Results of analyzing your log

The HijackThis log analyzer beta 2 is a brand new service, so it is natural that it may have a few issues with entry descriptions and status. You can help us to improve the analyzer! If you have some information on unknown items, please share it with us and thousands of 2-Spyware.com visitors. We will carefully check your submission and approve it, if it is correct. You can also change status of entries that do not look identified correctly to you. Also feel free to post your description for existing items. We will review and add it to the analyzer's database. Thank you!

Files and registry entries considered to be safe

Legitimate items	52	61%
Not necessary items	17	20%
	69	81%

File and registry entries that can be both dangerous or safe

Questionable items	7	8%
Unknown items	9	11%
	16	19%

Files and registry entries considered to be DANGEROUS. Fix immediately!

Dangerous items

Line:	Status:	Comments:	Actions:
C:\WINDOWS\SYSTEM\KERNEL32.DLL More info about file kernel32.dll	Legitimate	Process found in system process library	Change status
C:\WINDOWS\SYSTEM\MSGSRV32.EXE More info about file msgsrv32.exe	Legitimate	Process found in system process library	Change status
C:\WINDOWS\SYSTEM\MPREXE.EXE More info about file mprexe.exe	Legitimate	Item found in 2-spyware.com library File mprexe.exe is a standard component of Microsoft Windows 95/98/Me operating systems. It is...	Change status
C:\WINDOWS\SYSTEM\mmtask.tsk More info about file mmtask.tsk	Legitimate	Item found in 2-spyware.com library File mmtask.tsk is related to process that is used to provide multitasking for multimedia...	Change status
C:\WINDOWS\SYSTEM\MSTASK.EXE More info about file mstask.exe	Legitimate	Item found in 2-spyware.com library Mstask.exe is the task scheduler service, responsible for running tasks at a time predetermined by...	Change status
c:\windows\SYSTEM\KB891711\KB891711.EXE More info about file kb891711.exe	Legitimate	Item found in 2-spyware.com library The file is related to Windows security update.	Change status
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE More info about file ashserv.exe	Legitimate	Item found in 2-spyware.com library Related to Avast anti-virus software.	Change status
C:\WINDOWS\EXPLORER.EXE More info about file explorer.exe	Legitimate	Process found in system process library	Change status
C:\WINDOWS\SYSTEM\RPCSS.EXE More info about file rpcss.exe	Legitimate	Item found in 2-spyware.com library This file is related to Remote Procedure Call Services - it is a crucial component of any Windows...	Change status
C:\WINDOWS\TASKMON.EXE More info about file taskmon.exe	Legitimate	Item found in 2-spyware.com library Taskmon.exe from Microsoft monitors the application usage. This information is later used by the...	Change status
C:\WINDOWS\SYSTEM\SYSTRAY.EXE More info about file systray.exe	Legitimate	Process found in system process library	Change status
C:\WINDOWS\STARTER.EXE More info about file starter.exe	Legitimate	Item found in 2-spyware.com library This is a part of Creative sound card drivers. It also can be included in additional software,...	Change status
C:\WINDOWS\GWHOTKEY.EXE More info about file gwhotkey.exe	Legitimate	Item found in 2-spyware.com library HotKey function.	Change status
C:\WINDOWS\SYSTEM\LVCOMS.EXE More info about file lvcoms.exe	Legitimate	Item found in 2-spyware.com library Related to Logitech Quick Cam. Located in "C:\WINDOWS\SYSTEM\" on Windows 98.	Change status
C:\WINDOWS\SYSTEM\STIMON.EXE More info about file stimon.exe	Legitimate	Item found in 2-spyware.com library From Microsoft: "Still Image Monitor (Stimon.exe) is a tool that is installed by Windows...	Change status
C:\WINDOWS\SYSTEM\WMIEXE.EXE More info about file wmiexe.exe	Legitimate	Item found in 2-spyware.com library This file is related to Microsoft Windows Management Instrumentation - it is a programming...	Change status
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHWEBSV.EXE More info about file ashwebsv.exe	Legitimate	Item found in 2-spyware.com library Related to Avast anti-virus software.	Change status
C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHMAISV.EXE More info about file ashmaisv.exe	Legitimate	Item found in 2-spyware.com library Related to Avast anti-virus software.	Change status
C:\PROGRAM FILES\PEOPLEPC\ISP6100\BROWSER\BARTSHEL.EXE	Unknown	No exact entries found	Insert file into database
C:\WINDOWS\RunDLL.exe More info about file rundll.exe	Legitimate	Process found in system process library	Change status
C:\PROGRAM FILES\FREE DOWNLOAD MANAGER\FDM.EXE More info about file fdm.exe	Legitimate	Item found in 2-spyware.com library Main component of Free Download Manager	Change status
C:\PROGRAM FILES\PEOPLEPC\ISP6100\BROWSER\PPSHARED.EXE	Unknown	No exact entries found	Insert file into database
C:\WINDOWS\SYSTEM\DDHELP.EXE More info about file ddhelp.exe	Legitimate	Process found in system process library	Change status
C:\WINDOWS\SYSTEM\RNAAPP.EXE More info about file rnaapp.exe	Legitimate	Process found in system process library	Change status
C:\WINDOWS\SYSTEM\TAPISRV.EXE More info about file tapisrv.exe	Legitimate	Item found in 2-spyware.com library File tapisrv.exe is a component of Windows 95/98/ME and Windows NT4 operating systems. It runs...	Change status
C:\PROGRAM FILES\PEOPLEPC ACCELERATED\PEOPLEPC.EXE	Unknown	No exact entries found	Insert file into database
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE More info about file iexplore.exe	Legitimate	Process found in system process library	Change status
C:\WINDOWS\SYSTEM\SPOOL32.EXE More info about file spool32.exe	Legitimate	Process found in system process library	Change status
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE More info about file iexplore.exe	Legitimate	Process found in system process library	Change status
C:\PROGRAM FILES\HIJACKTHIS\HIJACKTHIS.EXE More info about file hijackthis.exe	Legitimate	Item found in 2-spyware.com library This is the main component of HijackThis security application, designed to perform system scans and...	Change status
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://home.peoplepc.com/search	Not necessary	http://home.peoplepc.com/search is your Search Bar. If you do not like this fact, fix this item.	Change status
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =	Not necessary	Fix this item because it points to nowhere	Change status
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =	Not necessary	Fix this item because it points to nowhere	Change status
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=localhost:8080	Not necessary	http=localhost:8080 is your Proxy Server. If you do not like this fact, fix this item.	Change status
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX	Legitimate	legitimate bho toolbar, related to Adobe Acrobat reader	Change status
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll More info about file ssv.dll	Legitimate	System item according to inner database Related to Java Virtual Machine software, which is legitimate.	Change status
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\PROGRAM FILES\SPYWAREGUARD\DLPROTECT.DLL	Legitimate	legitimate bho toolbar, related to SpywareGuard	Change status
O2 - BHO: PeoplePC ScamGuard - {7E3659A6-4BC5-4d93-B3FD-8B5ACC2FEDED} - (no file)	Not necessary	Fix this item, because it points to file that cannot be found	Change status
O2 - BHO: PeoplePal Toolbar - {A8FB8EB3-183B-4598-924D-86F0E5E37085} - C:\PROGRAM FILES\PEOPLEPC\TOOLBAR\PPCTOOLBAR.DLL	Unknown	No exact entries found	Insert file into database
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\PROGRAM FILES\FREE DOWNLOAD MANAGER\IEFDMCKS.DLL	Unknown	No exact entries found	Insert file into database
O3 - Toolbar: PeoplePal Toolbar - {A8FB8EB3-183B-4598-924D-86F0E5E37085} - C:\PROGRAM FILES\PEOPLEPC\TOOLBAR\PPCTOOLBAR.DLL More info about file msdxm.ocx	Unknown	No exact entries found	Insert file into database
O4 - HKLM\..\Run: [ScanRegistry] c:\windows\scanregw.exe /autorun More info about file scanregw.exe	Questionable	Original file is Microsoft's Registry Checker. It loads on Windows startup, verifies that the Registry is in order, and makes a backup. Located in C:\Windows or C:\Winnt. The same filename is used by some viruses, worms and trojans. The file's purpose depends on its location.	Change status
O4 - HKLM\..\Run: [TaskMonitor] c:\windows\taskmon.exe More info about file taskmon.exe	Legitimate	System item according to inner database Taskmon.exe from Microsoft monitors the application usage. This information is later used by the...	Change status
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe More info about file systray.exe	Legitimate	System item according to inner database From Microsoft: <i>"Systray.exe is a Windows 95/98/Me tool for system taskbar notifications. The...	Change status
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme More info about file powrprof.dll	Legitimate	System item according to inner database Related to the power management of the computer. The power settings can be modified in the Windows...	Change status
O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe More info about file starter.exe	Legitimate	Application program item according to inner database This is a part of Creative sound card drivers. It also can be included in additional software,...	Change status
O4 - HKLM\..\Run: [Multi-function Keyboard] GWHotKey.exe More info about file gwhotkey.exe	Legitimate	System item according to inner database HotKey function.	Change status
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A More info about file p_981116.exe	Legitimate	System item according to inner database Win32 cabinet Self-Extractor. Located c:\windows\p_981116. Leftover from a DirectX 6.0 upgrade.	Change status
O4 - HKLM\..\Run: [LVComs] c:\windows\SYSTEM\LVComS.exe More info about file lvcoms.exe	Legitimate	Application program item according to inner database Related to Logitech Quick Cam. Located in "C:\WINDOWS\SYSTEM\" on Windows 98.	Change status
O4 - HKLM\..\Run: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE More info about file stimon.exe	Legitimate	System item according to inner database From Microsoft: <i>"Still Image Monitor (Stimon.exe) is a tool that is installed by Windows...	Change status
O4 - HKLM\..\Run: [NvColorInit] RUNDLL32.EXE NVQTWK.DLL,NvColorInit More info about file nvqtwk.dll	Legitimate	System item according to inner database Related to nVidia graphics cards. NvQTwk.dll is located in "C:\WINDOWS\SYSTEM\" on Windows...	Change status
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\SYGATE\SPF\SMC.EXE -startgui More info about file smc.exe	Legitimate	Application program item according to inner database File smc.exe is the main part of Sygate Personal Firewall. It monitors incoming and outgoind...	Change status
O4 - HKLM\..\Run: [Bart Station] C:\Program Files\PeoplePC\ISP6100\BIN\PPCOLink.exe -STATION	Unknown	No exact entries found	Insert file into database
O4 - HKLM\..\Run: [avast! Web Scanner] C:\PROGRA~1\ALWILS~1\AVAST4\ASHWEBSV.EXE More info about file ashwebsv.exe	Legitimate	Application program item according to inner database Related to Avast anti-virus software.	Change status
O4 - HKLM\..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\AVAST4\ashmaisv.exe More info about file ashmaisv.exe	Legitimate	Application program item according to inner database Related to Avast anti-virus software.	Change status
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme More info about file powrprof.dll	Legitimate	System item according to inner database Related to the power management of the computer. The power settings can be modified in the Windows...	Change status
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe More info about file mstask.exe	Legitimate	System item according to inner database Mstask.exe is the task scheduler service, responsible for running tasks at a time predetermined by...	Change status
O4 - HKLM\..\RunServices: [KB891711] c:\windows\SYSTEM\KB891711\KB891711.EXE More info about file kb891711.exe	Legitimate	System item according to inner database The file is related to Windows security update.	Change status
O4 - HKLM\..\RunServices: [avast!] C:\Program Files\Alwil Software\Avast4\ashServ.exe More info about file ashserv.exe	Legitimate	Application program item according to inner database Related to Avast anti-virus software.	Change status
O4 - HKCU\..\Run: [Taskbar Display Controls] RunDLL deskcp16.dll,QUICKRES_RUNDLLENTRY	Unknown	No exact entries found	Insert file into database
O4 - HKCU\..\Run: [Spam Bully for Outlook Express] "C:\PROGRAM FILES\AXAWARE\SPAM BULLY 2 FOR OE\OESPAMBULLY.EXE" install	Unknown	No exact entries found	Insert file into database
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun More info about file fdm.exe	Legitimate	Runs Free Download Manager on Windows startup.	Change status
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe More info about file sgmain.exe	Legitimate	Application program item according to inner database A vital part of SpywareGuard, a legitimate program providing real-time protection against spyware...	Change status
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm	Not necessary	Do you want item 'Download with Free Download Manager' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item.	Change status
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm	Not necessary	Do you want item 'Download all with Free Download Manager' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item.	Change status
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm	Not necessary	Do you want item 'Download selected with Free Download Manager' to appear in your internet explorer context menu when you do the right click? If you don't, fix this item.	Change status
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)	Not necessary	Fix this item. It represents extra button in your IE toolbar and points to file that doesn't exist.	Change status
O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\PROGRAM FILES\IESPELL\IESPELL.DLL	Not necessary	This item represents extra button in your IE toolbar with a name 'ieSpell' and points to file 'C:\PROGRAM FILES\IESPELL\IESPELL.DLL'. If you do not want it to be there, fix this item.	Change status
O9 - Extra ''Tools'' menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\PROGRAM FILES\IESPELL\IESPELL.DLL	Not necessary	This item represents extra menu item in your Tools menu in IE with a name 'ieSpell' and points to file 'C:\PROGRAM FILES\IESPELL\IESPELL.DLL'. If you do not want it to be there, fix this item.	Change status
O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\PROGRAM FILES\IESPELL\IESPELL.DLL	Not necessary	This item represents extra button in your IE toolbar without name and points to file 'C:\PROGRAM FILES\IESPELL\IESPELL.DLL'. If you do not want it to be there, fix this item.	Change status
O9 - Extra ''Tools'' menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\PROGRAM FILES\IESPELL\IESPELL.DLL	Not necessary	This item represents extra menu item in your Tools menu in IE with a name 'ieSpell Options' and points to file 'C:\PROGRAM FILES\IESPELL\IESPELL.DLL'. If you do not want it to be there, fix this item.	Change status
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\SSV.DLL	Not necessary	This item represents extra button in your IE toolbar without name and points to file 'C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\SSV.DLL'. If you do not want it to be there, fix this item.	Change status
O9 - Extra ''Tools'' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\SSV.DLL	Not necessary	This item represents extra menu item in your Tools menu in IE with a name 'Sun Java Console' and points to file 'C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\SSV.DLL'. If you do not want it to be there, fix this item.	Change status
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm	Not necessary	This item represents extra button in your IE toolbar with a name 'Related' and points to file 'C:\WINDOWS\web\related.htm'. If you do not want it to be there, fix this item.	Change status
O9 - Extra ''Tools'' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm	Not necessary	This item represents extra menu item in your Tools menu in IE with a name 'Show &Related Links' and points to file 'C:\WINDOWS\web\related.htm'. If you do not want it to be there, fix this item.	Change status
O16 - DPF: {89D75D39-5531-47BA-9E4F-B346BA9C362C} - http://www.callwave.com/include/cab/CWDL_DownLoad.CAB	Questionable	Are you using an ActiveX object with no name located in 'http://www.callwave.com/include/cab/CWDL_DownLoad.CAB'? If not, fix this item.	Change status
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20031216/qtinstall .info.apple.com/mickey/us/win/QuickTimeInstaller.exe	Questionable	Are you using an ActiveX object with no name located in 'http://a1540.g.akamai.net/7/1540/52/20031216/qtinstall.info .apple.com/mickey/us/win/QuickTimeInstaller.exe'? If not, fix this item.	Change status
O16 - DPF: {E504EE6E-47C6-11D5-B8AB-00D0B78F3D48} - http://chat.yahoo.com/cab/yvwrctl.cab	Legitimate	Legitimate ActiveX item from site http://chat.yahoo.com/	Change status
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/20031216/qtinstall .info.apple.com/mickey/us/win/QuickTimeInstaller.exe	Questionable	Are you using an ActiveX object with no name located in 'http://a1540.g.akamai.net/7/1540/52/20031216/qtinstall.info .apple.com/mickey/us/win/QuickTimeInstaller.exe'? If not, fix this item.	Change status
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,90/mcinsctl.cab	Legitimate	Legitimate ActiveX item from site http://download.mcafee.com/	Change status
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,23/mcgdmgr.cab	Legitimate	Legitimate ActiveX item from site http://download.mcafee.com/	Change status
O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab	Questionable	Are you using an ActiveX object with no name located in 'http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab'? If not, fix this item.	Change status
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204	Legitimate	Legitimate ActiveX item from site http://go.microsoft.com/	Change status
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://upload.mediamax.com/Upload/XUpload.ocx	Questionable	Are you using an ActiveX object with a name 'Persits Software XUpload' located in 'http://upload.mediamax.com/Upload/XUpload.ocx'? If not, fix this item.	Change status
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB	Questionable	Are you using an ActiveX object with a name 'PCPitstop Utility' located in 'http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB'? If not, fix this item.	Change status

Compare spyware removers
Compare free products

HijackThis Log Analyzer Beta 2

Recommended software:

Malwarebytes Anti Malware

(91/100)

There are loads of malware removers on the net today and most of them are lightweight applications, which usually means they’re fast and don’t have many features. One such...

SpyHunter

(89/100)

SpyHunter is a quite simple, but yet highly effective spyware remover with an easy-to-use interface. This program is an excellent choice for users, who are not computer savvy, but...

Spyware Doctor

(87/100)

Spyware Doctor is a very powerful, but yet highly user-friendly spyware remover, made by PC Tools, reputable computer security experts. This product provides effective and easy-to-manage...

STOPzilla

(86/100)

STOPzilla is a powerful anti-spyware program that detects, blocks, and removes malicious software allowing users to surf the Web not worrying about spyware, Trojan horses, and viruses....

XoftSpySE Anti Spyware

(84/100)

XoftSpySE, an anti-spyware program made by ParetoLogic, Inc., is a simple, but effective on-demand scanner with the typical set of functions but very easy to install and use. Trial version...

Latest Spyware news:

• Carl A Someone signature loved by spammers
• State of Utah Reveals Why 780k People Records Were Stolen
• The iPhone And iPad Are Targets For Hackers
• Malicious tweets spread rogue AV infecting Android users
• Be aware about malware spread via hotel Wi-Fi connections
• SecureCloud Key Management Systems Released by Trend Micro
• Microsoft and Adobe Releases Critical Security Updates. Update Now!
• Internet Apocalypsis Upcoming - Prepare for DNSChanger Servers Closure
• Hacks Through Compromised Websites Increases Rapidly, Says Symantec
• Facebook judged for its privacy controls

Subscribe to news

Encyclopedia of parasites:

ErrorSmart 24/05/12
Windows Safety Maint... 24/05/12
Windows Multi Contro... 23/05/12
System Protection Tools 23/05/12
Redirect 22/05/12
Windows Secure Kit 2012 22/05/12
WeatherBug 21/05/12
Dugenpal 21/05/12
Komodola 21/05/12
SpyGraphica 20/05/12
Windows Private Shield 20/05/12
WinMaximizer 19/05/12
Windows Pro Safety R... 18/05/12
Stekct 18/05/12
Linfo 18/05/12
Wiarp 18/05/12
Farfli 18/05/12
Happili redirect 18/05/12
Vasport 17/05/12
SeekService.com 17/05/12

Library of files:

mrt.exe 23/05/12
taskeng.exe 23/05/12
mplayer.exe 14/04/12
ccApp.exe 20/03/12
guest.js 06/03/12
BCU.exe 20/02/12
pbupdate.exe 20/02/12
dumprep.exe 20/02/12
arp.exe 12/02/12
hero remote control.... 08/02/12

Archive of files
Archive of startup entries