OTViewIt logfile created on: 2/21/2009 10:41:47 AM - Run
OTViewIt by OldTimer - Version 1.0.21.0 Folder = C:\Users\Stephan Atlee\Desktop
Windows Vista Ultimate Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.84 Gb Available Physical Memory | 92.11% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys;
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 145.65 Gb Total Space | 40.36 Gb Free Space | 27.71% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 298.08 Gb Total Space | 56.11 Gb Free Space | 18.82% Space Free | Partition Type: NTFS
Drive H: | 491.73 Mb Total Space | 476.44 Mb Free Space | 96.89% Space Free | Partition Type: FAT
I: Drive not present or media not loaded
Computer Name: STEPHANS5150
Current User Name: Stephan Atlee
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Whitelist: On
File Age = 30 Days
========== Processes ========== [2008/01/18 23:33:38 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
[2008/01/18 23:33:16 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
[2008/07/09 17:05:22 | 00,018,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe
[2008/06/03 03:33:18 | 00,684,032 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe
[2008/01/18 23:33:24 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe
[2008/06/03 03:33:18 | 00,684,032 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe
[2008/09/23 15:38:13 | 00,045,056 | ---- | M] (e-Trends) -- C:\Program Files\e-Trends\etservice.exe
[2008/11/05 13:16:44 | 00,025,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\OcHealthMon.exe
[2008/05/26 22:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
[2007/11/27 22:45:02 | 00,869,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe
[2008/01/18 23:33:42 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
[2008/11/05 13:18:04 | 01,132,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\winss.exe
[2008/01/18 23:33:40 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
[2008/01/18 23:33:34 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2008/01/18 23:33:40 | 00,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
[2008/01/18 23:33:34 | 00,169,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
[2008/11/05 13:18:30 | 00,064,880 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe
[2008/01/18 23:33:10 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
[2006/12/10 21:52:38 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
[2007/06/08 10:55:24 | 00,045,056 | ---- | M] (NetRatings, Inc.) -- C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
[2008/12/06 20:09:20 | 00,136,600 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
[2008/01/18 23:33:10 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
[2008/02/19 10:05:32 | 00,053,264 | ---- | M] (Microsoft(R) Corporation) -- C:\Program Files\Microsoft Money Plus\MNYCoreFiles\mnybbsvc.exe
[2009/02/15 13:29:26 | 00,160,592 | ---- | M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
[2006/06/22 14:15:48 | 00,462,848 | ---- | M] (Southwest Airlines) -- C:\Program Files\Southwest Airlines\Ding\Ding.exe
[2007/06/08 10:55:24 | 00,045,056 | ---- | M] (NetRatings, Inc.) -- C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
[2008/01/18 23:33:10 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
[2009/01/19 11:46:15 | 01,690,112 | ---- | M] (e-Trends) -- C:\Program Files\e-Trends\etrnd.exe
[2008/01/18 23:33:34 | 00,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
[2008/01/18 23:33:14 | 00,299,520 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieuser.exe
[2008/01/18 23:33:14 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
[2008/05/26 22:18:16 | 00,184,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchProtocolHost.exe
[2008/05/26 22:17:55 | 00,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchFilterHost.exe
[2009/02/17 15:10:18 | 00,422,912 | ---- | M] (OldTimer Tools) -- C:\Users\Stephan Atlee\Desktop\OTViewIt.exe
========== (O23) Win32 Services ========== [2008/06/03 03:33:18 | 00,684,032 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe -- (Ati External Event Utility [Auto | Running])
File not found -- -- (CertPropSvc [Unknown | Stopped])
[2008/07/27 11:03:13 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])
File not found -- -- (DcomLaunch [Unknown | Running])
[2008/01/18 23:33:08 | 02,091,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dfsr.exe -- (DFSR [On_Demand | Stopped])
[2008/01/18 23:34:08 | 00,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dps.dll -- (DPS [Unknown | Running])
[2008/09/23 15:38:13 | 00,045,056 | ---- | M] (e-Trends) -- C:\Program Files\e-Trends\etservice.exe -- (e-Trends [Auto | Running])
[2008/01/18 23:33:10 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehrecvr.exe -- (ehRecvr [On_Demand | Stopped])
[2006/11/02 05:34:14 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])
[2008/06/19 18:14:44 | 00,046,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])
[2008/12/01 10:59:52 | 00,033,752 | ---- | M] (NOS Microsystems Ltd.) -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe -- (getPlus(R) Helper [On_Demand | Stopped])
[2005/04/04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])
[2006/11/02 06:02:42 | 00,000,000 | ---D | M] -- C:\Windows\System32\Msdtc -- (MSDTC [Unknown | Stopped])
[2007/11/27 22:45:02 | 00,869,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe -- (msfwsvc [Auto | Running])
[2004/11/19 08:26:40 | 00,147,456 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe -- (NetSvc [On_Demand | Stopped])
[2008/06/19 18:14:31 | 00,132,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])
[2008/11/05 13:16:44 | 00,025,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\OcHealthMon.exe -- (OcHealthMon [Auto | Running])
[2007/08/24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])
[2008/07/09 17:05:22 | 00,018,704 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe -- (OneCareMP [Auto | Running])
[2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])
[2008/01/18 23:36:20 | 00,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SCardSvr.dll -- (SCardSvr [Unknown | Stopped])
File not found -- -- (Schedule [Unknown | Running])
File not found -- -- (SCPolicySvc [Unknown | Stopped])
[2008/01/18 23:33:24 | 02,623,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe -- (slsvc [Auto | Running])
[2006/11/02 02:45:46 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\snmptrap.exe -- (SNMPTRAP [On_Demand | Stopped])
[2008/01/18 23:33:34 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\UI0Detect.exe -- (UI0Detect [On_Demand | Stopped])
[2008/01/18 23:33:34 | 00,382,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vds.exe -- (vds [On_Demand | Stopped])
[2008/01/18 23:33:36 | 00,917,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbengine.exe -- (wbengine [On_Demand | Stopped])
File not found -- -- (WdiServiceHost [Unknown | Stopped])
File not found -- -- (WdiSystemHost [Unknown | Running])
[2008/11/05 13:18:04 | 01,132,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Windows OneCare Live\winss.exe -- (winss [Auto | Running])
[2008/01/18 23:33:40 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
[2008/05/26 22:18:43 | 00,439,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe -- (WSearch [Auto | Running])
========== Driver Services ========== [2006/11/02 02:51:38 | 00,420,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])
[2006/11/02 02:51:32 | 00,297,576 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])
[2006/11/02 02:50:35 | 00,098,408 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])
[2006/11/02 02:51:00 | 00,147,048 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])
[2006/11/02 02:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])
[2006/11/02 02:49:20 | 00,014,952 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\System32\drivers\aliide.sys -- (aliide [Disabled | Stopped])
[2006/11/02 02:49:59 | 00,054,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\AMDAGP.SYS -- (amdagp [On_Demand | Stopped])
[2006/11/02 02:49:26 | 00,015,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdide.sys -- (amdide [Disabled | Stopped])
[2006/11/02 01:30:18 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk7.sys -- (AmdK7 [Disabled | Stopped])
[2006/11/02 01:30:18 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8 [Disabled | Stopped])
[2006/11/02 02:50:09 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arc.sys -- (arc [Disabled | Stopped])
[2006/11/02 02:50:10 | 00,067,688 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])
[2001/08/17 10:52:00 | 00,026,496 | ---- | M] (Advanced System Products, Inc.) -- C:\Windows\System32\drivers\asc.sys -- (asc [Disabled | Stopped])
[2001/08/17 10:51:58 | 00,014,848 | ---- | M] (Advanced System Products, Inc.) -- C:\Windows\System32\drivers\asc3550.sys -- (asc3550 [Disabled | Stopped])
[2008/06/03 06:22:56 | 03,695,104 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag [On_Demand | Running])
[2008/01/18 21:28:28 | 00,069,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bowser.sys -- (bowser [On_Demand | Running])
[2006/11/02 01:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltLo.sys -- (BrFiltLo [On_Demand | Stopped])
[2006/11/02 01:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\System32\drivers\BrFiltUp.sys -- (BrFiltUp [On_Demand | Stopped])
[2006/11/02 01:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerId.sys -- (Brserid [Disabled | Stopped])
[2006/11/02 01:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrSerWdm.sys -- (BrSerWdm [Disabled | Stopped])
[2006/11/02 01:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbMdm.sys -- (BrUsbMdm [Disabled | Stopped])
[2006/11/02 01:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\drivers\BrUsbSer.sys -- (BrUsbSer [On_Demand | Stopped])
[2006/11/02 01:55:23 | 00,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM [Disabled | Stopped])
[2006/11/02 01:55:08 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\circlass.sys -- (circlass [Disabled | Stopped])
[2008/01/18 23:43:00 | 00,247,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clfs.sys -- (CLFS [Unknown | Running])
[2006/11/02 02:49:28 | 00,016,488 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\System32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])
[2006/11/02 02:49:43 | 00,022,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk [Boot | Running])
[2006/11/02 01:30:18 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\crusoe.sys -- (Crusoe [Disabled | Stopped])
[2008/01/18 21:28:58 | 00,350,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\csc.sys -- (CSC [System | Running])
[2001/08/17 10:52:16 | 00,179,584 | ---- | M] (Mylex Corporation) -- C:\Windows\System32\drivers\dac2w2k.sys -- (dac2w2k [Disabled | Stopped])
[2008/01/18 21:28:22 | 00,075,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dfsc.sys -- (DfsC [System | Running])
[2006/10/26 16:21:34 | 00,035,096 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLABMFSM.SYS -- (DLABMFSM [Auto | Running])
[2006/10/26 16:21:28 | 00,032,472 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLABOIOM.SYS -- (DLABOIOM [Auto | Running])
[2007/02/08 20:05:30 | 00,012,856 | ---- | M] (Roxio) -- C:\Windows\System32\drivers\DLACDBHM.SYS -- (DLACDBHM [System | Running])
[2006/10/26 16:22:02 | 00,009,400 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLADResM.SYS -- (DLADResM [Auto | Running])
[2006/10/26 16:21:24 | 00,104,536 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLAIFS_M.SYS -- (DLAIFS_M [Auto | Running])
[2006/10/26 16:21:30 | 00,026,296 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLAOPIOM.SYS -- (DLAOPIOM [Auto | Running])
[2006/10/26 16:21:26 | 00,014,520 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLAPoolM.SYS -- (DLAPoolM [Auto | Running])
[2007/02/08 20:05:30 | 00,028,120 | ---- | M] (Roxio) -- C:\Windows\System32\drivers\DLARTL_M.SYS -- (DLARTL_M [System | Running])
[2006/10/26 16:21:34 | 00,094,648 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLAUDFAM.SYS -- (DLAUDFAM [Auto | Running])
[2006/10/26 16:21:32 | 00,097,848 | ---- | M] (Roxio) -- C:\Windows\System32\DLA\DLAUDF_M.SYS -- (DLAUDF_M [Auto | Running])
[2008/01/18 21:49:14 | 00,131,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dot4.sys -- (Dot4 [On_Demand | Stopped])
[2008/01/18 21:49:10 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dot4Prt.sys -- (Dot4Print [On_Demand | Stopped])
[2008/01/18 21:49:12 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Dot4usb.sys -- (dot4usb [On_Demand | Stopped])
[2006/07/21 11:21:26 | 00,099,176 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\drivers\DRVMCDB.SYS -- (DRVMCDB [Boot | Running])
[2007/02/09 12:34:16 | 00,051,768 | ---- | M] (Roxio) -- C:\Windows\System32\drivers\DRVNDDM.SYS -- (DRVNDDM [Auto | Running])
[2008/08/01 18:01:23 | 00,625,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl [On_Demand | Running])
[2008/01/18 20:25:06 | 00,159,744 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\e100b325.sys -- (E100B [On_Demand | Running])
[2006/11/02 00:30:54 | 00,117,760 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])
[2008/01/18 23:42:12 | 00,143,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ecache.sys -- (Ecache [Boot | Running])
[2006/11/02 02:51:34 | 00,316,520 | ---- | M] (Emulex) -- C:\Windows\System32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])
[2008/01/18 21:28:02 | 00,136,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\exfat.sys -- (exfat [On_Demand | Stopped])
[2008/01/18 23:42:32 | 00,058,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo [Boot | Running])
[2008/01/18 21:30:24 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace [On_Demand | Stopped])
[2008/01/18 23:42:14 | 00,145,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fvevol.sys -- (fvevol [Boot | Running])
[2006/11/02 02:50:04 | 00,058,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\GAGP30KX.SYS -- (gagp30kx [On_Demand | Stopped])
[2006/11/02 00:36:49 | 00,235,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService [On_Demand | Running])
[2008/01/18 20:30:50 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus [On_Demand | Running])
[2006/11/02 01:55:22 | 00,029,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth [Disabled | Stopped])
[2006/11/02 01:55:01 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hidir.sys -- (HidIr [Disabled | Stopped])
[2006/11/02 02:50:10 | 00,037,480 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\System32\drivers\HpCISSs.sys -- (HpCISSs [Disabled | Stopped])
[2006/11/02 02:51:25 | 00,232,040 | ---- | M] (Intel Corporation) -- C:\Windows\System32\drivers\iaStorV.sys -- (iaStorV [Disabled | Stopped])
[2006/11/02 02:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\System32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])
[2006/11/02 01:42:03 | 00,065,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV [Disabled | Stopped])
[2008/01/18 23:42:36 | 00,181,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt [On_Demand | Running])
[2006/11/02 02:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])
[2006/11/02 02:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\System32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])
[2008/01/18 21:49:18 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid [System | Running])
[2008/01/18 21:55:04 | 00,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio [Auto | Running])
[2006/11/02 02:50:04 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])
[2006/11/02 02:50:05 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])
[2006/11/02 02:50:10 | 00,065,640 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])
[2008/01/18 21:30:38 | 00,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\luafv.sys -- (luafv [Auto | Running])
[2006/11/02 02:49:53 | 00,028,776 | ---- | M] (LSI Logic Corporation) -- C:\Windows\System32\drivers\megasas.sys -- (megasas [Disabled | Stopped])
[2008/01/18 21:52:20 | 00,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\monitor.sys -- (monitor [On_Demand | Running])
[2008/05/15 16:15:16 | 00,053,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter [On_Demand | Running])
[2006/11/02 02:50:16 | 00,078,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpio.sys -- (mpio [Disabled | Stopped])
[2008/01/18 21:54:48 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv [On_Demand | Running])
[2006/11/02 02:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\System32\drivers\Mraid35x.sys -- (Mraid35x [Disabled | Stopped])
[2008/08/26 18:05:41 | 00,212,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10 [On_Demand | Running])
[2008/01/18 21:28:38 | 00,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20 [On_Demand | Running])
[2006/11/02 02:49:44 | 00,023,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msahci.sys -- (msahci [Disabled | Stopped])
[2006/11/02 02:50:17 | 00,080,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msdsm.sys -- (msdsm [Disabled | Stopped])
[2007/11/27 22:45:00 | 00,091,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msfwdrv.sys -- (MSFWDrv [Auto | Running])
[2007/11/27 22:44:54 | 00,037,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msfwhlpr.sys -- (MSFWHLPR [System | Running])
[2008/01/18 23:41:16 | 00,016,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv [Boot | Running])
[2008/01/18 23:42:30 | 00,163,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC [On_Demand | Stopped])
[2008/05/19 19:07:31 | 00,148,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP [On_Demand | Stopped])
[2006/11/02 02:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\System32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])
[2008/06/27 14:58:44 | 00,014,336 | ---- | M] (The Nielsen Company) -- C:\Windows\System32\drivers\nnrnstdi.sys -- (nnrnstdi [System | Running])
[2008/01/18 21:55:52 | 00,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy [System | Running])
[2006/11/02 00:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\System32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])
[2006/11/02 02:50:24 | 00,088,680 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])
[2006/11/02 02:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])
[2006/11/02 02:50:40 | 00,106,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\NV_AGP.SYS -- (nv_agp [On_Demand | Stopped])
[2006/11/02 02:04:35 | 00,878,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAUTH [Auto | Running])
[2008/04/04 18:21:42 | 00,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pacer.sys -- (PSched [System | Running])
[2008/02/13 03:00:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:\Windows\System32\drivers\pxhelp20.sys -- (PxHelp20 [Boot | Running])
[2001/08/17 10:52:20 | 00,040,320 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql1080.sys -- (ql1080 [Disabled | Stopped])
[2001/08/17 10:52:20 | 00,045,312 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql12160.sys -- (ql12160 [Disabled | Stopped])
[2001/08/17 10:52:18 | 00,049,024 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql1280.sys -- (ql1280 [Disabled | Stopped])
[2006/11/02 02:51:45 | 00,900,712 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])
[2006/11/02 02:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\System32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])
[2008/01/18 21:56:08 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv [On_Demand | Stopped])
[2008/06/03 06:22:56 | 03,695,104 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\drivers\atikmdag.sys -- (R300 [On_Demand | Stopped])
[2008/01/18 21:56:44 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rassstp.sys -- (RasSstp [On_Demand | Running])
[2008/01/18 22:01:10 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPENCDD.sys -- (RDPENCDD [System | Running])
[2008/01/18 21:55:04 | 00,060,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr [Auto | Running])
[2006/11/02 02:50:16 | 00,076,392 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port [Disabled | Stopped])
[2006/11/01 23:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])
[2008/01/18 21:49:18 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse [Disabled | Stopped])
[2006/11/02 01:51:38 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffdisk.sys -- (sffdisk [Disabled | Stopped])
[2006/11/02 01:51:40 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_mmc.sys -- (sffp_mmc [On_Demand | Stopped])
[2006/11/02 01:51:40 | 00,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\sffp_sd.sys -- (sffp_sd [On_Demand | Stopped])
[2006/11/02 02:49:51 | 00,053,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\SISAGP.SYS -- (sisagp [On_Demand | Stopped])
[2006/11/02 02:50:10 | 00,038,504 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\System32\drivers\sisraid2.sys -- (SiSRaid2 [Disabled | Stopped])
[2006/11/02 02:50:16 | 00,071,784 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\System32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])
[2008/01/18 21:55:28 | 00,066,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\smb.sys -- (Smb [System | Running])
[2001/08/17 11:07:44 | 00,019,072 | ---- | M] (Adaptec, Inc.) -- C:\Windows\System32\drivers\sparrow.sys -- (Sparrow [Disabled | Stopped])
[2008/01/18 23:41:32 | 00,021,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\spldr.sys -- (spldr [Boot | Running])
[2008/01/18 21:29:16 | 00,144,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srv2.sys -- (srv2 [On_Demand | Running])
[2008/01/18 21:29:14 | 00,098,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet [On_Demand | Running])
[2005/11/16 18:36:00 | 01,047,816 | ---- | M] (SigmaTel, Inc.) -- C:\Windows\System32\drivers\sthda.sys -- (STHDA [On_Demand | Stopped])
[2006/11/02 02:14:19 | 00,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\serscan.sys -- (StillCam [On_Demand | Stopped])
[2001/08/17 11:07:34 | 00,016,256 | ---- | M] (Symbios Logic Inc.) -- C:\Windows\System32\drivers\symc810.sys -- (symc810 [Disabled | Stopped])
[2006/11/02 02:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])
[2006/11/02 02:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])
[2006/11/02 02:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\System32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])
[2008/01/18 21:56:08 | 00,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg [Auto | Running])
[2008/01/18 21:56:00 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tdx.sys -- (tdx [System | Running])
[2008/01/18 22:01:16 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tssecsrv.sys -- (tssecsrv [On_Demand | Stopped])
[2008/01/18 21:55:42 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\TUNMP.SYS -- (tunmp [On_Demand | Running])
[2008/01/18 21:55:52 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel [On_Demand | Running])
[2006/11/02 02:49:59 | 00,056,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\UAGP35.SYS -- (uagp35 [On_Demand | Stopped])
[2006/11/02 02:50:04 | 00,058,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ULIAGPKX.SYS -- (uliagpkx [On_Demand | Stopped])
[2006/11/02 02:51:25 | 00,235,112 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\System32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])
[2006/11/02 02:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])
[2006/11/02 02:50:45 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])
[2001/08/17 10:52:22 | 00,036,736 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\System32\drivers\ultra.sys -- (ultra [Disabled | Stopped])
[2008/01/18 21:53:42 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\umbus.sys -- (umbus [On_Demand | Running])
[2006/11/02 01:55:09 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir [Disabled | Stopped])
[2006/11/02 01:53:56 | 00,026,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vgapnp.sys -- (vga [On_Demand | Stopped])
[2006/11/02 01:30:19 | 00,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7 [Disabled | Stopped])
[2006/11/02 02:49:30 | 00,017,512 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\System32\drivers\viaide.sys -- (viaide [Disabled | Stopped])
[2008/01/18 23:42:20 | 00,052,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr [Boot | Running])
[2008/01/18 23:43:04 | 00,294,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx [Boot | Running])
[2006/11/02 02:50:41 | 00,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\System32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])
[2006/11/02 01:52:52 | 00,020,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen [Disabled | Stopped])
[2006/11/02 02:49:38 | 00,019,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wd.sys -- (Wd [Disabled | Stopped])
[2008/01/18 23:43:28 | 00,503,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000 [Boot | Running])
[2006/11/02 01:35:03 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi [Disabled | Stopped])
[2008/01/18 21:56:50 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl [Disabled | Stopped])
========== (R ) Internet Explorer ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://go.microsoft.com/fwlink/?LinkId=69157
"Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896
"Default_Secondary_Page_URL"=
"Extensions Off Page"=about:NoAdd-ons
"Local Page"=%SystemRoot%\system32\blank.htm
"Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896
"Security Risk Page"=about:SecurityRisk
"Start Page"=http://go.microsoft.com/fwlink/?LinkId=69157
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Search]
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"Default_Page_URL"=http://www.google.com/ig/dell?hl=en&client=dell-inc&channel=us
"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
"Start Page"=http://www.google.com/ig/dell?hl=en&client=dell-inc&channel=us
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com/ig/dell?hl=en&client=dell-inc&channel=us
"Local Page"=C:\Windows\system32\blank.htm
"Page_Transitions"=
"Search Page"=http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
"SearchMigratedDefaultName"=Google
"SearchMigratedDefaultURL"=http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
"Secondary Start Pages"=
"Start Page"=http://www.blingo.com/?src=hp
"StartPageCache"=
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Search]
"AutoSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/saautosearch.aspx
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL]
""=http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0
[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0
[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main]
[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0
[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main]
[HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)
[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main]
[HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Internet Explorer\Main]
"Default_Page_URL"=http://www.google.com/ig/dell?hl=en&client=dell-inc&channel=us
"Local Page"=C:\Windows\system32\blank.htm
"Page_Transitions"=
"Search Page"=http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
"SearchMigratedDefaultName"=Google
"SearchMigratedDefaultURL"=http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
"Secondary Start Pages"=
"Start Page"=http://www.blingo.com/?src=hp
"StartPageCache"=
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Internet Explorer\Search]
"AutoSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/saautosearch.aspx
"CustomizeSearch"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
"SearchAssistant"=http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\Software\Microsoft\Internet Explorer\SearchURL]
""=http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}" (HKLM) -- C:\Windows\System32\ieframe.dll (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings]
"ProxyEnable" = 0
========== (O1) Hosts File ========== HOSTS File = (761 bytes) - C:\Windows\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost
::1 localhost
========== (O2) BHO's ========== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\]
{02478D38-C3F9-4efb-9B51-7695ECA05670} (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (HKLM) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} (HKLM) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
{724d43a9-0d85-11d4-9908-00400523e39a} (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (HKLM) -- C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
{DBC80044-A445-435b-BC74-9C25C1C588A9} (HKLM) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
========== (O3) Toolbars ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{724d43a0-0d85-11d4-9908-00400523e39a}" (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{724D43A0-0D85-11D4-9908-00400523E39A}" (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{724D43A0-0D85-11D4-9908-00400523E39A}" (HKLM) -- C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- Reg Error: Key does not exist or could not be opened. File not found
========== (O4) Run Keys ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (Hewlett-Packard Co.)
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup (InstallShield Software Corporation)
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start (InstallShield Software Corporation)
"NielsenOnline"=C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe (NetRatings, Inc.)
"OneCareUI"="C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe" (Microsoft Corporation)
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
"Windows Defender"=%ProgramFiles%\Windows Defender\MSASCui.exe -hide (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup (InstallShield Software Corporation)
"MoneyBackgoundBanking"="C:\Program Files\Microsoft Money Plus\MNYCoreFiles\mnybbsvc.exe" (Microsoft(R) Corporation)
"RoboForm"="C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" (Siber Systems)
[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=%ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (Microsoft Corporation)
"WindowsWelcomeCenter"=rundll32.exe oobefldr.dll,ShowWelcomeCenter (Microsoft Corporation)
[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=%ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (Microsoft Corporation)
"WindowsWelcomeCenter"=rundll32.exe oobefldr.dll,ShowWelcomeCenter (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe (Microsoft Corporation)
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -startup (InstallShield Software Corporation)
"MoneyBackgoundBanking"="C:\Program Files\Microsoft Money Plus\MNYCoreFiles\mnybbsvc.exe" (Microsoft(R) Corporation)
"RoboForm"="C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" (Siber Systems)
========== (O6 & O7) Current Version Policies ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoCDBurning"=0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"ConsentPromptBehaviorAdmin"=2
"ConsentPromptBehaviorUser"=1
"EnableInstallerDetection"=1
"EnableLUA"=1
"EnableSecureUIAPaths"=1
"EnableVirtualization"=1
"PromptOnSecureDesktop"=1
"ValidateAdminCodeSignatures"=0
"dontdisplaylastusername"=0
"scforceoption"=0
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"FilterAdministratorToken"=0
"legalnoticecaption"=
"legalnoticetext"=
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats]
"CF_TEXT"=1
"CF_BITMAP"=2
"CF_OEMTEXT"=7
"CF_DIB"=8
"CF_PALETTE"=9
"CF_UNICODETEXT"=13
"CF_DIBV5"=17
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=145
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"DisableRegistryTools"=0
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun"=145
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"DisableRegistryTools"=0
========== (O8) IE Context Menu Extensions ========== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\]
Customize Menu: File not found
E&xport to Microsoft Excel: Reg Error: Value does not exist or could not be read. File not found
Fill Forms: File not found
Save Forms: File not found
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\Software\Microsoft\Internet Explorer\MenuExt\]
Customize Menu: File not found
E&xport to Microsoft Excel: Reg Error: Value does not exist or could not be read. File not found
Fill Forms: File not found
Save Forms: File not found
========== (O9) IE Extensions ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
{320AF880-6646-11D3-ABEE-C5DBF3571F46}: Button: Fill Forms -- File not found
{320AF880-6646-11D3-ABEE-C5DBF3571F46}: Menu: Fill Forms -- File not found
{320AF880-6646-11D3-ABEE-C5DBF3571F49}: Button: Save -- File not found
{320AF880-6646-11D3-ABEE-C5DBF3571F49}: Menu: Save Forms -- File not found
{92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Research -- %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [2006/10/26 20:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)
{e2e2dd38-d088-4134-82b7-f2ba38496583}: Menu: @xpsp3res.dll,-20001 -- %SystemRoot%\network diagnostic\xpnetdiag.exe [2006/07/06 01:49:52 | 00,557,568 | ---- | M] (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> [Reg Error: Value does not exist or could not be read.] -> File not found
CmdMapping\\{320AF880-6646-11D3-ABEE-C5DBF3571F46} [HKLM] -> [Fill Forms] -> File not found
CmdMapping\\{320AF880-6646-11D3-ABEE-C5DBF3571F49} [HKLM] -> [Save] -> File not found
CmdMapping\\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [Research] -> [2006/10/26 20:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Internet Explorer\Extensions\]
CmdMapping\\{08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> [Reg Error: Value does not exist or could not be read.] -> File not found
CmdMapping\\{320AF880-6646-11D3-ABEE-C5DBF3571F46} [HKLM] -> [Fill Forms] -> File not found
CmdMapping\\{320AF880-6646-11D3-ABEE-C5DBF3571F49} [HKLM] -> [Save] -> File not found
CmdMapping\\{92780B25-18CC-41C8-B9BE-3C9C571A8263} [HKLM] -> %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [Research] -> [2006/10/26 20:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation)
========== (O12) Internet Explorer Plugins ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\]
PluginsPage: "" =
http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s
PluginsPageFriendlyName: "" = Microsoft ActiveX Gallery
========== (O13) Default Prefixes ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://
========== (O15) Trusted Sites ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
1 domain(s) and sub-domain(s) not assigned to a zone.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
//@surf.mar@/: money in Local intranet
yoyogames.com\www: http in Computer
1 domain(s) and sub-domain(s) not assigned to a zone.
[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\]
//@surf.mar@/: money in Local intranet
yoyogames.com\www: http in Computer
1 domain(s) and sub-domain(s) not assigned to a zone.
========== (O16) DPF ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\]
{0CCA191D-13A6-4E29-B746-314DEE697D83}:
http://upload.facebook.com/controls/200 ... oader5.cab -- Facebook Photo Uploader 5 Control
{3334504D-9980-0010-8000-00AA00389B71}:
http://download.microsoft.com/download/ ... p43dmo.CAB -- Reg Error: Key does not exist or could not be opened.
{3860DD98-0549-4D50-AA72-5D17D200EE10}:
http://cdn.scan.onecare.live.com/resour ... cctrl2.cab -- Windows Live OneCare safety scanner control
{49312E18-AA92-4CC2-BB97-55DEA7BCADD6}:
http://support.dell.com/systemprofiler/SysProExe.CAB -- WMI Class
{4CCA4E6B-9259-11D9-AC6E-444553544200}:
http://h30155.www3.hp.com/ediags/dd/ins ... gr_v01.cab -- Reg Error: Key does not exist or could not be opened.
{6414512B-B978-451D-A0D8-FCFDF33E833C}:
http://www.update.microsoft.com/microso ... 0132367343 -- Reg Error: Key does not exist or could not be opened.
{70522FA2-4656-11D5-B0E9-0050DAC24E8F}:
http://cc.iwon.com/ct/pm3/iWonPMSetup_12_1,0,2,5.exe -- Reg Error: Key does not exist or could not be opened.
{8AD9C840-044E-11D1-B3E9-00805F499D93}:
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_11
{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}:
http://fpdownload.macromedia.com/get/fl ... rashim.cab -- Reg Error: Key does not exist or could not be opened.
{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_11
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}:
http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab -- Java Plug-in 1.6.0_11
{CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7}:
http://wwwimages.adobe.com/www.adobe.co ... nos/gp.cab -- get_atlcom Class
{D27CDB6E-AE6D-11CF-96B8-444553540000}:
http://fpdownload2.macromedia.com/get/s ... wflash.cab -- Shockwave Flash Object
========== (O17) DNS Name Servers ========== {9604A237-06B0-480E-8D7C-25E550563E2F} (Servers: | Description: Intel(R) PRO/100 VE Network Connection)
========== (O22) Shared Task Scheduler ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{E31004D1-A431-41B8-826F-E902F9D95C81}" (HKLM) = Windows DreamScene -- C:\Windows\System32\DreamScene.dll (Microsoft Corporation)
========== HKLM *SecurityProviders* ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders]
"SecurityProviders"=credssp.dll
>[2008/01/18 23:34:00 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll
========== LSA *Security Packages* ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"Security Packages"=kerberos,msv1_0,schannel,wdigest,tspkg,
>[2008/01/18 23:36:44 | 00,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSpkg.dll
========== Safeboot Options ========== "AlternateShell"=cmd.exe
========== CDRom AutoRun Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1
========== Autorun Files on Drives ========== AUTOEXEC.BAT [REM Dummy file for NTVDM | ]
[2006/09/18 14:43:36 | 00,000,024 | ---- | M] () -- C:\AUTOEXEC.BAT -- [ NTFS ]
========== Files/Folders - Created Within 30 Days ========== [1 C:\Users\Stephan Atlee\Desktop\*.tmp files]
[2009/02/21 10:37:41 | 17,310,208 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-21_103739.mbf
[2009/02/20 18:06:38 | 19,313,640 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-20_180636.mbf
[2009/02/17 20:36:26 | 00,000,162 | -H-- | C] () -- C:\Users\Stephan Atlee\Desktop\~$sta Rica Specialist Program.docx
[2009/02/17 20:36:24 | 00,117,436 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\Costa Rica Specialist Program.docx
[2009/02/17 15:10:15 | 00,422,912 | ---- | C] (OldTimer Tools) -- C:\Users\Stephan Atlee\Desktop\OTViewIt.exe
[2009/02/17 13:58:28 | 17,605,192 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-17_135826.mbf
[2009/02/16 22:33:07 | 00,023,586 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\livepreview.jpg
[2009/02/16 21:19:05 | 19,182,536 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-16_211853.mbf
[2009/02/15 04:02:37 | 00,000,552 | ---- | C] () -- C:\Windows\System32\DO_NOT_DELETE.backupSetID
[2009/02/11 18:47:02 | 16,097,496 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-11_184701.mbf
[2009/02/11 16:13:30 | 19,805,280 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-11_161328.mbf
[2009/02/11 14:58:42 | 00,018,344 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\Course 201.docx
[2009/02/11 08:16:27 | 03,580,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll
[2009/02/11 08:16:26 | 06,069,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll
[2009/02/11 08:16:25 | 01,166,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll
[2009/02/11 08:16:25 | 00,458,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2009/02/11 08:16:24 | 00,827,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll
[2009/02/11 08:16:24 | 00,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2009/02/11 08:16:23 | 00,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll
[2009/02/11 08:16:22 | 01,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2009/02/11 08:16:22 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2009/02/09 20:45:46 | 00,110,852 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\AA Master Card application.docx
[2009/02/09 20:09:06 | 00,041,724 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\Hawaii air.docx
[2009/02/09 20:03:41 | 16,007,360 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-09_200341.mbf
[2009/02/08 15:16:41 | 17,539,639 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-08_151640.mbf
[2009/02/08 11:47:17 | 00,000,834 | ---- | C] () -- C:\Users\Public\Desktop\Acrobat.com.lnk
[2009/02/08 11:45:03 | 00,001,847 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2009/02/08 11:43:16 | 00,000,000 | ---D | C] -- C:\Users\Stephan Atlee\Desktop\Adobe Reader 9 Installer
[2009/02/08 10:49:10 | 00,031,581 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\For the ultimate honeymoon escape.docx
[2009/02/07 21:33:28 | 00,001,834 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\HijackThis.lnk
[2009/02/07 21:33:27 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/02/07 21:25:36 | 15,921,320 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-07_212535.mbf
[2009/02/07 14:56:22 | 17,834,624 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-07_145621.mbf
[2009/02/07 09:05:05 | 00,182,962 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\Hawaii Condos.docx
[2009/02/07 06:39:36 | 00,000,000 | ---D | C] -- C:\OneCareSupportData
[2009/02/06 10:52:54 | 00,010,462 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\Fiji Test.docx
[2009/02/05 23:41:59 | 15,978,680 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_234158.mbf
[2009/02/05 21:33:25 | 15,978,680 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_213324.mbf
[2009/02/05 18:05:23 | 15,917,224 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_180522.mbf
[2009/02/05 11:42:33 | 19,510,296 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_114230.mbf
[2009/02/02 21:25:39 | 16,753,016 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-02_212538.mbf
[2009/02/02 20:59:56 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2009/02/02 20:49:10 | 17,498,664 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-02_204910.mbf
[2009/02/02 20:47:16 | 00,000,000 | ---D | C] -- C:\ProgramData\NOS
[2009/02/02 20:47:15 | 00,000,000 | ---D | C] -- C:\Program Files\NOS
[2009/02/01 19:26:27 | 00,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll
[2009/02/01 19:26:26 | 00,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2009/02/01 19:26:25 | 00,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe
[2009/02/01 19:26:25 | 00,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl
[2009/02/01 19:26:24 | 00,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll
[2009/02/01 19:26:24 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll
[2009/02/01 19:26:21 | 00,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll
[2009/02/01 19:26:17 | 00,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe
[2009/02/01 19:16:40 | 00,096,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dfshim.dll
[2009/02/01 19:16:37 | 00,282,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscoree.dll
[2009/02/01 19:16:30 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2009/02/01 19:16:11 | 00,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2009/02/01 19:16:01 | 00,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2009/02/01 19:09:22 | 18,920,328 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-01_190904.mbf
[2009/01/31 09:37:17 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/01/30 18:14:52 | 00,000,000 | ---D | C] -- C:\Program Files\Photosynth
[2009/01/28 20:33:34 | 00,010,376 | ---- | C] () -- C:\Users\Stephan Atlee\Desktop\Stephan's employment letter.docx
[2009/01/27 20:58:08 | 16,331,024 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-27_205806.mbf
[2009/01/27 20:26:38 | 18,686,800 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-27_202635.mbf
[2009/01/26 14:49:01 | 15,966,392 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-26_144859.mbf
[2009/01/26 12:19:27 | 15,896,744 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-26_121926.mbf
[2009/01/26 11:55:11 | 18,178,767 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-26_115510.mbf
[2009/01/25 13:17:04 | 15,995,072 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-25_131703.mbf
[2009/01/24 17:06:36 | 17,457,696 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-24_170634.mbf
[2009/01/23 20:23:50 | 18,129,608 | R--- | C] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-23_202349.mbf
========== Files - Modified Within 30 Days ========== [7 C:\Windows\System32\*.tmp files]
[1 C:\Users\Stephan Atlee\Desktop\*.tmp files]
[2009/02/21 10:40:00 | 00,000,416 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{1CF9987C-2533-43C0-9AA0-46F8EB7A7138}.job
[2009/02/21 10:37:46 | 15,994,880 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\MyMoneyRepairMarch21.mny
[2009/02/21 10:37:41 | 17,310,208 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-21_103739.mbf
[2009/02/21 10:21:31 | 00,000,434 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{6CED2F3C-E78F-45C4-AD8B-F9B3CC8CF41F}.job
[2009/02/21 10:12:32 | 00,002,464 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009/02/21 10:12:32 | 00,002,464 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009/02/21 10:12:26 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009/02/21 10:12:23 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009/02/21 10:12:17 | 32,171,99104 | -HS- | M] () -- C:\hiberfil.sys
[2009/02/21 00:20:20 | 04,470,017 | -H-- | M] () -- C:\Users\Stephan Atlee\AppData\Local\IconCache.db
[2009/02/20 18:06:38 | 19,313,640 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-20_180636.mbf
[2009/02/18 20:18:03 | 00,002,685 | ---- | M] () -- C:\Users\Public\Documents\Global.sw2
[2009/02/17 20:36:26 | 00,117,436 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\Costa Rica Specialist Program.docx
[2009/02/17 20:36:26 | 00,000,162 | -H-- | M] () -- C:\Users\Stephan Atlee\Desktop\~$sta Rica Specialist Program.docx
[2009/02/17 15:10:18 | 00,422,912 | ---- | M] (OldTimer Tools) -- C:\Users\Stephan Atlee\Desktop\OTViewIt.exe
[2009/02/17 13:58:28 | 17,605,192 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-17_135826.mbf
[2009/02/17 11:35:13 | 00,012,441 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\Change of agency info completed.docx
[2009/02/16 22:31:04 | 00,023,586 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\livepreview.jpg
[2009/02/16 21:19:05 | 19,182,536 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-16_211853.mbf
[2009/02/15 04:02:37 | 00,000,552 | ---- | M] () -- C:\Windows\System32\DO_NOT_DELETE.backupSetID
[2009/02/11 18:47:02 | 16,097,496 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-11_184701.mbf
[2009/02/11 16:13:30 | 19,805,280 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-11_161328.mbf
[2009/02/11 15:13:28 | 00,000,638 | ---- | M] () -- C:\Windows\win.ini
[2009/02/11 14:58:44 | 00,018,344 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\Course 201.docx
[2009/02/09 20:45:47 | 00,110,852 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\AA Master Card application.docx
[2009/02/09 20:09:10 | 00,041,724 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\Hawaii air.docx
[2009/02/09 20:03:41 | 16,007,360 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-09_200341.mbf
[2009/02/09 13:34:31 | 00,722,128 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/02/09 13:34:31 | 00,616,210 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/02/09 13:34:31 | 00,110,314 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/02/09 06:20:24 | 00,114,424 | ---- | M] () -- C:\Users\Stephan Atlee\AppData\Local\GDIPFONTCACHEV1.DAT
[2009/02/08 23:06:23 | 00,399,840 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/02/08 15:16:41 | 17,539,639 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-08_151640.mbf
[2009/02/08 11:47:17 | 00,000,834 | ---- | M] () -- C:\Users\Public\Desktop\Acrobat.com.lnk
[2009/02/08 11:45:03 | 00,001,847 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2009/02/08 11:38:52 | 00,010,462 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\Fiji Test.docx
[2009/02/08 11:29:35 | 00,031,581 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\For the ultimate honeymoon escape.docx
[2009/02/07 21:35:12 | 00,001,834 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\HijackThis.lnk
[2009/02/07 21:25:36 | 15,921,320 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-07_212535.mbf
[2009/02/07 14:56:22 | 17,834,624 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-07_145621.mbf
[2009/02/07 09:05:06 | 00,182,962 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\Hawaii Condos.docx
[2009/02/05 23:41:59 | 15,978,680 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_234158.mbf
[2009/02/05 21:33:25 | 15,978,680 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_213324.mbf
[2009/02/05 18:05:23 | 15,917,224 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_180522.mbf
[2009/02/05 11:42:33 | 19,510,296 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-05_114230.mbf
[2009/02/03 16:21:12 | 21,244,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mrt.exe
[2009/02/02 21:25:39 | 16,753,016 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-02_212538.mbf
[2009/02/02 20:49:10 | 17,498,664 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-02_204910.mbf
[2009/02/01 19:09:22 | 18,920,328 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-02-01_190904.mbf
[2009/01/28 20:33:36 | 00,010,376 | ---- | M] () -- C:\Users\Stephan Atlee\Desktop\Stephan's employment letter.docx
[2009/01/27 20:58:08 | 16,331,024 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-27_205806.mbf
[2009/01/27 20:26:38 | 18,686,800 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-27_202635.mbf
[2009/01/26 14:49:01 | 15,966,392 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-26_144859.mbf
[2009/01/26 12:19:27 | 15,896,744 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-26_121926.mbf
[2009/01/26 11:55:11 | 18,178,767 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-26_115510.mbf
[2009/01/25 13:17:04 | 15,995,072 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-25_131703.mbf
[2009/01/24 17:06:36 | 17,457,696 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-24_170634.mbf
[2009/01/23 20:23:51 | 18,129,608 | R--- | M] () -- C:\Users\Stephan Atlee\Documents\My Documents Backup_2009-01-23_202349.mbf
< End of report >
OTViewIt Extras logfile created on: 2/21/2009 10:41:47 AM - Run
OTViewIt by OldTimer - Version 1.0.21.0 Folder = C:\Users\Stephan Atlee\Desktop
Windows Vista Ultimate Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.84 Gb Available Physical Memory | 92.11% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys;
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 145.65 Gb Total Space | 40.36 Gb Free Space | 27.71% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 298.08 Gb Total Space | 56.11 Gb Free Space | 18.82% Space Free | Partition Type: NTFS
Drive H: | 491.73 Mb Total Space | 476.44 Mb Free Space | 96.89% Space Free | Partition Type: FAT
I: Drive not present or media not loaded
Computer Name: STEPHANS5150
Current User Name: Stephan Atlee
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Whitelist: On
File Age = 30 Days
========== File Associations ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
========== Security Center Settings ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval"=1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride"=0
"AntiSpywareOverride"=0
"FirewallOverride"=0
"VistaSp1"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
"DisableNotifications"=0
"EnableFirewall"=0
"DoNotAllowExceptions"=0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\IcmpSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging]
========== Authorized Applications List ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[2006/07/06 01:49:52 | 00,557,568 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
File not found -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
File not found -- C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL
File not found -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
File not found -- C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
[2006/07/06 01:49:52 | 00,557,568 | ---- | M] (Microsoft Corporation) -- %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
File not found -- %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
File not found -- C:\Users\Stephan Atlee\Local Settings\Temp\~os21.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- C:\Users\Stephan Atlee\Local Settings\Temp\~os25.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- C:\Users\Stephan Atlee\Local Settings\Temp\~os2D.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- C:\Users\Stephan Atlee\Local Settings\Temp\~os30.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- C:\Users\Stephan Atlee\Local Settings\Temp\~os5E.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- C:\Users\Stephan Atlee\Local Settings\Temp\~osB.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- C:\Users\Stephan Atlee\Local Settings\Temp\~osC2.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL
File not found -- C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
File not found -- C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
File not found -- C:\Program Files\Grisoft\AVG Free\avgamsvr.exe:*:Enabled:avgamsvr.exe
File not found -- C:\Program Files\Grisoft\AVG Free\avgcc.exe:*:Enabled:avgcc.exe
File not found -- C:\Program Files\Grisoft\AVG Free\avginet.exe:*:Enabled:avginet.exe
[2006/12/10 23:29:24 | 00,108,120 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:HP All-in-One Launcher Utility
[2007/01/02 17:27:38 | 01,138,688 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:HP CUE-Scanning Flow Component
[2007/01/02 17:27:40 | 00,221,184 | ---- | M] () -- C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw
[2007/01/02 21:40:10 | 00,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:HP Digital Imaging Monitor
[2007/01/02 22:46:54 | 00,472,664 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:HP Fax Setup Wizard
[2008/03/06 11:40:06 | 00,689,456 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\HPWUCli.exe:*:Enabled:HP Software Update Client
[2008/01/18 23:33:14 | 00,625,664 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\IEXPLORE.EXE:*:Enabled:Internet Explorer
[2008/05/21 04:37:24 | 12,844,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook
File not found -- C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer
File not found -- C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype
File not found -- C:\temp\HP_WebRelease\Setup\HPZnet01.exe:*:Enabled:Install Consumer Experience Network Plug in
File not found -- C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test
File not found -- c:\windows\system32\etrnd.exe:*:Enabled:etrnd.exe
[2006/11/02 02:45:37 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe:*:Enabled:Run a DLL as an App
File not found -- C:\WINDOWS\Temp\~os30.tmp\ossproxy.exe:*:Enabled:ossproxy.exe
File not found -- D:\Setup\HPZnet01.exe:*:Enabled:Install Consumer Experience Network Plug in
========== (O10) Winsock2 Catalogs ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\]
NameSpace_Catalog5\Catalog_Entries\000000000001 [@%SystemRoot%\system32\nlasvc.dll,-1000] -- C:\Windows\System32\nlaapi.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000002 [@%SystemRoot%\system32\napinsp.dll,-1000] -- C:\Windows\System32\NapiNSP.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000003 [@%SystemRoot%\system32\pnrpnsp.dll,-1000] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
NameSpace_Catalog5\Catalog_Entries\000000000004 [@%SystemRoot%\system32\pnrpnsp.dll,-1001] -- C:\Windows\System32\pnrpnsp.dll (Microsoft Corporation)
========== HKEY_LOCAL_MACHINE Protocol Defaults ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults - Default Protocols
ldap -- 4 = Restricted sites (Not a Default Protocol)
news -- 4 = Restricted sites (Not a Default Protocol)
nntp -- 4 = Restricted sites (Not a Default Protocol)
oecmd -- 4 = Restricted sites (Not a Default Protocol)
snews -- 4 = Restricted sites (Not a Default Protocol)
========== HKEY_USERS Protocol Defaults ==========[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults] - Default Protocols
@ivt -- @ivt protocol not assigned
file -- file protocol not assigned
ftp -- ftp protocol not assigned
http -- http protocol not assigned
https -- https protocol not assigned
shell -- shell protocol not assigned
========== HKEY_USERS Protocol Defaults ==========[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProtocolDefaults] - Default Protocols
@ivt -- @ivt protocol not assigned
file -- file protocol not assigned
ftp -- ftp protocol not assigned
http -- http protocol not assigned
https -- https protocol not assigned
shell -- shell protocol not assigned
========== (O18) Protocol Handlers ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
ipp: [HKLM - No CLSID value]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] - Protocol Handlers
[2007/08/28 23:55:14 | 01,014,128 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL ipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
msdaipp: [HKLM - No CLSID value]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] - Protocol Handlers
[2007/08/28 23:55:14 | 01,014,128 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\0x00000001:{E1D2BF42-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAMON.BINDER]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\] - Protocol Handlers
[2007/08/28 23:55:14 | 01,014,128 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL msdaipp\oledb:{E1D2BF40-A96B-11d1-9C6B-0000F875AC61} (HKLM) [HKLM - MSDAIPP.BINDER]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]
[2006/10/26 13:45:02 | 00,873,216 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (ms-help:{314111c7-a502-11d2-bbca-00c04f8ec294} (HKLM) [HxProtocol Class])
========== (O18) Protocol Filters ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\] - Protocol Filters
[2006/10/26 21:41:48 | 00,044,344 | ---- | M] (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL text/xml:{807563E5-5146-11D5-A672-00B0D022E945} (HKLM) [Microsoft Office InfoPath XML Mime Filter]
========== HKEY_LOCAL_MACHINE Uninstall List ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}"=Adobe AIR
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}"=MSXML4 Parser
"{0456ebd7-5f67-4ab6-852e-63781e3f389c}"=Macromedia Flash Player
"{09D4F215-8960-4E0E-A2CC-C5A062113503}"=Crazy Machines
"{0A55CDBB-0566-4AA2-A15B-24C7F27C6FF4}"=BPD_Scan
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}"=ATI Control Panel
"{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}"=Microsoft Plus! Photo Story 2 LE
"{0F756CD9-4A1E-409B-B101-601DDC4C03AA}"=Qualxserve Service Agreement
"{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}"=Roxio DLA
"{1746EA69-DCB6-4408-B5A5-E75F55439CDF}"=Scan
"{179C56A4-F57F-4561-8BBF-F911D26EB435}"=WebReg
"{1aebcc44-7a6c-43b9-ae5a-a6ee651d67ce}"=e-Trends
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}"=QuickTime
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}"=Java(TM) 6 Update 11
"{3248F0A8-6813-11D6-A77B-00B0D0150100}"=J2SE Runtime Environment 5.0 Update 10
"{3248F0A8-6813-11D6-A77B-00B0D0160010}"=Java(TM) SE Runtime Environment 6 Update 1
"{33BB4982-DC52-4886-A03B-F4C5C80BEE89}"=Windows Media Player 10
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}"=WebFldrs XP
"{366E24C6-9097-4F63-BF42-3F3EF356A960}"=Photosynth 2.0.1519.16
"{3851147E-5A91-4469-BA4D-13FFFCC8A920}"=Microsoft Windows OneCare Live v2.5.2900.20 Idcrl Install
"{4667B940-BB01-428B-986E-A0CC46497BF7}"=ELIcon
"{49F2B650-2D7B-4F59-B33D-346F63776BD3}"=DocProc
"{4FB600F5-C478-4DF7-A2BC-57D3807BAC91}"=BPDSoftware_Ini
"{4FC19392-E4A5-4CCB-B45A-AB7E8126D3C9}"=Microsoft Easy Assist
"{5104B07C-6A3D-4E7E-8BBB-960B52554BDD}"=BPD_HPSU
"{5421155F-B033-49DB-9B33-8F80F233D4D5}"=GdiplusUpgrade
"{5660022E-F3F2-4126-8CC5-9726C47150EB}"=Microsoft Windows Live OneCare Resources v2.5.2900.20
"{5905F42D-3F5F-4916-ADA6-94A3646AEE76}"=Dell Driver Reset Tool
"{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}"=Sonic Activation Module
"{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C}"=AOLIcon
"{6513E869-647F-40FD-A55D-CFC92579B9BA}"=PX Engine
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}"=eSupportQFolder
"{67D3F1A0-A1F2-49b7-B9EE-011277B170CD}"=HPProductAssistant
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}"=Apple Software Update
"{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}"=Microsoft Plus! Digital Media Edition Installer
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}"=CustomerResearchQFolder
"{7148F0A8-6813-11D6-A77B-00B0D0142030}"=Java 2 Runtime Environment, SE v1.4.2_03
"{7299052b-02a4-4627-81f2-1818da5d550d}"=Microsoft Visual C++ 2005 Redistributable
"{74F7662C-B1DB-489E-A8AC-07A06B24978B}"=Dell System Restore
"{77DCDCE3-2DED-62F3-8154-05E745472D07}"=Acrobat.com
"{7A7DC702-DEDE-42A8-8722-B3BA724D546F}"=Fax
"{7F1B3341-A94E-4F5C-B587-CA0EB964221E}"=Microsoft Money Shared Libraries
"{83F793B5-8BBF-42FD-A8A6-868CB3E2AAEA}"=Intel(R) PROSet for Wired Connections
"{84031A18-BA9A-4156-A74F-E05B52DDFCE2}"=DING!
"{868EA922-5675-4E91-BDA6-BBD0F923C5EF}"=HP Officejet Pro All-In-One Series
"{87E2B986-07E8-477a-93DC-AF0B6758B192}"=DocProcQFolder
"{8868D822-2CBA-46B2-A286-B400B6185769}"=7500_7600_7700_Help
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}"=Microsoft Silverlight
"{8B21B9EF-6DBF-4F63-8CC7-9F6A56D1EE8E}"=GTOneCare
"{8F968232-15C6-4872-84C2-9FCDAA1AEAB6}"=MPM
"{90120000-0010-0409-0000-0000000FF1CE}"=Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}"=Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-0409-0000-0000000FF1CE}"=Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-0409-0000-0000000FF1CE}"=Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-0409-0000-0000000FF1CE}"=Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-0409-0000-0000000FF1CE}"=Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-0409-0000-0000000FF1CE}"=Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}"=Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROR_{3EC77D26-799B-4CD8-914F-C1565E796173}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}"=Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROR_{430971B1-C31E-45DA-81E0-72C095BAB72C}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}"=Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-0409-0000-0000000FF1CE}"=Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}"=Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROR_{FAD8A83E-9BAC-4179-9268-A35948034D85}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0115-0409-0000-0000000FF1CE}"=Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROR_{FAD8A83E-9BAC-4179-9268-A35948034D85}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0117-0409-0000-0000000FF1CE}"=Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{91120000-0014-0000-0000-0000000FF1CE}"=Microsoft Office Professional 2007
"{91120000-0014-0000-0000-0000000FF1CE}_PROR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}"=2007 Microsoft Office Suite Service Pack 1 (SP1)
"{95D08F4E-DFC2-4ce3-ACB7-8C8E206217E9}"=MarketResearch
"{978C25EE-5777-46e4-8988-732C297CBDBD}"=Status
"{9B1FD9CE-0776-4f0b-A6F5-C6AB7B650CDF}"=Destinations
"{A36CD345-625C-4d6c-B3E2-76E1248CB451}"=SolutionCenter
"{A495D4DC-4036-4914-9CB2-0FCF6A3166EF}"=L7500
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}"=DeviceManagementQFolder
"{AC4732F4-665D-4E6B-8E50-74D6B6FBE5A9}"=PassAlong Software
"{AC76BA86-7AD7-1033-7B44-A90000000001}"=Adobe Reader 9
"{AC76BA86-7AD7-5464-3428-900000000004}"=Spelling Dictionaries Support For Adobe Reader 9
"{B3076A28-345A-4d89-90A3-B68866C0DFB8}"=eFax Messenger 4.3
"{B702CCCE-3176-4DBF-B932-D1B8F402F330}"=Digital Content Portal
"{BE77A81F-B315-4666-9BF3-AE70C0ADB057}"=BufferChm
"{C716522C-3731-4667-8579-40B098294500}"=Toolbox
"{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}"=HP Update
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}"=Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}"=Microsoft .NET Framework 3.5 SP1
"{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}"=getPlus(R) for Adobe
"{D07A8E7E-D324-4945-BA8C-E532AD008FF3}"=Microsoft Windows OneCare Live v2.5.2900.20
"{D2988E9B-C73F-422C-AD4B-A66EBE257120}"=MCU
"{D76D1828-BBA0-4BD9-8181-5ACC617DC5F2}"=Virtual Earth 3D (Beta)
"{DEB9AEF7-3ADA-40a9-9C98-546D54FE9CBD}"=ProductContext
"{E06F04B9-45E6-4AC0-8083-85F7515F40F7}"=UnloadSupport
"{E26B83D1-C0BB-41BC-8F44-31D5354DD6AF}"=Microsoft Windows OneCare Live AntiSpyware and AntiVirus
"{E93E5EF6-D361-481E-849D-F16EF5C78EBC}"=Musicmatch for Windows Media Player
"{EB21A812-671B-4D08-B974-2A347F0D8F70}"=HP Photosmart Essential
"{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}"=HPSSupply
"{EB9A4856-C28A-4BC2-9373-975A33BB9CD4}"=Live Search Maps Add-In for Microsoft Office Outlook
"{ECAD4F6A-0BF3-4028-9C81-E5D9F9606CBA}"=BPDSoftware
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}"=32 Bit HP CIO Components Installer
"{F3B58D4E-7324-44E4-A6B3-65D2DB8D1FE9}"=Microsoft Protection Service
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}"=Windows Live OneCare safety scanner
"{FF075778-6E50-47ed-991D-3B07FD4E3250}"=TrayApp
"ActiveTouchMeetingClient"=WebEx
"Adobe AIR"=Adobe AIR
"Adobe Flash Player ActiveX"=Adobe Flash Player 10 ActiveX
"Adobe Shockwave Player"=Adobe Shockwave Player 11
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1"=Acrobat.com
"Coupon Printer for Windows4.0"=Coupon Printer for Windows
"Dell Digital Jukebox Driver"=Dell Digital Jukebox Driver
"Game Maker 7.0"=Game Maker 7.0
"HijackThis"=HijackThis 2.0.2
"HP Imaging Device Functions"=HP Imaging Device Functions 8.0
"HP Solution Center & Imaging Support Tools"=HP Solution Center 8.0
"HPExtendedCapabilities"=HP Customer Participation Program 8.0
"HPOCR"=HP OCR Software 8.0
"Jetcast"=Jetcast 1.1.1
"Microsoft .NET Framework 1.1 (1033)"=Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1"=Microsoft .NET Framework 3.5 SP1
"Money2008b"=Microsoft Money Plus
"NetSight"=Nielsen//NetRatings
"PROR"=Microsoft Office Professional 2007
"PROSet"=Intel(R) PRO Network Connections Drivers
"RiseOfNations 1.0"=Microsoft Rise Of Nations
"SFlyStudio"=Shutterfly Studio
"StreetPlugin"=Learn2 Player (Uninstall Only)
"UltSounds"=Windows Sound Schemes
"UltSounds2"=Ultimate Extras sounds from Microsoft® Tinker™
"ViewpointMediaPlayer"=Viewpoint Media Player
"WebCyberCoach_wtrb"=WebCyberCoach 3.2 Dell
"Windows Live OneCare safety scanner"=Windows Live OneCare safety scanner
"Windows Media Format Runtime"=Windows Media Format 11 runtime
"Windows Media Player"=Windows Media Player 11
"WinSS"=Windows Live OneCare
"Yahoo! Messenger"=Yahoo! Messenger
========== HKEY_CURRENT_USER Uninstall List ==========[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"AI RoboForm"=AI RoboForm
"GoToMeeting"=GoToMeeting 4.0.0.320
"VIP CruisePass"=VIP CruisePass
========== HKEY_USERS Uninstall List ==========[HKEY_USERS\S-1-5-21-4265383987-2701506286-744738989-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"AI RoboForm"=AI RoboForm
"GoToMeeting"=GoToMeeting 4.0.0.320
"VIP CruisePass"=VIP CruisePass
========== Last 10 Event Log Errors ==========[ Application Events ]
Error - 2/19/2009 1:09:12 AM | Computer Name = Stephans5150 | Source = EventSystem | ID = 4621
Description = The COM+ Event System could not remove the EventSystem.EventSubscription
object {CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}.
The HRESULT was 8007000
Error - 2/19/2009 9:58:53 PM | Computer Name = Stephans5150 | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 7.0.6001.18000 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 830 Start Time: 01c992f221b9504d Termination Time: 77
Error - 2/19/2009 10:06:15 PM | Computer Name = Stephans5150 | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 7.0.6001.18000 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 2520 Start Time: 01c992ff3ca9924d Termination Time: 640
Error - 2/19/2009 10:45:05 PM | Computer Name = Stephans5150 | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 7.0.6001.18000 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 2bb4 Start Time: 01c99304d783805d Termination Time: 47
Error - 2/19/2009 11:08:56 PM | Computer Name = Stephans5150 | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 7.0.6001.18000 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 290c Start Time: 01c99307cae80e3d Termination Time: 15
Error - 2/19/2009 11:12:29 PM | Computer Name = Stephans5150 | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 7.0.6001.18000 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Problem Reports and Solutions control panel. Process
ID: 3238 Start Time: 01c993089320114d Termination Time: 0
Error - 2/19/2009 11:13:29 PM | Computer Name = Stephans5150 | Source = EventSystem | ID = 4621
Description = The COM+ Event System could not remove the EventSystem.EventSubscription
object {CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}.
The HRESULT was 8007000
Error - 2/20/2009 7:53:24 PM | Computer Name = Stephans5150 | Source = Outlook | ID = 34
Description = Failed to get the Crawl Scope Manager with error=0x8001010d.
Error - 2/20/2009 7:53:24 PM | Computer Name = Stephans5150 | Source = Outlook | ID = 35
Description = Failed to determine if the store is in the crawl scope (error=0x8001010d).
Error - 2/20/2009 11:41:12 PM | Computer Name = Stephans5150 | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 7.0.6001.18000, time stamp
0x47918f11, faulting module etls.dll, version 4.0.4.57, time stamp 0x49008aaf,
exception code 0xc0000005, fault offset 0x0001ed44, process id 0x20b4, application
start time 0x01c993c19053baf5.
[ Media Center Events ]
Error - 11/22/2007 12:50:01 AM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.
Error - 11/24/2007 4:55:50 PM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.
Error - 11/28/2007 12:49:43 AM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.
Error - 11/30/2007 6:44:40 PM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.
Error - 12/12/2007 12:58:53 AM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.
Error - 5/23/2008 8:22:25 PM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.
Error - 5/28/2008 7:35:14 PM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.
Error - 5/29/2008 9:36:50 AM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.
Error - 6/4/2008 7:22:11 PM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package MCESpotlight.
Error - 6/29/2008 11:58:05 PM | Computer Name = Stephans5150 | Source = MCUpdate | ID = 0
Description = DownloadPackgeTask.SubTasksComplete: failed downloading package SportsSchedule.
[ OSession Events ]
Error - 5/8/2008 3:12:43 PM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6300.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 2769
seconds with 1380 seconds of active time. This session ended with a crash.
Error - 6/10/2008 4:25:51 PM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6300.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 18363
seconds with 4200 seconds of active time. This session ended with a crash.
Error - 7/30/2008 8:39:09 PM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 9106
seconds with 840 seconds of active time. This session ended with a crash.
Error - 8/9/2008 1:48:11 PM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 1594
seconds with 540 seconds of active time. This session ended with a crash.
Error - 8/21/2008 10:01:04 PM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 8445
seconds with 3360 seconds of active time. This session ended with a crash.
Error - 10/27/2008 5:08:47 PM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 530
seconds with 60 seconds of active time. This session ended with a crash.
Error - 11/26/2008 11:13:16 PM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 8664
seconds with 1560 seconds of active time. This session ended with a crash.
Error - 12/17/2008 10:55:00 AM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 7573
seconds with 2280 seconds of active time. This session ended with a crash.
Error - 12/20/2008 10:37:30 AM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 325
seconds with 60 seconds of active time. This session ended with a crash.
Error - 12/31/2008 12:34:36 AM | Computer Name = Stephans5150 | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version:
12.0.6316.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 12456
seconds with 2160 seconds of active time. This session ended with a crash.
[ System Events ]
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = HTTP | ID = 15021
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = HTTP | ID = 15021
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = HTTP | ID = 15021
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = HTTP | ID = 15021
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = HTTP | ID = 15016
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = Microsoft-Windows-TaskScheduler | ID = 716
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = Microsoft-Windows-TaskScheduler | ID = 716
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = Microsoft-Windows-TaskScheduler | ID = 716
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = Microsoft-Windows-TaskScheduler | ID = 716
Description =
Error - 2/21/2009 1:12:27 PM | Computer Name = Stephans5150 | Source = Microsoft-Windows-TaskScheduler | ID = 716
Description =
[ Windows OneCare Events ]
Error - 1/4/2009 2:08:58 AM | Computer Name = Stephans5150 | Source = WinSS | ID = 1011
Description = Could not update WMI to communicate to WSC.
Error - 1/20/2009 2:35:42 AM | Computer Name = Stephans5150 | Source = WinSS | ID = 1011
Description = Could not update WMI to communicate to WSC.
< End of report >
