WinPFind3 logfile created on: 5/29/2007 7:07:00 AM
WinPFind3U by OldTimer - Version 1.0.38 Folder = C:\Documents and Settings\Richard\Desktop\WinPFind3u\
Microsoft Windows XP Service Pack 2 (Version = 5.1.2600)
Internet Explorer (Version = 6.0.2900.2180)
1023.00 Mb Total Physical Memory | 723.75 Mb Available Physical Memory | 70.75% Memory free
2.40 Gb Paging File | 2.15 Gb Available in Paging File | 89.51% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072;
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.72 Gb Total Space | 14.97 Gb Free Space | 13.40% Space Free
D: Drive not present or media not loaded
Drive E: | 344.71 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free
Drive F: | 604.45 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free
Computer Name: SHUGSXPS
Current User Name: Richard
Logged in as Administrator.
Current Boot Mode: Normal
[Processes - Non-Microsoft Only]
adservice.exe -> %ProgramFiles%\Iomega\AutoDisk\ADService.exe -> Iomega Corporation [Ver = 3, 2, 1, 5 | Size = 151552 bytes | Modified Date = 9/24/2002 5:39:48 PM | Attr = ]
adusermon.exe -> %ProgramFiles%\Iomega\AutoDisk\ADUserMon.exe -> Iomega Corporation [Ver = 3, 2, 1, 5 | Size = 147456 bytes | Modified Date = 9/24/2002 5:39:24 PM | Attr = ]
appservices.exe -> %ProgramFiles%\Iomega\System32\AppServices.exe -> Iomega Corporation [Ver = 2, 0, 2, 5 | Size = 73728 bytes | Modified Date = 9/4/2002 3:11:04 PM | Attr = ]
ati2evxx.exe -> %System32%\ati2evxx.exe -> ATI Technologies Inc. [Ver = 6.14.10.4142 | Size = 413696 bytes | Modified Date = 8/22/2006 8:45:14 PM | Attr = ]
ati2evxx.exe -> %System32%\ati2evxx.exe -> ATI Technologies Inc. [Ver = 6.14.10.4142 | Size = 413696 bytes | Modified Date = 8/22/2006 8:45:14 PM | Attr = ]
avgamsvr.exe -> %ProgramFiles%\Grisoft\AVG Free\avgamsvr.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.453 | Size = 353280 bytes | Modified Date = 4/21/2007 8:14:46 AM | Attr = ]
avgemc.exe -> %ProgramFiles%\Grisoft\AVG Free\avgemc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.460 | Size = 351744 bytes | Modified Date = 4/21/2007 8:14:48 AM | Attr = ]
avgupsvc.exe -> %ProgramFiles%\Grisoft\AVG Free\avgupsvc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.420 | Size = 49664 bytes | Modified Date = 4/3/2007 8:12:32 AM | Attr = ]
cli.exe -> %ProgramFiles%\ATI Technologies\ATI.ACE\CLI.exe -> ATI Technologies Inc. [Ver = 1.11.0.0 | Size = 45056 bytes | Modified Date = 1/2/2006 5:41:22 PM | Attr = ]
ctdvddet.exe -> %ProgramFiles%\Creative\SBAudigy2\DVDAudio\CTDVDDET.exe -> Creative Technology Ltd [Ver = 1.0.2.0 | Size = 45056 bytes | Modified Date = 9/30/2002 1:00:00 AM | Attr = ]
cthelper.exe -> %System32%\CTHELPER.EXE -> Creative Technology Ltd [Ver = 1, 0, 1, 2 | Size = 24576 bytes | Modified Date = 10/6/2003 2:57:32 PM | Attr = ]
ctsvccda.exe -> %System32%\CTSVCCDA.EXE -> Creative Technology Ltd [Ver = 1.0.1.0 | Size = 44032 bytes | Modified Date = 12/13/1999 1:01:00 AM | Attr = ]
ctsysvol.exe -> %ProgramFiles%\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe -> Creative Technology Ltd [Ver = 1.1.3.0 | Size = 49152 bytes | Modified Date = 10/29/2002 9:18:24 AM | Attr = ]
directcd.exe -> %ProgramFiles%\Roxio\Easy CD Creator 5\DirectCD\Directcd.exe -> Roxio [Ver = 5.3.4.21 | Size = 684032 bytes | Modified Date = 12/17/2002 12:28:00 PM | Attr = ]
dsentry.exe -> %System32%\DSentry.exe -> Dell - Advanced Desktop Engineering [Ver = 1, 0, 2, 0 | Size = 28672 bytes | Modified Date = 8/14/2002 6:22:52 PM | Attr = R ]
googletoolbarnotifier.exe -> %ProgramFiles%\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 1, 2, 1128, 5462 | Size = 171448 bytes | Modified Date = 2/15/2007 6:21:24 PM | Attr = ]
ventrilo_srv.exe -> %ProgramFiles%\VentSrv\ventrilo_srv.exe -> [Ver = | Size = 221184 bytes | Modified Date = 9/14/2005 11:46:42 AM | Attr = ]
ventrilo_svc.exe -> %ProgramFiles%\VentSrv\ventrilo_svc.exe -> [Ver = | Size = 65536 bytes | Modified Date = 7/13/2005 10:18:10 PM | Attr = ]
winpfind3u.exe -> %UserDesktop%\WinPFind3u\WinPFind3U.exe -> OldTimer Tools [Ver = 1.0.38.0 | Size = 318976 bytes | Modified Date = 5/22/2007 6:27:40 PM | Attr = ]
[Win32 Services - Non-Microsoft Only]
(Ati HotKey Poller) Ati HotKey Poller [Win32_Own | Auto | Running] -> %System32%\ati2evxx.exe -> ATI Technologies Inc. [Ver = 6.14.10.4142 | Size = 413696 bytes | Modified Date = 8/22/2006 8:45:14 PM | Attr = ]
(ATI Smart) ATI Smart [Win32_Own | Auto | Stopped] -> %System32%\ati2sgag.exe -> [Ver = 5.13.0025 | Size = 520192 bytes | Modified Date = 8/22/2006 9:05:00 PM | Attr = ]
(Autodesk Licensing Service) Autodesk Licensing Service [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\Autodesk Shared\Service\AdskScSrv.exe -> Autodesk [Ver = 2.70.000 | Size = 77944 bytes | Modified Date = 5/11/2007 8:56:44 PM | Attr = ]
(Avg7Alrt) AVG7 Alert Manager Server [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG Free\avgamsvr.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.453 | Size = 353280 bytes | Modified Date = 4/21/2007 8:14:46 AM | Attr = ]
(Avg7UpdSvc) AVG7 Update Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG Free\avgupsvc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.420 | Size = 49664 bytes | Modified Date = 4/3/2007 8:12:32 AM | Attr = ]
(AVGEMS) AVG E-mail Scanner [Win32_Own | Auto | Running] -> %ProgramFiles%\Grisoft\AVG Free\avgemc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.460 | Size = 351744 bytes | Modified Date = 4/21/2007 8:14:48 AM | Attr = ]
(Creative Service for CDROM Access) Creative Service for CDROM Access [Win32_Own | Auto | Running] -> %System32%\CTSVCCDA.EXE -> Creative Technology Ltd [Ver = 1.0.1.0 | Size = 44032 bytes | Modified Date = 12/13/1999 1:01:00 AM | Attr = ]
(dmadmin) Logical Disk Manager Administrative Service [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 224768 bytes | Modified Date = 8/4/2004 2:56:48 AM | Attr = ]
(DynDNS_Updater_Service) DynDNS Updater Service [Win32_Own | Auto | Stopped] -> %ProgramFiles%\DynDNS Updater\DynDNS.exe -> Kana Solution [Ver = 3.1.0.15 | Size = 1352704 bytes | Modified Date = 9/17/2006 11:32:16 AM | Attr = ]
(gusvc) Google Updater Service [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Google\Common\Google Updater\GoogleUpdaterService.exe -> Google [Ver = 2.0.734.29932.beta | Size = 138168 bytes | Modified Date = 2/15/2007 6:21:22 PM | Attr = ]
(Iomega Activity Disk2) Iomega Activity Disk2 [Win32_Own | Disabled | Stopped] -> -> File not found
(Iomega App Services) Iomega App Services [Win32_Own | Auto | Running] -> %ProgramFiles%\Iomega\System32\AppServices.exe -> Iomega Corporation [Ver = 2, 0, 2, 5 | Size = 73728 bytes | Modified Date = 9/4/2002 3:11:04 PM | Attr = ]
(NetSvc) Intel NCS NetService [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Intel\NCS\Sync\NetSvc.exe -> Intel(R) Corporation [Ver = 1.2.26.0 | Size = 143360 bytes | Modified Date = 3/3/2003 1:33:40 PM | Attr = ]
(Ventrilo) Ventrilo [Win32_Own | Auto | Running] -> %ProgramFiles%\VentSrv\ventrilo_svc.exe -> [Ver = | Size = 65536 bytes | Modified Date = 7/13/2005 10:18:10 PM | Attr = ]
(vsmon) TrueVector Internet Monitor [Win32_Own | Auto | Stopped] -> %System32%\ZoneLabs\vsmon.exe -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 75568 bytes | Modified Date = 3/9/2007 1:01:58 AM | Attr = ]
(_IOMEGA_ACTIVE_DISK_SERVICE_) Iomega Active Disk [Win32_Own | Auto | Running] -> %ProgramFiles%\Iomega\AutoDisk\ADService.exe -> Iomega Corporation [Ver = 3, 2, 1, 5 | Size = 151552 bytes | Modified Date = 9/24/2002 5:39:48 PM | Attr = ]
[Registry - Non-Microsoft Only]
< Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
AdaptecDirectCD -> %ProgramFiles%\Roxio\Easy CD Creator 5\DirectCD\Directcd.exe -> Roxio [Ver = 5.3.4.21 | Size = 684032 bytes | Modified Date = 12/17/2002 12:28:00 PM | Attr = ]
ADUserMon -> %ProgramFiles%\Iomega\AutoDisk\ADUserMon.exe -> Iomega Corporation [Ver = 3, 2, 1, 5 | Size = 147456 bytes | Modified Date = 9/24/2002 5:39:24 PM | Attr = ]
ATICCC -> %ProgramFiles%\ATI Technologies\ATI.ACE\CLIStart.exe -> [Ver = | Size = 90112 bytes | Modified Date = 5/10/2006 11:12:06 AM | Attr = ]
AVG7_CC -> %ProgramFiles%\Grisoft\AVG Free\avgcc.exe -> GRISOFT, s.r.o. [Ver = 7.5.0.460 | Size = 416256 bytes | Modified Date = 4/21/2007 8:14:46 AM | Attr = ]
CTDVDDet -> %ProgramFiles%\Creative\SBAudigy2\DVDAudio\CTDVDDET.exe -> Creative Technology Ltd [Ver = 1.0.2.0 | Size = 45056 bytes | Modified Date = 9/30/2002 1:00:00 AM | Attr = ]
CTHelper -> %System32%\CTHELPER.EXE -> Creative Technology Ltd [Ver = 1, 0, 1, 2 | Size = 24576 bytes | Modified Date = 10/6/2003 2:57:32 PM | Attr = ]
CTSysVol -> %ProgramFiles%\Creative\SBAudigy2\Surround Mixer\CTSysVol.exe -> Creative Technology Ltd [Ver = 1.1.3.0 | Size = 49152 bytes | Modified Date = 10/29/2002 9:18:24 AM | Attr = ]
DVDSentry -> %System32%\DSentry.exe -> Dell - Advanced Desktop Engineering [Ver = 1, 0, 2, 0 | Size = 28672 bytes | Modified Date = 8/14/2002 6:22:52 PM | Attr = R ]
Logitech Hardware Abstraction Layer -> %SystemRoot%\KHALMNPR.Exe -> Logitech Inc. [Ver = 2.30.314 | Size = 49152 bytes | Modified Date = 12/10/2004 1:45:26 PM | Attr = ]
PRONoMgr.exe -> %ProgramFiles%\Intel\NCS\PROSet\PRONoMgr.exe -> Intel(R) Corporation [Ver = 6.2.35.0 | Size = 86016 bytes | Modified Date = 3/11/2003 4:24:40 PM | Attr = ]
QuickTime Task -> %ProgramFiles%\QuickTime\qttask.exe -> Apple Computer, Inc. [Ver = 7.1.3 | Size = 282624 bytes | Modified Date = 9/1/2006 3:57:48 PM | Attr = ]
THGuard -> %ProgramFiles%\TrojanHunter 4.6\THGuard.exe -> Mischel Internet Security [Ver = 4.5.0.277 | Size = 1102848 bytes | Modified Date = 5/11/2007 8:01:48 PM | Attr = ]
UpdReg -> %SystemRoot%\Updreg.EXE -> Creative Technology Ltd. [Ver = 1.0.2 | Size = 90112 bytes | Modified Date = 5/11/2000 1:00:00 AM | Attr = ]
WinPatrol -> %ProgramFiles%\BillP Studios\WinPatrol\WinPatrol.exe -> BillP Studios [Ver = 7, 0, 0, 3 | Size = 192512 bytes | Modified Date = 3/10/2004 9:33:06 AM | Attr = ]
ZoneAlarm Client -> %ProgramFiles%\Zone Labs\ZoneAlarm\zlclient.exe -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 919280 bytes | Modified Date = 3/9/2007 1:02:00 AM | Attr = ]
< OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\
IMAIL -> Installed = 1 ->
MAPI -> Installed = 1 ->
MSFS -> Installed = 1 ->
< Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
igndlm.exe -> %ProgramFiles%\IGN\Download Manager\DLM.exe -> IGN Entertainment [Ver = 2.3.6.108 | Size = 1103480 bytes | Modified Date = 3/5/2007 4:57:48 PM | Attr = ]
SB Audigy 2 Startup Menu -> -> File not found
Steam -> -> File not found
swg -> %ProgramFiles%\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe -> Google Inc. [Ver = 1, 2, 1128, 5462 | Size = 171448 bytes | Modified Date = 2/15/2007 6:21:24 PM | Attr = ]
< Common Startup > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup
%AllUsersStartup%\Adobe Gamma Loader.lnk -> %CommonProgramFiles%\Adobe\Calibration\Adobe Gamma Loader.exe -> Adobe Systems, Inc. [Ver = 1, 0, 0, 1 | Size = 113664 bytes | Modified Date = 11/4/1999 3:06:48 PM | Attr = ]
%AllUsersStartup%\AutoCAD Startup Accelerator.lnk -> %CommonProgramFiles%\Autodesk Shared\acstart17.exe -> Autodesk, Inc [Ver = 17.0.54.0 | Size = 11000 bytes | Modified Date = 3/5/2006 7:43:54 AM | Attr = ]
%AllUsersStartup%\Logitech SetPoint.lnk -> %ProgramFiles%\Logitech\SetPoint\SetPoint.exe -> Logitech Inc. [Ver = 2.30.399 | Size = 434176 bytes | Modified Date = 1/28/2005 3:35:58 PM | Attr = ]
< SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders
< Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
< Winlogon settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
< Winlogon\Notify settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\
AtiExtEvent -> %System32%\ati2evxx.dll -> ATI Technologies Inc. [Ver = 6.14.10.4142 | Size = 86016 bytes | Modified Date = 8/22/2006 8:46:30 PM | Attr = ]
< CurrentVersion Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 ->
< CurrentVersion Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 145 ->
< HOSTS File > (734 bytes) -> C:\WINDOWS\System32\drivers\etc\Hosts
127.0.0.1 localhost -> ->
< Internet Explorer Settings > ->
HKLM: Main\\Default_Search_URL ->
http://www.google.com/ie ->
HKLM: Local Page -> C:\WINDOWS\System32\blank.htm ->
HKLM: Search Bar -> ->
HKLM: Search Page ->
http://www.google.com ->
HKLM: Start Page ->
http://www.shacknews.com/ ->
HKLM: CustomizeSearch ->
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm ->
HKLM: Search\\Default_Search_URL ->
http://www.google.com/ie ->
HKLM: SearchAssistant ->
http://www.google.com/ie ->
HKCU: Local Page -> C:\WINDOWS\System32\blank.htm ->
HKCU: Search Bar ->
http://www.google.com/ie ->
HKCU: Search Page ->
http://www.google.com ->
HKCU: Start Page ->
http://www.shacknews.com/ ->
HKCU: SearchAssistant ->
http://www.google.com/ie ->
HKCU: ProxyEnable -> 0 ->
< Trusted Sites > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
msn.com [ - ] -> ->
< BHO's > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [AcroIEHlprObj Class] -> Adobe Systems Incorporated [Ver = 6.0.0.2003051500 | Size = 50376 bytes | Modified Date = 5/15/2003 1:47:54 AM | Attr = ]
{AA58ED58-01DD-4d91-8333-CF10577473F7} [HKLM] -> %ProgramFiles%\Google\googletoolbar4.dll [Google Toolbar Helper] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2403392 bytes | Modified Date = 1/20/2007 12:55:32 AM | Attr = R ]
< Internet Explorer ToolBars [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar
{2318C2B1-4965-11d4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar4.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2403392 bytes | Modified Date = 1/20/2007 12:55:32 AM | Attr = R ]
< Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\
ShellBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar4.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2403392 bytes | Modified Date = 1/20/2007 12:55:32 AM | Attr = R ]
ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found
WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} [HKLM] -> %ProgramFiles%\Google\googletoolbar4.dll [&Google] -> Google Inc. [Ver = 4, 0, 1601, 4978 | Size = 2403392 bytes | Modified Date = 1/20/2007 12:55:32 AM | Attr = R ]
< User Agent Post Platform [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform
SV1 -> ->
< DNS Name Servers [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\
{603A8664-541F-42AE-9256-85B3F21CAA97} -> (Intel(R) PRO/100 VE Network Connection) ->
{FC0A7332-E5FA-4341-B553-2C6326C15DBE} -> (1394 Net Adapter) ->
< Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\
ipp -> Reg Data - Key not found -> File not found
msdaipp -> Reg Data - Key not found -> File not found
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\
{166B1BCA-3F9C-11CF-8075-444553540000} -> Shockwave ActiveX Control - CodeBase =
http://download.macromedia.com/pub/shoc ... tor/sw.cab ->
{17492023-C23A-453E-A040-C7C580BBF700} -> Windows Genuine Advantage Validation Tool - CodeBase =
http://go.microsoft.com/fwlink/?LinkID=39204 ->
{33564D57-0000-0010-8000-00AA00389B71} -> - CodeBase =
http://download.microsoft.com/download/ ... mv9VCM.CAB ->
{39B0684F-D7BF-4743-B050-FDC3F48F7E3B} -> CDownloadCtrl Object - CodeBase =
http://www.fileplanet.com/fpdlmgr/cabs/ ... .6.108.cab ->
{41F17733-B041-4099-A042-B518BB6A408C} -> - CodeBase =
http://a1540.g.akamai.net/7/1540/52/200 ... taller.exe ->
{6414512B-B978-451D-A0D8-FCFDF33E833C} -> WUWebControl Class - CodeBase =
http://update.microsoft.com/windowsupda ... 4563483987 ->
{68BCE50A-DC9B-4519-A118-6FDA19DB450D} -> Info Class - CodeBase =
http://www.blizzard.com/register/wowbeta/si.cab ->
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} -> MUWebControl Class - CodeBase =
http://update.microsoft.com/microsoftup ... 4565248968 ->
{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} -> GSDACtl Class - CodeBase =
http://launch.gamespyarcade.com/softwar ... launch.cab ->
{9F1C11AA-197B-4942-BA54-47A8489BB47F} -> - CodeBase =
http://v4.windowsupdate.microsoft.com/C ... 7472106482 ->
{D27CDB6E-0000-0000-0000-000000000000} -> - CodeBase =
http://download.macromedia.com/pub/shoc ... wflash.cab ->
{D27CDB6E-AE6D-11CF-96B8-444553540000} -> - CodeBase =
http://fpdownload.macromedia.com/get/fl ... wflash.cab ->
DirectAnimation Java Classes -> - CodeBase =
file://C:\WINDOWS\Java\classes\dajava.cab ->
Microsoft XML Parser for Java -> - CodeBase =
file://C:\WINDOWS\Java\classes\xmldso.cab ->
[Registry - Additional Scans - Non-Microsoft Only]
< Uninstall List > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\
{01501EBA-EC35-4F9F-8889-3BE346E5DA13} -> MSXML4 Parser ->
{0BEDBD4E-2D34-47B5-9973-57E62B29307C} -> ATI Control Panel ->
{11CAA479-DD6E-4BD8-92F6-C0F98FD6370C} -> Threewave 1.6 ->
{18D10072035C4515918F7E37EAFAACFC} -> AutoUpdate ->
{22C97984-6A68-4140-872E-B2F5123A7387} -> ATI Catalyst Control Center ->
{2318C2B1-4965-11d4-9B18-009027A5CD4F} -> Google Toolbar for Internet Explorer ->
{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3} -> Logitech SetPoint ->
{337FE904-145E-4975-8C76-ED26FC8E1C8B} -> OSP for Quake3 1.03 ->
{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227} -> WebFldrs XP ->
{412B69AF-C352-4F6F-A318-B92B3CB9ACC6} -> Titan Quest ->
{4B9F45E8-E3CE-40B4-9463-80A9B3481DEF} -> Banctec Service Agreement ->
{55FA89BD-21D3-42F7-9249-C94C0094A83C} -> Apple Software Update ->
{56F3E1FF-54FE-4384-A153-6CCABA097814} -> Creative MediaSource ->
{5783F2D7-5001-0409-0002-0060B0CE6BBA} -> AutoCAD 2007 - English ->
{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697} -> PlayNC Launcher ->
{609F7AC8-C510-11D4-A788-009027ABA5D0} -> Easy CD Creator 5 Basic ->
{62D77FB3-32E3-4D37-AB96-0941DE80C9CA} -> Magic The Gathering Online Tutorial ->
{63569CE9-FA00-469C-AF5C-E5D4D93ACF91} -> Windows Genuine Advantage v1.3.0254.0 ->
{6811CAA0-BF12-11D4-9EA1-0050BAE317E1} -> PowerDVD ->
{7131646D-CD3C-40F4-97B9-CD9E4E6262EF} -> Microsoft .NET Framework 2.0 ->
{716E0306-8318-4364-8B8F-0CC4E9376BAC} -> MSXML 4.0 SP2 Parser and SDK ->
{789289CA-F73A-4A16-A331-54D498CE069F} -> Ventrilo Client ->
{78CC3BAB-DE2A-4FB4-8FBB-E4DADDC26747} -> Ad-Aware SE Personal ->
{7B63B2922B174135AFC0E1377DD81EC2} -> DivX Codec ->
{85DD724B-15E5-4572-81BF-CF9031D83848} -> Ventrilo Server ->
{8795CBED-55E2-4693-9F14-84EC446935BE} -> SpeechRedist ->
{8A62C8DA-2DB7-4D94-B5BA-1D38FC36E830} -> Manhunt ->
{8ADFC4160D694100B5B8A22DE9DCABD9} -> DivX Player ->
{90D55A3F-1D99-4C94-A77E-46DC14F0BF08} -> Help and Support Customization ->
{911FE3B1-79E4-4CE8-825D-747B6D7D3370} -> Dungeon Runners ->
{98DF85D9-96C0-4F57-A92E-C3539477EF5E} -> DVDSentry ->
{A5CC2A09-E9D3-49EC-923D-03874BBD4C2C} -> Windows Defender Signatures ->
{A790BEB1-BCCF-4EC6-807B-5708B36E8A79} -> Intel(R) PROSet ->
{AC76BA86-7AD7-1033-7B44-000000000001} -> Adobe Reader 6.0 ->
{B5C5C17E-FEF6-4062-8151-A427AE8AF9D7} -> Titan Quest Immortal Throne ->
{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} -> Microsoft .NET Framework 1.1 ->
{D792A069-B96B-40BA-BCB4-E5651A6E5926} -> Far Cry (Patch 1) ->
{E82BF103-904F-49C0-B77F-6EC110B71E87} -> Sound Blaster Audigy 2 ->
{F07B861C-72B9-40A4-8B1A-AAED4C06A7E8} -> QuickTime ->
Active Disk -> Active Disk ->
Adobe Photoshop 7.0 -> Adobe Photoshop 7.0 ->
All ATI Software -> ATI - Software Uninstall Utility ->
Another World -> Another World 1.1 ->
ATI Display Driver -> ATI Display Driver ->
Autodesk DWF Viewer -> Autodesk DWF Viewer ->
AVG7Uninstall -> AVG Free Edition ->
Battle.net -> Battle.net ->
Bink and Smacker -> Bink and Smacker ->
BulletProof FTP -> BulletProof FTP ->
Download Manager -> Download Manager 2.3.6 ->
DynDNS Updater_is1 -> DynDNS Updater 3.1 ->
GameSpy Arcade -> GameSpy Arcade ->
HijackThis -> HijackThis 1.99.1 ->
IGN Download Manager -> IGN Download Manager 2.3.3 ->
IrfanView -> IrfanView (remove only) ->
KB873333 -> Windows XP Hotfix - KB873333 ->
KB873339 -> Windows XP Hotfix - KB873339 ->
KB885835 -> Windows XP Hotfix - KB885835 ->
KB885836 -> Windows XP Hotfix - KB885836 ->
KB888113 -> Windows XP Hotfix - KB888113 ->
KB888302 -> Windows XP Hotfix - KB888302 ->
KB890046 -> Security Update for Windows XP (KB890046) ->
KB890859 -> Windows XP Hotfix - KB890859 ->
KB891781 -> Windows XP Hotfix - KB891781 ->
KB893066 -> Security Update for Windows XP (KB893066) ->
KB893086 -> Windows XP Hotfix - KB893086 ->
KB893756 -> Security Update for Windows XP (KB893756) ->
KB893803v2 -> Windows Installer 3.1 (KB893803) ->
KB896358 -> Security Update for Windows XP (KB896358) ->
KB896422 -> Security Update for Windows XP (KB896422) ->
KB896423 -> Security Update for Windows XP (KB896423) ->
KB896428 -> Security Update for Windows XP (KB896428) ->
KB898458 -> Security Update for Step By Step Interactive Training (KB898458) ->
KB898461 -> Update for Windows XP (KB898461) ->
KB899587 -> Security Update for Windows XP (KB899587) ->
KB899588 -> Security Update for Windows XP (KB899588) ->
KB899591 -> Security Update for Windows XP (KB899591) ->
KB901214 -> Security Update for Windows XP (KB901214) ->
LiveReg -> LiveReg (Symantec Corporation) ->
Magic Online -> Magic Online ->
Microsoft .NET Framework 1.1 (1033) -> Microsoft .NET Framework 1.1 ->
Microsoft .NET Framework 2.0 -> Microsoft .NET Framework 2.0 ->
Miranda IM_is1 -> Miranda IM ->
mIRC -> mIRC ->
Mozilla Firefox (2.0.0.3) -> Mozilla Firefox (2.0.0.3) ->
MUSICMATCH Jukebox -> MUSICMATCH Jukebox ->
Outerinfo -> Outerinfo ->
PROSet -> Intel(R) PRO Network Adapters and Drivers ->
Proxy+ -> Proxy+ ->
Quake III Arena -> Quake III Arena ->
Quake III Arena Point Release 1.32 -> Quake III Arena Point Release 1.32 ->
Quake III Team Arena -> Quake III Team Arena ->
Shadow Warrior v1.2 -> Shadow Warrior v1.2 ->
Shockwave -> Shockwave ->
ShockwaveFlash -> Macromedia Flash Player 8 ->
Sierra Utilities -> Sierra Utilities ->
Spybot - Search & Destroy_is1 -> Spybot - Search & Destroy 1.4 ->
ST6UNST #1 -> Doomsday KickStart ->
Starcraft -> Starcraft ->
Steam -> Steam ->
Teamspeak 2 RC2_is1 -> TeamSpeak 2 RC2 ->
TeamSpeak 2 Server_is1 -> TeamSpeak 2 Server RC2 ->
TrojanHunter_is1 -> TrojanHunter 4.6 ->
UltraEdit-32 -> UltraEdit-32 Uninstall ->
UNOFFICIAL HD Pack for Steam -> MGZB: UNOFFICIAL HD Pack for Steam ->
Winamp -> Winamp (remove only) ->
Windows Media Format Runtime -> Windows Media Format Runtime ->
Windows Media Player -> Windows Media Player 10 ->
Windows XP Service Pack -> Windows XP Service Pack 2 ->
WinPatrol -> WinPatrol ->
WinRAR archiver -> WinRAR archiver ->
WinZip -> WinZip ->
World of Warcraft -> World of Warcraft ->
XLViewer97 -> Microsoft Excel Viewer 97 ->
ZoneAlarm -> ZoneAlarm ->
[Files/Folders - Created Within 60 days]
hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 1072762880 bytes | Created Date = 1/1/1601 6:00:00 AM | Attr = HS]
SDRIVE -> %SystemDrive%\SDRIVE -> [Folder | Created Date = 5/11/2007 4:46:41 PM | Attr = ]
Work -> %SystemDrive%\Work -> [Folder | Created Date = 5/18/2007 3:40:14 PM | Attr = ]
Internet Logs -> %SystemRoot%\Internet Logs -> [Folder | Created Date = 5/27/2007 3:51:07 PM | Attr = ]
mozver.dat -> %SystemRoot%\mozver.dat -> [Ver = | Size = 1156 bytes | Created Date = 5/16/2007 3:16:17 PM | Attr = ]
nsreg.dat -> %SystemRoot%\nsreg.dat -> [Ver = | Size = 0 bytes | Created Date = 5/16/2007 3:14:46 PM | Attr = ]
QTFont.for -> %SystemRoot%\QTFont.for -> [Ver = | Size = 1409 bytes | Created Date = 5/16/2007 2:00:40 PM | Attr = ]
QTFont.qfn -> %SystemRoot%\QTFont.qfn -> [Ver = | Size = 54156 bytes | Created Date = 5/16/2007 2:00:39 PM | Attr = H ]
retadpu11.exe -> %SystemRoot%\retadpu11.exe -> [Ver = 1, 0, 0, 2 | Size = 40960 bytes | Created Date = 5/27/2007 10:36:31 AM | Attr = ]
system32CmdLineExt.dll -> %System32%CmdLineExt.dll -> Sony DADC Austria AG. [Ver = 1,0,201,0 | Size = 98304 bytes | Created Date = 4/30/2007 4:15:27 PM | Attr = ]
zllsputility.exe -> %SystemRoot%\zllsputility.exe -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 75512 bytes | Created Date = 5/27/2007 3:52:30 PM | Attr = ]
CmdLineExt03.dll -> %System32%\CmdLineExt03.dll -> [Ver = | Size = 43520 bytes | Created Date = 5/22/2007 7:05:13 PM | Attr = ]
libeay32_0.9.6l.dll -> %System32%\libeay32_0.9.6l.dll -> [Ver = | Size = 796312 bytes | Created Date = 5/27/2007 3:52:13 PM | Attr = ]
pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.2.40.500 | Size = 129784 bytes | Created Date = 4/17/2007 7:39:00 AM | Attr = ]
pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.2.40.500 | Size = 1309432 bytes | Created Date = 4/17/2007 7:39:00 AM | Attr = ]
streamhlp.dll -> %System32%\streamhlp.dll -> [Ver = | Size = 59392 bytes | Created Date = 5/16/2007 11:33:49 AM | Attr = R ]
vsconfig.xml -> %System32%\vsconfig.xml -> [Ver = | Size = 49617 bytes | Created Date = 5/27/2007 3:51:59 PM | Attr = ]
vsdata.dll -> %System32%\vsdata.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 83696 bytes | Created Date = 5/27/2007 3:51:07 PM | Attr = ]
vsdatant.sys -> %System32%\vsdatant.sys -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 394192 bytes | Created Date = 5/27/2007 3:51:59 PM | Attr = ]
vsinit.dll -> %System32%\vsinit.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 157424 bytes | Created Date = 5/27/2007 3:51:07 PM | Attr = ]
vsmonapi.dll -> %System32%\vsmonapi.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 104176 bytes | Created Date = 5/27/2007 3:52:00 PM | Attr = ]
vspubapi.dll -> %System32%\vspubapi.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 276208 bytes | Created Date = 5/27/2007 3:52:01 PM | Attr = ]
vsregexp.dll -> %System32%\vsregexp.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 71408 bytes | Created Date = 5/27/2007 3:52:13 PM | Attr = ]
vsutil.dll -> %System32%\vsutil.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 472816 bytes | Created Date = 5/27/2007 3:51:07 PM | Attr = ]
vswmi.dll -> %System32%\vswmi.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 46832 bytes | Created Date = 5/27/2007 3:52:04 PM | Attr = ]
vsxml.dll -> %System32%\vsxml.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 100080 bytes | Created Date = 5/27/2007 3:52:02 PM | Attr = ]
zlcomm.dll -> %System32%\zlcomm.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 83696 bytes | Created Date = 5/27/2007 3:52:09 PM | Attr = ]
zlcommdb.dll -> %System32%\zlcommdb.dll -> Zone Labs, LLC [Ver = 7.0.337.000 | Size = 71408 bytes | Created Date = 5/27/2007 3:52:10 PM | Attr = ]
zllictbl.dat -> %System32%\zllictbl.dat -> [Ver = | Size = 4212 bytes | Created Date = 5/27/2007 3:52:41 PM | Attr = H ]
ZoneLabs -> %System32%\ZoneLabs -> [Folder | Created Date = 5/27/2007 3:52:01 PM | Attr = ]
zpeng24.dll -> %System32%\zpeng24.dll -> Python Software Foundation [Ver = 2.4.2 | Size = 1087216 bytes | Created Date = 5/27/2007 3:52:03 PM | Attr = ]
avgclean.sys -> %System32%\drivers\avgclean.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 3968 bytes | Created Date = 4/3/2007 7:13:29 AM | Attr = ]
[Files/Folders - Modified Within 60 days]
$VAULT$.AVG -> %SystemDrive%\$VAULT$.AVG -> [Folder | Modified Date = 5/28/2007 10:58:56 PM | Attr = RH ]
docs -> %SystemDrive%\docs -> [Folder | Modified Date = 4/12/2007 8:13:30 AM | Attr = ]
downloads -> %SystemDrive%\downloads -> [Folder | Modified Date = 5/26/2007 12:47:48 PM | Attr = ]
games -> %SystemDrive%\games -> [Folder | Modified Date = 5/22/2007 7:57:14 PM | Attr = ]
hiberfil.sys -> %SystemDrive%\hiberfil.sys -> [Ver = | Size = 1072762880 bytes | Modified Date = 5/27/2007 4:56:50 PM | Attr = HS]
ISOS -> %SystemDrive%\ISOS -> [Folder | Modified Date = 5/11/2007 5:56:44 PM | Attr = ]
mp3 -> %SystemDrive%\mp3 -> [Folder | Modified Date = 4/27/2007 5:08:10 PM | Attr = ]
Program Files -> %ProgramFiles% -> [Folder | Modified Date = 5/27/2007 4:52:02 PM | Attr = ]
SDRIVE -> %SystemDrive%\SDRIVE -> [Folder | Modified Date = 5/22/2007 7:56:36 PM | Attr = ]
WINDOWS -> %SystemRoot% -> [Folder | Modified Date = 5/28/2007 10:58:14 PM | Attr = ]
Work -> %SystemDrive%\Work -> [Folder | Modified Date = 5/20/2007 3:17:50 PM | Attr = ]
assembly -> %SystemRoot%\assembly -> [Folder | Modified Date = 5/11/2007 8:56:42 PM | Attr = R S]
BOOTSTAT.DAT -> %SystemRoot%\BOOTSTAT.DAT -> [Ver = | Size = 2048 bytes | Modified Date = 5/27/2007 4:56:58 PM | Attr = S]
CSC -> %SystemRoot%\CSC -> [Folder | Modified Date = 5/24/2007 4:55:08 PM | Attr = HS]
Downloaded Program Files -> %SystemRoot%\Downloaded Program Files -> [Folder | Modified Date = 5/16/2007 1:16:00 PM | Attr = S]
Fonts -> %SystemRoot%\Fonts -> [Folder | Modified Date = 5/11/2007 8:55:48 PM | Attr = R S]
Help -> %SystemRoot%\Help -> [Folder | Modified Date = 5/11/2007 8:55:08 PM | Attr = ]
INF -> %SystemRoot%\INF -> [Folder | Modified Date = 5/24/2007 4:55:38 PM | Attr = H ]
Installer -> %SystemRoot%\Installer -> [Folder | Modified Date = 5/22/2007 8:04:24 PM | Attr = HS]
Internet Logs -> %SystemRoot%\Internet Logs -> [Folder | Modified Date = 5/28/2007 10:46:04 PM | Attr = ]
mozver.dat -> %SystemRoot%\mozver.dat -> [Ver = | Size = 1156 bytes | Modified Date = 5/16/2007 4:16:20 PM | Attr = ]
nsreg.dat -> %SystemRoot%\nsreg.dat -> [Ver = | Size = 0 bytes | Modified Date = 5/16/2007 4:14:48 PM | Attr = ]
Prefetch -> %SystemRoot%\Prefetch -> [Folder | Modified Date = 5/29/2007 7:05:44 AM | Attr = ]
QTFont.for -> %SystemRoot%\QTFont.for -> [Ver = | Size = 1409 bytes | Modified Date = 5/16/2007 3:00:42 PM | Attr = ]
QTFont.qfn -> %SystemRoot%\QTFont.qfn -> [Ver = | Size = 54156 bytes | Modified Date = 5/16/2007 3:00:40 PM | Attr = H ]
retadpu11.exe -> %SystemRoot%\retadpu11.exe -> [Ver = 1, 0, 0, 2 | Size = 40960 bytes | Modified Date = 5/27/2007 11:36:34 AM | Attr = ]
SYSTEM32 -> %System32% -> [Folder | Modified Date = 5/27/2007 4:52:44 PM | Attr = ]
system32CmdLineExt.dll -> %System32%CmdLineExt.dll -> Sony DADC Austria AG. [Ver = 1,0,201,0 | Size = 98304 bytes | Modified Date = 4/30/2007 5:15:28 PM | Attr = ]
Temp -> %SystemRoot%\Temp -> [Folder | Modified Date = 5/28/2007 9:04:02 AM | Attr = ]
UEDIT32.INI -> %SystemRoot%\UEDIT32.INI -> [Ver = | Size = 10469 bytes | Modified Date = 5/26/2007 4:17:56 PM | Attr = ]
Winamp.ini -> %SystemRoot%\Winamp.ini -> [Ver = | Size = 192 bytes | Modified Date = 4/17/2007 8:37:48 AM | Attr = ]
WinSxS -> %SystemRoot%\WinSxS -> [Folder | Modified Date = 5/11/2007 8:55:56 PM | Attr = ]
{00000002-00000000-00000001-00001102-00000004-10031102}.CDF -> %SystemRoot%\{00000002-00000000-00000001-00001102-00000004-10031102}.CDF -> [Ver = | Size = 4932148 bytes | Modified Date = 5/27/2007 4:55:34 PM | Attr = ]
SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 5/27/2007 4:57:12 PM | Attr = H ]
Symantec NetDetect.job -> %SystemRoot%\tasks\Symantec NetDetect.job -> [Ver = | Size = 366 bytes | Modified Date = 5/29/2007 7:06:00 AM | Attr = ]
BMXBkpCtrlState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> %System32%\BMXBkpCtrlState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> [Ver = | Size = 30960 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
BMXCtrlState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> %System32%\BMXCtrlState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> [Ver = | Size = 30960 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
BMXState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> %System32%\BMXState-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> [Ver = | Size = 31856 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
BMXStateBkp-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> %System32%\BMXStateBkp-{00000002-00000000-00000001-00001102-00000004-10031102}.rfx -> [Ver = | Size = 31856 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
CatRoot2 -> %System32%\CatRoot2 -> [Folder | Modified Date = 5/24/2007 4:55:32 PM | Attr = ]
CmdLineExt03.dll -> %System32%\CmdLineExt03.dll -> [Ver = | Size = 43520 bytes | Modified Date = 5/22/2007 8:05:14 PM | Attr = ]
CONFIG -> %System32%\CONFIG -> [Folder | Modified Date = 5/27/2007 1:52:48 PM | Attr = ]
DirectX -> %System32%\DirectX -> [Folder | Modified Date = 5/11/2007 8:50:48 PM | Attr = ]
DRIVERS -> %System32%\DRIVERS -> [Folder | Modified Date = 4/27/2007 8:13:04 AM | Attr = ]
DVCState-{00000002-00000000-00000001-00001102-00000004-10031102}.dat -> %System32%\DVCState-{00000002-00000000-00000001-00001102-00000004-10031102}.dat -> [Ver = | Size = 384 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
DVCStateBkp-{00000002-00000000-00000001-00001102-00000004-10031102}.dat -> %System32%\DVCStateBkp-{00000002-00000000-00000001-00001102-00000004-10031102}.dat -> [Ver = | Size = 384 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
FNTCACHE.DAT -> %System32%\FNTCACHE.DAT -> [Ver = | Size = 185016 bytes | Modified Date = 5/24/2007 4:54:58 PM | Attr = ]
PERFC009.DAT -> %System32%\PERFC009.DAT -> [Ver = | Size = 62344 bytes | Modified Date = 4/3/2007 10:09:28 PM | Attr = ]
PERFH009.DAT -> %System32%\PERFH009.DAT -> [Ver = | Size = 401064 bytes | Modified Date = 4/3/2007 10:09:28 PM | Attr = ]
PerfStringBackup.INI -> %System32%\PerfStringBackup.INI -> [Ver = | Size = 471150 bytes | Modified Date = 4/3/2007 10:09:28 PM | Attr = ]
ReinstallBackups -> %System32%\ReinstallBackups -> [Folder | Modified Date = 5/16/2007 11:33:12 AM | Attr = ]
settings.sfm -> %System32%\settings.sfm -> [Ver = | Size = 1080 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
settingsbkup.sfm -> %System32%\settingsbkup.sfm -> [Ver = | Size = 1080 bytes | Modified Date = 5/27/2007 4:56:00 PM | Attr = ]
streamhlp.dll -> %System32%\streamhlp.dll -> [Ver = | Size = 59392 bytes | Modified Date = 5/16/2007 12:33:54 PM | Attr = R ]
vsconfig.xml -> %System32%\vsconfig.xml -> [Ver = | Size = 49617 bytes | Modified Date = 5/27/2007 4:57:08 PM | Attr = ]
zllictbl.dat -> %System32%\zllictbl.dat -> [Ver = | Size = 4212 bytes | Modified Date = 5/27/2007 4:54:46 PM | Attr = H ]
ZoneLabs -> %System32%\ZoneLabs -> [Folder | Modified Date = 5/27/2007 4:52:38 PM | Attr = ]
avg7core.sys -> %System32%\drivers\avg7core.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.467 | Size = 777984 bytes | Modified Date = 4/27/2007 8:12:44 AM | Attr = ]
avg7rsw.sys -> %System32%\drivers\avg7rsw.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,340 | Size = 4224 bytes | Modified Date = 4/3/2007 8:13:30 AM | Attr = ]
avg7rsxp.sys -> %System32%\drivers\avg7rsxp.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.442 | Size = 27776 bytes | Modified Date = 4/3/2007 8:13:30 AM | Attr = ]
avgclean.sys -> %System32%\drivers\avgclean.sys -> GRISOFT, s.r.o. [Ver = 1.0.0.14 | Size = 3968 bytes | Modified Date = 4/3/2007 8:13:30 AM | Attr = ]
avgtdi.sys -> %System32%\drivers\avgtdi.sys -> GRISOFT, s.r.o. [Ver = 7,0,0,346 | Size = 4960 bytes | Modified Date = 4/3/2007 8:12:38 AM | Attr = ]
ETC -> %System32%\drivers\ETC -> [Folder | Modified Date = 5/28/2007 9:43:58 AM | Attr = ]
[File String Scan - Non-Microsoft Only]
PEC2 , -> %SystemRoot%\Boyllyybj.kpy -> [Ver = | Size = 200923 bytes | Modified Date = 9/13/2004 10:19:56 PM | Attr = ]
PEC2 , -> %SystemRoot%\Euahsrsns.pek -> [Ver = | Size = 193869 bytes | Modified Date = 9/13/2004 10:19:56 PM | Attr = ]
PEC2 , -> %SystemRoot%\Pelpjnaxupm.gcg -> [Ver = | Size = 192875 bytes | Modified Date = 9/13/2004 10:19:54 PM | Attr = ]
UPX! , -> %SystemRoot%\retadpu11.exe -> [Ver = 1, 0, 0, 2 | Size = 40960 bytes | Modified Date = 5/27/2007 11:36:34 AM | Attr = ]
PEC2 , -> %SystemRoot%\Ugatqgumjxd.wiy -> [Ver = | Size = 184535 bytes | Modified Date = 9/13/2004 10:19:52 PM | Attr = ]
PEC2 , -> %System32%\DFRG.MSC -> [Ver = | Size = 41397 bytes | Modified Date = 8/29/2002 5:00:00 AM | Attr = ]
PEC2 , PECompact2 , -> %System32%\DivX.dll -> DivX, Inc. [Ver = 6.4.0.51 | Size = 635486 bytes | Modified Date = 10/2/2006 2:04:40 PM | Attr = ]
UPX! , UPX0 , -> %System32%\fmod.dll -> Firelight Technologies Pty, Ltd [Ver = 3.71 | Size = 154624 bytes | Modified Date = 11/17/2003 11:49:16 AM | Attr = ]
aspack , SAHAgent , -> %System32%\in10b6s.dll -> [Ver = 1, 0, 0, 1 | Size = 188416 bytes | Modified Date = 9/13/2004 10:19:44 PM | Attr = ]
UPX! , UPX0 , -> %System32%\msdjgk.dll -> [Ver = | Size = 86030 bytes | Modified Date = 8/22/2001 7:00:00 PM | Attr = ]
UPX! , UPX0 , -> %System32%\msiaih.dll -> [Ver = | Size = 170496 bytes | Modified Date = 8/22/2001 7:00:00 PM | Attr = ]
Thawte Consulting , -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.35a | Size = 63144 bytes | Modified Date = 8/24/2006 10:47:00 PM | Attr = ]
Thawte Consulting , -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.33a | Size = 67240 bytes | Modified Date = 8/24/2006 10:47:00 PM | Attr = ]
Thawte Consulting , -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.33a | Size = 62632 bytes | Modified Date = 8/24/2006 10:47:00 PM | Attr = ]
Thawte Consulting , -> %System32%\pxinsi64.exe -> Sonic Solutions [Ver = 3.00.33a | Size = 115880 bytes | Modified Date = 8/24/2006 10:47:00 PM | Attr = ]
winsync , -> %System32%\WBDBASE.DEU -> [Ver = | Size = 1309184 bytes | Modified Date = 8/29/2002 5:00:00 AM | Attr = ]
UPX! , FSG! , PEC2 , aspack , -> %System32%\drivers\avg7core.sys -> GRISOFT, s.r.o. [Ver = 7.5.0.467 | Size = 777984 bytes | Modified Date = 4/27/2007 8:12:44 AM | Attr = ]
PTech , -> %System32%\drivers\mtlstrm.sys -> Smart Link [Ver = 3.80.01MC15 | Size = 1309184 bytes | Modified Date = 8/4/2004 12:41:38 AM | Attr = ]
< End of report >