Thank you. My computer has been running very slow, as in difficult slow, since I started your instructions. I had to exit out of my response and the actual page, prepare the response on my WP document and then try again. In the past 15 to 30 minutes only, other than trying to document my response, my computer has run more normally.
Please note that I have not been able to delete InterVideo WinDVD. Although it appears harmless, I always get suspicious about anything that gives me difficulty in removing it. Which leads me to ask you the question about the Malware program I installed. It offers the "file Assassin" to remove locked files. I did not know if InterVideo WindDVD was considered a lock file, but regardless, is it safe to run the File Assassin?
Okay, the logs you requested,
the Malware Anti-Malware found 1 trojan - log as follows:
Malwarebytes' Anti-Malware 1.40
Database version: 2765
Windows 5.1.2600 Service Pack 3
9/9/2009 1:18:44 PM
mbam-log-2009-09-09 (13-18-43).txt
Scan type: Quick Scan
Objects scanned: 90164
Time elapsed: 23 minute(s), 24 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\install.exe (Trojan.Agent) -> Quarantined and deleted successfully.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Folders Infected:
(No malicious items detected)
Files Infected:
C:\install.exe (Trojan.Agent) -> Quarantined and deleted successfully.
**The RSIT log is as follows:
Logfile of random's system information tool 1.06 (written by random/random)
Run by Owner at 2009-09-09 15:09:54
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 31 GB (58%) free of 53 GB
Total RAM: 254 MB (14% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:09:59 PM, on 9/9/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\ps2.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\LTMSG.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\NETGEAR\WN111\wn111.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\Motorola\MotoConnectService\MotoConnect.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Owner.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://us6.hpwis.com/R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://srch-us6.hpwis.com/R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://srch-us6.hpwis.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://srch-us6.hpwis.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\VERITAS Software\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - S-1-5-18 Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: NETGEAR WN111 Smart Wizard.lnk = C:\Program Files\NETGEAR\WN111\wn111.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} -
http://www.fileplanet.com/fpdlmgr/cabs/ ... .7.109.cabO16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) -
http://lads.myspace.com/upload/MySpaceUploader1006.cabO16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cabO16 - DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} (System Requirements Lab) -
http://www.srtest.com/srl_bin/sysreqlab_ind.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://update.microsoft.com/microsoftup ... 2349948046O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: MotoConnect Service - Unknown owner - C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe
--
End of file - 7278 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IType_exe.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\system32\dla\tfswshx.dll [2002-10-09 94262]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"=c:\windows\system\hpsysdrv.exe [1998-05-07 52736]
"CamMonitor"=c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe [2002-06-18 69632]
"StorageGuard"=C:\Program Files\VERITAS Software\Update Manager\sgtray.exe [2002-05-09 155648]
"Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [2001-12-19 212992]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2005-06-21 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2005-06-21 126976]
"PS2"=C:\WINDOWS\system32\ps2.exe [2002-06-14 81920]
"RealTray"=C:\Program Files\Real\RealPlayer\RealPlay.exe [2008-08-18 26112]
"AlcxMonitor"=C:\WINDOWS\ALCXMNTR.EXE [2004-09-07 57344]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"dla"=C:\WINDOWS\system32\dla\tfswctrl.exe [2002-10-09 106551]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-05-14 2029640]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]
"Kernel and Hardware Abstraction Layer"=C:\WINDOWS\KHALMNPR.EXE [2008-02-29 76304]
"LTMSG"=LTMSG.exe 7 []
"itype"=C:\Program Files\Microsoft IntelliType Pro\itype.exe [2009-03-26 1442888]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"BitTorrent DNA"=C:\Program Files\DNA\btdna.exe [2009-01-26 342848]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVP"=2
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe
NETGEAR WN111 Smart Wizard.lnk - C:\Program Files\NETGEAR\WN111\wn111.exe
C:\Documents and Settings\Owner\Start Menu\Programs\Startup
OpenOffice.org 3.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2005-06-21 348160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll [2008-05-02 72208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskmgr"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=255
"_NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\hp center\137903\Program\BackWeb-137903.exe"="C:\Program Files\hp center\137903\Program\BackWeb-137903.exe:*:Enabled:BackWeb-137903"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:Enabled:DNA"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\PCSecurityShield\The Shield Deluxe 2008\avp.exe"="C:\Program Files\PCSecurityShield\The Shield Deluxe 2008\avp.exe:*:Enabled:The Shield Deluxe 2008"
"C:\Program Files\Microsoft Games\Halo Trial\halo.exe"="C:\Program Files\Microsoft Games\Halo Trial\halo.exe:*:Disabled:Halo"
"C:\Q3Ademo\quake3.exe"="C:\Q3Ademo\quake3.exe:*:Disabled:quake3"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe"="C:\Program Files\SpeedBit Video Accelerator\VideoAccelerator.exe:*:Enabled:VideoAccelerator"
"C:\Program Files\Sony\Media Manager for PSP\MediaManager.exe"="C:\Program Files\Sony\Media Manager for PSP\MediaManager.exe:*:Enabled:Media Manager for PSP 3.0"
"C:\Documents and Settings\Owner\My Documents\GBA EMU\VisualBoyAdvance.exe"="C:\Documents and Settings\Owner\My Documents\GBA EMU\VisualBoyAdvance.exe:*:Enabled:VisualBoyAdvance emulator"
"C:\Documents and Settings\Owner\My Documents\My Podcasts\PiMPStreamer-0.65-fw15\Windoze\PimpStreamer.exe"="C:\Documents and Settings\Owner\My Documents\My Podcasts\PiMPStreamer-0.65-fw15\Windoze\PimpStreamer.exe:*:Enabled:PimpStreamer, Streams video from PC to PSP Realtime!"
"C:\Program Files\Microsoft Office\Live Meeting 8\Console\PWConsole.exe"="C:\Program Files\Microsoft Office\Live Meeting 8\Console\PWConsole.exe:*:Enabled:Microsoft Office Live Meeting"
"C:\Program Files\SPSSInc\PASWStatistics17\statistics.com"="C:\Program Files\SPSSInc\PASWStatistics17\statistics.com:*:Disabled:Statistics17:deprecated com"
"C:\Program Files\SPSSInc\PASWStatistics17\SPSSWinWrapIDE.exe"="C:\Program Files\SPSSInc\PASWStatistics17\SPSSWinWrapIDE.exe:*:Disabled:SPSS Basic Script Editor"
"C:\Program Files\SPSSInc\PASWStatistics17\paswstat.exe"="C:\Program Files\SPSSInc\PASWStatistics17\paswstat.exe:*:Disabled:Statistics17:exe"
"C:\Program Files\SPSSInc\PASWStatistics17\statistics.exe"="C:\Program Files\SPSSInc\PASWStatistics17\statistics.exe:*:Disabled:Statistics17:deprecated exe"
"C:\Program Files\SPSSInc\PASWStatistics17\paswstat.com"="C:\Program Files\SPSSInc\PASWStatistics17\paswstat.com:*:Disabled:Statistics17:com"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 1 months======
2009-09-09 12:36:21 ----D---- C:\Documents and Settings\Owner\Application Data\Malwarebytes
2009-09-09 12:35:54 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-09-09 12:35:52 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-09 12:20:59 ----A---- C:\WINDOWS\system32\javaws.exe
2009-09-09 12:20:59 ----A---- C:\WINDOWS\system32\javaw.exe
2009-09-09 12:20:56 ----A---- C:\WINDOWS\system32\java.exe
2009-09-08 23:31:20 ----DC---- C:\rsit
2009-09-08 23:23:05 ----DC---- C:\Rooter$
2009-09-08 20:24:14 ----HDC---- C:\WINDOWS\$NtUninstallKB968816_WM9$
2009-09-08 20:18:28 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2009-09-08 17:00:50 ----A---- C:\WINDOWS\Language_trs.ini
2009-09-08 16:59:43 ----A---- C:\WINDOWS\system32\CSVer.dll
2009-09-08 16:58:52 ----DC---- C:\Intel
2009-09-08 12:59:44 ----A---- C:\WINDOWS\system32\BtCoreIf.dll
2009-09-08 12:57:49 ----D---- C:\Program Files\Common Files\Logishrd
2009-09-08 12:16:42 ----DC---- C:\Update Drivers
2009-09-08 11:36:43 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-09-08 11:36:41 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-09-08 11:29:59 ----A---- C:\WINDOWS\ModemLog_Agere Win Modem.txt
2009-09-07 22:56:00 ----D---- C:\Program Files\Motorola
2009-09-07 22:55:59 ----D---- C:\Program Files\Common Files\Motorola Shared
2009-09-07 22:47:44 ----D---- C:\Program Files\Microsoft IntelliType Pro
2009-09-07 22:44:47 ----D---- C:\Program Files\Intel
2009-09-07 22:41:06 ----N---- C:\WINDOWS\ltremove.exe
2009-09-07 22:40:44 ----N---- C:\WINDOWS\ltmsg.exe
2009-09-07 22:39:51 ----D---- C:\WINDOWS\Options
2009-09-07 21:55:18 ----A---- C:\WINDOWS\system32\igfxres.dll
2009-09-07 21:17:00 ----D---- C:\Documents and Settings\All Users\Application Data\LogiShrd
2009-09-07 21:16:28 ----D---- C:\Documents and Settings\Owner\Application Data\Logitech
2009-09-07 21:07:53 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
2009-09-07 21:03:55 ----A---- C:\WINDOWS\KHALMNPR.Exe
2009-09-07 21:03:50 ----A---- C:\WINDOWS\system32\WdfCoInstaller01005.dll
2009-09-07 21:03:41 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-09-07 21:02:15 ----A---- C:\WINDOWS\system32\KemXML.dll
2009-09-07 21:02:15 ----A---- C:\WINDOWS\system32\KemWnd.dll
2009-09-07 21:02:15 ----A---- C:\WINDOWS\system32\KemUtil.dll
2009-09-07 21:02:15 ----A---- C:\WINDOWS\system32\kemutb.dll
2009-09-07 21:01:52 ----D---- C:\Documents and Settings\All Users\Application Data\Logitech
2009-09-07 21:01:43 ----D---- C:\Program Files\Logitech
2009-09-07 21:01:35 ----D---- C:\Program Files\Common Files\Logitech
2009-09-07 21:01:06 ----D---- C:\Documents and Settings\Owner\Application Data\InstallShield
2009-09-07 20:46:29 ----A---- C:\WINDOWS\system32\ChCfg.exe
2009-09-07 20:43:36 ----D---- C:\Program Files\Realtek AC97
2009-09-07 20:43:33 ----A---- C:\WINDOWS\system32\RTLCPL.exe
2009-09-07 20:43:30 ----A---- C:\WINDOWS\soundman.exe
2009-09-07 20:43:28 ----A---- C:\WINDOWS\system32\RtlCPAPI.dll
2009-09-07 20:43:21 ----A---- C:\WINDOWS\alcupd.exe
2009-09-07 20:43:21 ----A---- C:\WINDOWS\Alcrmv.exe
2009-09-07 18:35:20 ----D---- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
2009-09-07 18:34:55 ----D---- C:\Program Files\PC Drivers HeadQuarters
2009-09-06 16:57:10 ----D---- C:\Program Files\Windows Installer Clean Up
2009-09-06 16:36:00 ----DC---- C:\Install Quicken New User Edition 2002
2009-09-06 16:35:59 ----DC---- C:\setupdlx
2009-09-06 16:35:56 ----D---- C:\Program Files\PC-Doctor for Windows XP
2009-09-06 16:35:56 ----D---- C:\Program Files\IObit
2009-09-06 16:35:56 ----D---- C:\Program Files\InterVideo
2009-09-06 16:26:25 ----D---- C:\Documents and Settings\All Users\Application Data\BitDefender
2009-09-06 16:26:05 ----D---- C:\Program Files\Common Files\BitDefender
2009-09-06 15:04:51 ----D---- C:\Program Files\Perfect Uninstaller
2009-09-06 13:26:25 ----D---- C:\Program Files\ESET
2009-09-06 13:26:25 ----D---- C:\Documents and Settings\All Users\Application Data\ESET
2009-09-05 20:10:09 ----D---- C:\Program Files\Defraggler
2009-09-05 17:29:36 ----D---- C:\Program Files\CCleaner
2009-09-04 19:21:12 ----A---- C:\WINDOWS\system32\tfswapi.dll
2009-09-04 19:21:10 ----A---- C:\WINDOWS\dla.exe
2009-09-04 19:18:17 ----D---- C:\Program Files\DLA
2009-09-04 17:37:29 ----D---- C:\Documents and Settings\All Users\Application Data\IObit
2009-09-04 08:12:23 ----D---- C:\Program Files\Trend Micro
2009-09-03 22:38:29 ----DC---- C:\Config.Msi
2009-09-03 14:55:30 ----DC---- C:\WINDOWS\$NtUninstallbasecsp$
2009-09-03 14:52:40 ----D---- C:\WINDOWS\system32\GroupPolicy
2009-09-03 14:52:40 ----D---- C:\Program Files\Windows Desktop Search
2009-09-03 14:51:50 ----DC---- C:\WINDOWS\$NtUninstallKB940157$
2009-09-03 14:50:55 ----DC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2009-09-03 14:33:38 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2009-09-02 13:18:14 ----D---- C:\WINDOWS\pss
2009-09-02 13:14:06 ----D---- C:\Documents and Settings\All Users\Application Data\Bomgar-SCC-4A9EA7DE
2009-08-28 23:02:41 ----A---- C:\WINDOWS\system32\clauth2.dll
2009-08-28 23:02:41 ----A---- C:\WINDOWS\system32\clauth1.dll
2009-08-28 23:02:40 ----A---- C:\WINDOWS\system32\ssprs.dll
2009-08-28 23:02:40 ----A---- C:\WINDOWS\system32\nsprs.dll
2009-08-28 22:58:31 ----D---- C:\Program Files\Common Files\Data Dynamics
2009-08-28 22:18:56 ----A---- C:\WINDOWS\system32\grcauth2.dll
2009-08-28 22:18:56 ----A---- C:\WINDOWS\system32\grcauth1.dll
2009-08-28 22:18:55 ----A---- C:\WINDOWS\system32\prsgrc.dll
2009-08-28 22:10:31 ----D---- C:\Documents and Settings\All Users\Application Data\SafeNet Sentinel
2009-08-28 22:05:36 ----D---- C:\Documents and Settings\All Users\Application Data\SPSS
2009-08-28 22:05:32 ----D---- C:\Program Files\Common Files\SPSS
2009-08-28 21:55:39 ----D---- C:\Program Files\SPSSInc
2009-08-28 21:54:26 ----A---- C:\WINDOWS\system32\sysprs7.dll
2009-08-28 21:54:26 ----A---- C:\WINDOWS\system32\lsprst7.dll
2009-08-26 14:41:31 ----HDC---- C:\WINDOWS\$NtUninstallKB970653-v3$
2009-08-13 21:21:24 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-08-13 21:13:14 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2009-08-13 21:12:58 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2009-08-13 21:12:40 ----HDC---- C:\WINDOWS\$NtUninstallKB971557$
2009-08-13 21:12:20 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2009-08-13 21:11:59 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2009-08-13 21:11:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2009-08-13 21:11:13 ----HDC---- C:\WINDOWS\$NtUninstallKB973354$
2009-08-13 21:09:33 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2009-08-13 21:02:03 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2009-08-13 19:40:17 ----D---- C:\Documents and Settings\Owner\Application Data\OpenOffice.org
======List of files/folders modified in the last 1 months======
2009-09-09 15:04:01 ----D---- C:\Documents and Settings\Owner\Application Data\DNA
2009-09-09 14:53:06 ----D---- C:\WINDOWS\Temp
2009-09-09 14:50:51 ----D---- C:\WINDOWS\Prefetch
2009-09-09 13:26:52 ----D---- C:\WINDOWS
2009-09-09 13:23:46 ----D---- C:\Program Files\DNA
2009-09-09 13:22:54 ----D---- C:\WINDOWS\system32\drivers
2009-09-09 13:22:54 ----D---- C:\WINDOWS\system32
2009-09-09 13:22:23 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-09 12:35:52 ----RD---- C:\Program Files
2009-09-09 12:31:42 ----D---- C:\WINDOWS\Debug
2009-09-09 12:21:58 ----SHD---- C:\WINDOWS\Installer
2009-09-09 12:21:47 ----D---- C:\Program Files\Java
2009-09-08 23:14:32 ----RSD---- C:\WINDOWS\assembly
2009-09-08 23:10:07 ----HD---- C:\Program Files\InstallShield Installation Information
2009-09-08 20:33:35 ----D---- C:\Program Files\Microsoft Silverlight
2009-09-08 20:24:24 ----D---- C:\WINDOWS\inf
2009-09-08 20:24:23 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-09-08 20:23:43 ----D---- C:\WINDOWS\ie8updates
2009-09-08 20:23:26 ----HD---- C:\WINDOWS\$hf_mig$
2009-09-08 20:19:45 ----D---- C:\WINDOWS\system32\CatRoot
2009-09-08 17:54:10 ----D---- C:\WINDOWS\Minidump
2009-09-08 17:24:42 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-08 17:00:17 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-09-08 12:57:49 ----D---- C:\Program Files\Common Files
2009-09-08 12:47:23 ----D---- C:\Temp
2009-09-07 22:57:20 ----D---- C:\WINDOWS\WinSxS
2009-09-07 22:52:46 ----SD---- C:\WINDOWS\Tasks
2009-09-07 22:48:03 ----D---- C:\WINDOWS\Fonts
2009-09-07 22:41:07 ----D---- C:\WINDOWS\Driver Cache
2009-09-07 22:37:40 ----D---- C:\Program Files\WinRAR
2009-09-07 21:56:11 ----A---- C:\WINDOWS\ModemLog_Lucent Win Modem.txt
2009-09-07 19:43:03 ----SD---- C:\Documents and Settings\Owner\Application Data\Microsoft
2009-09-07 14:59:27 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-09-06 16:56:52 ----D---- C:\Program Files\MSECache
2009-09-06 16:37:21 ----D---- C:\WINDOWS\system32\config
2009-09-06 16:36:49 ----D---- C:\WINDOWS\system32\wbem
2009-09-06 16:36:48 ----D---- C:\WINDOWS\Registration
2009-09-06 16:36:04 ----D---- C:\Program Files\QuickenFC
2009-09-04 19:21:51 ----A---- C:\WINDOWS\wininit.ini
2009-09-04 19:21:16 ----D---- C:\WINDOWS\system32\dla
2009-09-03 22:38:45 ----D---- C:\Program Files\Internet Explorer
2009-09-03 22:10:48 ----D---- C:\Program Files\Mozilla Firefox
2009-09-03 15:02:11 ----D---- C:\WINDOWS\security
2009-09-03 14:54:21 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-09-03 14:52:45 ----D---- C:\WINDOWS\system32\en-us
2009-09-02 23:23:43 ----D---- C:\WINDOWS\system32\FxsTmp
2009-09-02 14:29:17 ----D---- C:\WINDOWS\network diagnostic
2009-09-02 14:19:02 ----D---- C:\Documents and Settings\All Users\Application Data\PCSecurityShield
2009-09-02 14:02:44 ----A---- C:\WINDOWS\win.ini
2009-09-02 13:19:46 ----RASHC---- C:\BOOT.INI
2009-09-02 13:19:46 ----A---- C:\WINDOWS\system.ini
2009-08-28 17:38:20 ----A---- C:\WINDOWS\system32\MRT.exe
2009-08-13 21:11:21 ----D---- C:\Program Files\Outlook Express
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2004-10-07 35840]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-05-14 107256]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-05-14 94360]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\System32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2002-10-10 5621]
R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2002-10-10 23027]
R2 ASCTRM;ASCTRM; C:\WINDOWS\system32\drivers\ASCTRM.sys [2008-08-18 8552]
R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2002-10-07 40400]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-05-14 114472]
R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2002-10-09 23671]
R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2002-10-09 34807]
R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2002-10-09 4119]
R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2002-10-09 2203]
R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2002-10-09 55222]
R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2002-10-09 14039]
R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2002-10-09 6327]
R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2002-10-09 91158]
R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2002-10-09 95479]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
R3 AN983;ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter; C:\WINDOWS\System32\DRIVERS\AN983.sys [2002-08-29 36224]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2005-06-21 807998]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2008-02-29 35344]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2008-02-29 36880]
R3 ltmodem5;Agere Modem Driver; C:\WINDOWS\System32\DRIVERS\ltmdmnt.sys [2005-05-05 652689]
R3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2008-02-29 28944]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 MxlW2k;MxlW2k; C:\WINDOWS\system32\drivers\MxlW2k.sys [2002-07-24 28164]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2002-03-09 13780]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S1 {6080A529-897E-4629-A488-ABA0C29B635E};Intel(R) Graphics Platform (SoftBIOS) Driver; C:\WINDOWS\system32\drivers\ialmsbw.sys [2002-05-22 90336]
S1 AmdK7;AMD K7 Processor Driver; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2008-04-13 37760]
S1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
S1 P3;Intel PentiumIII Processor Driver; C:\WINDOWS\System32\DRIVERS\p3.sys [2008-04-13 42752]
S3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91};Intel(R) Graphics Chipset (KCH) Driver; C:\WINDOWS\system32\drivers\ialmkchw.sys [2002-05-22 69504]
S3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2001-08-17 117760]
S3 i81x;i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [2001-08-08 158140]
S3 iAimFP0;iAimFP0; C:\WINDOWS\System32\DRIVERS\wADV01nt.sys [2001-08-08 12479]
S3 iAimFP1;iAimFP1; C:\WINDOWS\System32\DRIVERS\wADV02NT.sys [2001-08-08 12031]
S3 iAimFP2;iAimFP2; C:\WINDOWS\System32\DRIVERS\wADV05NT.sys [2001-08-08 11679]
S3 iAimFP3;iAimFP3; C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys [2001-08-08 11999]
S3 iAimFP4;iAimFP4; C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys [2001-08-08 19359]
S3 iAimTV0;iAimTV0; C:\WINDOWS\System32\DRIVERS\wATV01nt.sys [2001-08-08 29215]
S3 iAimTV1;iAimTV1; C:\WINDOWS\System32\DRIVERS\wATV02NT.sys [2001-08-08 19199]
S3 iAimTV3;iAimTV3; C:\WINDOWS\System32\DRIVERS\wATV04nt.sys [2001-08-08 33503]
S3 iAimTV4;iAimTV4; C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys [2001-08-08 23519]
S3 MRVW245;Marvell TOPDOG 802.11n WLAN Driver for Windows XP (USB8x); C:\WINDOWS\System32\DRIVERS\MRVW245.sys [2007-11-18 461952]
S3 Ps2;PS2; C:\WINDOWS\System32\DRIVERS\PS2.sys [2001-06-04 14112]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 S3Psddr;S3Psddr; C:\WINDOWS\System32\DRIVERS\s3gnbm.sys [2002-07-13 155008]
S3 SiS315;SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [2002-04-09 188032]
S3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 wanatw;WAN Miniport (ATW); C:\WINDOWS\System32\DRIVERS\wanatw4.sys []
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-05-14 731840]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-13 267776]
S2 MotoConnect Service;MotoConnect Service; C:\Program Files\Motorola\MotoConnectService\MotoConnectService.exe [2009-07-18 91392]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-05-14 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe [2008-05-02 121360]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Thank you for your assistance.