Thread: AV Alerts: esentpr.dll
View Single Post
Old 12-31-2007, 05:24 AM   #3 (permalink)
relaxmore2006
Registered User
 
Join Date: Dec 2006
Posts: 21
OS: Win XP Pro (SP2)


Re: AV Alerts: esentpr.dll
Thank you for replying to my thread, I run DSS under your configuration and it worked.

The main results are below and the "extra.txt." has been attached.


**



Deckard's System Scanner v20071014.68
Run by Owner on 2007-12-31 12:19:56
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------



-- Last 4 Restore Point(s) --
4: 2007-12-31 12:18:31 UTC - RP4 - Deckard's System Scanner Restore Point
3: 2007-12-30 00:40:43 UTC - RP3 - System Checkpoint
2: 2007-12-27 23:18:22 UTC - RP2 - Deckard's System Scanner Restore Point
1: 2007-12-27 23:14:02 UTC - RP1 - System Checkpoint


Backed up registry hives.



-- HijackThis (run as Owner.exe) -----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:20:15, on 31/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\VMware\VMware Tools\vmacthlp.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\AppleOSSMgr.exe
C:\WINDOWS\system32\AppleTimeSrv.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\perfs.exe
C:\WINDOWS\system32\routing.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Parallels\Parallels Tools\toolsrv.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\IRW.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Parallels\Parallels Tools\SIA\sharedintapp.exe
C:\program files\powerstrip\pstrip.exe
C:\Program Files\Boot Camp\KbdMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Owner\desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Owner.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {7F6B0FFF-45C4-413A-B257-B411C8C8D0EB} - C:\WINDOWS\system32\esentpr.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Web assistant - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [IRW] C:\WINDOWS\system32\IRW.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Parallels Tools] C:\Program Files\Parallels\Parallels Tools\ParallelsToolsCenter.exe
O4 - HKLM\..\Run: [SharedInternetApplication] "C:\Program Files\Parallels\Parallels Tools\SIA\sharedintapp.exe" /start
O4 - HKLM\..\Run: [PowerStrip] c:\program files\powerstrip\pstrip.exe
O4 - HKLM\..\Run: [Apple_KbdMgr] C:\Program Files\Boot Camp\KbdMgr.exe
O4 - HKLM\..\Run: [VMware Tools] C:\Program Files\VMware\VMware Tools\VMwareTray.exe
O4 - HKLM\..\Run: [VMware User Process] C:\Program Files\VMware\VMware Tools\VMwareUser.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1197119252155
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/actives...ree/asinst.cab
O20 - Winlogon Notify: TPSvc - C:\WINDOWS\SYSTEM32\TPSvc.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Apple OS Switch Manager (AppleOSSMgr) - Unknown owner - C:\WINDOWS\system32\AppleOSSMgr.exe
O23 - Service: Apple Time Service (AppleTimeSrv) - Apple Inc. - C:\WINDOWS\system32\AppleTimeSrv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Parallels Coherence Service (cohrence) - Parallels Software International, Inc. - C:\Program Files\Parallels\Parallels Tools\cohrence.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: perfmons Service (perfmons) - Unknown owner - C:\WINDOWS\system32\perfs.exe
O23 - Service: Routing Service (Routing) - Unknown owner - C:\WINDOWS\system32\routing.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Parallels Tools Utility Service (toolsrv) - Parallels Software International, Inc. - C:\Program Files\Parallels\Parallels Tools\toolsrv.exe
O23 - Service: TP AutoConnect Service (TPAutoConnSvc) - ThinPrint GmbH - C:\Program Files\VMware\VMware Tools\TPAutoConnSvc.exe
O23 - Service: VMware Tools Service (VMTools) - VMware, Inc. - C:\Program Files\VMware\VMware Tools\VMwareService.exe
O23 - Service: VMware Physical Disk Helper Service - VMware, Inc. - C:\Program Files\VMware\VMware Tools\vmacthlp.exe

--
End of file - 8568 bytes

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 npaoelux - c:\windows\system32\drivers\ykxahxda.dat
R0 Vax347b - c:\windows\system32\drivers\vax347b.sys
R0 Vax347s - c:\windows\system32\drivers\vax347s.sys
R2 KeyAgent - c:\windows\system32\drivers\keyagent.sys <Not Verified; Apple Inc.; Boot Camp>
R2 MacHALDriver (Mac HAL) - c:\windows\system32\drivers\machaldriver.sys <Not Verified; Apple Inc.; >
R2 PrlTime (Parallels Time Synchronization Driver) - c:\windows\system32\drivers\prltime.sys

S1 PrlNP - c:\windows\system32\drivers\prlfs.sys <Not Verified; Parallels Software International, Inc.; Parallels Tools>
S2 prl_paravirt_32 (Parallels Paravirtualization Driver) - c:\windows\system32\drivers\prl_paravirt_32.sys <Not Verified; Parallels Software International, Inc.; Parallels Workstation 3.0>
S3 PCITG - c:\windows\system32\drivers\pcitg.sys <Not Verified; Parallels Software International, Inc.; Parallels Tools>
S3 prleth (Parallels Network Adapter) - c:\windows\system32\drivers\prleth.sys <Not Verified; Parallels Software International, Inc.; Parallels Workstation 3.0>
S3 PrlMouse (Parallels Mouse Synchronization Tool) - c:\windows\system32\drivers\prlmouse.sys <Not Verified; Parallels Software International, Inc.; Parallels Tools>
S3 PrlVideo - c:\windows\system32\drivers\prlvideo.sys <Not Verified; Parallels Software International, Inc.; Parallels Tools>
S3 SDTHOOK - c:\windows\system32\drivers\sdthook.sys <Not Verified; Panda Software; Panda® Antivirus>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
R2 perfmons (perfmons Service) - c:\windows\system32\perfs.exe
R2 Routing (Routing Service) - c:\windows\system32\routing.exe
R2 toolsrv (Parallels Tools Utility Service) - c:\program files\parallels\parallels tools\toolsrv.exe <Not Verified; Parallels Software International, Inc.; Parallels Tools>

S2 cohrence (Parallels Coherence Service) - "c:\program files\parallels\parallels tools\cohrence.exe" <Not Verified; Parallels Software International, Inc.; Parallels Tools>
S3 TPAutoConnSvc (TP AutoConnect Service) - "c:\program files\vmware\vmware tools\tpautoconnsvc.exe" <Not Verified; ThinPrint GmbH; TPAutoConnect>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Process Modules -------------------------------------------------------------

C:\WINDOWS\explorer.exe (pid 484)
2007-11-15 13:11:04 43008 --a------ C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll <Not Verified; Apple Inc.; iTunes>
2007-11-15 13:11:04 129536 --a------ C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll <Not Verified; Apple Inc.; iTunes>
2007-04-07 21:20:36 22776 --a------ C:\Program Files\PowerStrip\PShook.dll <Not Verified; EnTech Taiwan; PowerStrip>
2007-12-03 15:04:42 78848 --a------ C:\WINDOWS\system32\PRLNP.DLL
2007-09-20 18:34:58 129024 --a------ C:\Program Files\WinRAR\RarExt.dll
2007-12-03 15:02:18 434176 --a------ C:\Program Files\Parallels\Parallels Tools\PrlSAShellExt.dll <Not Verified; Parallels Software International, Inc.; Parallels Shared Applications Shell Extension>


-- Scheduled Tasks -------------------------------------------------------------

2007-12-31 12:14:08 412 --a------ C:\WINDOWS\Tasks\Symantec NetDetect.job
2007-12-08 13:05:26 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


-- Files created between 2007-11-30 and 2007-12-31 -----------------------------

2007-12-28 21:50:03 0 d-------- C:\Program Files\Rapget
2007-12-27 23:15:09 0 d-------- C:\Program Files\Trend Micro
2007-12-26 15:17:45 0 d-------- C:\Program Files\SopCast
2007-12-25 17:13:02 0 d-------- C:\Documents and Settings\Owner\Contacts
2007-12-25 17:10:17 0 d--hs---- C:\Program Files\Common Files\WindowsLiveInstaller
2007-12-25 17:10:09 0 d-------- C:\Program Files\Windows Live
2007-12-25 17:10:04 0 d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2007-12-25 13:35:42 0 d-------- C:\Documents and Settings\All Users\Application Data\Azureus
2007-12-25 13:35:37 0 d-------- C:\Documents and Settings\Owner\Application Data\Azureus
2007-12-25 13:34:32 0 d-------- C:\Program Files\Azureus
2007-12-20 19:44:18 44928 --a------ C:\WINDOWS\system32\drivers\SDTHOOK.SYS <Not Verified; Panda Software; Panda® Antivirus>
2007-12-20 19:43:51 8576 --a------ C:\WINDOWS\system32\drivers\rvsvtnmrjrcn.sys <Not Verified; Panda Software International; RKPavProc Driver>
2007-12-20 19:43:05 118784 --a------ C:\WINDOWS\system32\MSSTDFMT.DLL <Not Verified; Microsoft Corporation; MSSTDFMT Object Library>
2007-12-20 19:43:04 0 d-------- C:\Program Files\SpywareBlaster
2007-12-20 19:30:21 0 d-------- C:\WINDOWS\system32\ActiveScan
2007-12-20 18:39:04 0 d-------- C:\Program Files\Maxis
2007-12-20 18:37:03 535 --a------ C:\WINDOWS\eReg.dat
2007-12-20 15:17:21 0 d-------- C:\Program Files\SymNetDrv
2007-12-20 15:16:37 0 d-------- C:\Documents and Settings\NetworkService\Application Data\Symantec
2007-12-20 14:39:58 0 d-------- C:\Program Files\Norton Personal Firewall
2007-12-20 14:15:55 2397 --a------ C:\WINDOWS\system32\drivers\symlcbrd.sys
2007-12-20 14:15:52 0 d-------- C:\Program Files\Norton AntiVirus
2007-12-20 14:15:38 0 d-------- C:\Documents and Settings\Owner\Application Data\Symantec
2007-12-20 14:15:36 0 d-------- C:\Program Files\Common Files\Symantec Shared
2007-12-20 14:15:24 0 d-------- C:\Program Files\Symantec
2007-12-20 14:15:12 0 d-------- C:\Documents and Settings\All Users\Application Data\Symantec
2007-12-20 13:55:04 0 d-------- C:\Documents and Settings\LocalService\Application Data\VMware
2007-12-20 13:54:59 0 d-------- C:\Documents and Settings\Owner\Application Data\VMware
2007-12-19 13:00:18 0 d-------- C:\Documents and Settings\Owner\Application Data\Lavasoft
2007-12-19 13:00:10 0 d-------- C:\Program Files\Lavasoft
2007-12-19 12:48:42 0 d-------- C:\Documents and Settings\All Users\Application Data\VMware
2007-12-19 12:48:08 0 d-------- C:\Program Files\VMware
2007-12-19 12:47:18 364544 -ra------ C:\WINDOWS\system32\TPSvc.dll <Not Verified; ThinPrint GmbH; TPSvc>
2007-12-18 22:16:43 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-12-18 22:13:13 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg7
2007-12-18 00:18:58 0 d-------- C:\WINDOWS\system32\config
2007-12-13 16:24:09 32768 --a------ C:\WINDOWS\system32\routing.exe
2007-12-10 22:25:07 520192 -----n--- C:\WINDOWS\system32\ati2sgag.exe <Not Verified; ; ATI Smart>
2007-12-10 21:24:53 0 d-------- C:\Documents and Settings\Owner\Application Data\ATI
2007-12-10 21:23:55 0 d-------- C:\Program Files\ATI Technologies
2007-12-10 21:23:44 0 d-------- C:\AMD
2007-12-10 21:20:52 0 d--hs---- C:\WINDOWS\CSC
2007-12-10 21:14:32 0 d-------- C:\Program Files\PowerStrip
2007-12-10 17:08:13 0 d-------- C:\Desktop
2007-12-10 17:08:13 0 d--h----- C:\.TemporaryItems
2007-12-09 18:34:24 0 d-------- C:\Documents and Settings\Owner\Application Data\WinRAR
2007-12-09 12:10:20 0 d-------- C:\Program Files\EA GAMES
2007-12-09 12:10:19 442368 -ra------ C:\WINDOWS\system32\vp6vfw.dll <Not Verified; On2.com; On2_VP6>
2007-12-09 11:51:59 5248 --a------ C:\WINDOWS\system32\drivers\Vax347s.sys
2007-12-09 11:51:59 159616 --a------ C:\WINDOWS\system32\drivers\Vax347b.sys
2007-12-09 11:51:58 0 d-------- C:\Program Files\Alcohol Soft
2007-12-09 11:46:07 0 d-------- C:\Documents and Settings\Owner\Application Data\Macromedia
2007-12-09 11:46:07 0 d-------- C:\Documents and Settings\Owner\Application Data\Adobe
2007-12-09 11:45:51 1158 --a------ C:\WINDOWS\mozver.dat
2007-12-09 11:42:48 0 d-------- C:\WINDOWS\network diagnostic
2007-12-09 11:40:54 0 --a------ C:\WINDOWS\nsreg.dat
2007-12-09 11:40:53 0 d-------- C:\Documents and Settings\Owner\Application Data\Mozilla
2007-12-09 11:40:49 0 d-------- C:\Documents and Settings\NetworkService\Application Data\Macromedia
2007-12-09 11:27:12 0 d-------- C:\Program Files\MSXML 6.0
2007-12-09 11:23:48 19456 --a------ C:\WINDOWS\system32\drivers\ykxahxda.dat
2007-12-09 00:23:20 0 d-------- C:\Program Files\MSBuild
2007-12-09 00:21:19 0 d-------- C:\WINDOWS\system32\XPSViewer
2007-12-09 00:20:58 0 d-------- C:\Program Files\Reference Assemblies
2007-12-09 00:20:15 0 d-------- C:\c87d1ed0ff7c4f3bae
2007-12-09 00:17:02 0 d-------- C:\Program Files\Windows Media Connect 2
2007-12-09 00:16:24 0 d-------- C:\WINDOWS\system32\LogFiles
2007-12-09 00:16:24 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2007-12-09 00:15:47 84992 --a------ C:\WINDOWS\system32\esentpr.dll
2007-12-09 00:13:15 0 d-------- C:\WINDOWS\RegisteredPackages
2007-12-09 00:11:07 0 d-------- C:\WINDOWS\system32\URTTemp
2007-12-08 23:59:07 40 --a------ C:\WINDOWS\system32\drmgs.sys
2007-12-08 23:59:06 45056 --a------ C:\WINDOWS\system32\Indt2.sys <Not Verified; a; Microsoft Internet Explorer>
2007-12-08 23:59:04 253440 --a------ C:\WINDOWS\system32\ndt2.sys
2007-12-08 23:58:23 0 d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2007-12-08 13:43:09 0 d-a------ C:\File Transfer
2007-12-08 13:39:06 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2007-12-08 13:32:48 0 d--h----- C:\WINDOWS\system32\GroupPolicy
2007-12-08 13:32:47 0 d-------- C:\Documents and Settings\Owner\Application Data\Parallels
2007-12-08 13:32:29 274519 --a------ C:\WINDOWS\system32\wined3d.dll
2007-12-08 13:32:29 27136 --a------ C:\WINDOWS\system32\PrlVideo.dll <Not Verified; Parallels Software International, Inc.; Parallels Tools>
2007-12-08 13:32:29 143360 --a------ C:\WINDOWS\system32\PrlIcd32.dll <Not Verified; Parallels Software International, Inc.; Parallels Tools>
2007-12-08 13:32:29 53332 --a------ C:\WINDOWS\system32\PrlD3d9.dll <Not Verified; Microsoft Corporation; Wine>
2007-12-08 13:32:29 49236 --a------ C:\WINDOWS\system32\PrlD3d8.dll <Not Verified; Microsoft Corporation; Wine>
2007-12-08 13:32:29 16384 --a------ C:\WINDOWS\system32\drivers\PrlVideo.sys <Not Verified; Parallels Software International, Inc.; Parallels Tools>
2007-12-08 13:32:29 2546 --a------ C:\WINDOWS\system32\drivers\prltime.sys
2007-12-08 13:32:29 14953 --a------ C:\WINDOWS\system32\drivers\prl_paravirt_32.sys <Not Verified; Parallels Software International, Inc.; Parallels Workstation 3.0>
2007-12-08 13:32:29 15232 --a------ C:\WINDOWS\system32\drivers\pcitg.sys <Not Verified; Parallels Software International, Inc.; Parallels Tools>
2007-12-08 13:32:28 78848 --a------ C:\WINDOWS\system32\PRLNP.DLL
2007-12-08 13:32:28 5337 --a------ C:\WINDOWS\system32\drivers\PrlMouse.sys <Not Verified; Parallels Software International, Inc.; Parallels Tools>
2007-12-08 13:32:28 138368 --a------ C:\WINDOWS\system32\drivers\PRLFS.SYS <Not Verified; Parallels Software International, Inc.; Parallels Tools>
2007-12-08 13:32:28 6112 --a------ C:\WINDOWS\system32\drivers\prleth.sys <Not Verified; Parallels Software International, Inc.; Parallels Workstation 3.0>
2007-12-08 13:32:26 0 d-------- C:\Program Files\Parallels
2007-12-08 13:29:40 49152 -----n--- C:\WINDOWS\igt.exe
2007-12-08 13:15:37 0 d--h----- C:\.Spotlight-V100
2007-12-08 13:15:35 0 d--h----- C:\.Trashes
2007-12-08 13:12:05 0 d-------- C:\WINDOWS\system32\PreInstall
2007-12-08 13:12:04 0 d--h----- C:\WINDOWS\$hf_mig$
2007-12-08 13:10:43 0 d--hs---- C:\Recycled
2007-12-08 13:08:07 0 d-------- C:\Documents and Settings\Owner\Application Data\Apple Computer
2007-12-08 13:08:05 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-12-08 13:07:59 0 d-------- C:\Program Files\iPod
2007-12-08 13:07:56 0 d-------- C:\Program Files\iTunes
2007-12-08 13:07:38 0 d-------- C:\Program Files\QuickTime
2007-12-08 13:07:38 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-12-08 13:07:17 0 d--hs---- C:\Documents and Settings\Owner\UserData
2007-12-08 1358 0 d-------- C:\Program Files\Common Files\Apple
2007-12-08 13:05:57 0 d-------- C:\WINDOWS\pss
2007-12-08 13:05:22 0 d-------- C:\Program Files\Apple Software Update
2007-12-08 13:02:35 0 d-------- C:\WINDOWS\system32\Lang
2007-12-08 13:01:16 12 --a------ C:\WINDOWS\bthservsdp.dat
2007-12-08 13:00:08 0 d-------- C:\Program Files\Intel
2007-12-08 12:59:48 0 d-------- C:\Program Files\Boot Camp
2007-12-08 12:59:07 0 d-------- C:\WINDOWS\system32\ReinstallBackups
2007-12-08 12:58:28 0 d-------- C:\Program Files\Motorola
2007-12-08 12:58:24 49152 --a------ C:\WINDOWS\system32\ChCfg.exe
2007-12-08 12:58:09 0 d-------- C:\WINDOWS\system32\RTCOM
2007-12-08 12:58:04 0 d-------- C:\Program Files\Realtek
2007-12-08 12:58:03 520192 --a------ C:\WINDOWS\RtlExUpd.dll <Not Verified; Realtek Semiconductor Corp.; RtlExUpd Dynamic Link Library>
2007-12-08 12:58:03 315392 --a------ C:\WINDOWS\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
2007-12-08 12:57:37 0 d-------- C:\Program Files\SigmaTel
2007-12-08 12:57:05 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-12-08 12:56:48 0 d-------- C:\Program Files\Common Files\InstallShield
2007-12-08 12:56:30 0 d-------- C:\Intel
2007-12-08 12:56:03 0 d-------- C:\Program Files\DIFX
2007-12-08 12:56:02 0 d-------- C:\WINDOWS\system32\DRVSTORE
2007-12-08 12:55:55 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple
2007-12-08 00:12:01 0 d-------- C:\Documents and Settings\Owner\Application Data\Identities
2007-12-08 00:11:56 0 d--h----- C:\Documents and Settings\Owner\Templates
2007-12-08 00:11:56 0 dr------- C:\Documents and Settings\Owner\Start Menu
2007-12-08 00:11:56 0 dr-h----- C:\Documents and Settings\Owner\SendTo
2007-12-08 00:11:56 0 dr-h----- C:\Documents and Settings\Owner\Recent
2007-12-08 00:11:56 0 d--h----- C:\Documents and Settings\Owner\PrintHood
2007-12-08 00:11:56 0 d--h----- C:\Documents and Settings\Owner\NetHood
2007-12-08 00:11:56 0 dr------- C:\Documents and Settings\Owner\My Documents
2007-12-08 00:11:56 0 dr------- C:\Documents and Settings\Owner\Favorites
2007-12-08 00:11:56 0 d-------- C:\Documents and Settings\Owner\Desktop
2007-12-08 00:11:56 0 d--hs---- C:\Documents and Settings\Owner\Cookies
2007-12-08 00:11:56 0 dr-h----- C:\Documents and Settings\Owner\Application Data
2007-12-08 00:11:55 3407872 --ah----- C:\Documents and Settings\Owner\NTUSER.DAT
2007-12-08 00:11:55 0 d--h----- C:\Documents and Settings\Owner\Local Settings
2007-12-08 00:10:56 0 d--hs---- C:\System Volume Information
2007-12-08 00:10:55 0 d-------- C:\WINDOWS\SoftwareDistribution
2007-12-08 00:10:54 0 d---s---- C:\WINDOWS\system32\Microsoft
2007-12-08 00:10:54 0 d-------- C:\WINDOWS\Prefetch
2007-12-08 00:10:53 1572864 --ah----- C:\Documents and Settings\LocalService\NTUSER.DAT
2007-12-08 00:10:53 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
2007-12-08 00:10:53 0 d--hs---- C:\Documents and Settings\LocalService\Cookies
2007-12-08 00:10:53 0 d-------- C:\Documents and Settings\LocalService\Application Data
2007-12-08 00:10:53 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
2007-12-08 00:10:41 1572864 --ah----- C:\Documents and Settings\NetworkService\NTUSER.DAT
2007-12-08 00:10:41 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
2007-12-08 00:10:41 0 d--hs---- C:\Documents and Settings\NetworkService\Cookies
2007-12-08 00:10:41 0 d-------- C:\Documents and Settings\NetworkService\Application Data
2007-12-08 00:10:41 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
2007-12-08 00:07:49 0 d-------- C:\WINDOWS\system32\xircom
2007-12-08 00:07:49 0 d-------- C:\Program Files\microsoft frontpage
2007-12-08 00:07:43 225280 ---h----- C:\Documents and Settings\Default User\NTUSER.DAT
2007-12-08 00:07:39 0 -rahs---- C:\MSDOS.SYS
2007-12-08 00:07:39 0 -rahs---- C:\IO.SYS
2007-12-08 00:07:39 0 --a------ C:\CONFIG.SYS
2007-12-08 00:07:39 0 --a------ C:\AUTOEXEC.BAT
2007-12-08 00:07:02 0 d--hs---- C:\Documents and Settings\All Users\DRM
2007-12-08 0055 0 dr------- C:\WINDOWS\Offline Web Pages
2007-12-08 0055 0 d---s---- C:\WINDOWS\Downloaded Program Files
2007-12-08 0048 0 d--h----- C:\Program Files\WindowsUpdate
2007-12-08 0028 0 d-------- C:\WINDOWS\system32\DirectX
2007-12-08 00:05:30 0 d---s---- C:\WINDOWS\Tasks
2007-12-08 00:05:28 0 d-------- C:\Program Files\Common Files\MSSoap
2007-12-08 00:05:22 0 d-------- C:\WINDOWS\srchasst
2007-12-08 00:05:21 0 d-------- C:\WINDOWS\system32\Macromed
2007-12-08 00:05:10 0 d-------- C:\Program Files\Movie Maker
2007-12-08 00:04:56 0 d-------- C:\WINDOWS\system32\Restore
2007-12-08 00:04:15 21640 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-12-08 00:04:01 0 d-------- C:\WINDOWS\Registration
2007-12-08 00:03:57 0 d-------- C:\Program Files\Online Services
2007-12-08 00:03:51 0 d-------- C:\Program Files\Messenger
2007-12-08 00:03:46 0 d-------- C:\Program Files\MSN Gaming Zone
2007-12-08 00:02:38 0 d-------- C:\Program Files\Windows NT
2007-12-08 00:02:33 0 d-------- C:\WINDOWS\system32\MsDtc
2007-12-08 00:02:30 0 d-------- C:\WINDOWS\system32\Com
2007-12-07 23:54:20 0 d--hs---- C:\WINDOWS\Installer
2007-12-07 23:54:20 0 d-------- C:\Program Files\Common Files\ODBC
2007-12-07 23:54:16 0 dr------- C:\Program Files
2007-12-07 23:54:16 0 d-------- C:\Program Files\Common Files
2007-12-07 23:54:16 0 d-------- C:\Program Files\Common Files\SpeechEngines
2007-12-07 23:53:44 0 d--h----- C:\Documents and Settings\Default User\Templates
2007-12-07 23:53:44 0 dr------- C:\Documents and Settings\Default User\Start Menu
2007-12-07 23:53:44 0 dr-h----- C:\Documents and Settings\Default User\SendTo
2007-12-07 23:53:44 0 d--h----- C:\Documents and Settings\Default User\Recent
2007-12-07 23:53:44 0 d--h----- C:\Documents and Settings\Default User\PrintHood
2007-12-07 23:53:44 0 d--h----- C:\Documents and Settings\Default User\NetHood
2007-12-07 23:53:44 0 d-------- C:\Documents and Settings\Default User\My Documents
2007-12-07 23:53:44 0 dr-h----- C:\Documents and Settings\Default User\Local Settings
2007-12-07 23:53:44 0 d-------- C:\Documents and Settings\Default User\Favorites
2007-12-07 23:53:44 0 d-------- C:\Documents and Settings\Default User\Desktop
2007-12-07 23:53:44 0 d---s---- C:\Documents and Settings\Default User\Cookies
2007-12-07 23:53:44 0 d--h----- C:\Documents and Settings\All Users\Templates
2007-12-07 23:53:44 0 dr------- C:\Documents and Settings\All Users\Start Menu
2007-12-07 23:53:44 0 d-------- C:\Documents and Settings\All Users\Favorites
2007-12-07 23:53:44 0 dr------- C:\Documents and Settings\All Users\Documents
2007-12-07 23:53:44 0 d-------- C:\Documents and Settings\All Users\Desktop
2007-12-07 23:53:31 0 d-------- C:\WINDOWS\system32\CatRoot2
2007-12-07 23:53:31 0 d-------- C:\WINDOWS\system32\CatRoot
2007-12-07 23:53:26 0 dr-h----- C:\Documents and Settings\Default User\Application Data
2007-12-07 23:53:26 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
2007-12-07 23:53:25 0 dr-h----- C:\Documents and Settings\All Users\Application Data
2007-12-07 23:53:25 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2007-12-07 23:53:04 0 d-------- C:\Documents and Settings
2007-12-07 23:44:24 0 d-------- C:\WINDOWS
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\WinSxS
2007-12-07 23:44:24 0 dr------- C:\WINDOWS\Web
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\twain_32
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\wins
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\wbem
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\usmt
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\spool
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\ShellExt
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\Setup
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\ras
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\oobe
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\npp
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\mui
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\inetsrv
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\IME
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\icsxml
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\ias
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\export
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\drivers
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\drivers\etc
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\drivers\disdn
2007-12-07 23:44:24 0 dr-hs---- C:\WINDOWS\system32\dllcache
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\dhcp
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\3com_dmi
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\3076
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\2052
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1054
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1042
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1041
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1037
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1033
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1031
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1028
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system32\1025
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\system
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\security
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Resources
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\repair
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Provisioning
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\PeerNet
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\pchealth
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\mui
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\msapps
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\msagent
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Media
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\java
2007-12-07 23:44:24 0 d--h----- C:\WINDOWS\inf
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\ime
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Help
2007-12-07 23:44:24 0 dr--s---- C:\WINDOWS\Fonts
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\ehome
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Driver Cache
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Debug
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Cursors
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Connection Wizard
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\Config
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\AppPatch
2007-12-07 23:44:24 0 d-------- C:\WINDOWS\addins


-- Find3M Report ---------------------------------------------------------------

2007-12-07 23:53:46 62 --ahs---- C:\Documents and Settings\Owner\Application Data\desktop.ini
2007-10-11 09:55:10 88576 --a------ C:\WINDOWS\system32\infocardapi.dll <Not Verified; Microsoft Corporation; Microsoft® .NET Framework>
2007-10-09 12:58:20 16896 --a------ C:\WINDOWS\system32\tswpfwrp.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-10-08 20:56:38 6656 --a------ C:\WINDOWS\system32\SwissA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6144 --a------ C:\WINDOWS\system32\SwedishA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6656 --a------ C:\WINDOWS\system32\SpanishA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 5632 --a------ C:\WINDOWS\system32\RussianA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6144 --a------ C:\WINDOWS\system32\PortuguA.dll <Not Verified; Apple; >
2007-10-08 20:56:38 7168 --a------ C:\WINDOWS\system32\PolishA.dll <Not Verified; Apple; >
2007-10-08 20:56:38 6144 --a------ C:\WINDOWS\system32\NorwayA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 5632 --a------ C:\WINDOWS\system32\ItalianA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6144 --a------ C:\WINDOWS\system32\GermanA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6144 --a------ C:\WINDOWS\system32\FrenchA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6144 --a------ C:\WINDOWS\system32\FinnishA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6656 --a------ C:\WINDOWS\system32\DutchA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6144 --a------ C:\WINDOWS\system32\DanishA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 6656 --a------ C:\WINDOWS\system32\CanadaA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 5632 --a------ C:\WINDOWS\system32\BritishA.dll <Not Verified; Apple Inc.; >
2007-10-08 20:56:38 7168 --a------ C:\WINDOWS\system32\BelgiumA.dll <Not Verified; Apple Inc.; >


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7F6B0FFF-45C4-413A-B257-B411C8C8D0EB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BluetoothAuthenticationAgent"="bthprops.cpl" [04/08/2004 12:00 C:\WINDOWS\system32\bthprops.cpl]
"IRW"="C:\WINDOWS\system32\IRW.exe" [08/10/2007 20:56]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [14/11/2007 23:43]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [15/11/2007 13:11]
"Parallels Tools"="C:\Program Files\Parallels\Parallels Tools\ParallelsToolsCenter.exe" [03/12/2007 15:02]
"SharedInternetApplication"="C:\Program Files\Parallels\Parallels Tools\SIA\sharedintapp.exe" [03/12/2007 15:00]
"PowerStrip"="c:\program files\powerstrip\pstrip.exe" [14/07/2007 09:35]
"Apple_KbdMgr"="C:\Program Files\Boot Camp\KbdMgr.exe" [08/10/2007 22:06]
"VMware Tools"="C:\Program Files\VMware\VMware Tools\VMwareTray.exe" [19/12/2007 12:47]
"VMware User Process"="C:\Program Files\VMware\VMware Tools\VMwareUser.exe" [19/12/2007 12:47]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [06/09/2003 07:20]
"RTHDCPL"="RTHDCPL.EXE" [06/11/2007 10:50 C:\WINDOWS\RTHDCPL.exe]
"Alcmtr"="ALCMTR.EXE" [03/05/2005 18:43 C:\WINDOWS\Alcmtr.exe]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [04/08/2004 12:00]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"Symantec NetDriver Warning"=C:\PROGRA~1\SYMNET~1\SNDWarn.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\TPSvc]
TPSvc.dll 19/12/2007 12:47 364544 C:\WINDOWS\system32\TPSvc.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NAV CfgWiz]
C:\Program Files\Common Files\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs BthServ




-- Hosts -----------------------------------------------------------------------

127.0.0.1 .psf
127.0.0.1 007guard.com
127.0.0.1 www.007guard.com
127.0.0.1 008i.com
127.0.0.1 008k.com
127.0.0.1 www.008k.com
127.0.0.1 00hq.com
127.0.0.1 www.00hq.com
127.0.0.1 010402.com
127.0.0.1 032439.com

7695 more entries in hosts file.


-- End of Deckard's System Scanner: finished at 2007-12-31 12:20:58 ------------
Attached Files
File Type: txt extra.txt (13.3 KB, 3 views)
relaxmore2006 is offline