User Tag List

Urgent Checkup

This is a discussion on Urgent Checkup within the Inactive Malware Help Topics forums, part of the Tech Support Forum category. Recently had a friend over who installed some software mainly limewire and he was downloading i'm not sure what all


 
 
Thread Tools Search this Thread
Old 12-02-2006, 07:39 PM   #1
Registered Member
 
Join Date: Oct 2006
Posts: 76
OS: Windows XP



Recently had a friend over who installed some software mainly limewire and he was downloading i'm not sure what all he downloaded but I removed most of it and uninstalled limewire.

Logfile of HijackThis v1.99.1
Scan saved at 10:37:18 PM, on 12/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\msasvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ishost.exe
C:\WINDOWS\system32\ismini.exe
C:\Program Files\Common Files\{50288497-0BB0-1033-0115-040502080001}\Update.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\HJT\Deckard.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\control.exe
C:\WINDOWS\system32\control.exe
C:\WINDOWS\system32\rundll32.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.insightbb.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://aimtoday.aol.com/segmentation...97&service=AIM
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Insight Broadband
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = sas.r31.insightbb.com:8000
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.r31.insightbb.com
R3 - URLSearchHook: (no name) - {3C7B88F1-191B-48CD-46EF-46918CD689C5} - C:\WINDOWS\system32\mzlg.dll
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {275F85D6-271F-7E44-2D01-066AC9C58FA3} - C:\WINDOWS\system32\zqpkaic.dll
O2 - BHO: (no name) - {3C7B88F1-191B-48CD-46EF-46918CD689C5} - C:\WINDOWS\system32\mzlg.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {9B0C7A02-A17A-4C81-BD7D-30A622701C36} - C:\WINDOWS\system32\wvutrpo.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{30288~1\888Bar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{30288~1\888Bar.dll
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global User Startup: Logitech SetPoint.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.insightbb.com
O16 - DPF: Animal Ark by pogo - https://www.pogo.com/applet-6.5.2.26/...imal-en_US.cab
O16 - DPF: Blackjack by pogo - https://game1.pogo.com/applet-6.5.2.3...jack-en_US.cab
O16 - DPF: ChatSpace Full Java Client 3.1.0.235 - https://205.177.13.60/Java/cfs31235.cab
O16 - DPF: Checkers by pogo - https://game1.pogo.com/applet-6.5.3.3...kers-en_US.cab
O16 - DPF: Euchre by pogo - https://game1.pogo.com/applet-6.5.2.2...chre-en_US.cab
O16 - DPF: Fortune Bingo by pogo - https://game1.pogo.com/applet-6.5.1.3...ingo-en_US.cab
O16 - DPF: Hearts by pogo - https://game1.pogo.com/applet-6.5.3.3...arts-en_US.cab
O16 - DPF: High Stakes Pool by pogo - https://game1.pogo.com/applet-6.3.0.5...-ob-assets.cab
O16 - DPF: Jigsaw Detective by pogo - https://game1.pogo.com/applet-6.5.3.3...gsaw-en_US.cab
O16 - DPF: JT's Blocks - https://download.games.yahoo.com/game...s/y/blt1_x.cab
O16 - DPF: Jungle Gin by pogo - https://game1.pogo.com/applet-6.5.2.33/gin/gin-en_US.cab
O16 - DPF: Lottso by pogo - https://game1.pogo.com/applet-6.5.1.3...ttso-en_US.cab
O16 - DPF: Mah Jong Garden by pogo - https://game1.pogo.com/applet-6.5.3.3...jong-en_US.cab
O16 - DPF: Penguin Blocks by pogo - https://game1.pogo.com/applet-6.5.1.3...uins-en_US.cab
O16 - DPF: Perfect Pair Solitaire by pogo - https://game1.pogo.com/applet-6.5.3.3...heel-en_US.cab
O16 - DPF: Phlinx by pogo - https://game1.pogo.com/applet-6.5.3.3...nger-en_US.cab
O16 - DPF: Pirate's Gold by pogo - https://game1.pogo.com/applet-6.5.3.3...gold-en_US.cab
O16 - DPF: PoppaZoppa by pogo - https://game1.pogo.com/applet-6.5.2.3...oppa-en_US.cab
O16 - DPF: Poppit by pogo - https://game1.pogo.com/applet-6.5.2.2...pit2-en_US.cab
O16 - DPF: QWERTY by pogo - https://game1.pogo.com/applet-6.5.2.2...ares-en_US.cab
O16 - DPF: Squelchies by pogo - https://game1.pogo.com/applet-6.5.3.3...hies-en_US.cab
O16 - DPF: Stax by pogo - https://game1.pogo.com/applet-6.5.3.3...stax-en_US.cab
O16 - DPF: Sweet Tooth TM by pogo - https://game1.pogo.com/applet-6.5.1.3...ooth-en_US.cab
O16 - DPF: Tri-Peaks by pogo - https://game1.pogo.com/applet-6.5.3.3...eaks-en_US.cab
O16 - DPF: Tumble Bees by pogo - https://game1.pogo.com/applet-6.5.3.3...mbee-en_US.cab
O16 - DPF: Wonderland Memories by pogo - https://game1.pogo.com/applet-6.5.3.3...ries-en_US.cab
O16 - DPF: Word Whomp Whackdown by pogo - https://game1.pogo.com/applet-6.5.3.3...down-en_US.cab
O16 - DPF: World Class Solitaire by pogo - https://game1.pogo.com/applet-6.5.3.3...lass-en_US.cab
O16 - DPF: Yahoo! Checkers - https://download.games.yahoo.com/game...ts/y/kt4_x.cab
O16 - DPF: Yahoo! Chess - https://download.games.yahoo.com/game...ts/y/ct2_x.cab
O16 - DPF: Yahoo! Chinese Checkers - https://download.games.yahoo.com/game...s/y/cct0_x.cab
O16 - DPF: Yahoo! Dots - https://download.games.yahoo.com/game...s/y/dtt1_x.cab
O16 - DPF: Yahoo! Pool 2 - https://download.games.yahoo.com/game...s/y/pote_x.cab
O16 - DPF: Yahoo! Tic-Tac-Toe - https://download.games.yahoo.com/game...ts/y/ft3_x.cab
O16 - DPF: {01111F00-3E00-11D2-8470-0060089874ED} - https://www.dell4me.com/sdccommon/download/tgctlins.cab
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - https://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - https://www.ipix.com/viewers/ipixx.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - https://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - https://us.dl1.yimg.com/download.yaho...st20040510.cab
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher Control) - https://game1.pogo.com/cdl/launcher/P...rInstaller.CAB
O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.microsoft.com/OAS/ActiveX/odc.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - https://www.fileplanet.com/fpdlmgr/ca...C_1_0_0_44.cab
O16 - DPF: {4E888414-DB8F-11D1-9CD9-00C04F98436A} (Microsoft.WinRep) - https://webresponse.one.microsoft.co...veX/winrep.cab
O16 - DPF: {5242A5A1-EF1E-11D5-B3EE-0050DAC5EBD0} (printQuick Browser Add In (Ver4)) - https://www.pqpc.com/plugin/axversion...tquick1410.cab
O16 - DPF: {52A5CD24-64C6-4BAF-A4EC-4D13F451763F} - https://www.cuworld.com/PIC/inner_pi...es/CUworld.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - https://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - https://aolsvc.aol.com/onlinegames/tr...2.1.0.0.48.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - https://update.microsoft.com/microsof...?1125589416921
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - https://launch.gamespyarcade.com/soft...ch/alaunch.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://a840.g.akamai.net/7/840/537/2...ll/xscan53.cab
O16 - DPF: {75565ED2-1560-4F15-B841-20358DE6A0D1} (ImageControl Class) - https://c.ancestry.com/cab/ImageViewer/MFImgVwr.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - https://www.nick.com/common/groove/gx/GrooveAX27.cab
O16 - DPF: {7D731A83-6C80-4EA4-9646-5E06A0513274} (Sandlot Loader Control) - https://www.shockwave.com/content/bal...webinstall.cab
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - https://zone.msn.com/bingame/luxr/def...jolauncher.cab
O16 - DPF: {83EF1847-D835-490B-8D9D-90B2987D66E8} - https://pictures.aolcdn.com/ap/Resour...er.9.3.2.1.cab
O16 - DPF: {87056D28-9730-4A47-B9F9-7E890B62C58A} (WildfireActiveXHost Class) - https://www.shockwave.com/content/tumblebugs/axhost.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - https://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} - https://www.installengine.com/engine/isetup.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - https://acs.pandasoftware.com/actives...ree/asinst.cab
O16 - DPF: {9E17A5F9-2B9C-4C66-A592-199A4BA1FBC8} - https://pictures04.aim.com/ygp/aol/pl...IM.9.5.1.8.cab
O16 - DPF: {9E6C7461-FE4A-41A9-9D35-7468796CF9E7} - https://threatlevel.pcsecurityshield....rol/avxnew.dll
O16 - DPF: {A7E092C3-692A-11D0-A7E5-08002B322F3B} (WebResponseAttachments Control) - https://webresponse.one.microsoft.co...X/FileXfer.cab
O16 - DPF: {ABB660B6-6694-407B-950A-EDBA5A159722} (DVC Download Control) - https://www.shockwave.com/content/dav...%20Control.cab
O16 - DPF: {AFDD01B0-7ABB-11D9-9669-0800200C9A66} (MFInstall Class) - https://c.ancestry.com/MFInstall/MFInstall.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - https://zone.msn.com/binFramework/v10...o.cab34246.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - https://us.dl1.yimg.com/download.yaho...tocomplete.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - https://games-dl.real.com/gameconsole...rcadeRdxIE.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - https://aolsvc.aol.com/onlinegames/iw...amesplayer.cab
O16 - DPF: {C77FB8C0-8B6D-440E-AC26-2BD39E97E8F2} (SpdTCtl Class) - https://speedtest.adelphia.net/custom...ESTACTIVEX.CAB
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - https://www.shockwave.com/content/fee...utLauncher.cab
O16 - DPF: {D68217F4-1DF9-45C1-BFA6-61DBD5464527} (Genealogy Browser) - https://66.119.139.74/cabs/zinst.cab
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} - https://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} (TikGames Online Control) - https://zone.msn.com/bingame/shpo/default/shapo.cab
O16 - DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} (SCEWebLauncherCtl Object) - https://zone.msn.com/bingame/hsol/def...ebLauncher.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - https://clubgames.pogo.com/online2/po...h.1.0.0.80.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - https://www.shockwave.com/content/bon...loader_v10.cab
O16 - DPF: {E5168F0C-8591-11D4-BCDF-006008B7FEA4} (PWLNINST Control) - https://www.platoweb01.com/pathways/p...b/pwlninst.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} - https://fdl.msn.com/zone/datafiles/heartbeat.cab
O16 - DPF: {EDFCDAF5-95D9-40E9-BBE6-10C33190C3EF} - https://zone.msn.com/bingame/rmcb/default/RumbleCube.cab
O16 - DPF: {F54C1137-5E34-4B95-95A5-BA56D4D8D743} (Secure Delivery) - https://www.gamespot.com/KDX/kdx.cab
O16 - DPF: {F5820AD3-9B20-423E-B2AA-7AF2B4055746} - https://download.paltalk.com/download/0.x/regdload.cab
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winccf32 - C:\WINDOWS\SYSTEM32\winccf32.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O20 - Winlogon Notify: wvutrpo - C:\WINDOWS\SYSTEM32\wvutrpo.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Microsoft authenticate service (MsaSvc) - Unknown owner - C:\WINDOWS\system32\msasvc.exe
O23 - Service: Sandra Service (SandraTheSrv) - Unknown owner - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcSandraSrv.exe (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
dking131504 is offline  
Sponsored Links
Advertisement
 
Old 12-02-2006, 08:07 PM   #2
Registered Member
 
Join Date: Oct 2006
Posts: 76
OS: Windows XP


Ad-Aware SE Build 1.06r1
Logfile Created on:Saturday, December 02, 2006 10:46:52 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R135 27.11.2006
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Adware.MyToolbar(TAC index:3):6 total references
MRU List(TAC index:0):19 total references
Tracking Cookie(TAC index:3):79 total references
WebHancer(TAC index:9):1 total references
Win32.TrojanDownloader.Swizzor.br(TAC index:8):1 total references
Win32.Trojandownloader.Zlob(TAC index:10):2 total references
VirusBurst(TAC index:3):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


12-2-2006 10:46:52 PM - Scan started. (Full System Scan)

MRU List Object Recognized!
Location: : C:\Documents and Settings\Devin's\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\mediaplayer\player\recentfilelist
Description : list of recently used files in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\nico mak computing\winzip\filemenu
Description : winzip recently used archives


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-21-398581779-505398890-3885350620-1024\software\winrar\dialogedithistory\extrpath
Description : winrar "extract-to" history


Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 368
ThreadCreationTime : 12-3-2006 3:35:45 AM
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 416
ThreadCreationTime : 12-3-2006 3:35:46 AM
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\SYSTEM32\
ProcessID : 444
ThreadCreationTime : 12-3-2006 3:35:48 AM
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 488
ThreadCreationTime : 12-3-2006 3:35:49 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 500
ThreadCreationTime : 12-3-2006 3:35:49 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 712
ThreadCreationTime : 12-3-2006 3:35:50 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 784
ThreadCreationTime : 12-3-2006 3:35:51 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 872
ThreadCreationTime : 12-3-2006 3:35:51 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1132
ThreadCreationTime : 12/3/2006 3:36:00 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [msasvc.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1188
ThreadCreationTime : 12/3/2006 3:36:00 AM
BasePriority : Normal


#:11 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1224
ThreadCreationTime : 12/3/2006 3:36:00 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:12 [wscntfy.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1500
ThreadCreationTime : 12/3/2006 3:43:28 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Security Center Notification App
InternalName : wscntfy.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : wscntfy.exe

#:13 [spybotsd.exe]
FilePath : C:\Program Files\Spybot - Search & Destroy\
ProcessID : 3284
ThreadCreationTime : 12/3/2006 3:46:13 AM
BasePriority : Normal
FileVersion : 1.4.0.3
ProductVersion : 1, 4, 0, 3
ProductName : SpyBot-S&D
CompanyName : Safer Networking Limited
FileDescription : Spybot - Search & Destroy
InternalName : SpybotSD
LegalCopyright : © 2000-2005 Patrick M. Kolla / Safer Networking Limited. Alle Rechte vorbehalten.
LegalTrademarks : "Spybot" und "Spybot - Search & Destroy" sind registrierte Warenzeichen.
OriginalFilename : SpyBotSD.exe
Comments : Software zum Entfernen von Spyware und ähnlichen Bedrohungen.

#:14 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 3464
ThreadCreationTime : 12/3/2006 3:46:37 AM
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 19


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Adware.MyToolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{c004dec2-2623-438e-9ca2-c9043ab28508}

Adware.MyToolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{569304ba-83ed-4cff-ac26-be3e482f7208}

WebHancer Object Recognized!
Type : Regkey
Data :
TAC Rating : 9
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : whiehelperobj.whiehelperobj

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : vsenchancer.chl

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : avzipenchancer.chl

VirusBurst Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{6a66cc28-f0a2-fcbc-d3d5-1ea3001ed26a}

Adware.MyToolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Adware
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\windows\currentversion\ext\stats\{c004dec2-2623-438e-9ca2-c9043ab28508}

Adware.MyToolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Adware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer\browser helper objects\{c004dec2-2623-438e-9ca2-c9043ab28508}

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 8
Objects found so far: 27


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 27

Adware.MyToolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 3
Category : Adware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\toolbar
Value : {c004dec2-2623-438e-9ca2-c9043ab28508}

Adware.MyToolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 3
Category : Adware
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-398581779-505398890-3885350620-1024\software\microsoft\internet explorer\toolbar\Webbrowser
Value : {c004dec2-2623-438e-9ca2-c9043ab28508}


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : devin'[email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:4
Value : Cookie:devin'[email protected]/
Expires : 12/1/2011 3:00:50 AM
LastSync : Hits:4
UseCount : 0
Hits : 4

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : devin'[email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:33
Value : Cookie:devin'[email protected]/
Expires : 12/1/2007 4:23:50 PM
LastSync : Hits:33
UseCount : 0
Hits : 33

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : devin'[email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:devin'[email protected]/
Expires : 12/31/2037 7:00:00 PM
LastSync : Hits:5
UseCount : 0
Hits : 5

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : devin'[email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:13
Value : Cookie:devin'[email protected]/
Expires : 1/12/2007 8:38:54 AM
LastSync : Hits:13
UseCount : 0
Hits : 13

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : devin'[email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:devin'[email protected]/
Expires : 12/5/2011 3:27:20 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 5
Objects found so far: 34



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected].hitbox[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee l[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : aimee [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\aimee leazier\Cookies\aimee [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected]er[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\chelsea\Cookies\[email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : uncle [email protected][2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Uncle Dan\Cookies\uncle [email protected][2].txt

Win32.TrojanDownloader.Swizzor.br Object Recognized!
Type : File
Data : npdlplug.dll
TAC Rating : 8
Category : Malware
Comment :
Object : C:\Program Files\Download Plugin\DlPlugin-Moz\
FileVersion : 1.5.0.1
ProductVersion : 1.5.0.1
ProductName : Download Plugin
FileDescription : Download Plugin v.1.5.0.1
InternalName : DLPLUG
OriginalFilename : npdlplug.dll

<STOP>

Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 109
11:04:40 PM Scan stopped by user

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:17:48.110
Objects scanned:157102
Objects identified:90
Objects ignored:0
New critical objects:90
dking131504 is offline  
Old 12-02-2006, 08:08 PM   #3
Registered Member
 
Join Date: Oct 2006
Posts: 76
OS: Windows XP


--- Search result list ---
SexList: Settings (Registry value, fixing failed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\Microsoft\Internet Explorer\URLSearchHooks\_{CFBFAE00-17A6-11D0-99CB-00C04FD64497}

SystemDoctor2006: Executable (File, fixed)
c:\fcrjjdxo.exe

SystemDoctor2006: Executable (File, fixed)
c:\oedyde.exe

SystemDoctor2006: Executable (File, fixed)
c:\qkbt.exe

SystemDoctor2006: Executable (File, fixed)
c:\uktgik.exe

Swizzor: Settings (Registry value, fixing failed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\Microsoft\Internet Explorer\New Windows\Allow\dns-look-up.com

Swizzor: Settings (Registry value, fixing failed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\Microsoft\Internet Explorer\New Windows\Allow\www.dns-look-up.com

Vcodec: Data (File, fixed)
C:\WINDOWS\SYSTEM32\ts.ico

Vcodec.eMedia: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\AVZipEnchancer.Chl

Vcodec.eMedia: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VSEnchancer.Chl

Smitfraud-C.: Settings (Registry key, fixed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\AdwareDisableKey3

Smitfraud-C.: Settings (Registry key, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\AdwareDisableKey3

Smitfraud-C.: Settings (Registry value, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\kernel32.dll

Smitfraud-C.: Library (File, fixed)
C:\WINDOWS\SYSTEM32\ixt0.dll

Smitfraud-C.: Executable (File, fixed)
C:\WINDOWS\SYSTEM32\ishost.exe

Smitfraud-C.: Executable (File, fixed)
C:\WINDOWS\SYSTEM32\isnotify.exe

Smitfraud-C.: Settings (Registry value, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\ishost.exe

Smitfraud-C.: Settings (Registry value, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\issearch.exe

Smitfraud-C.: Program directory (Directory, fixed)
C:\Program Files\InetGet2\

Smitfraud-C.Toolbar888: User settings (Registry key, fixed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C004DEC2-2623-438E-9CA2-C9043AB28508}

Smitfraud-C.Toolbar888: Class ID (Registry key, fixed)
HKEY_CLASSES_ROOT\CLSID\{C004DEC2-2623-438e-9CA2-C9043AB28508}

Smitfraud-C.Toolbar888: Settings (Registry key, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSMGR

Smitfraud-C.Toolbar888: Browser helper object (Registry key, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C004DEC2-2623-438e-9CA2-C9043AB28508}

Smitfraud-C.Toolbar888: Executable (File, fixed)
C:\Documents and Settings\Devin's\Local Settings\Temp\win167.tmp.exe

Smitfraud-C.Toolbar888: Executable (File, fixed)
C:\Documents and Settings\Devin's\Local Settings\Temp\removalfile.bat

Smitfraud-C.Toolbar888: User settings (Registry key, fixed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C004DEC2-2623-438E-9CA2-C9043AB28508}\iexplore

Smitfraud-C.Toolbar888: IE toolbar (Registry value, fixed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{C004DEC2-2623-438E-9CA2-C9043AB28508}

Smitfraud-C.Toolbar888: IE toolbar (Registry value, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{C004DEC2-2623-438e-9CA2-C9043AB28508}

Smitfraud-C.Toolbar888: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyToolBar.MyToolBarObj

Smitfraud-C.Toolbar888: Interface (Registry key, fixed)
HKEY_CLASSES_ROOT\Interface\{C6F2214E-0B54-45A9-B90D-7DD4BA45ED0B}

Smitfraud-C.Toolbar888: Type library (Registry key, fixed)
HKEY_CLASSES_ROOT\TypeLib\{569304BA-83ED-4CFF-AC26-BE3E482F7208}

Bearshare: Class ID (Registry key, fixing failed)
HKEY_CLASSES_ROOT\CLSID\{558EC983-BEDB-9168-B2DE-31DBF0EE543E}

YazzleSudoku: Uninstall settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Yazzle1162Oin

YazzleSudoku: Executable (File, fixed)
C:\Program Files\Common Files\Yazzle1162OinAdmin.exe

YazzleSudoku: Executable (File, fixed)
C:\Program Files\Common Files\Yazzle1162OinUninstaller.exe

MaxFiles: Settings (Registry key, fixed)
HKEY_USERS\S-1-5-21-398581779-505398890-3885350620-1024\Software\IpWins

Torpig: Temporary file (File, fixed)
C:\WINDOWS\Temp\$_2341234.TMP

Torpig: Temporary file (File, fixed)
C:\WINDOWS\Temp\$_2341233.TMP

webHancer: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\WhIeHelperObj.WhIeHelperObj

NSIS Media Extension: Settings (Registry key, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\NSIS

Zlob.Downloader: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyToolBar.MyToolBarObj.1

Advertising.com: Tracking cookie (Firefox: default) (Cookie, fixed)


Advertising.com: Tracking cookie (Firefox: default) (Cookie, fixed)


Advertising.com: Tracking cookie (Firefox: default) (Cookie, fixed)


Advertising.com: Tracking cookie (Firefox: default) (Cookie, fixed)


Advertising.com: Tracking cookie (Firefox: default) (Cookie, fixed)


Avenue A, Inc.: Tracking cookie (Firefox: default) (Cookie, fixed)


CasaleMedia: Tracking cookie (Firefox: default) (Cookie, fixed)


CasaleMedia: Tracking cookie (Firefox: default) (Cookie, fixed)


CasaleMedia: Tracking cookie (Firefox: default) (Cookie, fixed)


CasaleMedia: Tracking cookie (Firefox: default) (Cookie, fixed)


CasaleMedia: Tracking cookie (Firefox: default) (Cookie, fixed)


CasaleMedia: Tracking cookie (Firefox: default) (Cookie, fixed)


DoubleClick: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


ErrorSafe: Tracking cookie (Firefox: default) (Cookie, fixed)


ErrorSafe: Tracking cookie (Firefox: default) (Cookie, fixed)


ErrorSafe: Tracking cookie (Firefox: default) (Cookie, fixed)


ErrorSafe: Tracking cookie (Firefox: default) (Cookie, fixed)


FastClick: Tracking cookie (Firefox: default) (Cookie, fixed)


FastClick: Tracking cookie (Firefox: default) (Cookie, fixed)


FastClick: Tracking cookie (Firefox: default) (Cookie, fixed)


FastClick: Tracking cookie (Firefox: default) (Cookie, fixed)


FastClick: Tracking cookie (Firefox: default) (Cookie, fixed)


FastClick: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


HitBox: Tracking cookie (Firefox: default) (Cookie, fixed)


MediaPlex: Tracking cookie (Firefox: default) (Cookie, fixed)


Tradedoubler: Tracking cookie (Firefox: default) (Cookie, fixed)


Zedo: Tracking cookie (Firefox: default) (Cookie, fixed)


Zedo: Tracking cookie (Firefox: default) (Cookie, fixed)


Zedo: Tracking cookie (Firefox: default) (Cookie, fixed)


DoubleClick: Tracking cookie (Firefox: default) (Cookie, fixed)


DoubleClick: Tracking cookie (Firefox: default) (Cookie, fixed)


ErrorSafe: Tracking cookie (Firefox: default) (Cookie, fixed)



--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2006-10-24 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2006-02-06 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2006-02-20 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2006-11-10 Includes\Cookies.sbi (*)
2006-10-13 Includes\Dialer.sbi (*)
2006-11-10 Includes\DialerC.sbi (*)
2006-11-03 Includes\Hijackers.sbi (*)
2006-11-10 Includes\HijackersC.sbi (*)
2006-10-27 Includes\Keyloggers.sbi (*)
2006-11-10 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2006-10-13 Includes\Malware.sbi (*)
2006-11-10 Includes\MalwareC.sbi (*)
2006-10-20 Includes\PUPS.sbi (*)
2006-11-10 Includes\PUPSC.sbi (*)
2006-11-10 Includes\Revision.sbi (*)
2006-10-13 Includes\Security.sbi (*)
2006-11-10 Includes\SecurityC.sbi (*)
2006-10-13 Includes\Spybots.sbi (*)
2006-11-10 Includes\SpybotsC.sbi (*)
2005-02-17 Includes\Tracks.uti
2006-11-03 Includes\Trojans.sbi (*)
2006-11-10 Includes\TrojansC.sbi (*)



--- System information ---
Windows XP (Build: 2600) Service Pack 2
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB886903)
/ .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
/ DataAccess: Microsoft Data Access Components KB870669
/ DataAccess: Security Update for Microsoft Data Access Components
/ DirectX / DX9 / SP1: DirectX 9 Hotfix - KB839643
/ Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n
If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n
For more information, visit https://support.microsoft.com/kb/917283
/ Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n
If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n
For more information, visit https://support.microsoft.com/kb/922770
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2
/ Step By Step Interactive Training / SP2: Security Update for Step By Step Interactive Training (KB898458)
/ Windows / SP1: Microsoft Internationalized Domain Names Mitigation APIs
/ Windows / SP1: Microsoft National Language Support Downlevel APIs
/ Windows Media Player: Windows Media Player Hotfix [See KB837272 for more information]
/ Windows Media Player: Windows Media Player Hotfix [See Q828026 for more information]
/ Windows Media Player / SP0: Windows Media Player Hotfix [See Q828026 for more information]
/ Windows Media Player: Windows Media Update 817787
/ Windows Media Player: Windows Media Update 819639
/ Windows Media Player 10: Security Update for Windows Media Player 10 (KB911565)
/ Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP
/ Windows XP / SP2: Windows XP Service Pack 2
/ Windows XP / SP3: Windows XP Hotfix - KB834707
/ Windows XP / SP3: Windows XP Hotfix - KB867282
/ Windows XP / SP3: Windows XP Hotfix - KB873333
/ Windows XP / SP3: Windows XP Hotfix - KB873339
/ Windows XP / SP3: Security Update for Windows XP (KB883939)
/ Windows XP / SP3: Windows XP Hotfix - KB884020
/ Windows XP / SP3: Windows XP Hotfix - KB885250
/ Windows XP / SP3: Windows XP Hotfix - KB885835
/ Windows XP / SP3: Windows XP Hotfix - KB885836
/ Windows XP / SP3: Windows XP Hotfix - KB885884
/ Windows XP / SP3: Windows XP Hotfix - KB886185
/ Windows XP / SP3: Windows XP Hotfix - KB887472
/ Windows XP / SP3: Windows XP Hotfix - KB887742
/ Windows XP / SP3: Windows XP Hotfix - KB888113
/ Windows XP / SP3: Windows XP Hotfix - KB888240
/ Windows XP / SP3: Windows XP Hotfix - KB888302
/ Windows XP / SP3: Security Update for Windows XP (KB890046)
/ Windows XP / SP3: Windows XP Hotfix - KB890047
/ Windows XP / SP3: Windows XP Hotfix - KB890175
/ Windows XP / SP3: Windows XP Hotfix - KB890859
/ Windows XP / SP3: Windows XP Hotfix - KB890923
/ Windows XP / SP3: Windows XP Hotfix - KB891781
/ Windows XP / SP3: Security Update for Windows XP (KB893066)
/ Windows XP / SP3: Windows XP Hotfix - KB893086
/ Windows XP / SP3: Security Update for Windows XP (KB893756)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Update for Windows XP (KB894391)
/ Windows XP / SP3: Hotfix for Windows XP (KB896344)
/ Windows XP / SP3: Security Update for Windows XP (KB896358)
/ Windows XP / SP3: Security Update for Windows XP (KB896422)
/ Windows XP / SP3: Security Update for Windows XP (KB896423)
/ Windows XP / SP3: Security Update for Windows XP (KB896424)
/ Windows XP / SP3: Security Update for Windows XP (KB896428)
/ Windows XP / SP3: Security Update for Windows XP (KB896688)
/ Windows XP / SP3: Update for Windows XP (KB896727)
/ Windows XP / SP3: Update for Windows XP (KB898461)
/ Windows XP / SP3: Security Update for Windows XP (KB899587)
/ Windows XP / SP3: Security Update for Windows XP (KB899588)
/ Windows XP / SP3: Security Update for Windows XP (KB899589)
/ Windows XP / SP3: Security Update for Windows XP (KB899591)
/ Windows XP / SP3: Update for Windows XP (KB900485)
/ Windows XP / SP3: Security Update for Windows XP (KB900725)
/ Windows XP / SP3: Update for Windows XP (KB900930)
/ Windows XP / SP3: Security Update for Windows XP (KB901017)
/ Windows XP / SP3: Security Update for Windows XP (KB901214)
/ Windows XP / SP3: Security Update for Windows XP (KB902400)
/ Windows XP / SP3: Security Update for Windows XP (KB903235)
/ Windows XP / SP3: Security Update for Windows XP (KB904706)
/ Windows XP / SP3: Update for Windows XP (KB904942)
/ Windows XP / SP3: Security Update for Windows XP (KB905414)
/ Windows XP / SP3: Security Update for Windows XP (KB905749)
/ Windows XP / SP3: Security Update for Windows XP (KB905915)
/ Windows XP / SP3: Security Update for Windows XP (KB908519)
/ Windows XP / SP3: Security Update for Windows XP (KB908531)
/ Windows XP / SP3: Update for Windows XP (KB910437)
/ Windows XP / SP3: Security Update for Windows XP (KB911280)
/ Windows XP / SP3: Security Update for Windows XP (KB911562)
/ Windows XP / SP3: Security Update for Windows XP (KB911567)
/ Windows XP / SP3: Security Update for Windows XP (KB911927)
/ Windows XP / SP3: Security Update for Windows XP (KB912812)
/ Windows XP / SP3: Security Update for Windows XP (KB912919)
/ Windows XP / SP3: Security Update for Windows XP (KB913446)
/ Windows XP / SP3: Security Update for Windows XP (KB913580)
/ Windows XP / SP3: Security Update for Windows XP (KB914388)
/ Windows XP / SP3: Security Update for Windows XP (KB914389)
/ Windows XP / SP3: Hotfix for Windows XP (KB914440)
/ Windows XP / SP3: Hotfix for Windows XP (KB915865)
/ Windows XP / SP3: Security Update for Windows XP (KB916281)
/ Windows XP / SP3: Update for Windows XP (KB916595)
/ Windows XP / SP3: Security Update for Windows XP (KB917159)
/ Windows XP / SP3: Security Update for Windows XP (KB917344)
/ Windows XP / SP3: Security Update for Windows XP (KB917422)
/ Windows XP / SP3: Security Update for Windows XP (KB917953)
/ Windows XP / SP3: Security Update for Windows XP (KB918439)
/ Windows XP / SP3: Security Update for Windows XP (KB918899)
/ Windows XP / SP3: Security Update for Windows XP (KB919007)
/ Windows XP / SP3: Security Update for Windows XP (KB920213)
/ Windows XP / SP3: Security Update for Windows XP (KB920214)
/ Windows XP / SP3: Update for Windows XP (KB920342)
/ Windows XP / SP3: Security Update for Windows XP (KB920670)
/ Windows XP / SP3: Security Update for Windows XP (KB920683)
/ Windows XP / SP3: Security Update for Windows XP (KB920685)
/ Windows XP / SP3: Update for Windows XP (KB920872)
/ Windows XP / SP3: Security Update for Windows XP (KB921398)
/ Windows XP / SP3: Security Update for Windows XP (KB921883)
/ Windows XP / SP3: Update for Windows XP (KB922582)
/ Windows XP / SP3: Security Update for Windows XP (KB922616)
/ Windows XP / SP3: Security Update for Windows XP (KB922760)
/ Windows XP / SP3: Security Update for Windows XP (KB922819)
/ Windows XP / SP3: Security Update for Windows XP (KB923191)
/ Windows XP / SP3: Security Update for Windows XP (KB923414)
/ Windows XP / SP3: Security Update for Windows XP (KB923980)
/ Windows XP / SP3: Security Update for Windows XP (KB924191)
/ Windows XP / SP3: Security Update for Windows XP (KB924270)
/ Windows XP / SP3: Security Update for Windows XP (KB924496)
/ Windows XP / SP3: Security Update for Windows XP (KB925486)
/ Windows XP / SP3: Hotfix for Windows XP (KB926239)


--- Startup entries list ---
Located: HK_LM:Run, !AVG Anti-Spyware
command: "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
file: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
size: 6266880
MD5: 01d90ae5dccbce0c7b52874fec35a608

Located: HK_LM:RunOnce, 0277141165118171mcinstcleanup
command: C:\DOCUME~1\Devin's\LOCALS~1\Temp\027714~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog
file: C:\DOCUME~1\Devin's\LOCALS~1\Temp\027714~1.EXE
size: 188416
MD5: 2d51bce06be975ba115d72c3a86c4a61

Located: HK_LM:RunOnce, AOLRebootNeeded
command: regsvr32.exe /s
file: C:\WINDOWS\system32\regsvr32.exe
size: 11776
MD5: 9709ead856a690333138ac40804f914e

Located: HK_LM:RunOnce, SpybotSnD
command: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
file: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09ca174a605b480318731e691dc98539

Located: Startup (common), Logitech SetPoint.lnk
command: C:\Program Files\Logitech\SetPoint\SetPoint.exe
file: C:\Program Files\Logitech\SetPoint\SetPoint.exe
size: 671744
MD5: 4301b51caa535510f4b45a276dc306a1

Located: System.ini, AtiExtEvent
command: Ati2evxx.dll
file: Ati2evxx.dll

Located: System.ini, crypt32chain
command: crypt32.dll
file: crypt32.dll

Located: System.ini, cryptnet
command: cryptnet.dll
file: cryptnet.dll

Located: System.ini, cscdll
command: cscdll.dll
file: cscdll.dll

Located: System.ini, gebca
command: C:\WINDOWS\system32\gebca.dll
file: C:\WINDOWS\system32\gebca.dll
size: 274484
MD5: 0c9bb02a4e551dfe2d9c420940d1a915

Located: System.ini, ScCertProp
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, Schedule
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll

Located: System.ini, SensLogn
command: WlNotify.dll
file: WlNotify.dll

Located: System.ini, termsrv
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, WgaLogon
command: WgaLogon.dll
file: WgaLogon.dll

Located: System.ini, winccf32
command: winccf32.dll
file: winccf32.dll

Located: System.ini, wlballoon
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, WRNotifier
command: WRLogonNTF.dll
file: WRLogonNTF.dll



--- Browser helper object list ---
{275F85D6-271F-7E44-2D01-066AC9C58FA3} ()
BHO name:
CLSID name:
Path: C:\WINDOWS\system32\
Long name: zqpkaic.dll
Short name:
Date (created): 12/2/2006 10:32:02 PM
Date (last access): 12/2/2006 10:32:02 PM
Date (last write): 12/2/2006 10:32:02 PM
Filesize: 71680
Attributes: archive
MD5: 56B2287B2F45E728512AE3C2D0068CDF
CRC32: C480D1A2

{35F7813A-AF74-4474-B1DC-7EE6FB6C43C6} ()
BHO name:
CLSID name:
Path: C:\WINDOWS\system32\
Long name: mjicodmd.dll
Short name:
Date (created): 12/2/2006 10:42:30 PM
Date (last access): 12/2/2006 10:42:32 PM
Date (last write): 12/2/2006 10:42:32 PM
Filesize: 42516
Attributes: archive
MD5: FD6791919E1E87A52DAF85DCDA8614B1
CRC32: F2C4B427

{5CA3D70E-1895-11CF-8E15-001234567890} (DriveLetterAccess)
BHO name:
CLSID name: DriveLetterAccess
description: Hewlett-Packard's DLA software
classification: Unknown
known filename: tfswshx.dll
info link:
info source: TonyKlein
Path: C:\WINDOWS\system32\dla\
Long name: tfswshx.dll
Short name:
Date (created): 2/6/2004 8:04:46 PM
Date (last access): 12/2/2006 10:47:32 PM
Date (last write): 8/6/2003 2:04:00 AM
Filesize: 106548
Attributes: archive
MD5: 15F6F27916A2D2AF3ABF029F6CF3037B
CRC32: 808FB6C8
Version: 1.4.5.1

{67270207-b9ee-4d26-9270-860fdb060ca1} ()
BHO name:
CLSID name:
Path: C:\WINDOWS\system32\
Long name: ixt0.dll

{8FC84FAA-4008-4508-B660-8F1761E0410A} ()
BHO name:
CLSID name:
Path: C:\WINDOWS\system32\
Long name: gebca.dll
Short name:
Date (created): 12/2/2006 10:41:58 PM
Date (last access): 12/2/2006 10:42:04 PM
Date (last write): 12/2/2006 10:42:04 PM
Filesize: 274484
Attributes: hidden sysfile
MD5: 0C9BB02A4E551DFE2D9C420940D1A915
CRC32: 3695646A



--- ActiveX list ---
Animal Ark by pogo (Animal Ark by pogo)
DPF name: Animal Ark by pogo
CLSID name:
Installer:
Codebase: https://www.pogo.com/applet-6.5.2.26/...imal-en_US.cab

ChatSpace Full Java Client 3.1.0.235 (ChatSpace Full Java Client 3.1.0.235)
DPF name: ChatSpace Full Java Client 3.1.0.235
CLSID name:
Installer:
Codebase: https://205.177.13.60/Java/cfs31235.cab
description:
classification: Open for discussion
known filename:
info link:
info source: Safer Networking Ltd.

Phlinx by pogo (Phlinx by pogo)
DPF name: Phlinx by pogo
CLSID name:
Installer:
Codebase: https://game1.pogo.com/applet-6.5.3.3...nger-en_US.cab
description:
classification: Open for discussion
known filename:
info link:
info source: Safer Networking Ltd.

Pirate's Gold by pogo (Pirate's Gold by pogo)
DPF name: Pirate's Gold by pogo
CLSID name:
Installer:
Codebase: https://game1.pogo.com/applet-6.5.3.3...gold-en_US.cab
description:
classification: Open for discussion
known filename:
info link:
info source: Safer Networking Ltd.

Sweet Tooth TM by pogo (Sweet Tooth TM by pogo)
DPF name: Sweet Tooth TM by pogo
CLSID name:
Installer:
Codebase: https://game1.pogo.com/applet-6.5.1.3...ooth-en_US.cab
description:
classification: Open for discussion
known filename:
info link:
info source: Safer Networking Ltd.

Wonderland Memories by pogo (Wonderland Memories by pogo)
DPF name: Wonderland Memories by pogo
CLSID name:
Installer:
Codebase: https://game1.pogo.com/applet-6.5.3.3...ries-en_US.cab

{3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher Control)
DPF name:
CLSID name: PogoWebLauncher Control
Installer:
Codebase: https://game1.pogo.com/cdl/launcher/P...rInstaller.CAB
Path: C:\WINDOWS\DOWNLO~1\
Long name: PogoWebLauncher.ocx
Short name: POGOWE~1.OCX
Date (created): 10/9/2006 11:52:16 AM
Date (last access): 11/24/2006 2:12:48 PM
Date (last write): 10/9/2006 11:52:16 AM
Filesize: 378440
Attributes: archive
MD5: 959FE06C5D873589F4A5091E0EF86F2D
CRC32: A53977E4
Version: 1.0.0.4

{4E888414-DB8F-11D1-9CD9-00C04F98436A} (Microsoft.WinRep)
DPF name:
CLSID name: Microsoft.WinRep
Installer:
Codebase: https://webresponse.one.microsoft.co...veX/winrep.cab
description:
classification: Open for discussion
known filename: Winrep.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\System32\
Long name: Winrep.dll
Short name:
Date (created): 9/6/2002 5:07:56 PM
Date (last access): 12/2/2006 10:07:24 PM
Date (last write): 9/6/2002 5:07:56 PM
Filesize: 434176
Attributes: archive
MD5: 99D4CC36B0B504B4B0C60BE21189BE1D
CRC32: AEE58997
Version: 3.1.2.0

{5242A5A1-EF1E-11D5-B3EE-0050DAC5EBD0} (printQuick Browser Add In (Ver4))
DPF name:
CLSID name: printQuick Browser Add In (Ver4)
Installer:
Codebase: https://www.pqpc.com/plugin/axversion...tquick1410.cab
description:
classification: Open for discussion
known filename: printquickaxver4.dll
info link:
info source: Safer Networking Ltd.

{52A5CD24-64C6-4BAF-A4EC-4D13F451763F} ()
DPF name:
CLSID name:
Installer:
Codebase: https://www.cuworld.com/PIC/inner_pi...es/CUworld.cab

{62475759-9E84-458E-A1AB-5D2C442ADFDE} ()
DPF name:
CLSID name:
Installer:
Codebase: https://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
description:
classification: Open for discussion
known filename:
info link:
info source: Safer Networking Ltd.

{639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object)
DPF name:
CLSID name: CPlayFirstDinerDash2Control Object
Installer:
Codebase: https://aolsvc.aol.com/onlinegames/tr...2.1.0.0.48.cab

{77E32299-629F-43C6-AB77-6A1E6D7663F6} ()
DPF name:
CLSID name:
Installer:
Codebase: https://www.nick.com/common/groove/gx/GrooveAX27.cab
description:
classification: Open for discussion
known filename: GROOVEAX.DLL
info link:
info source: Safer Networking Ltd.

{7D731A83-6C80-4EA4-9646-5E06A0513274} (Sandlot Loader Control)
DPF name:
CLSID name: Sandlot Loader Control
Installer:
Codebase: https://www.shockwave.com/content/bal...webinstall.cab
description:
classification: Open for discussion
known filename: slgwebinstall.dll
info link:
info source: Safer Networking Ltd.

{83EF1847-D835-490B-8D9D-90B2987D66E8} ()
DPF name:
CLSID name:
Installer:
Codebase: https://pictures.aolcdn.com/ap/Resour...er.9.3.2.1.cab
description:
classification: Open for discussion
known filename: UploaderCtrl.dll
info link:
info source: Safer Networking Ltd.

{87056D28-9730-4A47-B9F9-7E890B62C58A} (WildfireActiveXHost Class)
DPF name:
CLSID name: WildfireActiveXHost Class
Installer:
Codebase: https://www.shockwave.com/content/tumblebugs/axhost.cab
description:
classification: Open for discussion
known filename: axhost.dll
info link:
info source: Safer Networking Ltd.

{90C9629E-CD32-11D3-BBFB-00105A1F0D68} ()
DPF name:
CLSID name:
Installer:
Codebase: https://www.installengine.com/engine/isetup.cab
description:
classification: Open for discussion
known filename: isetup.dll
info link:
info source: Safer Networking Ltd.

{9E6C7461-FE4A-41A9-9D35-7468796CF9E7} ()
DPF name:
CLSID name:
Installer:
Codebase: https://threatlevel.pcsecurityshield....rol/avxnew.dll

{ABB660B6-6694-407B-950A-EDBA5A159722} (DVC Download Control)
DPF name:
CLSID name: DVC Download Control
Installer:
Codebase: https://www.shockwave.com/content/dav...%20Control.cab

{AFDD01B0-7ABB-11D9-9669-0800200C9A66} (MFInstall Class)
DPF name:
CLSID name: MFInstall Class
Installer:
Codebase: https://c.ancestry.com/MFInstall/MFInstall.cab
description:
classification: Open for discussion
known filename: MFInstall.ocx
info link:
info source: Safer Networking Ltd.

{B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class)
DPF name:
CLSID name: RealArcadeRdxIE Class
Installer:
Codebase: https://games-dl.real.com/gameconsole...rcadeRdxIE.cab
description:
classification: Confirmed as malware
known filename: RealArcadeRdxIE.dll
info link:
info source: Safer Networking Ltd.

{C77FB8C0-8B6D-440E-AC26-2BD39E97E8F2} (SpdTCtl Class)
DPF name:
CLSID name: SpdTCtl Class
Installer:
Codebase: https://speedtest.adelphia.net/custom...ESTACTIVEX.CAB
description:
classification: Open for discussion
known filename: SPEEDT~1.DLL
info link:
info source: Safer Networking Ltd.

{D68217F4-1DF9-45C1-BFA6-61DBD5464527} (Genealogy Browser)
DPF name:
CLSID name: Genealogy Browser
Installer:
Codebase: https://66.119.139.74/cabs/zinst.cab
description:
classification: Open for discussion
known filename: zinst.dll
info link:
info source: Safer Networking Ltd.

{DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object)
DPF name:
CLSID name: CPlayFirstDinerDashControl Object
Installer:
Codebase: https://clubgames.pogo.com/online2/po...h.1.0.0.80.cab

{E5168F0C-8591-11D4-BCDF-006008B7FEA4} (PWLNINST Control)
DPF name:
CLSID name: PWLNINST Control
Installer:
Codebase: https://www.platoweb01.com/pathways/p...b/pwlninst.cab
Path: C:\WINDOWS\PWLN\
Long name: pwlninst.ocx
Short name:
Date (created): 10/2/2006 10:02:36 AM
Date (last access): 12/2/2006 10:07:54 PM
Date (last write): 1/19/2005 8:48:22 PM
Filesize: 20480
Attributes: archive
MD5: A311562FD03DC7E26437464FDCAD24DF
CRC32: FFDF3391
Version: 2.5.1.19

{EDFCDAF5-95D9-40E9-BBE6-10C33190C3EF} ()
DPF name:
CLSID name:
Installer:
Codebase: https://zone.msn.com/bingame/rmcb/default/RumbleCube.cab

{F5820AD3-9B20-423E-B2AA-7AF2B4055746} ()
DPF name:
CLSID name:
Installer:
Codebase: https://download.paltalk.com/download/0.x/regdload.cab
description:
classification: Open for discussion
known filename: RegDload.dll
info link:
info source: Safer Networking Ltd.



--- Process list ---
PID: 0 ( 0) [System]
PID: 368 ( 4) \SystemRoot\System32\smss.exe
PID: 416 ( 368) \??\C:\WINDOWS\system32\csrss.exe
PID: 444 ( 368) \??\C:\WINDOWS\SYSTEM32\winlogon.exe
PID: 488 ( 444) C:\WINDOWS\system32\services.exe
size: 108032
MD5: C6CE6EEC82F187615D1002BB3BB50ED4
PID: 500 ( 444) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 84885F9B82F4D55C6146EBF6065D75D2
PID: 712 ( 488) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 784 ( 488) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 872 ( 488) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1132 ( 488) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1188 ( 488) C:\WINDOWS\system32\msasvc.exe
size: 3584
MD5: 2E34193029D5959156AFE784CC6C2F73
PID: 1224 ( 488) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 3284 (3164) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 3464 (3332) C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
size: 824832
MD5: 1B0EDBF799B57EAD6EF68A82906C2097
PID: 3476 (3484) C:\WINDOWS\explorer.exe
size: 1032192
MD5: A0732187050030AE399B241436565E64
PID: 300 ( 872) C:\WINDOWS\system32\wscntfy.exe
size: 13824
MD5: 49911DD39E023BB6C45E4E436CFBD297
PID: 4 ( 0) System


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 12/2/2006 11:05:35 PM

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\windows\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
https://www.google.com
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar
https://www.google.com/ie
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
https://www.microsoft.com/isapi/redir...r=6&ar=msnhome
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
https://www.microsoft.com/isapi/redir...ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant
https://www.google.com/ie
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@
https://www.google.com/search?q=%s
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
https://www.microsoft.com/isapi/redir...ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
https://www.yahoo.com/
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
https://www.insightbb.com
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
https://www.google.com/ie
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\SearchAssistant
https://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
https://www.google.com/ie
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
https://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm


--- Winsock Layered Service Provider list ---


--- Uninstall list ---
USB MassStorage CardReader (040a_5005)
uninstall cmd: C:\Program Files\Kodak\040a_5005\Remove.exe

MyDSC_CIF (225af9a1-b556-11d5-94aa-0010b5426419)
uninstall cmd: C:\Program Files\InstallShield Installation Information\{225af9a1-b556-88d5-94aa-0010b5426419}\setup.exe

Ad-Aware SE Personal 1.06 (Ad-Aware SE Personal)
uninstall cmd: C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
publisher: Lavasoft
help link: https://www.lavasoft.com

Adobe Photoshop CS2 9.0 (Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0409-1E257A25E34D})
version: 9
version (major): 9
install location: C:\Program Files\Adobe\Adobe Photoshop CS2\
uninstall cmd: msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D}
publisher: Adobe Systems, Inc.
comments:
contact: Customer Support
help link: https://www.adobe.com/support/main.html
help telephone: 1-555-555-4505

Adobe Download Manager 2.0 (Remove Only) 2.0 (AdobeESD)
uninstall cmd: "C:\Program Files\Common Files\Adobe\ESD\uninst.exe"

AOL Deskbar (AOL Deskbar)
uninstall cmd: "C:\Program Files\AOL Deskbar\UNWISE.EXE" /u "C:\Program Files\AOL Deskbar\INSTALL.LOG"

AOL Instant Messenger (AOL Instant Messenger)
uninstall cmd: C:\Program Files\AIM\uninstll.exe -LOG= C:\Program Files\AIM\install.log -OEM=

AOL Uninstaller (Choose which Products to Remove) (AOL Uninstaller)
uninstall cmd: C:\Program Files\Common Files\AOL\uninstaller.exe

(AOLAntivirus)
uninstall cmd: "C:\Program Files\mcafee.com\antivirus\uninst.exe" /PopUpMsgBox="N" /CheckMutx="N" /S

AOL Coach Version 2.0(Build:20041026.5 en) (AolCoach2_en)
uninstall cmd: C:\Program Files\Common Files\AolCoach\en_en\AolCInUn.exe -lang=en_en -ext=UDP

Ares 1.9.4 1.9.4-Build#3013 (Ares)
uninstall cmd: "C:\Program Files\Ares\uninstall.exe"
publisher: Ares Development Group

ATI Display Driver (Omega 3.8.252) 8.252-060503a-032464C-ATI-OMEGA (ATI Display Driver)
uninstall cmd: rundll32 C:\WINDOWS\system32\atiiiexx.dll,[email protected] -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

AVG Anti-Spyware 7.5 (AVGAntiSpyware75)
install location: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5
uninstall cmd: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
publisher: Grisoft Ltd.
help link: https://www.grisoft.com

AviSynth 2.5 (AviSynth)
uninstall cmd: "C:\Program Files\AviSynth 2.5\Uninstall.exe"

(Branding)

Carrie the Caregiver (Carrie the Caregiver)
uninstall cmd: C:\PROGRA~1\SHOCKW~1.COM\CARRIE~1\UNWISE.EXE C:\PROGRA~1\SHOCKW~1.COM\CARRIE~1\INSTALL.LOG

CCleaner (remove only) (CCleaner)
uninstall cmd: "C:\Program Files\CCleaner\uninst.exe"

CleanUp! (CleanUp!)
uninstall cmd: C:\Program Files\CleanUp!\uninstall.exe

CMN3 (CMN_Deploy_0)
uninstall cmd: C:\Program Files\CEVO\CMN3\Uninstall.exe

Conexant D850 56K V.9x DFVc Modem (CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1)
uninstall cmd: C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1\HXFSETUP.EXE -U -Idel200fk.inf

(Connection Manager)

Dell Digital Jukebox Driver (Dell Digital Jukebox Driver)
uninstall cmd: C:\Program Files\Dell\Digital Jukebox Drivers\DrvUnins.exe /s

Dell Support 5.0.0 (766) (DellSupport)
uninstall cmd: rundll32 C:\PROGRA~1\DELLSU~1\AUInst.dll,ExUninstall

Digital Camera Driver (Digital Camera Driver)
uninstall cmd: C:\PROGRA~1\dscdisk\UNWISE.EXE C:\PROGRA~1\dscdisk\INSTALL.LOG

(dlatray.exe)
uninstall cmd: C:\WINDOWS\System32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}

Download Plugin for Mozilla, Opera, Netscape (Download Plugin)
uninstall cmd: C:\Program Files\Download Plugin\DlPlugin-Moz\setup2.exe -u

DH Driver Cleaner Professional Edition Version 1.5 (Driver Cleaner Pro)
uninstall cmd: C:\Program Files\Driver Cleaner Pro\Uninstall.exe
publisher: Ruud Ketelaars
comments: Date March 04, 2006

(expinst)

HLSW v1.0.0.41 (HLSW_is1)
install location: C:\Program Files\HLSW\
uninstall cmd: "C:\Program Files\HLSW\unins000.exe"
publisher: Timo Stripf
help link: https://www.hlsw.net

Microsoft Internationalized Domain Names Mitigation APIs (IDNMitigationAPIs)
install date: 20061202
uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
publisher: Microsoft Corporation

Indeo® software (Indeo® software)
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Intel\Indeo® software\Uninst.isu"

(InstallShield Uninstall Information)

MediaFACE 4.01 4.01 (InstallShield_{41979C2F-34B8-4F92-8111-B13C5864682D})
version: 67174400
version (major): 4
version (minor): 1
estimated size: 152737
install date: 20040215
install source: D:\Setup\
uninstall cmd: C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{41979C2F-34B8-4F92-8111-B13C5864682D} /l1033
publisher: Fellowes
comments:
contact: Media Labeling Technical Support
help link: https://www.fellowes.com
help telephone: 1-866-775-7860
readme: file://C:\Program Files\Fellowes\MediaFACE 4.0\License.txt

MediaFACE 4.01 Image Library 4.01 (InstallShield_{82AF77BC-423D-42DA-BE5B-FFCA04752181})
version: 67174400
version (major): 4
version (minor): 1
estimated size: 71505
install date: 20040215
install source: D:\ImageLibraries\All\
uninstall cmd: C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{82AF77BC-423D-42DA-BE5B-FFCA04752181} /l1033
publisher: Fellowes
comments:
contact: Media Labeling Technical Support
help link: https://www.fellowes.com
help telephone: +1-866-775-7860

QuickTime 7.1 (InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31})
version: 117506048
version (major): 7
version (minor): 1
estimated size: 71339
install date: 20060713
install location: C:\Program Files\QuickTime\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{C21D5524-A970-42FA-AC8A-59B8C7CDCA31} /l1033
publisher: Apple Computer, Inc.
contact: AppleCare Support
help link: https://www.info.apple.com/
help telephone: 1-800-275-2273

ATI Decoder 3.0.1 (InstallShield_{EDE28287-D32C-415E-9C97-2BF9F9260150})
version: 50331649
version (major): 3
estimated size: 1412
install date: 20061128
install source: D:\install\Decoder\
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{EDE28287-D32C-415E-9C97-2BF9F9260150} /l1033
publisher: ATI Technologies Inc.
comments: Contact ATI Support for questions
contact: Customer Support Department
help link: https://support.ati.com
help telephone: 905-882-2600

Microsoft Data Access Components KB870669 (KB870669)
uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf
publisher: Microsoft Corporation
help link: https://support.microsoft.com?kbid=KB870669

(KB884016)

(KB884267)

(KB885353)

(KB886612)

(KB887078)

(KB887626)

(KB888656)

(KB889858)

(KB891122)

(KB892313)

(KB893240)

(KB893241)

(KB895181)

(KB895316)

(KB895572)

(KB897586)

(KB898549)

(KB900399)

(KB902344)

(KB907658)

Microsoft Base Smart Card Cryptographic Service Provider Package (KB909520)
uninstall cmd: "C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
publisher: Microsoft Corporation

Security Update for Windows Media Player 9 (KB911565) (KB911565)
install date: 20060517
publisher: Microsoft Corporation
help link: https://support.microsoft.com/?kbid=911565

(KB911854)

Hotfix for Windows XP (KB914440) 12 (KB914440)
install date: 20061202
uninstall cmd: "C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com?kbid=914440

Hotfix for Windows XP (KB915865) 10 (KB915865)
install date: 20061202
uninstall cmd: "C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://support.microsoft.com?kbid=915865

Security Update for Microsoft .NET Framework 2.0 (KB917283) 1 (KB917283.T1_1ToU93_1)
uninstall cmd: C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/kb/917283

Security Update for Microsoft .NET Framework 2.0 (KB922770) 1 (KB922770.T1_1ToU168_1)
uninstall cmd: C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/kb/922770

Secure Delivery (kdx)
uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\kdx\kdx.inf,DefaultUninstall,5

K-Lite Codec Pack 2.73 Full 2.73 (KLiteCodecPack_is1)
install location: C:\Program Files\K-Lite Codec Pack\
uninstall cmd: "C:\Program Files\K-Lite Codec Pack\unins000.exe"

LimeWire 4.12.6 4.12.6 (LimeWire)
uninstall cmd: "C:\Program Files\LimeWire\uninstall.exe"
publisher: Lime Wire, LLC
help link: https://www.limewire.com/support

Microsoft .NET Framework 1.1 Hotfix (KB886903) (M886903)
uninstall cmd: "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M886903\M886903Uninstall.msp"

Macromedia Shockwave Player 10.1.3.18 (Macromedia Shockwave Player)
uninstall cmd: C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~2\UNWISE.EXE C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~2\Install.log
publisher: Macromedia, Inc.
help link: https://www.adobe.com/support/shockwave

meGUI modern media encoder (remove only) (meGUI modern media encoder)
uninstall cmd: "C:\Program Files\megui\megui-uninstall.exe"

MGI PhotoSuite III SE (Remove Only) (MGI_PRISM_V3_0)
uninstall cmd: "C:\Program Files\MGI\MGI PhotoSuite III SE\System\MGIUninstall.exe" C:\WINDOWS\IsUninst.exe -f"C:\Program Files\MGI\MGI PhotoSuite III SE\Uninst.isu" -c"C:\Program Files\MGI\MGI PhotoSuite III SE\System\CustomUninstall.dll"

Microsoft .NET Framework 1.1 (Microsoft .NET Framework 1.1 (1033))
uninstall cmd: msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm

Microsoft .NET Framework 2.0 (Microsoft .NET Framework 2.0)
install location: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\
uninstall cmd: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
publisher: Microsoft Corporation
help link: https://go.microsoft.com/fwlink/?LinkId=45396

(Microsoft Interactive Training)
uninstall cmd: C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu

mIRC (mIRC)
uninstall cmd: "C:\v3Nirc\mirc.exe" -uninstall

Mozilla Firefox (2.0) 2.0 (en-US) (Mozilla Firefox (2.0))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\uninst.exe
publisher: Mozilla
comments: Mozilla Firefox

Mpeg Layer3 Codec FHG-Radium v1.263 (Mp3 Codec)
uninstall cmd: C:\WINDOWS\UNWISE.EXE C:\audio\L3CODE~1\INSTALL.LOG

Microsoft Compression Client Pack 1.0 for Windows XP 1 (MSCompPackV1)
install date: 20061118
uninstall cmd: "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://go.microsoft.com/fwlink/?LinkId=74087

(MSI30-Beta1)

(MSI30-Beta2)

(MSI30-KB884016)

(MSI30-RC1)

(MSI30-RC2)

(MSI30a-KB884016)

(MSI31-Beta)

(MSI31-RC1)

MultiRes (remove only) (MultiRes (remove only))
uninstall cmd: C:\Program Files\MultiRes\uninstal.exe

Network Play System (Patching) (Network Play System (Patching))
uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Electronic Arts\Network Play System\NPSPatch.isu"

Microsoft National Language Support Downlevel APIs (NLSDownlevelMapping)
install date: 20061202
uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
publisher: Microsoft Corporation

Norton Spyware Scan provided by Yahoo! (Norton Spyware Scan provided by Yahoo!)
uninstall cmd: C:\PROGRA~1\Yahoo!\Common\unynss.exe

Panda ActiveScan (Panda ActiveScan)
uninstall cmd: C:\WINDOWS\system32\ASUninst.exe Panda ActiveScan
publisher: Panda Software S.L.

(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf

PLATO Web Learning Network Clients (PLATO Web Learning Network Clients)
uninstall cmd: C:\WINDOWS\PWLN\UNWISE.EXE /a C:\WINDOWS\PWLN\PWLNINST.LOG

Pure Networks Port Magic 1.2.1393.0 (Port Magic)
install location: C:\Program Files\Pure Networks\Port Magic
uninstall cmd: C:\Program Files\Pure Networks\Port Magic\PortAOL.exe -Uninstall -ShowUI
publisher: Pure Networks
help link: https://aol-support.purenetworks.com

Intel(R) PRO Network Connections Software v10.0.27.0 (PROSetDX)
uninstall cmd: C:\Program Files\Intel\DMIX\uninst\DxSetup.exe /x /qf /le C:\DOCUME~1\Devin's\LOCALS~1\Temp\PROSetDX\DMIX\\DxUninst.log

QuickTime (QuickTime)
uninstall cmd: C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log

Radeon Omega Drivers v3.8.252 Setup Files and Tools v3.8.252 (Radeon Omega Drivers for Windows 2k/XPv3.8.252)
uninstall cmd: "C:\WINDOWS\Radeon Omega Drivers v3.8.252 Uninstall.exe" "/U:C:\Program Files\Radeon Omega Drivers\v3.8.252\Omega Uninstall.xml"
publisher: Omegadrivers.net
contact: Omegadrivers.net Support Department
help link: https://www.omegadrivers.net

(RecordNow.exe)
uninstall cmd: C:\WINDOWS\System32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}

(Sevinst)

(SGTRAY.EXE)
uninstall cmd: C:\WINDOWS\System32\\MSIEXEC.EXE /I {09DA4F91-2A09-4232-AB8C-6BC740096DE3} REMOVE=UpdateMgrFeature

Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash)
uninstall cmd: C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
publisher: Adobe Systems
help link: https://www.adobe.com/go/flashplayer_support/

Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)
install location: C:\Program Files\Spybot - Search & Destroy\
uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
publisher: Safer Networking Limited

Steam (Steam)
uninstall cmd: C:\PROGRA~1\valve\steam\UNWISE.EXE C:\PROGRA~1\valve\steam\INSTALL.LOG
publisher: Valve
help link: https://support.steampowered.com

VideoMach 3.5.2 (VideoMach 3.5.2)
uninstall cmd: C:\Program Files\VideoMach-3.5.2\uninstall.exe

Virtual Laguna Beach (remove only) (Virtual Laguna Beach)
uninstall cmd: "C:\Program Files\Virtual Laguna Beach\VLBClientUninst.exe"

VideoLAN VLC media player 0.8.1 0.8.1 (VLC media player)
uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe
publisher: VideoLAN Team

WebCyberCoach 3.2 Dell (WebCyberCoach_wtrb)
uninstall cmd: "C:\Program Files\WebCyberCoach\b_Dell\WCC_Wipe.exe" "WebCyberCoach ext\wtrb" /inf "engine.inf,RealUninstallSection,,4" /infcfg "enginecf.inf,RealUninstallSection,,4"

Windows Live Safety scanner (Windows Live Safety scanner)
uninstall cmd: RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",[email protected]@@QAEXXZ

Windows Media Format 11 runtime (Windows Media Format Runtime)
uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
help link: https://go.microsoft.com/fwlink/?LinkId=62768

Windows XP Service Pack 2 20040803.231319 (Windows XP Service Pack)
uninstall cmd: C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link: https://support.microsoft.com?kbid=811113

WinRAR archiver (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

WinZip 9.0 (6028) (WinZip)
version (major): 9
install location: C:\PROGRA~1\WINZIP\
uninstall cmd: "C:\Program Files\WinZip\WINZIP32.EXE" /uninstall
publisher: WinZip Computing, Inc.
help link: https://www.winzip.com/xsupport.htm

Windows Media Connect (WMCSetup)
uninstall cmd: "C:\WINDOWS\$NtUninstallWMCSetup$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: https://go.microsoft.com/fwlink/?LinkId=47544

Windows Media Format 11 runtime (WMFDist11)
install date: 20060519
uninstall cmd: "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http:

Windows Media Player 11 (wmp11)
install date: 20060519
uninstall cmd: "C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link: http:

Microsoft User-Mode Driver Framework Feature Pack 1.0 (Wudf01000)
install date: 20060519
uninstall cmd: "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
comments: Build Number 5716

x264 Revision 537 x264.nl (remove only) (x264 Revision 537 x264.nl)
uninstall cmd: "C:\Program Files\x264\x264-uninstall.exe"

Yahoo! Toolbar (Yahoo! Companion)
uninstall cmd: C:\PROGRA~1\Yahoo!\Common\unyt.exe

Yahoo! Internet Mail (Yahoo! Internet Mail)
uninstall cmd: C:\WINDOWS\system32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\Common\YMMAPI~1.DLL

Yahoo! Messenger (Yahoo! Messenger)
uninstall cmd: C:\PROGRA~1\Yahoo!\MESSEN~1\UNWISE.EXE /U C:\PROGRA~1\Yahoo!\MESSEN~1\INSTALL.LOG

Microsoft FrontPage 2000 9.00.2720 ({00120409-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
estimated size: 68064
install date: 20040905
install source: D:\
uninstall cmd: MsiExec.exe /I{00120409-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link: https://www.microsoft.com/support
readme: C:\Program Files\Microsoft Office\Office\ofread9.txt

MSXML4 Parser 1.0.0 ({01501EBA-EC35-4F9F-8889-3BE346E5DA13})
version: 16777216
version (major): 1
estimated size: 128
install date: 20041227
uninstall cmd: MsiExec.exe /I{01501EBA-EC35-4F9F-8889-3BE346E5DA13}
publisher: Microsoft Game Studios
contact: Microsoft Game Studios

Microsoft Encarta Encyclopedia Standard 2004 2004 ({04410044-9149-45C6-A806-F2BF9CFCE762})
version (major): 2004
version (minor): 2004
install date: 20040206
install location: C:\Program Files\Microsoft Encarta\Encarta Encyclopedia Standard Edition 2004\encarta.exe
uninstall cmd: MsiExec.exe /I{04410044-9149-45C6-A806-F2BF9CFCE762}
publisher: Microsoft Corporation
help link: https://support.microsoft.com

Sonic Update Manager 2.9 ({09DA4F91-2A09-4232-AB8C-6BC740096DE3})
version: 34144256
version (major): 2
version (minor): 9
estimated size: 928
install date: 20040409
uninstall cmd: MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3}
publisher: Sonic Solutions

Ulead PhotoImpact 12 12.0 ({11AFE21E-B193-430D-B57A-DFF7815BB962})
version: 201326592
version (major): 12
install location: C:\Program Files\Ulead Systems\Ulead PhotoImpact 12
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{11AFE21E-B193-430D-B57A-DFF7815BB962}\Setup.exe" -l0x9
publisher: Ulead System

Dell Solution Center 1.00.0000 ({11F1920A-56A2-4642-B6E0-3B31A12C9288})
version: 16777216
version (major): 1
install date: 20040206
uninstall cmd: MsiExec.exe /X{11F1920A-56A2-4642-B6E0-3B31A12C9288}
publisher: Dell
help link: https://www.support.dell.com
help telephone: https://www.support.dell.com

Sonic DLA 4.50 ({1206EF92-2E83-4859-ACCB-2048C3CB7DA6})
version: 70385664
version (major): 4
version (minor): 50
install date: 20040206
uninstall cmd: MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
publisher: Sonic Solutions
help link: https://support.dell.com/

Windows Installer Clean Up 2.05.00.0000 ({121634B0-2F4A-11D3-ADA3-00C04F52DD53})
version: 33882112
version (major): 2
version (minor): 5
estimated size: 109
install date: 20050521
uninstall cmd: MsiExec.exe /I{121634B0-2F4A-11D3-ADA3-00C04F52DD53}
publisher: Microsoft Corporation

Norton Internet Security 7.0.0.177 ({12E2B9E9-05B1-407d-B0FD-B5F350535125})
version: 117440512
version (major): 7
estimated size: 4803
install date: 20040611
uninstall cmd: MsiExec.exe /I{12E2B9E9-05B1-407d-B0FD-B5F350535125}
publisher: Symantec Corporation

Microsoft FrontPage Client - English 7.00.9209 ({17B66E83-1BC9-11D5-A54A-0090278A1BB8})
version: 117449721
version (major): 7
estimated size: 573
install date: 20050131
install source: e:\
publisher: Microsoft

Microsoft Money 2004 12.0.50 ({1D643CD7-4DD6-11D7-A4E0-000874180BB3})
version: 201326642
version (major): 12
estimated size: 142507
install date: 20040206
install location: C:\Program Files\Microsoft Money\
install source: d:\
uninstall cmd: MsiExec.exe /I{1D643CD7-4DD6-11D7-A4E0-000874180BB3}
publisher: Microsoft
comments: The Installation database contains the logic and data required to install Money 2004
help link: https://support.microsoft.com
help telephone: (800) 936-5700

Adobe Photoshop CS2 9.0 ({236BB7C4-4419-42FD-0409-1E257A25E34D})
version: 150994944
version (major): 9
estimated size: 639892
install date: 20061202
install location: C:\Program Files\Adobe\Adobe Photoshop CS2\
install source: C:\Documents and Settings\Devin's\Desktop\Photoshop\
publisher: Adobe Systems, Inc.
comments:
contact: Customer Support
help link: https://www.adobe.com/support/main.html
help telephone: 1-555-555-4505

Dell Media Experience ({2637C347-9DAD-11D6-9EA2-00055D0CA761})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2637C347-9DAD-11D6-9EA2-00055D0CA761}\setup.exe" -uninstall

Windows XP Winter Fun Pack Screensavers 1.00.0000 ({27D0C7AB-59F1-4D4D-A0BB-05A31AC919EA})
version: 16777216
version (major): 1
estimated size: 5272
install date: 20041105
uninstall cmd: MsiExec.exe /I{27D0C7AB-59F1-4D4D-A0BB-05A31AC919EA}
publisher: Microsoft Corporation
comments: Your Comments
contact: Customer Support Department
help link: https://www.microsoft.com/windowsxp/experiences
help telephone: None
readme: Readme.txt

2.1.20060807 ({2CCBABCB-6427-4A55-B091-49864623C43F})
version: 20060807
version (major): 2
version (minor): 1

Logitech SetPoint 3.1 ({2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3})
version: 50397184
install date: 20061123
install location: C:\Program Files\Logitech\SetPoint
install source: C:\DOCUME~1\Devin's\LOCALS~1\Temp\pft59.tmp\1-SetPoint\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x9 -removeonly
publisher: Logitech

J2SE Runtime Environment 5.0 Update 6 1.5.0.60 ({3248F0A8-6813-11D6-A77B-00B0D0150060})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 122273
install date: 20060126
install source: https://jdl.sun.com/webapps/download/...windows-i586//
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
publisher: Sun Microsystems, Inc.
contact: https://java.com
help link: https://java.com
readme: C:\Program Files\Java\jre1.5.0_06\README.txt

WebFldrs XP 9.50.6513 ({350C97B0-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154278257
version (major): 9
version (minor): 50
estimated size: 2412
install date: 20020903
install source: C:\WINDOWS\System32\
publisher: Microsoft Corporation
help link: https://www.microsoft.com/windows

Internet Explorer Default Page 1.00.03 ({35BDEFF1-A610-4956-A00D-15453C116395})
version: 16777219
version (major): 1
install date: 20040206
uninstall cmd: MsiExec.exe /I{35BDEFF1-A610-4956-A00D-15453C116395}
publisher: Dell Inc.
comments: Your Comments
contact: Customer Support Department
help link: https://support.dell.com
help telephone: 0

Basic Console 1.00.0000 ({35ED773F-D2D3-4848-AE5C-FCE9C402AE80})
version: 16777216
version (major): 1
estimated size: 4
install date: 20040222
install source: C:\WINDOWS\Downloaded Installations\{467D82BC-4291-4A0C-A8CF-F88BAEDD7A16}\
uninstall cmd: MsiExec.exe /I{35ED773F-D2D3-4848-AE5C-FCE9C402AE80}
publisher: Files by Ford

Intel(R) PROSafe for Wired Connections 99.99.9999 ({36BD0774-6CD6-4FF9-A148-83CA09AC123E})
version: 1667442447
version (major): 99
version (minor): 99
estimated size: 156
install date: 20050617
uninstall cmd: MsiExec.exe /I{36BD0774-6CD6-4FF9-A148-83CA09AC123E}
publisher: Intel
comments: Pseudo NCS Install
contact: Customer Support Department
help link: https://www.intel.com
help telephone: 1-555-555-4505

MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F})
version: 68429425
version (major): 4
version (minor): 20
estimated size: 2625
install date: 20061119
install source: c:\91994b690e5f32023a6d\
uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/kb/927978

Norton AntiSpam 2004.1.0.147 ({3B29A786-5803-4e9e-9B58-3014A5B4E519})
version (major): 2004
version (minor): 1
estimated size: 1166
install date: 20040611
uninstall cmd: MsiExec.exe /I{3B29A786-5803-4e9e-9B58-3014A5B4E519}
publisher: Symantec Corporation

Norton Personal Firewall 7.0.0.177 ({3BD0196C-6553-460c-A0C4-90D8AE5D60D2})
version: 117440512
version (major): 7
estimated size: 4150
install date: 20040611
uninstall cmd: MsiExec.exe /I{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}
publisher: Symantec Corporation

NetWaiting 2.5.8 ({3F92ABBB-6BBF-11D5-B229-002078017FBF})
version (major): 2
version (minor): 5
install location: C:\Program Files\NetWaiting
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanelAnyText
publisher: BVRP Software, Inc

Intel(R) PROSafe for Wired Connections 8.00.0005 ({403EF592-953B-4794-BCEF-ECAB835C2095})
version: 134217733
version (major): 8
estimated size: 156
install date: 20050617
uninstall cmd: MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}
publisher: Intel
comments: Pseudo NCS Install
contact: Customer Support Department
help link: https://www.intel.com
help telephone: 1-555-555-4505

({410438A3-B591-4028-B70A-3CC0B33FBCD1})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{410438A3-B591-4028-B70A-3CC0B33FBCD1}\Setup.exe" -l0x9 -L0x9anything

MediaFACE 4.01 4.01 ({41979C2F-34B8-4F92-8111-B13C5864682D})
version: 67174400
version (major): 4
version (minor): 1
estimated size: 153393
install date: 20040215
install source: D:\Setup\
publisher: Fellowes
comments:
contact: Media Labeling Technical Support
help link: https://www.fellowes.com
help telephone: 1-866-775-7860
readme: file://C:\Program Files\Fellowes\MediaFACE 4.0\License.txt

Microsoft Windows Journal Viewer 1.5.2315.3 ({43DCF766-6838-4F9A-8C91-D92DA586DFA7})
version: 17107211
version (major): 1
version (minor): 5
estimated size: 3659
install date: 20040727
uninstall cmd: MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA7}
publisher: Microsoft
comments: A viewer for Windows Journal documents.
contact: Microsoft

Sony Media Manager 2.2 2.2.93 ({47AA42FD-0450-4CB4-ADAF-B6E770AA7B2F})
version: 33685597
version (major): 2
version (minor): 2
estimated size: 15468
install date: 20061201
install source: C:\Program Files\Sony Setup\Vegas 7.0\mediamgr\
uninstall cmd: MsiExec.exe /X{47AA42FD-0450-4CB4-ADAF-B6E770AA7B2F}
publisher: Sony
help link: https://mediasoftware.sonypictures.com/support

Norton Internet Security 7.0.0.177 ({48185814-A224-447a-81DA-71BD20580E1B})
version: 117440512
version (major): 7
estimated size: 2581
install date: 20040611
uninstall cmd: MsiExec.exe /I{48185814-A224-447a-81DA-71BD20580E1B}
publisher: Symantec Corporation

Animation Shop 3 Try And Buy 3.0.4.0000 ({4B2B78EC-5111-4C0E-A955-0D84BBA49740})
version: 50331652
version (major): 3
estimated size: 13710
install date: 20060331
install source: C:\Program Files\Jasc Software Inc\Setup Files\Animation Shop 3 Try And Buy\
uninstall cmd: MsiExec.exe /I{4B2B78EC-5111-4C0E-A955-0D84BBA49740}
publisher: Jasc Software Inc
comments: Animation Shop 3 Try And Buy
help link: https://www.jasc.com
help telephone: 952-930-9171
readme: C:\Program Files\Jasc Software Inc\Animation Shop 3\Readme.doc

Banctec Service Agreement 1.00.0004 ({4B9F45E8-E3CE-40B4-9463-80A9B3481DEF})
version: 16777220
version (major): 1
install date: 20040206
publisher: Dell
comments: Go to https://support.dell.com.
contact: Dell Support
help link: https://support.dell.com
help telephone: 0

Norton Internet Security 7.0.0.177 ({526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F})
version: 117440512
version (major): 7
estimated size: 1731
install date: 20040611
uninstall cmd: MsiExec.exe /I{526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F}
publisher: Symantec Corporation

MSDN Library for Visual Studio .NET 2003 7.38.3053 ({5757AE1A-1DB4-4898-9806-09F77FBD5E57})
version: 119933933
version (major): 7
version (minor): 38
estimated size: 440687
install date: 20050131
install source: D:\
uninstall cmd: MsiExec.exe /I{5757AE1A-1DB4-4898-9806-09F77FBD5E57}
publisher: Microsoft

Sonic MyDVD ({5E835305-63BB-4E55-BBB7-EEBBE67774DB})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5E835305-63BB-4E55-BBB7-EEBBE67774DB}\setup.exe" -l0x9 -L0x9 /SMAINT

Roxio PhotoSuite 5 5.0.1366.0 ({607CE53B-0999-4F3B-8FF1-DB1AA47548A8})
version: 83887446
version (major): 5
estimated size: 146863
install date: 20040215
install location: C:\Program Files\Roxio\PhotoSuite\
install source: D:\
uninstall cmd: MsiExec.exe /I{607CE53B-0999-4F3B-8FF1-DB1AA47548A8}
publisher: Roxio Corp.
help link: https://www.roxio.com
help telephone:

Windows Genuine Advantage v1.3.0254.0 1.3.0254.0 ({63569CE9-FA00-469C-AF5C-E5D4D93ACF91})
version: 16974078
version (major): 1
version (minor): 3
estimated size: 519
install date: 20050907
uninstall cmd: MsiExec.exe /I{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}
publisher: Microsoft
comments: Your Comments
contact: Customer Support Department
help link: https://www.microsoft.com/genuine/dow...date.aspx/help
help telephone: 1-425.882.8080

PowerDVD ({6811CAA0-BF12-11D4-9EA1-0050BAE317E1})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall

Dell Networking Guide 1.00.0001 ({68D60342-7686-45C9-B8EB-40EF843D0460})
version: 16777217
version (major): 1
install date: 20040206
publisher: Dell
comments: Go to https://support.dell.com.
contact: Dell Support
help link: https://support.dell.com
help telephone: 0
readme: 0

Microsoft .NET Framework 2.0 2.0.50727 ({7131646D-CD3C-40F4-97B9-CD9E4E6262EF})
version: 33605159
version (major): 2
estimated size: 337356
install date: 20061011
publisher: Microsoft Corporation

MSXML 4.0 SP2 Parser and SDK 4.20.9818.0 ({716E0306-8318-4364-8B8F-0CC4E9376BAC})
version: 68429402
version (major): 4
version (minor): 20
estimated size: 1287
install date: 20040617
uninstall cmd: MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
publisher: Microsoft Corporation
help link: https://www.msdn.microsoft.com/xml

Ventrilo Client 2.3.0 ({789289CA-F73A-4A16-A331-54D498CE069F})
version: 33751040
version (major): 2
version (minor): 3
estimated size: 3977
install date: 20050725
install source: C:\Program Files\Common Files\Wise Installation Wizard\
uninstall cmd: MsiExec.exe /I{789289CA-F73A-4A16-A331-54D498CE069F}
publisher: Flagship Industries, Inc.
help link: https://www.ventrilo.com

Sierra Address Book 3.0 ({7CE979C6-E5FF-41C5-B6CC-4EE18071563B})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7CE979C6-E5FF-41C5-B6CC-4EE18071563B}\setup.exe"

Modem Helper 2.20 ({7F142D56-3326-11D5-B229-002078017FBF})
install location: C:\Program Files\Modem Helper
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F142D56-3326-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel
publisher: BVRP Software

MediaFACE 4.01 Image Library 4.01 ({82AF77BC-423D-42DA-BE5B-FFCA04752181})
version: 67174400
version (major): 4
version (minor): 1
estimated size: 71505
install date: 20040215
install source: D:\ImageLibraries\All\
publisher: Fellowes
comments:
contact: Media Labeling Technical Support
help link: https://www.fellowes.com
help telephone: +1-866-775-7860

Slingo Quest ({82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111837550})
install date: 11/24/2006
install location: C:\Program Files\Oberon Media\Slingo Quest
install source: C:\Documents and Settings\aimee leazier\Local Settings\Temporary Internet Files\Content.IE5\GDQRC1YN
uninstall cmd: "C:\Program Files\Oberon Media\Slingo Quest\Uninstall.exe" "C:\Program Files\Oberon Media\Slingo Quest\install.log"
publisher: Oberon Media

TuneUp Utilities 2006 5.0.2331 ({868D7896-99D4-4513-BC62-2B3AD3E24926})
version: 83888411
version (major): 5
estimated size: 16193
install date: 20060803
install source: C:\Program Files\Common Files\Wise Installation Wizard\
uninstall cmd: MsiExec.exe /I{868D7896-99D4-4513-BC62-2B3AD3E24926}
publisher: TuneUp Software
help link: www.tune-up.com

URGE 1.1.8115.0 ({8BBF6DFD-0AD9-43A7-9FBD-BF065E3866AF})
version: 16850867
version (major): 1
version (minor): 1
estimated size: 7170
install date: 20061202
install location: C:\Program Files\MTV Networks\URGE\
install source: C:\WINDOWS\Downloaded Installations\{526DEA13-3565-48BD-BD60-F2F936C4DCB8}\
uninstall cmd: MsiExec.exe /I{8BBF6DFD-0AD9-43A7-9FBD-BF065E3866AF}
publisher: MTV Networks

Microsoft Money 2004 System Pack 12.0.80 ({8C64E145-54BA-11D6-91B1-00500462BE80})
version: 201326672
version (major): 12
estimated size: 2304
install date: 20040206
install location: C:\WINDOWS\System32\
install source: d:\
uninstall cmd: MsiExec.exe /I{8C64E145-54BA-11D6-91B1-00500462BE80}
publisher: Microsoft
comments: Installs system components used by Microsoft Money 2004.
help link: https://support.microsoft.com
help telephone: (800) 936-5700

Help and Support Customization 1.00.0000 ({90D55A3F-1D99-4C94-A77E-46DC14F0BF08})
version: 16777216
version (major): 1
install date: 20040206
publisher: Dell
contact: https://www.support.dell.com
help link: https://www.support.dell.com
help telephone: https://www.support.dell.com
readme: 0

Norton Internet Security 7.0.0.177 ({91AA4B1F-B918-4e0b-A304-F8D4EC5D7726})
version: 117440512
version (major): 7
estimated size: 385
install date: 20040611
uninstall cmd: MsiExec.exe /I{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}
publisher: Symantec Corporation

Sonic RecordNow! 6.5.0 ({9541FED0-327F-4DF0-8B96-EF57EF622F19})
version: 100990976
version (major): 6
version (minor): 5
install date: 20040206
uninstall cmd: MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
publisher: Sonic Solutions
help link: https://support.sonic.com/desktop/

CCHelp 3.00.0010.0000 ({9D1CF8B6-17B3-4832-B062-2C2DD0B57B04})
version: 50331658
version (major): 3
estimated size: 29
install date: 20040911
uninstall cmd: MsiExec.exe /I{9D1CF8B6-17B3-4832-B062-2C2DD0B57B04}
publisher: Easlman Kodak Company
comments: _
contact: _
help link: _
help telephone: _
readme: _

ISEngineUpdate 1.00.0000 ({A28BECB7-2BF4-4171-8CDE-3803F0FE2874})
version: 16777216
version (major): 1
estimated size: 2036
install date: 20050521
uninstall cmd: MsiExec.exe /I{A28BECB7-2BF4-4171-8CDE-3803F0FE2874}
publisher: ISEngineUpdate
comments: Your Comments
contact: Customer Support Department
help link: https://www.yourcompany.com/help
help telephone: 123-4567

CC_ccProxyMSI 2.0.2.806 ({A398F2DC-D706-4bb2-AC38-5532CD229D08})
version: 33554434
version (major): 2
estimated size: 1745
install date: 20040611
uninstall cmd: MsiExec.exe /I{A398F2DC-D706-4bb2-AC38-5532CD229D08}
publisher: Symantec

Microsoft Visual C++ 2005 Redistributable 8.0.50727.42 ({A49F249F-0C91-497F-86DF-B2585E8E76B7})
version: 134268455
version (major): 8
estimated size: 5192
install date: 20060605
uninstall cmd: MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
publisher: Microsoft Corporation

Windows Defender Signatures 1.20.0.0 ({A5CC2A09-E9D3-49EC-923D-03874BBD4C2C})
version: 18087936
version (major): 1
version (minor): 20
estimated size: 2892
install date: 20060724
uninstall cmd: MsiExec.exe /I{A5CC2A09-E9D3-49EC-923D-03874BBD4C2C}
publisher: Microsoft Corporation

Oz - TMA ({A6D23784-2091-11D4-9BEB-00104B198B0D})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A6D23784-2091-11D4-9BEB-00104B198B0D}\setup.exe"

MSXML 4.0 SP2 (KB925672) 4.20.9839.0 ({A9CF9052-F4A0-475D-A00F-A8388C62DD63})
version: 68429423
version (major): 4
version (minor): 20
estimated size: 2617
install date: 20061011
uninstall cmd: MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
publisher: Microsoft Corporation
help link: https://support.microsoft.com/kb/925672

Adobe Reader 7.0.8 7.0.8 ({AC76BA86-7AD7-1033-7B44-A70800000002})
version: 117440520
version (major): 7
estimated size: 66675
install date: 20060728
install location: C:\Program Files\Adobe\Acrobat 7.0\Reader\
install source: C:\Program Files\Adobe\Acrobat 7.0\Setup Files\RdrBig708\ENU\
uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70800000002}
publisher: Adobe Systems Incorporated
comments:
contact:
help link: https://www.adobe.com/support/main.html
help telephone:
readme: C:\Program Files\Adobe\Acrobat 7.0\Reader\Readme.htm

Sony Media Manager 2.0 2.0.84 ({B13F5727-F12F-4253-B6AD-26AFA880B709})
version: 33554516
version (major): 2
estimated size: 6835
install date: 20060615
install source: C:\Program Files\Sony Setup\Vegas 6.0\mediamgr\
uninstall cmd: MsiExec.exe /X{B13F5727-F12F-4253-B6AD-26AFA880B709}
publisher: Sony
help link: https://mediasoftware.sonypictures.com/support

Diskeeper 2007 Pro Premier 11.0.686.32 ({B1D8CAE1-62E8-4259-8B57-1755629F71EC})
version: 184550062
version (major): 11
estimated size: 17708
install date: 20061018
install location: C:\Program Files\Diskeeper Corporation\Diskeeper\
install source: C:\WINDOWS\Installer\{D077214A-E9ED-46AA-9CE1-AEE74386AC23}\
uninstall cmd: MsiExec.exe /X{B1D8CAE1-62E8-4259-8B57-1755629F71EC}
publisher: Diskeeper Corporation
comments: Disk Defragmenter
contact: Technical Support
help link: https://www.diskeeper.com/support/support.asp
help telephone: US - 818-771-1600 EU - +011-44-1342-327477 Japan - 03-3447-7544

CCScore 3.00.0020.0001 ({B4B44FE7-41FF-4DAD-8C0A-E406DDA72992})
version: 50331668
version (major): 3
estimated size: 1669
install date: 20040911
uninstall cmd: MsiExec.exe /I{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}
publisher: Eastman Kodak
comments:
contact:
help link:
help telephone:
readme:

KSU 612.7.0008.0000 ({B997C2A0-4383-41BF-B76E-9B8B7ECFB267})
version: 1678180360
version (major): 612
version (minor): 7
estimated size: 5972
install date: 20040911
uninstall cmd: MsiExec.exe /I{B997C2A0-4383-41BF-B76E-9B8B7ECFB267}
publisher: Eastman Kodak Compnay
comments: _
contact: Customer Support Department
help link: _
help telephone: _
readme: _

QuickTime 7.1 ({C21D5524-A970-42FA-AC8A-59B8C7CDCA31})
version: 117506048
version (major): 7
version (minor): 1
estimated size: 71339
install date: 20060713
install location: C:\Program Files\QuickTime\
publisher: Apple Computer, Inc.
contact: AppleCare Support
help link: https://www.info.apple.com/
help telephone: 1-800-275-2273

Microsoft .NET Framework 1.1 1.1.4322 ({CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1})
version: 16847074
version (major): 1
version (minor): 1
estimated size: 61699
install date: 20050209
uninstall cmd: MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
publisher: Microsoft
readme: file://C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm

MSN Messenger 7.5 7.5.0324.0 ({CEB3A11A-03EA-11DA-BFBD-00065BBDC0B5})
version: 117768516
version (major): 7
version (minor): 5
estimated size: 15621
install date: 20060525
uninstall cmd: MsiExec.exe /I{CEB3A11A-03EA-11DA-BFBD-00065BBDC0B5}
publisher: Microsoft Corporation

Visual Studio.NET Baseline - English 7.1.3088 ({D4D24FE5-FAB3-4FE2-AFFC-623955F4DF3A})
version: 117509136
version (major): 7
version (minor): 1
estimated size: 1787
install date: 20050131
install source: e:\
publisher: Microsoft

ATI Catalyst Control Center 1.2.2314.20337 ({D84E40A2-380A-46E9-A750-6F55D398D973})
version: 16910602
version (major): 1
version (minor): 2
estimated size: 66592
install date: 20061128
install source: C:\ATI\SUPPORT\6-5_xp-2k_dd_ccc_wdm_enu_32464\ACE\
uninstall cmd: MsiExec.exe /I{D84E40A2-380A-46E9-A750-6F55D398D973}
comments: Free technical support for ATI products, available 24 hours a day through our customer care webform.
contact: Customer Support Department
help link: https://www.ati.com/support/
help telephone: 1-877-284-1564

MapleStory ({DEC511B1-59CB-4F15-AD75-0543034572A5})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DEC511B1-59CB-4F15-AD75-0543034572A5}\Setup.exe"

Microsoft Windows Vista Upgrade Advisor 1.0.1 ({E0EB8881-0CFE-4375-8782-8807D258CD7C})
version: 16777217
version (major): 1
estimated size: 12080
install date: 20060630
install source: C:\Documents and Settings\aimee leazier\Local Settings\Temporary Internet Files\Content.IE5\C5K78N8R\
uninstall cmd: MsiExec.exe /I{E0EB8881-0CFE-4375-8782-8807D258CD7C}
publisher: Microsoft
contact: Microsoft Corporation

Digital Line Detect 1.09 ({E646DCF0-5A68-11D5-B229-002078017FBF})
version (major): 1
version (minor): 9
install location: C:\Program Files\Digital Line Detect
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanelAnyText
publisher: BVRP Software, Inc

Sony Vegas 7.0 7.0.151 ({EC6BAAC5-F5E0-48D4-B4B6-7C654DD54086})
version: 117440663
version (major): 7
estimated size: 176654
install date: 20061201
install source: C:\Program Files\Sony Setup\Vegas 7.0\
uninstall cmd: MsiExec.exe /X{EC6BAAC5-F5E0-48D4-B4B6-7C654DD54086}
publisher: Sony
help link: https://mediasoftware.sonypictures.com/support

ATI Decoder 3.0.1 ({EDE28287-D32C-415E-9C97-2BF9F9260150})
version: 50331649
version (major): 3
estimated size: 1412
install date: 20061128
install source: D:\install\Decoder\
publisher: ATI Technologies Inc.
comments: Contact ATI Support for questions
contact: Customer Support Department
help link: https://support.ati.com
help telephone: 905-882-2600

KhalSetup 1.00.0000 ({EE7B9A8D-19F0-450D-8E94-3E391E6044CD})
version: 16777216
version (major): 1
estimated size: 1617
install date: 20061123
install location: C:\Program Files\My Company Name\My Product Name\
install source: C:\DOCUME~1\Devin's\LOCALS~1\Temp\pft59.tmp\1-SetPoint\KHAL\
uninstall cmd: MsiExec.exe /I{EE7B9A8D-19F0-450D-8E94-3E391E6044CD}
publisher: Logitech

FaxTools 5.10 ({F45298E5-0083-426F-A668-1A2C5F04B8A0})
version (major): 5
version (minor): 10
install location: C:\Program Files\FaxTools
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F45298E5-0083-426F-A668-1A2C5F04B8A0}\setup.exe" -l0x9 ControlPanel
publisher: BVRP Software
help link: https://www.bvrp.com

Norton Internet Security 7.0.0.177 ({FC2C0536-583C-46c0-844A-62CECAE01F22})
version: 117440512
version (major): 7
estimated size: 644
install date: 20040611
uninstall cmd: MsiExec.exe /I{FC2C0536-583C-46c0-844A-62CECAE01F22}
publisher: Symantec Corporation

Banctec Service Agreement 1.00.00 ({FC4ED75D-916C-4A8C-BB67-3C6F6E06D62B})
version: 16777216
version (major): 1
install date: 20040206
publisher: Dell
comments: Go to https://support.dell.com.
contact: Dell Support
help link: https://support.dell.com
help telephone: 0

HighMAT Extension to Microsoft Windows XP CD Writing Wizard 1.1.1905.1 ({FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F})
version: 16844657
version (major): 1
version (minor): 1
estimated size: 2202
install date: 20040515
install location: C:\Program Files\HighMAT CD Writing Wizard\
install source: C:\WINDOWS\Downloaded Installations\{40697610-C809-4392-9D4C-AE5D96C596A3}\
uninstall cmd: MsiExec.exe /X{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}
publisher: Microsoft Corporation
readme: C:\Program Files\HighMAT CD Writing Wizard\1033\\HighMAT_readme.htm



--- System Services ---
Service (registry key): .NET CLR Data
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET CLR Networking
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET Data Provider for Oracle
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET Data Provider for SqlServer
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NETFramework
Start: 0
Type: 0
Error Control: 0

Service (registry key): Abiosdsk
Start: 4
Type: 1
Error Control: 0

Service (registry key): abp480n5
Display name: abp480n5
Image path: \SystemRoot\System32\DRIVERS\ABP480N5.SYS
Start: 4
Type: 1
Error Control: 1

Service (registry key): ACPI
Display name: Microsoft ACPI Driver
Image path: System32\DRIVERS\ACPI.sys
Image size: 187776
Image MD5: A10C7534F7223F4A73A948967D00E69B
Start: 0
Type: 1
Error Control: 1

Service (registry key): ACPIEC
Start: 4
Type: 1
Error Control: 1

Service (registry key): Adobe LM Service
Display name: Adobe LM Service
Description: AdobeLM Service
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"
Image size: 72704
Image MD5: C1EB9968EC89FBA5F3A264E2E57923AB
Start: 3
Type: 16
Error Control: 1

Service (registry key): adpu160m
Display name: adpu160m
Image path: \SystemRoot\System32\DRIVERS\adpu160m.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): aeaudio
Image path: system32\drivers\aeaudio.sys
Image size: 4816
Image MD5: 11C04B17ED2ABBB4833694BCD644AC90
Start: 3
Type: 1
Error Control: 1

Service (registry key): aec
Display name: Microsoft Kernel Acoustic Echo Canceller
Image path: system32\drivers\aec.sys
Image size: 142464
Image MD5: 1EE7B434BA961EF845DE136224C30FEC
Start: 3
Type: 1
Error Control: 1

Service (registry key): AFD
Display name: AFD Networking Support Environment
Description: AFD Networking Support Environment
Image path: \SystemRoot\System32\drivers\afd.sys
Start: 1
Type: 1
Error Control: 1

Service (registry key): agp440
Display name: Intel AGP Bus Filter
Image path: System32\DRIVERS\agp440.sys
Image size: 42368
Image MD5: 2C428FA0C3E3A01ED93C9B2A27D8D4BB
Start: 0
Type: 1
Error Control: 1

Service (registry key): agpCPQ
Display name: Compaq AGP Bus Filter
Image path: \SystemRoot\System32\DRIVERS\agpCPQ.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Aha154x
Display name: Aha154x
Image path: \SystemRoot\System32\DRIVERS\aha154x.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Ahfhwn
Start: 3
Type: 256
Error Control: 1

Service (registry key): aic78u2
Display name: aic78u2
Image path: \SystemRoot\System32\DRIVERS\aic78u2.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): aic78xx
Display name: aic78xx
Image path: \SystemRoot\System32\DRIVERS\aic78xx.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Alerter
Display name: Alerter
Description: Notifies selected users and computers of administrative alerts. If the service is stopped, programs that use administrative alerts will not receive them. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): ALG
Display name: Application Layer Gateway Service
Description: Provides support for 3rd party protocol plug-ins for Internet Connection Sharing and the Windows Firewall.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 44544
Image MD5: F1958FBF86D5C004CF19A5951A9514B7
Start: 3
Type: 16
Error Control: 1

Service (registry key): AliIde
Display name: AliIde
Image path: \SystemRoot\System32\DRIVERS\aliide.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): alim1541
Display name: ALI AGP Bus Filter
Image path: \SystemRoot\System32\DRIVERS\alim1541.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): amdagp
Display name: AMD AGP Bus Filter Driver
Image path: \SystemRoot\System32\DRIVERS\amdagp.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): amsint
Display name: amsint
Image path: \SystemRoot\System32\DRIVERS\amsint.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): AOL TopSpeedMonitor
Display name: AOL TopSpeed Monitor
Object name: LocalSystem
Image path: C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
Image size: 100016
Image MD5: 7FB54900AA9792AB6307C699EC1859D4
Start: 4
Type: 272
Error Control: 0

Service (registry key): AppMgmt
Display name: Application Management
Description: Provides software installation services such as Assign, Publish, and Remove.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1

Service (registry key): asc
Display name: asc
Image path: \SystemRoot\System32\DRIVERS\asc.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3350p
Display name: asc3350p
Image path: \SystemRoot\System32\DRIVERS\asc3350p.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): asc3550
Display name: asc3550
Image path: \SystemRoot\System32\DRIVERS\asc3550.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): ASP.NET
Start: 0
Type: 0
Error Control: 0

Service (registry key): ASP.NET_1.1.4322
Start: 0
Type: 0
Error Control: 0

Service (registry key): ASP.NET_2.0.50727
Start: 0
Type: 0
Error Control: 0

Service (registry key): Aspi32
Image path: System32\drivers\aspi32.sys
Image size: 16512
Image MD5: 54AB078660E536DA72B21A27F56B035B
Start: 2
Type: 1
Error Control: 1

Service (registry key): aspnet_state
Display name: ASP.NET State Service
Description: Provides support for out-of-process session states for ASP.NET. If this service is stopped, out-of-process requests will not be processed. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
Image size: 29896
Image MD5: D33C507942299753868204CC7642FA27
Start: 3
Type: 16
Error Control: 1

Service (registry key): AsyncMac
Display name: RAS Asynchronous Media Driver
Description: RAS Asynchronous Media Driver
Image path: System32\DRIVERS\asyncmac.sys
Image size: 14336
Image MD5: 02000ABF34AF4C218C35D257024807D6
Start: 3
Type: 1
Error Control: 1

Service (registry key): atapi
Display name: Standard IDE/ESDI Hard Disk Controller
Image path: System32\DRIVERS\atapi.sys
Image size: 95360
Image MD5: CDFE4411A69C224BD1D11B2DA92DAC51
Start: 0
Type: 1
Error Control: 1

Service (registry key): Atdisk
Start: 4
Type: 1
Error Control: 0

Service (registry key): Ati HotKey Poller
Display name: Ati HotKey Poller
Object name: LocalSystem
Image path: %SystemRoot%\system32\Ati2evxx.exe
Image size: 413696
Image MD5: A2EAEB497CA29ECAEAF0DF66AD85C57D
Start: 4
Type: 272
Error Control: 1

Service (registry key): ATI Smart
Display name: ATI Smart
Object name: LocalSystem
Image path: C:\WINDOWS\SYSTEM32\ati2sgag.exe
Image size: 516096
Image MD5: 56926CCC03417DFFC39C02AC4C163EBC
Start: 4
Type: 272
Error Control: 1

Service (registry key): ati2mtag
Image path: system32\DRIVERS\ati2mtag.sys
Image size: 1540608
Image MD5: 492BD2A5F65F218D4EDE5764A3BB67E9
Start: 3
Type: 1
Error Control: 0

Service (registry key): Atierecord
Start: 0
Type: 0
Error Control: 0

Service (registry key): ATITool
Display name: ATITool Overclocking Utility
Image path: system32\DRIVERS\ATITool.sys
Image size: 28160
Image MD5: 1294314049F7CC8BF8FFA11D51458D35
Start: 1
Type: 1
Error Control: 1
Depends On services: "Extended Base",Video

Service (registry key): Atmarpc
Display name: ATM ARP Client Protocol
Description: ATM ARP Client Protocol
Image path: System32\DRIVERS\atmarpc.sys
Image size: 59904
Image MD5: EC88DA854AB7D7752EC8BE11A741BB7F
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): AudioSrv
Display name: Windows Audio
Description: Manages audio devices for Windows-based programs. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs

Service (registry key): audstub
Display name: Audio Stub Driver
Image path: System32\DRIVERS\audstub.sys
Image size: 3072
Image MD5: D9F724AA26C010A217C97606B160ED68
Start: 3
Type: 1
Error Control: 1

Service (registry key): AvFlt
Display name: Antivirus Filter Driver
Image path: \SystemRoot\system32\drivers\av5flt.sys
Start: 3
Type: 2
Error Control: 1

Service (registry key): AVG Anti-Spyware Driver
Display name: AVG Anti-Spyware Driver
Image path: \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
Image size: 4096
Image MD5: 7D78B7FD0EBE00F177B053A08C78E35B
Start: 1
Type: 1
Error Control: 1

Service (registry key): AVG Anti-Spyware Guard
Display name: AVG Anti-Spyware Guard
Object name: LocalSystem
Image path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
Image size: 204800
Image MD5: E8FBDCC8D618D1BB84B828F247A6244B
Start: 2
Type: 16
Error Control: 1

Service (registry key): AvgAsCln
Display name: AVG Anti-Spyware Clean Driver
Image path: System32\DRIVERS\AvgAsCln.sys
Image size: 3968
Image MD5: 6D4A1DA6E6D522B3EBBCBFF4A3589EC5
Start: 1
Type: 1
Error Control: 1

Service (registry key): BattC
Start: 0
Type: 0
Error Control: 0

Service (registry key): bdfdll
Display name: bdfdll
Image path: \??\C:\Program Files\Softwin\BitDefender10\bdfdll.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): BDFSDRV
Display name: BDFSDRV
Image path: \??\C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): BDRSDRV
Display name: BDRSDRV
Image path: \??\C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys
Start: 2
Type: 1
Error Control: 1

Service (registry key): Beep
Start: 1
Type: 1
Error Control: 1

Service (registry key): BITS
Display name: Background Intelligent Transfer Service
Description: Transfers files in the background using idle network bandwidth. If the service is stopped, features such as Windows Update, and MSN Explorer will be unable to automatically download programs and other information. If this service is disabled, any services that explicitly depend on it may fail to transfer files if they do not have a fail safe mechanism to transfer files directly through IE in case BITS has been disabled.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: Rpcss

Service (registry key): Browser
Display name: Computer Browser
Description: Maintains an updated list of computers on the network and supplies this list to computers designated as browsers. If this service is stopped, this list will not be updated or maintained. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer

Service (registry key): bvrp_pci
Start: 3
Type: 1
Error Control: 1

Service (registry key): cbidf
Display name: cbidf
Image path: \SystemRoot\System32\DRIVERS\cbidf2k.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): cbidf2k
Start: 4
Type: 1
Error Control: 1

Service (registry key): CCDECODE
Display name: Closed Caption Decoder
Image path: System32\DRIVERS\CCDECODE.sys
Image size: 17024
Image MD5: 6163ED60B684BAB19D3352AB22FC48B2
Start: 3
Type: 1
Error Control: 1

Service (registry key): ccProxy
Display name: Symantec Network Proxy
Description: Symantec Network Proxy Service
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Symantec Shared\ccProxy.exe"
Image size: 218232
Image MD5: 0935F7D04466A3D3C91A531A0D8FB7BC
Start: 3
Type: 272
Error Control: 0

Service (registry key): cd20xrnt
Display name: cd20xrnt
Image path: \SystemRoot\System32\DRIVERS\cd20xrnt.sys
Start: 4
Type: 1
Error Control: 1
dking131504 is offline  
Sponsored Links
Advertisement
 
Old 12-02-2006, 08:09 PM   #4
Registered Member
 
Join Date: Oct 2006
Posts: 76
OS: Windows XP


Service (registry key): Cdaudio
Start: 1
Type: 1
Error Control: 0

Service (registry key): Cdfs
Start: 4
Type: 2
Error Control: 1
Depends On group: "SCSI CDROM Class"

Service (registry key): Cdr4_xp
Start: 1
Type: 1
Error Control: 0

Service (registry key): Cdralw2k
Start: 1
Type: 1
Error Control: 0

Service (registry key): Cdrom
Display name: CD-ROM Driver
Image path: System32\DRIVERS\cdrom.sys
Image size: 49536
Image MD5: AF9C19B3100FE010496B1A27181FBF72
Start: 1
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Changer
Start: 1
Type: 1
Error Control: 0

Service (registry key): CiSvc
Display name: Indexing Service
Description: Indexes contents and properties of files on local and remote computers; provides rapid access to files through flexible querying language.
Object name: LocalSystem
Image path: %SystemRoot%\system32\cisvc.exe
Image size: 5632
Image MD5: 3192BD04D032A9C4A85A3278C268A13A
Start: 3
Type: 288
Error Control: 1
Depends On services: RPCSS

Service (registry key): ClipSrv
Display name: ClipBook
Description: Enables ClipBook Viewer to store information and share it with remote computers. If the service is stopped, ClipBook Viewer will not be able to share information with remote computers. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\clipsrv.exe
Image size: 33280
Image MD5: C8DEC22C4137D7A90F8BDF41CA4B82AE
Start: 4
Type: 16
Error Control: 1
Depends On services: NetDDE

Service (registry key): clr_optimization_v2.0.50727_32
Display name: .NET Runtime Optimization Service v2.0.50727_X86
Description: Microsoft .NET Framework NGEN
Object name: LocalSystem
Image path: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
Image size: 66240
Image MD5: 3C4D595E7F9B747325AEF28B4ADCAAE5
Start: 3
Type: 16
Error Control: 0

Service (registry key): CmdIde
Display name: CmdIde
Image path: \SystemRoot\System32\DRIVERS\cmdide.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): COMSysApp
Display name: COM+ System Application
Description: Manages the configuration and tracking of Component Object Model (COM)+-based components. If the service is stopped, most COM+-based components will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 5120
Image MD5: DD87DB7387B9EB441C5674888A0D840C
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss

Service (registry key): ContentFilter
Start: 0
Type: 0
Error Control: 0

Service (registry key): ContentIndex
Start: 0
Type: 0
Error Control: 0

Service (registry key): Cpqarray
Display name: Cpqarray
Image path: \SystemRoot\System32\DRIVERS\cpqarray.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Crypkey License
Display name: Crypkey License
Object name: LocalSystem
Image path: crypserv.exe
Image size: 52224
Image MD5: 85A6662B5F12B84D599A74119F04B381
Start: 4
Type: 16
Error Control: 1

Service (registry key): CryptSvc
Display name: Cryptographic Services
Description: Provides three management services: Catalog Database Service, which confirms the signatures of Windows files; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): dac2w2k
Display name: dac2w2k
Image path: \SystemRoot\System32\DRIVERS\dac2w2k.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): dac960nt
Display name: dac960nt
Image path: \SystemRoot\System32\DRIVERS\dac960nt.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): DCamUSBSQTECH
Display name: Argus Digital Camera DC1512
Image path: System32\Drivers\SQcaptur.sys
Image size: 24511
Image MD5: D6A3A8524D8C7E29F073C77D09539A74
Start: 3
Type: 1
Error Control: 1

Service (registry key): DcCam
Start: 0
Type: 0
Error Control: 0

Service (registry key): DcomLaunch
Display name: DCOM Server Process Launcher
Description: Provides launch functionality for DCOM services.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost -k DcomLaunch
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1

Service (registry key): Dhcp
Display name: DHCP Client
Description: Manages network configuration by registering and updating IP addresses and DNS names.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd,NetBT

Service (registry key): Disk
Display name: Disk Driver
Image path: System32\DRIVERS\disk.sys
Image size: 36352
Image MD5: 00CA44E4534865F8A3B64F7C0984BFF0
Start: 0
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"

Service (registry key): Diskeeper
Display name: Diskeeper
Description: Controls the Windows Diskeeper Service
Object name: LocalSystem
Image path: "C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe"
Image size: 892928
Image MD5: 26E09498268C88BD6A7C791EBC71DBE5
Start: 3
Type: 16
Error Control: 0
Depends On services: RPCSS

Service (registry key): dmadmin
Display name: Logical Disk Manager Administrative Service
Description: Configures hard disk drives and volumes. The service only runs for configuration processes and then stops.
Object name: LocalSystem
Image path: %SystemRoot%\System32\dmadmin.exe /com
Image size: 224768
Image MD5: 554C7CB178FE3BD12450B81AD63ADBC3
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay,DmServer

Service (registry key): dmboot
Image path: System32\drivers\dmboot.sys
Image size: 799744
Image MD5: C0FBB516E06E243F0CF31F597E7EBF7D
Start: 4
Type: 1
Error Control: 1

Service (registry key): dmio
Image path: System32\drivers\dmio.sys
Image size: 153344
Image MD5: F5E7B358A732D09F4BCF2824B88B9E28
Start: 4
Type: 1
Error Control: 1

Service (registry key): dmload
Image path: System32\drivers\dmload.sys
Image size: 5888
Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F
Start: 4
Type: 1
Error Control: 1

Service (registry key): dmserver
Display name: Logical Disk Manager
Description: Detects and monitors new hard disk drives and sends disk volume information to Logical Disk Manager Administrative Service for configuration. If this service is stopped, dynamic disk status and configuration information may become out of date. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay

Service (registry key): DMusic
Display name: Microsoft Kernel DLS Syntheiszer
Image path: system32\drivers\DMusic.sys
Image size: 52864
Image MD5: A6F881284AC1150E37D9AE47FF601267
Start: 3
Type: 1
Error Control: 1

Service (registry key): Dnscache
Display name: DNS Client
Description: Resolves and caches Domain Name System (DNS) names for this computer. If this service is stopped, this computer will not be able to resolve DNS names and locate Active Directory domain controllers. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: Tcpip

Service (registry key): dpti2o
Display name: dpti2o
Image path: \SystemRoot\System32\DRIVERS\dpti2o.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): drmkaud
Display name: Microsoft Kernel DRM Audio Descrambler
Image path: system32\drivers\drmkaud.sys
Image size: 2944
Image MD5: 1ED4DBBAE9F5D558DBBA4CC450E3EB2E
Start: 3
Type: 1
Error Control: 1

Service (registry key): drvmcdb
Image path: system32\drivers\drvmcdb.sys
Image size: 84576
Image MD5: 7F056A52BCBA3102D2D37A4A2646C807
Start: 0
Type: 1
Error Control: 0

Service (registry key): drvncdb
Start: 0
Type: 0
Error Control: 0

Service (registry key): drvnddm
Image path: system32\drivers\drvnddm.sys
Image size: 40448
Image MD5: D3C1E501ED42E77574B3095309DD4075
Start: 2
Type: 2
Error Control: 0

Service (registry key): dtscsi
Image path: \SystemRoot\System32\Drivers\dtscsi.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): E100B
Display name: Intel(R) PRO Network Connection Driver
Image path: System32\DRIVERS\e100b325.sys
Image size: 162816
Image MD5: D57A8FC800B501AC05B10D00F66D127A
Start: 3
Type: 1
Error Control: 1

Service (registry key): EL90XBC
Display name: 3Com EtherLink XL 90XB/C Adapter Driver
Image path: System32\DRIVERS\el90xbc5.sys
Image size: 66591
Image MD5: 6E883BF518296A40959131C2304AF714
Start: 3
Type: 1
Error Control: 1

Service (registry key): EntDrv51
Display name: EntDrv51
Image path: \??\C:\WINDOWS\system32\drivers\EntDrv51.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): ERSvc
Display name: Error Reporting Service
Description: Allows error reporting for services and applictions running in non-standard environments.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs

Service (registry key): Eventlog
Display name: Event Log
Description: Enables event log messages issued by Windows-based programs and components to be viewed in Event Viewer. This service cannot be stopped.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 108032
Image MD5: C6CE6EEC82F187615D1002BB3BB50ED4
Start: 2
Type: 32
Error Control: 1

Service (registry key): EventSystem
Display name: COM+ Event System
Description: Supports System Event Notification Service (SENS), which provides automatic distribution of events to subscribing Component Object Model (COM) components. If the service is stopped, SENS will close and will not be able to provide logon and logoff notifications. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): Fastfat
Start: 4
Type: 2
Error Control: 1

Service (registry key): FastUserSwitchingCompatibility
Display name: Fast User Switching Compatibility
Description: Provides management for applications that require assistance in a multiple user environment.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: TermService

Service (registry key): Fdc
Display name: Floppy Disk Controller Driver
Image path: System32\DRIVERS\fdc.sys
Image size: 27392
Image MD5: CED2E8396A8838E59D8FD529C680E02C
Start: 3
Type: 1
Error Control: 1

Service (registry key): Fips
Start: 1
Type: 1
Error Control: 1

Service (registry key): Flpydisk
Display name: Floppy Disk Driver
Image path: System32\DRIVERS\flpydisk.sys
Image size: 20480
Image MD5: 0DD1DE43115B93F4D85E889D7A86F548
Start: 3
Type: 1
Error Control: 1

Service (registry key): FltMgr
Display name: FltMgr
Description: File System Filter Manager Driver
Image path: system32\drivers\fltmgr.sys
Image size: 128896
Image MD5: 3D234FB6D6EE875EB009864A299BEA29
Start: 0
Type: 2
Error Control: 1

Service (registry key): Freedom
Start: 0
Type: 0
Error Control: 0

Service (registry key): Frelp20
Image path: \??\C:\WINDOWS\system32\drivers\smcsrtln.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Fs_Rec
Start: 1
Type: 8
Error Control: 0

Service (registry key): Ftdisk
Display name: Volume Manager Driver
Image path: System32\DRIVERS\ftdisk.sys
Image size: 125056
Image MD5: 6AC26732762483366C3969C9E4D2259D
Start: 0
Type: 1
Error Control: 1

Service (registry key): GEARAspiWDM
Display name: GEARAspiWDM
Image path: System32\Drivers\GEARAspiWDM.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): gmer
Image path: System32\DRIVERS\gmer.sys
Image size: 83889
Image MD5: BE2A3FEAEC1E33B5762AEF2BA24F9D22
Start: 3
Type: 1
Error Control: 1

Service (registry key): Gpc
Display name: Generic Packet Classifier
Description: Generic Packet Classifier
Image path: System32\DRIVERS\msgpc.sys
Image size: 35072
Image MD5: C0F1D4A21DE5A415DF8170616703DEBF
Start: 3
Type: 1
Error Control: 1

Service (registry key): helpsvc
Display name: Help and Support
Description: Enables Help and Support Center to run on this computer. If this service is stopped, Help and Support Center will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): HidServ
Display name: Human Interface Device Access
Description: Enables generic input access to Human Interface Devices (HID), which activates and maintains the use of predefined hot buttons on keyboards, remote controls, and other multimedia devices. If this service is stopped, hot buttons controlled by this service will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): HidUsb
Display name: Microsoft HID Class Driver
Image path: system32\DRIVERS\hidusb.sys
Image size: 9600
Image MD5: 1DE6783B918F540149AA69943BDFEBA8
Start: 3
Type: 1
Error Control: 0

Service (registry key): hpn
Display name: hpn
Image path: \SystemRoot\System32\DRIVERS\hpn.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): HSFHWBS2
Image path: system32\DRIVERS\HSFHWBS2.sys
Image size: 212224
Image MD5: 77E4FF0B73BC0AEAAF39BF0C8104231F
Start: 3
Type: 1
Error Control: 0

Service (registry key): HSF_DP
Image path: system32\DRIVERS\HSF_DP.sys
Image size: 1042432
Image MD5: 60E1604729A15EF4A3B05F298427B3B1
Start: 3
Type: 1
Error Control: 0

Service (registry key): HTTP
Display name: HTTP
Description: This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start.
Image path: System32\Drivers\HTTP.sys
Image size: 262784
Image MD5: CB77BB47E67E84DEB17BA29632501730
Start: 3
Type: 1
Error Control: 1

Service (registry key): HTTPFilter
Display name: HTTP SSL
Description: This service implements the secure hypertext transfer protocol (HTTPS) for the HTTP service, using the Secure Socket Layer (SSL). If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k HTTPFilter
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP

Service (registry key): i2omgmt
Start: 1
Type: 1
Error Control: 1

Service (registry key): i2omp
Display name: i2omp
Image path: \SystemRoot\System32\DRIVERS\i2omp.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): i8042prt
Display name: i8042 Keyboard and PS/2 Mouse Port Driver
Image path: System32\DRIVERS\i8042prt.sys
Image size: 52736
Image MD5: 5502B58EEF7486EE6F93F3F164DCB808
Start: 1
Type: 1
Error Control: 1

Service (registry key): i81x
Image path: System32\DRIVERS\i81xnt5.sys
Image size: 161020
Image MD5: 06B7EF73BA5F302EECC294CDF7E19702
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimFP0
Image path: System32\DRIVERS\wADV01nt.sys
Image size: 12415
Image MD5: 7B5B44EFE5EB9DADFB8EE29700885D23
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimFP1
Image path: System32\DRIVERS\wADV02NT.sys
Image size: 12127
Image MD5: EB1F6BAB6C22EDE0BA551B527475F7E9
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimFP2
Image path: System32\DRIVERS\wADV05NT.sys
Image size: 11775
Image MD5: 03CE989D846C1AA81145CB22FCB86D06
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimFP3
Image path: System32\DRIVERS\wSiINTxx.sys
Image size: 12063
Image MD5: 525849B4469DE021D5D61B4DB9BE3A9D
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimFP4
Image path: System32\DRIVERS\wVchNTxx.sys
Image size: 19455
Image MD5: 589C2BCDB5BD602BF7B63D210407EF8C
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimTV0
Image path: System32\DRIVERS\wATV01nt.sys
Image size: 29311
Image MD5: D83BDD5C059667A2F647A6BE5703A4D2
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimTV1
Image path: System32\DRIVERS\wATV02NT.sys
Image size: 19551
Image MD5: ED968D23354DAA0D7C621580C012A1F6
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimTV2
Image path: System32\DRIVERS\wATV03nt.sys
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimTV3
Image path: System32\DRIVERS\wATV04nt.sys
Image size: 33599
Image MD5: D738273F218A224C1DDAC04203F27A84
Start: 3
Type: 1
Error Control: 0

Service (registry key): iAimTV4
Image path: System32\DRIVERS\wCh7xxNT.sys
Image size: 23615
Image MD5: 0052D118995CBAB152DAABE6106D1442
Start: 3
Type: 1
Error Control: 0

Service (registry key): ICSharing
Start: 0
Type: 0
Error Control: 0

Service (registry key): IDriverT
Display name: InstallDriver Table Manager
Description: Provides support for the Running Object Table for InstallShield Drivers
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"
Image size: 69632
Image MD5: 1CF03C69B49ACB70C722DF92755C0C8C
Start: 3
Type: 16
Error Control: 0

Service (registry key): Imapi
Display name: CD-Burning Filter Driver
Image path: System32\DRIVERS\imapi.sys
Image size: 41856
Image MD5: F8AA320C6A0409C0380E5D8A99D76EC6
Start: 1
Type: 1
Error Control: 1

Service (registry key): ImapiService
Display name: IMAPI CD-Burning COM Service
Description: Manages CD recording using Image Mastering Applications Programming Interface (IMAPI). If this service is stopped, this computer will be unable to record CDs. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\imapi.exe
Image size: 150016
Image MD5: FA788520BCAC0F5D9D5CDE5615C0D931
Start: 3
Type: 16
Error Control: 1

Service (registry key): inetaccs
Start: 0
Type: 0
Error Control: 0

Service (registry key): ini910u
Display name: ini910u
Image path: \SystemRoot\System32\DRIVERS\ini910u.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Inport
Start: 0
Type: 0
Error Control: 0

Service (registry key): IntelIde
Display name: IntelIde
Image path: \SystemRoot\System32\DRIVERS\intelide.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): intelppm
Display name: Intel Processor Driver
Image path: System32\DRIVERS\intelppm.sys
Image size: 36096
Image MD5: 279FB78702454DFF2BB445F238C048D2
Start: 1
Type: 1
Error Control: 1

Service (registry key): Ip6Fw
Display name: IPv6 Windows Firewall Driver
Description: Provides intrusion prevention service for a home or small office network.
Image path: system32\drivers\ip6fw.sys
Image size: 29056
Image MD5: 4448006B6BC60E6C027932CFC38D6855
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip6

Service (registry key): IpFilterDriver
Display name: IP Traffic Filter Driver
Description: IP Traffic Filter Driver
Image path: System32\DRIVERS\ipfltdrv.sys
Image size: 32896
Image MD5: 731F22BA402EE4B62748ADAF6363C182
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): IpInIp
Display name: IP in IP Tunnel Driver
Description: IP in IP Tunnel Driver
Image path: System32\DRIVERS\ipinip.sys
Image size: 20992
Image MD5: E1EC7F5DA720B640CD8FB8424F1B14BB
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): IpNat
Display name: IP Network Address Translator
Description: IP Network Address Translator
Image path: System32\DRIVERS\ipnat.sys
Image size: 134912
Image MD5: E2168CBC7098FFE963C6F23F472A3593
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): iPodService
Display name: iPodService
Description: iPod hardware management services
Object name: LocalSystem
Image path: C:\Program Files\iPod\bin\iPodService.exe
Start: 4
Type: 16
Error Control: 1
Depends On services: RPCSS

Service (registry key): IPSec
Display name: IPSEC driver
Description: IPSEC driver
Image path: System32\DRIVERS\ipsec.sys
Image size: 74752
Image MD5: 64537AA5C003A6AFEEE1DF819062D0D1
Start: 1
Type: 1
Error Control: 1

Service (registry key): IRENUM
Display name: IR Enumerator Service
Image path: System32\DRIVERS\irenum.sys
Image size: 11264
Image MD5: 50708DAA1B1CBB7D6AC1CF8F56A24410
Start: 3
Type: 1
Error Control: 1

Service (registry key): ISAPISearch
Start: 0
Type: 0
Error Control: 0

Service (registry key): isapnp
Display name: PnP ISA/EISA Bus Driver
Image path: System32\DRIVERS\isapnp.sys
Image size: 35840
Image MD5: E504F706CCB699C2596E9A3DA1596E87
Start: 0
Type: 1
Error Control: 3

Service (registry key): Kbdclass
Display name: Keyboard Class Driver
Image path: System32\DRIVERS\kbdclass.sys
Image size: 24576
Image MD5: EBDEE8A2EE5393890A1ACEE971C4C246
Start: 1
Type: 1
Error Control: 1

Service (registry key): kmixer
Display name: Microsoft Kernel Wave Audio Mixer
Image path: system32\drivers\kmixer.sys
Image size: 172416
Image MD5: BA5DEDA4D934E6288C2F66CAF58D2562
Start: 3
Type: 1
Error Control: 1

Service (registry key): KSecDD
Start: 0
Type: 1
Error Control: 1

Service (registry key): L8042Kbd
Display name: Logitech SetPoint Keyboard Driver
Image path: system32\DRIVERS\L8042Kbd.sys
Image size: 13568
Image MD5: 0F5AE6805EF05DBBE205E5B196CADF31
Start: 3
Type: 1
Error Control: 0

Service (registry key): L8042mou
Display name: Logitech SetPoint PS/2 Mouse Filter Driver
Image path: System32\Drivers\L8042mou.sys
Image size: 55936
Image MD5: EE1C6C057A83F93AD9AE7CDF12F0BAA0
Start: 3
Type: 1
Error Control: 0

Service (registry key): lanmanserver
Display name: Server
Description: Supports file, print, and named-pipe sharing over the network for this computer. If this service is stopped, these functions will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1

Service (registry key): lanmanworkstation
Display name: Workstation
Description: Creates and maintains client network connections to remote servers. If this service is stopped, these connections will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1

Service (registry key): LBeepKE
Display name: LBeepKE
Description: Logitech Beep Suppression Driver
Image path: System32\Drivers\LBeepKE.sys
Image size: 3712
Image MD5: 17638894E150EFEE66D97BCE8F037519
Start: 2
Type: 1
Error Control: 1

Service (registry key): lbrtfdc
Start: 1
Type: 1
Error Control: 0

Service (registry key): ldap
Start: 0
Type: 0
Error Control: 0

Service (registry key): LexBceS
Display name: LexBce Server
Object name: LocalSystem
Image path: C:\WINDOWS\system32\LEXBCES.EXE
Image size: 303104
Image MD5: 1A787CEA43AFC33F433D84C25FD4AC68
Start: 4
Type: 272
Error Control: 1
Depends On services: RPCSS

Service (registry key): LHidKe
Display name: SetPoint HID Mouse Filter Driver
Image path: system32\DRIVERS\LHidKE.Sys
Image size: 27136
Image MD5: EAED22460DAD9CCD9C9A58C78E717497
Start: 3
Type: 1
Error Control: 1

Service (registry key): LHidUsbK
Display name: SetPoint USB Receiver device driver
Description: SetPoint USB Receiver
Image path: System32\Drivers\LHidUsbK.Sys
Image size: 36736
Image MD5: F99FDDB71DA6A66EE2EBCC49F5BFADBB
Start: 3
Type: 1
Error Control: 0

Service (registry key): LicCtrlService
Display name: LicCtrl Service
Object name: LocalSystem
Image path: C:\WINDOWS\runservice.exe
Image size: 2560
Image MD5: 29FAB5363138F6E322F4CD780ED9D337
Start: 3
Type: 16
Error Control: 1

Service (registry key): LicenseService
Start: 0
Type: 0
Error Control: 0

Service (registry key): LmHosts
Display name: TCP/IP NetBIOS Helper
Description: Enables support for NetBIOS over TCP/IP (NetBT) service and NetBIOS name resolution.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: NetBT,Afd

Service (registry key): LMouKE
Display name: SetPoint Mouse Filter Driver
Image path: system32\DRIVERS\LMouKE.Sys
Image size: 71936
Image MD5: D1FD76EA56CD653D7B55A0FAC96EE416
Start: 3
Type: 1
Error Control: 1

Service (registry key): MCSTRM
Display name: MCSTRM
Start: 2
Type: 1
Error Control: 1

Service (registry key): MDM
Display name: Machine Debug Manager
Description: Supports local and remote debugging for Visual Studio and script debuggers. If this service is stopped, the debuggers will not function properly.
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe"
Image size: 335872
Image MD5: A3F33BD1A9796A41C0AC29ED76F29A68
Start: 3
Type: 272
Error Control: 1
Depends On services: RPCSS

Service (registry key): mdmxsdk
Image path: system32\DRIVERS\mdmxsdk.sys
Image size: 11043
Image MD5: EEAEA6514BA7C9D273B5E87C4E1AAB30
Start: 2
Type: 1
Error Control: 0

Service (registry key): Messenger
Display name: Messenger
Description: Transmits net send and Alerter service messages between clients and servers. This service is not related to Windows Messenger. If this service is stopped, Alerter messages will not be transmitted. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,NetBIOS,PlugPlay,RpcSS

Service (registry key): mnmdd
Start: 1
Type: 1
Error Control: 0

Service (registry key): mnmsrvc
Display name: NetMeeting Remote Desktop Sharing
Description: Enables an authorized user to access this computer remotely by using NetMeeting over a corporate intranet. If this service is stopped, remote desktop sharing will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\mnmsrvc.exe
Image size: 32768
Image MD5: F6415361201915B9FE3896B0E4E724FF
Start: 3
Type: 272
Error Control: 1

Service (registry key): Modem
Start: 3
Type: 1
Error Control: 0

Service (registry key): MODEMCSA
Display name: Unimodem Streaming Filter Device
Image path: system32\drivers\MODEMCSA.sys
Image size: 16128
Image MD5: 1992E0D143B09653AB0F9C5E04B0FD65
Start: 3
Type: 1
Error Control: 1

Service (registry key): Mouclass
Display name: Mouse Class Driver
Image path: System32\DRIVERS\mouclass.sys
Image size: 23040
Image MD5: 34E1F0031153E491910E12551400192C
Start: 1
Type: 1
Error Control: 1

Service (registry key): mouhid
Display name: Mouse HID Driver
Image path: System32\DRIVERS\mouhid.sys
Image size: 12160
Image MD5: B1C303E17FB9D46E87A98E4BA6769685
Start: 3
Type: 1
Error Control: 0

Service (registry key): MountMgr
Display name: Mount Point Manager
Start: 0
Type: 1
Error Control: 1

Service (registry key): mraid35x
Display name: mraid35x
Image path: \SystemRoot\System32\DRIVERS\mraid35x.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): MRxDAV
Display name: WebDav Client Redirector
Description: WebDav Client Redirector
Image path: System32\DRIVERS\mrxdav.sys
Image size: 181248
Image MD5: 46EDCC8F2DB2F322C24F48785CB46366
Start: 3
Type: 2
Error Control: 1

Service (registry key): MRxSmb
Display name: MRXSMB
Description: MRXSMB
Image path: System32\DRIVERS\mrxsmb.sys
Image size: 453120
Image MD5: 025AF03CE51645C62F3B6907A7E2BE5E
Start: 1
Type: 2
Error Control: 1

Service (registry key): MsaSvc
Display name: Microsoft authenticate service
Description: Authenticate network access users
Object name: LocalSystem
Image path: C:\WINDOWS\system32\msasvc.exe
Image size: 3584
Image MD5: 2E34193029D5959156AFE784CC6C2F73
Start: 2
Type: 272
Error Control: 1

Service (registry key): MSDTC
Display name: Distributed Transaction Coordinator
Description: Coordinates transactions that span multiple resource managers, such as databases, message queues, and file systems. If this service is stopped, these transactions will not occur. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\msdtc.exe
Image size: 6144
Image MD5: C7C3D89EB0A6F3DBA622EA737FA335B1
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS,SamSS

Service (registry key): Msfs
Start: 1
Type: 2
Error Control: 1

Service (registry key): MSIServer
Display name: Windows installer
Object name: LocalSystem
Image path: C:\WINDOWS\system32\msiexec.exe /V
Image size: 78848
Image MD5: F5F0146580E7023ADB963879840777F8
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): MSKSSRV
Display name: Microsoft Streaming Service Proxy
Image path: system32\drivers\MSKSSRV.sys
Image size: 7552
Image MD5: AE431A8DD3C1D0D0610CDBAC16057AD0
Start: 3
Type: 1
Error Control: 1

Service (registry key): MSPCLOCK
Display name: Microsoft Streaming Clock Proxy
Image path: system32\drivers\MSPCLOCK.sys
Image size: 5376
Image MD5: 13E75FEF9DFEB08EEDED9D0246E1F448
Start: 3
Type: 1
Error Control: 1

Service (registry key): MSPQM
Display name: Microsoft Streaming Quality Manager Proxy
Image path: system32\drivers\MSPQM.sys
Image size: 4992
Image MD5: 1988A33FF19242576C3D0EF9CE785DA7
Start: 3
Type: 1
Error Control: 1

Service (registry key): mssmbios
Display name: Microsoft System Management BIOS Driver
Image path: System32\DRIVERS\mssmbios.sys
Image size: 15488
Image MD5: 469541F8BFD2B32659D5D463A6714BCE
Start: 3
Type: 1
Error Control: 1

Service (registry key): MSTEE
Display name: Microsoft Streaming Tee/Sink-to-Sink Converter
Image path: system32\drivers\MSTEE.sys
Image size: 5504
Image MD5: BF13612142995096AB084F2DB7F40F77
Start: 3
Type: 1
Error Control: 1

Service (registry key): Mup
Display name: Mup
Start: 0
Type: 2
Error Control: 1

Service (registry key): NABTSFEC
Display name: NABTS/FEC VBI Codec
Image path: System32\DRIVERS\NABTSFEC.sys
Image size: 85376
Image MD5: 5C8DC6429C43DC6177C1FA5B76290D1A
Start: 3
Type: 1
Error Control: 1

Service (registry key): NaiAvFilter1
Image path: system32\drivers\naiavf5x.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): NDIS
Display name: NDIS System Driver
Start: 0
Type: 1
Error Control: 1

Service (registry key): NdisIP
Display name: Microsoft TV/Video Connection
Image path: System32\DRIVERS\NdisIP.sys
Image size: 10880
Image MD5: 520CE427A8B298F54112857BCF6BDE15
Start: 3
Type: 1
Error Control: 1

Service (registry key): NdisTapi
Display name: Remote Access NDIS TAPI Driver
Description: Remote Access NDIS TAPI Driver
Image path: System32\DRIVERS\ndistapi.sys
Image size: 9600
Image MD5: 08D43BBDACDF23F34D79E44ED35C1B4C
Start: 3
Type: 1
Error Control: 1

Service (registry key): Ndisuio
Display name: NDIS Usermode I/O Protocol
Description: NDIS Usermode I/O Protocol
Image path: System32\DRIVERS\ndisuio.sys
Image size: 12928
Image MD5: 34D6CD56409DA9A7ED573E1C90A308BF
Start: 3
Type: 1
Error Control: 1

Service (registry key): NdisWan
Display name: Remote Access NDIS WAN Driver
Description: Remote Access NDIS WAN Driver
Image path: System32\DRIVERS\ndiswan.sys
Image size: 91776
Image MD5: 0B90E255A9490166AB368CD55A529893
Start: 3
Type: 1
Error Control: 1

Service (registry key): NDProxy
Start: 3
Type: 1
Error Control: 1

Service (registry key): NetBIOS
Display name: NetBIOS Interface
Description: NetBIOS Interface
Image path: System32\DRIVERS\netbios.sys
Image size: 34560
Image MD5: 3A2ACA8FC1D7786902CA434998D7CEB4
Start: 1
Type: 2
Error Control: 1

Service (registry key): NetBT
Display name: NetBios over Tcpip
Description: NetBios over Tcpip
Image path: System32\DRIVERS\netbt.sys
Image size: 162816
Image MD5: 0C80E410CD2F47134407EE7DD19CC86B
Start: 1
Type: 1
Error Control: 1
Depends On services: Tcpip

Service (registry key): NetDDE
Display name: Network DDE
Description: Provides network transport and security for Dynamic Data Exchange (DDE) for programs running on the same computer or on different computers. If this service is stopped, DDE transport and security will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\netdde.exe
Image size: 111104
Image MD5: 05AFB5AD06462257BEA7495283C86D50
Start: 4
Type: 32
Error Control: 1
Depends On services: NetDDEDSDM

Service (registry key): NetDDEdsdm
Display name: Network DDE DSDM
Description: Manages Dynamic Data Exchange (DDE) network shares. If this service is stopped, DDE network shares will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\netdde.exe
Image size: 111104
Image MD5: 05AFB5AD06462257BEA7495283C86D50
Start: 4
Type: 32
Error Control: 1

Service (registry key): Netlogon
Display name: Net Logon
Description: Supports pass-through authentication of account logon events for computers in a domain.
Object name: LocalSystem
Image path: %SystemRoot%\System32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): Netman
Display name: Network Connections
Description: Manages objects in the Network and Dial-Up Connections folder, in which you can view both local area network and remote connections.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 288
Error Control: 1
Depends On services: RpcSs

Service (registry key): NetworkX
Display name: NetworkX
Image path: \SystemRoot\system32\ckldrv.sys
Start: 1
Type: 1
Error Control: 1

Service (registry key): Nla
Display name: Network Location Awareness (NLA)
Description: Collects and stores network configuration and location information, and notifies applications when this information changes.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd

Service (registry key): Npfs
Start: 1
Type: 2
Error Control: 1

Service (registry key): npkcrypt
Display name: npkcrypt
Image path: \??\C:\Program Files\Wizet\MapleStory\npkcrypt.sys
Image size: 34978
Image MD5: DB56CF603A61BEBFE031CFB3C95DB816
Start: 2
Type: 1
Error Control: 1

Service (registry key): Ntfs
Start: 4
Type: 2
Error Control: 1

Service (registry key): NtLmSsp
Display name: NT LM Security Support Provider
Description: Provides security to remote procedure call (RPC) programs that use transports other than named pipes.
Object name: LocalSystem
Image path: %SystemRoot%\System32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 3
Type: 32
Error Control: 1

Service (registry key): NtmsSvc
Display name: Removable Storage
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): Null
Start: 1
Type: 1
Error Control: 1

Service (registry key): NwlnkFlt
Display name: IPX Traffic Filter Driver
Description: IPX Traffic Filter Driver
Image path: System32\DRIVERS\nwlnkflt.sys
Image size: 12416
Image MD5: B305F3FAD35083837EF46A0BBCE2FC57
Start: 3
Type: 1
Error Control: 1
Depends On services: NwlnkFwd

Service (registry key): NwlnkFwd
Display name: IPX Traffic Forwarder Driver
Description: IPX Traffic Forwarder Driver
Image path: System32\DRIVERS\nwlnkfwd.sys
Image size: 32512
Image MD5: C99B3415198D1AAB7227F2C88FD664B9
Start: 3
Type: 1
Error Control: 1

Service (registry key): omci
Display name: OMCI WDM Device Driver
Image path: System32\DRIVERS\omci.sys
Image size: 17217
Image MD5: 53D5F1278D9EDB21689BBBCECC09108D
Start: 1
Type: 1
Error Control: 1

Service (registry key): P3
Display name: Intel PentiumIII Processor Driver
Image path: System32\DRIVERS\p3.sys
Image size: 42496
Image MD5: 3E16EFF2A6FED2D8D7F5A66DFE65D183
Start: 1
Type: 1
Error Control: 1

Service (registry key): Parport
Display name: Parallel port driver
Image path: System32\DRIVERS\parport.sys
Image size: 80128
Image MD5: 29744EB4CE659DFE3B4122DEB45BC478
Start: 3
Type: 1
Error Control: 1

Service (registry key): PartMgr
Display name: Partition Manager
Start: 0
Type: 1
Error Control: 1

Service (registry key): ParVdm
Start: 2
Type: 1
Error Control: 0
Depends On services: Parport
Depends On group: "Parallel arbitrator"

Service (registry key): PCI
Display name: PCI Bus Driver
Image path: System32\DRIVERS\pci.sys
Image size: 68224
Image MD5: 8086D9979234B603AD5BC2F5D890B234
Start: 0
Type: 1
Error Control: 3

Service (registry key): PCIDump
Start: 1
Type: 1
Error Control: 0

Service (registry key): PCIIde
Image path: System32\DRIVERS\pciide.sys
Image size: 3328
Image MD5: CCF5F451BB1A5A2A522A76E670000FF0
Start: 0
Type: 1
Error Control: 1

Service (registry key): Pcmcia
Start: 4
Type: 1
Error Control: 1

Service (registry key): Pcouffin
Display name: Low level access layer for CD devices
Image path: System32\Drivers\Pcouffin.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): PDCOMP
Start: 3
Type: 1
Error Control: 0

Service (registry key): PDFRAME
Start: 3
Type: 1
Error Control: 0

Service (registry key): PDRELI
Start: 3
Type: 1
Error Control: 0

Service (registry key): PDRFRAME
Start: 3
Type: 1
Error Control: 0

Service (registry key): perc2
Display name: perc2
Image path: \SystemRoot\System32\DRIVERS\perc2.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): perc2hib
Display name: perc2hib
Image path: \SystemRoot\System32\DRIVERS\perc2hib.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): PerfDisk
Start: 0
Type: 0
Error Control: 0

Service (registry key): PerfNet
Start: 0
Type: 0
Error Control: 0

Service (registry key): PerfOS
Start: 0
Type: 0
Error Control: 0

Service (registry key): PerfProc
Start: 0
Type: 0
Error Control: 0

Service (registry key): PlugPlay
Display name: Plug and Play
Description: Enables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 108032
Image MD5: C6CE6EEC82F187615D1002BB3BB50ED4
Start: 2
Type: 32
Error Control: 1

Service (registry key): PolicyAgent
Display name: IPSEC Services
Description: Manages IP security policy and starts the ISAKMP/Oakley (IKE) and the IP security driver.
Object name: LocalSystem
Image path: %SystemRoot%\System32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS,Tcpip,IPSec

Service (registry key): PptpMiniport
Display name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Image path: System32\DRIVERS\raspptp.sys
Image size: 48384
Image MD5: 1C5CC65AAC0783C344F16353E60B72AC
Start: 3
Type: 1
Error Control: 1

Service (registry key): Processor
Display name: Processor Driver
Image path: System32\DRIVERS\processr.sys
Image size: 35328
Image MD5: 0D97D88720A4087EC93AF7DBB303B30A
Start: 1
Type: 1
Error Control: 1

Service (registry key): ProtectedStorage
Display name: Protected Storage
Description: Provides protected storage for sensitive data, such as private keys, to prevent access by unauthorized services, processes, or users.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 2
Type: 288
Error Control: 1
Depends On services: RpcSs

Service (registry key): PSched
Display name: QoS Packet Scheduler
Description: QoS Packet Scheduler
Image path: System32\DRIVERS\psched.sys
Image size: 69120
Image MD5: 48671F327553DCF1D27F6197F622A668
Start: 3
Type: 1
Error Control: 1
Depends On services: Gpc

Service (registry key): Ptilink
Display name: Direct Parallel Link Driver
Description: Direct Parallel Link Driver
Image path: System32\DRIVERS\ptilink.sys
Image size: 17792
Image MD5: 80D317BD1C3DBC5D4FE7B1678C60CADD
Start: 3
Type: 1
Error Control: 1

Service (registry key): PxHelp20
Image path: System32\DRIVERS\PxHelp20.sys
Image size: 36528
Image MD5: 81088114178112618B1C414A65E50F7C
Start: 0
Type: 1
Error Control: 1

Service (registry key): ql1080
Display name: ql1080
Image path: \SystemRoot\System32\DRIVERS\ql1080.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Ql10wnt
Display name: Ql10wnt
Image path: \SystemRoot\System32\DRIVERS\ql10wnt.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): ql12160
Display name: ql12160
Image path: \SystemRoot\System32\DRIVERS\ql12160.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): ql1240
Display name: ql1240
Image path: \SystemRoot\System32\DRIVERS\ql1240.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): ql1280
Display name: ql1280
Image path: \SystemRoot\System32\DRIVERS\ql1280.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): RasAcd
Display name: Remote Access Auto Connection Driver
Description: Remote Access Auto Connection Driver
Image path: System32\DRIVERS\rasacd.sys
Image size: 8832
Image MD5: FE0D99D6F31E4FAD8159F690D68DED9C
Start: 1
Type: 1
Error Control: 1

Service (registry key): RasAuto
Display name: Remote Access Auto Connection Manager
Description: Creates a connection to a remote network whenever a program references a remote DNS or NetBIOS name or address.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RasMan,Tapisrv

Service (registry key): Rasl2tp
Display name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Image path: System32\DRIVERS\rasl2tp.sys
Image size: 51328
Image MD5: 98FAEB4A4DCF812BA1C6FCA4AA3E115C
Start: 3
Type: 1
Error Control: 1

Service (registry key): RasMan
Display name: Remote Access Connection Manager
Description: Creates a network connection.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: Tapisrv

Service (registry key): RasPppoe
Display name: Remote Access PPPOE Driver
Description: Remote Access PPPOE Driver
Image path: System32\DRIVERS\raspppoe.sys
Image size: 41472
Image MD5: 7306EEED8895454CBED4669BE9F79FAA
Start: 3
Type: 1
Error Control: 1

Service (registry key): Raspti
Display name: Direct Parallel
Description: Direct Parallel
Image path: System32\DRIVERS\raspti.sys
Image size: 16512
Image MD5: FDBB1D60066FCFBB7452FD8F9829B242
Start: 3
Type: 1
Error Control: 1

Service (registry key): Rdbss
Display name: Rdbss
Description: Rdbss
Image path: System32\DRIVERS\rdbss.sys
Image size: 174592
Image MD5: 03B965B1CA47F6EF60EB5E51CB50E0AF
Start: 1
Type: 2
Error Control: 1

Service (registry key): RDPCDD
Image path: System32\DRIVERS\RDPCDD.sys
Image size: 4224
Image MD5: 4912D5B403614CE99C28420F75353332
Start: 1
Type: 1
Error Control: 0

Service (registry key): RDPDD
Start: 0
Type: 0
Error Control: 0

Service (registry key): rdpdr
Display name: Terminal Server Device Redirector Driver
Image path: System32\DRIVERS\rdpdr.sys
Image size: 196864
Image MD5: A2CAE2C60BC37E0751EF9DDA7CEAF4AD
Start: 3
Type: 1
Error Control: 1

Service (registry key): RDPNP
Start: 0
Type: 0
Error Control: 0

Service (registry key): RDPWD
Start: 3
Type: 1
Error Control: 0

Service (registry key): RDSessMgr
Display name: Remote Desktop Help Session Manager
Description: Manages and controls Remote Assistance. If this service is stopped, Remote Assistance will be unavailable. Before stopping this service, see the Dependencies tab of the Properties dialog box.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\sessmgr.exe
Image size: 140800
Image MD5: 729798E0933076B8FCFCD9934698F164
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS

Service (registry key): redbook
Display name: Digital CD Audio Playback Filter Driver
Image path: System32\DRIVERS\redbook.sys
Image size: 57472
Image MD5: B31B4588E4086D8D84ADBF9845C2402B
Start: 1
Type: 1
Error Control: 1

Service (registry key): RemoteAccess
Display name: Routing and Remote Access
Description: Offers routing services to businesses in local area and wide area network environments.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: RpcSS
Depends On group: NetBIOSGroup

Service (registry key): RpcLocator
Display name: Remote Procedure Call (RPC) Locator
Description: Manages the RPC name service database.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\locator.exe
Image size: 75264
Image MD5: 793F04A09B15E7C6C11DBDFFAF06C0AB
Start: 3
Type: 16
Error Control: 1
Depends On services: LanmanWorkstation

Service (registry key): RpcSs
Display name: Remote Procedure Call (RPC)
Description: Provides the endpoint mapper and other miscellaneous RPC services.
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\svchost -k rpcss
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1

Service (registry key): RSVP
Display name: QoS RSVP
Description: Provides network signaling and local traffic control setup functionality for QoS-aware programs and control applets.
Object name: LocalSystem
Image path: %SystemRoot%\System32\rsvp.exe
Image size: 132608
Image MD5: 471B3F9741D762ABE75E9DEEA4787E47
Start: 3
Type: 16
Error Control: 1
Depends On services: TcpIp,Afd,RpcSs

Service (registry key): SamSs
Display name: Security Accounts Manager
Description: Stores security information for local user accounts.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): SandraTheSrv
Display name: Sandra Service
Object name: LocalSystem
Image path: C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcSandraSrv.exe
Start: 3
Type: 272
Error Control: 1
Depends On services: RPCSS

Service (registry key): SCardSvr
Display name: Smart Card
Description: Manages access to smart cards read by this computer. If this service is stopped, this computer will be unable to read smart cards. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\SCardSvr.exe
Image size: 95744
Image MD5: 25D8DE134DF108E3DBC8D7D23B1AA58E
Start: 3
Type: 32
Error Control: 0
Depends On services: PlugPlay

Service (registry key): Schedule
Display name: Task Scheduler
Description: Enables a user to configure and schedule automated tasks on this computer. If this service is stopped, these tasks will not be run at their scheduled times. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 288
Error Control: 1
Depends On services: RpcSs

Service (registry key): ScsiPort
Image path: %SystemRoot%\system32\drivers\scsiport.sys
Image size: 96256
Image MD5: D7FD0FF761E28AC0EA35AD71E0CD67E9
Start: 0
Type: 0
Error Control: 0

Service (registry key): Secdrv
Display name: Secdrv
Description: SafeDisc driver
Image path: System32\DRIVERS\secdrv.sys
Image size: 12400
Image MD5: BA0D892D2F786BCEBDF03B0A252B47F3
Start: 2
Type: 1
Error Control: 1

Service (registry key): seclogon
Display name: Secondary Logon
Description: Enables starting processes under alternate credentials. If this service is stopped, this type of logon access will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 288
Error Control: 0

Service (registry key): SENS
Display name: System Event Notification
Description: Tracks system events such as Windows logon, network, and power events. Notifies COM+ Event System subscribers of these events.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: EventSystem

Service (registry key): serenum
Display name: Serenum Filter Driver
Image path: System32\DRIVERS\serenum.sys
Image size: 15488
Image MD5: A2D868AEEFF612E70E213C451A70CAFB
Start: 3
Type: 1
Error Control: 1

Service (registry key): Serial
Display name: Serial port driver
Image path: System32\DRIVERS\serial.sys
Image size: 64896
Image MD5: CD9404D115A00D249F70A371B46D5A26
Start: 1
Type: 1
Error Control: 0

Service (registry key): Sfloppy
Start: 1
Type: 1
Error Control: 0
Depends On group: "SCSI miniport"

Service (registry key): SharedAccess
Start: 0
Type: 0
Error Control: 0

Service (registry key): ShellHWDetection
Display name: Shell Hardware Detection
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs

Service (registry key): Simbad
Start: 4
Type: 1
Error Control: 1

Service (registry key): sisagp
Display name: SIS AGP Bus Filter
Image path: \SystemRoot\System32\DRIVERS\sisagp.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): SLIP
Display name: BDA Slip De-Framer
Image path: System32\DRIVERS\SLIP.sys
Image size: 11136
Image MD5: 5CAEED86821FA2C6139E32E9E05CCDC9
Start: 3
Type: 1
Error Control: 1

Service (registry key): smwdm
Image path: system32\drivers\smwdm.sys
Image size: 578176
Image MD5: 39F9595D2F6F7EB93F45A466789A6F49
Start: 3
Type: 1
Error Control: 1

Service (registry key): SNDSrvc
Display name: Symantec Network Drivers Service
Description: Symantec Network Drivers Service
Object name: LocalSystem
Image path: C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
Image size: 193760
Image MD5: 9EB1603B63C7DDC16B1D585AA60483DD
Start: 3
Type: 16
Error Control: 0

Service (registry key): Sparrow
Display name: Sparrow
Image path: \SystemRoot\System32\DRIVERS\sparrow.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): splitter
Display name: Microsoft Kernel Audio Splitter
Image path: system32\drivers\splitter.sys
Image size: 6400
Image MD5: 0CE218578FFF5F4F7E4201539C45C78F
Start: 3
Type: 1
Error Control: 1

Service (registry key): Spooler
Display name: Print Spooler
Description: Loads files to memory for later printing.
Object name: LocalSystem
Image path: %SystemRoot%\system32\spoolsv.exe
Image size: 57856
Image MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
Start: 3
Type: 272
Error Control: 1
Depends On services: LexBceS,RPCSS

Service (registry key): sr
Display name: System Restore Filter Driver
Image path: System32\DRIVERS\sr.sys
Image size: 73472
Image MD5: E41B6D037D6CD08461470AF04500DC24
Start: 0
Type: 2
Error Control: 1

Service (registry key): srservice
Display name: System Restore Service
Description: Performs system restore functions. To stop service, turn off System Restore from the System Restore tab in My Computer->Properties
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): Srv
Display name: Srv
Description: Srv
Image path: System32\DRIVERS\srv.sys
Image size: 332928
Image MD5: EA554A3FFC3F536FE8320EB38F5E4843
Start: 3
Type: 2
Error Control: 1

Service (registry key): sscdbhk5
Image path: system32\drivers\sscdbhk5.sys
Image size: 5621
Image MD5: 328E8BB94EC58480F60458FB4B8437A7
Start: 1
Type: 2
Error Control: 0

Service (registry key): SSDPSRV
Display name: SSDP Discovery Service
Description: Enables discovery of UPnP devices on your home network.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: HTTP

Service (registry key): ssrtln
Image path: system32\drivers\ssrtln.sys
Image size: 23219
Image MD5: 7EC8B427CEE5C0CDAC066320B93F1355
Start: 1
Type: 2
Error Control: 0

Service (registry key): stisvc
Display name: Windows Image Acquisition (WIA)
Description: Provides image acquisition services for scanners and cameras.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k imgsvc
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): streamip
Display name: BDA IPSink
Image path: System32\DRIVERS\StreamIP.sys
Image size: 15360
Image MD5: 284C57DF5DC7ABCA656BC2B96A667AFB
Start: 3
Type: 1
Error Control: 1

Service (registry key): swenum
Display name: Software Bus Driver
Image path: System32\DRIVERS\swenum.sys
Image size: 4352
Image MD5: 03C1BAE4766E2450219D20B993D6E046
Start: 3
Type: 1
Error Control: 1

Service (registry key): swmidi
Display name: Microsoft Kernel GS Wavetable Synthesizer
Image path: system32\drivers\swmidi.sys
Image size: 54272
Image MD5: 94ABC808FC4B6D7D2BBF42B85E25BB4D
Start: 3
Type: 1
Error Control: 1

Service (registry key): SwPrv
Display name: MS Software Shadow Copy Provider
Description: Manages software-based volume shadow copies taken by the Volume Shadow Copy service. If this service is stopped, software-based volume shadow copies cannot be managed. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\dllhost.exe /Processid:{F79A1568-D6C5-4C69-A086-936CF52DBBE3}
Image size: 5120
Image MD5: DD87DB7387B9EB441C5674888A0D840C
Start: 3
Type: 16
Error Control: 0
Depends On services: rpcss

Service (registry key): swwd
Start: 0
Type: 0
Error Control: 0

Service (registry key): symc810
Display name: symc810
Image path: \SystemRoot\System32\DRIVERS\symc810.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): symc8xx
Display name: symc8xx
Image path: \SystemRoot\System32\DRIVERS\symc8xx.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): SymEvent
Image path: \??\C:\Program Files\Symantec\SYMEVENT.SYS
Start: 3
Type: 1
Error Control: 1

Service (registry key): SYMIDSCO
Image path: \SystemRoot\System32\Drivers\SYMIDSCO.SYS
Start: 3
Type: 1
Error Control: 0

Service (registry key): sym_hi
Display name: sym_hi
Image path: \SystemRoot\System32\DRIVERS\sym_hi.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): sym_u3
Display name: sym_u3
Image path: \SystemRoot\System32\DRIVERS\sym_u3.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): sysaudio
Display name: Microsoft Kernel System Audio Device
Image path: system32\drivers\sysaudio.sys
Image size: 60800
Image MD5: 650AD082D46BAC0E64C9C0E0928492FD
Start: 3
Type: 1
Error Control: 1

Service (registry key): SysmonLog
Display name: Performance Logs and Alerts
Description: Collects performance data from local or remote computers based on preconfigured schedule parameters, then writes the data to a log or triggers an alert. If this service is stopped, performance information will not be collected. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\smlogsvc.exe
Image size: 89600
Image MD5: 8B54AA346D1B1B113FFAA75501B8B1B2
Start: 3
Type: 16
Error Control: 1

Service (registry key): TapiSrv
Display name: Telephony
Description: Provides Telephony API (TAPI) support for programs that control telephony devices and IP based voice connections on the local computer and, through the LAN, on servers that are also running the service.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs

Service (registry key): Tcpip
Display name: TCP/IP Protocol Driver
Description: TCP/IP Protocol Driver
Image path: System32\DRIVERS\tcpip.sys
Image size: 360576
Image MD5: B2220C618B42A2212A59D91EBD6FC4B4
Start: 1
Type: 1
Error Control: 1
Depends On services: IPSec

Service (registry key): TDPIPE
Start: 3
Type: 1
Error Control: 0

Service (registry key): TDTCP
Start: 3
Type: 1
Error Control: 0

Service (registry key): TermDD
Display name: Terminal Device Driver
Image path: System32\DRIVERS\termdd.sys
Image size: 40840
Image MD5: A540A99C281D933F3D69D55E48727F47
Start: 1
Type: 1
Error Control: 1

Service (registry key): TermService
Display name: Terminal Services
Description: Allows multiple users to be connected interactively to a machine as well as the display of desktops and applications to remote computers. The underpinning of Remote Desktop (including RD for Administrators), Fast User Switching, Remote Assistance, and Terminal Server.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost -k DComLaunch
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS

Service (registry key): tfsnboio
Image path: system32\dla\tfsnboio.sys
Image size: 25685
Image MD5: C229BF90443BE8D3BD2B65D7F3AC0F35
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsncofs
Image path: system32\dla\tfsncofs.sys
Image size: 34837
Image MD5: 79EE9FCD7728E54AB8FBC30962F0416F
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsndrct
Image path: system32\dla\tfsndrct.sys
Image size: 4117
Image MD5: 9EFB37E7DE17D783A059B653F7E8AFAD
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsndres
Image path: system32\dla\tfsndres.sys
Image size: 2233
Image MD5: 130254995EBEDCB34D62E8D78EC9DBD0
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsnifs
Image path: system32\dla\tfsnifs.sys
Image size: 83284
Image MD5: 9B40E1E4AEED849812A2E43A388A7E77
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsnopio
Image path: system32\dla\tfsnopio.sys
Image size: 14229
Image MD5: 818047AD850B312705AA17CA96B9427D
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsnpool
Image path: system32\dla\tfsnpool.sys
Image size: 6357
Image MD5: 4603E813BCC6DD465CD8D2AFD37FA90D
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsnudf
Image path: system32\dla\tfsnudf.sys
Image size: 98068
Image MD5: 6FC2CD904A9A55ACFDFC780A611A75ED
Start: 2
Type: 2
Error Control: 0

Service (registry key): tfsnudfa
Image path: system32\dla\tfsnudfa.sys
Image size: 100373
Image MD5: D4AFA4D00F8DB3FD1C15B3FE49C3A96C
Start: 2
Type: 2
Error Control: 0

Service (registry key): Themes
Display name: Themes
Description: Provides user experience theme management.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1

Service (registry key): TlntSvr
Start: 3
Type: 0
Error Control: 0

Service (registry key): TosIde
Display name: TosIde
Image path: \SystemRoot\System32\DRIVERS\toside.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): TrkWks
Display name: Distributed Link Tracking Client
Description: Maintains links between NTFS files within a computer or across computers in a network domain.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): TSDDD
Start: 0
Type: 0
Error Control: 0

Service (registry key): uacFlt
Display name: Plantronics USB Audio Adapter EQ Filter Driver
Image path: system32\DRIVERS\uacflt.sys
Image size: 21276
Image MD5: 763E1FE3F44EBB98C17D2066761EAD04
Start: 2
Type: 1
Error Control: 0

Service (registry key): Udfs
Start: 4
Type: 2
Error Control: 1

Service (registry key): ultra
Display name: ultra
Image path: \SystemRoot\System32\DRIVERS\ultra.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): Update
Display name: Microcode Update Driver
Image path: System32\DRIVERS\update.sys
Image size: 209408
Image MD5: AFF2E5045961BBC0A602BB6F95EB1345
Start: 3
Type: 1
Error Control: 1

Service (registry key): upnphost
Display name: Universal Plug and Play Device Host
Description: Provides support to host Universal Plug and Play devices.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: SSDPSRV,HTTP

Service (registry key): UPS
Display name: Uninterruptible Power Supply
Description: Manages an uninterruptible power supply (UPS) connected to the computer.
Object name: LocalSystem
Image path: %SystemRoot%\System32\ups.exe
Image size: 18432
Image MD5: 3F5DF65B0758675F95A2D43918A740A3
Start: 3
Type: 16
Error Control: 1

Service (registry key): usbccgp
Display name: Microsoft USB Generic Parent Driver
Image path: System32\DRIVERS\usbccgp.sys
Image size: 31616
Image MD5: BFFD9F120CC63BCBAA3D840F3EEF9F79
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbehci
Display name: Microsoft USB 2.0 Enhanced Host Controller Miniport Driver
Image path: System32\DRIVERS\usbehci.sys
Image size: 26624
Image MD5: 15E993BA2F6946B2BFBBFCD30398621E
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbhub
Display name: Microsoft USB Standard Hub Driver
Image path: System32\DRIVERS\usbhub.sys
Image size: 57600
Image MD5: C72F40947F92CEA56A8FB532EDF025F1
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbprint
Display name: Microsoft USB PRINTER Class
Image path: System32\DRIVERS\usbprint.sys
Image size: 25856
Image MD5: A42369B7CD8886CD7C70F33DA6FCBCF5
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbscan
Display name: USB Scanner Driver
Image path: System32\DRIVERS\usbscan.sys
Image size: 15104
Image MD5: A6BC71402F4F7DD5B77FD7F4A8DDBA85
Start: 3
Type: 1
Error Control: 1

Service (registry key): USBSTOR
Display name: USB Mass Storage Driver
Image path: System32\DRIVERS\USBSTOR.SYS
Image size: 26496
Image MD5: 6CD7B22193718F1D17A47A1CD6D37E75
Start: 3
Type: 1
Error Control: 1

Service (registry key): usbuhci
Display name: Microsoft USB Universal Host Controller Miniport Driver
Image path: System32\DRIVERS\usbuhci.sys
Image size: 20480
Image MD5: F8FD1400092E23C8F2F31406EF06167B
Start: 3
Type: 1
Error Control: 1

Service (registry key): usprserv
Display name: User Privilege Service
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 16
Error Control: 1

Service (registry key): UxTuneUp
Display name: TuneUp Design Expansion
Description: Allows for the use of designs without a Microsoft Visual Style signature.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1

Service (registry key): vaxscsi
Image path: \SystemRoot\System32\Drivers\vaxscsi.sys
Start: 3
Type: 1
Error Control: 1

Service (registry key): VgaSave
Display name: VGA Display Controller.
Description: Controls the VGA display adapter to provide basic display capabilities.
Image path: \SystemRoot\System32\drivers\vga.sys
Start: 1
Type: 1
Error Control: 0

Service (registry key): viaagp
Display name: VIA AGP Bus Filter
Image path: \SystemRoot\System32\DRIVERS\viaagp.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): ViaIde
Display name: ViaIde
Image path: \SystemRoot\System32\DRIVERS\viaide.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): VolSnap
Start: 0
Type: 1
Error Control: 1

Service (registry key): VSS
Display name: Volume Shadow Copy
Description: Manages and implements Volume Shadow Copies used for backup and other purposes. If this service is stopped, shadow copies will be unavailable for backup and the backup may fail. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\vssvc.exe
Image size: 289792
Image MD5: 3EE00364AE0FD8D604F46CBAF512838A
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS

Service (registry key): VxD
Start: 0
Type: 0
Error Control: 0

Service (registry key): w32time
Display name: Windows Time
Description: Maintains date and time synchronization on all clients and servers in the network. If this service is stopped, date and time synchronization will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.

Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1

Service (registry key): W3SVC
Start: 0
Type: 0
Error Control: 0

Service (registry key): Wanarp
Display name: Remote Access IP ARP Driver
Description: Remote Access IP ARP Driver
Image path: System32\DRIVERS\wanarp.sys
Image size: 34560
Image MD5: 984EF0B9788ABF89974CFED4BFBAACBC
Start: 3
Type: 1
Error Control: 1

Service (registry key): wanatw
Display name: WAN Miniport (ATW)
Image path: System32\DRIVERS\wanatw4.sys
Image size: 33588
Image MD5: 0A716C08CB13C3A8F4F51E882DBF7416
Start: 3
Type: 1
Error Control: 1

Service (registry key): WDICA
Start: 3
Type: 1
Error Control: 0

Service (registry key): wdmaud
Display name: Microsoft WINMM WDM Audio Compatibility Driver
Image path: system32\drivers\wdmaud.sys
Image size: 82944
Image MD5: EFD235CA22B57C81118C1AEB4798F1C1
Start: 3
Type: 1
Error Control: 1

Service (registry key): WebClient
Display name: WebClient
Description: Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: MRxDAV

Service (registry key): winachsf
Image path: system32\DRIVERS\HSF_CNXT.sys
Image size: 680704
Image MD5: F59ED5A43B988A18EF582BB07B2327A7
Start: 3
Type: 1
Error Control: 0

Service (registry key): winmgmt
Display name: Windows Management Instrumentation
Description: Provides a common interface and object model to access management information about operating system, devices, applications and services. If this service is stopped, most Windows-based software will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 0
Depends On services: RPCSS,Eventlog

Service (registry key): Winsock
Start: 3
Type: 4
Error Control: 1

Service (registry key): Winsock - Google Desktop Search Backup Before First Install
Start: 3
Type: 4
Error Control: 1

Service (registry key): Winsock - Google Desktop Search Backup Before Last Install
Start: 3
Type: 4
Error Control: 1

Service (registry key): WinSock2
Start: 0
Type: 0
Error Control: 0

Service (registry key): Winsock2 - Google Desktop Search Backup Before First Install
Start: 0
Type: 0
Error Control: 0

Service (registry key): Winsock2 - Google Desktop Search Backup Before Last Install
Start: 0
Type: 0
Error Control: 0

Service (registry key): WinTrust
Start: 0
Type: 0
Error Control: 0

Service (registry key): WMDM PMSP Service
Display name: WMDM PMSP Service
Object name: LocalSystem
Image path: C:\WINDOWS\System32\MsPMSPSv.exe
Image size: 53520
Image MD5: 5B6DA8F4F5047D6DF51E1C38FC57D4D9
Start: 3
Type: 16
Error Control: 1

Service (registry key): WmdmPmSN
Display name: Portable Media Serial Number Service
Description: Retrieves the serial number of any portable media player connected to this computer. If this service is stopped, protected content might not be down loaded to the device.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1

Service (registry key): Wmi
Start: 0
Type: 0
Error Control: 0

Service (registry key): WmiApRpl
Start: 0
Type: 0
Error Control: 0

Service (registry key): WmiApSrv
Display name: WMI Performance Adapter
Description: Provides performance library information from WMI HiPerf providers.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\wbem\wmiapsrv.exe
Image size: 126464
Image MD5: BA8CECC3E813E1F7C441B20393D4F86C
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS

Service (registry key): WMPNetworkSvc
Display name: Windows Media Player Network Sharing Service
Description: Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play
Object name: NT AUTHORITY\NetworkService
Image path: C:\Program Files\Windows Media Player\WMPNetwk.exe
Image size: 913408
Image MD5: F74E3D9A7FA9556C3BBB14D4E5E63D3B
Start: 3
Type: 16
Error Control: 1
Depends On services: upnphost,http,HTTPFilter

Service (registry key): WS2IFSL
Display name: Windows Socket 2.0 Non-IFS Service Provider Support Environment
Image path: \SystemRoot\System32\drivers\ws2ifsl.sys
Start: 4
Type: 1
Error Control: 1

Service (registry key): wscsvc
Display name: Security Center
Description: Monitors system security settings and configurations.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,winmgmt

Service (registry key): WSTCODEC
Display name: World Standard Teletext Codec
Image path: System32\DRIVERS\WSTCODEC.SYS
Image size: 19328
Image MD5: D5842484F05E12121C511AA93F6439EC
Start: 3
Type: 1
Error Control: 1

Service (registry key): wuauserv
Display name: Automatic Updates
Description: Enables the download and installation of critical Windows updates. If the service is disabled, the operating system can be manually updated at the Windows Update Web site.
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1

Service (registry key): WudfPf
Display name: Windows Driver Foundation - User-mode Driver Framework Platform Driver
Description: Provide communciation services for UMDF components.
Image path: system32\DRIVERS\WudfPf.sys
Image size: 77568
Image MD5: F15FEAFFFBB3644CCC80C5DA584E6311
Start: 3
Type: 1
Error Control: 1

Service (registry key): WudfRd
Display name: Windows Driver Foundation - User-mode Driver Framework Reflector
Description: Reflect device requests to user-mode driver drivers
Image path: system32\DRIVERS\wudfrd.sys
Image size: 82944
Image MD5: 28B524262BCE6DE1F7EF9F510BA3985B
Start: 3
Type: 1
Error Control: 1

Service (registry key): WudfSvc
Display name: Windows Driver Foundation - User-mode Driver Framework
Description: Manages user-mode driver host processes
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k WudfServiceGroup
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: PlugPlay

Service (registry key): WZCSVC
Display name: Wireless Zero Configuration
Description: Provides automatic configuration for the 802.11 adapters
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,Ndisuio

Service (registry key): xmlprov
Display name: Network Provisioning Service
Description: Manages XML configuration files on a domain basis for automatic network provisioning.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): {4BEB7DF2-9209-4E54-AE02-C673B1E0C534}
Start: 0
Type: 0
Error Control: 0

Service (registry key): {5626FF88-E411-49E8-AD3D-4AA57B3677A4}
Start: 0
Type: 0
Error Control: 0

Service (registry key): {61820C7F-1F2D-4EC6-AC52-4AA4C5CE956B}
Start: 0
Type: 0
Error Control: 0

Service (registry key): {B37193DF-143E-405E-B5EA-7C4CC0172F96}
Start: 0
Type: 0
Error Control: 0

Service (registry key): {D7DDDB34-F8C9-4CF7-8541-069547C71529}
Start: 0
Type: 0
Error Control: 0

Service (registry key): {E5EC0A67-7EEA-48D6-BF30-90F5C13ABCA3}
Start: 0
Type: 0
Error Control: 0
dking131504 is offline  
Old 12-03-2006, 09:01 AM   #5
Registered Member
 
Join Date: Oct 2006
Posts: 76
OS: Windows XP


Logfile of HijackThis v1.99.1
Scan saved at 12:01:19 PM, on 12/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\Deckard.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://aimtoday.aol.com/segmentation...97&service=AIM
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Insight Broadband
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = sas.r31.insightbb.com:8000
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.r31.insightbb.com
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {2369DBDD-489B-4C09-AA93-967B45EBD955} - C:\WINDOWS\system32\gebca.dll
O2 - BHO: (no name) - {275F85D6-271F-7E44-2D01-066AC9C58FA3} - C:\WINDOWS\system32\zqpkaic.dll
O2 - BHO: (no name) - {35F7813A-AF74-4474-B1DC-7EE6FB6C43C6} - C:\WINDOWS\system32\mjicodmd.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {67270207-b9ee-4d26-9270-860fdb060ca1} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [RelevantKnowledge] c:\windows\system32\rlvknlg.exe -boot
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global User Startup: Logitech SetPoint.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'c:\program files\newdotnet\newdotnet7_22.dll' missing
O14 - IERESET.INF: START_PAGE_URL=https://www.insightbb.com
O16 - DPF: Animal Ark by pogo - https://www.pogo.com/applet-6.5.2.26/...imal-en_US.cab
O16 - DPF: Blackjack by pogo - https://game1.pogo.com/applet-6.5.2.3...jack-en_US.cab
O16 - DPF: ChatSpace Full Java Client 3.1.0.235 - https://205.177.13.60/Java/cfs31235.cab
O16 - DPF: Checkers by pogo - https://game1.pogo.com/applet-6.5.3.3...kers-en_US.cab
O16 - DPF: Euchre by pogo - https://game1.pogo.com/applet-6.5.2.2...chre-en_US.cab
O16 - DPF: Fortune Bingo by pogo - https://game1.pogo.com/applet-6.5.1.3...ingo-en_US.cab
O16 - DPF: Hearts by pogo - https://game1.pogo.com/applet-6.5.3.3...arts-en_US.cab
O16 - DPF: High Stakes Pool by pogo - https://game1.pogo.com/applet-6.3.0.5...-ob-assets.cab
O16 - DPF: Jigsaw Detective by pogo - https://game1.pogo.com/applet-6.5.3.3...gsaw-en_US.cab
O16 - DPF: JT's Blocks - https://download.games.yahoo.com/game...s/y/blt1_x.cab
O16 - DPF: Jungle Gin by pogo - https://game1.pogo.com/applet-6.5.2.33/gin/gin-en_US.cab
O16 - DPF: Lottso by pogo - https://game1.pogo.com/applet-6.5.1.3...ttso-en_US.cab
O16 - DPF: Mah Jong Garden by pogo - https://game1.pogo.com/applet-6.5.3.3...jong-en_US.cab
O16 - DPF: Penguin Blocks by pogo - https://game1.pogo.com/applet-6.5.1.3...uins-en_US.cab
O16 - DPF: Perfect Pair Solitaire by pogo - https://game1.pogo.com/applet-6.5.3.3...heel-en_US.cab
O16 - DPF: Phlinx by pogo - https://game1.pogo.com/applet-6.5.3.3...nger-en_US.cab
O16 - DPF: Pirate's Gold by pogo - https://game1.pogo.com/applet-6.5.3.3...gold-en_US.cab
O16 - DPF: PoppaZoppa by pogo - https://game1.pogo.com/applet-6.5.2.3...oppa-en_US.cab
O16 - DPF: Poppit by pogo - https://game1.pogo.com/applet-6.5.2.2...pit2-en_US.cab
O16 - DPF: QWERTY by pogo - https://game1.pogo.com/applet-6.5.2.2...ares-en_US.cab
O16 - DPF: Squelchies by pogo - https://game1.pogo.com/applet-6.5.3.3...hies-en_US.cab
O16 - DPF: Stax by pogo - https://game1.pogo.com/applet-6.5.3.3...stax-en_US.cab
O16 - DPF: Sweet Tooth TM by pogo - https://game1.pogo.com/applet-6.5.1.3...ooth-en_US.cab
O16 - DPF: Tri-Peaks by pogo - https://game1.pogo.com/applet-6.5.3.3...eaks-en_US.cab
O16 - DPF: Tumble Bees by pogo - https://game1.pogo.com/applet-6.5.3.3...mbee-en_US.cab
O16 - DPF: Wonderland Memories by pogo - https://game1.pogo.com/applet-6.5.3.3...ries-en_US.cab
O16 - DPF: Word Whomp Whackdown by pogo - https://game1.pogo.com/applet-6.5.3.3...down-en_US.cab
O16 - DPF: World Class Solitaire by pogo - https://game1.pogo.com/applet-6.5.3.3...lass-en_US.cab
O16 - DPF: Yahoo! Checkers - https://download.games.yahoo.com/game...ts/y/kt4_x.cab
O16 - DPF: Yahoo! Chess - https://download.games.yahoo.com/game...ts/y/ct2_x.cab
O16 - DPF: Yahoo! Chinese Checkers - https://download.games.yahoo.com/game...s/y/cct0_x.cab
O16 - DPF: Yahoo! Dots - https://download.games.yahoo.com/game...s/y/dtt1_x.cab
O16 - DPF: Yahoo! Pool 2 - https://download.games.yahoo.com/game...s/y/pote_x.cab
O16 - DPF: Yahoo! Tic-Tac-Toe - https://download.games.yahoo.com/game...ts/y/ft3_x.cab
O16 - DPF: {01111F00-3E00-11D2-8470-0060089874ED} - https://www.dell4me.com/sdccommon/download/tgctlins.cab
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - https://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - https://www.ipix.com/viewers/ipixx.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - https://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - https://us.dl1.yimg.com/download.yaho...st20040510.cab
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher Control) - https://game1.pogo.com/cdl/launcher/P...rInstaller.CAB
O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.microsoft.com/OAS/ActiveX/odc.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - https://www.fileplanet.com/fpdlmgr/ca...C_1_0_0_44.cab
O16 - DPF: {4E888414-DB8F-11D1-9CD9-00C04F98436A} (Microsoft.WinRep) - https://webresponse.one.microsoft.co...veX/winrep.cab
O16 - DPF: {5242A5A1-EF1E-11D5-B3EE-0050DAC5EBD0} (printQuick Browser Add In (Ver4)) - https://www.pqpc.com/plugin/axversion...tquick1410.cab
O16 - DPF: {52A5CD24-64C6-4BAF-A4EC-4D13F451763F} - https://www.cuworld.com/PIC/inner_pi...es/CUworld.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - https://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - https://aolsvc.aol.com/onlinegames/tr...2.1.0.0.48.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - https://update.microsoft.com/microsof...?1125589416921
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - https://launch.gamespyarcade.com/soft...ch/alaunch.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://a840.g.akamai.net/7/840/537/2...ll/xscan53.cab
O16 - DPF: {75565ED2-1560-4F15-B841-20358DE6A0D1} (ImageControl Class) - https://c.ancestry.com/cab/ImageViewer/MFImgVwr.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - https://www.nick.com/common/groove/gx/GrooveAX27.cab
O16 - DPF: {7D731A83-6C80-4EA4-9646-5E06A0513274} (Sandlot Loader Control) - https://www.shockwave.com/content/bal...webinstall.cab
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - https://zone.msn.com/bingame/luxr/def...jolauncher.cab
O16 - DPF: {83EF1847-D835-490B-8D9D-90B2987D66E8} - https://pictures.aolcdn.com/ap/Resour...er.9.3.2.1.cab
O16 - DPF: {87056D28-9730-4A47-B9F9-7E890B62C58A} (WildfireActiveXHost Class) - https://www.shockwave.com/content/tumblebugs/axhost.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - https://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} - https://www.installengine.com/engine/isetup.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - https://acs.pandasoftware.com/actives...ree/asinst.cab
O16 - DPF: {9E17A5F9-2B9C-4C66-A592-199A4BA1FBC8} - https://pictures04.aim.com/ygp/aol/pl...IM.9.5.1.8.cab
O16 - DPF: {9E6C7461-FE4A-41A9-9D35-7468796CF9E7} - https://threatlevel.pcsecurityshield....rol/avxnew.dll
O16 - DPF: {A7E092C3-692A-11D0-A7E5-08002B322F3B} (WebResponseAttachments Control) - https://webresponse.one.microsoft.co...X/FileXfer.cab
O16 - DPF: {ABB660B6-6694-407B-950A-EDBA5A159722} (DVC Download Control) - https://www.shockwave.com/content/dav...%20Control.cab
O16 - DPF: {AFDD01B0-7ABB-11D9-9669-0800200C9A66} (MFInstall Class) - https://c.ancestry.com/MFInstall/MFInstall.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - https://zone.msn.com/binFramework/v10...o.cab34246.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - https://us.dl1.yimg.com/download.yaho...tocomplete.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - https://games-dl.real.com/gameconsole...rcadeRdxIE.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - https://aolsvc.aol.com/onlinegames/iw...amesplayer.cab
O16 - DPF: {C77FB8C0-8B6D-440E-AC26-2BD39E97E8F2} (SpdTCtl Class) - https://speedtest.adelphia.net/custom...ESTACTIVEX.CAB
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - https://www.shockwave.com/content/fee...utLauncher.cab
O16 - DPF: {D68217F4-1DF9-45C1-BFA6-61DBD5464527} (Genealogy Browser) - https://66.119.139.74/cabs/zinst.cab
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} - https://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} (TikGames Online Control) - https://zone.msn.com/bingame/shpo/default/shapo.cab
O16 - DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} (SCEWebLauncherCtl Object) - https://zone.msn.com/bingame/hsol/def...ebLauncher.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - https://clubgames.pogo.com/online2/po...h.1.0.0.80.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - https://www.shockwave.com/content/bon...loader_v10.cab
O16 - DPF: {E5168F0C-8591-11D4-BCDF-006008B7FEA4} (PWLNINST Control) - https://www.platoweb01.com/pathways/p...b/pwlninst.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} - https://fdl.msn.com/zone/datafiles/heartbeat.cab
O16 - DPF: {EDFCDAF5-95D9-40E9-BBE6-10C33190C3EF} - https://zone.msn.com/bingame/rmcb/default/RumbleCube.cab
O16 - DPF: {F54C1137-5E34-4B95-95A5-BA56D4D8D743} (Secure Delivery) - https://www.gamespot.com/KDX/kdx.cab
O16 - DPF: {F5820AD3-9B20-423E-B2AA-7AF2B4055746} - https://download.paltalk.com/download/0.x/regdload.cab
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: gebca - C:\WINDOWS\system32\gebca.dll
O20 - Winlogon Notify: RelevantKnowledge - C:\WINDOWS\system32\rlls.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winccf32 - C:\WINDOWS\SYSTEM32\winccf32.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Microsoft authenticate service (MsaSvc) - Unknown owner - C:\WINDOWS\system32\msasvc.exe (file missing)
O23 - Service: Sandra Service (SandraTheSrv) - Unknown owner - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcSandraSrv.exe (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
dking131504 is offline  
Old 12-05-2006, 12:33 PM   #6
Registered Member
 
Join Date: Oct 2006
Posts: 76
OS: Windows XP


Did a system restore and that seems to of fixed most of the problems heres a new log to check over.

Logfile of HijackThis v1.99.1
Scan saved at 3:32:03 PM, on 12/5/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Ventrilo\Ventrilo.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\v3Nirc\mirc.exe
C:\HJT\Deckard.exe
C:\WINDOWS\system32\rundll32.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.insightbb.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://aimtoday.aol.com/segmentation...97&service=AIM
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Insight Broadband
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = sas.r31.insightbb.com:8000
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.r31.insightbb.com
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global User Startup: Logitech SetPoint.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.insightbb.com
O16 - DPF: Animal Ark by pogo - https://www.pogo.com/applet-6.5.2.26/...imal-en_US.cab
O16 - DPF: Blackjack by pogo - https://game1.pogo.com/applet-6.5.2.3...jack-en_US.cab
O16 - DPF: ChatSpace Full Java Client 3.1.0.235 - https://205.177.13.60/Java/cfs31235.cab
O16 - DPF: Checkers by pogo - https://game1.pogo.com/applet-6.5.3.3...kers-en_US.cab
O16 - DPF: Euchre by pogo - https://game1.pogo.com/applet-6.5.2.2...chre-en_US.cab
O16 - DPF: Fortune Bingo by pogo - https://game1.pogo.com/applet-6.5.1.3...ingo-en_US.cab
O16 - DPF: Hearts by pogo - https://game1.pogo.com/applet-6.5.3.3...arts-en_US.cab
O16 - DPF: High Stakes Pool by pogo - https://game1.pogo.com/applet-6.3.0.5...-ob-assets.cab
O16 - DPF: Jigsaw Detective by pogo - https://game1.pogo.com/applet-6.5.3.3...gsaw-en_US.cab
O16 - DPF: JT's Blocks - https://download.games.yahoo.com/game...s/y/blt1_x.cab
O16 - DPF: Jungle Gin by pogo - https://game1.pogo.com/applet-6.5.2.33/gin/gin-en_US.cab
O16 - DPF: Lottso by pogo - https://game1.pogo.com/applet-6.5.1.3...ttso-en_US.cab
O16 - DPF: Mah Jong Garden by pogo - https://game1.pogo.com/applet-6.5.3.3...jong-en_US.cab
O16 - DPF: Penguin Blocks by pogo - https://game1.pogo.com/applet-6.5.1.3...uins-en_US.cab
O16 - DPF: Perfect Pair Solitaire by pogo - https://game1.pogo.com/applet-6.5.3.3...heel-en_US.cab
O16 - DPF: Phlinx by pogo - https://game1.pogo.com/applet-6.5.3.3...nger-en_US.cab
O16 - DPF: Pirate's Gold by pogo - https://game1.pogo.com/applet-6.5.3.3...gold-en_US.cab
O16 - DPF: PoppaZoppa by pogo - https://game1.pogo.com/applet-6.5.2.3...oppa-en_US.cab
O16 - DPF: Poppit by pogo - https://game1.pogo.com/applet-6.5.2.2...pit2-en_US.cab
O16 - DPF: QWERTY by pogo - https://game1.pogo.com/applet-6.5.2.2...ares-en_US.cab
O16 - DPF: Squelchies by pogo - https://game1.pogo.com/applet-6.5.3.3...hies-en_US.cab
O16 - DPF: Stax by pogo - https://game1.pogo.com/applet-6.5.3.3...stax-en_US.cab
O16 - DPF: Sweet Tooth TM by pogo - https://game1.pogo.com/applet-6.5.1.3...ooth-en_US.cab
O16 - DPF: Tri-Peaks by pogo - https://game1.pogo.com/applet-6.5.3.3...eaks-en_US.cab
O16 - DPF: Tumble Bees by pogo - https://game1.pogo.com/applet-6.5.3.3...mbee-en_US.cab
O16 - DPF: Wonderland Memories by pogo - https://game1.pogo.com/applet-6.5.3.3...ries-en_US.cab
O16 - DPF: Word Whomp Whackdown by pogo - https://game1.pogo.com/applet-6.5.3.3...down-en_US.cab
O16 - DPF: World Class Solitaire by pogo - https://game1.pogo.com/applet-6.5.3.3...lass-en_US.cab
O16 - DPF: Yahoo! Checkers - https://download.games.yahoo.com/game...ts/y/kt4_x.cab
O16 - DPF: Yahoo! Chess - https://download.games.yahoo.com/game...ts/y/ct2_x.cab
O16 - DPF: Yahoo! Chinese Checkers - https://download.games.yahoo.com/game...s/y/cct0_x.cab
O16 - DPF: Yahoo! Dots - https://download.games.yahoo.com/game...s/y/dtt1_x.cab
O16 - DPF: Yahoo! Pool 2 - https://download.games.yahoo.com/game...s/y/pote_x.cab
O16 - DPF: Yahoo! Tic-Tac-Toe - https://download.games.yahoo.com/game...ts/y/ft3_x.cab
O16 - DPF: {01111F00-3E00-11D2-8470-0060089874ED} - https://www.dell4me.com/sdccommon/download/tgctlins.cab
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - https://support.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - https://www.ipix.com/viewers/ipixx.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - https://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - https://us.dl1.yimg.com/download.yaho...st20040510.cab
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} (PogoWebLauncher Control) - https://game1.pogo.com/cdl/launcher/P...rInstaller.CAB
O16 - DPF: {31E68DE2-5548-4B23-88F0-C51E6A0F695E} (Microsoft PID Sniffer) - https://support.microsoft.com/OAS/ActiveX/odc.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - https://www.fileplanet.com/fpdlmgr/ca...C_1_0_0_44.cab
O16 - DPF: {4E888414-DB8F-11D1-9CD9-00C04F98436A} (Microsoft.WinRep) - https://webresponse.one.microsoft.co...veX/winrep.cab
O16 - DPF: {5242A5A1-EF1E-11D5-B3EE-0050DAC5EBD0} (printQuick Browser Add In (Ver4)) - https://www.pqpc.com/plugin/axversion...tquick1410.cab
O16 - DPF: {52A5CD24-64C6-4BAF-A4EC-4D13F451763F} - https://www.cuworld.com/PIC/inner_pi...es/CUworld.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - https://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - https://aolsvc.aol.com/onlinegames/tr...2.1.0.0.48.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - https://update.microsoft.com/microsof...?1125589416921
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - https://launch.gamespyarcade.com/soft...ch/alaunch.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://a840.g.akamai.net/7/840/537/2...ll/xscan53.cab
O16 - DPF: {75565ED2-1560-4F15-B841-20358DE6A0D1} (ImageControl Class) - https://c.ancestry.com/cab/ImageViewer/MFImgVwr.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - https://www.nick.com/common/groove/gx/GrooveAX27.cab
O16 - DPF: {7D731A83-6C80-4EA4-9646-5E06A0513274} (Sandlot Loader Control) - https://www.shockwave.com/content/bal...webinstall.cab
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - https://zone.msn.com/bingame/luxr/def...jolauncher.cab
O16 - DPF: {83EF1847-D835-490B-8D9D-90B2987D66E8} - https://pictures.aolcdn.com/ap/Resour...er.9.3.2.1.cab
O16 - DPF: {87056D28-9730-4A47-B9F9-7E890B62C58A} (WildfireActiveXHost Class) - https://www.shockwave.com/content/tumblebugs/axhost.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - https://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} - https://www.installengine.com/engine/isetup.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - https://acs.pandasoftware.com/actives...ree/asinst.cab
O16 - DPF: {9E17A5F9-2B9C-4C66-A592-199A4BA1FBC8} - https://pictures04.aim.com/ygp/aol/pl...IM.9.5.1.8.cab
O16 - DPF: {9E6C7461-FE4A-41A9-9D35-7468796CF9E7} - https://threatlevel.pcsecurityshield....rol/avxnew.dll
O16 - DPF: {A7E092C3-692A-11D0-A7E5-08002B322F3B} (WebResponseAttachments Control) - https://webresponse.one.microsoft.co...X/FileXfer.cab
O16 - DPF: {ABB660B6-6694-407B-950A-EDBA5A159722} (DVC Download Control) - https://www.shockwave.com/content/dav...%20Control.cab
O16 - DPF: {AFDD01B0-7ABB-11D9-9669-0800200C9A66} (MFInstall Class) - https://c.ancestry.com/MFInstall/MFInstall.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - https://zone.msn.com/binFramework/v10...o.cab34246.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - https://us.dl1.yimg.com/download.yaho...tocomplete.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - https://games-dl.real.com/gameconsole...rcadeRdxIE.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - https://aolsvc.aol.com/onlinegames/iw...amesplayer.cab
O16 - DPF: {C77FB8C0-8B6D-440E-AC26-2BD39E97E8F2} (SpdTCtl Class) - https://speedtest.adelphia.net/custom...ESTACTIVEX.CAB
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - https://www.shockwave.com/content/fee...utLauncher.cab
O16 - DPF: {D68217F4-1DF9-45C1-BFA6-61DBD5464527} (Genealogy Browser) - https://66.119.139.74/cabs/zinst.cab
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} - https://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} (TikGames Online Control) - https://zone.msn.com/bingame/shpo/default/shapo.cab
O16 - DPF: {DAF5D9A2-D982-4671-83E4-0398706A5F6A} (SCEWebLauncherCtl Object) - https://zone.msn.com/bingame/hsol/def...ebLauncher.cab
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - https://clubgames.pogo.com/online2/po...h.1.0.0.80.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - https://www.shockwave.com/content/bon...loader_v10.cab
O16 - DPF: {E5168F0C-8591-11D4-BCDF-006008B7FEA4} (PWLNINST Control) - https://www.platoweb01.com/pathways/p...b/pwlninst.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} - https://fdl.msn.com/zone/datafiles/heartbeat.cab
O16 - DPF: {EDFCDAF5-95D9-40E9-BBE6-10C33190C3EF} - https://zone.msn.com/bingame/rmcb/default/RumbleCube.cab
O16 - DPF: {F54C1137-5E34-4B95-95A5-BA56D4D8D743} (Secure Delivery) - https://www.gamespot.com/KDX/kdx.cab
O16 - DPF: {F5820AD3-9B20-423E-B2AA-7AF2B4055746} - https://download.paltalk.com/download/0.x/regdload.cab
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Sandra Service (SandraTheSrv) - Unknown owner - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2005.SR3\RpcSandraSrv.exe (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
dking131504 is offline  
Old 12-11-2006, 12:46 PM   #7
Registered Member
 
Join Date: Oct 2006
Posts: 76
OS: Windows XP


Need some help guys :/
dking131504 is offline  
 

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 12:53 PM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts