PDA

View Full Version : Laptop running extremely slow



tasman
2009-11-16, 06:36
I have just inheritated this laptop running vista home basic and i have done all the scans and it still seems to be taking forever to do anything, any help on this matter would be greatly appreciated thank you :D:
Here is my hjt log file


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:17:19 PM, on 16/11/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Telstra\BigPond Assist\assist.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\BlazeVideo\BlazeDTV 2.5a\MediaDetector.exe
C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\msfeedssync.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_au&c=81&bd=Presario&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_au&c=81&bd=Presario&pf=laptop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ecc] C:\Program Files\Telstra\BigPond Assist\assist.exe
O4 - HKLM\..\Run: [OPSE reminder] "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" -r "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [BlazeServoTool] "C:\Program Files\BlazeVideo\BlazeDTV 2.5a\MediaDetector.exe"
O4 - HKCU\..\Run: [EPSON Stylus Office TX600FW(Network)] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEKP.EXE /FU "C:\Users\Dad\AppData\Local\Temp\E_SC6F6.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: MediaRing Talk.lnk = C:\Program Files\MediaRing\MediaRing Talk\mrtalk.exe
O4 - Global Startup: McAfee Security Scan.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 11093 bytes

Shaba
2009-11-18, 20:26
Hi tasman

Download random's system information tool (RSIT) by random/random from here (http://images.malwareremoval.com/random/RSIT.exe) and save it to your desktop.
Double click on RSIT.exe to run RSIT.
Click Continue at the disclaimer screen.
Once it has finished, two logs will open. Please post the contents of both log.txt (<< will be maximized) and info.txt (<< will be minimized)

tasman
2009-11-22, 08:13
Hi shaba, thanks for getting back to me here is what you have asked for

Logfile of random's system information tool 1.06 (written by random/random)
Run by Dad at 2009-11-22 17:01:46
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 17 GB (26%) free of 66 GB
Total RAM: 1013 MB (29% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:02:41 PM, on 22/11/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\mobsync.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
C:\Program Files\BlazeVideo\BlazeDTV 2.5a\MediaDetector.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Dad\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Dad.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_au&c=81&bd=Presario&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_au&c=81&bd=Presario&pf=laptop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ecc] C:\Program Files\Telstra\BigPond Assist\assist.exe
O4 - HKLM\..\Run: [OPSE reminder] "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" -r "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [BlazeServoTool] "C:\Program Files\BlazeVideo\BlazeDTV 2.5a\MediaDetector.exe"
O4 - HKCU\..\Run: [EPSON Stylus Office TX600FW(Network)] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEKP.EXE /FU "C:\Users\Dad\AppData\Local\Temp\E_SC6F6.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: MediaRing Talk.lnk = C:\Program Files\MediaRing\MediaRing Talk\mrtalk.exe
O4 - Global Startup: McAfee Security Scan.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12186 bytes

======Scheduled tasks folder======

C:\Windows\tasks\User_Feed_Synchronization-{5A98A44C-0B59-40B7-8BCF-7256C44CBBC8}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2009-08-16 1111320]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-27 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-09-02 1107200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll [2009-11-13 762864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-08-27 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
MSN Toolbar Helper - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll [2009-03-13 82768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-27 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll [2009-09-02 1107200]
{1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - MSN Toolbar - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll [2009-03-13 82768]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-08-28 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-08-28 154136]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-08-28 137752]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2007-10-10 212992]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-10-04 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-28 202032]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-06-02 80896]
"HP Health Check Scheduler"=[ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe []
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2007-10-04 480560]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-27 136600]
"ecc"=C:\Program Files\Telstra\BigPond Assist\assist.exe [2008-06-19 278528]
"OPSE reminder"=C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe -r C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini []
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-08 54840]
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe [2008-11-07 54576]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2009-11-10 2028312]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2009-11-10 417792]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2009-11-12 141600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]
"OM2_Monitor"=C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe [2008-11-07 95536]
"BlazeServoTool"=C:\Program Files\BlazeVideo\BlazeDTV 2.5a\MediaDetector.exe [2007-03-07 270336]
"EPSON Stylus Office TX600FW(Network)"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEKP.EXE [2008-03-05 188928]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-08-09 39408]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan.lnk - C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe

C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MediaRing Talk.lnk - C:\Program Files\MediaRing\MediaRing Talk\mrtalk.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="avgrsstx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-08-20 200704]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 3 months======

2009-11-22 17:01:46 ----D---- C:\rsit
2009-11-21 22:13:49 ----A---- C:\Windows\system32\GEARAspi.dll
2009-11-21 22:12:39 ----D---- C:\Program Files\iPod
2009-11-21 22:12:26 ----D---- C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-11-21 22:12:26 ----D---- C:\Program Files\iTunes
2009-11-21 22:07:41 ----D---- C:\Program Files\QuickTime
2009-11-21 22:06:15 ----SHD---- C:\Config.Msi
2009-11-18 20:09:10 ----D---- C:\ProgramData\Avira
2009-11-18 20:09:10 ----D---- C:\Program Files\Avira
2009-11-18 09:11:58 ----D---- C:\Program Files\Windows Portable Devices
2009-11-18 08:54:01 ----A---- C:\Windows\system32\UIAnimation.dll
2009-11-18 08:54:00 ----A---- C:\Windows\system32\UIRibbonRes.dll
2009-11-18 08:53:59 ----A---- C:\Windows\system32\UIRibbon.dll
2009-11-18 08:50:43 ----A---- C:\Windows\system32\WMPhoto.dll
2009-11-18 08:50:41 ----A---- C:\Windows\system32\cdd.dll
2009-11-18 08:50:39 ----A---- C:\Windows\system32\d3d10warp.dll
2009-11-18 08:50:38 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\XpsRasterService.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-11-18 08:50:37 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\dxdiagn.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\dxdiag.exe
2009-11-18 08:50:37 ----A---- C:\Windows\system32\d2d1.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\xpsservices.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\XpsPrint.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\OpcServices.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\FntCache.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\dxgi.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\DWrite.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d11.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10level9.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10core.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10_1.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10.dll
2009-11-18 08:46:42 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2009-11-18 08:46:41 ----A---- C:\Windows\system32\wpdbusenum.dll
2009-11-18 08:46:41 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2009-11-18 08:46:15 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\wpdshext.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\wpd_ci.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-11-18 08:46:02 ----A---- C:\Windows\system32\WPDSp.dll
2009-11-18 08:41:38 ----A---- C:\Windows\system32\UIAutomationCore.dll
2009-11-18 08:41:38 ----A---- C:\Windows\system32\oleaccrc.dll
2009-11-18 08:41:38 ----A---- C:\Windows\system32\oleacc.dll
2009-11-17 13:28:42 ----D---- C:\ProgramData\Sandlot Games
2009-11-17 11:58:12 ----D---- C:\Users\Dad\AppData\Roaming\7Wonders
2009-11-16 18:13:58 ----A---- C:\Windows\wininit.ini
2009-11-16 16:13:50 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-11-16 16:13:50 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-11-16 14:37:17 ----D---- C:\Windows\system32\eu-ES
2009-11-16 14:37:17 ----D---- C:\Windows\system32\ca-ES
2009-11-16 14:37:09 ----D---- C:\Windows\system32\vi-VN
2009-11-16 14:15:04 ----D---- C:\Windows\system32\EventProviders
2009-11-16 12:21:16 ----D---- C:\Program Files\Trend Micro
2009-11-16 11:01:15 ----D---- C:\ProgramData\McAfee
2009-11-14 11:01:12 ----D---- C:\ProgramData\McAfee Security Scan
2009-11-14 11:01:09 ----D---- C:\Program Files\McAfee Security Scan
2009-11-14 10:58:53 ----D---- C:\ProgramData\NOS
2009-11-13 14:45:26 ----A---- C:\Windows\system32\wups2.dll
2009-11-13 14:45:26 ----A---- C:\Windows\system32\wuauclt.exe
2009-11-13 14:45:25 ----A---- C:\Windows\system32\wucltux.dll
2009-11-13 14:45:25 ----A---- C:\Windows\system32\wuaueng.dll
2009-11-13 14:44:48 ----A---- C:\Windows\system32\wups.dll
2009-11-13 14:44:48 ----A---- C:\Windows\system32\wudriver.dll
2009-11-13 14:44:48 ----A---- C:\Windows\system32\wuapi.dll
2009-11-13 14:44:06 ----A---- C:\Windows\system32\wuwebv.dll
2009-11-13 14:44:06 ----A---- C:\Windows\system32\wuapp.exe
2009-11-12 08:26:06 ----A---- C:\Windows\system32\mshtml.dll
2009-11-11 18:36:18 ----A---- C:\Windows\system32\WSDApi.dll
2009-11-10 09:14:01 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-11-10 09:13:36 ----A---- C:\Windows\system32\SLsvc.exe
2009-11-10 09:13:36 ----A---- C:\Windows\system32\SLCExt.dll
2009-11-10 09:13:29 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2009-11-10 09:13:28 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2009-11-10 09:13:22 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-11-10 09:13:11 ----A---- C:\Windows\system32\mssrch.dll
2009-11-10 09:13:02 ----A---- C:\Windows\system32\tquery.dll
2009-11-10 09:12:57 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-11-10 09:12:55 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-11-10 09:12:54 ----A---- C:\Windows\system32\scavenge.dll
2009-11-10 09:12:53 ----A---- C:\Windows\system32\RMActivate.exe
2009-11-10 09:12:48 ----A---- C:\Windows\system32\msi.dll
2009-11-10 09:12:45 ----A---- C:\Windows\system32\imapi2fs.dll
2009-11-10 09:12:41 ----A---- C:\Windows\system32\secproc_isv.dll
2009-11-10 09:12:39 ----A---- C:\Windows\system32\WscEapPr.dll
2009-11-10 09:12:39 ----A---- C:\Windows\system32\wcnwiz2.dll
2009-11-10 09:12:38 ----A---- C:\Windows\system32\sysmain.dll
2009-11-10 09:12:30 ----A---- C:\Windows\system32\icardagt.exe
2009-11-10 09:12:26 ----A---- C:\Windows\system32\EhStorShell.dll
2009-11-10 09:12:18 ----A---- C:\Windows\system32\spreview.exe
2009-11-10 09:12:18 ----A---- C:\Windows\system32\spinstall.exe
2009-11-10 09:12:17 ----A---- C:\Windows\system32\drmv2clt.dll
2009-11-10 09:12:13 ----A---- C:\Windows\system32\spwizui.dll
2009-11-10 09:12:12 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-11-10 09:12:11 ----A---- C:\Windows\system32\secproc.dll
2009-11-10 09:12:08 ----A---- C:\Windows\system32\shell32.dll
2009-11-10 09:12:00 ----A---- C:\Windows\system32\p2psvc.dll
2009-11-10 09:11:59 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-11-10 09:11:59 ----A---- C:\Windows\system32\mssvp.dll
2009-11-10 09:11:57 ----A---- C:\Windows\system32\mscoree.dll
2009-11-10 09:11:56 ----A---- C:\Windows\system32\mssphtb.dll
2009-11-10 09:11:56 ----A---- C:\Windows\system32\mssph.dll
2009-11-10 09:11:55 ----A---- C:\Windows\system32\imapi2.dll
2009-11-10 09:11:52 ----A---- C:\Windows\system32\sdohlp.dll
2009-11-10 09:11:47 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-11-10 09:11:47 ----A---- C:\Windows\system32\esent.dll
2009-11-10 09:11:45 ----A---- C:\Windows\system32\DevicePairing.dll
2009-11-10 09:11:42 ----A---- C:\Windows\system32\sperror.dll
2009-11-10 09:11:41 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-11-10 09:11:41 ----A---- C:\Windows\system32\korwbrkr.dll
2009-11-10 09:11:40 ----A---- C:\Windows\system32\wevtsvc.dll
2009-11-10 09:11:39 ----A---- C:\Windows\system32\SLC.dll
2009-11-10 09:11:39 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-11-10 09:11:39 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-11-10 09:11:39 ----A---- C:\Windows\system32\IasMigReader.exe
2009-11-10 09:11:37 ----A---- C:\Windows\system32\msshsq.dll
2009-11-10 09:11:32 ----A---- C:\Windows\system32\msjet40.dll
2009-11-10 09:11:31 ----A---- C:\Windows\system32\MPSSVC.dll
2009-11-10 09:11:29 ----A---- C:\Windows\system32\msxml6.dll
2009-11-10 09:11:27 ----A---- C:\Windows\system32\Query.dll
2009-11-10 09:11:27 ----A---- C:\Windows\system32\qmgr.dll
2009-11-10 09:11:26 ----A---- C:\Windows\system32\msexch40.dll
2009-11-10 09:11:25 ----A---- C:\Windows\system32\P2PGraph.dll
2009-11-10 09:11:25 ----A---- C:\Windows\system32\diagperf.dll
2009-11-10 09:11:23 ----A---- C:\Windows\system32\ole32.dll
2009-11-10 09:11:23 ----A---- C:\Windows\system32\ntdll.dll
2009-11-10 09:11:21 ----A---- C:\Windows\system32\srchadmin.dll
2009-11-10 09:11:21 ----A---- C:\Windows\system32\msxml3.dll
2009-11-10 09:11:20 ----A---- C:\Windows\system32\winload.exe
2009-11-10 09:11:19 ----A---- C:\Windows\system32\mblctr.exe
2009-11-10 09:11:19 ----A---- C:\Windows\system32\EncDec.dll
2009-11-10 09:11:18 ----A---- C:\Windows\system32\uDWM.dll
2009-11-10 09:11:18 ----A---- C:\Windows\system32\mmc.exe
2009-11-10 09:11:16 ----A---- C:\Windows\system32\dfsr.exe
2009-11-10 09:11:15 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-11-10 09:11:14 ----A---- C:\Windows\system32\riched20.dll
2009-11-10 09:11:12 ----A---- C:\Windows\system32\fdBth.dll
2009-11-10 09:11:09 ----A---- C:\Windows\system32\RacEngn.dll
2009-11-10 09:11:06 ----A---- C:\Windows\system32\kernel32.dll
2009-11-10 09:11:04 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-11-10 09:11:04 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-11-10 09:11:04 ----A---- C:\Windows\system32\milcore.dll
2009-11-10 09:11:02 ----A---- C:\Windows\system32\EhStorAPI.dll
2009-11-10 09:11:02 ----A---- C:\Windows\system32\CertEnroll.dll
2009-11-10 09:11:01 ----A---- C:\Windows\system32\spoolss.dll
2009-11-10 09:11:00 ----A---- C:\Windows\system32\schedsvc.dll
2009-11-10 09:11:00 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-11-10 09:10:57 ----A---- C:\Windows\system32\msjtes40.dll
2009-11-10 09:10:56 ----A---- C:\Windows\system32\msvcp60.dll
2009-11-10 09:10:55 ----A---- C:\Windows\system32\gpedit.dll
2009-11-10 09:10:54 ----A---- C:\Windows\system32\WinSAT.exe
2009-11-10 09:10:54 ----A---- C:\Windows\system32\infocardapi.dll
2009-11-10 09:10:52 ----A---- C:\Windows\system32\es.dll
2009-11-10 09:10:50 ----A---- C:\Windows\system32\mstext40.dll
2009-11-10 09:10:50 ----A---- C:\Windows\system32\Magnify.exe
2009-11-10 09:10:49 ----A---- C:\Windows\system32\advapi32.dll
2009-11-10 09:10:48 ----A---- C:\Windows\system32\WebClnt.dll
2009-11-10 09:10:47 ----A---- C:\Windows\system32\slwmi.dll
2009-11-10 09:10:47 ----A---- C:\Windows\system32\msexcl40.dll
2009-11-10 09:10:46 ----A---- C:\Windows\system32\msxbde40.dll
2009-11-10 09:10:46 ----A---- C:\Windows\system32\comsvcs.dll
2009-11-10 09:10:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-11-10 09:10:44 ----A---- C:\Windows\system32\vssapi.dll
2009-11-10 09:10:43 ----A---- C:\Windows\system32\authui.dll
2009-11-10 09:10:40 ----A---- C:\Windows\system32\msrepl40.dll
2009-11-10 09:10:39 ----A---- C:\Windows\system32\PresentationHost.exe
2009-11-10 09:10:38 ----A---- C:\Windows\system32\newdev.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\propsys.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\iasrecst.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\gpsvc.dll
2009-11-10 09:10:36 ----A---- C:\Windows\system32\eudcedit.exe
2009-11-10 09:10:36 ----A---- C:\Windows\system32\crypt32.dll
2009-11-10 09:10:36 ----A---- C:\Windows\explorer.exe
2009-11-10 09:10:34 ----A---- C:\Windows\system32\rpcss.dll
2009-11-10 09:10:33 ----A---- C:\Windows\system32\setupapi.dll
2009-11-10 09:10:31 ----A---- C:\Windows\system32\mspbde40.dll
2009-11-10 09:10:30 ----A---- C:\Windows\system32\d3d9.dll
2009-11-10 09:10:28 ----A---- C:\Windows\system32\davclnt.dll
2009-11-10 09:10:27 ----A---- C:\Windows\system32\msltus40.dll
2009-11-10 09:10:26 ----A---- C:\Windows\system32\mfc42.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\shlwapi.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\msrd3x40.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\EhStorAuthn.dll
2009-11-10 09:10:24 ----A---- C:\Windows\system32\msdtctm.dll
2009-11-10 09:10:23 ----A---- C:\Windows\system32\wevtapi.dll
2009-11-10 09:10:23 ----A---- C:\Windows\system32\browseui.dll
2009-11-10 09:10:22 ----A---- C:\Windows\system32\photowiz.dll
2009-11-10 09:10:21 ----A---- C:\Windows\system32\nlhtml.dll
2009-11-10 09:10:17 ----A---- C:\Windows\system32\user32.dll
2009-11-10 09:10:16 ----A---- C:\Windows\system32\samsrv.dll
2009-11-10 09:10:16 ----A---- C:\Windows\system32\ci.dll
2009-11-10 09:10:15 ----A---- C:\Windows\system32\quartz.dll
2009-11-10 09:10:13 ----A---- C:\Windows\system32\win32spl.dll
2009-11-10 09:10:12 ----A---- C:\Windows\system32\WcnNetsh.dll
2009-11-10 09:10:12 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-11-10 09:10:11 ----A---- C:\Windows\system32\oleaut32.dll
2009-11-10 09:10:09 ----A---- C:\Windows\system32\netshell.dll
2009-11-10 09:10:09 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-11-10 09:10:08 ----A---- C:\Windows\system32\compcln.exe
2009-11-10 09:10:07 ----A---- C:\Windows\system32\apds.dll
2009-11-10 09:10:06 ----A---- C:\Windows\system32\winhttp.dll
2009-11-10 09:10:05 ----A---- C:\Windows\system32\xmlfilter.dll
2009-11-10 09:10:05 ----A---- C:\Windows\system32\mswstr10.dll
2009-11-10 09:10:05 ----A---- C:\Windows\system32\audiosrv.dll
2009-11-10 09:10:04 ----A---- C:\Windows\system32\emdmgmt.dll
2009-11-10 09:10:03 ----A---- C:\Windows\system32\msctf.dll
2009-11-10 09:10:02 ----A---- C:\Windows\system32\msvcrt.dll
2009-11-10 09:10:02 ----A---- C:\Windows\system32\gdi32.dll
2009-11-10 09:10:01 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-11-10 09:10:00 ----A---- C:\Windows\system32\VSSVC.exe
2009-11-10 09:10:00 ----A---- C:\Windows\system32\mfc42u.dll
2009-11-10 09:10:00 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-11-10 09:09:59 ----A---- C:\Windows\system32\SLUI.exe
2009-11-10 09:09:58 ----A---- C:\Windows\system32\eapphost.dll
2009-11-10 09:09:57 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-11-10 09:09:57 ----A---- C:\Windows\system32\msrd2x40.dll
2009-11-10 09:09:54 ----A---- C:\Windows\system32\odbc32.dll
2009-11-10 09:09:53 ----A---- C:\Windows\system32\winresume.exe
2009-11-10 09:09:53 ----A---- C:\Windows\system32\propdefs.dll
2009-11-10 09:09:50 ----A---- C:\Windows\system32\shdocvw.dll
2009-11-10 09:09:48 ----A---- C:\Windows\system32\dbgeng.dll
2009-11-10 09:09:47 ----A---- C:\Windows\system32\wevtutil.exe
2009-11-10 09:09:47 ----A---- C:\Windows\system32\mssitlb.dll
2009-11-10 09:09:43 ----A---- C:\Windows\system32\WsmSvc.dll
2009-11-10 09:09:42 ----A---- C:\Windows\system32\swprv.dll
2009-11-10 09:09:42 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-11-10 09:09:39 ----A---- C:\Windows\system32\usp10.dll
2009-11-10 09:09:37 ----A---- C:\Windows\system32\vds.exe
2009-11-10 09:09:34 ----A---- C:\Windows\system32\netlogon.dll
2009-11-10 09:09:34 ----A---- C:\Windows\system32\msctfp.dll
2009-11-10 09:09:34 ----A---- C:\Windows\system32\fdBthProxy.dll
2009-11-10 09:09:34 ----A---- C:\Windows\system32\drvinst.exe
2009-11-10 09:09:34 ----A---- C:\Windows\system32\devmgr.dll
2009-11-10 09:09:33 ----A---- C:\Windows\system32\msscb.dll
2009-11-10 09:09:33 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2009-11-10 09:09:33 ----A---- C:\Windows\system32\BFE.DLL
2009-11-10 09:09:33 ----A---- C:\Windows\system32\adsldpc.dll
2009-11-10 09:09:31 ----A---- C:\Windows\system32\evr.dll
2009-11-10 09:09:30 ----A---- C:\Windows\system32\wcnwiz.dll
2009-11-10 09:09:29 ----A---- C:\Windows\system32\Wldap32.dll
2009-11-10 09:09:28 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-11-10 09:09:21 ----A---- C:\Windows\system32\services.exe
2009-11-10 09:09:20 ----A---- C:\Windows\system32\wercon.exe
2009-11-10 09:09:19 ----A---- C:\Windows\system32\comdlg32.dll
2009-11-10 09:09:18 ----A---- C:\Windows\system32\mimefilt.dll
2009-11-10 09:09:18 ----A---- C:\Windows\system32\adtschema.dll
2009-11-10 09:09:17 ----A---- C:\Windows\system32\wcncsvc.dll
2009-11-10 09:09:16 ----A---- C:\Windows\system32\certcli.dll
2009-11-10 09:09:15 ----A---- C:\Windows\system32\msdrm.dll
2009-11-10 09:09:14 ----A---- C:\Windows\system32\msjter40.dll
2009-11-10 09:09:14 ----A---- C:\Windows\system32\msdtcprx.dll
2009-11-10 09:09:14 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-11-10 09:09:12 ----A---- C:\Windows\system32\mswdat10.dll
2009-11-10 09:09:11 ----A---- C:\Windows\system32\taskeng.exe
2009-11-10 09:09:11 ----A---- C:\Windows\system32\rtffilt.dll
2009-11-10 09:09:11 ----A---- C:\Windows\system32\reg.exe
2009-11-10 09:09:10 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-11-10 09:09:10 ----A---- C:\Windows\system32\dnsapi.dll
2009-11-10 09:09:09 ----A---- C:\Windows\system32\certutil.exe
2009-11-10 09:09:06 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-11-10 09:09:04 ----A---- C:\Windows\system32\w32time.dll
2009-11-10 09:09:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-11-10 09:09:01 ----A---- C:\Windows\system32\msshooks.dll
2009-11-10 09:09:01 ----A---- C:\Windows\system32\msscntrs.dll
2009-11-10 09:09:01 ----A---- C:\Windows\system32\bcrypt.dll
2009-11-10 09:09:00 ----A---- C:\Windows\system32\bthserv.dll
2009-11-10 09:08:58 ----A---- C:\Windows\system32\rsaenh.dll
2009-11-10 09:08:58 ----A---- C:\Windows\system32\msihnd.dll
2009-11-10 09:08:57 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-11-10 09:08:56 ----A---- C:\Windows\system32\netapi32.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\msstrc.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\inetcomm.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\dfshim.dll
2009-11-10 09:08:55 ----A---- C:\Windows\system32\mtxclu.dll
2009-11-10 09:08:55 ----A---- C:\Windows\system32\inetpp.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\mscories.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\hidserv.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\fundisc.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\cryptsvc.dll
2009-11-10 09:08:53 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-11-10 09:08:53 ----A---- C:\Windows\system32\profsvc.dll
2009-11-10 09:08:53 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-11-10 09:08:52 ----A---- C:\Windows\system32\termsrv.dll
2009-11-10 09:08:50 ----A---- C:\Windows\system32\shsvcs.dll
2009-11-10 09:08:50 ----A---- C:\Windows\system32\msiexec.exe
2009-11-10 09:08:50 ----A---- C:\Windows\system32\imapi.dll
2009-11-10 09:08:49 ----A---- C:\Windows\system32\wdc.dll
2009-11-10 09:08:48 ----A---- C:\Windows\system32\chsbrkr.dll
2009-11-10 09:08:46 ----A---- C:\Windows\system32\rasmans.dll
2009-11-10 09:08:46 ----A---- C:\Windows\system32\iassdo.dll
2009-11-10 09:08:45 ----A---- C:\Windows\system32\pnidui.dll
2009-11-10 09:08:44 ----A---- C:\Windows\system32\spoolsv.exe
2009-11-10 09:08:44 ----A---- C:\Windows\system32\icardres.dll
2009-11-10 09:08:43 ----A---- C:\Windows\system32\autofmt.exe
2009-11-10 09:08:40 ----A---- C:\Windows\system32\wersvc.dll
2009-11-10 09:08:40 ----A---- C:\Windows\system32\scrrun.dll
2009-11-10 09:08:40 ----A---- C:\Windows\system32\PSHED.DLL
2009-11-10 09:08:39 ----A---- C:\Windows\system32\slmgr.vbs
2009-11-10 09:08:38 ----A---- C:\Windows\system32\pdh.dll
2009-11-10 09:08:37 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-11-10 09:08:37 ----A---- C:\Windows\system32\azroles.dll
2009-11-10 09:08:36 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-11-10 09:08:32 ----A---- C:\Windows\system32\pidgenx.dll
2009-11-10 09:08:28 ----A---- C:\Windows\system32\wmpmde.dll
2009-11-10 09:08:25 ----A---- C:\Windows\system32\winlogon.exe
2009-11-10 09:08:25 ----A---- C:\Windows\system32\SyncCenter.dll
2009-11-10 09:08:13 ----A---- C:\Windows\system32\SLUINotify.dll
2009-11-10 09:08:13 ----A---- C:\Windows\system32\msjetoledb40.dll
2009-11-10 09:08:12 ----A---- C:\Windows\system32\comuid.dll
2009-11-10 09:08:11 ----A---- C:\Windows\system32\certmgr.dll
2009-11-10 09:08:09 ----A---- C:\Windows\system32\ncrypt.dll
2009-11-10 09:08:09 ----A---- C:\Windows\system32\kd1394.dll
2009-11-10 09:08:08 ----A---- C:\Windows\system32\sethc.exe
2009-11-10 09:08:05 ----A---- C:\Windows\system32\spp.dll
2009-11-10 09:08:05 ----A---- C:\Windows\system32\iassam.dll
2009-11-10 09:08:04 ----A---- C:\Windows\system32\untfs.dll
2009-11-10 09:08:04 ----A---- C:\Windows\system32\scrobj.dll
2009-11-10 09:08:03 ----A---- C:\Windows\system32\wisptis.exe
2009-11-10 09:08:03 ----A---- C:\Windows\system32\rtutils.dll
2009-11-10 09:08:01 ----A---- C:\Windows\system32\taskcomp.dll
2009-11-10 09:08:01 ----A---- C:\Windows\system32\dwm.exe
2009-11-10 09:08:00 ----A---- C:\Windows\system32\autochk.exe
2009-11-10 09:07:56 ----A---- C:\Windows\system32\printui.dll
2009-11-10 09:07:56 ----A---- C:\Windows\system32\iasnap.dll
2009-11-10 09:07:55 ----A---- C:\Windows\system32\autoconv.exe
2009-11-10 09:07:54 ----A---- C:\Windows\system32\winsrv.dll
2009-11-10 09:07:52 ----A---- C:\Windows\system32\kdcom.dll
2009-11-10 09:07:52 ----A---- C:\Windows\system32\cscript.exe
2009-11-10 09:07:52 ----A---- C:\Windows\system32\basecsp.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\wow32.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\userenv.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\onex.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\audiodg.exe
2009-11-10 09:07:50 ----A---- C:\Windows\system32\osk.exe
2009-11-10 09:07:50 ----A---- C:\Windows\system32\mswsock.dll
2009-11-10 09:07:49 ----A---- C:\Windows\system32\kdusb.dll
2009-11-10 09:07:48 ----A---- C:\Windows\system32\winmm.dll
2009-11-10 09:07:48 ----A---- C:\Windows\system32\spcmsg.dll
2009-11-10 09:07:48 ----A---- C:\Windows\system32\RelMon.dll
2009-11-10 09:07:47 ----A---- C:\Windows\system32\WinSCard.dll
2009-11-10 09:07:47 ----A---- C:\Windows\system32\rdpencom.dll
2009-11-10 09:07:46 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-11-10 09:07:46 ----A---- C:\Windows\system32\msftedit.dll
2009-11-10 09:07:45 ----A---- C:\Windows\system32\offfilt.dll
2009-11-10 09:07:45 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-11-10 09:07:43 ----A---- C:\Windows\system32\Utilman.exe
2009-11-10 09:07:42 ----A---- C:\Windows\system32\wsepno.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\WerFault.exe
2009-11-10 09:07:42 ----A---- C:\Windows\system32\stobject.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\mfplat.dll
2009-11-10 09:07:41 ----A---- C:\Windows\system32\diskraid.exe
2009-11-10 09:07:41 ----A---- C:\Windows\system32\apphelp.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\wiaservc.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\sysclass.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\SndVol.exe
2009-11-10 09:07:40 ----A---- C:\Windows\system32\prnntfy.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\msnetobj.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\mscms.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\adsmsext.dll
2009-11-10 09:07:39 ----A---- C:\Windows\system32\wscript.exe
2009-11-10 09:07:39 ----A---- C:\Windows\system32\odbccp32.dll
2009-11-10 09:07:39 ----A---- C:\Windows\system32\iasdatastore.dll
2009-11-10 09:07:38 ----A---- C:\Windows\system32\ulib.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\wscntfy.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\rastapi.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-11-10 09:07:37 ----A---- C:\Windows\system32\dsound.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\cryptui.dll
2009-11-10 09:07:36 ----A---- C:\Windows\system32\pnpsetup.dll
2009-11-10 09:07:36 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-11-10 09:07:36 ----A---- C:\Windows\system32\fdProxy.dll
2009-11-10 09:07:35 ----A---- C:\Windows\system32\brcpl.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\wlangpui.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\rastls.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\gpapi.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\diskpart.exe
2009-11-10 09:07:33 ----A---- C:\Windows\system32\wscsvc.dll
2009-11-10 09:07:33 ----A---- C:\Windows\system32\vdsdyn.dll
2009-11-10 09:07:33 ----A---- C:\Windows\system32\iashlpr.dll
2009-11-10 09:07:32 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-11-10 09:07:32 ----A---- C:\Windows\system32\logman.exe
2009-11-10 09:07:31 ----A---- C:\Windows\system32\rasapi32.dll
2009-11-10 09:07:29 ----A---- C:\Windows\system32\regsvc.dll
2009-11-10 09:07:29 ----A---- C:\Windows\system32\ntprint.dll
2009-11-10 09:07:28 ----A---- C:\Windows\system32\mscorier.dll
2009-11-10 09:07:27 ----A---- C:\Windows\system32\wusa.exe
2009-11-10 09:07:26 ----A---- C:\Windows\system32\iasrad.dll
2009-11-10 09:07:26 ----A---- C:\Windows\system32\findstr.exe
2009-11-10 09:07:23 ----A---- C:\Windows\system32\zipfldr.dll
2009-11-10 09:07:22 ----A---- C:\Windows\system32\wshext.dll
2009-11-10 09:07:22 ----A---- C:\Windows\system32\wpccpl.dll
2009-11-10 09:07:21 ----A---- C:\Windows\system32\netcenter.dll
2009-11-10 09:07:18 ----A---- C:\Windows\system32\rasdlg.dll
2009-11-10 09:07:17 ----A---- C:\Windows\system32\wer.dll
2009-11-10 09:07:17 ----A---- C:\Windows\system32\iassvcs.dll
2009-11-10 09:07:15 ----A---- C:\Windows\system32\wsnmp32.dll
2009-11-10 09:07:15 ----A---- C:\Windows\system32\themecpl.dll
2009-11-10 09:07:11 ----A---- C:\Windows\system32\uxsms.dll
2009-11-10 09:07:11 ----A---- C:\Windows\system32\srvsvc.dll
2009-11-10 09:07:11 ----A---- C:\Windows\system32\mssprxy.dll
2009-11-10 09:07:10 ----A---- C:\Windows\system32\tsbyuv.dll
2009-11-10 09:07:09 ----A---- C:\Windows\system32\scansetting.dll
2009-11-10 09:07:09 ----A---- C:\Windows\system32\ntmarta.dll
2009-11-10 09:07:08 ----A---- C:\Windows\system32\msutb.dll
2009-11-10 09:07:08 ----A---- C:\Windows\system32\iasads.dll
2009-11-10 09:07:07 ----A---- C:\Windows\system32\slcc.dll
2009-11-10 09:07:07 ----A---- C:\Windows\system32\mstlsapi.dll
2009-11-10 09:07:05 ----A---- C:\Windows\system32\powrprof.dll
2009-11-10 09:07:05 ----A---- C:\Windows\system32\mstsc.exe
2009-11-10 09:07:02 ----A---- C:\Windows\system32\networkmap.dll
2009-11-10 09:07:02 ----A---- C:\Windows\system32\iasacct.dll
2009-11-10 09:07:01 ----A---- C:\Windows\system32\powercpl.dll
2009-11-10 09:06:59 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-11-10 09:06:57 ----A---- C:\Windows\system32\newdev.exe
2009-11-10 09:06:57 ----A---- C:\Windows\system32\connect.dll
2009-11-10 09:06:57 ----A---- C:\Windows\system32\authz.dll
2009-11-10 09:06:56 ----A---- C:\Windows\system32\sud.dll
2009-11-10 09:06:56 ----A---- C:\Windows\system32\dot3svc.dll
2009-11-10 09:06:54 ----A---- C:\Windows\system32\systemcpl.dll
2009-11-10 09:06:53 ----A---- C:\Windows\system32\pcaui.dll
2009-11-10 09:06:51 ----A---- C:\Windows\system32\themeui.dll
2009-11-10 09:06:50 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-11-10 09:06:49 ----A---- C:\Windows\system32\samlib.dll
2009-11-10 09:06:49 ----A---- C:\Windows\system32\mmci.dll
2009-11-10 09:06:48 ----A---- C:\Windows\system32\usercpl.dll
2009-11-10 09:06:48 ----A---- C:\Windows\system32\autoplay.dll
2009-11-10 09:06:46 ----A---- C:\Windows\system32\qdvd.dll
2009-11-10 09:06:44 ----A---- C:\Windows\system32\wlanpref.dll
2009-11-10 09:06:43 ----A---- C:\Windows\system32\rpchttp.dll
2009-11-10 09:06:42 ----A---- C:\Windows\system32\regapi.dll
2009-11-10 09:06:41 ----A---- C:\Windows\system32\msinfo32.exe
2009-11-10 09:06:40 ----A---- C:\Windows\system32\wpcao.dll
2009-11-10 09:06:39 ----A---- C:\Windows\system32\vdsutil.dll
2009-11-10 09:06:36 ----A---- C:\Windows\system32\tapisrv.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\scksp.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\scesrv.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\mpr.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\feclient.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\psisdecd.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\oleprn.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\imm32.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\AudioSes.dll
2009-11-10 09:06:33 ----A---- C:\Windows\system32\rekeywiz.exe
2009-11-10 09:06:33 ----A---- C:\Windows\system32\Faultrep.dll
2009-11-10 09:06:33 ----A---- C:\Windows\system32\dot3msm.dll
2009-11-10 09:06:32 ----A---- C:\Windows\system32\wscisvif.dll
2009-11-10 09:06:32 ----A---- C:\Windows\system32\iaspolcy.dll
2009-11-10 09:06:32 ----A---- C:\Windows\system32\DeviceEject.exe
2009-11-10 09:06:31 ----A---- C:\Windows\system32\sdclt.exe
2009-11-10 09:06:31 ----A---- C:\Windows\system32\dpapimig.exe
2009-11-10 09:06:29 ----A---- C:\Windows\system32\ncryptui.dll
2009-11-10 09:06:28 ----A---- C:\Windows\system32\qedit.dll
2009-11-10 09:06:27 ----A---- C:\Windows\system32\pnpui.dll
2009-11-10 09:06:27 ----A---- C:\Windows\system32\perfdisk.dll
2009-11-10 09:06:27 ----A---- C:\Windows\system32\hdwwiz.exe
2009-11-10 09:06:27 ----A---- C:\Windows\system32\certreq.exe
2009-11-10 09:06:26 ----A---- C:\Windows\system32\scecli.dll
2009-11-10 09:06:26 ----A---- C:\Windows\system32\rasgcw.dll
2009-11-10 09:06:25 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-11-10 09:06:25 ----A---- C:\Windows\system32\rasplap.dll
2009-11-10 09:06:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-11-10 09:06:24 ----A---- C:\Windows\system32\TSTheme.exe
2009-11-10 09:06:24 ----A---- C:\Windows\system32\spwinsat.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\tcpmon.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\PnPUnattend.exe
2009-11-10 09:06:22 ----A---- C:\Windows\system32\fdWSD.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\cmmon32.exe
2009-11-10 09:06:21 ----A---- C:\Windows\system32\whealogr.dll
2009-11-10 09:06:21 ----A---- C:\Windows\system32\srcore.dll
2009-11-10 09:06:20 ----A---- C:\Windows\system32\conime.exe
2009-11-10 09:06:20 ----A---- C:\Windows\system32\cmdial32.dll
2009-11-10 09:06:19 ----A---- C:\Windows\system32\SCardSvr.dll
2009-11-10 09:06:19 ----A---- C:\Windows\system32\raschap.dll
2009-11-10 09:06:18 ----A---- C:\Windows\system32\fontext.dll
2009-11-10 09:06:17 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-11-10 09:06:16 ----A---- C:\Windows\system32\wiaaut.dll
2009-11-10 09:06:13 ----A---- C:\Windows\system32\WMVXENCD.DLL
2009-11-10 09:06:13 ----A---- C:\Windows\system32\wlanui.dll
2009-11-10 09:06:13 ----A---- C:\Windows\system32\rasppp.dll
2009-11-10 09:06:10 ----A---- C:\Windows\system32\shwebsvc.dll
2009-11-10 09:06:10 ----A---- C:\Windows\system32\PnPutil.exe
2009-11-10 09:06:10 ----A---- C:\Windows\system32\dsprop.dll
2009-11-10 09:06:09 ----A---- C:\Windows\system32\dimsroam.dll
2009-11-10 09:06:08 ----A---- C:\Windows\system32\oobefldr.dll
2009-11-10 09:06:06 ----A---- C:\Windows\system32\shsetup.dll
2009-11-10 09:06:06 ----A---- C:\Windows\system32\modemui.dll
2009-11-10 09:06:05 ----A---- C:\Windows\system32\rasmontr.dll
2009-11-10 09:06:05 ----A---- C:\Windows\system32\mscandui.dll
2009-11-10 09:06:04 ----A---- C:\Windows\system32\chtbrkr.dll
2009-11-10 09:06:03 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-11-10 09:06:03 ----A---- C:\Windows\system32\dataclen.dll
2009-11-10 09:06:02 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-11-10 09:06:02 ----A---- C:\Windows\system32\blackbox.dll
2009-11-10 09:06:01 ----A---- C:\Windows\system32\smss.exe
2009-11-10 09:06:01 ----A---- C:\Windows\system32\rdpwsx.dll
2009-11-10 09:06:01 ----A---- C:\Windows\system32\credui.dll
2009-11-10 09:06:00 ----A---- C:\Windows\system32\netplwiz.dll
2009-11-10 09:05:59 ----A---- C:\Windows\system32\WSDMon.dll
2009-11-10 09:05:59 ----A---- C:\Windows\system32\wmpeffects.dll
2009-11-10 09:05:59 ----A---- C:\Windows\system32\certprop.dll
2009-11-10 09:05:58 ----A---- C:\Windows\system32\networkexplorer.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\wscapi.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\wpcsvc.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\msscp.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\logagent.exe
2009-11-10 09:05:57 ----A---- C:\Windows\system32\InkEd.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\ifmon.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\gpresult.exe
2009-11-10 09:05:57 ----A---- C:\Windows\system32\cipher.exe
2009-11-10 09:05:56 ----A---- C:\Windows\system32\msimtf.dll
2009-11-10 09:05:55 ----A---- C:\Windows\system32\thawbrkr.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\softkbd.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\sendmail.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\msctfui.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2009-11-10 09:05:51 ----A---- C:\Windows\system32\olepro32.dll
2009-11-10 09:05:50 ----A---- C:\Windows\system32\dmsynth.dll
2009-11-10 09:05:49 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-11-10 09:05:48 ----A---- C:\Windows\system32\puiapi.dll
2009-11-10 09:05:47 ----A---- C:\Windows\system32\input.dll
2009-11-10 09:05:47 ----A---- C:\Windows\system32\ExplorerFrame.dll
2009-11-10 09:05:46 ----A---- C:\Windows\system32\wshbth.dll
2009-11-10 09:05:46 ----A---- C:\Windows\system32\version.dll
2009-11-10 09:05:46 ----A---- C:\Windows\system32\SLLUA.exe
2009-11-10 09:05:46 ----A---- C:\Windows\system32\mprapi.dll
2009-11-10 09:05:45 ----A---- C:\Windows\system32\msisip.dll
2009-11-10 09:05:41 ----A---- C:\Windows\system32\fc.exe
2009-11-10 09:05:39 ----A---- C:\Windows\system32\fdSSDP.dll
2009-11-10 09:05:39 ----A---- C:\Windows\system32\dmusic.dll
2009-11-10 09:05:38 ----A---- C:\Windows\system32\msjint40.dll
2009-11-10 09:05:38 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2009-11-10 09:05:38 ----A---- C:\Windows\system32\cscapi.dll
2009-11-10 09:05:37 ----A---- C:\Windows\system32\l2nacp.dll
2009-11-10 09:05:37 ----A---- C:\Windows\system32\ftp.exe
2009-11-10 09:05:37 ----A---- C:\Windows\system32\eapp3hst.dll
2009-11-10 09:05:36 ----A---- C:\Windows\system32\cscdll.dll
2009-11-10 09:05:34 ----A---- C:\Windows\system32\wsdchngr.dll
2009-11-10 09:05:34 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-11-10 09:05:33 ----A---- C:\Windows\system32\Storprop.dll
2009-11-10 09:05:33 ----A---- C:\Windows\system32\rasdial.exe
2009-11-10 09:05:33 ----A---- C:\Windows\system32\rasdiag.dll
2009-11-10 09:05:33 ----A---- C:\Windows\system32\bthudtask.exe
2009-11-10 09:05:33 ----A---- C:\Windows\system32\bthci.dll
2009-11-10 09:05:32 ----A---- C:\Windows\system32\fdWCN.dll
2009-11-10 09:05:32 ----A---- C:\Windows\system32\dot3cfg.dll
2009-11-10 09:05:29 ----A---- C:\Windows\system32\eappcfg.dll
2009-11-10 09:05:28 ----A---- C:\Windows\system32\ipconfig.exe
2009-11-10 09:05:28 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2009-11-10 09:05:27 ----A---- C:\Windows\system32\tscupgrd.exe
2009-11-10 09:05:21 ----A---- C:\Windows\system32\slcinst.dll
2009-11-10 09:05:20 ----A---- C:\Windows\system32\nslookup.exe
2009-11-10 09:05:20 ----A---- C:\Windows\system32\networkitemfactory.dll
2009-11-10 09:05:19 ----A---- C:\Windows\system32\eappgnui.dll
2009-11-10 09:05:18 ----A---- C:\Windows\system32\ocsetup.exe
2009-11-10 09:05:18 ----A---- C:\Windows\system32\hbaapi.dll
2009-11-10 09:05:18 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-11-10 09:05:17 ----A---- C:\Windows\system32\mmcico.dll
2009-11-10 09:05:17 ----A---- C:\Windows\system32\fdeploy.dll
2009-11-10 09:05:16 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-11-10 09:05:14 ----A---- C:\Windows\system32\gpupdate.exe
2009-11-10 09:05:08 ----A---- C:\Windows\system32\csrstub.exe
2009-11-10 09:05:08 ----A---- C:\Windows\system32\cbsra.exe
2009-11-10 09:05:08 ----A---- C:\Windows\system32\bitsigd.dll
2009-11-10 09:05:05 ----A---- C:\Windows\system32\iscsilog.dll
2009-11-10 09:05:04 ----A---- C:\Windows\system32\NcdProp.dll
2009-11-10 09:04:59 ----A---- C:\Windows\system32\vdmdbg.dll
2009-11-10 09:04:59 ----A---- C:\Windows\system32\odbcconf.dll
2009-11-10 09:04:58 ----A---- C:\Windows\system32\slwga.dll
2009-11-10 09:04:57 ----A---- C:\Windows\system32\inetppui.dll
2009-11-10 09:04:56 ----A---- C:\Windows\system32\winrnr.dll
2009-11-10 09:04:55 ----A---- C:\Windows\system32\midimap.dll
2009-11-10 09:03:48 ----A---- C:\Windows\system32\f3ahvoas.dll
2009-11-10 09:03:46 ----A---- C:\Windows\system32\msimsg.dll
2009-11-10 09:01:32 ----A---- C:\Windows\system32\SmiEngine.dll
2009-11-10 09:01:21 ----A---- C:\Windows\system32\wdscore.dll
2009-11-10 09:01:19 ----A---- C:\Windows\system32\PkgMgr.exe
2009-11-10 09:00:45 ----A---- C:\Windows\system32\drvstore.dll
2009-11-10 08:51:40 ----N---- C:\Windows\system32\MpSigStub.exe
2009-11-09 23:37:52 ----D---- C:\Windows\SQL9_KB970892_ENU
2009-11-09 23:02:11 ----A---- C:\Windows\system32\msasn1.dll
2009-11-09 23:02:06 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-11-09 23:01:56 ----A---- C:\Windows\system32\ieframe.dll
2009-11-09 23:01:55 ----A---- C:\Windows\system32\urlmon.dll
2009-11-09 23:01:55 ----A---- C:\Windows\system32\iertutil.dll
2009-11-09 23:01:54 ----A---- C:\Windows\system32\wininet.dll
2009-11-09 23:01:54 ----A---- C:\Windows\system32\msfeeds.dll
2009-11-09 23:01:53 ----A---- C:\Windows\system32\occache.dll
2009-11-09 23:01:53 ----A---- C:\Windows\system32\iedkcs32.dll
2009-11-09 23:01:52 ----A---- C:\Windows\system32\ieui.dll
2009-11-09 23:01:51 ----A---- C:\Windows\system32\ieUnatt.exe
2009-11-09 23:01:51 ----A---- C:\Windows\system32\iepeers.dll
2009-11-09 23:01:50 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-11-09 23:01:50 ----A---- C:\Windows\system32\jsproxy.dll
2009-11-09 23:01:50 ----A---- C:\Windows\system32\iesysprep.dll
2009-11-09 23:01:49 ----A---- C:\Windows\system32\msfeedssync.exe
2009-11-09 23:01:49 ----A---- C:\Windows\system32\iesetup.dll
2009-11-09 23:01:49 ----A---- C:\Windows\system32\ie4uinit.exe
2009-11-09 23:01:48 ----A---- C:\Windows\system32\iernonce.dll
2009-11-09 23:01:35 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-11-09 23:01:31 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2009-11-09 23:01:20 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-11-09 23:01:19 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-11-09 23:01:08 ----A---- C:\Windows\system32\netiohlp.dll
2009-11-09 23:01:05 ----A---- C:\Windows\system32\TCPSVCS.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\ROUTE.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\NETSTAT.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\MRINFO.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\HOSTNAME.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\finger.exe
2009-11-09 23:01:05 ----A---- C:\Windows\system32\ARP.EXE
2009-11-09 23:01:02 ----A---- C:\Windows\system32\netevent.dll
2009-11-09 22:59:59 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-11-09 22:59:58 ----A---- C:\Windows\system32\mf.dll
2009-11-09 22:59:57 ----A---- C:\Windows\system32\rrinstaller.exe
2009-11-09 22:59:57 ----A---- C:\Windows\system32\mfps.dll
2009-11-09 22:59:57 ----A---- C:\Windows\system32\mfpmp.exe
2009-11-09 22:59:55 ----A---- C:\Windows\system32\mferror.dll
2009-11-09 22:59:50 ----A---- C:\Windows\system32\msv1_0.dll
2009-11-09 22:59:41 ----A---- C:\Windows\system32\wlansvc.dll
2009-11-09 22:59:41 ----A---- C:\Windows\system32\wlanmsm.dll
2009-11-09 22:59:41 ----A---- C:\Windows\system32\wlanhlp.dll
2009-11-09 22:59:40 ----A---- C:\Windows\system32\L2SecHC.dll
2009-11-09 22:59:39 ----A---- C:\Windows\system32\wlansec.dll
2009-11-09 22:59:38 ----A---- C:\Windows\system32\wlanapi.dll
2009-11-09 22:59:29 ----A---- C:\Windows\system32\jscript.dll
2009-11-09 22:58:59 ----A---- C:\Windows\system32\wmp.dll
2009-11-09 22:58:48 ----A---- C:\Windows\system32\unregmp2.exe
2009-11-09 22:58:40 ----A---- C:\Windows\system32\wmploc.DLL
2009-11-09 22:24:26 ----D---- C:\Emotum
2009-08-27 12:38:35 ----A---- C:\Windows\system32\tzres.dll
2009-08-26 20:40:20 ----A---- C:\Windows\system32\gameux.dll
2009-08-25 21:57:48 ----D---- C:\Users\Dad\AppData\Roaming\GOL_byHasbro
2009-08-25 11:59:36 ----A---- C:\Windows\system32\lsasrv.dll
2009-08-25 11:59:36 ----A---- C:\Windows\system32\kerberos.dll
2009-08-25 11:59:35 ----A---- C:\Windows\system32\schannel.dll
2009-08-25 11:59:34 ----A---- C:\Windows\system32\wdigest.dll
2009-08-25 11:59:33 ----A---- C:\Windows\system32\secur32.dll
2009-08-25 11:59:33 ----A---- C:\Windows\system32\lsass.exe
2009-08-25 11:23:19 ----SHD---- C:\found.000

tasman
2009-11-22, 08:15
the rest of the log file

======List of files/folders modified in the last 3 months======

2009-11-22 17:02:04 ----D---- C:\Windows\Prefetch
2009-11-22 17:02:03 ----D---- C:\Windows\Temp
2009-11-22 12:41:07 ----D---- C:\Windows
2009-11-21 22:20:54 ----SHD---- C:\System Volume Information
2009-11-21 22:15:01 ----SHD---- C:\Windows\Installer
2009-11-21 22:13:54 ----D---- C:\Windows\system32\catroot
2009-11-21 22:13:53 ----D---- C:\Windows\System32
2009-11-21 22:13:52 ----D---- C:\Windows\system32\drivers
2009-11-21 22:13:49 ----DC---- C:\Windows\system32\DRVSTORE
2009-11-21 22:12:39 ----RD---- C:\Program Files
2009-11-21 22:12:39 ----D---- C:\Program Files\Common Files\Apple
2009-11-21 22:12:26 ----HD---- C:\ProgramData
2009-11-21 22:03:28 ----D---- C:\Windows\inf
2009-11-21 21:48:12 ----D---- C:\Program Files\Safari
2009-11-21 21:45:12 ----D---- C:\Windows\winsxs
2009-11-19 13:38:07 ----D---- C:\ProgramData\WildTangent
2009-11-19 12:24:22 ----D---- C:\Program Files\HP Games
2009-11-18 14:30:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-11-18 14:24:57 ----D---- C:\Windows\system32\catroot2
2009-11-18 09:32:23 ----D---- C:\Windows\rescache
2009-11-18 09:16:36 ----D---- C:\Windows\system32\Tasks
2009-11-18 09:12:02 ----D---- C:\Windows\system32\en-US
2009-11-18 09:11:58 ----D---- C:\Windows\system32\wbem
2009-11-18 09:11:53 ----D---- C:\Windows\system32\zh-HK
2009-11-18 09:11:53 ----D---- C:\Windows\system32\uk-UA
2009-11-18 09:11:53 ----D---- C:\Windows\system32\sl-SI
2009-11-18 09:11:53 ----D---- C:\Windows\system32\pt-PT
2009-11-18 09:11:53 ----D---- C:\Windows\system32\pt-BR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\pl-PL
2009-11-18 09:11:53 ----D---- C:\Windows\system32\nl-NL
2009-11-18 09:11:53 ----D---- C:\Windows\system32\ko-KR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\it-IT
2009-11-18 09:11:53 ----D---- C:\Windows\system32\hu-HU
2009-11-18 09:11:53 ----D---- C:\Windows\system32\hr-HR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\he-IL
2009-11-18 09:11:53 ----D---- C:\Windows\system32\fr-FR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\el-GR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\bg-BG
2009-11-18 09:11:52 ----D---- C:\Windows\system32\zh-TW
2009-11-18 09:11:52 ----D---- C:\Windows\system32\zh-CN
2009-11-18 09:11:52 ----D---- C:\Windows\system32\tr-TR
2009-11-18 09:11:52 ----D---- C:\Windows\system32\th-TH
2009-11-18 09:11:52 ----D---- C:\Windows\system32\sv-SE
2009-11-18 09:11:52 ----D---- C:\Windows\system32\sr-Latn-CS
2009-11-18 09:11:52 ----D---- C:\Windows\system32\sk-SK
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ru-RU
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ro-RO
2009-11-18 09:11:52 ----D---- C:\Windows\system32\nb-NO
2009-11-18 09:11:52 ----D---- C:\Windows\system32\lv-LV
2009-11-18 09:11:52 ----D---- C:\Windows\system32\lt-LT
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ja-JP
2009-11-18 09:11:52 ----D---- C:\Windows\system32\fi-FI
2009-11-18 09:11:52 ----D---- C:\Windows\system32\et-EE
2009-11-18 09:11:52 ----D---- C:\Windows\system32\es-ES
2009-11-18 09:11:52 ----D---- C:\Windows\system32\de-DE
2009-11-18 09:11:52 ----D---- C:\Windows\system32\da-DK
2009-11-18 09:11:52 ----D---- C:\Windows\system32\cs-CZ
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ar-SA
2009-11-18 08:53:15 ----D---- C:\Windows\Microsoft.NET
2009-11-18 08:52:55 ----RSD---- C:\Windows\assembly
2009-11-17 14:46:41 ----HD---- C:\$AVG8.VAULT$
2009-11-17 13:14:55 ----D---- C:\Users\Dad\AppData\Roaming\Hoyle Puzzle and Board Games
2009-11-16 14:56:41 ----SHD---- C:\boot
2009-11-16 14:41:48 ----D---- C:\Program Files\Windows Calendar
2009-11-16 14:41:47 ----D---- C:\Program Files\Windows Mail
2009-11-16 14:41:47 ----D---- C:\Program Files\Movie Maker
2009-11-16 14:41:45 ----D---- C:\Program Files\Windows Sidebar
2009-11-16 14:41:44 ----D---- C:\Program Files\Windows Media Player
2009-11-16 14:41:44 ----D---- C:\Program Files\Internet Explorer
2009-11-16 14:41:43 ----D---- C:\Program Files\Windows Collaboration
2009-11-16 14:41:41 ----D---- C:\Program Files\Common Files\System
2009-11-16 14:41:40 ----D---- C:\Program Files\Windows Photo Gallery
2009-11-16 14:41:32 ----D---- C:\Windows\servicing
2009-11-16 14:41:32 ----D---- C:\Program Files\Windows Defender
2009-11-16 14:41:09 ----D---- C:\Windows\system32\XPSViewer
2009-11-16 14:41:09 ----D---- C:\Windows\IME
2009-11-16 14:41:06 ----D---- C:\Windows\system32\oobe
2009-11-16 14:41:05 ----D---- C:\Windows\system32\migration
2009-11-16 14:40:54 ----D---- C:\Windows\system32\AdvancedInstallers
2009-11-16 14:40:53 ----D---- C:\Windows\system32\SLUI
2009-11-16 14:40:53 ----D---- C:\Windows\system32\setup
2009-11-16 14:40:52 ----D---- C:\Windows\system32\manifeststore
2009-11-16 14:40:52 ----D---- C:\Windows\system32\en
2009-11-16 14:40:40 ----D---- C:\Windows\system32\migwiz
2009-11-16 14:37:29 ----RSD---- C:\Windows\Fonts
2009-11-16 14:37:29 ----D---- C:\Windows\AppPatch
2009-11-16 14:37:09 ----D---- C:\Windows\system32\Boot
2009-11-14 22:32:13 ----SD---- C:\Windows\Downloaded Program Files
2009-11-13 03:03:23 ----D---- C:\ProgramData\Microsoft Help
2009-11-10 09:36:50 ----D---- C:\Program Files\Microsoft Silverlight
2009-11-09 23:39:56 ----D---- C:\Program Files\Microsoft SQL Server
2009-11-09 22:24:26 ----D---- C:\ProgramData\Symantec
2009-11-06 04:36:21 ----A---- C:\Windows\system32\mrt.exe
2009-09-08 14:20:44 ----AD---- C:\ProgramData\TEMP

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\Windows\System32\Drivers\avgldx86.sys [2009-08-16 335240]
R1 AvgMfx86;AVG Minifilter x86 Resident Driver; C:\Windows\System32\Drivers\avgmfx86.sys [2009-08-16 27784]
R1 AvgTdiX;AVG Free8 Network Redirector; C:\Windows\System32\Drivers\avgtdix.sys [2009-05-09 108552]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2009-07-24 5632]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2009-07-28 55656]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-07-11 8704]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-09-30 156672]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-05-31 735232]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-02-27 201728]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-29 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2007-06-20 984064]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2007-06-20 208896]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-08-20 1790976]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2007-04-24 50176]
R3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-09-28 56832]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2007-06-20 660480]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 EC168BDA;EC168BDA service; C:\Windows\system32\DRIVERS\EC168BDA.sys [2007-10-06 107264]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2007-10-11 176640]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-08-20 1790976]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 RTL8187;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter Vista Driver; C:\Windows\system32\DRIVERS\wg111v2.sys [2007-12-20 206336]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2007-11-22 132864]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-08-16 297752]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-11 30312]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe [2006-12-19 94208]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-03 135168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-10-04 358936]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2007-01-09 272024]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-07-11 386560]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]
S2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-09-20 65536]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-06 110592]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2009-11-14 238328]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-08-09 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-27 145184]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]

-----------------EOF-----------------

tasman
2009-11-22, 08:17
the info file

info.txt logfile of random's system information tool 1.06 2009-11-22 17:02:50

======Uninstall list======

-->"C:\Program Files\HP Games\3D Ultra Minigolf Adventures\Uninstall.exe"
-->"C:\Program Files\HP Games\7 Wonders of the Ancient World\Uninstall.exe"
-->"C:\Program Files\HP Games\Bejeweled 2 Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Blasterball 2 Revolution\Uninstall.exe"
-->"C:\Program Files\HP Games\Blasterball 3\Uninstall.exe"
-->"C:\Program Files\HP Games\Carl the Caveman\Uninstall.exe"
-->"C:\Program Files\HP Games\Chuzzle Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Crystal Maze\Uninstall.exe"
-->"C:\Program Files\HP Games\Diner Dash\Uninstall.exe"
-->"C:\Program Files\HP Games\FATE\Uninstall.exe"
-->"C:\Program Files\HP Games\Final Drive Nitro\Uninstall.exe"
-->"C:\Program Files\HP Games\Fish Tycoon\Uninstall.exe"
-->"C:\Program Files\HP Games\Granny in Paradise\Uninstall.exe"
-->"C:\Program Files\HP Games\Insaniquarium Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Jewel Quest Solitaire\Uninstall.exe"
-->"C:\Program Files\HP Games\Jewel Quest\Uninstall.exe"
-->"C:\Program Files\HP Games\Magic Academy\Uninstall.exe"
-->"C:\Program Files\HP Games\Mah Jong Quest\Uninstall.exe"
-->"C:\Program Files\HP Games\My HP Game Console\Uninstall.exe"
-->"C:\Program Files\HP Games\Mystic Emporium\Uninstall.exe"
-->"C:\Program Files\HP Games\Otto's Magic Blocks\Uninstall.exe"
-->"C:\Program Files\HP Games\Peggle\Uninstall.exe"
-->"C:\Program Files\HP Games\Penguins!\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Bowler\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Golfer Pineapple Cup\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Golfer\Uninstall.exe"
-->"C:\Program Files\HP Games\Ricochet Lost Worlds\Uninstall.exe"
-->"C:\Program Files\HP Games\Shooting Stars Pool\Uninstall.exe"
-->"C:\Program Files\HP Games\Slingo Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Super Granny 3\Uninstall.exe"
-->"C:\Program Files\HP Games\Super Granny 4\Uninstall.exe"
-->"C:\Program Files\HP Games\Super Granny\Uninstall.exe"
-->"C:\Program Files\HP Games\THE GAME OF LIFE\Uninstall.exe"
-->"C:\Program Files\HP Games\Tradewinds\Uninstall.exe"
-->"C:\Program Files\HP Games\Trivia Gems\Uninstall.exe"
-->"C:\Program Files\HP Games\Virtual Villagers - A New Home\Uninstall.exe"
-->"C:\Program Files\HP Games\Virtual Villagers - Chapter 2 - The Lost Children\Uninstall.exe"
-->"C:\Program Files\HP Games\World of Goo\Uninstall.exe"
-->"C:\Program Files\HP Games\Zuma Deluxe\Uninstall.exe"
-->C:\Program Files\Conexant\SmartAudio\SETUP.EXE -U -ISmartAudio -SM=SMAUDIO.EXE,1801
2007 Microsoft Office system-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROHYBRIDR /dll OSETUP.DLL
ABBYY FineReader 6.0 Sprint-->MsiExec.exe /I{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}
Activation Assistant for the 2007 Microsoft Office suites-->"C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe" REMOVE=TRUE MODIFY=FALSE
Adobe Acrobat 5.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.5-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81300000003}
Adobe Shockwave Player 11.5-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
Adobe Shockwave Player-->MsiExec.exe /X{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}
AIM 6-->C:\Program Files\AIM6\uninst.exe
Amazing Adventures Special Edition Bundle-->C:\Program Files\Amazing Adventures Special Edition Bundle\uninstall.exe
Animals of the World-->C:\Program Files\Bluestone\Animals of the World\uninst32.exe
Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143}
Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ArcSoft PhotoStudio 5.5-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{85309D89-7BE9-4094-BB17-24999C6118FC}\SETUP.EXE" -l0x9
Atheros Driver Installation Program-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\setup.exe" -l0x9 -removeonly
AVG Free 8.5-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Bejeweled 2-->C:\Program Files\Bejeweled 2\uninstall.exe
Bejeweled Twist-->C:\Program Files\Bejeweled Twist\uninstall.exe
Bicycle Board Games 1.0 Demo-->"C:\Program Files\Microsoft Games\Bicycle Board Games 1.0 Demo\UNINSTAL.EXE" /runtemp /addremove
Bicycle Card Games-->"C:\Program Files\Microsoft Games\Bicycle Card Games\UNINSTAL.EXE" /runtemp /addremove
Bicycle Casino-->"C:\Program Files\Microsoft Games\Bicycle Casino\UNINSTAL.EXE" /runtemp /addremove
BigPond Assist-->C:\Windows\ccuninst.exe
BlazeDTV 2.5a-->"C:\Program Files\BlazeVideo\BlazeDTV 2.5a\unins000.exe"
Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B}
Bookworm Adventures-->"C:\Program Files\MSN Games\Bookworm Adventures\Uninstall.exe" "C:\Program Files\MSN Games\Bookworm Adventures\install.log"
BookWorm Deluxe 1.01-->C:\Program Files\Shockwave.com\BookWorm Deluxe\PopUninstall.exe "C:\Program Files\Shockwave.com\BookWorm Deluxe\Install.log"
Brain Teasers-->C:\PROGRA~1\GREENL~1\Tests\UNWISE.EXE C:\PROGRA~1\GREENL~1\Tests\install.txt
Business Contact Manager for Outlook 2007 SP2-->"C:\Program Files\Microsoft Small Business\Business Contact Manager\SetupBootstrap\Setup.exe" /remove {B32C4059-6E7A-41EF-AD20-56DF1872B923}
Business Contact Manager for Outlook 2007 SP2-->MsiExec.exe /X{B32C4059-6E7A-41EF-AD20-56DF1872B923}
Canon MP Navigator 2.0-->"C:\Program Files\Canon\MP Navigator 2.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator 2.0\uninst.ini
Canon Utilities Easy-PhotoPrint-->C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe uninst.ini
Card & Board Games 3-->C:\PROGRA~1\eGames\CARD&B~1\UNWISE.EXE C:\PROGRA~1\eGames\CARD&B~1\INSTALL.LOG
Checkers-->C:\PROGRA~1\eGames\Checkers\UNWISE.EXE C:\PROGRA~1\eGames\Checkers\INSTALL.LOG
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_AUDIO_HDA\UIU32a.exe -U -ILEOHERza.INF
Draw Poker-->C:\PROGRA~1\eGames\DRAWPO~1\UNWISE.EXE C:\PROGRA~1\eGames\DRAWPO~1\INSTALL.LOG
DVD Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\setup.exe" -uninstall
DX-Ball 1.09-->C:\PROGRA~1\DX-Ball\UNWISE.EXE C:\PROGRA~1\DX-Ball\INSTALL.LOG
Easy-WebPrint-->C:\Windows\IsUninst.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"
eGames Checkers-->C:\PROGRA~1\eGames\EGAMES~1\UNWISE.EXE C:\PROGRA~1\eGames\EGAMES~1\INSTALL.LOG
Epson Easy Photo Print 2-->C:\Program Files\InstallShield Installation Information\{DEDB47A3-C988-4A43-A645-E2CEA571E680}\SETUP.EXE -runfromtemp -l0x0009 UNINST -removeonly
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
EPSON Stylus Office BX600FW_Office TX600FW_SX600FW Manual-->C:\Program Files\EPSON\TPMANUAL\ES_OBX_OTX_SX_600FW\ENG\USE_G\DOCUNINS.EXE
EPSON TX600FW Series Printer Uninstall-->C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FINSEKP.EXE /R /APD /P:"EPSON TX600FW Series"
EpsonNet Print-->C:\Program Files\InstallShield Installation Information\{3E31400D-274E-4647-916C-2CACC3741799}\ENPSETUP.exe -runfromtemp -l0x0009 -EPSON -removeonly
Escape Rosecliff Island-->C:\Program Files\Escape Rosecliff Island\uninstall.exe
ESU for Microsoft Vista-->MsiExec.exe /I{865DB1C9-D5E4-408B-B37D-9927E605BD2D}
Four Field Kono-->C:\PROGRA~1\eGames\FOURFI~1\UNWISE.EXE C:\PROGRA~1\eGames\FOURFI~1\INSTALL.LOG
Galaxy of Games 201-->C:\PROGRA~1\eGames\GALAXY~1\UNWISE.EXE C:\PROGRA~1\eGames\GALAXY~1\INSTALL.LOG
Galaxy Video Poker Special Edition-->C:\PROGRA~1\eGames\GALAXY~2\UNWISE.EXE C:\PROGRA~1\eGames\GALAXY~2\INSTALL.LOG
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)-->C:\Windows\SQL9_KB970892_ENU\Hotfix.exe /Uninstall
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_E582EA556D8DE101.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
greenstreet Picture Browser-->C:\Windows\IsUninst.exe -f"C:\Program Files\Common Files\GST\Utilities\PBrowser.isu"
HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDA_HSF\UIU32m.exe -U -I*.INF
Hewlett-Packard Active Check-->MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Hewlett-Packard Asset Agent for Health Check-->MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hot Slots-->C:\PROGRA~1\eGames\HOTSLO~1\UNWISE.EXE C:\PROGRA~1\eGames\HOTSLO~1\INSTALL.LOG
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hoyle Board Games 2003-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{37F9D0BD-9AED-4EE6-BCA3-BA0749636E04}
Hoyle Puzzle and Board Games-->MsiExec.exe /X{F8024EB8-5B34-46FE-B15D-20ACF26FC20E}
HP Customer Experience Enhancements-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BD0E2B92-3814-46F0-893B-4612EA010C7E}\setup.exe" -l0x9 -removeonly
HP Doc Viewer-->MsiExec.exe /I{082702D5-5DD8-4600-BCE5-48B15174687F}
HP DVD Play 3.6-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\Setup.exe" -uninstall
HP Easy Setup - Frontend-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9885A11E-60E4-417C-B58B-8B31B21C0B8A}\setup.exe" -l0x9 -removeonly
HP Games-->"C:\Program Files\HP Games\Uninstall.exe"
HP Help and Support-->MsiExec.exe /I{28EDCE9C-3304-4331-8AB3-F3EBE94C35B4}
HP Photosmart Essential 2.5-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Quick Launch Buttons 6.30 E2-->C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe -runfromtemp -l0x0009 uninst
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
HP User Guides 0093-->MsiExec.exe /I{D7358B07-4F10-4014-9869-7999578BE8ED}
HP Wireless Assistant-->MsiExec.exe /I{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}
Intel(R) Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall
Intel(R) Matrix Storage Manager-->C:\Windows\System32\Imsmudlg.exe
Intel(R) TV Wizard-->C:\Windows\system32\TVWizudlg.exe -uninstall
iTunes-->MsiExec.exe /I{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Jewel Quest 2 & Jewel Quest 3 Bundle-->C:\Program Files\Jewel Quest 2 & Jewel Quest 3 Bundle\uninstall.exe
Laura Jones and the Secret Legacy of Nikola Tesla-->C:\Program Files\Laura Jones and the Secret Legacy of Nikola Tesla\uninstall.exe
McAfee Security Scan-->"C:\Program Files\McAfee Security Scan\uninstall.exe"
Memory Machine-->C:\PROGRA~1\eGames\MEMORY~1\UNWISE.EXE C:\PROGRA~1\eGames\MEMORY~1\INSTALL.LOG
Microsoft .NET Framework 3.5 SP1-->c:\Windows\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Office 2003 Web Components-->MsiExec.exe /I{90A40409-6000-11D3-8CFE-0150048383C9}
Microsoft Office 2007 Primary Interop Assemblies-->MsiExec.exe /X{50120000-1105-0000-0000-0000000FF1CE}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {DE5A002D-8122-4278-A7EE-3121E7EA254E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {2FC4457D-409E-466F-861F-FB0CB796B53E}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office 2007 Service Pack 2 (SP2)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Home and Student 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007-->MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Professional Hybrid 2007-->MsiExec.exe /X{91120000-0031-0000-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {F580DDD5-8D37-4998-968E-EBB76BB86787}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {187308AB-5FA7-4F14-9AB9-D290383A10D9}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Small Business Connectivity Components-->MsiExec.exe /X{A939D341-5A04-4E0A-BB55-3E65B386432D}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)-->MsiExec.exe /I{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}
Microsoft SQL Server 2005-->"c:\Program Files\Microsoft SQL Server\90\Setup Bootstrap\ARPWrapper.exe" /Remove
Microsoft SQL Server Native Client-->MsiExec.exe /I{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}
Microsoft SQL Server Setup Support Files (English)-->MsiExec.exe /X{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}
Microsoft SQL Server VSS Writer-->MsiExec.exe /I{56B4002F-671C-49F4-984C-C760FE3806B5}
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148-->MsiExec.exe /X{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
MSCU for Microsoft Vista-->MsiExec.exe /I{F7F3B252-E772-48AA-93EB-7964BC326067}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
muvee autoProducer 6.1-->C:\Program Files\InstallShield Installation Information\{250E9609-E830-43EB-B379-DAB7546A2422}\muveesetup.exe -removeonly -runfromtemp
Mystery P.I. - The Lottery Ticket-->C:\Program Files\Mystery P.I. - The Lottery Ticket\uninstall.exe
Mystery P.I. - The New York Fortune-->C:\Program Files\Mystery P.I. - The New York Fortune\uninstall.exe
NetWaiting-->C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe -runfromtemp -l0x0009 -removeonly
ninemsn Toolbar-->MsiExec.exe /I{DA5784C0-06BB-4884-A7C4-89CC206EA2B6}
OGA Notifier 1.7.0105.35.0-->MsiExec.exe /I{B148AB4B-C8FA-474B-B981-F2943C5B5BCD}
OLYMPUS Master 2-->MsiExec.exe /X{45FCADDB-0B29-457E-83A1-D245C62A716C}
OLYMPUS Studio 2-->MsiExec.exe /X{80958B03-07E3-4F0A-8950-4F709899F321}
Pinball Master 2-->C:\PROGRA~1\eGames\PINBAL~1\UNWISE.EXE C:\PROGRA~1\eGames\PINBAL~1\INSTALL.LOG
Pinball Master-->C:\PROGRA~1\eGames\PINBAL~2\UNWISE.EXE C:\PROGRA~1\eGames\PINBAL~2\INSTALL.LOG
Power2Go-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\setup.exe" -uninstall
PowerDirector-->"C:\Program Files\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstall
QuickPlay SlingPlayer 0.4.4-->"C:\Program Files\HP\QuickPlay\unins000.exe"
QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}
Realtek 8139 and 8139C+ Ethernet Network Card Driver for Windows Vista-->C:\Program Files\InstallShield Installation Information\{AE46ABD3-D625-467F-B5A7-8D3FFF077F0D}\setup.exe -runfromtemp -l0x0009 -removeonly
Realtek USB 2.0 Card Reader-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DC24971E-1946-445D-8A82-CE685433FA7D}\setup.exe" -l0x9 -removeonly
Safari-->MsiExec.exe /I{D6E4E5D6-7693-4BB4-95BA-21F38FAFEE90}
SAMSUNG Mobile Composite Device Software-->C:\Windows\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
SAMSUNG Mobile Modem Driver Set-->C:\Windows\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
Samsung Mobile phone USB driver Software-->C:\Windows\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\Windows\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\Windows\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Samsung PC Studio 3 USB Driver Installer-->"C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -runfromtemp -l0x0009 -removeonly
Samsung PC Studio 3-->"C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -runfromtemp -l0x0009 -removeonly
Samsung Samples Installer-->"C:\Program Files\InstallShield Installation Information\{7AC15160-A49B-4A89-B181-D4619C025FFF}\setup.exe" -runfromtemp -l0x0009 -removeonly
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB969559)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F}
Security Update for 2007 Microsoft Office System (KB973704)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {E626DC89-A787-4553-9BB3-DC2EC7E1593F}
Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE}
Security Update for Microsoft Office Excel 2007 (KB973593)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7D6255E3-3423-4D8B-A328-F6F8D28DD5FE}
Security Update for Microsoft Office Outlook 2007 (KB972363)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {120BE9A0-9B09-4855-9E0C-7DEE45CB03C0}
Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
Security Update for Microsoft Office PowerPoint 2007 (KB957789)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7559E742-FF9F-4FAE-B279-008ED296CB4D}
Security Update for Microsoft Office Publisher 2007 (KB969693)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {7BE67088-1EB3-4569-8E75-DDAFBF61BC4E}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (972581)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {3D019598-7B59-447A-80AE-815B703B84FF}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB969613)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {5ECEB317-CBE9-4E08-AB10-756CB6F0FB6C}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office system 2007 (KB974234)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {FCD742B9-7A55-44BC-A776-F795F21FEDDC}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
Slingo Casino Pak-->C:\Program Files\Slingo Casino Pak\uninstall.exe
Slot_Egypt 9.0-->"C:\Program Files\Slot_Egypt\uninstall.exe"
Spelling Dictionaries Support For Adobe Reader 8-->MsiExec.exe /I{AC76BA86-7AD7-5464-3428-800000000003}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Touch Pad Driver-->C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE
Tri Peaks-->C:\PROGRA~1\eGames\TRIPEA~1\UNWISE.EXE C:\PROGRA~1\eGames\TRIPEA~1\INSTALL.LOG
Ulead Photo Express 3.0 SE-->C:\Windows\IsUninst.exe -f"C:\Program Files\Ulead Systems\Ulead Photo Express 3.0 SE\Uninst.isu" -c"C:\Program Files\Ulead Systems\Ulead Photo Express 3.0 SE\IS32Inst.dll"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\Windows\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}
Update for Microsoft Office 2007 Help for Common Features (KB963673)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {AB365889-0395-4FAD-B702-CA5985D53D42}
Update for Microsoft Office Access 2007 Help (KB963663)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}
Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}
Update for Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {199DF7B6-169C-448C-B511-1054101BE9C9}
Update for Microsoft Office OneNote 2007 Help (KB963670)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {2744EF05-38E1-4D5D-B333-E021EDAEA245}
Update for Microsoft Office Outlook 2007 Help (KB963677)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {0451F231-E3E3-4943-AB9F-58EB96171784}
Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}
Update for Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {397B1D4F-ED7B-4ACA-A637-43B670843876}
Update for Microsoft Office Publisher 2007 Help (KB963667)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {2E40DE55-B289-4C8B-8901-5D369B16814F}
Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}
Update for Microsoft Office Script Editor Help (KB963671)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {CD11C6A2-FFC6-4271-8EAB-79C3582F505C}
Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331}
Update for Microsoft Office Word 2007 (KB974561)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {0CDDBAA2-2111-4A0E-A1B0-76C40C635331}
Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}
Update for Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {80E762AA-C921-4839-9D7D-DB62A72C0726}
Update for Outlook 2007 Junk Email Filter (kb975960)-->msiexec /package {91120000-0031-0000-0000-0000000FF1CE} /uninstall {F1AB1BED-7477-4D5A-BD0C-04C2109459A5}
USB DVB-T TV Driver-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{A0CD0434-C975-4E5B-989B-066CE4D35597} /l1033
Viewpoint Media Player-->C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u

======Hosts File======

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

======Security center information======

AS: Spybot - Search and Destroy (outdated)
AS: Windows Defender

======System event log======

Computer Name: Dad-PC
Event Code: 4374
Message: Windows Servicing identified that package KB958481(Update) is not applicable for this system
Record Number: 74966
Source Name: Microsoft-Windows-Servicing
Time Written: 20090223130059.000000-000
Event Type: Warning
User: Dad-PC\Dad

Computer Name: Dad-PC
Event Code: 4374
Message: Windows Servicing identified that package KB958481(Update) is not applicable for this system
Record Number: 74965
Source Name: Microsoft-Windows-Servicing
Time Written: 20090223130059.000000-000
Event Type: Warning
User: Dad-PC\Dad

Computer Name: Dad-PC
Event Code: 4374
Message: Windows Servicing identified that package KB958481(Update) is not applicable for this system
Record Number: 74964
Source Name: Microsoft-Windows-Servicing
Time Written: 20090223130059.000000-000
Event Type: Warning
User: Dad-PC\Dad

Computer Name: Dad-PC
Event Code: 4374
Message: Windows Servicing identified that package KB958481(Update) is not applicable for this system
Record Number: 74963
Source Name: Microsoft-Windows-Servicing
Time Written: 20090223130059.000000-000
Event Type: Warning
User: Dad-PC\Dad

Computer Name: Dad-PC
Event Code: 4376
Message: Servicing has required reboot to complete the operation of setting package KB948609(Update) into Install Requested(Install Requested) state
Record Number: 74914
Source Name: Microsoft-Windows-Servicing
Time Written: 20090223130046.000000-000
Event Type: Warning
User: Dad-PC\Dad

=====Application event log=====

Computer Name: Dad-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-617441623-2346720575-898907681-501:
Process 3876 (\Device\HarddiskVolume1\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-617441623-2346720575-898907681-501

Record Number: 201
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20080616233957.000000-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Dad-PC
Event Code: 1530
Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.

DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-617441623-2346720575-898907681-1003:
Process 540 (\Device\HarddiskVolume1\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-617441623-2346720575-898907681-1003

Record Number: 189
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20080616232254.000000-000
Event Type: Warning
User: NT AUTHORITY\SYSTEM

Computer Name: Dad-PC
Event Code: 20227
Message: CoId={3B6A5C4D-E14C-4283-955C-BB978547D9D9}: The user Dad-PC\Dad dialed a connection named HPSDP which has failed. The error code returned on failure is 680.
Record Number: 186
Source Name: RasClient
Time Written: 20080616230150.000000-000
Event Type: Error
User:

Computer Name: Dad-PC
Event Code: 20227
Message: CoId={91342DCF-62DF-4BFA-BEB2-E81E2327F91A}: The user Dad-PC\Dad dialed a connection named HPSDP which has failed. The error code returned on failure is 680.
Record Number: 183
Source Name: RasClient
Time Written: 20080616225556.000000-000
Event Type: Error
User:

Computer Name: Dad-PC
Event Code: 20227
Message: CoId={E0F45E86-F89C-40B1-96C4-B2B10951FEE1}: The user Dad-PC\Dad dialed a connection named HPSDP which has failed. The error code returned on failure is 680.
Record Number: 180
Source Name: RasClient
Time Written: 20080616225423.000000-000
Event Type: Error
User:

=====Security event log=====

Computer Name: Dad-PC
Event Code: 4672
Message: Special privileges assigned to new logon.

Subject:
Security ID: S-1-5-21-617441623-2346720575-898907681-1003
Account Name: Dad
Account Domain: Dad-PC
Logon ID: 0x1ddc41

Privileges: SeSecurityPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeTakeOwnershipPrivilege
SeDebugPrivilege
SeSystemEnvironmentPrivilege
SeLoadDriverPrivilege
SeImpersonatePrivilege
Record Number: 516
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20080617005308.672188-000
Event Type: Audit Success
User:

Computer Name: Dad-PC
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: DAD-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 7

New Logon:
Security ID: S-1-5-21-617441623-2346720575-898907681-1003
Account Name: Dad
Account Domain: Dad-PC
Logon ID: 0x1ddc57
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x21c
Process Name: C:\Windows\System32\winlogon.exe

Network Information:
Workstation Name: DAD-PC
Source Network Address: 127.0.0.1
Source Port: 0

Detailed Authentication Information:
Logon Process: User32
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 515
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20080617005308.672188-000
Event Type: Audit Success
User:

Computer Name: Dad-PC
Event Code: 4624
Message: An account was successfully logged on.

Subject:
Security ID: S-1-5-18
Account Name: DAD-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7

Logon Type: 7

New Logon:
Security ID: S-1-5-21-617441623-2346720575-898907681-1003
Account Name: Dad
Account Domain: Dad-PC
Logon ID: 0x1ddc41
Logon GUID: {00000000-0000-0000-0000-000000000000}

Process Information:
Process ID: 0x21c
Process Name: C:\Windows\System32\winlogon.exe

Network Information:
Workstation Name: DAD-PC
Source Network Address: 127.0.0.1
Source Port: 0

Detailed Authentication Information:
Logon Process: User32
Authentication Package: Negotiate
Transited Services: -
Package Name (NTLM only): -
Key Length: 0

This event is generated when a logon session is created. It is generated on the computer that was accessed.

The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network).

The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on.

The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Logon GUID is a unique identifier that can be used to correlate this event with a KDC event.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
Record Number: 514
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20080617005308.672188-000
Event Type: Audit Success
User:

Computer Name: Dad-PC
Event Code: 4648
Message: A logon was attempted using explicit credentials.

Subject:
Security ID: S-1-5-18
Account Name: DAD-PC$
Account Domain: WORKGROUP
Logon ID: 0x3e7
Logon GUID: {00000000-0000-0000-0000-000000000000}

Account Whose Credentials Were Used:
Account Name: Dad
Account Domain: Dad-PC
Logon GUID: {00000000-0000-0000-0000-000000000000}

Target Server:
Target Server Name: localhost
Additional Information: localhost

Process Information:
Process ID: 0x21c
Process Name: C:\Windows\System32\winlogon.exe

Network Information:
Network Address: 127.0.0.1
Port: 0

This event is generated when a process attempts to log on an account by explicitly specifying that account’s credentials. This most commonly occurs in batch-type configurations such as scheduled tasks, or when using the RUNAS command.
Record Number: 513
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20080617005308.672188-000
Event Type: Audit Success
User:

Computer Name: Dad-PC
Event Code: 1102
Message: The audit log was cleared.
Subject:
Security ID: S-1-5-21-617441623-2346720575-898907681-1003
Account Name: Dad
Domain Name: Dad-PC
Logon ID: 0x289a7
Record Number: 512
Source Name: Microsoft-Windows-Eventlog
Time Written: 20080617004602.941988-000
Event Type: Audit Success
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;c:\Program Files\Microsoft SQL Server\90\Tools\binn\;C:\Program Files\CyberLink\Power2Go\;C:\Program Files\Samsung\Samsung PC Studio 3\;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 22 Stepping 1, GenuineIntel
"PROCESSOR_REVISION"=1601
"NUMBER_OF_PROCESSORS"=1
"PLATFORM"=MCD
"PCBRAND"=Presario
"OnlineServices"=Online Services
"USERPART"=E:
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------

Shaba
2009-11-22, 11:47
You seem to have little RAM for Vista which is likely the reason.

I can suggest which startup programs you can disable if you like to?

tasman
2009-11-22, 11:54
Yes that would be great thanks

Shaba
2009-11-22, 18:36
You are running both AVG and Avira. Please uninstall one of them.

After that:

Open HijackThis, click do a system scan only and checkmark these:

O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ecc] C:\Program Files\Telstra\BigPond Assist\assist.exe
O4 - HKLM\..\Run: [OPSE reminder] "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" -r "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\FirstStart.exe" /OM
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [BlazeServoTool] "C:\Program Files\BlazeVideo\BlazeDTV 2.5a\MediaDetector.exe"
O4 - HKCU\..\Run: [EPSON Stylus Office TX600FW(Network)] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEKP.EXE /FU "C:\Users\Dad\AppData\Local\Temp\E_SC6F6.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - Global Startup: McAfee Security Scan.lnk = ?

Close all windows including browser and press fix checked. If TeaTimer warns about changes, please allow them.

Reboot.

Rerun rsit and post back a fresh rsit log, please.

tasman
2009-11-23, 11:33
Unistalled avg and then followed your instructions shaba, thank you

Logfile of random's system information tool 1.06 (written by random/random)
Run by Dad at 2009-11-23 20:26:51
Microsoft® Windows Vista™ Home Basic Service Pack 2
System drive C: has 20 GB (29%) free of 66 GB
Total RAM: 1013 MB (27% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:27:08 PM, on 23/11/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Internet Explorer\IELowutil.exe
C:\Users\Dad\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Dad.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_au&c=81&bd=Presario&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_au&c=81&bd=Presario&pf=laptop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: MediaRing Talk.lnk = C:\Program Files\MediaRing\MediaRing Talk\mrtalk.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O13 - Gopher Prefix:
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8936 bytes

======Scheduled tasks folder======

C:\Windows\tasks\User_Feed_Synchronization-{5A98A44C-0B59-40B7-8BCF-7256C44CBBC8}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-27 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll [2009-11-13 762864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-08-27 458736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
MSN Toolbar Helper - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll [2009-03-13 82768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-27 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2004-08-26 405504]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - MSN Toolbar - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll [2009-03-13 82768]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-27 256112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2007-08-28 141848]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2007-08-28 154136]
"Persistence"=C:\Windows\system32\igfxpers.exe [2007-08-28 137752]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2007-10-10 212992]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe [2007-10-04 178712]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2007-10-01 181544]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2007-09-28 202032]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-19 1008184]
"hpqSRMon"=C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [2008-06-02 80896]
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]

C:\Users\Dad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MediaRing Talk.lnk - C:\Program Files\MediaRing\MediaRing Talk\mrtalk.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-08-20 200704]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 2 months======

2009-11-22 17:01:46 ----D---- C:\rsit
2009-11-21 22:13:49 ----A---- C:\Windows\system32\GEARAspi.dll
2009-11-21 22:12:39 ----D---- C:\Program Files\iPod
2009-11-21 22:12:26 ----D---- C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-11-21 22:12:26 ----D---- C:\Program Files\iTunes
2009-11-21 22:07:41 ----D---- C:\Program Files\QuickTime
2009-11-21 22:06:15 ----SHD---- C:\Config.Msi
2009-11-18 20:09:10 ----D---- C:\ProgramData\Avira
2009-11-18 20:09:10 ----D---- C:\Program Files\Avira
2009-11-18 09:11:58 ----D---- C:\Program Files\Windows Portable Devices
2009-11-18 08:54:01 ----A---- C:\Windows\system32\UIAnimation.dll
2009-11-18 08:54:00 ----A---- C:\Windows\system32\UIRibbonRes.dll
2009-11-18 08:53:59 ----A---- C:\Windows\system32\UIRibbon.dll
2009-11-18 08:50:43 ----A---- C:\Windows\system32\WMPhoto.dll
2009-11-18 08:50:41 ----A---- C:\Windows\system32\cdd.dll
2009-11-18 08:50:39 ----A---- C:\Windows\system32\d3d10warp.dll
2009-11-18 08:50:38 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\XpsRasterService.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\WindowsCodecs.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2009-11-18 08:50:37 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\dxdiagn.dll
2009-11-18 08:50:37 ----A---- C:\Windows\system32\dxdiag.exe
2009-11-18 08:50:37 ----A---- C:\Windows\system32\d2d1.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\xpsservices.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\XpsPrint.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\OpcServices.dll
2009-11-18 08:50:36 ----A---- C:\Windows\system32\FntCache.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\dxgi.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\DWrite.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d11.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10level9.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10core.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10_1core.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10_1.dll
2009-11-18 08:50:35 ----A---- C:\Windows\system32\d3d10.dll
2009-11-18 08:46:42 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2009-11-18 08:46:41 ----A---- C:\Windows\system32\wpdbusenum.dll
2009-11-18 08:46:41 ----A---- C:\Windows\system32\BthMtpContextHandler.dll
2009-11-18 08:46:15 ----A---- C:\Windows\system32\PortableDeviceConnectApi.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\wpdshext.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\wpd_ci.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2009-11-18 08:46:03 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2009-11-18 08:46:02 ----A---- C:\Windows\system32\WPDSp.dll
2009-11-18 08:41:38 ----A---- C:\Windows\system32\UIAutomationCore.dll
2009-11-18 08:41:38 ----A---- C:\Windows\system32\oleaccrc.dll
2009-11-18 08:41:38 ----A---- C:\Windows\system32\oleacc.dll
2009-11-17 13:28:42 ----D---- C:\ProgramData\Sandlot Games
2009-11-17 11:58:12 ----D---- C:\Users\Dad\AppData\Roaming\7Wonders
2009-11-16 18:13:58 ----A---- C:\Windows\wininit.ini
2009-11-16 16:13:50 ----D---- C:\ProgramData\Spybot - Search & Destroy
2009-11-16 16:13:50 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-11-16 14:37:17 ----D---- C:\Windows\system32\eu-ES
2009-11-16 14:37:17 ----D---- C:\Windows\system32\ca-ES
2009-11-16 14:37:09 ----D---- C:\Windows\system32\vi-VN
2009-11-16 14:15:04 ----D---- C:\Windows\system32\EventProviders
2009-11-16 12:21:16 ----D---- C:\Program Files\Trend Micro
2009-11-16 11:01:15 ----D---- C:\ProgramData\McAfee
2009-11-14 11:01:12 ----D---- C:\ProgramData\McAfee Security Scan
2009-11-14 11:01:09 ----D---- C:\Program Files\McAfee Security Scan
2009-11-14 10:58:53 ----D---- C:\ProgramData\NOS
2009-11-13 14:45:26 ----A---- C:\Windows\system32\wups2.dll
2009-11-13 14:45:26 ----A---- C:\Windows\system32\wuauclt.exe
2009-11-13 14:45:25 ----A---- C:\Windows\system32\wucltux.dll
2009-11-13 14:45:25 ----A---- C:\Windows\system32\wuaueng.dll
2009-11-13 14:44:48 ----A---- C:\Windows\system32\wups.dll
2009-11-13 14:44:48 ----A---- C:\Windows\system32\wudriver.dll
2009-11-13 14:44:48 ----A---- C:\Windows\system32\wuapi.dll
2009-11-13 14:44:06 ----A---- C:\Windows\system32\wuwebv.dll
2009-11-13 14:44:06 ----A---- C:\Windows\system32\wuapp.exe
2009-11-12 08:26:06 ----A---- C:\Windows\system32\mshtml.dll
2009-11-11 18:36:18 ----A---- C:\Windows\system32\WSDApi.dll
2009-11-10 09:14:01 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2009-11-10 09:13:36 ----A---- C:\Windows\system32\SLsvc.exe
2009-11-10 09:13:36 ----A---- C:\Windows\system32\SLCExt.dll
2009-11-10 09:13:29 ----A---- C:\Windows\system32\DevicePairingWizard.exe
2009-11-10 09:13:28 ----A---- C:\Windows\system32\FunctionDiscoveryFolder.dll
2009-11-10 09:13:22 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2009-11-10 09:13:11 ----A---- C:\Windows\system32\mssrch.dll
2009-11-10 09:13:02 ----A---- C:\Windows\system32\tquery.dll
2009-11-10 09:12:57 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2009-11-10 09:12:55 ----A---- C:\Windows\system32\RMActivate_isv.exe
2009-11-10 09:12:54 ----A---- C:\Windows\system32\scavenge.dll
2009-11-10 09:12:53 ----A---- C:\Windows\system32\RMActivate.exe
2009-11-10 09:12:48 ----A---- C:\Windows\system32\msi.dll
2009-11-10 09:12:45 ----A---- C:\Windows\system32\imapi2fs.dll
2009-11-10 09:12:41 ----A---- C:\Windows\system32\secproc_isv.dll
2009-11-10 09:12:39 ----A---- C:\Windows\system32\WscEapPr.dll
2009-11-10 09:12:39 ----A---- C:\Windows\system32\wcnwiz2.dll
2009-11-10 09:12:38 ----A---- C:\Windows\system32\sysmain.dll
2009-11-10 09:12:30 ----A---- C:\Windows\system32\icardagt.exe
2009-11-10 09:12:26 ----A---- C:\Windows\system32\EhStorShell.dll
2009-11-10 09:12:18 ----A---- C:\Windows\system32\spreview.exe
2009-11-10 09:12:18 ----A---- C:\Windows\system32\spinstall.exe
2009-11-10 09:12:17 ----A---- C:\Windows\system32\drmv2clt.dll
2009-11-10 09:12:13 ----A---- C:\Windows\system32\spwizui.dll
2009-11-10 09:12:12 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2009-11-10 09:12:11 ----A---- C:\Windows\system32\secproc.dll
2009-11-10 09:12:08 ----A---- C:\Windows\system32\shell32.dll
2009-11-10 09:12:00 ----A---- C:\Windows\system32\p2psvc.dll
2009-11-10 09:11:59 ----A---- C:\Windows\system32\SearchIndexer.exe
2009-11-10 09:11:59 ----A---- C:\Windows\system32\mssvp.dll
2009-11-10 09:11:57 ----A---- C:\Windows\system32\mscoree.dll
2009-11-10 09:11:56 ----A---- C:\Windows\system32\mssphtb.dll
2009-11-10 09:11:56 ----A---- C:\Windows\system32\mssph.dll
2009-11-10 09:11:55 ----A---- C:\Windows\system32\imapi2.dll
2009-11-10 09:11:52 ----A---- C:\Windows\system32\sdohlp.dll
2009-11-10 09:11:47 ----A---- C:\Windows\system32\IMJP10K.DLL
2009-11-10 09:11:47 ----A---- C:\Windows\system32\esent.dll
2009-11-10 09:11:45 ----A---- C:\Windows\system32\DevicePairing.dll
2009-11-10 09:11:42 ----A---- C:\Windows\system32\sperror.dll
2009-11-10 09:11:41 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2009-11-10 09:11:41 ----A---- C:\Windows\system32\korwbrkr.dll
2009-11-10 09:11:40 ----A---- C:\Windows\system32\wevtsvc.dll
2009-11-10 09:11:39 ----A---- C:\Windows\system32\SLC.dll
2009-11-10 09:11:39 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2009-11-10 09:11:39 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2009-11-10 09:11:39 ----A---- C:\Windows\system32\IasMigReader.exe
2009-11-10 09:11:37 ----A---- C:\Windows\system32\msshsq.dll
2009-11-10 09:11:32 ----A---- C:\Windows\system32\msjet40.dll
2009-11-10 09:11:31 ----A---- C:\Windows\system32\MPSSVC.dll
2009-11-10 09:11:29 ----A---- C:\Windows\system32\msxml6.dll
2009-11-10 09:11:27 ----A---- C:\Windows\system32\Query.dll
2009-11-10 09:11:27 ----A---- C:\Windows\system32\qmgr.dll
2009-11-10 09:11:26 ----A---- C:\Windows\system32\msexch40.dll
2009-11-10 09:11:25 ----A---- C:\Windows\system32\P2PGraph.dll
2009-11-10 09:11:25 ----A---- C:\Windows\system32\diagperf.dll
2009-11-10 09:11:23 ----A---- C:\Windows\system32\ole32.dll
2009-11-10 09:11:23 ----A---- C:\Windows\system32\ntdll.dll
2009-11-10 09:11:21 ----A---- C:\Windows\system32\srchadmin.dll
2009-11-10 09:11:21 ----A---- C:\Windows\system32\msxml3.dll
2009-11-10 09:11:20 ----A---- C:\Windows\system32\winload.exe
2009-11-10 09:11:19 ----A---- C:\Windows\system32\mblctr.exe
2009-11-10 09:11:19 ----A---- C:\Windows\system32\EncDec.dll
2009-11-10 09:11:18 ----A---- C:\Windows\system32\uDWM.dll
2009-11-10 09:11:18 ----A---- C:\Windows\system32\mmc.exe
2009-11-10 09:11:16 ----A---- C:\Windows\system32\dfsr.exe
2009-11-10 09:11:15 ----A---- C:\Windows\system32\IasMigPlugin.dll
2009-11-10 09:11:14 ----A---- C:\Windows\system32\riched20.dll
2009-11-10 09:11:12 ----A---- C:\Windows\system32\fdBth.dll
2009-11-10 09:11:09 ----A---- C:\Windows\system32\RacEngn.dll
2009-11-10 09:11:06 ----A---- C:\Windows\system32\kernel32.dll
2009-11-10 09:11:04 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2009-11-10 09:11:04 ----A---- C:\Windows\system32\SearchFilterHost.exe
2009-11-10 09:11:04 ----A---- C:\Windows\system32\milcore.dll
2009-11-10 09:11:02 ----A---- C:\Windows\system32\EhStorAPI.dll
2009-11-10 09:11:02 ----A---- C:\Windows\system32\CertEnroll.dll
2009-11-10 09:11:01 ----A---- C:\Windows\system32\spoolss.dll
2009-11-10 09:11:00 ----A---- C:\Windows\system32\schedsvc.dll
2009-11-10 09:11:00 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2009-11-10 09:10:57 ----A---- C:\Windows\system32\msjtes40.dll
2009-11-10 09:10:56 ----A---- C:\Windows\system32\msvcp60.dll
2009-11-10 09:10:55 ----A---- C:\Windows\system32\gpedit.dll
2009-11-10 09:10:54 ----A---- C:\Windows\system32\WinSAT.exe
2009-11-10 09:10:54 ----A---- C:\Windows\system32\infocardapi.dll
2009-11-10 09:10:52 ----A---- C:\Windows\system32\es.dll
2009-11-10 09:10:50 ----A---- C:\Windows\system32\mstext40.dll
2009-11-10 09:10:50 ----A---- C:\Windows\system32\Magnify.exe
2009-11-10 09:10:49 ----A---- C:\Windows\system32\advapi32.dll
2009-11-10 09:10:48 ----A---- C:\Windows\system32\WebClnt.dll
2009-11-10 09:10:47 ----A---- C:\Windows\system32\slwmi.dll
2009-11-10 09:10:47 ----A---- C:\Windows\system32\msexcl40.dll
2009-11-10 09:10:46 ----A---- C:\Windows\system32\msxbde40.dll
2009-11-10 09:10:46 ----A---- C:\Windows\system32\comsvcs.dll
2009-11-10 09:10:45 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2009-11-10 09:10:44 ----A---- C:\Windows\system32\vssapi.dll
2009-11-10 09:10:43 ----A---- C:\Windows\system32\authui.dll
2009-11-10 09:10:40 ----A---- C:\Windows\system32\msrepl40.dll
2009-11-10 09:10:39 ----A---- C:\Windows\system32\PresentationHost.exe
2009-11-10 09:10:38 ----A---- C:\Windows\system32\newdev.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\propsys.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\iasrecst.dll
2009-11-10 09:10:37 ----A---- C:\Windows\system32\gpsvc.dll
2009-11-10 09:10:36 ----A---- C:\Windows\system32\eudcedit.exe
2009-11-10 09:10:36 ----A---- C:\Windows\system32\crypt32.dll
2009-11-10 09:10:36 ----A---- C:\Windows\explorer.exe
2009-11-10 09:10:34 ----A---- C:\Windows\system32\rpcss.dll
2009-11-10 09:10:33 ----A---- C:\Windows\system32\setupapi.dll
2009-11-10 09:10:31 ----A---- C:\Windows\system32\mspbde40.dll
2009-11-10 09:10:30 ----A---- C:\Windows\system32\d3d9.dll
2009-11-10 09:10:28 ----A---- C:\Windows\system32\davclnt.dll
2009-11-10 09:10:27 ----A---- C:\Windows\system32\msltus40.dll
2009-11-10 09:10:26 ----A---- C:\Windows\system32\mfc42.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\shlwapi.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\msrd3x40.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\EhStorPwdMgr.dll
2009-11-10 09:10:25 ----A---- C:\Windows\system32\EhStorAuthn.dll
2009-11-10 09:10:24 ----A---- C:\Windows\system32\msdtctm.dll
2009-11-10 09:10:23 ----A---- C:\Windows\system32\wevtapi.dll
2009-11-10 09:10:23 ----A---- C:\Windows\system32\browseui.dll
2009-11-10 09:10:22 ----A---- C:\Windows\system32\photowiz.dll
2009-11-10 09:10:21 ----A---- C:\Windows\system32\nlhtml.dll
2009-11-10 09:10:17 ----A---- C:\Windows\system32\user32.dll
2009-11-10 09:10:16 ----A---- C:\Windows\system32\samsrv.dll
2009-11-10 09:10:16 ----A---- C:\Windows\system32\ci.dll
2009-11-10 09:10:15 ----A---- C:\Windows\system32\quartz.dll
2009-11-10 09:10:13 ----A---- C:\Windows\system32\win32spl.dll
2009-11-10 09:10:12 ----A---- C:\Windows\system32\WcnNetsh.dll
2009-11-10 09:10:12 ----A---- C:\Windows\system32\SLCommDlg.dll
2009-11-10 09:10:11 ----A---- C:\Windows\system32\oleaut32.dll
2009-11-10 09:10:09 ----A---- C:\Windows\system32\netshell.dll
2009-11-10 09:10:09 ----A---- C:\Windows\system32\IKEEXT.DLL
2009-11-10 09:10:08 ----A---- C:\Windows\system32\compcln.exe
2009-11-10 09:10:07 ----A---- C:\Windows\system32\apds.dll
2009-11-10 09:10:06 ----A---- C:\Windows\system32\winhttp.dll
2009-11-10 09:10:05 ----A---- C:\Windows\system32\xmlfilter.dll
2009-11-10 09:10:05 ----A---- C:\Windows\system32\mswstr10.dll
2009-11-10 09:10:05 ----A---- C:\Windows\system32\audiosrv.dll
2009-11-10 09:10:04 ----A---- C:\Windows\system32\emdmgmt.dll
2009-11-10 09:10:03 ----A---- C:\Windows\system32\msctf.dll
2009-11-10 09:10:02 ----A---- C:\Windows\system32\msvcrt.dll
2009-11-10 09:10:02 ----A---- C:\Windows\system32\gdi32.dll
2009-11-10 09:10:01 ----A---- C:\Windows\system32\QAGENTRT.DLL
2009-11-10 09:10:00 ----A---- C:\Windows\system32\VSSVC.exe
2009-11-10 09:10:00 ----A---- C:\Windows\system32\mfc42u.dll
2009-11-10 09:10:00 ----A---- C:\Windows\system32\iphlpsvc.dll
2009-11-10 09:09:59 ----A---- C:\Windows\system32\SLUI.exe
2009-11-10 09:09:58 ----A---- C:\Windows\system32\eapphost.dll
2009-11-10 09:09:57 ----A---- C:\Windows\system32\sqlsrv32.dll
2009-11-10 09:09:57 ----A---- C:\Windows\system32\msrd2x40.dll
2009-11-10 09:09:54 ----A---- C:\Windows\system32\odbc32.dll
2009-11-10 09:09:53 ----A---- C:\Windows\system32\winresume.exe
2009-11-10 09:09:53 ----A---- C:\Windows\system32\propdefs.dll
2009-11-10 09:09:50 ----A---- C:\Windows\system32\shdocvw.dll
2009-11-10 09:09:48 ----A---- C:\Windows\system32\dbgeng.dll
2009-11-10 09:09:47 ----A---- C:\Windows\system32\wevtutil.exe
2009-11-10 09:09:47 ----A---- C:\Windows\system32\mssitlb.dll
2009-11-10 09:09:43 ----A---- C:\Windows\system32\WsmSvc.dll
2009-11-10 09:09:42 ----A---- C:\Windows\system32\swprv.dll
2009-11-10 09:09:42 ----A---- C:\Windows\system32\mmcndmgr.dll
2009-11-10 09:09:39 ----A---- C:\Windows\system32\usp10.dll
2009-11-10 09:09:37 ----A---- C:\Windows\system32\vds.exe
2009-11-10 09:09:34 ----A---- C:\Windows\system32\netlogon.dll
2009-11-10 09:09:34 ----A---- C:\Windows\system32\msctfp.dll
2009-11-10 09:09:34 ----A---- C:\Windows\system32\fdBthProxy.dll
2009-11-10 09:09:34 ----A---- C:\Windows\system32\drvinst.exe
2009-11-10 09:09:34 ----A---- C:\Windows\system32\devmgr.dll
2009-11-10 09:09:33 ----A---- C:\Windows\system32\msscb.dll
2009-11-10 09:09:33 ----A---- C:\Windows\system32\DevicePairingProxy.dll
2009-11-10 09:09:33 ----A---- C:\Windows\system32\BFE.DLL
2009-11-10 09:09:33 ----A---- C:\Windows\system32\adsldpc.dll
2009-11-10 09:09:31 ----A---- C:\Windows\system32\evr.dll
2009-11-10 09:09:30 ----A---- C:\Windows\system32\wcnwiz.dll
2009-11-10 09:09:29 ----A---- C:\Windows\system32\Wldap32.dll
2009-11-10 09:09:28 ----A---- C:\Windows\system32\WMVSDECD.DLL
2009-11-10 09:09:21 ----A---- C:\Windows\system32\services.exe
2009-11-10 09:09:20 ----A---- C:\Windows\system32\wercon.exe
2009-11-10 09:09:19 ----A---- C:\Windows\system32\comdlg32.dll
2009-11-10 09:09:18 ----A---- C:\Windows\system32\mimefilt.dll
2009-11-10 09:09:18 ----A---- C:\Windows\system32\adtschema.dll
2009-11-10 09:09:17 ----A---- C:\Windows\system32\wcncsvc.dll
2009-11-10 09:09:16 ----A---- C:\Windows\system32\certcli.dll
2009-11-10 09:09:15 ----A---- C:\Windows\system32\msdrm.dll
2009-11-10 09:09:14 ----A---- C:\Windows\system32\msjter40.dll
2009-11-10 09:09:14 ----A---- C:\Windows\system32\msdtcprx.dll
2009-11-10 09:09:14 ----A---- C:\Windows\system32\ipsmsnap.dll
2009-11-10 09:09:12 ----A---- C:\Windows\system32\mswdat10.dll
2009-11-10 09:09:11 ----A---- C:\Windows\system32\taskeng.exe
2009-11-10 09:09:11 ----A---- C:\Windows\system32\rtffilt.dll
2009-11-10 09:09:11 ----A---- C:\Windows\system32\reg.exe
2009-11-10 09:09:10 ----A---- C:\Windows\system32\umpnpmgr.dll
2009-11-10 09:09:10 ----A---- C:\Windows\system32\dnsapi.dll
2009-11-10 09:09:09 ----A---- C:\Windows\system32\certutil.exe
2009-11-10 09:09:06 ----A---- C:\Windows\system32\WMNetMgr.dll
2009-11-10 09:09:04 ----A---- C:\Windows\system32\w32time.dll
2009-11-10 09:09:03 ----A---- C:\Windows\system32\IPSECSVC.DLL
2009-11-10 09:09:01 ----A---- C:\Windows\system32\msshooks.dll
2009-11-10 09:09:01 ----A---- C:\Windows\system32\msscntrs.dll
2009-11-10 09:09:01 ----A---- C:\Windows\system32\bcrypt.dll
2009-11-10 09:09:00 ----A---- C:\Windows\system32\bthserv.dll
2009-11-10 09:08:58 ----A---- C:\Windows\system32\rsaenh.dll
2009-11-10 09:08:58 ----A---- C:\Windows\system32\msihnd.dll
2009-11-10 09:08:57 ----A---- C:\Windows\system32\MMDevAPI.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\TsWpfWrp.exe
2009-11-10 09:08:56 ----A---- C:\Windows\system32\netapi32.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\msstrc.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\inetcomm.dll
2009-11-10 09:08:56 ----A---- C:\Windows\system32\dfshim.dll
2009-11-10 09:08:55 ----A---- C:\Windows\system32\mtxclu.dll
2009-11-10 09:08:55 ----A---- C:\Windows\system32\inetpp.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\mscories.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\hidserv.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\fundisc.dll
2009-11-10 09:08:54 ----A---- C:\Windows\system32\cryptsvc.dll
2009-11-10 09:08:53 ----A---- C:\Windows\system32\wmicmiplugin.dll
2009-11-10 09:08:53 ----A---- C:\Windows\system32\profsvc.dll
2009-11-10 09:08:53 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2009-11-10 09:08:52 ----A---- C:\Windows\system32\termsrv.dll
2009-11-10 09:08:50 ----A---- C:\Windows\system32\shsvcs.dll
2009-11-10 09:08:50 ----A---- C:\Windows\system32\msiexec.exe
2009-11-10 09:08:50 ----A---- C:\Windows\system32\imapi.dll
2009-11-10 09:08:49 ----A---- C:\Windows\system32\wdc.dll
2009-11-10 09:08:48 ----A---- C:\Windows\system32\chsbrkr.dll
2009-11-10 09:08:46 ----A---- C:\Windows\system32\rasmans.dll
2009-11-10 09:08:46 ----A---- C:\Windows\system32\iassdo.dll
2009-11-10 09:08:45 ----A---- C:\Windows\system32\pnidui.dll
2009-11-10 09:08:44 ----A---- C:\Windows\system32\spoolsv.exe
2009-11-10 09:08:44 ----A---- C:\Windows\system32\icardres.dll
2009-11-10 09:08:43 ----A---- C:\Windows\system32\autofmt.exe
2009-11-10 09:08:40 ----A---- C:\Windows\system32\wersvc.dll
2009-11-10 09:08:40 ----A---- C:\Windows\system32\scrrun.dll
2009-11-10 09:08:40 ----A---- C:\Windows\system32\PSHED.DLL
2009-11-10 09:08:39 ----A---- C:\Windows\system32\slmgr.vbs
2009-11-10 09:08:38 ----A---- C:\Windows\system32\pdh.dll
2009-11-10 09:08:37 ----A---- C:\Windows\system32\dhcpcsvc.dll
2009-11-10 09:08:37 ----A---- C:\Windows\system32\azroles.dll
2009-11-10 09:08:36 ----A---- C:\Windows\system32\CertEnrollUI.dll
2009-11-10 09:08:32 ----A---- C:\Windows\system32\pidgenx.dll
2009-11-10 09:08:28 ----A---- C:\Windows\system32\wmpmde.dll
2009-11-10 09:08:25 ----A---- C:\Windows\system32\winlogon.exe
2009-11-10 09:08:25 ----A---- C:\Windows\system32\SyncCenter.dll
2009-11-10 09:08:13 ----A---- C:\Windows\system32\SLUINotify.dll
2009-11-10 09:08:13 ----A---- C:\Windows\system32\msjetoledb40.dll
2009-11-10 09:08:12 ----A---- C:\Windows\system32\comuid.dll
2009-11-10 09:08:11 ----A---- C:\Windows\system32\certmgr.dll
2009-11-10 09:08:09 ----A---- C:\Windows\system32\ncrypt.dll
2009-11-10 09:08:09 ----A---- C:\Windows\system32\kd1394.dll
2009-11-10 09:08:08 ----A---- C:\Windows\system32\sethc.exe
2009-11-10 09:08:05 ----A---- C:\Windows\system32\spp.dll
2009-11-10 09:08:05 ----A---- C:\Windows\system32\iassam.dll
2009-11-10 09:08:04 ----A---- C:\Windows\system32\untfs.dll
2009-11-10 09:08:04 ----A---- C:\Windows\system32\scrobj.dll
2009-11-10 09:08:03 ----A---- C:\Windows\system32\wisptis.exe
2009-11-10 09:08:03 ----A---- C:\Windows\system32\rtutils.dll
2009-11-10 09:08:01 ----A---- C:\Windows\system32\taskcomp.dll
2009-11-10 09:08:01 ----A---- C:\Windows\system32\dwm.exe
2009-11-10 09:08:00 ----A---- C:\Windows\system32\autochk.exe
2009-11-10 09:07:56 ----A---- C:\Windows\system32\printui.dll
2009-11-10 09:07:56 ----A---- C:\Windows\system32\iasnap.dll
2009-11-10 09:07:55 ----A---- C:\Windows\system32\autoconv.exe
2009-11-10 09:07:54 ----A---- C:\Windows\system32\winsrv.dll
2009-11-10 09:07:52 ----A---- C:\Windows\system32\kdcom.dll
2009-11-10 09:07:52 ----A---- C:\Windows\system32\cscript.exe
2009-11-10 09:07:52 ----A---- C:\Windows\system32\basecsp.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\wow32.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\userenv.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\onex.dll
2009-11-10 09:07:51 ----A---- C:\Windows\system32\audiodg.exe
2009-11-10 09:07:50 ----A---- C:\Windows\system32\osk.exe
2009-11-10 09:07:50 ----A---- C:\Windows\system32\mswsock.dll
2009-11-10 09:07:49 ----A---- C:\Windows\system32\kdusb.dll
2009-11-10 09:07:48 ----A---- C:\Windows\system32\winmm.dll
2009-11-10 09:07:48 ----A---- C:\Windows\system32\spcmsg.dll
2009-11-10 09:07:48 ----A---- C:\Windows\system32\RelMon.dll
2009-11-10 09:07:47 ----A---- C:\Windows\system32\WinSCard.dll
2009-11-10 09:07:47 ----A---- C:\Windows\system32\rdpencom.dll
2009-11-10 09:07:46 ----A---- C:\Windows\system32\WerFaultSecure.exe
2009-11-10 09:07:46 ----A---- C:\Windows\system32\msftedit.dll
2009-11-10 09:07:45 ----A---- C:\Windows\system32\offfilt.dll
2009-11-10 09:07:45 ----A---- C:\Windows\system32\dnsrslvr.dll
2009-11-10 09:07:43 ----A---- C:\Windows\system32\Utilman.exe
2009-11-10 09:07:42 ----A---- C:\Windows\system32\wsepno.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\WerFault.exe
2009-11-10 09:07:42 ----A---- C:\Windows\system32\stobject.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\secproc_ssp.dll
2009-11-10 09:07:42 ----A---- C:\Windows\system32\mfplat.dll
2009-11-10 09:07:41 ----A---- C:\Windows\system32\diskraid.exe
2009-11-10 09:07:41 ----A---- C:\Windows\system32\apphelp.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\wiaservc.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\sysclass.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\SndVol.exe
2009-11-10 09:07:40 ----A---- C:\Windows\system32\prnntfy.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\msnetobj.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\mscms.dll
2009-11-10 09:07:40 ----A---- C:\Windows\system32\adsmsext.dll
2009-11-10 09:07:39 ----A---- C:\Windows\system32\wscript.exe
2009-11-10 09:07:39 ----A---- C:\Windows\system32\odbccp32.dll
2009-11-10 09:07:39 ----A---- C:\Windows\system32\iasdatastore.dll
2009-11-10 09:07:38 ----A---- C:\Windows\system32\ulib.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\wscntfy.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\rastapi.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2009-11-10 09:07:37 ----A---- C:\Windows\system32\dsound.dll
2009-11-10 09:07:37 ----A---- C:\Windows\system32\cryptui.dll
2009-11-10 09:07:36 ----A---- C:\Windows\system32\pnpsetup.dll
2009-11-10 09:07:36 ----A---- C:\Windows\system32\ipsecsnp.dll
2009-11-10 09:07:36 ----A---- C:\Windows\system32\fdProxy.dll
2009-11-10 09:07:35 ----A---- C:\Windows\system32\brcpl.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\wlangpui.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\rastls.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\gpapi.dll
2009-11-10 09:07:34 ----A---- C:\Windows\system32\diskpart.exe
2009-11-10 09:07:33 ----A---- C:\Windows\system32\wscsvc.dll
2009-11-10 09:07:33 ----A---- C:\Windows\system32\vdsdyn.dll
2009-11-10 09:07:33 ----A---- C:\Windows\system32\iashlpr.dll
2009-11-10 09:07:32 ----A---- C:\Windows\system32\WMVENCOD.DLL
2009-11-10 09:07:32 ----A---- C:\Windows\system32\logman.exe
2009-11-10 09:07:31 ----A---- C:\Windows\system32\rasapi32.dll
2009-11-10 09:07:29 ----A---- C:\Windows\system32\regsvc.dll
2009-11-10 09:07:29 ----A---- C:\Windows\system32\ntprint.dll
2009-11-10 09:07:28 ----A---- C:\Windows\system32\mscorier.dll
2009-11-10 09:07:27 ----A---- C:\Windows\system32\wusa.exe
2009-11-10 09:07:26 ----A---- C:\Windows\system32\iasrad.dll
2009-11-10 09:07:26 ----A---- C:\Windows\system32\findstr.exe
2009-11-10 09:07:23 ----A---- C:\Windows\system32\zipfldr.dll
2009-11-10 09:07:22 ----A---- C:\Windows\system32\wshext.dll
2009-11-10 09:07:22 ----A---- C:\Windows\system32\wpccpl.dll
2009-11-10 09:07:21 ----A---- C:\Windows\system32\netcenter.dll
2009-11-10 09:07:18 ----A---- C:\Windows\system32\rasdlg.dll
2009-11-10 09:07:17 ----A---- C:\Windows\system32\wer.dll
2009-11-10 09:07:17 ----A---- C:\Windows\system32\iassvcs.dll
2009-11-10 09:07:15 ----A---- C:\Windows\system32\wsnmp32.dll
2009-11-10 09:07:15 ----A---- C:\Windows\system32\themecpl.dll
2009-11-10 09:07:11 ----A---- C:\Windows\system32\uxsms.dll
2009-11-10 09:07:11 ----A---- C:\Windows\system32\srvsvc.dll
2009-11-10 09:07:11 ----A---- C:\Windows\system32\mssprxy.dll
2009-11-10 09:07:10 ----A---- C:\Windows\system32\tsbyuv.dll
2009-11-10 09:07:09 ----A---- C:\Windows\system32\scansetting.dll
2009-11-10 09:07:09 ----A---- C:\Windows\system32\ntmarta.dll
2009-11-10 09:07:08 ----A---- C:\Windows\system32\msutb.dll
2009-11-10 09:07:08 ----A---- C:\Windows\system32\iasads.dll
2009-11-10 09:07:07 ----A---- C:\Windows\system32\slcc.dll
2009-11-10 09:07:07 ----A---- C:\Windows\system32\mstlsapi.dll
2009-11-10 09:07:05 ----A---- C:\Windows\system32\powrprof.dll
2009-11-10 09:07:05 ----A---- C:\Windows\system32\mstsc.exe
2009-11-10 09:07:02 ----A---- C:\Windows\system32\networkmap.dll
2009-11-10 09:07:02 ----A---- C:\Windows\system32\iasacct.dll
2009-11-10 09:07:01 ----A---- C:\Windows\system32\powercpl.dll
2009-11-10 09:06:59 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2009-11-10 09:06:57 ----A---- C:\Windows\system32\newdev.exe
2009-11-10 09:06:57 ----A---- C:\Windows\system32\connect.dll
2009-11-10 09:06:57 ----A---- C:\Windows\system32\authz.dll
2009-11-10 09:06:56 ----A---- C:\Windows\system32\sud.dll
2009-11-10 09:06:56 ----A---- C:\Windows\system32\dot3svc.dll
2009-11-10 09:06:54 ----A---- C:\Windows\system32\systemcpl.dll
2009-11-10 09:06:53 ----A---- C:\Windows\system32\pcaui.dll
2009-11-10 09:06:51 ----A---- C:\Windows\system32\themeui.dll
2009-11-10 09:06:50 ----A---- C:\Windows\system32\accessibilitycpl.dll
2009-11-10 09:06:49 ----A---- C:\Windows\system32\samlib.dll
2009-11-10 09:06:49 ----A---- C:\Windows\system32\mmci.dll
2009-11-10 09:06:48 ----A---- C:\Windows\system32\usercpl.dll
2009-11-10 09:06:48 ----A---- C:\Windows\system32\autoplay.dll
2009-11-10 09:06:46 ----A---- C:\Windows\system32\qdvd.dll
2009-11-10 09:06:44 ----A---- C:\Windows\system32\wlanpref.dll
2009-11-10 09:06:43 ----A---- C:\Windows\system32\rpchttp.dll
2009-11-10 09:06:42 ----A---- C:\Windows\system32\regapi.dll
2009-11-10 09:06:41 ----A---- C:\Windows\system32\msinfo32.exe
2009-11-10 09:06:40 ----A---- C:\Windows\system32\wpcao.dll
2009-11-10 09:06:39 ----A---- C:\Windows\system32\vdsutil.dll
2009-11-10 09:06:36 ----A---- C:\Windows\system32\tapisrv.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\scksp.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\scesrv.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\mpr.dll
2009-11-10 09:06:35 ----A---- C:\Windows\system32\feclient.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\psisdecd.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\oleprn.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\imm32.dll
2009-11-10 09:06:34 ----A---- C:\Windows\system32\AudioSes.dll
2009-11-10 09:06:33 ----A---- C:\Windows\system32\rekeywiz.exe
2009-11-10 09:06:33 ----A---- C:\Windows\system32\Faultrep.dll
2009-11-10 09:06:33 ----A---- C:\Windows\system32\dot3msm.dll
2009-11-10 09:06:32 ----A---- C:\Windows\system32\wscisvif.dll
2009-11-10 09:06:32 ----A---- C:\Windows\system32\iaspolcy.dll
2009-11-10 09:06:32 ----A---- C:\Windows\system32\DeviceEject.exe
2009-11-10 09:06:31 ----A---- C:\Windows\system32\sdclt.exe
2009-11-10 09:06:31 ----A---- C:\Windows\system32\dpapimig.exe
2009-11-10 09:06:29 ----A---- C:\Windows\system32\ncryptui.dll
2009-11-10 09:06:28 ----A---- C:\Windows\system32\qedit.dll
2009-11-10 09:06:27 ----A---- C:\Windows\system32\pnpui.dll
2009-11-10 09:06:27 ----A---- C:\Windows\system32\perfdisk.dll
2009-11-10 09:06:27 ----A---- C:\Windows\system32\hdwwiz.exe
2009-11-10 09:06:27 ----A---- C:\Windows\system32\certreq.exe
2009-11-10 09:06:26 ----A---- C:\Windows\system32\scecli.dll
2009-11-10 09:06:26 ----A---- C:\Windows\system32\rasgcw.dll
2009-11-10 09:06:25 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2009-11-10 09:06:25 ----A---- C:\Windows\system32\rasplap.dll
2009-11-10 09:06:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2009-11-10 09:06:24 ----A---- C:\Windows\system32\TSTheme.exe
2009-11-10 09:06:24 ----A---- C:\Windows\system32\spwinsat.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\tcpmon.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\tcpipcfg.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\PnPUnattend.exe
2009-11-10 09:06:22 ----A---- C:\Windows\system32\fdWSD.dll
2009-11-10 09:06:22 ----A---- C:\Windows\system32\cmmon32.exe
2009-11-10 09:06:21 ----A---- C:\Windows\system32\whealogr.dll
2009-11-10 09:06:21 ----A---- C:\Windows\system32\srcore.dll
2009-11-10 09:06:20 ----A---- C:\Windows\system32\conime.exe
2009-11-10 09:06:20 ----A---- C:\Windows\system32\cmdial32.dll
2009-11-10 09:06:19 ----A---- C:\Windows\system32\SCardSvr.dll
2009-11-10 09:06:19 ----A---- C:\Windows\system32\raschap.dll
2009-11-10 09:06:18 ----A---- C:\Windows\system32\fontext.dll
2009-11-10 09:06:17 ----A---- C:\Windows\system32\MSVidCtl.dll
2009-11-10 09:06:16 ----A---- C:\Windows\system32\wiaaut.dll
2009-11-10 09:06:13 ----A---- C:\Windows\system32\WMVXENCD.DLL
2009-11-10 09:06:13 ----A---- C:\Windows\system32\wlanui.dll
2009-11-10 09:06:13 ----A---- C:\Windows\system32\rasppp.dll
2009-11-10 09:06:10 ----A---- C:\Windows\system32\shwebsvc.dll
2009-11-10 09:06:10 ----A---- C:\Windows\system32\PnPutil.exe
2009-11-10 09:06:10 ----A---- C:\Windows\system32\dsprop.dll
2009-11-10 09:06:09 ----A---- C:\Windows\system32\dimsroam.dll
2009-11-10 09:06:08 ----A---- C:\Windows\system32\oobefldr.dll
2009-11-10 09:06:06 ----A---- C:\Windows\system32\shsetup.dll
2009-11-10 09:06:06 ----A---- C:\Windows\system32\modemui.dll
2009-11-10 09:06:05 ----A---- C:\Windows\system32\rasmontr.dll
2009-11-10 09:06:05 ----A---- C:\Windows\system32\mscandui.dll
2009-11-10 09:06:04 ----A---- C:\Windows\system32\chtbrkr.dll
2009-11-10 09:06:03 ----A---- C:\Windows\system32\wmdrmsdk.dll
2009-11-10 09:06:03 ----A---- C:\Windows\system32\dataclen.dll
2009-11-10 09:06:02 ----A---- C:\Windows\system32\wlgpclnt.dll
2009-11-10 09:06:02 ----A---- C:\Windows\system32\blackbox.dll
2009-11-10 09:06:01 ----A---- C:\Windows\system32\smss.exe
2009-11-10 09:06:01 ----A---- C:\Windows\system32\rdpwsx.dll
2009-11-10 09:06:01 ----A---- C:\Windows\system32\credui.dll
2009-11-10 09:06:00 ----A---- C:\Windows\system32\netplwiz.dll
2009-11-10 09:05:59 ----A---- C:\Windows\system32\WSDMon.dll
2009-11-10 09:05:59 ----A---- C:\Windows\system32\wmpeffects.dll
2009-11-10 09:05:59 ----A---- C:\Windows\system32\certprop.dll
2009-11-10 09:05:58 ----A---- C:\Windows\system32\networkexplorer.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\wscapi.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\wpcsvc.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\msscp.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\logagent.exe
2009-11-10 09:05:57 ----A---- C:\Windows\system32\InkEd.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\ifmon.dll
2009-11-10 09:05:57 ----A---- C:\Windows\system32\gpresult.exe
2009-11-10 09:05:57 ----A---- C:\Windows\system32\cipher.exe
2009-11-10 09:05:56 ----A---- C:\Windows\system32\msimtf.dll
2009-11-10 09:05:55 ----A---- C:\Windows\system32\thawbrkr.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\softkbd.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\sendmail.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\msctfui.dll
2009-11-10 09:05:52 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2009-11-10 09:05:51 ----A---- C:\Windows\system32\olepro32.dll
2009-11-10 09:05:50 ----A---- C:\Windows\system32\dmsynth.dll
2009-11-10 09:05:49 ----A---- C:\Windows\system32\drmmgrtn.dll
2009-11-10 09:05:48 ----A---- C:\Windows\system32\puiapi.dll
2009-11-10 09:05:47 ----A---- C:\Windows\system32\input.dll
2009-11-10 09:05:47 ----A---- C:\Windows\system32\ExplorerFrame.dll
2009-11-10 09:05:46 ----A---- C:\Windows\system32\wshbth.dll
2009-11-10 09:05:46 ----A---- C:\Windows\system32\version.dll
2009-11-10 09:05:46 ----A---- C:\Windows\system32\SLLUA.exe
2009-11-10 09:05:46 ----A---- C:\Windows\system32\mprapi.dll
2009-11-10 09:05:45 ----A---- C:\Windows\system32\msisip.dll
2009-11-10 09:05:41 ----A---- C:\Windows\system32\fc.exe
2009-11-10 09:05:39 ----A---- C:\Windows\system32\fdSSDP.dll
2009-11-10 09:05:39 ----A---- C:\Windows\system32\dmusic.dll
2009-11-10 09:05:38 ----A---- C:\Windows\system32\msjint40.dll
2009-11-10 09:05:38 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2009-11-10 09:05:38 ----A---- C:\Windows\system32\cscapi.dll
2009-11-10 09:05:37 ----A---- C:\Windows\system32\l2nacp.dll
2009-11-10 09:05:37 ----A---- C:\Windows\system32\ftp.exe
2009-11-10 09:05:37 ----A---- C:\Windows\system32\eapp3hst.dll
2009-11-10 09:05:36 ----A---- C:\Windows\system32\cscdll.dll
2009-11-10 09:05:34 ----A---- C:\Windows\system32\wsdchngr.dll
2009-11-10 09:05:34 ----A---- C:\Windows\system32\SMBHelperClass.dll
2009-11-10 09:05:33 ----A---- C:\Windows\system32\Storprop.dll
2009-11-10 09:05:33 ----A---- C:\Windows\system32\rasdial.exe
2009-11-10 09:05:33 ----A---- C:\Windows\system32\rasdiag.dll
2009-11-10 09:05:33 ----A---- C:\Windows\system32\bthudtask.exe
2009-11-10 09:05:33 ----A---- C:\Windows\system32\bthci.dll
2009-11-10 09:05:32 ----A---- C:\Windows\system32\fdWCN.dll
2009-11-10 09:05:32 ----A---- C:\Windows\system32\dot3cfg.dll
2009-11-10 09:05:29 ----A---- C:\Windows\system32\eappcfg.dll
2009-11-10 09:05:28 ----A---- C:\Windows\system32\ipconfig.exe
2009-11-10 09:05:28 ----A---- C:\Windows\system32\CHxReadingStringIME.dll
2009-11-10 09:05:27 ----A---- C:\Windows\system32\tscupgrd.exe
2009-11-10 09:05:21 ----A---- C:\Windows\system32\slcinst.dll
2009-11-10 09:05:20 ----A---- C:\Windows\system32\nslookup.exe
2009-11-10 09:05:20 ----A---- C:\Windows\system32\networkitemfactory.dll
2009-11-10 09:05:19 ----A---- C:\Windows\system32\eappgnui.dll
2009-11-10 09:05:18 ----A---- C:\Windows\system32\ocsetup.exe
2009-11-10 09:05:18 ----A---- C:\Windows\system32\hbaapi.dll
2009-11-10 09:05:18 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2009-11-10 09:05:17 ----A---- C:\Windows\system32\mmcico.dll
2009-11-10 09:05:17 ----A---- C:\Windows\system32\fdeploy.dll
2009-11-10 09:05:16 ----A---- C:\Windows\system32\PNPXAssoc.dll
2009-11-10 09:05:14 ----A---- C:\Windows\system32\gpupdate.exe
2009-11-10 09:05:08 ----A---- C:\Windows\system32\csrstub.exe
2009-11-10 09:05:08 ----A---- C:\Windows\system32\cbsra.exe
2009-11-10 09:05:08 ----A---- C:\Windows\system32\bitsigd.dll
2009-11-10 09:05:05 ----A---- C:\Windows\system32\iscsilog.dll
2009-11-10 09:05:04 ----A---- C:\Windows\system32\NcdProp.dll
2009-11-10 09:04:59 ----A---- C:\Windows\system32\vdmdbg.dll
2009-11-10 09:04:59 ----A---- C:\Windows\system32\odbcconf.dll
2009-11-10 09:04:58 ----A---- C:\Windows\system32\slwga.dll
2009-11-10 09:04:57 ----A---- C:\Windows\system32\inetppui.dll
2009-11-10 09:04:56 ----A---- C:\Windows\system32\winrnr.dll
2009-11-10 09:04:55 ----A---- C:\Windows\system32\midimap.dll
2009-11-10 09:03:48 ----A---- C:\Windows\system32\f3ahvoas.dll
2009-11-10 09:03:46 ----A---- C:\Windows\system32\msimsg.dll
2009-11-10 09:01:32 ----A---- C:\Windows\system32\SmiEngine.dll
2009-11-10 09:01:21 ----A---- C:\Windows\system32\wdscore.dll
2009-11-10 09:01:19 ----A---- C:\Windows\system32\PkgMgr.exe
2009-11-10 09:00:45 ----A---- C:\Windows\system32\drvstore.dll
2009-11-10 08:51:40 ----N---- C:\Windows\system32\MpSigStub.exe
2009-11-09 23:37:52 ----D---- C:\Windows\SQL9_KB970892_ENU
2009-11-09 23:02:11 ----A---- C:\Windows\system32\msasn1.dll
2009-11-09 23:02:06 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2009-11-09 23:01:56 ----A---- C:\Windows\system32\ieframe.dll
2009-11-09 23:01:55 ----A---- C:\Windows\system32\urlmon.dll
2009-11-09 23:01:55 ----A---- C:\Windows\system32\iertutil.dll
2009-11-09 23:01:54 ----A---- C:\Windows\system32\wininet.dll
2009-11-09 23:01:54 ----A---- C:\Windows\system32\msfeeds.dll
2009-11-09 23:01:53 ----A---- C:\Windows\system32\occache.dll
2009-11-09 23:01:53 ----A---- C:\Windows\system32\iedkcs32.dll
2009-11-09 23:01:52 ----A---- C:\Windows\system32\ieui.dll
2009-11-09 23:01:51 ----A---- C:\Windows\system32\ieUnatt.exe
2009-11-09 23:01:51 ----A---- C:\Windows\system32\iepeers.dll
2009-11-09 23:01:50 ----A---- C:\Windows\system32\msfeedsbs.dll
2009-11-09 23:01:50 ----A---- C:\Windows\system32\jsproxy.dll
2009-11-09 23:01:50 ----A---- C:\Windows\system32\iesysprep.dll
2009-11-09 23:01:49 ----A---- C:\Windows\system32\msfeedssync.exe
2009-11-09 23:01:49 ----A---- C:\Windows\system32\iesetup.dll
2009-11-09 23:01:49 ----A---- C:\Windows\system32\ie4uinit.exe
2009-11-09 23:01:48 ----A---- C:\Windows\system32\iernonce.dll
2009-11-09 23:01:35 ----A---- C:\Windows\system32\Apphlpdm.dll
2009-11-09 23:01:31 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2009-11-09 23:01:20 ----A---- C:\Windows\system32\ntkrnlpa.exe
2009-11-09 23:01:19 ----A---- C:\Windows\system32\ntoskrnl.exe
2009-11-09 23:01:08 ----A---- C:\Windows\system32\netiohlp.dll
2009-11-09 23:01:05 ----A---- C:\Windows\system32\TCPSVCS.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\ROUTE.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\NETSTAT.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\MRINFO.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\HOSTNAME.EXE
2009-11-09 23:01:05 ----A---- C:\Windows\system32\finger.exe
2009-11-09 23:01:05 ----A---- C:\Windows\system32\ARP.EXE
2009-11-09 23:01:02 ----A---- C:\Windows\system32\netevent.dll
2009-11-09 22:59:59 ----A---- C:\Windows\system32\WMVCORE.DLL
2009-11-09 22:59:58 ----A---- C:\Windows\system32\mf.dll
2009-11-09 22:59:57 ----A---- C:\Windows\system32\rrinstaller.exe
2009-11-09 22:59:57 ----A---- C:\Windows\system32\mfps.dll
2009-11-09 22:59:57 ----A---- C:\Windows\system32\mfpmp.exe
2009-11-09 22:59:55 ----A---- C:\Windows\system32\mferror.dll
2009-11-09 22:59:50 ----A---- C:\Windows\system32\msv1_0.dll
2009-11-09 22:59:41 ----A---- C:\Windows\system32\wlansvc.dll
2009-11-09 22:59:41 ----A---- C:\Windows\system32\wlanmsm.dll
2009-11-09 22:59:41 ----A---- C:\Windows\system32\wlanhlp.dll
2009-11-09 22:59:40 ----A---- C:\Windows\system32\L2SecHC.dll
2009-11-09 22:59:39 ----A---- C:\Windows\system32\wlansec.dll
2009-11-09 22:59:38 ----A---- C:\Windows\system32\wlanapi.dll
2009-11-09 22:59:29 ----A---- C:\Windows\system32\jscript.dll
2009-11-09 22:58:59 ----A---- C:\Windows\system32\wmp.dll
2009-11-09 22:58:48 ----A---- C:\Windows\system32\unregmp2.exe
2009-11-09 22:58:40 ----A---- C:\Windows\system32\wmploc.DLL
2009-11-09 22:24:26 ----D---- C:\Emotum

======List of files/folders modified in the last 2 months======

2009-11-23 20:26:59 ----D---- C:\Windows\Temp
2009-11-23 20:23:17 ----D---- C:\Windows\Prefetch
2009-11-23 19:59:42 ----D---- C:\Windows\System32
2009-11-23 19:57:31 ----RD---- C:\Program Files
2009-11-23 19:57:28 ----SHD---- C:\System Volume Information
2009-11-23 19:57:23 ----D---- C:\Windows\system32\drivers
2009-11-23 19:57:23 ----D---- C:\Windows
2009-11-23 19:57:21 ----HD---- C:\ProgramData
2009-11-21 22:15:01 ----SHD---- C:\Windows\Installer
2009-11-21 22:13:54 ----D---- C:\Windows\system32\catroot
2009-11-21 22:13:49 ----DC---- C:\Windows\system32\DRVSTORE
2009-11-21 22:12:39 ----D---- C:\Program Files\Common Files\Apple
2009-11-21 22:03:28 ----D---- C:\Windows\inf
2009-11-21 21:48:12 ----D---- C:\Program Files\Safari
2009-11-21 21:45:12 ----D---- C:\Windows\winsxs
2009-11-19 13:38:07 ----D---- C:\ProgramData\WildTangent
2009-11-19 12:24:22 ----D---- C:\Program Files\HP Games
2009-11-18 14:30:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-11-18 14:24:57 ----D---- C:\Windows\system32\catroot2
2009-11-18 09:32:23 ----D---- C:\Windows\rescache
2009-11-18 09:16:36 ----D---- C:\Windows\system32\Tasks
2009-11-18 09:12:02 ----D---- C:\Windows\system32\en-US
2009-11-18 09:11:58 ----D---- C:\Windows\system32\wbem
2009-11-18 09:11:53 ----D---- C:\Windows\system32\zh-HK
2009-11-18 09:11:53 ----D---- C:\Windows\system32\uk-UA
2009-11-18 09:11:53 ----D---- C:\Windows\system32\sl-SI
2009-11-18 09:11:53 ----D---- C:\Windows\system32\pt-PT
2009-11-18 09:11:53 ----D---- C:\Windows\system32\pt-BR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\pl-PL
2009-11-18 09:11:53 ----D---- C:\Windows\system32\nl-NL
2009-11-18 09:11:53 ----D---- C:\Windows\system32\ko-KR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\it-IT
2009-11-18 09:11:53 ----D---- C:\Windows\system32\hu-HU
2009-11-18 09:11:53 ----D---- C:\Windows\system32\hr-HR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\he-IL
2009-11-18 09:11:53 ----D---- C:\Windows\system32\fr-FR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\el-GR
2009-11-18 09:11:53 ----D---- C:\Windows\system32\bg-BG
2009-11-18 09:11:52 ----D---- C:\Windows\system32\zh-TW
2009-11-18 09:11:52 ----D---- C:\Windows\system32\zh-CN
2009-11-18 09:11:52 ----D---- C:\Windows\system32\tr-TR
2009-11-18 09:11:52 ----D---- C:\Windows\system32\th-TH
2009-11-18 09:11:52 ----D---- C:\Windows\system32\sv-SE
2009-11-18 09:11:52 ----D---- C:\Windows\system32\sr-Latn-CS
2009-11-18 09:11:52 ----D---- C:\Windows\system32\sk-SK
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ru-RU
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ro-RO
2009-11-18 09:11:52 ----D---- C:\Windows\system32\nb-NO
2009-11-18 09:11:52 ----D---- C:\Windows\system32\lv-LV
2009-11-18 09:11:52 ----D---- C:\Windows\system32\lt-LT
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ja-JP
2009-11-18 09:11:52 ----D---- C:\Windows\system32\fi-FI
2009-11-18 09:11:52 ----D---- C:\Windows\system32\et-EE
2009-11-18 09:11:52 ----D---- C:\Windows\system32\es-ES
2009-11-18 09:11:52 ----D---- C:\Windows\system32\de-DE
2009-11-18 09:11:52 ----D---- C:\Windows\system32\da-DK
2009-11-18 09:11:52 ----D---- C:\Windows\system32\cs-CZ
2009-11-18 09:11:52 ----D---- C:\Windows\system32\ar-SA
2009-11-18 08:53:15 ----D---- C:\Windows\Microsoft.NET
2009-11-18 08:52:55 ----RSD---- C:\Windows\assembly
2009-11-17 13:14:55 ----D---- C:\Users\Dad\AppData\Roaming\Hoyle Puzzle and Board Games
2009-11-16 14:56:41 ----SHD---- C:\boot
2009-11-16 14:41:48 ----D---- C:\Program Files\Windows Calendar
2009-11-16 14:41:47 ----D---- C:\Program Files\Windows Mail
2009-11-16 14:41:47 ----D---- C:\Program Files\Movie Maker
2009-11-16 14:41:45 ----D---- C:\Program Files\Windows Sidebar
2009-11-16 14:41:44 ----D---- C:\Program Files\Windows Media Player
2009-11-16 14:41:44 ----D---- C:\Program Files\Internet Explorer
2009-11-16 14:41:43 ----D---- C:\Program Files\Windows Collaboration
2009-11-16 14:41:41 ----D---- C:\Program Files\Common Files\System
2009-11-16 14:41:40 ----D---- C:\Program Files\Windows Photo Gallery
2009-11-16 14:41:32 ----D---- C:\Windows\servicing
2009-11-16 14:41:32 ----D---- C:\Program Files\Windows Defender
2009-11-16 14:41:09 ----D---- C:\Windows\system32\XPSViewer
2009-11-16 14:41:09 ----D---- C:\Windows\IME
2009-11-16 14:41:06 ----D---- C:\Windows\system32\oobe
2009-11-16 14:41:05 ----D---- C:\Windows\system32\migration
2009-11-16 14:40:54 ----D---- C:\Windows\system32\AdvancedInstallers
2009-11-16 14:40:53 ----D---- C:\Windows\system32\SLUI
2009-11-16 14:40:53 ----D---- C:\Windows\system32\setup
2009-11-16 14:40:52 ----D---- C:\Windows\system32\manifeststore
2009-11-16 14:40:52 ----D---- C:\Windows\system32\en
2009-11-16 14:40:40 ----D---- C:\Windows\system32\migwiz
2009-11-16 14:37:29 ----RSD---- C:\Windows\Fonts
2009-11-16 14:37:29 ----D---- C:\Windows\AppPatch
2009-11-16 14:37:09 ----D---- C:\Windows\system32\Boot
2009-11-14 22:32:13 ----SD---- C:\Windows\Downloaded Program Files
2009-11-13 03:03:23 ----D---- C:\ProgramData\Microsoft Help
2009-11-10 09:36:50 ----D---- C:\Program Files\Microsoft Silverlight
2009-11-09 23:39:56 ----D---- C:\Program Files\Microsoft SQL Server
2009-11-09 22:24:26 ----D---- C:\ProgramData\Symantec
2009-11-06 04:36:21 ----A---- C:\Windows\system32\mrt.exe

tasman
2009-11-23, 11:35
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir Desktop\avgio.sys [2009-02-13 11608]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2009-05-11 28520]
R1 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [2009-07-24 5632]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2009-07-28 55656]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-07-11 8704]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2007-09-30 156672]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-05-31 735232]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-02-27 201728]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2009-05-18 26600]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-29 9472]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\Windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2007-06-20 984064]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2007-06-20 208896]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-08-20 1790976]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2007-04-24 50176]
R3 RTSTOR;USB Mass Storage Device; C:\Windows\system32\drivers\RTSTOR.SYS [2007-09-28 56832]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2007-06-20 660480]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2006-11-02 163328]
S3 EC168BDA;EC168BDA service; C:\Windows\system32\DRIVERS\EC168BDA.sys [2007-10-06 107264]
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2007-10-11 176640]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-08-20 1790976]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 RTL8187;NETGEAR WG111v2 54Mbps Wireless USB 2.0 Adapter Vista Driver; C:\Windows\system32\DRIVERS\wg111v2.sys [2007-12-20 206336]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 SymIMMP;SymIMMP; C:\Windows\system32\DRIVERS\SymIM.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2007-11-22 132864]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-05-13 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-07-21 185089]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-11 30312]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 EpsonBidirectionalService;EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe [2006-12-19 94208]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-09-20 65536]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-03 135168]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe [2007-10-04 358936]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2007-01-09 272024]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
R2 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2008-11-24 239968]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2008-11-24 87904]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-07-11 386560]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-03-06 110592]
S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S3 GameConsoleService;GameConsoleService; C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe [2009-11-14 238328]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-08-09 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-11-12 545568]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2009-05-27 29262680]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-27 145184]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2008-11-24 45408]

-----------------EOF-----------------

Shaba
2009-11-23, 12:35
Looks like there was a little effect.

I recommend that you would add 1 gig more RAM; Vista should work then much smoother.

tasman
2009-11-23, 13:03
thank you for the help shaba, i will get some extra memory, thanks again