Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop Ups And Other Junks


  • Please log in to reply
3 replies to this topic

#1 sicatrix

sicatrix

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:03:14 PM

Posted 18 May 2008 - 10:12 PM

Deckard's System Scanner v20071014.68
Run by Paul Robert Demmert on 2004-03-15 20:41:47
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
97: 2004-03-16 04:41:59 UTC - RP467 - Deckard's System Scanner Restore Point
96: 2004-03-05 09:21:38 UTC - RP466 - System Checkpoint
95: 2004-03-04 06:12:48 UTC - RP465 - System Checkpoint
94: 2004-03-02 08:41:52 UTC - RP464 - System Checkpoint
93: 2004-02-28 23:23:09 UTC - RP463 - System Checkpoint


-- First Restore Point --
1: 2007-07-25 10:45:18 UTC - RP371 - System Checkpoint


Backed up registry hives.
Performed disk cleanup.

Total Physical Memory: 503 MiB (512 MiB recommended).


-- HijackThis Clone ------------------------------------------------------------


Emulating logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2004-03-15 20:47:16
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\acs.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\WINDOWS\system32\svchost.exe
C:\TOSHIBA\IVP\swupdate\swupdtmr.exe
C:\WINDOWS\sv3968\svchost.exe
C:\WINDOWS\agrsmmsg.exe
C:\WINDOWS\system32\ZoomingHook.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\MyWebSearch\bar\3.bin\MWSOEMON.EXE
C:\WINDOWS\mrofinu72.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\system32\regscan.exe
C:\Documents and Settings\Paul Robert Demmert\My Documents\?icrosoft\ati2evxx.exe
C:\Program Files\Yahoo!\Messenger\Ymsgr_tray.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\MalwareAlarm\MalwareAlarm.exe
C:\Program Files\QdrModule\QdrModule12.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\system32\RAMASST.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Metamail Inc\Metamail Reader\Metamail Secure Viewer.exe
C:\Program Files\Metamail Inc\Metamail Reader\Metamail Secure Server.exe
C:\Program Files\Common Files\?racle\l?gonui.exe
C:\Program Files\QdrPack\QdrPack16.exe
C:\WINDOWS\sv3978\svchost.exe
C:\Documents and Settings\Paul Robert Demmert\My Documents\dss.exe
C:\WINDOWS\system32\rundll32.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
F0 - win.ini: load=C:\WINDOWS\sv3978\svchost.exe
F3 - REG:win.ini: Load=C:\WINDOWS\system32\userinit.exe,
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\3.bin\MWSBAR.DLL
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: BndBlock4 BHO Class - {8F9E2BE3-766D-4831-BB0E-766D5B819995} - C:\Program Files\QdrDrive\QdrDrive9.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {BCAE62F4-F336-8F91-429A-A68F0A7128E0} - C:\WINDOWS\system32\qqnvr.dll
O2 - BHO: MCIEPlugIn Class - {C09C9904-FD44-11D6-A711-00105AC8F168} - C:\Program Files\Metamail Inc\Metamail Reader\IEPlugIn.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [ZoomingHook] ZoomingHook.exe
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\3.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O4 - HKLM\..\Run: [runner1] C:\WINDOWS\mrofinu72.exe 61A847B5BBF72815308B2B27128065E9C084320161C4661227A755E9C2933154389A284662EA4EBF968951185EFC412806867680AEDE604D64C2661375FB0FB68AD6
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] ~"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Regscan] C:\WINDOWS\system32\regscan.exe
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O4 - HKCU\..\Run: [Eprc] "C:\DOCUME~1\PAULRO~1\MYDOCU~1\ICROSO~1\ati2evxx.exe" -vt yazb
O4 - HKCU\..\Run: [Vlukkmxe] "C:\Program Files\Common Files\?racle\l?gonui.exe"
O4 - HKCU\..\Run: [Windows update loader] C:\Windows\xpupdate.exe
O4 - HKCU\..\Run: [MalwareAlarm] C:\Program Files\MalwareAlarm\MalwareAlarm.exe
O4 - HKCU\..\Run: [QdrModule12] "C:\Program Files\QdrModule\QdrModule12.exe"
O4 - HKCU\..\Run: [QdrPack16] "C:\Program Files\QdrPack\QdrPack16.exe"
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: NkbMonitor.exe.lnk = ?
O4 - Global Startup: RAMASST.lnk = ?
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...arch.jhtml?p=ZS
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\NPJPI150_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\NPJPI150_01.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (file missing)
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (file missing)
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files\Bodog Poker\BPGame.exe (file missing)
O15 - Trusted Zone: *.www.yahoo.com (HKCU)
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/u...can_unicode.cab
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} (MediaGatewayX) - http://static.zangocash.com/cab/Zango/ie/bridge-c8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwa...ash/swflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll
O18 - Protocol: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll
O18 - Protocol: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL
O18 - Filter: text/html - {07851C6A-1C43-41d9-8319-BC89154A8C00} - C:\Program Files\RcvSystem\httpdchk.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
O23 - Service: DVD-RAM_Service - Matsubleepa Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Documents and Settings\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Swupdtmr - Unknown owner - C:\TOSHIBA\IVP\swupdate\swupdtmr.exe


--
End of file - 13473 bytes

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R1 meiudf - c:\windows\system32\drivers\meiudf.sys <Not Verified; Matsubleepa Electric Industrial Co.,Ltd.; >
R1 SrvcEKIOMngr - c:\windows\system32\drivers\ekiomngr.sys <Not Verified; COMPAL ELECTRONIC INC.; Compal IoManager Application>
R1 SrvcSSIOMngr - c:\windows\system32\drivers\ssiomngr.sys <Not Verified; COMPAL ELECTRONIC INC.; Compal IoManager Application>
R1 SSHDRV85 - c:\windows\system32\drivers\sshdrv85.sys <Not Verified; ; ProtectCD>
R1 TPwSav (Common Driver) - c:\windows\system32\drivers\tpwsav.sys <Not Verified; TOSHIBA; >
R2 MCSTRM - c:\windows\system32\drivers\mcstrm.sys <Not Verified; RealNetworks, Inc.; RealNetworks Virtual Path Manager® (32-bit)>
R2 MDC8021X (AEGIS Protocol (IEEE 802.1x) v2.3.1.10) - c:\windows\system32\drivers\mdc8021x.sys <Not Verified; Meetinghouse Data Communications; AEGIS Client 2.3.1.10>
R2 Netdevio (TOSHIBA Network Device Usermode I/O Protocol) - c:\windows\system32\drivers\netdevio.sys <Not Verified; TOSHIBA Corporation.; TOSHIBA Network Device Usermode I/O protocol>
R2 TBiosDrv - c:\windows\system32\drivers\tbiosdrv.sys
R3 Iviaspi (IVI ASPI Shell) - c:\windows\system32\drivers\iviaspi.sys <Not Verified; InterVideo, Inc.; InterVideo ASPI Shell>
R3 Pfc (Padus ASPI Shell) - c:\windows\system32\drivers\pfc.sys <Not Verified; Padus, Inc.; Padus® ASPI Shell>
R3 Tvs (Toshiba Virtual Sound with SRS technologies) - c:\windows\system32\drivers\tvs.sys <Not Verified; TOSHIBA Corporation; Audio Filter>

S1 StickyMesger - c:\program files\toshiba\accessibility\stickymesger.sys (file missing)
S3 SbcpHid - c:\windows\system32\drivers\sbcphid.sys
S3 StMp3Rec (Player Recovery Device Control Driver) - c:\windows\system32\drivers\stmp3rec.sys <Not Verified; Generic; Generic MP3 Player>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 ACS (Atheros Configuration Service) - c:\windows\system32\acs.exe
R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
R2 CFSvcs (ConfigFree Service) - c:\program files\toshiba\configfree\cfsvcs.exe <Not Verified; TOSHIBA CORPORATION; ConfigFree™>
R2 DVD-RAM_Service - c:\windows\system32\dvdramsv.exe <Not Verified; Matsubleepa Electric Industrial Co., Ltd.; >
R2 Swupdtmr - c:\toshiba\ivp\swupdate\swupdtmr.exe


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Scheduled Tasks -------------------------------------------------------------

2008-02-28 16:55:00 492 --a------ C:\WINDOWS\Tasks\McAfee.com Update Check (PAUL-everyone else).job
2008-02-28 16:54:00 504 --a------ C:\WINDOWS\Tasks\McAfee.com Update Check (PAUL-Paul Robert Demmert).job
2008-02-28 16:52:00 496 --a------ C:\WINDOWS\Tasks\McAfee.com Update Check (PAUL-everyone else_2).job
2007-10-13 18:11:01 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


-- Files created between 2004-02-15 and 2004-03-15 -----------------------------

2007-11-27 22:19:18 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\U3
2007-09-28 19:06:55 0 d-------- C:\Filetopia3
2007-09-21 20:30:35 28672 --a------ C:\WINDOWS\system32\f3PSSavr.scr <Not Verified; FunWebProducts.com; Popular Screensavers>
2007-09-20 14:13:13 0 d-------- C:\ijji
2007-09-20 14:13:07 0 d--h----- C:\Documents and Settings\Paul Robert Demmert\Application Data\ijjigame
2007-09-20 13:59:12 692224 --a------ C:\WINDOWS\system32\ijjiSetup.exe <Not Verified; NHN USA; ijjiSetup Application>
2007-09-20 13:59:12 0 d-------- C:\Program Files\NHN USA
2007-09-20 13:39:09 0 d-------- C:\Documents and Settings\iPod\bin
2007-09-16 12:25:26 6815744 --a------ C:\Documents and Settings\Paul Robert Demmert\ntuser.dat
2007-09-12 07:01:46 0 d-------- C:\9c7ccf8acd1d9474256dff3440
2007-08-15 17:13:51 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\Logitech
2007-08-09 14:28:48 0 d-------- C:\Program Files\Common Files\Apple
2007-08-09 14:28:46 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple
2007-07-30 02:51:25 393224 --a------ C:\WINDOWS\system32\~.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-25 11:21:53 0 d-------- C:\Program Files\SpyAxe
2007-07-25 11:21:53 0 d-------- C:\Program Files\MyWebSearch
2007-07-25 11:21:53 0 d-------- C:\Program Files\FunWebProducts
2007-07-25 11:21:03 0 d-------- C:\Program Files\Valve
2007-07-23 16:37:02 0 d-------- C:\Program Files\Trend Micro
2007-07-23 15:04:16 1786620 ---hs---- C:\WINDOWS\system32\dfhkj.bak2
2007-07-23 11:53:03 6824 ---hs---- C:\WINDOWS\system32\dfhkj.ini2
2007-07-23 03:15:34 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\WinAntiSpyware 2007
2007-07-23 03:14:23 0 d-------- C:\Program Files\Common Files\WinAntiSpyware 2007
2007-07-23 03:14:20 0 d-------- C:\Program Files\WinAntiSpyware 2007
2007-07-23 03:14:20 0 d-------- C:\Documents and Settings\All Users\Application Data\WinAntiSpyware 2007
2007-07-23 03:03:32 6471 ---hs---- C:\WINDOWS\system32\dfhkj.bak1
2007-07-16 10:39:41 43520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2007-07-15 16:20:36 35700 --a------ C:\WINDOWS\DIIUnin.dat
2007-07-15 16:20:33 2829 --a------ C:\WINDOWS\DIIUnin.pif
2007-07-15 16:20:33 94208 --a------ C:\WINDOWS\DIIUnin.exe <Not Verified; Blizzard Entertainment; Diablo II Uninstaller>
2007-07-10 21:07:25 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Wal-Mart Digital Photo Manager
2007-06-29 07:32:10 146944 ---hs---- C:\Program Files\Common Files\Yazzle1552OinAdmin.exe
2007-06-18 00:52:38 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Printer Info Cache
2007-06-18 00:40:46 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Wal-Mart Digital Photo Manager
2007-06-18 00:36:21 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Wal-Mart Digital Photo Viewer
2007-06-01 18:43:25 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\iLike
2007-06-01 18:23:48 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Logitech
2007-05-24 00:49:56 19696 -----n--- C:\WINDOWS\hpomdl05.dat
2007-05-24 00:49:56 68938 --a------ C:\WINDOWS\hpoins05.dat
2007-05-08 15:03:04 1275392 --a------ C:\WINDOWS\system32\msxml4.dll <Not Verified; Microsoft Corporation; Microsoft® MSXML 4.0 SP 2>
2007-05-05 02:00:35 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Shared
2007-05-05 02:00:34 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Incomplete
2007-05-05 02:00:16 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\LimeWire
2007-04-20 22:52:12 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Logitech
2007-04-20 22:52:04 0 d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2007-04-20 12:42:45 0 d-------- C:\Program Files\MUSICMATCH
2007-04-20 12:40:36 65536 --a------ C:\WINDOWS\system32\KemXML.dll <Not Verified; Logitech Inc.; Logitech SetPoint>
2007-04-20 12:40:36 86016 --a------ C:\WINDOWS\system32\KemWnd.dll <Not Verified; Logitech Inc.; Logitech SetPoint>
2007-04-20 12:40:36 90112 --a------ C:\WINDOWS\system32\KemUtil.dll <Not Verified; Logitech Inc.; Logitech SetPoint>
2007-04-20 12:40:36 143360 --a------ C:\WINDOWS\system32\kemutb.dll <Not Verified; Logitech Inc.; Logitech SetPoint>
2007-04-20 12:40:04 0 d-------- C:\Program Files\Common Files\Logitech
2007-04-20 12:40:02 0 d-------- C:\Program Files\Logitech
2007-03-22 14:03:27 0 d-------- C:\Program Files\Apple Software Update
2007-02-24 21:05:37 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\MySpace
2007-02-24 00:44:00 0 d-------- C:\Program Files\iLike
2007-02-17 21:48:55 0 d-------- C:\Documents and Settings\All Users\Application Data\Ultima_T15
2007-02-17 21:48:55 20 ---h----- C:\Documents and Settings\All Users\Application Data\PKP_DLec.DAT
2007-02-17 21:48:55 0 d-------- C:\Documents and Settings\All Users\Application Data\EnterNHelp
2007-02-10 23:49:43 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\iLike
2007-01-31 08:16:40 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\MySpace
2007-01-23 22:25:00 0 d-------- C:\Documents and Settings\Owner\Application Data\Microsoft
2007-01-23 22:24:59 0 d-------- C:\Documents and Settings\iPod\Application Data
2007-01-23 22:24:59 0 d-------- C:\Documents and Settings\iPod\Application Data\Microsoft
2007-01-23 22:24:58 0 d-------- C:\Documents and Settings\Application Data\Application Data\Microsoft
2007-01-23 22:24:57 0 d-------- C:\Documents and Settings\Application Data\Microsoft
2007-01-23 22:24:57 0 d-------- C:\Documents and Settings\Application Data\Application Data
2007-01-23 22:24:57 0 d-------- C:\Application Data
2007-01-21 01:39:55 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Leadertech
2007-01-21 01:34:02 0 d-------- C:\Program Files\Atari
2007-01-10 00:07:14 0 d-------- C:\Program Files\MySecretCodes Toolbar
2006-12-25 14:54:40 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2006-12-22 19:36:36 0 d-------- C:\Program Files\Windows Media Connect 2
2006-12-22 19:34:50 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2006-12-22 12:28:14 271360 --a------ C:\WINDOWS\system32\mscoree.dll <Not Verified; Microsoft Corporation; Microsoft® .NET Framework>
2006-12-22 04:58:53 0 d-------- C:\Program Files\MSXML 4.0
2006-12-22 04:58:45 0 d-------- C:\d0e4143d4aead5e48d
2006-12-21 23:27:52 0 d-------- C:\Program Files\IrfanView
2006-12-21 17:08:55 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\MySpace
2006-12-21 17:08:41 0 d-------- C:\Program Files\MySpace
2006-12-21 16:53:07 0 d--h----- C:\WINDOWS\PIF
2006-10-22 14:35:20 0 d-------- C:\Program Files\BearShare MediaBar
2006-10-22 14:35:05 0 d-------- C:\Program Files\BearShare Applications
2006-10-17 10:49:20 0 d---s---- C:\Documents and Settings\everyone else_2\UserData
2006-10-16 18:07:59 0 d-------- C:\Documents and Settings\All Users\Application Data\pixelStorm
2006-10-15 18:27:00 0 d-------- C:\Documents and Settings\everyone else_2\Contacts
2006-10-15 18:26:30 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Google
2006-10-10 15:24:38 0 d-------- C:\WINDOWS\system32\PreInstall
2006-10-10 15:21:39 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2006-09-25 14:54:11 0 d-------- C:\Documents and Settings\All Users\Application Data\Google
2006-09-21 22:52:08 0 d-------- C:\Program Files\Macrogaming
2006-09-17 12:24:36 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Contacts
2006-09-17 12:23:38 0 d------c- C:\WINDOWS\system32\DRVSTORE
2006-09-16 18:33:21 0 d-------- C:\Temp
2006-09-09 02:53:06 0 d-------- C:\Program Files\Zango Programs
2006-09-07 17:29:11 0 d-------- C:\WINDOWS\system32\bak
2006-09-01 13:26:35 1774 --a------ C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
2006-08-22 16:15:12 0 dr-h----- C:\Documents and Settings\everyone else_2\Application Data\yahoo!
2006-08-22 16:14:44 0 dr-h----- C:\Documents and Settings\Paul Robert Demmert\Application Data\yahoo!
2006-08-22 16:14:09 0 d-------- C:\Documents and Settings\All Users\Application Data\HP
2006-08-22 16:13:37 0 d-------- C:\Program Files\Hewlett-Packard
2006-08-22 16:11:58 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Real
2006-08-22 16:11:58 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\InterVideo
2006-08-22 16:11:56 0 d-------- C:\Documents and Settings\everyone else_2\Desktop
2006-08-22 16:11:56 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\You've Got Pictures Screensaver
2006-08-22 16:11:56 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\toshiba
2006-08-22 16:11:56 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Intuit
2006-08-22 16:11:56 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\InterTrust
2006-08-22 16:11:56 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Identities
2006-08-22 16:11:55 0 d-------- C:\Documents and Settings\everyone else_2\WINDOWS
2006-08-22 16:11:55 0 dr------- C:\Documents and Settings\everyone else_2\Start Menu
2006-08-22 16:11:55 0 dr-h----- C:\Documents and Settings\everyone else_2\Recent
2006-08-22 16:11:55 0 d--h----- C:\Documents and Settings\everyone else_2\PrintHood
2006-08-22 16:11:55 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\Real
2006-08-22 16:11:52 0 d-------- C:\Documents and Settings\Esteban Demmert\Desktop
2006-08-22 16:11:52 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\You've Got Pictures Screensaver
2006-08-22 16:11:52 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\toshiba
2006-08-22 16:11:52 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\Intuit
2006-08-22 16:11:52 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\InterTrust
2006-08-22 16:11:52 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\Identities
2006-08-22 16:11:51 0 d-------- C:\Documents and Settings\Esteban Demmert\WINDOWS
2006-08-22 16:11:51 0 dr------- C:\Documents and Settings\Esteban Demmert\Start Menu
2006-08-22 16:11:51 0 dr-h----- C:\Documents and Settings\Esteban Demmert\Recent
2006-08-22 16:11:51 0 d--h----- C:\Documents and Settings\Esteban Demmert\PrintHood
2006-08-21 19:15:02 0 d-------- C:\WINDOWS\system32\ZoneLabs
2006-08-15 23:02:29 45056 --a------ C:\WINDOWS\system32\wnaspi32.dll <Not Verified; Adaptec; Adaptec's ASPI Layer>
2006-08-15 23:02:29 25244 --a------ C:\WINDOWS\system32\drivers\aspi32.sys <Not Verified; Adaptec; Adaptec's ASPI Layer>
2006-08-15 23:02:29 4672 --a------ C:\WINDOWS\system\wowpost.exe <Not Verified; Adaptec; Adaptec's ASPI Layer>
2006-08-15 23:02:29 5600 --a------ C:\WINDOWS\system\winaspi.dll <Not Verified; Adaptec; Adaptec's ASPI Layer>
2006-08-15 03:35:03 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Macromedia
2006-08-14 02:53:52 0 d-------- C:\Documents and Settings\LocalService\Application Data\Macromedia
2006-08-13 15:02:43 0 d-------- C:\Program Files\Full Tilt Poker
2006-08-13 02:30:31 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Nikon
2006-08-13 02:30:29 180224 -ra------ C:\WINDOWS\system32\Strato4.dll <Not Verified; Nikon Corporation; Nikon Image Utility>
2006-08-13 02:30:29 68096 -ra------ C:\WINDOWS\system32\RedEye.dll <Not Verified; FotoNation Inc.; Red Eye API DLL>
2006-08-13 02:30:29 3506176 -ra------ C:\WINDOWS\system32\NkNEFPlugin.dll <Not Verified; Nikon Corporation; NkNEFPlugin>
2006-08-13 02:30:11 110592 -ra------ C:\WINDOWS\system32\RCSigProc.dll <Not Verified; Nikon Corporation; Nikon DSC RAW library>
2006-08-13 02:30:11 48128 -ra------ C:\WINDOWS\system32\picn20.dll <Not Verified; Pegasus Imaging Corp.; PEGASUS>
2006-08-13 02:30:11 180224 -ra------ C:\WINDOWS\system32\picn1120.dll <Not Verified; Pegasus Imaging Corp.; PEGASUS>
2006-08-13 02:30:11 155648 -ra------ C:\WINDOWS\system32\picn1020.dll <Not Verified; Pegasus Imaging Corp.; PEGASUS>
2006-08-13 02:30:10 495616 -ra------ C:\WINDOWS\system32\DRAGNKL1.dll <Not Verified; Applied Science Fiction, Inc.; Applied Science Fiction's Digital ROC and Digital GEM Library>
2006-08-13 02:30:06 0 d-------- C:\Program Files\Common Files\muvee Technologies
2006-08-13 02:29:54 0 d-------- C:\Program Files\Nikon
2006-08-13 02:28:03 0 d-------- C:\Program Files\Common Files\Nikon
2006-08-11 19:52:42 0 d-------- C:\Documents and Settings\All Users\Application Data\yahoo!
2006-08-11 19:48:47 0 d-------- C:\Program Files\Yahoo!
2006-08-09 18:01:05 0 d-------- C:\Program Files\Common Files\HP
2006-08-09 17:58:34 0 d-------- C:\Program Files\Common Files\Hewlett-Packard
2006-08-09 17:56:38 57344 --a------ C:\WINDOWS\system32\HPZisn12.dll <Not Verified; HP; HP SNMP Windows>
2006-08-09 17:56:38 94208 --a------ C:\WINDOWS\system32\HPZipt12.dll <Not Verified; HP; HP SNMP Windows>
2006-08-09 17:56:38 204800 --a------ C:\WINDOWS\system32\HPZipr12.dll <Not Verified; HP; HP PmlRtl>
2006-08-09 17:56:38 69632 --a------ C:\WINDOWS\system32\HPZipm12.exe <Not Verified; HP; HP PML>
2006-08-09 17:56:38 61440 --a------ C:\WINDOWS\system32\HPZinw12.exe <Not Verified; HP; HP Dot4Net Windows>
2006-08-09 17:56:37 278584 --a------ C:\WINDOWS\system32\HPZidr12.dll <Not Verified; HP; HP Dot4Rtl>
2006-08-09 17:55:03 0 d-------- C:\Program Files\HP
2006-07-26 02:05:57 0 d-------- C:\Documents and Settings\iPod\iPod Updater 2006-03-23
2006-07-23 19:43:01 0 d-------- C:\Program Files\QuickTime
2006-07-23 19:41:46 0 d-------- C:\Program Files\iTunes
2006-07-10 16:26:02 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Apple Computer
2006-07-10 16:24:18 0 d-------- C:\Documents and Settings\everyone else_2\Favorites
2006-07-10 16:24:18 0 d---s---- C:\Documents and Settings\everyone else_2\Cookies
2006-07-10 16:24:18 0 dr-h----- C:\Documents and Settings\everyone else_2\Application Data
2006-07-10 16:24:18 0 d---s---- C:\Documents and Settings\everyone else_2\Application Data\Microsoft
2006-07-10 16:24:18 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\AOL
2006-07-10 16:24:18 0 d-------- C:\Documents and Settings\everyone else_2\Application Data\Adobe
2006-07-10 16:24:17 0 d--h----- C:\Documents and Settings\everyone else_2\Templates
2006-07-10 16:24:17 0 dr-h----- C:\Documents and Settings\everyone else_2\SendTo
2006-07-10 16:24:17 1835008 --ah----- C:\Documents and Settings\everyone else_2\ntuser.dat
2006-07-10 16:24:17 0 d-------- C:\Documents and Settings\everyone else_2\My Documents
2006-07-10 16:24:17 0 d--h----- C:\Documents and Settings\everyone else_2\Local Settings
2006-07-10 16:00:04 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\AOL
2006-07-10 16:00:04 0 d-------- C:\Documents and Settings\Esteban Demmert\Application Data\Adobe
2006-07-10 16:00:03 0 d--h----- C:\Documents and Settings\Esteban Demmert\Templates
2006-07-10 16:00:03 0 dr-h----- C:\Documents and Settings\Esteban Demmert\SendTo
2006-07-10 16:00:03 1310720 --ah----- C:\Documents and Settings\Esteban Demmert\ntuser.dat
2006-07-10 16:00:03 0 d--h----- C:\Documents and Settings\Esteban Demmert\Local Settings
2006-07-10 16:00:03 0 d-------- C:\Documents and Settings\Esteban Demmert\Favorites
2006-07-10 16:00:03 0 d---s---- C:\Documents and Settings\Esteban Demmert\Cookies
2006-07-10 16:00:03 0 dr-h----- C:\Documents and Settings\Esteban Demmert\Application Data
2006-07-10 16:00:03 0 d---s---- C:\Documents and Settings\Esteban Demmert\Application Data\Microsoft
2006-07-07 14:05:32 0 d-------- C:\Documents and Settings\Owner\Application Data
2006-07-07 14:05:32 0 d-------- C:\Documents and Settings\Owner\Application Data\You've Got Pictures Screensaver
2006-07-01 18:53:43 993 --a------ C:\WINDOWS\eReg.dat
2006-07-01 18:31:47 0 d-------- C:\Program Files\EA GAMES
2006-07-01 00:12:18 0 d-------- C:\WINDOWS\system32\LogFiles
2006-06-26 16:01:49 78848 --a------ C:\WINDOWS\system32\drivers\SSHDRV85.sys <Not Verified; ; ProtectCD>
2006-06-26 15:38:49 0 d-------- C:\Program Files\Ascaron Entertainment
2006-05-25 20:49:37 0 d-------- C:\Program Files\Common Files\3DO Shared
2006-05-25 20:49:37 0 d-------- C:\Program Files\3DO
2006-05-25 20:49:14 0 d-------- C:\Program Files\directx
2006-05-16 23:31:37 0 d-------- C:\Program Files\Common Files\SunnComm Shared
2006-03-20 01:51:47 0 d-------- C:\Program Files\Masque
2006-01-29 22:32:00 86528 --a------ C:\WINDOWS\bnetunin.exe
2006-01-29 04:07:07 21840 --a-----t C:\WINDOWS\system32\SIntfNT.dll
2006-01-29 04:07:07 17212 --a-----t C:\WINDOWS\system32\SIntf32.dll
2006-01-29 04:07:07 12067 --a-----t C:\WINDOWS\system32\SIntf16.dll
2006-01-29 03:58:32 0 d-------- C:\Program Files\Diablo II
2006-01-06 05:52:44 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Google
2005-12-25 01:58:51 4 --a------ C:\WINDOWS\system32\A20DB4
2005-12-25 01:57:43 8413 --a------ C:\WINDOWS\system32\drivers\mcstrm.sys <Not Verified; RealNetworks, Inc.; RealNetworks Virtual Path Manager® (32-bit)>
2005-12-25 01:40:00 0 d-------- C:\Program Files\Common Files\xing shared
2005-12-25 01:33:13 0 d-------- C:\My Downloads
2005-12-25 01:16:22 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Real
2005-12-20 00:34:28 0 d-------- C:\WINDOWS\Sun
2005-12-19 18:55:58 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2005-12-19 18:36:59 0 --a------ C:\Documents and Settings\Paul Robert Demmert\Application Data\Install.dat
2005-12-19 18:18:02 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\McAfee.com
2005-12-19 16:43:47 0 d-------- C:\WINDOWS\system32\1024
2005-12-17 02:48:16 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Sun
2005-12-16 18:57:15 0 d---s---- C:\Documents and Settings\Paul Robert Demmert\UserData
2005-12-16 18:52:19 0 d-------- C:\Program Files\MSN Messenger
2005-12-04 23:01:01 967 --a------ C:\WINDOWS\ScUnin.pif
2005-12-04 23:01:01 94208 --a------ C:\WINDOWS\ScUnin.exe <Not Verified; Blizzard Entertainment; Starcraft Uninstaller>
2005-12-04 23:01:01 13044 --a------ C:\WINDOWS\scunin.dat
2005-12-02 00:24:18 0 d-------- C:\Program Files\Internet Audio Mix
2005-11-25 13:06:16 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Template
2005-11-25 13:06:15 124 --a------ C:\Documents and Settings\Paul Robert Demmert\Application Data\wklnhst.dat
2005-11-20 03:20:16 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Apple Computer
2005-11-20 03:19:03 0 d-------- C:\Program Files\iPod
2005-11-20 03:18:35 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2005-11-20 03:18:09 0 d-------- C:\WINDOWS\Downloaded Installations
2005-10-30 02:28:01 0 d-------- C:\WINDOWS\system32\BWKDLogs
2005-10-30 02:26:18 0 d-------- C:\Documents and Settings\All Users\Application Data\Kodak
2005-10-30 02:26:04 0 d-------- C:\Program Files\Kodak
2005-08-03 03:20:42 0 d-------- C:\Program Files\Winamp
2005-07-06 00:12:46 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Sonic
2005-07-05 03:07:23 38229 -----n--- C:\WINDOWS\system32\drivers\StMp3Rec.sys <Not Verified; Generic; Generic MP3 Player>
2005-07-02 02:07:43 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Macromedia
2005-07-02 02:06:38 64 --a------ C:\WINDOWS\system32\BurnData.bin
2005-07-02 00:40:51 0 d-------- C:\WINDOWS\pss
2005-07-01 01:21:31 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\InterVideo
2005-06-30 23:47:02 0 d-------- C:\Program Files\InterActual
2005-06-30 23:41:12 0 d-------- C:\Program Files\Starcraft
2005-06-30 23:00:55 40960 --a------ C:\WINDOWS\unezfw.exe <Not Verified; Computer Associates International, Inc.; Computer Associates International, Inc. unezfw>
2005-06-30 23:00:39 4212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2005-06-30 23:00:29 0 d-------- C:\Program Files\CA
2005-06-30 23:00:19 0 d-------- C:\WINDOWS\Internet Logs
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\WINDOWS
2005-06-30 22:53:23 0 d--h----- C:\Documents and Settings\Paul Robert Demmert\Templates
2005-06-30 22:53:23 0 dr------- C:\Documents and Settings\Paul Robert Demmert\Start Menu
2005-06-30 22:53:23 0 dr-h----- C:\Documents and Settings\Paul Robert Demmert\SendTo
2005-06-30 22:53:23 0 dr-h----- C:\Documents and Settings\Paul Robert Demmert\Recent
2005-06-30 22:53:23 0 d--h----- C:\Documents and Settings\Paul Robert Demmert\PrintHood
2005-06-30 22:53:23 0 d--h----- C:\Documents and Settings\Paul Robert Demmert\NetHood
2005-06-30 22:53:23 0 dr------- C:\Documents and Settings\Paul Robert Demmert\My Documents
2005-06-30 22:53:23 0 d--h----- C:\Documents and Settings\Paul Robert Demmert\Local Settings
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Favorites
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Desktop
2005-06-30 22:53:23 0 d---s---- C:\Documents and Settings\Paul Robert Demmert\Cookies
2005-06-30 22:53:23 0 d--h----- C:\Documents and Settings\Paul Robert Demmert\Application Data
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\You've Got Pictures Screensaver
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\toshiba
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Intuit
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\InterTrust
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Identities
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\AOL
2005-06-30 22:53:23 0 d-------- C:\Documents and Settings\Paul Robert Demmert\Application Data\Adobe
2005-06-30 22:53:00 262144 --a------ C:\Documents and Settings\All Users\NTUSER.DAT
2005-06-30 22:52:52 0 d-------- C:\Documents and Settings\Default User\WINDOWS
2005-06-30 22:52:52 0 d-------- C:\Documents and Settings\Default User\Application Data\You've Got Pictures Screensaver
2005-06-30 22:52:52 0 d-------- C:\Documents and Settings\Default User\Application Data\toshiba
2005-06-30 22:52:52 0 d-------- C:\Documents and Settings\Default User\Application Data\Intuit
2005-06-30 22:52:52 0 d-------- C:\Documents and Settings\Default User\Application Data\InterTrust
2005-06-30 22:52:52 0 d-------- C:\Documents and Settings\Default User\Application Data\AOL
2005-06-30 22:52:52 0 d-------- C:\Documents and Settings\Default User\Application Data\Adobe
2005-05-28 06:20:44 0 d-------- C:\WINDOWS\system32\dla
2005-05-28 06:20:30 192512 --a------ C:\WINDOWS\system32\AdavVideoDec.dll <Not Verified; Arcsoft; Arcsoft AdavVideoDec>
2005-05-28 06:20:30 126976 --a------ C:\WINDOWS\system32\AdavAudioDec.dll <Not Verified; Arcsoft (HZ); MPEG Audio Codec Core>
2005-05-28 06:18:29 212480 --a------ C:\WINDOWS\PCDLIB32.DLL <Not Verified; Eastman Kodak; Kodak Photo CD Access Developer Toolkit>
2005-05-28 06:18:26 139264 --a------ C:\WINDOWS\system32\PhotoBase Screen Saver.scr <Not Verified; ArcSoft Inc.; PhotoBase v4.0>
2005-05-28 06:18:24 0 d-------- C:\Program Files\ArcSoft
2005-05-28 06:18:09 15890 --a------ C:\WINDOWS\system32\drivers\mdc8021x.sys <Not Verified; Meetinghouse Data Communications; AEGIS Client 2.3.1.10>
2005-05-28 06:18:06 241664 --a------ C:\WINDOWS\system32\ControlWZCS.exe <Not Verified; ; EnableWZC Application>
2005-05-28 06:18:06 28672 --a------ C:\WINDOWS\system32\ControlACS.exe <Not Verified; ; ControlACS>
2005-05-28 06:18:06 385024 --a------ C:\WINDOWS\system32\athcfg11.dll <Not Verified; Atheros; Atheros Configuration API Dynamic Link Library>
2005-05-28 06:18:05 28672 --a------ C:\WINDOWS\system32\DelRunOnceReg.exe <Not Verified; ASKEY COMPUTER CORP.; DelRunOnceReg>
2005-05-28 06:18:05 41029 --a------ C:\WINDOWS\system32\athgina.dll <Not Verified; Atheros; Athgina Dynamic Link Library>
2005-05-28 06:18:05 110592 --a------ C:\WINDOWS\system32\AegisI5.exe <Not Verified; ; AegisInstall Application>
2005-05-28 06:18:05 843776 --a------ C:\WINDOWS\system32\AegisE5.dll <Not Verified; Meetinghouse Data Communications; AEGIS Client API>
2005-05-28 06:18:05 36864 --a------ C:\WINDOWS\system32\acs.exe
2005-05-28 06:17:46 32768 --a------ C:\WINDOWS\system32\RmWLAN.exe <Not Verified; ASKEY COMPUTER CORP.; RmWLAN>
2005-05-28 06:17:46 270336 --a------ C:\WINDOWS\system32\PlugPlayPCIDevice.exe <Not Verified; ; PlugPlayPCIDevice Application>
2005-05-28 06:17:46 163840 --a------ C:\WINDOWS\system32\MFCFirstRemove.exe <Not Verified; ; MFCFirstRemove Application>
2005-05-28 06:17:46 28672 --a------ C:\WINDOWS\system32\InstallInf.exe <Not Verified; ASKEY COMPUTER CORP.; InstallInf>
2005-05-28 06:17:46 32768 --a------ C:\WINDOWS\system32\CloseACU.exe <Not Verified; ASKEY COMPUTER CORP.; CloseACU>
2005-05-28 06:17:46 0 d-------- C:\Program Files\Atheros
2005-05-13 17:05:47 0 d-------- C:\Program Files\Microsoft ActiveSync
2005-05-13 17:05:28 0 d-------- C:\WINDOWS\SHELLNEW
2005-05-13 17:05:28 0 d-------- C:\Program Files\Microsoft.NET
2005-05-13 17:03:47 0 d-------- C:\Program Files\Microsoft Works
2005-05-13 15:12:02 34048 --a------ C:\WINDOWS\system32\drivers\WOWXT_kern_i386.sys <Not Verified; ; SRS WOW XT for Windows XP>
2005-05-13 15:12:02 29056 --a------ C:\WINDOWS\system32\drivers\Tvs.sys <Not Verified; TOSHIBA Corporation; Audio Filter>
2005-05-13 15:12:02 29184 --a------ C:\WINDOWS\system32\drivers\TSXT_kern_i386.sys <Not Verified; ; SRS TruSurround XT for Windows XP>
2005-05-13 15:12:01 69632 --a------ C:\WINDOWS\system32\TvsCtrl.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Virtual Sound>
2005-05-13 15:10:06 21248 --a------ C:\WINDOWS\system32\drivers\pfc.sys <Not Verified; Padus, Inc.; Padus® ASPI Shell>
2005-05-13 15:10:06 21060 --a------ C:\WINDOWS\system32\drivers\iviaspi.sys <Not Verified; InterVideo, Inc.; InterVideo ASPI Shell>
2005-05-13 15:08:59 32694346 --a------ C:\WINDOWS\sat_screensaver_30mb.scr <Not Verified; Goldshell Digital Media; FlashForge>
2005-05-13 15:08:19 0 d-------- C:\DOCS
2005-05-13 15:07:50 135168 --a------ C:\WINDOWS\system32\XML30Lib.dll <Not Verified; Apache Software Foundation; Xerces-C Version 1.10.0.0>
2005-05-13 15:07:50 4528 -ra------ C:\WINDOWS\system32\SETBROWS.EXE
2005-05-13 15:07:50 69632 --a------ C:\WINDOWS\system32\MCSysUtil.dll <Not Verified; Metamail Corp.; Metamail>
2005-05-13 15:07:50 163840 --a------ C:\WINDOWS\system32\MCCoreUtil.dll <Not Verified; Metamail Corp.; Metamail>
2005-05-13 15:07:50 50176 --a------ C:\WINDOWS\system32\CSH.DLL <Not Verified; Blue Sky Software Corporation; What's This? Help Composer>
2005-05-13 15:07:48 0 d-------- C:\Program Files\Metamail Inc
2005-05-13 15:05:25 0 d-------- C:\Documents and Settings\All Users\Application Data\Pure Networks
2005-05-13 15:05:22 0 d-------- C:\Program Files\AOL Companion
2005-05-13 15:05:16 102400 --a------ C:\WINDOWS\system32\SimpleRegistry.dll <Not Verified; 4Developers LLC; SimpleRegistry Control>
2005-05-13 15:05:16 10752 --a------ C:\WINDOWS\system32\aamd532.dll <Not Verified; Almeida & Andrade Ltda; MD5 Maker DLL>
2005-05-13 15:05:15 368912 --a------ C:\WINDOWS\system32\vbar332.dll <Not Verified; Microsoft Corporation; Microsoft Visual Basic for Applications>
2005-05-13 15:05:13 0 d-------- C:\Program Files\Pure Networks
2005-05-13 15:05:12 0 d-------- C:\WINDOWS\occache
2005-05-13 15:05:11 0 d-------- C:\Program Files\Viewpoint
2005-05-13 15:05:11 0 d-------- C:\Documents and Settings\All Users\Application Data\Viewpoint
2005-05-13 15:05:01 0 d-------- C:\Documents and Settings\All Users\Application Data\QuickTime
2005-05-13 15:04:57 0 d-------- C:\Program Files\Common Files\Nullsoft
2005-05-13 15:04:48 0 d-------- C:\Program Files\Real
2005-05-13 15:04:48 0 d-------- C:\Program Files\Common Files\Real
2005-05-13 15:04:18 153088 --a------ C:\WINDOWS\system32\jgdwmie.dll <Not Verified; America Online; JG Decoder>
2005-05-13 15:04:17 1044480 --a------ C:\WINDOWS\system32\roboex32.dll <Not Verified; eHelp Corporation.; RoboHELP for WinHelp 9>
2005-05-13 15:04:17 49152 -ra------ C:\WINDOWS\system32\INETWH32.dll <Not Verified; Blue Sky Software Corporation.; Blue Sky Software - INETWH32>
2005-05-13 15:03:56 225280 --a------ C:\WINDOWS\system32\AOLDial.dll <Not Verified; America Online, Inc; AOL Connectivity Service>
2005-05-13 15:03:54 0 d-------- C:\Program Files\Common Files\aolshare
2005-05-13 15:03:52 0 d-------- C:\Program Files\America Online 9.0
2005-05-13 15:03:52 0 d-------- C:\Documents and Settings\All Users\Application Data\AOL
2005-05-13 15:03:44 0 d-------- C:\Program Files\Common Files\AOL
2005-05-13 15:03:43 335 --a------ C:\WINDOWS\nsreg.dat
2005-05-13 15:03:02 0 d-------- C:\WINDOWS\WNBackup
2005-05-13 15:03:01 0 d-------- C:\Program Files\AT&T
2005-05-13 14:59:27 0 d-------- C:\WINDOWS\RegisteredPackages
2005-05-13 14:57:52 0 d-------- C:\Program Files\Google
2005-05-13 14:55:56 0 d-------- C:\Program Files\Java
2005-05-13 14:55:54 0 d-------- C:\Program Files\Common Files\Java
2005-05-13 14:53:48 0 d-------- C:\Program Files\Sonic
2005-05-13 14:52:31 0 d-------- C:\Program Files\Common Files\Palo Alto Software
2005-05-13 14:52:31 0 d-------- C:\Program Files\Common Files\Intuit
2005-05-13 14:52:21 0 d-------- C:\Program Files\Quicken
2005-05-13 14:52:21 0 d-------- C:\Documents and Settings\All Users\Application Data\Intuit
2005-05-13 14:50:53 720896 --a------ C:\WINDOWS\iun6002.exe <Not Verified; Indigo Rose Corporation; Setup Factory 6.0 Runtime Module>
2005-05-13 14:50:50 0 d-------- C:\Program Files\Notebook Maximizer
2005-05-13 14:49:54 0 d-------- C:\Program Files\Common Files\Roxio Shared
2005-05-13 14:49:45 0 d-------- C:\Program Files\Napster
2005-05-13 14:49:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Napster
2005-05-13 14:47:19 0 d-------- C:\Documents and Settings\All Users\Application Data\McAfee.com
2005-05-13 14:47:08 0 d-------- C:\Program Files\McAfee.com
2005-05-13 14:46:20 204800 --a------ C:\WINDOWS\system32\IVIresizeW7.dll
2005-05-13 14:46:20 188416 --a------ C:\WINDOWS\system32\IVIresizePX.dll
2005-05-13 14:46:20 192512 --a------ C:\WINDOWS\system32\IVIresizeP6.dll
2005-05-13 14:46:20 192512 --a------ C:\WINDOWS\system32\IVIresizeM6.dll
2005-05-13 14:46:20 200704 --a------ C:\WINDOWS\system32\IVIresizeA6.dll
2005-05-13 14:46:20 20480 --a------ C:\WINDOWS\system32\IVIresize.dll
2005-05-13 14:46:16 0 d-------- C:\Program Files\InterVideo
2005-05-13 14:44:25 0 d-------- C:\WINDOWS\Profiles
2005-05-13 14:44:24 0 d-------- C:\WINDOWS\system32\Adobe
2005-05-13 14:44:24 0 d-------- C:\Program Files\Common Files\Adobe
2005-05-13 14:37:52 102400 --a------ C:\WINDOWS\system32\Tossps.scr <Not Verified; TOSHIBA Corporation.; TOSHIBA Speech System>
2005-05-13 14:37:51 24576 --a------ C:\WINDOWS\system32\TosusrpN.dll <Not Verified; TOSHIBA Corporation.; TOSHIBA Speech System>
2005-05-13 14:37:51 69632 --a------ C:\WINDOWS\system32\TosOlkN.dll <Not Verified; TOSHIBA Corporation.; TOSHIBA Speech System>
2005-05-13 14:37:51 40960 --a------ C:\WINDOWS\system32\ToscmddN.dll <Not Verified; Toshiba Corporation; TOSHIBA Speech System>
2005-05-13 14:36:45 0 d-------- C:\TOSHIBA
2005-05-13 14:34:37 77824 --a------ C:\WINDOWS\system32\TPwrReg.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:34:37 53248 --a------ C:\WINDOWS\system32\TPwrCfg.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:34:37 49152 --a------ C:\WINDOWS\system32\TPSTrace.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Powre Saver>
2005-05-13 14:34:37 45056 --a------ C:\WINDOWS\system32\TPSMainCtl.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:34:37 270336 --a------ C:\WINDOWS\system32\TPSMain.exe <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:34:37 45056 --a------ C:\WINDOWS\system32\TPSDel.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:34:37 36864 --a------ C:\WINDOWS\system32\TPSBattM.exe <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:34:37 45056 --a------ C:\WINDOWS\system32\TPSAddin.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:34:37 81920 --a------ C:\WINDOWS\system32\CpuPerf.dll <Not Verified; TOSHIBA Corporation; TOSHIBA Power Saver>
2005-05-13 14:21:43 28672 --a------ C:\WINDOWS\system32\EBLib.DLL <Not Verified; ; EBLib Dynamic Link Library>
2005-05-13 14:21:43 8704 --a------ C:\WINDOWS\system32\drivers\TPwSav.sys <Not Verified; TOSHIBA; >
2005-05-13 14:20:42 45056 --a------ C:\WINDOWS\cfdemo.scr <Not Verified; TOSHIBA; ConfigFree™>
2005-05-13 14:20:42 20966970 --a------ C:\WINDOWS\cfdemo.exe <Not Verified; Macromedia, Inc.; Shockwave Flash>
2005-05-13 14:19:25 12032 --a------ C:\WINDOWS\system32\drivers\Netdevio.sys <Not Verified; TOSHIBA Corporation.; TOSHIBA Network Device Usermode I/O protocol>
2005-05-13 14:11:58 6867 --a------ C:\WINDOWS\system32\drivers\tbiosdrv.sys
2005-05-13 14:11:58 90112 --a------ C:\WINDOWS\InstDrvr.exe <Not Verified; ; InstDrvr Application>
2005-05-13 14:11:58 0 d-------- C:\Program Files\Toshiba
2005-05-13 14:11:52 306688 --a------ C:\WINDOWS\IsUninst.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
2005-05-13 14:09:51 77824 --a------ C:\WINDOWS\system32\tosmreg.exe <Not Verified; Toshiba Corporation; Tosmreg>
2005-05-13 14:09:51 45056 --a------ C:\WINDOWS\system32\csellang.dll
2005-05-13 14:09:51 110592 --a------ C:\WINDOWS\system32\cselect.exe <Not Verified; Toshiba Corporation; toshiba cselect>
2005-05-13 14:09:51 88358 --a------ C:\WINDOWS\agrsmmsg.exe <Not Verified; Agere Systems; Agere SoftModem Messaging Applet>
2005-05-13 14:09:51 0 d-------- C:\Program Files\ltmoh
2005-05-13 14:09:50 64512 --a------ C:\WINDOWS\agrsmdel.exe <Not Verified; Agere Systems; LTRemove>
2005-05-13 14:09:32 0 d-------- C:\WINDOWS\Options
2005-05-13 14:07:35 0 d-------- C:\WINDOWS\tiinst
2005-05-13 14:05:58 155648 --a------ C:\WINDOWS\system32\RAMASST.exe <Not Verified; Matsubleepa Electric Industrial Co., Ltd.; >
2005-05-13 14:05:58 110592 --a------ C:\WINDOWS\system32\DVDRAMSV.exe <Not Verified; Matsubleepa Electric Industrial Co., Ltd.; >
2005-05-13 14:05:58 135168 --a------ C:\WINDOWS\system32\DVDMenu.dll <Not Verified; Matsubleepa Electric Industrial Co., Ltd.; DVDMenu.dll>
2005-05-13 14:05:58 102320 --a------ C:\WINDOWS\system32\drivers\meiudf.sys <Not Verified; Matsubleepa Electric Industrial Co.,Ltd.; >
2005-05-13 14:05:57 0 d-------- C:\Program Files\DVD-RAM
2005-05-13 14:03:51 0 d-------- C:\Program Files\Apoint2K
2005-05-13 14:02:41 0 d-------- C:\WINDOWS\system32\SDA
2005-05-13 14:00:29 1256 --a------ C:\WINDOWS\system32\drivers\alcxinit.dat
2005-05-13 14:00:29 176 --a------ C:\WINDOWS\system32\drivers\alcxhweq.dat
2005-05-13 14:00:29 176 --a------ C:\WINDOWS\system32\drivers\alcxeq.dat
2005-05-13 14:00:29 294912 --a------ C:\WINDOWS\alcupd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update driver Tool>
2005-05-13 14:00:29 200704 --a------ C:\WINDOWS\alcrmv.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Removing driver Tool>
2005-05-13 14:00:23 192512 --a------ C:\WINDOWS\RtlExUpd.dll <Not Verified; Realtek Semiconductor Corp.; RtlExUpd Dynamic Link Library>
2005-05-13 13:56:54 0 d-------- C:\Program Files\Intel
2005-05-13 13:56:10 0 d-------- C:\WINDOWS\system32\ReinstallBackups
2005-05-13 13:56:06 0 d--h----- C:\Program Files\InstallShield Installation Information
2005-05-13 13:55:46 0 d-------- C:\Program Files\Common Files\InstallShield
2005-05-13 12:21:35 0 d--h----- C:\WINDOWS\$hf_mig$
2005-05-13 12:12:52 0 d-------- C:\WINDOWS\system32\URTTemp
2005-05-13 12:11:49 0 dr-h----- C:\MSOCache
2005-05-13 12:10:16 0 d-------- C:\WINDOWS\SoftwareDistribution
2005-05-13 12:10:11 0 d---s---- C:\WINDOWS\system32\Microsoft
2005-05-13 12:10:11 0 d-------- C:\WINDOWS\Prefetch
2005-05-13 12:10:05 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
2005-05-13 12:10:05 0 d---s---- C:\Documents and Settings\LocalService\Cookies
2005-05-13 12:10:05 0 d-------- C:\Documents and Settings\LocalService\Application Data
2005-05-13 12:10:05 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
2005-05-13 12:10:04 241664 --a------ C:\Documents and Settings\LocalService\NTUSER.DAT
2005-05-13 12:10:03 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
2005-05-13 12:10:03 0 d---s---- C:\Documents and Settings\NetworkService\Cookies
2005-05-13 12:10:03 0 d-------- C:\Documents and Settings\NetworkService\Application Data
2005-05-13 12:10:03 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
2005-05-13 12:10:02 241664 --a------ C:\Documents and Settings\NetworkService\NTUSER.DAT
2005-05-13 12:06:37 0 d-------- C:\WINDOWS\system32\xircom
2005-05-13 12:06:37 0 d-------- C:\Program Files\microsoft frontpage
2005-05-13 12:06:35 1048576 --ah----- C:\Documents and Settings\Default User\NTUSER.DAT
2005-05-13 12:06:34 0 d-------- C:\Documents and Settings\Default User\Application Data\Identities
2005-05-13 12:06:24 0 -rahs---- C:\MSDOS.SYS
2005-05-13 12:06:24 0 -rahs---- C:\IO.SYS
2005-05-13 12:05:17 0 d--hs---- C:\Documents and Settings\All Users\DRM
2005-05-13 12:05:06 0 dr------- C:\WINDOWS\Offline Web Pages
2005-05-13 12:05:06 0 d---s---- C:\WINDOWS\Downloaded Program Files
2005-05-13 12:04:54 0 d--h----- C:\Program Files\WindowsUpdate
2005-05-13 12:04:34 0 d-------- C:\WINDOWS\system32\DirectX
2005-05-13 12:04:25 0 d---s---- C:\WINDOWS\Tasks
2005-05-13 12:04:25 0 d-------- C:\Program Files\Common Files\MSSoap
2005-05-13 12:04:23 0 d-------- C:\WINDOWS\system32\Macromed
2005-05-13 12:04:23 0 d-------- C:\WINDOWS\srchasst
2005-05-13 12:04:20 0 d-------- C:\Program Files\Movie Maker
2005-05-13 12:04:18 0 d-------- C:\WINDOWS\system32\Restore
2005-05-13 12:04:09 21640 --a------ C:\WINDOWS\system32\emptyregdb.dat
2005-05-13 12:03:47 0 d-------- C:\WINDOWS\Registration
2005-05-13 12:03:11 0 d-------- C:\Program Files\Online Services
2005-05-13 12:03:09 0 d-------- C:\WINDOWS\system32\FxsTmp
2005-05-13 12:02:58 0 d-------- C:\Program Files\Messenger
2005-05-13 12:02:57 0 d-------- C:\Program Files\MSN Gaming Zone
2005-05-13 12:02:43 0 d-------- C:\WINDOWS\system32\MsDtc
2005-05-13 12:02:43 0 d-------- C:\Program Files\Windows NT
2005-05-13 12:02:40 0 d-------- C:\WINDOWS\system32\Com
2005-05-13 11:27:38 0 d-------- C:\ARCSOFT
2005-05-13 11:25:12 0 d-------- C:\WORKSSETUP
2005-05-13 10:56:28 1270 --a------ C:\WINDOWS\TSession.reg
2005-05-13 10:56:28 2588 --a------ C:\WINDOWS\ToshDefs.reg
2005-05-13 10:54:00 0 d-a------ C:\WINDOWS\I386
2005-05-13 10:52:34 163644 --a------ C:\WINDOWS\system32\drivers\secdrv.sys <Not Verified; Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.; Macrovision SECURITY Driver>
2005-05-13 10:52:06 373760 --a------ C:\WINDOWS\system32\regscan.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2005-05-13 10:52:05 65536 --a------ C:\WINDOWS\system32\jgsh400.dll <Not Verified; Johnson-Grace Company; JGSHOW>
2005-05-13 10:52:05 45568 --a------ C:\WINDOWS\system32\jgsd400.dll <Not Verified; America Online; >
2005-05-13 10:52:05 35840 --a------ C:\WINDOWS\system32\jgmd400.dll <Not Verified; Johnson-Grace Company; JGMDW>
2005-05-13 10:52:05 44544 --a------ C:\WINDOWS\system32\jgaw400.dll <Not Verified; Johnson-Grace Company; JGAW>
2005-05-13 04:58:30 0 d--hs---- C:\WINDOWS\Installer
2005-05-13 04:58:29 0 d-------- C:\Program Files\Common Files\ODBC
2005-05-13 04:58:27 0 dr------- C:\Program Files
2005-05-13 04:58:27 0 d-------- C:\Program Files\Common Files
2005-05-13 04:58:27 0 d-------- C:\Program Files\Common Files\SpeechEngines
2005-05-13 04:58:10 0 d--h----- C:\Documents and Settings\Default User\Templates
2005-05-13 04:58:10 0 dr------- C:\Documents and Settings\Default User\Start Menu
2005-05-13 04:58:10 0 dr-h----- C:\Documents and Settings\Default User\SendTo
2005-05-13 04:58:10 0 dr-h----- C:\Documents and Settings\Default User\Recent
2005-05-13 04:58:10 0 d--h----- C:\Documents and Settings\Default User\PrintHood
2005-05-13 04:58:10 0 d--h----- C:\Documents and Settings\Default User\NetHood
2005-05-13 04:58:10 0 dr------- C:\Documents and Settings\Default User\My Documents
2005-05-13 04:58:10 0 d--h----- C:\Documents and Settings\Default User\Local Settings
2005-05-13 04:58:10 0 dr------- C:\Documents and Settings\Default User\Favorites
2005-05-13 04:58:10 0 d-------- C:\Documents and Settings\Default User\Desktop
2005-05-13 04:58:10 0 d---s---- C:\Documents and Settings\Default User\Cookies
2005-05-13 04:58:10 0 d--h----- C:\Documents and Settings\All Users\Templates
2005-05-13 04:58:10 0 dr------- C:\Documents and Settings\All Users\Start Menu
2005-05-13 04:58:10 0 d-------- C:\Documents and Settings\All Users\Favorites
2005-05-13 04:58:10 0 dr------- C:\Documents and Settings\All Users\Documents
2005-05-13 04:58:10 0 d-------- C:\Documents and Settings\All Users\Desktop
2005-05-13 04:57:58 0 d-------- C:\WINDOWS\system32\CatRoot2
2005-05-13 04:57:58 0 d-------- C:\WINDOWS\system32\CatRoot
2005-05-13 04:57:52 0 dr-h----- C:\Documents and Settings\Default User\Application Data
2005-05-13 04:57:52 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
2005-05-13 04:57:52 0 dr-h----- C:\Documents and Settings\All Users\Application Data
2005-05-13 04:57:52 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2005-05-13 04:57:37 0 d--hs---- C:\System Volume Information
2005-05-13 04:57:37 0 d-------- C:\Documents and Settings
2005-05-13 04:36:17 0 d-------- C:\WINDOWS\VALUEADD
2005-05-13 04:36:17 0 d-------- C:\WINDOWS\ToshibaDirect
2005-05-13 04:36:16 0 d-------- C:\WINDOWS\SUPPORT
2005-05-13 04:31:52 0 d-------- C:\WINDOWS\system32\3com_dmi
2005-05-13 04:31:52 0 d-------- C:\WINDOWS\PeerNet
2005-05-13 04:31:52 0 d-------- C:\WINDOWS\pchealth
2005-05-13 04:31:51 0 d-------- C:\WINDOWS
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\WinSxS
2005-05-13 04:31:51 0 dr------- C:\WINDOWS\Web
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\twain_32
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\wins
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\wbem
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\usmt
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\spool
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\ShellExt
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\Setup
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\ras
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\oobe
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\npp
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\mui
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\inetsrv
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\IME
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\icsxml
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\ias
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\export
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\drivers
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\drivers\etc
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\drivers\disdn
2005-05-13 04:31:51 0 dr-hs--c- C:\WINDOWS\system32\dllcache
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\dhcp
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\config
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\3076
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\2052
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1054
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1042
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1041
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1037
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1033
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1031
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1028
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system32\1025
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\system
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\security
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Resources
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\repair
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Provisioning
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\mui
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\msapps
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\msagent
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Media
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\java
2005-05-13 04:31:51 0 d--h----- C:\WINDOWS\inf
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\ime
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Help
2005-05-13 04:31:51 0 dr--s---- C:\WINDOWS\Fonts
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Driver Cache
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Debug
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Cursors
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Connection Wizard
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\Config
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\AppPatch
2005-05-13 04:31:51 0 d-------- C:\WINDOWS\addins
2005-04-25 12:44:04 28672 --a------ C:\WINDOWS\system32\TPeculiarity.dll <Not Verified; ; TPeculiarity Dynamic Link Library>
2005-04-20 19:38:14 40960 --a------ C:\WINDOWS\system32\HWS_Ctrl.dll <Not Verified; ; HWS_Ctrl Dynamic Link Library>
2005-04-20 19:00:00 53248 --a------ C:\WINDOWS\system32\TSBWLS.dll <Not Verified; COMPAL ELECTRONIC INC.; TSBWLS Dynamic Link Library>
2005-04-20 19:00:00 24576 --a------ C:\WINDOWS\system32\EKECioCtl.dll <Not Verified; ; EKECioCtl Dynamic Link Library>
2005-04-20 18:59:58 6400 --a------ C:\WINDOWS\system32\drivers\SSIOMngr.sys <Not Verified; COMPAL ELECTRONIC INC.; Compal IoManager Application>
2005-04-20 18:59:58 6400 --a------ C:\WINDOWS\system32\drivers\EKIOMngr.sys <Not Verified; COMPAL ELECTRONIC INC.; Compal IoManager Application>
2005-04-20 18:59:58 28672 --a------ C:\WINDOWS\system32\CeEKPolicy.dll <Not Verified; COMPAL ELECTRONIC INC.; CeEKPolicy Dynamic Link Library>
2005-04-20 18:59:58 36864 --a------ C:\WINDOWS\system32\BlackSecurity.scr <Not Verified; COMPAL ELECTRONIC INC.; BlackSecurity Application>
2005-03-30 13:50:38 24576 --a------ C:\WINDOWS\system32\SPCtl.dll <Not Verified; ; SPCtl Dynamic Link Library>
2005-01-31 19:06:08 146 --a------ C:\WINDOWS\system32\UCMDel.bat
2005-01-10 15:48:12 147456 --a------ C:\WINDOWS\UNINST32.EXE <Not Verified; Dritek System Inc.; Dritek System Inc. Uninstall Application>
2004-10-21 21:11:20 24576 --a------ C:\WINDOWS\system32\CeTPPolicy.dll <Not Verified; COMPAL ELECTRONIC INC.; CeTPPolicy Dynamic Link Library>
2004-08-19 11:26:54 1216 --a------ C:\WINDOWS\Twunk_32.dll <Not Verified; Hewlett-Packard; >
2004-08-19 11:26:54 1216 --a------ C:\WINDOWS\Twunk_16.dll <Not Verified; Hewlett-Packard; >
2004-07-16 16:46:42 1699913 --a------ C:\WINDOWS\system32\inetclnt.dll <Not Verified; Intuit Inc.; Internet Client>
2004-07-14 22:34:06 16896 --a------ C:\WINDOWS\system32\mscorier.dll <Not Verified; Microsoft Corporation; Microsoft .NET Framework>
2004-06-11 00:27:32 118784 -ra------ C:\WINDOWS\system32\HPODXPAT.DLL <Not Verified; Hewlett Packard Company; Hewlett Packard Company hpodxpat>
2004-04-30 22:03:16 24576 --a------ C:\WINDOWS\system32\ZoomingHook.exe <Not Verified; TOSHIBA; >
2004-03-15 20:38:06 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2004-03-15 20:38:04 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2004-03-15 20:38:03 0 d-------- C:\WINDOWS\LastGood
2004-03-15 20:31:31 0 d-------- C:\WINDOWS\sv3978
2004-03-15 20:26:12 0 d-------- C:\Program Files\?icrosoft
2004-03-15 20:26:11 60928 --a------ C:\WINDOWS\system32\qqnvr.dll


-- Find3M Report ---------------------------------------------------------------

2008-02-05 12:11:26 36864 -ra------ C:\WINDOWS\mrofinu72.exe
2008-01-28 08:29:02 60928 -----n--- C:\WINDOWS\system32\svpp.dll
2005-05-13 04:58:10 62 --ahs---- C:\Documents and Settings\Paul Robert Demmert\Application Data\desktop.ini
2004-03-15 20:27:48 0 d-------- C:\Program Files\QdrPack
2004-03-15 20:26:12 0 d-------- C:\Program Files\?icrosoft
2004-03-15 20:26:12 0 d-------- C:\Program Files\Common Files\?racle
2004-01-19 08:17:22 0 d-------- C:\Program Files\QdrModule
2004-01-17 06:49:06 0 d-------- C:\Program Files\?icrosoft.NET
2004-01-09 16:52:14 507904 --a------ C:\WINDOWS\svchost.exe <Not Verified; Microsoft Corporation; Microsoft? Windows? Operating System>
2004-01-07 01:04:28 1283174 --a------ C:\Install
2004-01-07 01:04:07 37864 --a------ C:\WINDOWS\xpupdate.exe
2004-01-06 11:12:46 94208 --a------ C:\WINDOWS\system32\TPprop.dll <Not Verified; COMPAL ELECTRONIC INC.; TPprop Module>
2004-01-06 01:13:47 2 --a------ C:\WINDOWS\system32\wnsintsv32.exe
2004-01-06 01:13:14 40183 ---hs---- C:\Program Files\Common Files\Yazzle1552OinUninstaller.exe


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F9E2BE3-766D-4831-BB0E-766D5B819995}]
12/14/2007 06:26 PM 192512 --a------ C:\Program Files\QdrDrive\QdrDrive9.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BCAE62F4-F336-8F91-429A-A68F0A7128E0}]
04/11/2008 09:51 AM 60928 --a------ C:\WINDOWS\system32\qqnvr.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AGRSMMSG"="AGRSMMSG.exe" [04/12/2005 03:17 PM C:\WINDOWS\agrsmmsg.exe]
"@"="" []
"TPSMain"="TPSMain.exe" [12/28/2004 03:02 PM C:\WINDOWS\system32\TPSMain.exe]
"ZoomingHook"="ZoomingHook.exe" [04/30/2004 10:03 PM C:\WINDOWS\system32\ZoomingHook.exe]
"SweetIM"="C:\Program Files\Macrogaming\SweetIM\SweetIM.exe" [06/06/2006 10:07 AM]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [02/16/2005 11:11 PM]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [01/20/2006 05:46 PM C:\WINDOWS\KHALMNPR.Exe]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [06/29/2007 06:24 AM]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [09/14/2007 10:00 AM]
"My Web Search Bar"="C:\PROGRA~1\MYWEBS~1\bar\3.bin\MWSBAR.DLL" [09/21/2007 08:32 PM]
"MyWebSearch Email Plugin"="C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe" [09/21/2007 08:32 PM]
"runner1"="C:\WINDOWS\mrofinu72.exe" [02/05/2008 12:11 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 04:00 AM]
"MsnMsgr"="~C:\Program Files\MSN Messenger\MsnMsgr.exe" []
"Yahoo! Pager"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [03/27/2007 03:22 PM]
"SweetIM"="C:\Program Files\Macrogaming\SweetIM\SweetIM.exe" [06/06/2006 10:07 AM]
"MySpaceIM"="C:\Program Files\MySpace\IM\MySpaceIM.exe" [03/06/2007 09:06 PM]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [06/26/2007 01:25 PM]
"Regscan"="C:\WINDOWS\system32\regscan.exe" [05/13/2005 10:52 AM]
"MyWebSearch Email Plugin"="C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe" [09/21/2007 08:32 PM]
"Eprc"="C:\DOCUME~1\PAULRO~1\MYDOCU~1\ICROSO~1\ati2evxx.exe" [01/06/2004 01:13 AM]
"Vlukkmxe"="C:\Program Files\Common Files\?racle\l?gonui.exe" [04/11/2008 09:52 AM]
"Windows update loader"="C:\Windows\xpupdate.exe" [01/07/2004 01:04 AM]
"MalwareAlarm"="C:\Program Files\MalwareAlarm\MalwareAlarm.exe" [01/07/2004 01:04 AM]
"QdrModule12"="C:\Program Files\QdrModule\QdrModule12.exe" [01/18/2008 03:02 PM]
"QdrPack16"="C:\Program Files\QdrPack\QdrPack16.exe" [05/12/2008 12:58 PM]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"MySpaceIM"=C:\Program Files\MySpace\IM\MySpaceIM.exe

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [11/4/2004 7:28:24 AM]
HP Image Zone Fast Start.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [11/4/2004 7:50:52 AM]
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [6/26/2007 1:25:18 PM]
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [4/20/2007 12:40:34 PM]
NkbMonitor.exe.lnk - C:\Program Files\Nikon\PictureProject\NkbMonitor.exe [8/13/2006 2:30:07 AM]
RAMASST.lnk - C:\WINDOWS\system32\RAMASST.exe [5/13/2005 2:05:58 PM]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"Wallpaper"=

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoActiveDesktop"=0 (0x0)
"ForceActiveDesktopOn"=1 (0x1)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B9E618A2-A4FE-11D4-83C2-005004636C96}"= C:\Program Files\Metamail Inc\Metamail Reader\OESHook.dll [04/26/2005 02:26 PM 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"SharedAccess"=2 (0x2)


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{29e11e34-9943-11dc-9d17-00038a000015}]
AutoRun\command- E:\LaunchU3.exe -a




-- End of Deckard's System Scanner: finished at 2004-03-15 20:53:19 ------------

BC AdBot (Login to Remove)

 


#2 sicatrix

sicatrix
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:03:14 PM

Posted 18 May 2008 - 10:15 PM

Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel® Celeron® M processor 1.50GHz
Percentage of Memory in Use: 67%
Physical Memory (total/avail): 502.42 MiB / 163.77 MiB
Pagefile Memory (total/avail): 1229.52 MiB / 774.08 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1899.95 MiB

C: is Fixed (NTFS) - 74.53 GiB total, 38.73 GiB free.
D: is CDROM (No Media)

\\.\PHYSICALDRIVE0 - HTS541080G9AT00 - 74.53 GiB - 1 partition
\PARTITION0 (bootable) - Installable File System - 74.53 GiB - C:



-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.

FirstRunDisabled is set.
FirewallOverride is set.


[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0\\waol.exe"="C:\\Program Files\\America Online 9.0\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\TOSHIBA\\ivp\\NetInt\\Netint.exe"="C:\\TOSHIBA\\ivp\\NetInt\\Netint.exe:*:Enabled:NIE - Toshiba Software Upgrade Engine"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Disabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Disabled:AOL"
"C:\\Program Files\\America Online 9.0\\waol.exe"="C:\\Program Files\\America Online 9.0\\waol.exe:*:Disabled:AOL"
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe:*:Enabled:Yahoo! FT Server"
"C:\\Program Files\\PokerStars.NET\\PokerStarsUpdate.exe"="C:\\Program Files\\PokerStars.NET\\PokerStarsUpdate.exe:*:Enabled:PokerStars.net"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\Program Files\\BearShare Applications\\BearShare\\BearShare.exe"="C:\\Program Files\\BearShare Applications\\BearShare\\BearShare.exe:*:Enabled:BearShare"
"C:\\Program Files\\MySpace\\IM\\MySpaceIM.exe"="C:\\Program Files\\MySpace\\IM\\MySpaceIM.exe:*:Enabled:MySpaceIM"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Paul Robert Demmert\Application Data
CLASSPATH=.;C:\Program Files\Java\jre1.5.0_01\lib\ext\QTJava.zip
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=PAUL
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
GETMODEL=Satellite M55
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Paul Robert Demmert
LOGONSERVER=\\PAUL
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 13 Stepping 8, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0d08
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=C:\Program Files\Java\jre1.5.0_01\lib\ext\QTJava.zip
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\PAULRO~1\LOCALS~1\Temp
TMP=C:\DOCUME~1\PAULRO~1\LOCALS~1\Temp
USERDOMAIN=PAUL
USERNAME=Paul Robert Demmert
USERPROFILE=C:\Documents and Settings\Paul Robert Demmert
VERNUM=PSM50U-02L01CV
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Paul Robert Demmert (admin)
everyone else
everyone else_2 (admin)
Esteban Demmert (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat 4.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 4.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 4.0\NT\Uninst.dll"
Adobe Acrobat 5.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.dll"
ALPS Touch Pad Driver --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}\setup.exe" UNINSTALL
America Online (Choose which version to remove) --> C:\Program Files\Common Files\aolshare\Aolunins_us.exe
AOL Coach Version 1.0(Build:20040229.1 en) --> C:\Program Files\Common Files\aolshare\Coach\AolCInUn.exe
AOL Connectivity Services --> C:\PROGRA~1\COMMON~1\AOL\ACS\AcsUninstall.exe /c
AOL Spyware Protection --> C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\UNWISE.EXE C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\INSTALL.LOG
AOL You've Got Pictures Screensaver --> C:\Program Files\Common Files\AOL\Screensaver\uninst_ygpss.exe
Apple Mobile Device Support --> MsiExec.exe /I{3EBD3749-304E-4A4C-9575-C00E5F015217}
Apple Software Update --> MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
ArcSoft Panorama Maker 3 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A5F68DC8-0278-4AD8-B413-861509B5F25B}\Setup.exe" -l0x9
ArcSoft Software Suite --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BA561482-C49D-4687-A61C-96236C1688F0}\Setup.exe" -l0x9
Atheros Client Utility --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{71D658CF-4E0D-4DA8-AA67-8C0B6F1C01FE}\Setup.exe" -l0x9
Atheros Wireless LAN MiniPCI card Driver --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{05832D65-6EDB-4D32-BA78-BCD0E2B91C02}\Setup.exe" -l0x9
Battle.net --> C:\WINDOWS\bnetunin.exe
Diablo II --> C:\WINDOWS\DIIUnin.exe C:\WINDOWS\DIIUnin.dat
DVD-RAM Driver --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9D765FA6-F2BC-40AF-8145-50808F9BDF4E}\setup.exe" -l0x9 DVD-RAM Driver
Filetopia Client v3.04d --> C:\FILETO~1\UNWISE.EXE C:\FILETO~1\INSTALL.LOG
Full Tilt Poker --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}\setup.exe" -l0x9 -removeonly
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Extended Capabilities 4.7 --> C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone 4.7 --> C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP PSC & OfficeJet 4.7 --> "C:\Program Files\HP\Digital Imaging\{342C7C88-D335-4bc2-8CF1-281857629CE2}\setup\hpzscr01.exe" -datfile hposcr05.dat
HP Update --> MsiExec.exe /X{8C6027FD-53DC-446D-BB75-CACD7028A134}
ijji --> C:\ijji\ENGLISH\ijjiUninstall.exe
ijji Auto Installer --> "C:\Program Files\InstallShield Installation Information\{1DCC7418-2089-4BDD-B321-3771956160FC}\setup.exe" -runfromtemp -l0x0009 -removeonly
iLike --> MsiExec.exe /I{0C8A05E1-271B-49D3-AC55-37739048C658}
Intel® Graphics Media Accelerator Driver for Mobile --> RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2ID PCI\VEN_8086&DEV_2792 PCI\VEN_8086&DEV_2592
InterActual Player --> C:\Program Files\InterActual\InterActual Player\inuninst.exe
Internet Audio Mix 1.48 --> C:\PROGRA~1\INTERN~2\UNWISE.EXE C:\PROGRA~1\INTERN~2\INSTALL.LOG
Internet Speed Monitor --> C:\Program Files\ISM\Uninstall.exe
InterVideo WinDVD Creator 2 --> "C:\Program Files\InstallShield Installation Information\{2FCE4FC5-6930-40E7-A4F1-F862207424EF}\setup.exe" REMOVEALL
InterVideo WinDVD for TOSHIBA --> "C:\Program Files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe" REMOVEALL
iPod for Windows 2005-09-23 --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{D4936AAF-FFD0-44A1-A7EA-A2DB41CEB5BC} /l1033
IrfanView (remove only) --> C:\Program Files\IrfanView\iv_uninstall.exe
iTunes --> MsiExec.exe /I{7FF9CD9C-6E0C-4462-9670-F424DCB32DAF}
J2SE Runtime Environment 5.0 Update 1 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150010}
Kaspersky Online Scanner --> C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavuninstall.exe
Logitech Desktop Messenger --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\SETUP.exe" -l0x9 UNINSTALL -removeonly
Logitech SetPoint --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x9 -removeonly
Macrogaming SweetIM 1.2a --> MsiExec.exe /X{5827C8C9-A3C6-4E7C-AA70-F6AFAB52F981}
Macromedia Flash Player 8 --> C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe
MalwareAlarm --> C:\Program Files\MalwareAlarm\Uninstall.exe
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office OneNote 2003 --> MsiExec.exe /I{91A10409-6000-11D3-8CFE-0150048383C9}
Microsoft Office Standard Edition 2003 --> MsiExec.exe /I{91120409-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Works --> MsiExec.exe /I{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}
MSN --> C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
My Web Search (Smiley Central) --> rundll32 C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsbar.dll,O
MySpaceIM --> C:\Program Files\MySpace\IM\temp\Uninstall.exe
Notebook Maximizer --> C:\WINDOWS\iun6002.exe "C:\Program Files\Notebook Maximizer\irunin.ini"
Outerinfo --> "C:\Program Files\Common Files\Yazzle1552OinUninstaller.exe"
PictureProject --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FF3999BE-1A7B-4738-88AA-97BF14094A4A}\Setup.exe" -l0x9 UNINSTALL
Quicken 2005 --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{2DBE41DD-2129-4C65-A3D3-5647236A60F3} anything
QuickTime --> MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
RealPlayer --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek AC'97 Audio --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
Rhapsody Player Engine --> MsiExec.exe /I{30C2FCD0-FF7B-4FFA-8DDE-43A22E01A1E7}
Roxio Burn Engine --> MsiExec.exe /X{9860A9CF-7E71-43AC-888F-0B4D3EA212D1}
sat_screensaver_30mb --> C:\WINDOWS\sat_screensaver_30mb.scr /U
SD Secure Module --> MsiExec.exe /X{C45F4811-31D5-4786-801D-F79CD06EDD85}
Sonic DLA --> MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
Sonic RecordNow! --> MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
Starcraft --> C:\WINDOWS\scunin.exe C:\WINDOWS\scunin.dat
SweetIM For Internet Explorer 1.0a --> MsiExec.exe /X{BBB1528C-2F8C-4526-9C8E-699F17AF21CA}
Texas Instruments PCIxx21/x515 drivers. --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F47B2DF8-35EC-4B51-B5F2-0E03EF5F51DA} /l1033
TOSHIBA Accessibility --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{3A57482F-BEBC-47E4-ADA1-6302403C7E50} /l1033
TOSHIBA Assist --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{12B3A009-A080-4619-9A2A-C6DB151D8D67}\Setup.exe" -l0x9
TOSHIBA ConfigFree --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}\setup.exe" -l0x9 UNINSTALL
TOSHIBA Fn-esse --> C:\WINDOWS\UnInst32.exe Fn-esse.UNI
TOSHIBA Hardware Setup --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1033
TOSHIBA Hotkey Utility --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{7900D3A6-A9E8-4954-ACCB-AB15867978BF} /l1033
TOSHIBA PC Diagnostic Tool --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\TOSHIBA\PCDiag\Uninst.isu"
TOSHIBA Power Saver --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A38D57D1-5F29-4691-B3DD-FE4B3A7B3AFE} /l1033
Toshiba Registration and Metamail Trust Architecture --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BE3F89C0-42D5-11D5-A40A-00105AC8331A}\Setup.exe" -l0x9
TOSHIBA SD Memory Card Format --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48CF9A66-5F03-4025-ABD0-B3A3FA095A59}\Setup.exe"
TOSHIBA Software Modem --> Tosmreg -U
TOSHIBA Software Upgrades --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{425A2BC2-AA64-4107-9C29-484245BBEA05}\setup.exe"
TOSHIBA Speech System Applications --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}\Setup.exe" -l0x9
TOSHIBA Speech System SR Engine(U.S.) Version1.0 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{008D69EB-70FF-46AB-9C75-924620DF191A}\Setup.exe" -l0x9 UNINSTALL
TOSHIBA Speech System TTS Engine(U.S.) Version1.0 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}\Setup.exe" -l0x9
TOSHIBA Supervisor Password --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1033
Toshiba Tbiosdrv Driver --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Toshiba\Toshiba Tbiosdrv Driver\Tbiosdrv.isu"
TOSHIBA Virtual Sound --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8B12BA86-ADAC-4BA6-B441-FFC591087252}\Setup.exe" /uninstall
TOSHIBA Zooming Utility --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{02EED746-8C5A-43C8-BB3D-D29C8B363A4D} /l1033
Touch and Launch --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5D96E2B1-D9AC-46E0-9073-425C5F63E338}\Setup.exe"
TouchPad On/Off Utility --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{80977342-27E8-4FF7-8B6A-D8D89461DA7F} /l1033
Viewpoint Media Player --> C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u
Wal-Mart Digital Photo Manager --> MsiExec.exe /X{41FE2866-7D7D-4EDF-9C7A-F1F6A346BA83}
Winamp (remove only) --> "C:\Program Files\Winamp\UninstWA.exe"
Windows Live Messenger --> MsiExec.exe /I{571700F0-DB9D-4B3A-B03D-35A14BB5939F}
Windows Live Sign-in Assistant --> MsiExec.exe /I{22B3CC30-77B8-419C-AA4B-F571FDF5D66D}
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
World Class Poker --> C:\Program Files\Masque\wcPoker\uninstall.exe "World Class Poker.ilg"
Yahoo! Browser Services --> C:\PROGRA~1\Yahoo!\Common\unyext.exe
Yahoo! Install Manager --> C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Internet Mail --> C:\WINDOWS\system32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\Common\ymmapi.dll
Yahoo! Messenger --> C:\PROGRA~1\Yahoo!\MESSEN~1\UNWISE.EXE /U C:\PROGRA~1\Yahoo!\MESSEN~1\INSTALL.LOG
Yahoo! Toolbar --> C:\PROGRA~1\Yahoo!\Common\unyt.exe


-- Application Event Log -------------------------------------------------------

Event Record #/Type193 / Error
Event Submitted/Written: 03/15/2004 08:49:23 PM
Event ID/Source: 8 / crypt32
Event Description:
Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.

Event Record #/Type192 / Error
Event Submitted/Written: 03/15/2004 08:49:08 PM
Event ID/Source: 11 / crypt32
Event Description:
Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Event Record #/Type191 / Error
Event Submitted/Written: 03/15/2004 08:47:58 PM
Event ID/Source: 8 / crypt32
Event Description:
Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.

Event Record #/Type190 / Error
Event Submitted/Written: 03/15/2004 08:47:43 PM
Event ID/Source: 11 / crypt32
Event Description:
Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.



-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.


-- System Event Log ------------------------------------------------------------

No Errors/Warnings found.


-- End of Deckard's System Scanner: finished at 2004-03-15 20:53:19 ------------

#3 sicatrix

sicatrix
  • Topic Starter

  • Members
  • 70 posts
  • OFFLINE
  •  
  • Local time:03:14 PM

Posted 29 May 2008 - 06:05 PM

any advice?

#4 kahdah

kahdah

  • Security Colleague
  • 11,138 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:03:14 PM

Posted 13 June 2008 - 07:56 PM

Hello sicatrix

Welcome to BleepingComputer :thumbsup:
========================
If you are still in need of assistance please post a new Dss log.
Please do not pm for help, post it in the forums instead.

If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications.

My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users