Inactive XP system running almost 100%

[Inactive] XP system running almost 100%

XP system started running almost 100% with no applications running.

MBAM quick scan log:

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 7882

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

10/6/2011 1:26:58 AM
mbam-log-2011-10-06 (01-26-58).txt

Scan type: Quick scan
Objects scanned: 196977
Time elapsed: 4 minute(s), 16 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
Will run GMER now.

 

GMER.log

GMER 1.0.15.15641 - http://www.gmer.net
Rootkit quick scan 2011-10-06 01:32:27
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5 ST31000528AS rev.CC46
Running: fh0lnjbq.exe; Driver: C:\DOCUME~1\Rosemary\LOCALS~1\Temp\kgnyqpob.sys


---- System - GMER 1.0.15 ----

Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateProcessEx [0xAB8E99A6]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwCreateSection [0xAB8E97D0]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ZwLoadDriver [0xAB8E9904]
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) NtCreateSection
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObInsertObject
Code \SystemRoot\System32\Drivers\aswSP.SYS (avast! self protection module/AVAST Software) ObMakeTemporaryObject

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs aswSP.SYS (avast! self protection module/AVAST Software)

AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys
AttachedDevice \FileSystem\Ntfs \Ntfs aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)

Device \FileSystem\Fastfat \Fat aswSP.SYS (avast! self protection module/AVAST Software)

AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys
AttachedDevice \FileSystem\Fastfat \Fat aswMon2.SYS (avast! File System Filter Driver for Windows XP/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys
AttachedDevice \Driver\Tcpip \Device\Ip aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys
AttachedDevice \Driver\Tcpip \Device\Tcp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys
AttachedDevice \Driver\Tcpip \Device\Udp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys
AttachedDevice \Driver\Tcpip \Device\RawIp aswTdi.SYS (avast! TDI Filter Driver/AVAST Software)

---- EOF - GMER 1.0.15 ----


ASWMBR scan log

aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-10-06 01:36:07
-----------------------------
01:36:07.046 OS Version: Windows 5.1.2600 Service Pack 3
01:36:07.046 Number of processors: 2 586 0x170A
01:36:07.046 ComputerName: PRINT-D1FB84474 UserName: Rosemary
01:36:12.140 Initialize success
01:36:13.828 AVAST engine defs: 11100501
01:36:16.937 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-5
01:36:16.937 Disk 0 Vendor: ST31000528AS CC46 Size: 953869MB BusType: 3
01:36:18.953 Disk 0 MBR read successfully
01:36:18.953 Disk 0 MBR scan
01:36:18.953 Disk 0 Windows XP default MBR code
01:36:18.953 Disk 0 scanning sectors +1953504000
01:36:19.031 Disk 0 scanning C:\WINDOWS\system32\drivers
01:36:26.906 Service scanning
01:36:27.562 Service MSICDSetup D:\CDriver.sys **LOCKED** 21
01:36:28.125 Modules scanning
01:36:39.984 Disk 0 trace - called modules:
01:36:40.000 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
01:36:40.000 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a3c1ab8]
01:36:40.015 3 CLASSPNP.SYS[b80e8fd7] -> nt!IofCallDriver -> \Device\0000006f[0x8a390f18]
01:36:40.015 5 ACPI.sys[b7f7f620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-5[0x8a38fd98]
01:36:41.562 AVAST engine scan C:\WINDOWS
01:36:59.640 AVAST engine scan C:\WINDOWS\system32
01:39:01.625 AVAST engine scan C:\WINDOWS\system32\drivers
01:39:31.750 AVAST engine scan C:\Documents and Settings\Rosemary
01:39:40.031 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Rosemary\Desktop\MBR.dat "
01:39:40.031 The log file has been saved successfully to "C:\Documents and Settings\Rosemary\Desktop\aswMBR.txt "


DDS log:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Rosemary at 1:42:00 on 2011-10-06
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1334 [GMT -4:00]
.
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
svchost.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\OV550EM.exe
C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\vssvc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.goodsearch.com/
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [boincmgr] "c:\program files\boinc\boincmgr.exe" /a /s
mRun: [boinctray] "c:\program files\boinc\boinctray.exe "
mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe
mRun: [Ovt Wia] c:\windows\OV550EM.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [HDAudDeck] c:\program files\via\viaudioi\hdadeck\HDeck.exe 1
mRun: [RIMBBLaunchAgent.exe] c:\program files\common files\research in motion\usb drivers\RIMBBLaunchAgent.exe
mRun: [Intuit SyncManager] c:\program files\common files\intuit\sync\IntuitSyncManager.exe startup
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [Carbonite Backup] c:\program files\carbonite\carbonite backup\CarboniteUI.exe
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-appf?lic=NFVIMlctM1NYM0UtR0hHWDktQUZISjMtUFcyUU4tWjlLSDQ "& "inst=NzctNzUwMjc1MDg3LUxJQysxMS1TUDErMS1TVUQrMS1TMUkrMS1TVTMrMS1GTDEwKzEtRERUKzQ4MjY4LUREMTBGKzEtU1QxMEZBUFArMS1GMTBNMTJBVCszMy1GMTBNMTJBKzEtRjEwTTEyQUIrMS1VMTArMS1GMTBNMTJBVEJOKzEtU1QxMkZPSSsxLUYxME0xMkFVKzEtRVVMQSsxLVNUMTJGQVBQKzEtU1RGMTBNMTJBVUYrMQ "& "prod=90 "& "ver=2012.0.1809 "& "mid=4413b0a0407e47d68916bd2b2b9d6b49-69f532cd9679937ed14c184b33ff3288156f5fec
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
Trusted Zone: google.com\www
Trusted Zone: intuit.com\ttlc
Trusted Zone: turbotax.com
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1300120197421
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1300120248906
DPF: {7B62F6EE-D046-11D3-9C5E-0060082627F7} - hxxps://secure-email.thirdfederal.com/messenger/download/TWDownload.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 205.152.144.23 205.152.132.23
TCP: Interfaces\{48F897EC-D5A1-4F78-9281-7D3A2AC4F54E} : DhcpNameServer = 205.152.144.23 205.152.132.23
Handler: intu-help-qb2 - {84D77A00-41B5-4b8b-8ADF-86486D72E749} - c:\program files\intuit\quickbooks 2009\HelpAsyncPluggableProtocol.dll
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - c:\windows\system32\mscoree.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\rosemary\application data\mozilla\firefox\profiles\va0ljt26.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.goodsearch.com/
FF - plugin: c:\documents and settings\rosemary\local settings\application data\yahoo!\browserplus\2.9.8\plugins\npybrowserplus_2.9.8.dll
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\motive\npMotive.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
.
============= SERVICES / DRIVERS ===============
.
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-10-6 320856]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-10-6 20568]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-10-6 44768]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2011-3-14 722616]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2011-5-20 2218600]
R3 L1c;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2011-3-15 50176]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32.sys [2011-5-20 119272]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2011-3-25 2136224]
R4 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriver.sys --> c:\windows\system32\drivers\AVGIDSDriver.Sys [?]
R4 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\avgidseh.sys --> c:\windows\system32\drivers\AVGIDSEH.Sys [?]
R4 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilter.sys --> c:\windows\system32\drivers\AVGIDSFilter.Sys [?]
R4 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshim.sys --> c:\windows\system32\drivers\AVGIDSShim.Sys [?]
R4 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys --> c:\windows\system32\drivers\avgrkx86.sys [?]
R4 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys --> c:\windows\system32\drivers\avgtdix.sys [?]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-10-6 442200]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 APL531;CRS Photo Scanner;c:\windows\system32\drivers\ov550i.sys [2008-1-28 580992]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2011-3-24 110080]
S3 MSICDSetup;MSICDSetup;\??\d:\cdriver.sys --> d:\CDriver.sys [?]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2008-8-21 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2011-10-06 05:10:28 442200 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-10-06 05:10:15 41184 ----a-w- c:\windows\avastSS.scr
2011-10-06 05:10:05 -------- d-----w- c:\program files\AVAST Software
2011-10-06 05:10:05 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2011-10-01 12:27:02 -------- d-----w- c:\documents and settings\rosemary\application data\AVG2012
2011-10-01 12:26:22 -------- d-----w- c:\documents and settings\all users\application data\AVG2012
2011-09-29 05:36:33 -------- d-----w- c:\program files\DBXpress
2011-09-13 17:52:51 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
2011-09-13 17:52:51 8704 ----a-w- c:\windows\system32\kbdjpn.dll
2011-09-13 17:52:51 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll
2011-09-13 17:52:51 8192 ----a-w- c:\windows\system32\kbdkor.dll
2011-09-13 17:52:51 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll
2011-09-13 17:52:51 6144 ----a-w- c:\windows\system32\kbd101c.dll
2011-09-13 17:52:51 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll
2011-09-13 17:52:51 5632 ----a-w- c:\windows\system32\kbd103.dll
2011-09-13 17:52:49 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll
2011-09-13 17:52:49 6144 ----a-w- c:\windows\system32\kbd101b.dll
2011-09-13 17:52:47 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
2011-09-13 17:52:47 6144 ----a-w- c:\windows\system32\kbd106.dll
2011-09-10 15:37:04 192512 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iuser.dll
2011-09-10 15:37:03 729088 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iKernel.dll
2011-09-10 15:37:03 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\ctor.dll
2011-09-10 15:37:03 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\DotNetInstaller.exe
2011-09-10 15:37:03 266240 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iscript.dll
2011-09-10 15:36:59 188548 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\iGdi.dll
2011-09-10 15:36:57 311428 ----a-w- c:\program files\common files\installshield\professional\runtime\09\01\intel32\setup.dll
.
==================== Find3M ====================
.
2011-10-05 19:44:44 60 ----a-w- c:\windows\wpd99.drv
2011-10-04 02:39:12 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-09 09:12:13 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-08-31 21:00:50 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-08-08 19:01:38 11776 ----a-w- c:\windows\system32\smrgdf.exe
2011-08-08 19:01:28 29696 ----a-w- c:\windows\system32\iolobtdfg.exe
2011-08-08 18:18:16 2083464 ----a-w- c:\windows\system32\Incinerator32.dll
2011-08-08 10:57:30 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-07-15 13:29:31 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- c:\windows\system32\drivers\ndistapi.sys
.
============= FINISH: 1:43:52.26 ===============

 

ATTACH.TXT

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 3/14/2011 2:29:06 AM
System Uptime: 10/5/2011 11:52:10 AM (14 hours ago)
.
Motherboard: MSI | | G41M-P34 (MS-7592)
Processor: Intel Pentium III Xeon processor | CPU 1 | 2999/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 932 GiB total, 864.445 GiB free.
D: is CDROM ()
E: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP193: 7/8/2011 8:04:06 PM - System Checkpoint
RP194: 7/9/2011 9:05:07 PM - System Checkpoint
RP195: 7/10/2011 10:04:02 PM - System Checkpoint
RP196: 7/11/2011 10:22:47 PM - System Checkpoint
RP197: 7/12/2011 11:25:14 PM - System Checkpoint
RP198: 7/13/2011 6:59:21 AM - Software Distribution Service 3.0
RP199: 7/13/2011 9:34:43 AM - Software Distribution Service 3.0
RP200: 7/14/2011 10:21:01 AM - System Checkpoint
RP201: 7/15/2011 12:43:33 PM - System Checkpoint
RP202: 7/16/2011 1:43:31 PM - System Checkpoint
RP203: 7/17/2011 6:36:03 PM - System Checkpoint
RP204: 7/18/2011 6:43:34 PM - System Checkpoint
RP205: 7/19/2011 7:43:33 PM - System Checkpoint
RP206: 7/20/2011 8:13:22 PM - System Checkpoint
RP207: 7/21/2011 8:43:27 PM - System Checkpoint
RP208: 7/22/2011 9:43:25 PM - System Checkpoint
RP209: 7/23/2011 10:43:26 PM - System Checkpoint
RP210: 7/24/2011 11:43:25 PM - System Checkpoint
RP211: 7/26/2011 12:43:26 AM - System Checkpoint
RP212: 7/27/2011 1:28:40 AM - System Checkpoint
RP213: 7/28/2011 1:43:26 AM - System Checkpoint
RP214: 7/29/2011 2:43:26 AM - System Checkpoint
RP215: 7/30/2011 4:04:51 AM - System Checkpoint
RP216: 7/31/2011 5:19:01 AM - Software Distribution Service 3.0
RP217: 8/1/2011 5:20:20 AM - System Checkpoint
RP218: 8/2/2011 5:20:42 AM - System Checkpoint
RP219: 8/3/2011 6:19:15 AM - System Checkpoint
RP220: 8/4/2011 7:19:15 AM - System Checkpoint
RP221: 8/5/2011 7:20:20 AM - System Checkpoint
RP222: 8/6/2011 8:43:41 AM - System Checkpoint
RP223: 8/7/2011 8:25:52 AM - Installed AQ Plus 4.2.
RP224: 8/7/2011 9:06:42 AM - Removed AQ Plus 4.2.
RP225: 8/8/2011 6:53:55 AM - Installed Ad-Aware
RP226: 8/8/2011 6:54:11 AM - Installed Ad-Aware
RP227: 8/9/2011 7:35:46 AM - System Checkpoint
RP228: 8/9/2011 10:16:59 AM - Installed AQ Plus 4.2.
RP229: 8/10/2011 12:20:54 PM - System Checkpoint
RP230: 8/11/2011 5:44:07 AM - Software Distribution Service 3.0
RP231: 8/12/2011 6:51:04 AM - System Checkpoint
RP232: 8/13/2011 7:22:45 AM - System Checkpoint
RP233: 8/14/2011 7:30:39 AM - System Checkpoint
RP234: 8/15/2011 8:38:51 AM - System Checkpoint
RP235: 8/16/2011 10:36:46 AM - System Checkpoint
RP236: 8/17/2011 10:38:00 AM - System Checkpoint
RP237: 8/18/2011 9:04:05 AM - Installed H&R Block New York 2010.
RP238: 8/19/2011 9:08:05 AM - System Checkpoint
RP239: 8/20/2011 9:13:14 AM - System Checkpoint
RP240: 8/21/2011 9:17:02 AM - System Checkpoint
RP241: 8/22/2011 10:53:14 AM - Installed TurboTax 2010 wneiper
RP242: 8/23/2011 1:05:04 PM - System Checkpoint
RP243: 8/24/2011 3:33:25 PM - System Checkpoint
RP244: 8/25/2011 6:27:04 PM - System Checkpoint
RP245: 8/26/2011 7:03:11 PM - System Checkpoint
RP246: 8/27/2011 11:46:12 AM - Software Distribution Service 3.0
RP247: 8/28/2011 12:03:12 PM - System Checkpoint
RP248: 8/29/2011 1:04:18 PM - System Checkpoint
RP249: 8/30/2011 1:21:04 PM - System Checkpoint
RP250: 8/31/2011 2:20:08 PM - System Checkpoint
RP251: 9/1/2011 4:17:07 PM - System Checkpoint
RP252: 9/2/2011 5:03:21 PM - System Checkpoint
RP253: 9/3/2011 5:18:43 PM - System Checkpoint
RP254: 9/4/2011 6:04:25 PM - System Checkpoint
RP255: 9/5/2011 8:19:54 AM - ARO 2011 - Before Installation
RP256: 9/5/2011 8:20:29 AM - ARO 2011 - FIRST RUN
RP257: 9/5/2011 8:22:26 AM - Removed Ad-Aware
RP258: 9/6/2011 9:15:19 AM - System Checkpoint
RP259: 9/7/2011 10:18:21 AM - System Checkpoint
RP260: 9/8/2011 11:03:21 AM - System Checkpoint
RP261: 9/9/2011 11:53:22 AM - System Checkpoint
RP262: 9/10/2011 11:26:16 AM - Removed EasyCleaner
RP263: 9/10/2011 11:37:28 AM - Installed EasyCleaner
RP264: 9/11/2011 4:00:29 PM - System Checkpoint
RP265: 9/12/2011 4:31:53 PM - System Checkpoint
RP266: 9/13/2011 5:35:22 PM - System Checkpoint
RP267: 9/14/2011 7:36:44 AM - Software Distribution Service 3.0
RP268: 9/15/2011 9:25:38 AM - System Checkpoint
RP269: 9/16/2011 10:26:11 AM - System Checkpoint
RP270: 9/17/2011 10:39:54 AM - System Checkpoint
RP271: 9/18/2011 11:01:55 AM - System Checkpoint
RP272: 9/19/2011 12:01:54 PM - System Checkpoint
RP273: 9/20/2011 1:01:54 PM - System Checkpoint
RP274: 9/21/2011 2:36:08 PM - System Checkpoint
RP275: 9/22/2011 3:01:55 PM - System Checkpoint
RP276: 9/23/2011 3:03:04 PM - System Checkpoint
RP277: 9/24/2011 3:16:53 PM - System Checkpoint
RP278: 9/25/2011 7:15:20 AM - ARO 2011- Before One Click
RP279: 9/26/2011 7:15:34 AM - System Checkpoint
RP280: 9/27/2011 10:47:51 AM - System Checkpoint
RP281: 9/28/2011 11:52:12 AM - System Checkpoint
RP282: 9/29/2011 1:36:31 AM - Installed DBXpress
RP283: 9/30/2011 2:15:35 AM - System Checkpoint
RP284: 10/1/2011 8:06:56 AM - Software Distribution Service 3.0
RP285: 10/1/2011 8:25:37 AM - Installed AVG 2012
RP286: 10/1/2011 8:25:44 AM - Removed AVG 2011
RP287: 10/1/2011 8:26:03 AM - Installed AVG 2012
RP288: 10/1/2011 8:30:19 AM - Removed AVG 2011
RP289: 10/2/2011 9:03:19 AM - System Checkpoint
RP290: 10/3/2011 10:00:40 AM - System Checkpoint
RP291: 10/4/2011 10:32:08 AM - System Checkpoint
RP292: 10/5/2011 11:42:18 AM - System Checkpoint
RP293: 10/6/2011 1:09:01 AM - Removed AVG 2012
RP294: 10/6/2011 1:10:05 AM - Removed AVG 2012
.
==== Installed Programs ======================
.
.
Acrobat.com
Adobe AIR
Adobe Flash Player 10 Plugin
Adobe Flash Player 11 ActiveX
Adobe Reader 9.4.6
AnswerWorks 4.0 Runtime - English
AnswerWorks 5.0 English Runtime
AQ Plus 4.2
ArcSoft PhotoImpression 6
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
ATT-PRT22
avast! Free Antivirus
Avery Wizard 4.0
BlackBerry Desktop Software 6.0.2
BOINC
Carbonite
Compatibility Pack for the 2007 Office system
CRS Photo Scanner
DBXpress
EasyCleaner
H&R Block Deluxe + Efile 2009
H&R Block Deluxe + Efile 2010
H&R Block New York 2010
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hoyle Board Games 2007
Hoyle Puzzle Games 2007
Intel(R) Graphics Media Accelerator Driver
iolo technologies' System Mechanic Professional
Java Auto Updater
Java(TM) 6 Update 24
Malwarebytes' Anti-Malware version 1.51.2.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2003 Primary Interop Assemblies
Microsoft Office File Validation Add-In
Microsoft Office Professional Edition 2003
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual Studio 2005 Tools for Office Runtime
Mozilla Firefox 6.0.2 (x86 en-US)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
NVIDIA Control Panel 270.61
NVIDIA Graphics Driver 270.61
NVIDIA HD Audio Driver 1.2.22.1
NVIDIA Install Application
NVIDIA nView 135.70
NVIDIA nView Desktop Manager
NVIDIA PhysX
NVIDIA PhysX System Software 9.10.0514
NVIDIA Update 1.1.34
NVIDIA Update Components
OrchidWiz Encyclopedia
ParetoLogic DriverCure
Pdf995
Platform
QuickBooks
QuickBooks Pro 2009
Quicken 2010
RegScrubXP 3.25
Roxio Easy Media Creator 7 Basic DVD Edition
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Windows Internet Explorer 7 (KB2482017)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Speccy
Spelling Dictionaries Support For Adobe Reader 9
Spybot - Search & Destroy
SupportSoft Assisted Service
TurboTax 2008
TurboTax 2008 WinPerFedFormset
TurboTax 2008 WinPerProgramHelp
TurboTax 2008 WinPerReleaseEngine
TurboTax 2008 WinPerTaxSupport
TurboTax 2008 WinPerUserEducation
TurboTax 2008 wrapper
TurboTax 2009
TurboTax 2009 WinPerFedFormset
TurboTax 2009 WinPerReleaseEngine
TurboTax 2009 WinPerTaxSupport
TurboTax 2009 wrapper
TurboTax 2010
TurboTax 2010 WinPerFedFormset
TurboTax 2010 WinPerReleaseEngine
TurboTax 2010 WinPerTaxSupport
TurboTax 2010 wneiper
TurboTax 2010 wnjiper
TurboTax 2010 wrapper
TurboTax Deluxe 2007
Tweak UI
Uninstall CRS Photo Scanner
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2447568)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2616676-v2)
Update for Windows XP (KB2616676)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
VIA Platform Device Manager
Visual Studio 2005 Tools for Office Second Edition Runtime
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
WorldClock 3.0
Yahoo! BrowserPlus 2.9.8
.
==== Event Viewer Messages From Past Week ========
.
10/5/2011 11:54:40 AM, error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the CarboniteService service, but this action failed with the following error: An instance of the service is already running.
10/5/2011 11:53:40 AM, error: Service Control Manager [7031] - The CarboniteService service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
10/2/2011 5:56:57 AM, error: ParVdm [2] - Unable to get device object pointer for port object.
10/2/2011 5:56:54 AM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
10/2/2011 5:56:47 AM, error: Dhcp [1002] - The IP address lease 192.168.1.100 for the Network Card with network address 6C626D7982BA has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).
10/2/2011 2:32:18 PM, error: Removable Storage Service [111] - RSM could not load media in drive Drive 0 of library TOSHIBA TransMemory USB Device.
10/2/2011 2:32:16 PM, error: Removable Storage Service [111] - RSM could not load media in drive Drive 0 of library JetFlash TS2GJFV10 USB Device.
10/2/2011 2:23:15 AM, error: VolSnap [25] - The shadow copy of volume C: was aborted because the diff area file could not grow in time. Consider reducing the IO load on this system to avoid this problem in the future.
10/2/2011 2:22:43 AM, error: VolSnap [12] - The shadow copy of volume C: became low on diff area space before it was properly installed.
.
==== End Of File ===========================

 

Broni,


My apologies for not completing prior forum topics.

The site address for AVG tools is no longer active. http://www.avg.com/download-tools
takes the user to http://www.avg.com/us-en/avg-pctuneup.

AVG utilities now at

http://www.avg.com/us-en/utilities


Process Explorer log

Process PID CPU Private Bytes Working Set Description Company Name Command Line
System Idle Process 0 98.44 0 K 28 K
System 4 0.78 0 K 264 K
Interrupts n/a < 0.01 0 K 0 K Hardware Interrupts and DPCs
smss.exe 732 180 K 436 K Windows NT Session Manager Microsoft Corporation \SystemRoot\System32\smss.exe
csrss.exe 780 1,844 K 5,120 K Client Server Runtime Process Microsoft Corporation C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16
winlogon.exe 804 8,528 K 6,272 K Windows NT Logon Application Microsoft Corporation winlogon.exe
services.exe 848 2,116 K 5,024 K Services and Controller app Microsoft Corporation C:\WINDOWS\system32\services.exe
nvsvc32.exe 1028 5,128 K 7,032 K NVIDIA Driver Helper Service, Version 270.61 NVIDIA Corporation C:\WINDOWS\system32\nvsvc32.exe
svchost.exe 1100 3,776 K 7,356 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k DcomLaunch
axlbridge.exe 2696 1,784 K 4,868 K AXLBridge Module Intuit Inc. "C:\Program Files\Common Files\Intuit\QuickBooks\axlbridge.exe" -Embedding
wmiprvse.exe 1424 2,696 K 5,380 K WMI Microsoft Corporation C:\WINDOWS\system32\wbem\wmiprvse.exe
svchost.exe 1172 2,808 K 6,504 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost -k rpcss
svchost.exe 1268 18,360 K 26,640 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe 1312 2,676 K 3,800 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe 1432 5,488 K 7,952 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k NetworkService
svchost.exe 1512 1,892 K 4,508 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k LocalService
AvastSvc.exe 1612 22,496 K 4,048 K avast! Service AVAST Software "C:\Program Files\AVAST Software\Avast\AvastSvc.exe "
spoolsv.exe 612 4,760 K 7,712 K Spooler SubSystem App Microsoft Corporation C:\WINDOWS\system32\spoolsv.exe
svchost.exe 280 1,652 K 4,304 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k LocalService
CarboniteService.exe 340 9,732 K 26,016 K Carbonite Secure Backup Engine Carbonite, Inc. (www.carbonite.com) "C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe "
ioloServiceManager.exe 1796 24,240 K 17,436 K iolo System component iolo technologies, LLC "C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe "
McciCMService.exe 988 2,288 K 4,432 K mcci+McciCMService Alcatel-Lucent "C:\Program Files\Common Files\Motive\McciCMService.exe "
daemonu.exe 1332 5,648 K 8,972 K NVIDIA Settings Update Manager NVIDIA Corporation "C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe "
QBCFMonitorService.exe 1408 13,504 K 9,856 K QuickBooks Company File Monitoring Service Intuit "C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe "
svchost.exe 2176 2,764 K 4,760 K Generic Host Process for Win32 Services Microsoft Corporation C:\WINDOWS\system32\svchost.exe -k imgsvc
alg.exe 3120 1,468 K 4,024 K Application Layer Gateway Service Microsoft Corporation C:\WINDOWS\System32\alg.exe
dllhost.exe 4060 3,308 K 8,740 K COM Surrogate Microsoft Corporation C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{02D4B3F1-FD88-11D1-960D-00805FC79235}
msdtc.exe 1288 2,172 K 5,500 K MS DTC console program Microsoft Corporation C:\WINDOWS\system32\msdtc.exe
PresentationFontCache.exe 3344 15,384 K 15,356 K PresentationFontCache.exe Microsoft Corporation c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
vssvc.exe 6040 2,148 K 6,296 K Microsoft® Volume Shadow Copy Service Microsoft Corporation C:\WINDOWS\System32\vssvc.exe
dllhost.exe 4564 1,944 K 5,896 K COM Surrogate Microsoft Corporation C:\WINDOWS\SYSTEM32\DLLHOST.EXE /PROCESSID:{0C41739A-F39D-4208-8E38-B8535B83D75D}
lsass.exe 860 4,620 K 1,724 K LSA Shell (Export Version) Microsoft Corporation C:\WINDOWS\system32\lsass.exe
explorer.exe 1836 27,308 K 39,060 K Windows Explorer Microsoft Corporation C:\WINDOWS\Explorer.EXE
boinctray.exe 2896 1,016 K 2,980 K BOINC System Tray for Windows Space Sciences Laboratory "C:\Program Files\BOINC\boinctray.exe"
OV550EM.exe 3072 2,500 K 4,380 K USB Camera Event Monitor OmniVision Technologies, Inc "C:\WINDOWS\OV550EM.exe"
HDeck.exe 3476 3,764 K 14,356 K HDeck MFC Application VIA Technologies, Inc. "C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe" 1
RIMBBLaunchAgent.exe 3484 2,260 K 3,984 K Launch Agent Service Research In Motion Limited "C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe"
CarboniteUI.exe 3736 17,568 K 26,056 K Carbonite User Interface Carbonite, Inc. "C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe"
AvastUI.exe 3748 6,428 K 8,096 K avast! Antivirus AVAST Software "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
ctfmon.exe 3836 1,188 K 3,792 K CTF Loader Microsoft Corporation "C:\WINDOWS\system32\ctfmon.exe"
msimn.exe 2352 23,648 K 42,448 K Outlook Express Microsoft Corporation "C:\Program Files\Outlook Express\msimn.exe"
WINWORD.EXE 3652 13,844 K 27,832 K Microsoft Office Word Microsoft Corporation "C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE" /n /dde
qw.exe 4044 60,028 K 5,480 K Quicken Launcher Intuit Inc. "C:\Program Files\Quicken\qw.exe"
iexplore.exe 1000 14,376 K 8,560 K Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe"
iexplore.exe 4012 40,656 K 50,900 K Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:1000 CREDAT:145410
iexplore.exe 4780 0.78 51,336 K 62,044 K Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:1000 CREDAT:210945
iexplore.exe 5724 24,652 K 38,368 K Internet Explorer Microsoft Corporation "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:1000 CREDAT:145412
procexp.exe 5144 27,176 K 34,092 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com "C:\Data\SysClean\Process Explorer\ProcessExplorer\procexp.exe"
TurboTax.exe 3256 87,772 K 17,400 K TurboTax Intuit "C:\Program Files\TurboTax\Premier 2010\32bit\TurboTax.exe" -NOCHECK
QBW32.EXE 5924 43,712 K 3,392 K QuickBooks Intuit Inc. "C:\Program Files\Intuit\QuickBooks 2009\qbw32.exe" /Fpro -TickCount=28864093 /NoShowLoadingQBWnd
QBDBMgr.exe 2224 72,748 K 22,716 K QuickBooks Database Manager Intuit, Inc. C:\PROGRA~1\Intuit\QUICKB~1\QBDBMgr.exe -n QB_data_engine_19 -qs -gd ALL -gk all -gp 4096 -gu all -ch 128M -ti 0 -c 64M -x none -qi -qw -tl 120 -oe C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intuit\QUICKB~2\DBSTAR~1.LOG

 

Broni,

It was at 98% yesterday. Now at 1%. I think Murphy has visited.

Thanks for your hlep, I'll mark this closed.