Hello peku006,
Thank you for replying to my post for help. I have in the past donated to "MR" for services rendered and I will donate again. What you do and the way you go about helping us poor ignorant PC owners and opperators is so much appreciated! I wish I could afford to donate what it is really worth to me to be able to post and within a few days someone like yourself shows up willing to help.
My PC is running fast and crisp but I am unable to surf the net quickly because of all the "Action Cancelled" dead ends. Also it doesn`t want to save my passwords when I ask it to.
Thank you again for helping and I will foolow your directions to the letter. If I am unsure of anything I will wait to proceed untill you have answered my concerns.
The two files you requested are posted below.*******************************************************************
Logfile of random's system information tool 1.06 (written by random/random)
Run by Thomas Hugh Pean at 2010-01-07 14:31:41
Microsoft Windows XP Professional Service Pack 3
System drive C: has 285 GB (97%) free of 295 GB
Total RAM: 3546 MB (77% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:31:57 PM, on 1/7/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
c:\drivers\audio\r203425\STacSV.exe
C:\WINDOWS\system32\cqtgbd\atisvc_naybi.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\cqtgbd\atisvc_naybi.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\cqtgbd\atisvc_naybi.exe
C:\Program Files\DellTPad\Apoint.exe
C:\WINDOWS\system32\AESTFltr.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Secunia\PSI\psi.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Thomas Hugh Pean\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Thomas Hugh Pean.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://g.msn.com/USCON/1R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.live.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL =
http://g.msn.com/USCON/1R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
http://g.msn.com/USCON/1R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [dellsupportcenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter
O4 - HKLM\..\Run: [AT&T Communication Manager] "C:\Program Files\AT&T\Communication Manager\ATTCM.exe" -a
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Google Sidewiki... -
res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) -
http://acs.pandasoftware.com/activescan ... stubie.cabO16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -
http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cabO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: atisvc_naybi - Unknown owner - C:\WINDOWS\system32\cqtgbd\atisvc_naybi.exe
O23 - Service: AT&T RcAppSvc (ATTRcAppSvc) - SmithMicro Inc. - C:\Program Files\AT&T\Communication Manager\RcAppSvc.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\drivers\audio\r203425\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
O23 - Service: Marvell Yukon Service (yksvc) - Unknown owner - RUNDLL32.EXE (file missing)
O24 - Desktop Component 0: (no name) -
http://www.freshtracks.ca/images/aurora-borealis.jpg--
End of file - 9952 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-01-02 1484056]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2008-12-04 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2008-11-18 408952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
AVG Security Toolbar BHO - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-11-25 1230080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-12-15 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-12-15 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2008-12-08 1067352]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - AVG Security Toolbar - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll [2009-11-25 1230080]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2008-12-08 200704]
"AESTFltr"=C:\WINDOWS\system32\AESTFltr.exe [2008-12-08 466944]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2009-01-06 2289664]
"Dell QuickSet"=C:\Program Files\Dell\QuickSet\quickset.exe [2009-01-09 1712128]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-05-07 178712]
"PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2008-05-23 128296]
"dellsupportcenter"=C:\Program Files\Dell Support Center\bin\sprtcmd.exe [2009-06-03 206064]
""= []
"AT&T Communication Manager"=C:\Program Files\AT&T\Communication Manager\ATTCM.exe [2008-12-01 33280]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2009-10-10 320832]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-11 149280]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2008-12-08 150040]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2008-12-08 178712]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2008-12-08 150040]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2008-12-08 442460]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-01-02 2033432]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2008-12-02 3882312]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\Thomas Hugh Pean\Start Menu\Programs\Startup
Secunia PSI.lnk - C:\Program Files\Secunia\PSI\psi.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-01-02 12464]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2008-12-08 217088]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\WINDOWS\LMI7A.tmp\lmi_rescue.exe"="C:\WINDOWS\LMI7A.tmp\lmi_rescue.exe:*:Enabled:LogMeIn Rescue"
"C:\Program Files\NinjaTrader 6.5\bin\NinjaTrader.exe"="C:\Program Files\NinjaTrader 6.5\bin\NinjaTrader.exe:*:Enabled:NinjaTrader application"
"C:\Program Files\AT&T\Communication Manager\SwiApiMux.exe"="C:\Program Files\AT&T\Communication Manager\SwiApiMux.exe:*:Enabled:SwiApiMux"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
======List of files/folders created in the last 3 months======
2010-01-07 14:31:41 ----D---- C:\rsit
2010-01-03 20:46:31 ----D---- C:\Program Files\Panda Security
2010-01-03 19:41:18 ----D---- C:\Program Files\Spybot - Search & Destroy
2010-01-03 19:41:18 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2010-01-02 22:09:10 ----D---- C:\WINDOWS\pss
2010-01-02 19:23:59 ----HD---- C:\$AVG
2010-01-02 19:23:48 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2010-01-02 19:23:32 ----D---- C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar
2010-01-02 19:23:15 ----D---- C:\Program Files\AVG
2010-01-02 19:23:14 ----D---- C:\Documents and Settings\All Users\Application Data\avg9
2010-01-02 19:22:58 ----D---- C:\WINDOWS\SxsCaPendDel
2010-01-02 18:09:45 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-01-02 18:09:39 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-01-02 18:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-01-02 18:01:40 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-01-02 18:01:35 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-01-02 18:01:30 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-01-02 18:01:25 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-01-02 18:01:20 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-01-02 18:01:16 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-01-02 18:01:12 ----HDC---- C:\WINDOWS\$NtUninstallKB976098-v2$
2010-01-02 18:01:07 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-01-02 18:01:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-01-02 18:00:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961371-v2$
2010-01-02 17:40:19 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-01-02 17:40:14 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-01-02 17:40:03 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-01-02 17:39:59 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2010-01-02 17:39:51 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-01-02 17:39:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-01-02 17:39:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-01-02 17:39:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-01-02 17:39:14 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-01-02 17:39:09 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$
2010-01-02 17:39:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-01-02 17:38:53 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-01-02 17:38:38 ----HDC---- C:\WINDOWS\$NtUninstallKB976325$
2010-01-02 17:38:31 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-01-02 17:38:26 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-01-02 17:38:21 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-01-02 17:38:16 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2010-01-02 17:38:11 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2010-01-02 17:38:06 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-01-02 17:38:02 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2010-01-02 17:37:56 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-01-02 17:37:49 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-01-02 17:37:38 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2010-01-02 17:37:34 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-01-02 17:37:29 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-01-02 17:37:18 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-01-02 17:37:12 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-01-02 17:36:59 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-01-02 17:36:53 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-01-02 17:36:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-01-02 17:36:42 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-01-02 17:36:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-01-02 17:36:30 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-01-02 17:36:24 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-01-02 17:36:13 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-01-02 17:36:05 ----HDC---- C:\WINDOWS\$NtUninstallKB969947$
2010-01-02 16:39:25 ----D---- C:\WINDOWS\Prefetch
2010-01-02 13:37:47 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-01-02 13:14:32 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-01-02 13:14:32 ----A---- C:\WINDOWS\system32\irclass.dll
2010-01-02 13:14:18 ----RA---- C:\WINDOWS\SET116.tmp
2010-01-02 13:14:14 ----RA---- C:\WINDOWS\SET10A.tmp
2010-01-02 13:14:12 ----RA---- C:\WINDOWS\SET107.tmp
2010-01-02 06:05:09 ----D---- C:\WINDOWS\Dell
2009-12-23 11:56:25 ----D---- C:\Program Files\SpywareBlaster
2009-12-22 05:03:16 ----D---- C:\Program Files\Skyhook Wireless
2009-12-22 05:03:01 ----D---- C:\WINDOWS\system32\cqtgbd
2009-12-21 09:58:16 ----D---- C:\Program Files\VirusTotalUploader2
2009-12-20 01:57:36 ----D---- C:\Program Files\Secunia
2009-12-20 01:44:23 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-12-20 01:43:55 ----D---- C:\Program Files\Google
2009-12-20 01:43:30 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2009-12-20 01:41:36 ----A---- C:\WINDOWS\system32\javaws.exe
2009-12-20 01:41:36 ----A---- C:\WINDOWS\system32\javaw.exe
2009-12-20 01:41:36 ----A---- C:\WINDOWS\system32\java.exe
2009-12-20 01:16:54 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\WinPatrol
2009-12-20 01:16:39 ----D---- C:\Program Files\BillP Studios
2009-12-19 23:29:31 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\Malwarebytes
2009-12-19 23:29:24 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-12-19 23:29:24 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-12-19 20:04:18 ----HDC---- C:\WINDOWS\ie8
2009-12-19 07:48:42 ----D---- C:\_OTM
2009-12-06 13:28:48 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\Registry Cleaner
2009-11-29 11:01:32 ----D---- C:\Program Files\Trend Micro
2009-11-26 10:03:36 ----A---- C:\WINDOWS\ntbtlog.txt
2009-11-22 21:01:20 ----D---- C:\Program Files\MSXML 4.0
2009-11-22 21:01:19 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\Yahoo!
2009-11-22 21:01:19 ----D---- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2009-11-22 21:01:15 ----D---- C:\WINDOWS\Downloaded Installations
2009-11-22 21:01:15 ----D---- C:\Program Files\Yahoo!
2009-11-22 21:00:49 ----D---- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
2009-11-22 21:00:47 ----D---- C:\Program Files\Common Files\HP
2009-11-22 21:00:44 ----D---- C:\Program Files\Hewlett-Packard
2009-11-22 20:43:12 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\Snapfish
2009-11-22 18:18:25 ----D---- C:\Documents and Settings\All Users\Application Data\PC Tools(3)
2009-11-22 15:19:09 ----D---- C:\Config.Msi
2009-11-22 15:17:42 ----D---- C:\Documents and Settings\All Users\Application Data\PC Tools
2009-11-22 11:15:34 ----D---- C:\WINDOWS\system32\NtmsData
2009-11-22 11:11:38 ----D---- C:\Program Files\Uniblue
2009-11-22 10:33:50 ----A---- C:\WINDOWS\BDTSupport(2).dll
2009-11-22 10:31:52 ----D---- C:\Program Files\Spyware Doctor
2009-11-02 22:33:06 ----A---- C:\1277496.dll
2009-11-02 22:33:03 ----A---- C:\WINDOWS\system32\msxml4a.dll
2009-10-30 08:43:54 ----SHD---- C:\WINDOWS\CSC
2009-10-30 08:34:42 ----D---- C:\WINDOWS\ie7updates
2009-10-30 08:34:01 ----HDC---- C:\WINDOWS\ie7
2009-10-30 08:33:51 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2009-10-30 08:33:32 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2009-10-26 05:39:09 ----HDC---- C:\WINDOWS\$NtUninstallKB960763$
2009-10-25 20:30:45 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\HPAppData
2009-10-24 23:43:50 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\HP
2009-10-24 23:37:42 ----D---- C:\Documents and Settings\All Users\Application Data\HP
2009-10-24 23:37:11 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2009-10-24 23:34:15 ----D---- C:\Program Files\HP
2009-10-15 05:05:27 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2009-10-15 05:05:21 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2009-10-15 05:05:18 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2009-10-15 05:05:13 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2009-10-15 05:05:07 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2009-10-15 05:03:17 ----HDC---- C:\WINDOWS\$NtUninstallKB971486$
2009-10-15 05:02:59 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2009-10-13 06:42:14 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\Template
======List of files/folders modified in the last 3 months======
2010-01-07 14:21:37 ----A---- C:\WINDOWS\ModemLog_Standard Modem.txt
2010-01-07 14:21:32 ----D---- C:\WINDOWS\Temp
2010-01-07 14:21:28 ----AD---- C:\WINDOWS
2010-01-07 11:56:00 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-07 11:55:59 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-05 22:33:00 ----SHD---- C:\WINDOWS\Installer
2010-01-04 00:51:54 ----D---- C:\Program Files\PokerStars
2010-01-03 20:54:35 ----D---- C:\WINDOWS\system32\drivers
2010-01-03 20:46:31 ----RD---- C:\Program Files
2010-01-03 20:46:31 ----HD---- C:\WINDOWS\inf
2010-01-03 20:43:47 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-01-02 19:23:48 ----AD---- C:\WINDOWS\system32
2010-01-02 19:23:08 ----D---- C:\WINDOWS\WinSxS
2010-01-02 19:23:08 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-01-02 19:21:23 ----SD---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\Microsoft
2010-01-02 18:12:25 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-02 18:10:38 ----D---- C:\WINDOWS\AppPatch
2010-01-02 18:09:47 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-01-02 18:09:43 ----A---- C:\WINDOWS\imsins.BAK
2010-01-02 18:04:15 ----D---- C:\WINDOWS\Help
2010-01-02 18:04:15 ----D---- C:\Program Files\Internet Explorer
2010-01-02 18:04:14 ----D---- C:\WINDOWS\system32\wbem
2010-01-02 17:58:35 ----D---- C:\WINDOWS\system32\en-US
2010-01-02 17:40:11 ----D---- C:\WINDOWS\system32\CatRoot
2010-01-02 17:38:04 ----D---- C:\Program Files\Outlook Express
2010-01-02 17:14:09 ----D---- C:\WINDOWS\Media
2010-01-02 17:09:42 ----D---- C:\Program Files\PC Tools AntiVirus
2010-01-02 17:09:41 ----D---- C:\Documents and Settings\Thomas Hugh Pean\Application Data\PC Tools
2010-01-02 17:06:34 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-02 17:01:00 ----D---- C:\WINDOWS\SoftwareDistribution
2010-01-02 17:00:10 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-01-02 16:41:12 ----D---- C:\WINDOWS\Registration
2010-01-02 16:40:02 ----SHD---- C:\System Volume Information
2010-01-02 16:40:02 ----D---- C:\WINDOWS\system32\Restore
2010-01-02 13:41:54 ----D---- C:\WINDOWS\system32\config
2010-01-02 13:41:54 ----A---- C:\WINDOWS\setuplog.txt
2010-01-02 13:39:06 ----D---- C:\WINDOWS\security
2010-01-02 13:38:51 ----A---- C:\WINDOWS\OEWABLog.txt
2010-01-02 13:38:46 ----A---- C:\WINDOWS\ODBCINST.INI
2010-01-02 13:37:50 ----RD---- C:\WINDOWS\Web
2010-01-02 13:37:41 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-01-02 13:37:29 ----A---- C:\WINDOWS\win.ini
2010-01-02 13:37:21 ----AD---- C:\WINDOWS\system32\oobe
2010-01-02 13:36:26 ----D---- C:\WINDOWS\system32\Com
2010-01-02 13:25:39 ----SH---- C:\boot.ini
2010-01-02 13:15:43 ----D---- C:\drivers
2010-01-02 13:14:37 ----A---- C:\WINDOWS\system.ini
2010-01-02 13:14:23 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2010-01-02 06:11:45 ----D---- C:\WINDOWS\system32\Setup
2010-01-02 06:11:45 ----D---- C:\WINDOWS\system
2010-01-02 06:11:37 ----D---- C:\WINDOWS\L2Schemas
2010-01-02 06:11:36 ----D---- C:\WINDOWS\system32\usmt
2010-01-02 06:11:17 ----D---- C:\WINDOWS\mui
2010-01-02 06:11:16 ----D---- C:\WINDOWS\ime
2010-01-02 06:11:16 ----D---- C:\WINDOWS\ehome
2010-01-02 06:11:15 ----RSD---- C:\WINDOWS\Fonts
2010-01-02 06:11:14 ----D---- C:\WINDOWS\Network Diagnostic
2010-01-02 06:11:11 ----D---- C:\WINDOWS\system32\scripting
2010-01-02 06:11:01 ----D---- C:\WINDOWS\PeerNet
2010-01-02 06:10:49 ----D---- C:\WINDOWS\system32\npp
2010-01-02 06:10:42 ----D---- C:\WINDOWS\msagent
2010-01-02 06:10:38 ----D---- C:\WINDOWS\system32\en
2010-01-02 06:07:32 ----D---- C:\WINDOWS\twain_32
2010-01-02 06:06:50 ----D---- C:\WINDOWS\system32\icsxml
2010-01-02 06:06:21 ----D---- C:\WINDOWS\system32\ias
2010-01-02 06:06:16 ----D---- C:\WINDOWS\system32\1033
2010-01-02 06:05:09 ----D---- C:\WINDOWS\Driver Cache
2009-12-27 12:03:32 ----D---- C:\WINDOWS\system32\FxsTmp
2009-12-20 02:15:09 ----HD---- C:\WINDOWS\system32\GroupPolicy
2009-12-20 01:48:36 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-12-20 01:46:03 ----D---- C:\Program Files\Common Files\Adobe
2009-12-20 01:45:53 ----D---- C:\Program Files\Adobe
2009-12-20 01:44:23 ----D---- C:\Program Files\Common Files
2009-12-20 01:41:33 ----D---- C:\Program Files\Java
2009-12-19 21:00:00 ----D---- C:\WINDOWS\Microsoft.NET
2009-12-19 20:59:51 ----RSD---- C:\WINDOWS\assembly
2009-12-19 20:04:55 ----D---- C:\WINDOWS\ie8updates
2009-12-17 18:59:27 ----D---- C:\Documents and Settings
2009-12-01 12:06:20 ----A---- C:\WINDOWS\system32\MRT.exe
2009-11-22 21:04:21 ----D---- C:\WINDOWS\WBEM
2009-11-22 21:00:40 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-11-22 20:44:59 ----D---- C:\Program Files\PokerStars.NET
2009-11-22 10:32:05 ----D---- C:\Program Files\Common Files\PC Tools
2009-10-29 00:45:38 ----A---- C:\WINDOWS\system32\wininet.dll
2009-10-29 00:45:37 ----N---- C:\WINDOWS\system32\occache.dll
2009-10-29 00:45:37 ----A---- C:\WINDOWS\system32\urlmon.dll
2009-10-29 00:45:37 ----A---- C:\WINDOWS\system32\mshtml.dll
2009-10-29 00:45:35 ----N---- C:\WINDOWS\system32\jsproxy.dll
2009-10-29 00:45:35 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2009-10-29 00:45:35 ----A---- C:\WINDOWS\system32\msfeeds.dll
2009-10-29 00:45:34 ----N---- C:\WINDOWS\system32\iepeers.dll
2009-10-29 00:45:34 ----A---- C:\WINDOWS\system32\iertutil.dll
2009-10-29 00:45:33 ----A---- C:\WINDOWS\system32\ieframe.dll
2009-10-29 00:45:32 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2009-10-28 22:38:22 ----A---- C:\WINDOWS\system32\shdocvw.dll
2009-10-28 08:07:15 ----A---- C:\WINDOWS\system32\tzchange.exe
2009-10-28 07:40:47 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2009-10-26 05:52:25 ----A---- C:\WINDOWS\smartkeydiagnostics.txt
2009-10-24 06:24:06 ----A---- C:\WINDOWS\ModemLog_Sierra Wireless HSPA Modem.txt
2009-10-20 22:38:36 ----A---- C:\WINDOWS\system32\strmfilt.dll
2009-10-20 22:38:36 ----A---- C:\WINDOWS\system32\httpapi.dll
2009-10-13 03:30:16 ----A---- C:\WINDOWS\system32\oakley.dll
2009-10-12 06:38:19 ----A---- C:\WINDOWS\system32\rastls.dll
2009-10-12 06:38:18 ----A---- C:\WINDOWS\system32\raschap.dll
2009-10-11 04:17:27 ----A---- C:\WINDOWS\system32\deploytk.dll
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 APPDRV;APPDRV; C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [2008-10-04 16128]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-01-02 333192]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2010-01-02 28424]
R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2010-01-02 360584]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 tcpipBM;Bytemobile Kernel Network Provider; C:\WINDOWS\system32\drivers\tcpipBM.sys [2008-11-20 18816]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 Wpsnuio;WPS NDIS Usermode I/O Protocol; C:\WINDOWS\system32\DRIVERS\wpsnuio.sys [2009-12-22 13696]
R3 AESTAud;AE Audio Service; C:\WINDOWS\system32\drivers\AESTAud.sys [2008-12-08 108160]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2008-12-08 170032]
R3 BCM43XX;Dell Wireless WLAN Card Driver; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2009-01-06 1391104]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2008-12-08 6047904]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
R3 PSI;PSI; C:\WINDOWS\system32\DRIVERS\psi_mf.sys [2009-06-17 12648]
R3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys [2007-01-18 26496]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2008-04-14 5888]
R3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RTS5121.sys [2008-12-08 157696]
R3 STHDA;IDT High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2008-12-08 1384595]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2008-12-08 289664]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2008-11-20 27072]
S3 PCTINDIS5;PCTINDIS5 NDIS Protocol Driver; \??\C:\WINDOWS\system32\PCTINDIS5.SYS []
S3 RT73;RT73 USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2008-01-15 459520]
S3 swmsflt;swmsflt; C:\WINDOWS\System32\drivers\swmsflt.sys [2008-08-22 26760]
S3 SWNC8U80;Sierra Wireless MUX NDIS Driver (UMTS80); C:\WINDOWS\system32\DRIVERS\swnc8u80.sys [2008-08-20 168192]
S3 SWUMX80;Sierra Wireless USB MUX Driver (UMTS80); C:\WINDOWS\system32\DRIVERS\swumx80.sys [2008-08-20 142976]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\drivers\USBSTOR.sys [2008-04-14 26368]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2008-04-14 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]
S4 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 atisvc_naybi;atisvc_naybi; C:\WINDOWS\system32\cqtgbd\atisvc_naybi.exe [2009-12-22 449262]
R2 avg9emc;AVG Free E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2010-01-02 906520]
R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-01-02 285392]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-05-07 354840]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-11 153376]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2008-12-04 226640]
R2 sprtsvc_DellSupportCenter;SupportSoft Sprocket Service (DellSupportCenter); C:\Program Files\Dell Support Center\bin\sprtsvc.exe [2008-10-04 201968]
R2 STacSV;Audio Service; c:\drivers\audio\r203425\STacSV.exe [2008-12-08 225362]
R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2009-01-06 24576]
R2 yksvc;Marvell Yukon Service; ykx32coinst,serviceStartProc []
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 267776]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 ATTRcAppSvc;AT&T RcAppSvc; C:\Program Files\AT&T\Communication Manager\RcAppSvc.exe [2008-11-20 113152]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.06 2010-01-07 14:31:59
======Uninstall list======
-->C:\Program Files\Skyhook Wireless\Wi-Fi Service\svcsetup.exe -u
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acrobat.com-->msiexec /qb /x {77DCDCE3-2DED-62F3-8154-05E745472D07}
Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Adobe AIR-->c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{A2BCA9F1-566C-4805-97D1-7FDC93386723}
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A92000000001}
AT&T Communication Manager-->MsiExec.exe /X{AF64F216-D859-43FC-9068-0005A41AEBA3}
AVG Free 9.0-->C:\Program Files\AVG\AVG9\setup.exe /UNINSTALL
Banctec Service Agreement-->MsiExec.exe /I{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Compatibility Pack for the 2007 Office system-->MsiExec.exe /X{90120000-0020-0409-0000-0000000FF1CE}
Dell Support Center (Support Software)-->MsiExec.exe /X{E3BFEE55-39E2-4BE0-B966-89FE583822C1}
Dell Touchpad-->C:\Program Files\DellTPad\Uninstap.exe ADDREMOVE
Dell Wireless WLAN Card Utility-->"C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card"
Documentation & Support Launcher-->MsiExec.exe /X{B0DF58A2-40DF-4465-AA56-38623EC9938C}
Driver Installer-->MsiExec.exe /X{F804CAE5-50B2-4646-803A-A428325237CA}
Games, Music, & Photos Launcher-->MsiExec.exe /X{B6884A07-0305-47AE-9969-8F26FADC17DE}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Intel(R) Graphics Media Accelerator Driver-->C:\WINDOWS\system32\igxpun.exe -uninstall
Intel® Matrix Storage Manager-->C:\WINDOWS\system32\imsmudlg.exe -uninstall
Internet Service Offers Launcher-->MsiExec.exe /X{E42BD75A-FC23-4E3F-9F91-2658334C644F}
Java(TM) 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Junk Mail filter update-->MsiExec.exe /I{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Office PowerPoint Viewer 2007 (English)-->MsiExec.exe /X{95120000-00AF-0409-0000-0000000FF1CE}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{299CF645-48C7-4FA1-8BCD-5CE200CF180D}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Works-->MsiExec.exe /I{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 6.0 Parser (KB927977)-->MsiExec.exe /I{5A710547-B58E-488B-828D-CA9A25A0533C}
NinjaTrader 6.5-->MsiExec.exe /I{4539D65F-319C-416F-A17F-827110F4CE22}
Panda ActiveScan 2.0-->C:\Program Files\Panda Security\ActiveScan 2.0\as2uninst.exe
PowerDVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -l0x9 -cluninstall
QuickSet-->C:\Program Files\InstallShield Installation Information\{C5074CC4-0E26-4716-A307-960272A90040}\setup.exe -runfromtemp -l0x0009 APPDRVNT4 -removeonly
Roxio Creator Audio-->MsiExec.exe /I{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}
Roxio Creator Copy-->MsiExec.exe /I{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}
Roxio Creator Data-->MsiExec.exe /I{08E81ABD-79F7-49C2-881F-FD6CB0975693}
Roxio Creator DE-->C:\Documents and Settings\All Users\Application Data\Uninstall\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}\setup.exe /x {09760D42-E223-42AD-8C3E-55B47D0DDAC3}
Roxio Creator DE-->MsiExec.exe /I{ED439A64-F018-4DD4-8BA5-328D85AB09AB}
Roxio Creator Tools-->MsiExec.exe /I{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}
Roxio Express Labeler 3-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Secunia PSI-->"C:\Program Files\Secunia\PSI\uninstall.exe"
Secure Viewer 2.7-->"C:\Program Files\omNovia\Secure Viewer\unins000.exe"
Security Update for Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Security Update for Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Security Update for Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Security Update for Windows XP (KB961371-v2)-->"C:\WINDOWS\$NtUninstallKB961371-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Security Update for Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Security Update for Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Security Update for Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Security Update for Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Security Update for Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Security Update for Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Security Update for Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Security Update for Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Security Update for Windows XP (KB976325)-->"C:\WINDOWS\$NtUninstallKB976325$\spuninst\spuninst.exe"
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update for Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Update for Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Update for Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Update for Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Update for Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Update for Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Live Call-->MsiExec.exe /I{020D8396-D6D9-4B53-A9A1-83C47E2E27AA}
Windows Live Communications Platform-->MsiExec.exe /I{F69E83CF-B440-43F8-89E6-6EA80712109B}
Windows Live Essentials-->C:\Program Files\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{D9D754A1-EAC5-406C-A28B-C49B1E846711}
Windows Live Mail-->MsiExec.exe /I{63C1109E-D977-49ED-BCE3-D00D0BF187D6}
Windows Live Messenger-->MsiExec.exe /X{0AAA9C97-74D4-47CE-B089-0B147EF3553C}
Windows Live Photo Gallery-->MsiExec.exe /X{F73A5B18-EB75-4B2C-B32D-9457576E2417}
Windows Live Sign-in Assistant-->MsiExec.exe /I{505DF7A3-88D5-4DD6-9AD5-C98C2ED0CEC4}
Windows Live Sync-->MsiExec.exe /X{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}
Windows Live Toolbar-->MsiExec.exe /X{2B4C7E1E-E446-4740-ADB5-9842E742EE8A}
Windows Live Upload Tool-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
Windows Live Writer-->MsiExec.exe /X{6A92E5C5-0578-443D-91F3-92ECE5F2CAE2}
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
WinPatrol 2009-->C:\PROGRA~1\BILLPS~1\WINPAT~1\Setup.exe /remove /q0
=====HijackThis Backups=====
O1 - Hosts: ÿþ127.0.0.1 localhost [2009-12-21]
O1 - Hosts: ::1 localhost [2009-12-21]
Hosts File Missing
======Security center information======
AV: AVG Anti-Virus Free
======System event log======
Computer Name: TOM3
Event Code: 7034
Message: The SupportSoft Sprocket Service (DellSupportCenter) service terminated unexpectedly. It has done this 1 time(s).
Record Number: 18944
Source Name: Service Control Manager
Time Written: 20091223114200.000000-420
Event Type: error
User:
Computer Name: TOM3
Event Code: 7000
Message: The Sierra Wireless MUX NDIS Driver (UMTS80) service failed to start due to the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Record Number: 18917
Source Name: Service Control Manager
Time Written: 20091223113559.000000-420
Event Type: error
User:
Computer Name: TOM3
Event Code: 7000
Message: The RT73 USB Wireless LAN Card Driver service failed to start due to the following error:
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Record Number: 18916
Source Name: Service Control Manager
Time Written: 20091223113559.000000-420
Event Type: error
User:
Computer Name: TOM3
Event Code: 2511
Message: The server service was unable to recreate the share Picture because the directory C:\Documents and Settings\Thomas Hugh Pean\My Documents\My Pictures\Picture no longer exists. Please run "net share Picture /delete" to delete the share, or recreate the directory C:\Documents and Settings\Thomas Hugh Pean\My Documents\My Pictures\Picture.
Record Number: 18915
Source Name: Server
Time Written: 20091223113558.000000-420
Event Type: warning
User:
Computer Name: TOM3
Event Code: 7034
Message: The SupportSoft Sprocket Service (DellSupportCenter) service terminated unexpectedly. It has done this 1 time(s).
Record Number: 18910
Source Name: Service Control Manager
Time Written: 20091223113511.000000-420
Event Type: error
User:
************************
=====Application event log=====
Computer Name: TOM3
Event Code: 1517
Message: Windows saved user TOM3\Thomas Hugh Pean registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.
This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.
Record Number: 5735
Source Name: Userenv
Time Written: 20091222045834.000000-420
Event Type: warning
User: NT AUTHORITY\SYSTEM
Computer Name: TOM3
Event Code: 1517
Message: Windows saved user TOM3\Thomas Hugh Pean registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.
This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.
Record Number: 5726
Source Name: Userenv
Time Written: 20091222044458.000000-420
Event Type: warning
User: NT AUTHORITY\SYSTEM
Computer Name: TOM3
Event Code: 1517
Message: Windows saved user TOM3\Thomas Hugh Pean registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.
This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.
Record Number: 5717
Source Name: Userenv
Time Written: 20091222043919.000000-420
Event Type: warning
User: NT AUTHORITY\SYSTEM
Computer Name: TOM3
Event Code: 1517
Message: Windows saved user TOM3\Thomas Hugh Pean registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.
This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.
Record Number: 5708
Source Name: Userenv
Time Written: 20091222013201.000000-420
Event Type: warning
User: NT AUTHORITY\SYSTEM
Computer Name: TOM3
Event Code: 1517
Message: Windows saved user TOM3\Thomas Hugh Pean registry while an application or service was still using the registry during log off. The memory used by the user's registry has not been freed. The registry will be unloaded when it is no longer in use.
This is often caused by services running as a user account, try configuring the services to run in either the LocalService or NetworkService account.
Record Number: 5699
Source Name: Userenv
Time Written: 20091221231053.000000-420
Event Type: warning
User: NT AUTHORITY\SYSTEM
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\WBEM;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\10.0\DLLShared\
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 23 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=170a
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"RoxioCentral"=C:\Program Files\Common Files\Roxio Shared\10.0\Roxio Central36\
-----------------EOF-----------------