11-13 13:20:40 ----RSD---- C:\WINDOWS\Fonts
2008-11-13 12:52:12 ----D---- C:\WINDOWS\system32\CatRoot
2008-11-13 12:51:35 ----A---- C:\WINDOWS\imsins.BAK
2008-11-13 12:44:13 ----D---- C:\WINDOWS\security
2008-11-13 12:39:58 ----D---- C:\Program Files\Messenger
2008-11-13 12:28:05 ----D---- C:\WINDOWS\WinSxS
2008-11-13 12:27:25 ----D---- C:\WINDOWS\ServicePackFiles
2008-11-13 12:27:04 ----D---- C:\WINDOWS\network diagnostic
2008-11-13 12:27:02 ----D---- C:\WINDOWS\ime
2008-11-13 12:25:18 ----D---- C:\WINDOWS\system32\en-US
2008-11-13 12:25:17 ----D---- C:\WINDOWS\system32\usmt
2008-11-13 12:24:46 ----D---- C:\WINDOWS\peernet
2008-11-13 12:24:43 ----D---- C:\Program Files\Movie Maker
2008-11-13 12:02:32 ----D---- C:\WINDOWS\system32\Restore
2008-11-13 12:02:31 ----D---- C:\WINDOWS\system32\npp
2008-11-13 12:02:15 ----D---- C:\WINDOWS\msagent
2008-11-13 12:02:00 ----D---- C:\WINDOWS\srchasst
2008-11-13 12:01:42 ----D---- C:\Program Files\NetMeeting
2008-11-13 12:01:29 ----D---- C:\WINDOWS\system32\Com
2008-11-13 12:01:11 ----D---- C:\Program Files\Windows NT
2008-11-13 12:01:10 ----D---- C:\Program Files\Outlook Express
2008-11-13 12:00:54 ----D---- C:\Program Files\Common Files\System
2008-11-13 11:59:26 ----D---- C:\WINDOWS\system32\oobe
2008-11-13 11:59:19 ----D---- C:\WINDOWS\system
2008-11-13 11:48:29 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-11-13 11:41:28 ----D---- C:\WINDOWS\EHome
2008-11-11 19:02:06 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-11-10 21:58:53 ----D---- C:\Program Files\DivX
2008-11-10 19:02:20 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-11-10 17:49:00 ----D---- C:\Documents and Settings\Jamie\Application Data\Webroot
2008-11-10 17:48:59 ----D---- C:\Program Files\Webroot
2008-11-10 17:48:59 ----D---- C:\Documents and Settings\All Users\Application Data\Webroot
2008-11-09 22:32:28 ----SHD---- C:\RECYCLER
2008-11-09 22:32:28 ----D---- C:\Documents and Settings
2008-11-09 22:08:48 ----D---- C:\Documents and Settings\All Users\Application Data\Kontiki
2008-11-09 17:21:08 ----D---- C:\Documents and Settings\All Users\Application Data\Avg8
2008-11-09 11:53:39 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-11-09 11:04:52 ----D---- C:\29bb2c874f1503f6882e
2008-11-09 11:01:39 ----D---- C:\WINDOWS\Downloaded Installations
2008-11-07 12:17:10 ----A---- C:\WINDOWS\Ulead32.ini
2008-11-03 16:10:26 ----A---- C:\WINDOWS\system32\MRT.exe
2008-11-02 02:49:30 ----A---- C:\WINDOWS\NeroDigital.ini
2008-10-30 20:34:21 ----D---- C:\WINDOWS\Minidump

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK7;AMD K7 Processor Driver; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-13 37760]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2008-11-09 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2008-11-09 26824]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\InCDPass.sys [2005-01-03 28928]
R1 msikbd2k;Multimedia Keyboard Filter Driver; C:\WINDOWS\System32\DRIVERS\msikbd2k.sys [2005-01-24 6656]
R1 PQIMount;PQIMount; C:\WINDOWS\system32\drivers\PQIMount.sys [2004-11-22 46800]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys []
R1 SRTSP;SRTSP; C:\WINDOWS\System32\Drivers\SRTSP.SYS [2007-11-30 279088]
R1 SRTSPX;SRTSPX; C:\WINDOWS\System32\Drivers\SRTSPX.SYS [2007-11-30 43696]
R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [2006-09-02 186048]
R1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2004-10-04 62799]
R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [2003-12-17 17005]
R2 BT848;WinFast TV2000 XP WDM Video Capture; C:\WINDOWS\system32\drivers\wf2kvcap.sys [2004-03-12 75829]
R2 CdaD10BA;CdaD10BA; \??\C:\WINDOWS\system32\drivers\CdaD10BA.SYS []
R2 tv2ktunr;WinFast TV2000 XP WDM TVTuner; C:\WINDOWS\system32\drivers\wf2ktunr.sys [2004-03-12 33959]
R2 Tv2kXbar;WinFast TV2000 XP WDM Crossbar; C:\WINDOWS\system32\drivers\wf2kxbar.sys [2004-03-12 10005]
R3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys [2003-07-01 733248]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 IntelS51;Intel(R) 536EP Modem; C:\WINDOWS\system32\DRIVERS\IntelS51.sys [2004-12-10 1903338]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 NAVENG;NAVENG; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20081118.002\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20081118.002\NAVEX15.SYS []
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2003-12-18 1618939]
R3 Pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 10368]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2002-09-03 5888]
R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; C:\WINDOWS\System32\DRIVERS\sisnic.sys [2002-07-10 32256]
R3 SSKBFD;Webroot Spy Sweeper Keylogger Shield Keyboard Filter; C:\WINDOWS\System32\Drivers\sskbfd.sys [2008-01-04 23920]
R3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [2006-09-02 11968]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 SYMFW;SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [2006-09-02 144832]
R3 SYMIDS;SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [2006-09-02 39104]
R3 SYMIDSCO;SYMIDSCO; \??\C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\IDS-DI~1\20081117.001\SymIDSCo.sys []
R3 SYMNDIS;SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2006-09-02 33216]
R3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2006-09-02 26432]
R3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-03-30 47230]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDfs.sys [2005-01-03 99456]
S1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\incdrm.sys [2005-01-03 27776]
S3 alcan5wn;SpeedTouch USB ADSL PPP Networking Driver (NDISWAN); C:\WINDOWS\system32\DRIVERS\alcan5wn.sys [2003-12-08 53600]
S3 alcaudsl;SpeedTouch ADSL Modem ATM Transport; C:\WINDOWS\system32\DRIVERS\alcaudsl.sys [2003-12-08 70688]
S3 BEHRINGER_2902;usb-audio.de driver for BEHRINGER USB AUDIO; C:\WINDOWS\System32\Drivers\BUSB2902.sys [2006-07-03 110272]
S3 CA500AI;Easy Pix Sv Still Image Capture; C:\WINDOWS\System32\Drivers\BULK2NM.sys [2002-07-22 11117]
S3 CA500AV;Easy Pix Sv WDM Video Capture; C:\WINDOWS\system32\DRIVERS\CA500AV.SYS [2002-07-19 492619]
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PCANDIS5;PCANDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCANDIS5.SYS []
S3 RimUsb;BlackBerry Smartphone; C:\WINDOWS\System32\Drivers\RimUsb.sys []
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys [2007-01-18 26496]
S3 Ser2pl;MAT Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2003-07-16 43264]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 SRTSPL;SRTSPL; C:\WINDOWS\System32\Drivers\SRTSPL.SYS [2007-11-30 317616]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 tap0801;blueRoam SSL VPN Adapter; C:\WINDOWS\system32\DRIVERS\tap0801.sys [2005-08-18 23552]
S3 toshidpt;TOSHIBA Bluetooth HID port driver; C:\WINDOWS\system32\drivers\Toshidpt.sys [2002-10-16 2851]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2005-04-22 98048]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2004-07-08 36531]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2005-04-22 52608]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 TosRfSnd;Bluetooth Audio Device (WDM) from TOSHIBA; C:\WINDOWS\system32\drivers\TosRfSnd.sys [2005-04-06 50048]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2004-12-21 34816]
S3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 vncdrv;vncdrv; C:\WINDOWS\system32\DRIVERS\vncdrv.sys [2004-06-26 4736]
S3 WFIOCTL;WFIOCTL; \??\C:\Program Files\WinFast\WFTVFM\WFIOCTL.SYS []
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-07-07 611664]
R2 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2006-09-02 198336]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-11-09 231704]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-09-03 105632]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-09-03 105632]
R2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-09-03 105632]
R2 EPSONStatusAgent2;EPSON Printer Status Agent2; C:\Program Files\Common Files\EPSON\eEBAPI\SAgent2.exe [2002-07-17 94208]
R2 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2005-01-03 854528]
R2 LiveUpdate Notice Ex;LiveUpdate Notice Service Ex; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-09-03 105632]
R2 lxdx_device;lxdx_device; C:\WINDOWS\system32\lxdxcoms.exe [2008-02-28 594600]
R2 nhksrv;Netropa NHK Server; C:\Program Files\Office keyboard utility\1.1\nhksrv.exe [2005-01-24 28672]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\System32\nvsvc32.exe [2003-12-18 77824]
R2 SymAppCore;Symantec AppCore Service; C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe [2006-09-02 46736]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 WebrootSpySweeperService;Webroot Spy Sweeper Engine; C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe [2008-01-04 3572592]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 wwEngineSvc;Window Washer Engine; C:\Program Files\Webroot\Washer\WasherSvc.exe [2007-11-26 598856]
R3 Symantec Core LC;Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2008-03-22 1251720]
S2 KService;KService; C:\Program Files\Kontiki\KService.exe [2007-11-27 3072184]
S2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
S2 lxdxCATSCustConnectService;lxdxCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdxserv.exe [2008-02-28 98984]
S2 RoxLiveShare9;LiveShare P2P Server 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe []
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-22 168432]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 ISPwdSvc;Symantec IS Password Validation; C:\Program Files\Norton AntiVirus\isPwdSvc.exe [2006-09-06 79496]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-09-02 2528960]
S3 Macromedia Licensing Service;Macromedia Licensing Service; C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [2005-11-26 68096]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe [2003-12-09 65625]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe [2003-12-09 65622]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WmcCds;Windows Media Connect (WMC); c:\program files\windows media connect\mswmccds.exe [2004-08-10 483328]
S3 WmcCdsLs;Windows Media Connect (WMC) Helper; C:\Program Files\Windows Media Connect\mswmcls.exe [2004-08-10 28160]
S4 Norton Ghost;Norton Ghost; C:\Program Files\Symantec\Norton Ghost\Agent\PQV2iSvc.exe [2004-11-22 1273856]

-----------------EOF-----------------

And here is the first half

Thanks again
Logfile of random's system information tool 1.04 (written by random/random)
Run by Jamie at 2008-11-18 21:27:20
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 99 GB (63%) free of 156 GB
Total RAM: 2047 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:30:27, on 18/11/08
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Office keyboard utility\1.1\nhksrv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Common Files\EPSON\eEBAPI\SAgent2.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\lxdxcoms.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Webroot\Washer\WasherSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Office keyboard utility\1.1\OFFICEKB.exe
C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
C:\Program Files\Lexmark 3600-4600 Series\lxdxMsdMon.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Office keyboard utility\1.1\MMKEYB.EXE
C:\Program Files\Office keyboard utility\1.1\TrayMon.exe
C:\Program Files\Office keyboard utility\1.1\osd.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
C:\Program Files\Norton AntiVirus\NAVW32.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Jamie\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Jamie.exe
C:\Documents and Settings\Jamie\Desktop\RSIT.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = "C:\Program Files\Outlook Express\msimn.exe"
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Wanadoo
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [FLMOFFICEKEYBOARD] "C:\Program Files\Office keyboard utility\1.1\OFFICEKB.exe"
O4 - HKLM\..\Run: [lxdxmon.exe] "C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe"
O4 - HKLM\..\Run: [lxdxamon] "C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe"
O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [Window Washer] "C:\Program Files\Webroot\Washer\wwDisp.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [] (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [] (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [] (User 'Default user')
O4 - Global Startup: AutorunsDisabled
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Search with Wanadoo - res://C:\PROGRA~1\Wanadoo\WSBar\WSBar.dll/VSearch.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - http://www.musicnotes.com/download/mnviewer.cab
O16 - DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} (AxProdInfoCtl Class) - http://www.symantec.com/techsupp/activedata/nprdtinf.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1124052369328
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {DA8484DE-52DB-4860-A986-61A8682E298A} (LiveX_v7.0.2.0) - http://gwithian.dipmap.com/cab/OCXChecker_6110.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\eEBAPI\SAgent2.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: KService - Kontiki Inc. - C:\Program Files\Kontiki\KService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: lxdxCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdxserv.exe
O23 - Service: lxdx_device - - C:\WINDOWS\system32\lxdxcoms.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Program Files\Office keyboard utility\1.1\nhksrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: Window Washer Engine (wwEngineSvc) - Webroot Software, Inc. - C:\Program Files\Webroot\Washer\WasherSvc.exe
O24 - Desktop Component 0: (no name) - http://www.lighthouse-media.co.uk/Gwithian%20Lines/Daily%20Images/dec28.jpg

--
End of file - 11872 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - Jamie.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2008-11-09 455960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2008-11-09 2055960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2008-11-09 2055960]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Symantec PIF AlertEng"=C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-09-03 84640]
"ezShieldProtector for Px"=C:\WINDOWS\system32\ezSP_Px.exe [2002-08-20 40960]
"FLMOFFICEKEYBOARD"=C:\Program Files\Office keyboard utility\1.1\OFFICEKB.exe [2005-01-24 215040]
"lxdxmon.exe"=C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe [2008-03-20 668328]
"lxdxamon"=C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe [2008-03-20 16040]
"SpySweeper"=C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe [2008-01-04 5367664]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2006-09-11 218032]
"Window Washer"=C:\Program Files\Webroot\Washer\wwDisp.exe [2007-11-26 1206600]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
AutorunsDisabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
C:\WINDOWS\system32\WRLogonNTF.dll [2008-01-04 219504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WINDOW~3\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
scecli

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WebrootSpySweeperService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WebrootSpySweeperService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableStatusMessages"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
"C:\WINDOWS\system32\dplaysvr.exe"="C:\WINDOWS\system32\dplaysvr.exe:*:Enabled:Microsoft DirectPlay Helper"
"C:\Codemasters\MMV3\micro.exe"="C:\Codemasters\MMV3\micro.exe:*:Enabled:micro"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\games\Chessmaster Challenge\kazaa.exe"="C:\games\Chessmaster Challenge\kazaa.exe:*:Enabled:Kazaa"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Kontiki\KService.exe"="C:\Program Files\Kontiki\KService.exe:*:Enabled:Delivery Manager Service"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\blueroam_client\bin\openvpn.exe"="C:\Program Files\blueroam_client\bin\openvpn.exe:*:Enabled:blueRoam VPN"
"C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_03\bin\javaw.exe:*:Enabled:Java(TM) 2 Platform Standard Edition windows binary"
"C:\Program Files\Java\jre1.6.0_03\bin\java.exe"="C:\Program Files\Java\jre1.6.0_03\bin\java.exe:*:Enabled:Java(TM) 2 Platform Standard Edition binary"
"C:\Program Files\Kontiki\KHost.exe"="C:\Program Files\Kontiki\KHost.exe:*:Enabled:KHost"
"C:\Program Files\Roxio\Media Manager 9\MediaManager9.exe"="C:\Program Files\Roxio\Media Manager 9\MediaManager9.exe:*:Enabled:MediaManager9 Module"
"C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe"="C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe:*:Enabled:RoxioUpnpService9"
"C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe"="C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe:*:Enabled:RoxioUPnPRenderer9"
"C:\WINDOWS\system32\lxdxcfg.exe"="C:\WINDOWS\system32\lxdxcfg.exe:*:Enabled:Printer Communication System"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdxpswx.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdxpswx.exe:*:Enabled:Printer Status Window Interface"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdxtime.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdxtime.exe:*:Enabled:Lexmark Connect Time Executable"
"C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe"="C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe:*:Enabled:Printer Device Monitor"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdxjswx.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdxjswx.exe:*:Enabled:Job Status Window Interface"
"C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe"="C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe:*:Enabled:Lexmark Device Monitor"
"C:\Program Files\Lexmark 3600-4600 Series\FRun.exe"="C:\Program Files\Lexmark 3600-4600 Series\FRun.exe:*:Enabled:Lexmark Productivity Studio"
"C:\Program Files\Abbyy FineReader 6.0 Sprint\scan\scanman6.exe"="C:\Program Files\Abbyy FineReader 6.0 Sprint\scan\scanman6.exe:*:Enabled:ABBYY FineReader"
"C:\WINDOWS\system32\lxdxcoms.exe"="C:\WINDOWS\system32\lxdxcoms.exe:*:Enabled:Lexmark Communications System"
"C:\Program Files\Lexmark Fax Solutions\faxctr.exe"="C:\Program Files\Lexmark Fax Solutions\faxctr.exe:*:Enabled:Fax software"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe"="C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe:*:Enabled:RoxioUpnpService9"
"C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe"="C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe:*:Enabled:RoxioUPnPRenderer9"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{50e8d5fa-1ba8-11dd-94a6-000d87444f50}]
shell\AutoRun\command - G:\InstallTomTomHOME.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a3232660-d145-11db-9229-000d87444f50}]
shell\AutoRun\command - G:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{a3232661-d145-11db-9229-000d87444f50}]
shell\AutoRun\command - L:\PortableApps\PortableAppsMenu\PortableAppsMenu.exe


======File associations======

.bat - edit - %SystemRoot%\System32\NOTEPAD.EXE %1"
.ini - open - %SystemRoot%\System32\NOTEPAD.EXE %1"
.js - open - "C:\Program Files\Macromedia\Dreamweaver MX\Dreamweaver.exe" "%1"

======List of files/folders created in the last 1 months======

2008-11-18 21:27:20 ----D---- C:\rsit
2008-11-15 12:43:10 ----D---- C:\Program Files\Common Files\ODBC
2008-11-13 22:52:40 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-11-13 13:24:08 ----D---- C:\WINDOWS\Prefetch
2008-11-13 12:51:14 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-11-13 12:50:35 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-11-13 12:49:56 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-11-13 12:49:06 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-11-13 12:48:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-11-13 12:47:39 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2008-11-13 12:47:01 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-11-13 12:46:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-11-13 12:45:26 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-11-13 12:44:39 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-11-13 12:43:58 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-11-13 12:43:18 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-11-13 12:42:40 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
2008-11-13 12:41:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-11-13 12:41:15 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-11-13 12:40:37 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-11-13 12:39:54 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-11-13 12:39:21 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-11-13 12:25:07 ----D---- C:\WINDOWS\system32\scripting
2008-11-13 12:24:54 ----D---- C:\WINDOWS\l2schemas
2008-11-13 12:24:49 ----D---- C:\WINDOWS\system32\en
2008-11-13 12:24:46 ----D---- C:\WINDOWS\system32\bits
2008-11-13 11:41:42 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-11-12 23:17:45 ----D---- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2008-11-12 05:18:39 ----A---- C:\WINDOWS\system32\mstsc.exe
2008-11-12 05:18:38 ----A---- C:\WINDOWS\system32\xmllite.dll
2008-11-12 05:18:38 ----A---- C:\WINDOWS\system32\verclsid.exe
2008-11-12 05:18:38 ----A---- C:\WINDOWS\system32\tzchange.exe
2008-11-12 05:18:38 ----A---- C:\WINDOWS\system32\mstscax.dll
2008-11-12 05:18:37 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2008-11-12 05:18:35 ----A---- C:\WINDOWS\system32\dxdiagn.dll
2008-11-12 05:18:34 ----A---- C:\WINDOWS\system32\p2pgasvc.dll
2008-11-12 05:18:34 ----A---- C:\WINDOWS\system32\kbdukx.dll
2008-11-12 05:18:33 ----A---- C:\WINDOWS\system32\slcoinst.dll
2008-11-12 05:18:29 ----A---- C:\WINDOWS\system32\logman.exe
2008-11-12 05:18:29 ----A---- C:\WINDOWS\system32\ir41_qc.dll
2008-11-12 05:18:29 ----A---- C:\WINDOWS\system32\encdec.dll
2008-11-12 05:18:28 ----A---- C:\WINDOWS\system32\slserv.exe
2008-11-12 05:18:27 ----A---- C:\WINDOWS\system32\dsprpres.dll
2008-11-12 05:18:26 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2008-11-12 05:18:25 ----A---- C:\WINDOWS\system32\pnrpnsp.dll
2008-11-12 05:18:23 ----A---- C:\WINDOWS\system32\wscntfy.exe
2008-11-12 05:18:21 ----A---- C:\WINDOWS\system32\w3ssl.dll
2008-11-12 05:18:20 ----A---- C:\WINDOWS\system32\p2psvc.dll
2008-11-12 05:18:19 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2008-11-12 05:18:18 ----A---- C:\WINDOWS\system32\kbdsmsno.dll
2008-11-12 05:18:16 ----A---- C:\WINDOWS\system32\kbdfi1.dll
2008-11-12 05:18:16 ----A---- C:\WINDOWS\system32\ati2dvaa.dll
2008-11-12 05:18:15 ----A---- C:\WINDOWS\system32\spupdwxp.exe
2008-11-12 05:18:14 ----A---- C:\WINDOWS\system32\slgen.dll
2008-11-12 05:18:14 ----A---- C:\WINDOWS\system32\ir41_qcx.dll
2008-11-12 05:18:13 ----A---- C:\WINDOWS\system32\sbe.dll
2008-11-12 05:18:13 ----A---- C:\WINDOWS\system32\p2pgraph.dll
2008-11-12 05:18:13 ----A---- C:\WINDOWS\system32\ir50_qcx.dll
2008-11-12 05:18:11 ----A---- C:\WINDOWS\system32\kbdmlt47.dll
2008-11-12 05:18:10 ----A---- C:\WINDOWS\system32\sbeio.dll
2008-11-12 05:18:07 ----A---- C:\WINDOWS\system32\slrundll.exe
2008-11-12 05:18:07 ----A---- C:\WINDOWS\slrundll.exe
2008-11-12 05:18:06 ----A---- C:\WINDOWS\system32\wshbth.dll
2008-11-12 05:18:05 ----A---- C:\WINDOWS\system32\s3gnb.dll
2008-11-12 05:18:05 ----A---- C:\WINDOWS\system32\msdadiag.dll
2008-11-12 05:18:05 ----A---- C:\WINDOWS\system32\ir50_32.dll
2008-11-12 05:18:05 ----A---- C:\WINDOWS\system32\httpapi.dll
2008-11-12 05:18:03 ----A---- C:\WINDOWS\system32\hccoin.dll
2008-11-12 05:18:00 ----A---- C:\WINDOWS\system32\smbinst.exe
2008-11-12 05:17:59 ----A---- C:\WINDOWS\system32\fwcfg.dll
2008-11-12 05:17:59 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2008-11-12 05:17:57 ----A---- C:\WINDOWS\system32\proxycfg.exe
2008-11-12 05:17:57 ----A---- C:\WINDOWS\system32\d3d9.dll
2008-11-12 05:17:53 ----A---- C:\WINDOWS\system32\mtxparhd.dll
2008-11-12 05:17:53 ----A---- C:\WINDOWS\system32\mssap.dll
2008-11-12 05:17:53 ----A---- C:\WINDOWS\system32\ati3d1ag.dll
2008-11-12 05:17:52 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2008-11-12 05:17:52 ----A---- C:\WINDOWS\system32\kbdinmal.dll
2008-11-12 05:17:51 ----A---- C:\WINDOWS\system32\twext.dll
2008-11-12 05:17:50 ----A---- C:\WINDOWS\system32\winbrand.dll
2008-11-12 05:17:50 ----A---- C:\WINDOWS\system32\spnpinst.exe
2008-11-12 05:17:50 ----A---- C:\WINDOWS\system32\kbdinbe1.dll
2008-11-12 05:17:49 ----A---- C:\WINDOWS\system32\xmlprovi.dll
2008-11-12 05:17:49 ----A---- C:\WINDOWS\system32\xmlprov.dll
2008-11-12 05:17:46 ----A---- C:\WINDOWS\system32\cmsetacl.dll
2008-11-12 05:17:41 ----A---- C:\WINDOWS\system32\btpanui.dll
2008-11-12 05:17:40 ----A---- C:\WINDOWS\system32\fsquirt.exe
2008-11-12 05:17:37 ----A---- C:\WINDOWS\system32\slextspk.dll
2008-11-12 05:17:36 ----A---- C:\WINDOWS\system32\bthci.dll
2008-11-12 05:17:36 ----A---- C:\WINDOWS\system32\ati3duag.dll
2008-11-12 05:17:35 ----A---- C:\WINDOWS\system32\powercfg.exe
2008-11-12 05:17:34 ----A---- C:\WINDOWS\system32\winhttp.dll
2008-11-12 05:17:34 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll
2008-11-12 05:17:34 ----A---- C:\WINDOWS\system32\bthserv.dll
2008-11-12 05:17:32 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2008-11-12 05:17:31 ----A---- C:\WINDOWS\system32\winshfhc.dll
2008-11-12 05:17:29 ----A---- C:\WINDOWS\system32\faxpatch.exe
2008-11-12 05:17:27 ----A---- C:\WINDOWS\system32\wscsvc.dll
2008-11-12 05:17:25 ----A---- C:\WINDOWS\system32\mdmxsdk.dll
2008-11-12 05:17:25 ----A---- C:\WINDOWS\system32\kbdmlt48.dll
2008-11-12 05:17:25 ----A---- C:\WINDOWS\system32\encapi.dll
2008-11-12 05:17:24 ----A---- C:\WINDOWS\system32\p2p.dll
2008-11-12 05:17:24 ----A---- C:\WINDOWS\system32\ir50_qc.dll
2008-11-12 05:17:24 ----A---- C:\WINDOWS\system32\ativtmxx.dll
2008-11-12 05:17:23 ----A---- C:\WINDOWS\system32\auditusr.exe
2008-11-12 05:17:22 ----A---- C:\WINDOWS\system32\kbdno1.dll
2008-11-12 05:17:22 ----A---- C:\WINDOWS\system32\hsfcisp2.dll
2008-11-12 05:17:21 ----A---- C:\WINDOWS\system32\xpob2res.dll
2008-11-12 05:17:21 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2008-11-12 05:17:19 ----A---- C:\WINDOWS\system32\strmfilt.dll
2008-11-12 05:17:19 ----A---- C:\WINDOWS\system32\blastcln.exe
2008-11-12 05:17:16 ----A---- C:\WINDOWS\system32\wuauserv.dll
2008-11-12 05:17:15 ----A---- C:\WINDOWS\system32\kbdmaori.dll
2008-11-12 05:17:15 ----A---- C:\WINDOWS\system32\kbdinben.dll
2008-11-12 05:17:13 ----A---- C:\WINDOWS\system32\sdhcinst.dll
2008-11-12 05:17:09 ----A---- C:\WINDOWS\system32\qmgr.dll
2008-11-12 05:17:07 ----A---- C:\WINDOWS\system32\pidgen.dll
2008-11-12 05:17:07 ----A---- C:\WINDOWS\system32\dpcdll.dll
2008-11-12 05:17:05 ----A---- C:\WINDOWS\system32\msftedit.dll
2008-11-12 05:17:05 ----A---- C:\WINDOWS\system32\ieencode.dll
2008-11-12 05:17:05 ----A---- C:\WINDOWS\system32\fltlib.dll
2008-11-12 05:17:04 ----A---- C:\WINDOWS\system32\fltmc.exe
2008-11-12 05:17:01 ----A---- C:\WINDOWS\system32\xpsp2res.dll
2008-11-12 05:17:01 ----A---- C:\WINDOWS\system32\xpsp1res.dll
2008-11-12 05:16:19 ----A---- C:\WINDOWS\winhlp32.exe
2008-11-12 05:16:19 ----A---- C:\WINDOWS\twain_32.dll
2008-11-12 05:16:19 ----A---- C:\WINDOWS\regedit.exe
2008-11-12 05:16:19 ----A---- C:\WINDOWS\hh.exe
2008-11-12 05:16:19 ----A---- C:\WINDOWS\explorer.exe
2008-11-12 05:16:16 ----A---- C:\WINDOWS\system32\activeds.dll
2008-11-12 05:16:16 ----A---- C:\WINDOWS\system32\aclui.dll
2008-11-12 05:16:16 ----A---- C:\WINDOWS\system32\accwiz.exe
2008-11-12 05:16:16 ----A---- C:\WINDOWS\system32\6to4svc.dll
2008-11-12 05:16:15 ----A---- C:\WINDOWS\system32\ahui.exe
2008-11-12 05:16:15 ----A---- C:\WINDOWS\system32\adsnt.dll
2008-11-12 05:16:15 ----A---- C:\WINDOWS\system32\adsmsext.dll
2008-11-12 05:16:15 ----A---- C:\WINDOWS\system32\adsldpc.dll
2008-11-12 05:16:15 ----A---- C:\WINDOWS\system32\adsldp.dll
2008-11-12 05:16:15 ----A---- C:\WINDOWS\system32\actxprxy.dll
2008-11-12 05:16:15 ----A---- C:\WINDOWS\system32\actmovie.exe
2008-11-12 05:16:14 ----A---- C:\WINDOWS\system32\apphelp.dll
2008-11-12 05:16:14 ----A---- C:\WINDOWS\system32\amstream.dll
2008-11-12 05:16:14 ----A---- C:\WINDOWS\system32\alrsvc.dll
2008-11-12 05:16:14 ----A---- C:\WINDOWS\system32\alg.exe
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\audiosrv.dll
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\attrib.exe
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\atmlib.dll
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\atmfd.dll
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\atmadm.exe
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\atl.dll
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\at.exe
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\asycfilt.dll
2008-11-12 05:16:13 ----A---- C:\WINDOWS\system32\asferror.dll
2008-11-12 05:16:12 ----A---- C:\WINDOWS\system32\batt.dll
2008-11-12 05:16:12 ----A---- C:\WINDOWS\system32\batmeter.dll
2008-11-12 05:16:12 ----A---- C:\WINDOWS\system32\basesrv.dll
2008-11-12 05:16:12 ----A---- C:\WINDOWS\system32\avifil32.dll
2008-11-12 05:16:12 ----A---- C:\WINDOWS\system32\autolfn.exe
2008-11-12 05:16:12 ----A---- C:\WINDOWS\system32\autofmt.exe
2008-11-12 05:16:12 ----A---- C:\WINDOWS\system32\authz.dll
2008-11-12 05:16:11 ----A---- C:\WINDOWS\system32\cabinet.dll
2008-11-12 05:16:11 ----A---- C:\WINDOWS\system32\browsewm.dll
2008-11-12 05:16:11 ----A---- C:\WINDOWS\system32\browseui.dll
2008-11-12 05:16:11 ----A---- C:\WINDOWS\system32\browser.dll
2008-11-12 05:16:11 ----A---- C:\WINDOWS\system32\browselc.dll
2008-11-12 05:16:11 ----A---- C:\WINDOWS\system32\bidispl.dll
2008-11-12 05:16:10 ----A---- C:\WINDOWS\system32\catsrvps.dll
2008-11-12 05:16:10 ----A---- C:\WINDOWS\system32\catsrv.dll
2008-11-12 05:16:10 ----A---- C:\WINDOWS\system32\capesnpn.dll
2008-11-12 05:16:10 ----A---- C:\WINDOWS\system32\camocx.dll
2008-11-12 05:16:10 ----A---- C:\WINDOWS\system32\cabview.dll
2008-11-12 05:16:09 ----A---- C:\WINDOWS\system32\cdosys.dll
2008-11-12 05:16:09 ----A---- C:\WINDOWS\system32\cdfview.dll
2008-11-12 05:16:09 ----A---- C:\WINDOWS\system32\catsrvut.dll
2008-11-12 05:16:08 ----A---- C:\WINDOWS\system32\cic.dll
2008-11-12 05:16:08 ----A---- C:\WINDOWS\system32\cfgmgr32.dll
2008-11-12 05:16:08 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2008-11-12 05:16:08 ----A---- C:\WINDOWS\system32\certmgr.dll
2008-11-12 05:16:08 ----A---- C:\WINDOWS\system32\certcli.dll
2008-11-12 05:16:07 ----A---- C:\WINDOWS\system32\cliconfg.exe
2008-11-12 05:16:07 ----A---- C:\WINDOWS\system32\cliconfg.dll
2008-11-12 05:16:07 ----A---- C:\WINDOWS\system32\cleanmgr.exe
2008-11-12 05:16:07 ----A---- C:\WINDOWS\system32\clbcatq.dll
2008-11-12 05:16:07 ----A---- C:\WINDOWS\system32\clbcatex.dll
2008-11-12 05:16:07 ----A---- C:\WINDOWS\system32\cisvc.exe
2008-11-12 05:16:07 ----A---- C:\WINDOWS\system32\ciodm.dll
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\cmprops.dll
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\cmmon32.exe
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\cmdl32.exe
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\cmdial32.dll
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\cmcfg32.dll
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\clusapi.dll
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\clipsrv.exe
2008-11-12 05:16:06 ----A---- C:\WINDOWS\system32\clipbrd.exe
2008-11-12 05:16:05 ----A---- C:\WINDOWS\system32\compatui.dll
2008-11-12 05:16:05 ----A---- C:\WINDOWS\system32\comaddin.dll
2008-11-12 05:16:05 ----A---- C:\WINDOWS\system32\colbact.dll
2008-11-12 05:16:05 ----A---- C:\WINDOWS\system32\cnbjmon.dll
2008-11-12 05:16:05 ----A---- C:\WINDOWS\system32\cmutil.dll
2008-11-12 05:16:05 ----A---- C:\WINDOWS\system32\cmstp.exe
2008-11-12 05:16:04 ----A---- C:\WINDOWS\system32\comsvcs.dll
2008-11-12 05:16:04 ----A---- C:\WINDOWS\system32\comsnap.dll
2008-11-12 05:16:04 ----A---- C:\WINDOWS\system32\comres.dll
2008-11-12 05:16:04 ----A---- C:\WINDOWS\system32\comrepl.dll
2008-11-12 05:16:04 ----A---- C:\WINDOWS\system32\compstui.dll
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\cryptdll.dll
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\cryptdlg.dll
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\crypt32.dll
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\credui.dll
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\corpol.dll
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\conime.exe
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\confmsp.dll
2008-11-12 05:16:03 ----A---- C:\WINDOWS\system32\comuid.dll
2008-11-12 05:16:02 ----A---- C:\WINDOWS\system32\cscript.exe
2008-11-12 05:16:02 ----A---- C:\WINDOWS\system32\cscdll.dll
2008-11-12 05:16:02 ----A---- C:\WINDOWS\system32\cryptui.dll
2008-11-12 05:16:02 ----A---- C:\WINDOWS\system32\cryptsvc.dll
2008-11-12 05:16:02 ----A---- C:\WINDOWS\system32\cryptnet.dll
2008-11-12 05:16:02 ----A---- C:\WINDOWS\system32\cryptext.dll
2008-11-12 05:16:01 ----A---- C:\WINDOWS\system32\d3dim700.dll
2008-11-12 05:16:01 ----A---- C:\WINDOWS\system32\d3d8thk.dll
2008-11-12 05:16:01 ----A---- C:\WINDOWS\system32\d3d8.dll
2008-11-12 05:16:01 ----A---- C:\WINDOWS\system32\ctfmon.exe
2008-11-12 05:16:01 ----A---- C:\WINDOWS\system32\csrss.exe
2008-11-12 05:16:01 ----A---- C:\WINDOWS\system32\cscui.dll
2008-11-12 05:16:00 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll
2008-11-12 05:16:00 ----A---- C:\WINDOWS\system32\dbghelp.dll
2008-11-12 05:16:00 ----A---- C:\WINDOWS\system32\davclnt.dll
2008-11-12 05:16:00 ----A---- C:\WINDOWS\system32\datime.dll
2008-11-12 05:16:00 ----A---- C:\WINDOWS\system32\dataclen.dll
2008-11-12 05:16:00 ----A---- C:\WINDOWS\system32\danim.dll

See here (http://support.microsoft.com/kb/826513) and post back if it helped for virtual memory issue :)

See here (http://support.microsoft.com/kb/826513) and post back if it helped for virtual memory issue :)

Many thanks
This seems to have cured the virtual memory issue

Are these all up-to-date?

AV: AVG Anti-Virus Free
AV: Spy Sweeper with AntiVirus
AV: Norton AntiVirus

Hi
Yea these are all up to date.

Thanks

Then I recommend that you uninstall AVG and disable either Spy Sweeper with AntiVirus or Norton AntiVirus. Running two antiviruses will slow significantly computer down apart from running three.

Post back a fresh HijackThis log afterwards, please :)

HI
Have uninstalled AVG and spy sweeper and done a restart and here is the log file.

Thanks

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:35:41, on 23/11/08
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Office keyboard utility\1.1\nhksrv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\EPSON\eEBAPI\SAgent2.exe
C:\WINDOWS\system32\lxdxcoms.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Washer\WasherSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ezSP_Px.exe
C:\Program Files\Office keyboard utility\1.1\OFFICEKB.exe
C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
C:\Program Files\Office keyboard utility\1.1\MMKEYB.EXE
C:\Program Files\Lexmark 3600-4600 Series\lxdxMsdMon.exe
C:\Program Files\Office keyboard utility\1.1\TrayMon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Office keyboard utility\1.1\osd.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Webroot\Washer\wwDisp.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = "C:\Program Files\Outlook Express\msimn.exe"
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Wanadoo
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\system32\ezSP_Px.exe
O4 - HKLM\..\Run: [FLMOFFICEKEYBOARD] "C:\Program Files\Office keyboard utility\1.1\OFFICEKB.exe"
O4 - HKLM\..\Run: [lxdxmon.exe] "C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe"
O4 - HKLM\..\Run: [lxdxamon] "C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [Window Washer] "C:\Program Files\Webroot\Washer\wwDisp.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [] (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [] (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [] (User 'Default user')
O4 - Global Startup: AutorunsDisabled
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Search with Wanadoo - res://C:\PROGRA~1\Wanadoo\WSBar\WSBar.dll/VSearch.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - http://www.musicnotes.com/download/mnviewer.cab
O16 - DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} (AxProdInfoCtl Class) - http://www.symantec.com/techsupp/activedata/nprdtinf.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1124052369328
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {DA8484DE-52DB-4860-A986-61A8682E298A} (LiveX_v7.0.2.0) - http://gwithian.dipmap.com/cab/OCXChecker_6110.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\eEBAPI\SAgent2.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: KService - Kontiki Inc. - C:\Program Files\Kontiki\KService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: lxdxCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdxserv.exe
O23 - Service: lxdx_device - - C:\WINDOWS\system32\lxdxcoms.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Program Files\Office keyboard utility\1.1\nhksrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Window Washer Engine (wwEngineSvc) - Webroot Software, Inc. - C:\Program Files\Webroot\Washer\WasherSvc.exe
O24 - Desktop Component 0: (no name) - http://www.lighthouse-media.co.uk/Gwithian%20Lines/Daily%20Images/dec28.jpg

--
End of file - 10924 bytes

That looks better :)

Did it help for slowness?

Hi
It has made a little difference when opening programs, but not a massive differance and it's still taking an absolute age to start up.
Also it still seems to be filling up my tenp file very quickly and Norton keeps detecting somthing called Bloodhound exploit 106, says it has delt with it and then a few minutes later finds it again.

Thanks

Jamie

How old is windows installation?

Startup time increases when windows installation is old. Norton itself can also slowdown system.

Temp file thing is normal if those are not malware.

If Norton finds something, please post scan report :)

windows istalation has to be three years or four years old at least

So that can explain some slowness and increased startup time.

Please post next Norton scan report.

Have just completed running norton and this time it has found nothing

Thanks for information.

Still some issues left?

It is now better but things just seem to take ages to open, IE, excell etc.
When I go to my computer properties the system resore box is on max and wont let me change it or turn off restore, although I know your site says this is not a good idea, so i'm guessing theres still somthing not quite right, also even when it,s idel it always mokes the nois like its working away at somthing.

It's not a problem I cant live with but it just dont seem quite right. Could this all just be a symtom of it just getting old (about 5 years)

Thanks very much for all your help so far.

jamie

Sorry for delay, I got no email notification.

Yes it might be getting old. Is windows installation also 5 years old?

No not quite that old, but it's got to be a good 3-4 years old

In that case slowness can be natural due installation age.

I can however redirect you to some windows forum if you like to?

Thanks
But things are running better than they were so maybe i'll just try it for a while and see haw it goes.
Thanks for all your help

Jamie:)

Yes, sure :)

Please post back after a while.

OK, Will do
Thanks for all your help

Jamie

Since this issue appears to be resolved ... this Topic has been closed. Glad I could help.

Note: If it has been five days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.

If it has been less than five days since your last response and you need the thread re-opened, please send me or your helper a private message (pm). A valid, working link to the closed topic is required.