Logfile of random's system information tool 1.09 (written by random/random)
Run by Ian at 2011-08-29 14:49:50
Microsoft Windows 7 Home Premium  
System drive C: has 92 GB (71%) free of 129 GB
Total RAM: 5815 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 2:49:54 PM, on 29/08/2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16839)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
C:\Program Files (x86)\Bell\Internet Service Advisor\BISA.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Bell\Internet Service Advisor\BISAComHandler.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10v_ActiveX.exe
C:\Users\Ian\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\01X9MGKB\RSIT[1].exe
C:\Program Files (x86)\trend micro\Ian.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ca.yahoo.com/?fr=fp-yie9
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=1009&m=aspire_5745&r=27360811c806l0463z155t45n1k502
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/aresdestiny/{E67E5A98-17F1-4D98-A38E-2784E8AF052B}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [SuiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [BISA.exe] "C:\Program Files (x86)\Bell\Internet Service Advisor\BISA.exe" /AUTORUN
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McciCMService - Alcatel-Lucent - C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
O23 - Service: McciCMService64 - Alcatel-Lucent - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: MyWinLocker Service (MWLService) - Egis Technology Inc. - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServicepointService - Radialpoint Inc. - C:\Program Files (x86)\Bell\Internet Service Advisor\ServicepointService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 11802 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Ian\AppData\Roaming\Mozilla\Firefox\Profiles\zdpjcctw.default

prefs.js - "browser.startup.homepage" -  "http://www.yahoo.com/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Motive.com/NpMotive,version=1.0]
"Description"=Motive Plugin
"Path"=C:\Program Files (x86)\Common Files\Motive\npMotive.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@radialpoint.com/SPA,version=1]
"Description"=Radialpoint SPA
"Path"=C:\Program Files (x86)\Bell\Internet Service Advisor\nprpspa.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
amazondotcom.xml
bing.xml
eBay.xml
google.xml
wikipedia.xml
yahoo.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2011-03-15 1392952]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}]
Partner BHO Class - C:\ProgramData\Partner\Partner.dll [2010-04-25 433648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-19 305328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll [2011-08-12 1007160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-08-12 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll [2011-03-15 163128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2011-03-15 1392952]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-08-19 305328]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2009-12-23 284696]
"SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2010-04-17 337264]
"EgisUpdate"=C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [2010-03-11 201584]
"EgisTecPMMUpdate"=C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [2010-03-11 407920]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"BackupManagerTray"=C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [2010-03-08 260608]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-03-03 1300560]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]
"BISA.exe"=C:\Program Files (x86)\Bell\Internet Service Advisor\BISA.exe [2011-01-06 4318520]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-07-04 3493720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-04-25 39408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ServicepointService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ServicepointService]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.siren"=sirenacm.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2011-08-29 14:49:50 ----D---- C:\rsit
2011-08-29 14:49:50 ----D---- C:\Program Files (x86)\trend micro
2011-08-29 14:21:25 ----D---- C:\Program Files (x86)\ESET
2011-08-29 14:11:40 ----D---- C:\Users\Ian\AppData\Roaming\Malwarebytes
2011-08-29 14:11:36 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2011-08-29 14:11:35 ----D---- C:\ProgramData\Malwarebytes
2011-08-29 14:11:32 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-08-24 16:14:28 ----A---- C:\Windows\SysWOW64\tzres.dll
2011-08-20 09:40:14 ----A---- C:\Windows\avastSS.scr
2011-08-20 09:40:13 ----A---- C:\Windows\SysWOW64\aswBoot.exe
2011-08-20 09:40:11 ----D---- C:\ProgramData\Alwil Software
2011-08-19 08:16:41 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-08-17 19:51:38 ----D---- C:\Program Files (x86)\Cheat Engine 6.1
2011-08-14 09:20:36 ----D---- C:\Users\Ian\AppData\Roaming\Template
2011-08-14 09:20:10 ----A---- C:\Users\Ian\AppData\Roaming\wklnhst.dat
2011-08-13 14:54:19 ----D---- C:\Windows\SysWOW64\Wat
2011-08-13 13:43:15 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-08-13 13:41:01 ----A---- C:\Windows\SysWOW64\PresentationHostProxy.dll
2011-08-13 13:41:01 ----A---- C:\Windows\SysWOW64\PresentationHost.exe
2011-08-13 13:41:01 ----A---- C:\Windows\SysWOW64\netfxperf.dll
2011-08-13 13:41:01 ----A---- C:\Windows\SysWOW64\mscoree.dll
2011-08-13 13:41:01 ----A---- C:\Windows\SysWOW64\dfshim.dll
2011-08-13 12:22:52 ----D---- C:\Program Files (x86)\Ares
2011-08-13 09:35:30 ----D---- C:\Users\Ian\AppData\Roaming\Mozilla
2011-08-13 09:31:55 ----D---- C:\Program Files (x86)\BellCanada
2011-08-13 09:31:38 ----A---- C:\Windows\SysWOW64\vbscript.dll
2011-08-13 09:31:38 ----A---- C:\Windows\SysWOW64\jscript.dll
2011-08-13 09:31:29 ----A---- C:\Windows\SysWOW64\mshtml.dll
2011-08-13 09:31:26 ----A---- C:\Windows\SysWOW64\iertutil.dll
2011-08-13 09:31:26 ----A---- C:\Windows\SysWOW64\ieframe.dll
2011-08-13 09:31:24 ----A---- C:\Windows\SysWOW64\urlmon.dll
2011-08-13 09:31:24 ----A---- C:\Windows\SysWOW64\mstime.dll
2011-08-13 09:31:24 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\wininet.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\url.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\ieui.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\iepeers.dll
2011-08-13 09:31:23 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2011-08-13 09:05:53 ----D---- C:\ProgramData\Motive
2011-08-13 09:05:24 ----D---- C:\Program Files (x86)\Common Files\Motive
2011-08-13 08:59:23 ----D---- C:\Users\Ian\AppData\Roaming\Bell
2011-08-13 08:59:19 ----D---- C:\ProgramData\Radialpoint
2011-08-13 08:59:17 ----D---- C:\ProgramData\Bell
2011-08-13 08:59:17 ----D---- C:\Program Files (x86)\Bell
2011-08-13 07:49:29 ----A---- C:\Windows\SysWOW64\kerberos.dll
2011-08-13 07:49:28 ----A---- C:\Windows\SysWOW64\odbctrac.dll
2011-08-13 07:49:28 ----A---- C:\Windows\SysWOW64\odbcjt32.dll
2011-08-13 07:49:28 ----A---- C:\Windows\SysWOW64\odbccu32.dll
2011-08-13 07:49:28 ----A---- C:\Windows\SysWOW64\odbccr32.dll
2011-08-13 07:49:28 ----A---- C:\Windows\SysWOW64\odbccp32.dll
2011-08-13 07:49:27 ----A---- C:\Windows\SysWOW64\asycfilt.dll
2011-08-13 07:49:20 ----A---- C:\Windows\SysWOW64\poqexec.exe
2011-08-13 07:49:19 ----A---- C:\Windows\SysWOW64\CPFilters.dll
2011-08-13 07:49:18 ----A---- C:\Windows\SysWOW64\sbe.dll
2011-08-13 07:49:18 ----A---- C:\Windows\SysWOW64\EncDec.dll
2011-08-13 07:49:17 ----A---- C:\Windows\SysWOW64\t2embed.dll
2011-08-13 07:49:17 ----A---- C:\Windows\SysWOW64\StructuredQuery.dll
2011-08-13 07:49:16 ----A---- C:\Windows\SysWOW64\taskschd.dll
2011-08-13 07:49:16 ----A---- C:\Windows\SysWOW64\taskeng.exe
2011-08-13 07:49:16 ----A---- C:\Windows\SysWOW64\taskcomp.dll
2011-08-13 07:49:16 ----A---- C:\Windows\SysWOW64\schtasks.exe
2011-08-13 07:49:13 ----A---- C:\Windows\SysWOW64\ole32.dll
2011-08-13 07:49:09 ----A---- C:\Windows\SysWOW64\shell32.dll
2011-08-13 07:49:05 ----A---- C:\Windows\SysWOW64\schannel.dll
2011-08-13 07:49:05 ----A---- C:\Windows\SysWOW64\comctl32.dll
2011-08-13 07:49:03 ----A---- C:\Windows\SysWOW64\rtutils.dll
2011-08-13 07:49:03 ----A---- C:\Windows\SysWOW64\mfc42u.dll
2011-08-13 07:49:03 ----A---- C:\Windows\SysWOW64\mfc42.dll
2011-08-13 07:48:59 ----A---- C:\Windows\SysWOW64\atmlib.dll
2011-08-13 07:48:59 ----A---- C:\Windows\SysWOW64\atmfd.dll
2011-08-13 07:48:58 ----A---- C:\Windows\SysWOW64\webio.dll
2011-08-13 07:48:57 ----A---- C:\Windows\SysWOW64\iccvid.dll
2011-08-13 07:48:46 ----A---- C:\Windows\SysWOW64\dnscacheugc.exe
2011-08-13 07:48:46 ----A---- C:\Windows\SysWOW64\dnsapi.dll
2011-08-13 07:48:41 ----A---- C:\Windows\SysWOW64\wmpmde.dll
2011-08-13 07:48:39 ----A---- C:\Windows\SysWOW64\ntdll.dll
2011-08-13 07:48:37 ----A---- C:\Windows\SysWOW64\msxml3.dll
2011-08-13 07:48:34 ----A---- C:\Windows\SysWOW64\sspicli.dll
2011-08-13 07:48:34 ----A---- C:\Windows\SysWOW64\secur32.dll
2011-08-13 07:48:31 ----A---- C:\Windows\SysWOW64\oleaut32.dll
2011-08-13 07:48:31 ----A---- C:\Windows\SysWOW64\mfc40u.dll
2011-08-13 07:48:31 ----A---- C:\Windows\SysWOW64\mfc40.dll
2011-08-13 07:48:29 ----A---- C:\Windows\SysWOW64\KernelBase.dll
2011-08-13 07:48:29 ----A---- C:\Windows\SysWOW64\kernel32.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2011-08-13 07:48:28 ----AH---- C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2011-08-13 07:48:28 ----A---- C:\Windows\SysWOW64\wow32.dll
2011-08-13 07:48:28 ----A---- C:\Windows\SysWOW64\user.exe
2011-08-13 07:48:28 ----A---- C:\Windows\SysWOW64\setup16.exe
2011-08-13 07:48:28 ----A---- C:\Windows\SysWOW64\ntvdm64.dll
2011-08-13 07:48:28 ----A---- C:\Windows\SysWOW64\instnm.exe
2011-08-13 07:48:25 ----A---- C:\Windows\SysWOW64\mstscax.dll
2011-08-13 07:48:25 ----A---- C:\Windows\SysWOW64\mstsc.exe
2011-08-13 07:48:24 ----A---- C:\Windows\SysWOW64\drvinst.exe
2011-08-13 07:48:24 ----A---- C:\Windows\SysWOW64\devrtl.dll
2011-08-13 07:48:24 ----A---- C:\Windows\SysWOW64\devobj.dll
2011-08-13 07:48:24 ----A---- C:\Windows\SysWOW64\cfgmgr32.dll
2011-08-13 07:48:21 ----A---- C:\Windows\SysWOW64\wmp.dll
2011-08-13 07:48:20 ----A---- C:\Windows\SysWOW64\wmploc.DLL
2011-08-13 07:48:17 ----A---- C:\Windows\SysWOW64\inetcomm.dll
2011-08-13 07:48:16 ----A---- C:\Windows\SysWOW64\odbc32.dll
2011-08-13 07:48:15 ----A---- C:\Windows\SysWOW64\sscore.dll
2011-08-13 07:45:51 ----A---- C:\Windows\SysWOW64\ntoskrnl.exe
2011-08-13 07:45:51 ----A---- C:\Windows\SysWOW64\ntkrnlpa.exe
2011-08-13 00:32:24 ----D---- C:\Windows\NAPP_Dism_Log
2011-08-12 21:53:52 ----D---- C:\ProgramData\Sun
2011-08-12 21:53:52 ----D---- C:\Program Files (x86)\Common Files\Java
2011-08-12 21:53:40 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-08-12 21:53:40 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-08-12 21:53:40 ----A---- C:\Windows\SysWOW64\java.exe
2011-08-12 21:53:40 ----A---- C:\Windows\SysWOW64\deployJava1.dll
2011-08-12 21:53:33 ----D---- C:\Program Files (x86)\Java
2011-08-12 21:43:30 ----D---- C:\ProgramData\Yahoo!
2011-08-12 21:43:28 ----D---- C:\Users\Ian\AppData\Roaming\Yahoo!
2011-08-12 21:43:28 ----D---- C:\ProgramData\Yahoo! Companion
2011-08-12 21:43:27 ----D---- C:\Program Files (x86)\Yahoo!
2011-08-12 21:43:22 ----D---- C:\Program Files (x86)\BitTorrent
2011-08-12 21:42:41 ----D---- C:\Users\Ian\AppData\Roaming\BitTorrent
2011-08-12 21:40:18 ----HD---- C:\Windows\msdownld.tmp
2011-08-12 21:32:41 ----D---- C:\Program Files (x86)\Internet Explorer Platform Preview
2011-08-12 21:32:14 ----A---- C:\Windows\SysWOW64\mfreadwrite.dll
2011-08-12 21:32:14 ----A---- C:\Windows\SysWOW64\d3d10_1core.dll
2011-08-12 21:32:14 ----A---- C:\Windows\SysWOW64\d3d10_1.dll
2011-08-12 21:32:14 ----A---- C:\Windows\SysWOW64\d2d1.dll
2011-08-12 21:32:13 ----A---- C:\Windows\SysWOW64\WMVDECOD.DLL
2011-08-12 21:32:13 ----A---- C:\Windows\SysWOW64\ExplorerFrame.dll
2011-08-12 21:32:13 ----A---- C:\Windows\SysWOW64\d3d10warp.dll
2011-08-12 21:32:12 ----A---- C:\Windows\SysWOW64\XpsRasterService.dll
2011-08-12 21:32:12 ----A---- C:\Windows\SysWOW64\XpsPrint.dll
2011-08-12 21:32:12 ----A---- C:\Windows\SysWOW64\XpsGdiConverter.dll
2011-08-12 21:32:12 ----A---- C:\Windows\SysWOW64\mf.dll
2011-08-12 21:32:12 ----A---- C:\Windows\SysWOW64\DWrite.dll
2011-08-12 21:28:47 ----D---- C:\Users\Ian\AppData\Roaming\Adobe
2011-08-12 21:28:45 ----D---- C:\Users\Ian\AppData\Roaming\Google
2011-08-12 21:09:37 ----D---- C:\Users\Ian\AppData\Roaming\Macromedia
2011-08-12 21:07:42 ----N---- C:\Windows\SysWOW64\msxml4r.dll
2011-08-12 21:07:42 ----N---- C:\Windows\SysWOW64\msxml4a.dll
2011-08-12 21:05:10 ----D---- C:\Program Files (x86)\Haali
2011-08-12 21:04:52 ----D---- C:\ProgramData\CyberLink
2011-08-12 21:04:51 ----D---- C:\ProgramData\Temp
2011-08-12 21:01:59 ----N---- C:\Windows\SysWOW64\d3dx9_32.dll
2011-08-12 21:01:47 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2011-08-12 21:01:03 ----D---- C:\Program Files (x86)\Microsoft
2011-08-12 21:00:42 ----D---- C:\Program Files (x86)\Windows Live SkyDrive
2011-08-12 21:00:25 ----D---- C:\Program Files (x86)\Windows Live
2011-08-12 20:59:12 ----D---- C:\Program Files (x86)\Common Files\Windows Live
2011-08-12 20:57:19 ----A---- C:\Windows\devices.txt
2011-08-12 20:56:32 ----A---- C:\Windows\SysWOW64\log.txt
2011-08-12 20:56:14 ----D---- C:\Program Files (x86)\Common Files\postureAgent
2011-08-12 20:55:55 ----A---- C:\Windows\USB_VIDEO_REG.exe
2011-08-12 20:55:55 ----A---- C:\Windows\PLFSetI.exe
2011-08-12 20:55:55 ----A---- C:\Windows\PidList.ini
2011-08-12 20:55:55 ----A---- C:\Windows\Image.dll
2011-08-12 20:55:55 ----A---- C:\Windows\AutoSetFrequency.ini
2011-08-12 20:55:55 ----A---- C:\Windows\AutosetFrequency.exe
2011-08-12 20:55:55 ----A---- C:\Windows\Acer Crystal Eye webcam.exe
2011-08-12 20:55:40 ----D---- C:\Users\Ian\AppData\Roaming\InstallShield
2011-08-12 20:51:28 ----D---- C:\Program Files (x86)\Launch Manager
2011-08-12 20:51:07 ----D---- C:\Users\Ian\AppData\Roaming\Intel Corporation
2011-08-12 20:50:57 ----AD---- C:\book
2011-08-12 20:50:36 ----D---- C:\Users\Ian\AppData\Roaming\Identities
2011-08-12 20:49:23 ----A---- C:\Windows\SysWOW64\wintrust.dll
2011-08-12 20:49:22 ----A---- C:\Windows\SysWOW64\cabview.dll
2011-08-12 20:49:15 ----D---- C:\Program Files (x86)\OEM
2011-08-12 20:47:12 ----SD---- C:\Users\Ian\AppData\Roaming\Microsoft
2011-08-12 20:47:12 ----D---- C:\Users\Ian\AppData\Roaming\Media Center Programs
2011-08-12 20:46:56 ----SHD---- C:\Recovery
2011-08-12 20:38:14 ----D---- C:\Program Files (x86)\Common Files\Intel
2011-08-12 20:38:10 ----D---- C:\Windows\SoftwareDistribution
2011-08-12 20:34:58 ----SHD---- C:\System Volume Information
2011-08-12 20:34:58 ----ASH---- C:\pagefile.sys
2011-08-12 20:34:58 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 month======

2011-08-29 14:49:50 ----D---- C:\Program Files (x86)
2011-08-29 14:33:32 ----D---- C:\Windows\Temp
2011-08-29 14:11:36 ----D---- C:\Windows\SysWOW64\drivers
2011-08-29 14:11:35 ----HD---- C:\ProgramData
2011-08-25 06:46:33 ----D---- C:\Windows\winsxs
2011-08-25 06:46:25 ----D---- C:\Windows\SysWOW64\en-US
2011-08-25 06:46:25 ----D---- C:\Windows\SysWOW64
2011-08-25 06:46:25 ----D---- C:\Windows\System32
2011-08-22 15:18:29 ----D---- C:\Windows\Prefetch
2011-08-20 12:11:26 ----AD---- C:\Windows
2011-08-20 09:41:10 ----SHD---- C:\Windows\Installer
2011-08-20 09:40:11 ----RD---- C:\Program Files
2011-08-18 07:15:47 ----D---- C:\Windows\debug
2011-08-16 20:20:12 ----D---- C:\Windows\Microsoft.NET
2011-08-16 20:20:01 ----RSD---- C:\Windows\assembly
2011-08-16 15:49:48 ----D---- C:\Windows\inf
2011-08-16 08:11:57 ----D---- C:\Program Files (x86)\Acer Games
2011-08-16 08:10:00 ----D---- C:\ProgramData\WildTangent
2011-08-16 08:08:17 ----D---- C:\Program Files (x86)\Acer
2011-08-15 08:39:08 ----D---- C:\ProgramData\McAfee
2011-08-13 14:54:26 ----D---- C:\Program Files (x86)\Windows Mail
2011-08-13 14:54:14 ----D---- C:\Windows\AppPatch
2011-08-13 14:54:11 ----D---- C:\Program Files (x86)\Windows Media Player
2011-08-13 14:54:05 ----D---- C:\Windows\SysWOW64\migration
2011-08-13 14:54:05 ----D---- C:\Program Files (x86)\Internet Explorer
2011-08-13 13:54:34 ----D---- C:\ProgramData\Microsoft Help
2011-08-13 13:46:07 ----SD---- C:\ProgramData\Microsoft
2011-08-13 13:45:45 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2011-08-13 13:36:43 ----D---- C:\Program Files (x86)\Microsoft Works
2011-08-13 12:03:22 ----SHD---- C:\$Recycle.Bin
2011-08-13 09:29:27 ----RSD---- C:\Windows\Fonts
2011-08-13 09:27:59 ----D---- C:\Program Files (x86)\InstallShield Installation Information
2011-08-13 09:23:25 ----D---- C:\Windows\PolicyDefinitions
2011-08-13 09:05:24 ----D---- C:\Program Files (x86)\Common Files
2011-08-12 21:43:24 ----D---- C:\Windows\Logs
2011-08-12 21:37:26 ----D---- C:\Windows\Tasks
2011-08-12 21:37:17 ----D---- C:\Program Files (x86)\Google
2011-08-12 21:32:54 ----D---- C:\Windows\SysWOW64\wbem
2011-08-12 21:19:12 ----HD---- C:\OEM
2011-08-12 21:19:12 ----HD---- C:\AcerSW
2011-08-12 21:14:45 ----D---- C:\Program Files (x86)\Common Files\InstallShield
2011-08-12 21:10:12 ----D---- C:\Windows\Help
2011-08-12 21:03:17 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2011-08-12 20:57:58 ----D---- C:\ProgramData\OEM
2011-08-12 20:56:09 ----D---- C:\Program Files (x86)\Intel
2011-08-12 20:51:12 ----AD---- C:\Windows\DeployWinRE2
2011-08-12 20:50:58 ----D---- C:\ProgramData\EgisTec IPS
2011-08-12 20:47:09 ----RD---- C:\Users
2011-08-12 20:46:59 ----D---- C:\Windows\Panther
2011-08-12 20:45:53 ----D---- C:\Windows\rescache
2011-08-12 20:37:35 ----D---- C:\Intel

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 aswRdr;aswRdr; C:\Windows\SysWOW64\drivers\aswRdr.sys []
R1 aswSnx;aswSnx; C:\Windows\SysWOW64\drivers\aswSnx.sys []
R1 aswSP;aswSP; C:\Windows\SysWOW64\drivers\aswSP.sys []
R1 aswTdi;avast! Network Shield Support; C:\Windows\SysWOW64\drivers\aswTdi.sys []
R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys []
R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys []
R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 aswFsBlk;aswFsBlk; C:\Windows\SysWOW64\drivers\aswFsBlk.sys []
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys []
R3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys []
R3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys []
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys []
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys []
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys []
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys []
S3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS []
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys []
S3 MREMP50;MREMP50 NDIS Protocol Driver; \??\C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS [2010-01-19 21248]
S3 MREMP50a64;MREMP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS []
S3 MREMPR5;MREMPR5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS []
S3 MRENDIS5;MRENDIS5 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS []
S3 MRESP50;MRESP50 NDIS Protocol Driver; \??\C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS [2010-01-19 20096]
S3 MRESP50a64;MRESP50a64 NDIS Protocol Driver; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-07-04 42184]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-03-03 325200]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-03-17 866336]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-23 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-09-30 262144]
R2 McciCMService;McciCMService; C:\Program Files (x86)\Common Files\Motive\McciCMService.exe [2010-01-27 319488]
R2 McciCMService64;McciCMService64; C:\Program Files\Common Files\Motive\McciCMService.exe [2010-01-27 517632]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2010-03-08 250368]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-11-05 144640]
R2 ODDPwrSvc;Acer ODD Power Service; C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2010-04-22 171040]
R2 ServicepointService;ServicepointService; C:\Program Files (x86)\Bell\Internet Service Advisor\ServicepointService.exe [2011-01-06 689464]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232]
R2 YahooAUService;Yahoo! Updater; C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-12 135664]
S3 gupdatem;Google Update Service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-08-12 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-25 182768]
S3 MWLService;MyWinLocker Service; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [2010-04-17 305520]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-11-05 50432]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 Partner Service;Partner Service; C:\ProgramData\Partner\Partner.exe [2010-04-25 332272]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []

-----------------EOF-----------------