GOT IT ! MySystem-Search MSS v1.6
Basic System Information Username: Familia ROdriguez - Date: 07/07/2010 - Time: 14:44:41
Microsoft Windows XP [Version 5.1.2600]
Processor type: x86 Family 6 Model 14 Stepping 8, GenuineIntel
Total processors: 1
Computer Name: DJ5WFLB1
Logon Server: \\DJ5WFLB1
CD Emulation Drivers running? Peer-to-Peer applications? uTorrent found!
File associations .exe=exefile
.scr=scrfile
.pif=piffile
.com=comfile
.bat=batfile
.cmd=cmdfile
.log=txtfile
.txt=txtfile
.reg=regfile
.sys=sysfile
.dll=dllfile
.ini=inifile
.inf=inffile
Running processes Hidden objects PATH: C:\windows
$hf_mig$
$NtServicePackUninstall$
$NtUninstallKB835221WXP$
$NtUninstallKB898461$
$NtUninstallKB912945$
$NtUninstallKB923561$
$NtUninstallKB923723$
$NtUninstallKB926239$
$NtUninstallKB929399$
$NtUninstallKB932716-v2$
$NtUninstallKB936782_WMP11$
$NtUninstallKB939683$
$NtUninstallKB941569$
$NtUninstallKB946648$
$NtUninstallKB950762$
$NtUninstallKB950974$
$NtUninstallKB951066$
$NtUninstallKB951376-v2$
$NtUninstallKB951748$
$NtUninstallKB951978$
$NtUninstallKB952004$
$NtUninstallKB952069_WM9$
$NtUninstallKB952287$
$NtUninstallKB952954$
$NtUninstallKB954154_WM11$
$NtUninstallKB954155_WM9$
$NtUninstallKB955069$
$NtUninstallKB955759$
$NtUninstallKB956572$
$NtUninstallKB956744$
$NtUninstallKB956802$
$NtUninstallKB956803$
$NtUninstallKB956844$
$NtUninstallKB957097$
$NtUninstallKB958644$
$NtUninstallKB958687$
$NtUninstallKB958869$
$NtUninstallKB959426$
$NtUninstallKB959772_WM11$
$NtUninstallKB960225$
$NtUninstallKB960803$
$NtUninstallKB960859$
$NtUninstallKB961118$
$NtUninstallKB961371-v2$
$NtUninstallKB961501$
$NtUninstallKB961503$
$NtUninstallKB967715$
$NtUninstallKB968389$
$NtUninstallKB968816_WM9$
$NtUninstallKB969059$
$NtUninstallKB969947$
$NtUninstallKB970238$
$NtUninstallKB970430$
$NtUninstallKB971468$
$NtUninstallKB971486$
$NtUninstallKB971557$
$NtUninstallKB971633$
$NtUninstallKB971657$
$NtUninstallKB971737$
$NtUninstallKB971961$
$NtUninstallKB972270$
$NtUninstallKB973354$
$NtUninstallKB973507$
$NtUninstallKB973525$
$NtUninstallKB973540_WM9$
$NtUninstallKB973687$
$NtUninstallKB973815$
$NtUninstallKB973869$
$NtUninstallKB973904$
$NtUninstallKB974112$
$NtUninstallKB974318$
$NtUninstallKB974392$
$NtUninstallKB974571$
$NtUninstallKB975025$
$NtUninstallKB975467$
$NtUninstallKB975560$
$NtUninstallKB975561$
$NtUninstallKB975562$
$NtUninstallKB975713$
$NtUninstallKB976098-v2$
$NtUninstallKB976325$
$NtUninstallKB977165$
$NtUninstallKB977816$
$NtUninstallKB977914$
$NtUninstallKB978037$
$NtUninstallKB978251$
$NtUninstallKB978262$
$NtUninstallKB978338$
$NtUninstallKB978542$
$NtUninstallKB978601$
$NtUninstallKB978695_WM9$
$NtUninstallKB978706$
$NtUninstallKB979306$
$NtUninstallKB979309$
$NtUninstallKB979482$
$NtUninstallKB979559$
$NtUninstallKB979683$
$NtUninstallKB980195$
$NtUninstallKB980218$
$NtUninstallKB980232$
$NtUninstallKB981793$
$NtUninstallMSCompPackV1$
$NtUninstallWdf01005$
$NtUninstallWdf01009$
$NtUninstallwinusb0100$
$NtUninstallWMFDist11$
$NtUninstallwmp11$
$NtUninstallWudf01000$
$NtUninstallWudf01009$
ie8
inf
Installer
WindowsShell.Manifest
winnt.bmp
winnt256.bmp
PATH: C:\windows\system32
cdplayer.exe.manifest
dllcache
ezsidmv.dat
logonui.exe.manifest
ncpa.cpl.manifest
nwc.cpl.manifest
sapi.cpl.manifest
WindowsLogon.manifest
wuaucpl.cpl.manifest
PATH: C:\windows\system32\drivers
MsftWdf_Kernel_01005_Coinstaller_Critic
al.Wdf
MsftWdf_Kernel_01009_Coinstaller_Critic
al.Wdf
MsftWdf_user_01_09_00.Wdf
Msft_Kernel_motmodem_01005.Wdf
Msft_Kernel_WinUSB_01009.Wdf
Msft_Kernel_zumbus_01009.Wdf
Msft_User_WpdMtpDr_01_00_00.Wdf
Msft_User_ZuneDriver_01_09_00.Wdf
PATH: C:\
$AVG
boot.ini
dell.sdr
hiberfil.sys
IO.SYS
IPH.PH
MSDOS.SYS
MSOCache
NTDETECT.COM
ntldr
pagefile.sys
RECYCLER
System Volume Information
User Profile check ! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList
ProfilesDirectory REG_EXPAND_SZ %SystemDrive%\Documents and Settings
DefaultUserProfile REG_SZ Default User
AllUsersProfile REG_SZ All Users
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-18
Flags REG_DWORD 0xc
State REG_DWORD 0x0
RefCount REG_DWORD 0x1
Sid REG_BINARY 010100000000000512000000
ProfileImagePath REG_EXPAND_SZ %systemroot%\system32\config\systemprofile
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-19
ProfileImagePath REG_EXPAND_SZ %SystemDrive%\Documents and Settings\LocalService
Sid REG_BINARY 010100000000000513000000
Flags REG_DWORD 0x9
State REG_DWORD 0x0
CentralProfile REG_SZ
ProfileLoadTimeLow REG_DWORD 0xf0357226
ProfileLoadTimeHigh REG_DWORD 0x1cb1de8
RefCount REG_DWORD 0x3
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-20
ProfileImagePath REG_EXPAND_SZ %SystemDrive%\Documents and Settings\NetworkService
Sid REG_BINARY 010100000000000514000000
Flags REG_DWORD 0x9
State REG_DWORD 0x0
CentralProfile REG_SZ
ProfileLoadTimeLow REG_DWORD 0xee6baea6
ProfileLoadTimeHigh REG_DWORD 0x1cb1de8
RefCount REG_DWORD 0x2
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-2869327831-4132746257-1983631819-1005
ProfileImagePath REG_EXPAND_SZ %SystemDrive%\Documents and Settings\HelpAssistant
Sid REG_BINARY 010500000000000515000000D77706AB11B454F
6CBD13B76ED030000
Flags REG_DWORD 0x0
State REG_DWORD 0x4
CentralProfile REG_SZ
ProfileLoadTimeLow REG_DWORD 0x51c275e4
ProfileLoadTimeHigh REG_DWORD 0x1caae85
RefCount REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-2869327831-4132746257-1983631819-1006
ProfileImagePath REG_EXPAND_SZ %SystemDrive%\Documents and Settings\Familia ROdriguez
Sid REG_BINARY 010500000000000515000000D77706AB11B454F
6CBD13B76EE030000
Flags REG_DWORD 0x0
State REG_DWORD 0x100
CentralProfile REG_SZ
ProfileLoadTimeLow REG_DWORD 0xefafee76
ProfileLoadTimeHigh REG_DWORD 0x1cb1de8
RefCount REG_DWORD 0x1
RunLogonScriptSync REG_DWORD 0x0
OptimizedLogonStatus REG_DWORD 0xb
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList\S-1-5-21-2869327831-4132746257-1983631819-500
ProfileImagePath REG_EXPAND_SZ %SystemDrive%\Documents and Settings\Administrator
Sid REG_BINARY 010500000000000515000000D77706AB11B454F
6CBD13B76F4010000
Flags REG_DWORD 0x0
State REG_DWORD 0x104
CentralProfile REG_SZ
ProfileLoadTimeLow REG_DWORD 0x60b6cc60
ProfileLoadTimeHigh REG_DWORD 0x1cb1de5
RefCount REG_DWORD 0x0
RunLogonScriptSync REG_DWORD 0x0
Current Scheduled Tasks PATH: C:\Windows\Tasks
AppleSoftwareUpdate.job
desktop.ini
SA.DAT
Windows Drivers and NT-Services Volume in drive C has no label.
Volume Serial Number is 5C6C-EE54
Directory of C:\Windows\System32\Drivers
03/15/2010 09:30 PM 0 MsftWdf_Kernel_01005_Coinstaller_Critic
al.Wdf
04/09/2010 05:56 PM 0 MsftWdf_Kernel_01009_Coinstaller_Critic
al.Wdf
04/09/2010 05:55 PM 0 MsftWdf_user_01_09_00.Wdf
03/15/2010 09:30 PM 0 Msft_Kernel_motmodem_01005.Wdf
04/09/2010 05:56 PM 0 Msft_Kernel_WinUSB_01009.Wdf
04/09/2010 05:56 PM 0 Msft_Kernel_zumbus_01009.Wdf
05/29/2010 02:29 PM 0 Msft_User_WpdMtpDr_01_00_00.Wdf
04/09/2010 05:56 PM 0 Msft_User_ZuneDriver_01_09_00.Wdf
8 File(s) 0 bytes
0 Dir(s) 10,686,427,136 bytes free
Volume in drive C has no label.
Volume Serial Number is 5C6C-EE54
Directory of C:\Windows\System32\Drivers
08/17/2001 01:12 PM 117,760 e100b325.sys
08/17/2001 02:46 PM 6,400 enum1394.sys
08/17/2001 02:51 PM 3,328 pciide.sys
08/17/2001 02:51 PM 6,656 cmdide.sys
08/17/2001 02:51 PM 5,248 aliide.sys
08/17/2001 02:51 PM 4,992 toside.sys
08/17/2001 02:51 PM 14,848 asc3550.sys
08/17/2001 02:52 PM 26,496 asc.sys
08/17/2001 02:52 PM 23,552 ABP480N5.SYS
08/17/2001 02:52 PM 12,800 aha154x.sys
08/17/2001 02:52 PM 22,400 asc3350p.sys
08/17/2001 02:52 PM 12,032 amsint.sys
08/17/2001 02:52 PM 7,680 cd20xrnt.sys
08/17/2001 02:52 PM 14,976 cpqarray.sys
08/17/2001 02:52 PM 16,000 ini910u.sys
08/17/2001 02:52 PM 13,952 cbidf2k.sys
08/17/2001 02:52 PM 17,280 mraid35x.sys
08/17/2001 02:52 PM 40,448 ql1240.sys
08/17/2001 02:52 PM 33,152 ql10wnt.sys
08/17/2001 02:52 PM 179,584 dac2w2k.sys
08/17/2001 02:52 PM 14,720 dac960nt.sys
08/17/2001 02:52 PM 49,024 ql1280.sys
08/17/2001 02:52 PM 45,312 ql12160.sys
08/17/2001 02:52 PM 40,320 ql1080.sys
08/17/2001 02:52 PM 36,736 ultra.sys
08/17/2001 02:52 PM 125,056 ftdisk.sys
08/17/2001 02:59 PM 3,072 audstub.sys
08/17/2001 03:07 PM 101,888 adpu160m.sys
08/17/2001 03:07 PM 16,256 symc810.sys
08/17/2001 03:07 PM 55,168 aic78u2.sys
08/17/2001 03:07 PM 32,640 symc8xx.sys
08/17/2001 03:07 PM 56,960 aic78xx.sys
08/17/2001 03:07 PM 28,384 sym_hi.sys
08/17/2001 03:07 PM 27,296 perc2.sys
08/17/2001 03:07 PM 5,504 perc2hib.sys
08/17/2001 03:07 PM 30,688 sym_u3.sys
08/17/2001 03:07 PM 20,192 dpti2o.sys
08/17/2001 03:07 PM 25,952 hpn.sys
08/17/2001 03:07 PM 19,072 sparrow.sys
08/17/2001 03:48 PM 12,160 mouhid.sys
02/13/2004 10:46 AM 17,153 omci.sys
03/16/2004 09:04 PM 13,059 mdmxsdk.sys
07/17/2004 12:35 PM 67,866 netwlan5.img
07/17/2004 12:36 PM 64,352 ativmc20.cod
07/17/2004 11:55 PM 129,045 cxthsfs2.cty
08/03/2004 11:29 PM 327,040 ati2mtaa.sys
08/03/2004 11:29 PM 701,440 ati2mtag.sys
08/03/2004 11:29 PM 57,856 atinbtxx.sys
08/03/2004 11:29 PM 14,336 atinpdxx.sys
08/03/2004 11:29 PM 52,224 atinraxx.sys
08/03/2004 11:29 PM 56,623 ati1btxx.sys
08/03/2004 11:29 PM 13,824 atinmdxx.sys
08/03/2004 11:29 PM 11,615 ati1mdxx.sys
08/03/2004 11:29 PM 12,047 ati1pdxx.sys
08/03/2004 11:29 PM 73,216 atintuxx.sys
08/03/2004 11:29 PM 31,744 atinxbxx.sys
08/03/2004 11:29 PM 63,488 atinxsxx.sys
08/03/2004 11:29 PM 28,672 atinsnxx.sys
08/03/2004 11:29 PM 63,663 ati1rvxx.sys
08/03/2004 11:29 PM 104,960 atinrvxx.sys
08/03/2004 11:29 PM 30,671 ati1raxx.sys
08/03/2004 11:29 PM 34,735 ati1xsxx.sys
08/03/2004 11:29 PM 29,455 ati1xbxx.sys
08/03/2004 11:29 PM 26,367 ati1snxx.sys
08/03/2004 11:29 PM 36,463 ati1tuxx.sys
08/03/2004 11:29 PM 21,343 ati1ttxx.sys
08/03/2004 11:29 PM 13,824 atinttxx.sys
08/03/2004 11:29 PM 452,736 mtxparhm.sys
08/03/2004 11:29 PM 11,295 wadv08nt.sys
08/03/2004 11:29 PM 11,807 wadv07nt.sys
08/03/2004 11:29 PM 11,871 wadv09nt.sys
08/03/2004 11:29 PM 11,935 wadv11nt.sys
08/03/2004 11:29 PM 22,271 watv06nt.sys
08/03/2004 11:29 PM 25,471 watv10nt.sys
08/03/2004 11:29 PM 166,912 s3gnbm.sys
08/03/2004 11:29 PM 1,897,408 nv4_mini.sys
08/03/2004 11:41 PM 1,309,184 mtlstrm.sys
08/03/2004 11:41 PM 13,776 recagent.sys
08/03/2004 11:41 PM 126,686 mtlmnt5.sys
08/03/2004 11:41 PM 180,360 ntmtlfax.sys
08/03/2004 11:41 PM 129,535 slnt7554.sys
08/03/2004 11:41 PM 404,990 slntamr.sys
08/03/2004 11:41 PM 13,240 slwdmsup.sys
08/03/2004 11:41 PM 95,424 slnthal.sys
08/03/2004 11:41 PM 220,032 hsfbs2s2.sys
08/03/2004 11:41 PM 685,056 hsfcxts2.sys
08/03/2004 11:41 PM 1,041,536 hsfdpsp2.sys
08/04/2004 06:00 AM 18,688 cdaudio.sys
08/04/2004 06:00 AM 5,888 rootmdm.sys
08/04/2004 06:00 AM 14,592 smclib.sys
08/04/2004 06:00 AM 12,032 riodrv.sys
08/04/2004 06:00 AM 262,528 cinemst2.sys
08/04/2004 06:00 AM 12,032 rio8drv.sys
08/04/2004 06:00 AM 21,376 tsbvcap.sys
08/04/2004 06:00 AM 4,224 beep.sys
08/04/2004 06:00 AM 3,456 oprghdlr.sys
08/04/2004 06:00 AM 55,936 nwlnkspx.sys
08/04/2004 06:00 AM 11,776 cpqdap01.sys
08/04/2004 06:00 AM 6,784 parvdm.sys
08/04/2004 06:00 AM 63,232 nwlnknb.sys
08/04/2004 06:00 AM 4,352 wmilib.sys
08/04/2004 06:00 AM 7,680 mcd.sys
08/04/2004 06:00 AM 4,736 usbd.sys
08/04/2004 06:00 AM 12,032 nikedrv.sys
08/04/2004 06:00 AM 32,512 nwlnkfwd.sys
08/04/2004 06:00 AM 4,224 rdpcdd.sys
08/04/2004 06:00 AM 34,432 rawwan.sys
08/04/2004 06:00 AM 16,512 raspti.sys
08/04/2004 06:00 AM 5,888 dmload.sys
08/04/2004 06:00 AM 8,832 rasacd.sys
08/04/2004 06:00 AM 58,112 vdmindvd.sys
08/04/2004 06:00 AM 646 gmreadme.txt
08/04/2004 06:00 AM 12,032 ws2ifsl.sys
08/04/2004 06:00 AM 10,496 dxapi.sys
08/04/2004 06:00 AM 12,416 nwlnkflt.sys
08/04/2004 06:00 AM 3,328 dxgthk.sys
08/04/2004 06:00 AM 51,712 tosdvd.sys
08/04/2004 06:00 AM 11,648 acpiec.sys
08/04/2004 06:00 AM 3,440,660 gm.dls
08/04/2004 06:00 AM 32,896 ipfltdrv.sys
08/04/2004 06:00 AM 352,256 atmuni.sys
08/04/2004 06:00 AM 4,224 mnmdd.sys
08/04/2004 06:00 AM 17,792 ptilink.sys
08/04/2004 06:00 AM 31,360 atmepvc.sys
08/04/2004 06:00 AM 12,160 fsvga.sys
08/04/2004 06:00 AM 7,936 fs_rec.sys
08/04/2004 06:00 AM 2,944 null.sys
08/10/2004 01:52 PM <DIR> etc
08/10/2004 01:52 PM <DIR> disdn
08/12/2004 06:45 PM 113,664 Hdaudio.sys
07/21/2005 09:01 PM 717,952 HSF_CNXT.sys
07/21/2005 09:01 PM 201,600 HSFHWAZL.sys
07/21/2005 09:02 PM 1,035,008 HSF_DPV.sys
08/05/2005 10:32 AM 45,312 bcm4sbxp.sys
08/08/2005 10:10 PM 133,972 del1028.cty
08/12/2005 06:50 PM 16,128 APPDRV.SYS
10/14/2005 09:40 AM 307,968 rixdptsk.sys
10/14/2005 09:40 AM 28,544 rimmptsk.sys
10/14/2005 09:40 AM 51,328 rimsptsk.sys
11/02/2005 01:24 PM 424,320 BCMWL5.SYS
12/07/2005 05:05 PM 56,240 V2iMount.sys
12/07/2005 05:05 PM 144,880 SymSnap.sys
12/07/2005 05:05 PM 17,472 VProEventMonitor.sys
12/13/2005 06:09 PM 1,364,574 ialmnt5.sys
12/19/2005 09:08 AM 33,664 BCMWLNPF.SYS
03/08/2006 12:35 PM 191,872 SynTP.sys
03/24/2006 05:34 PM 1,156,648 sthda.sys
08/08/2006 10:11 AM 6,072 1028_Dell_INS_I6400.mrk
08/08/2006 10:48 AM 4,608 symlcbrd.sys
10/18/2006 09:00 PM 38,528 wpdusb.sys
11/02/2006 07:00 AM 39,368 winusb.sys
12/12/2006 04:34 PM 56,832 SamsonLLDriver.sys
12/12/2006 04:34 PM 25,088 SWAudWDM.sys
05/09/2007 09:46 PM 14,112 lv302af.sys
05/09/2007 09:51 PM 41,888 LVUSBSta.sys
05/09/2007 10:47 PM 1,276,832 LV302V32.SYS
06/18/2007 08:18 PM 23,680 motmodem.sys
04/13/2008 12:36 PM 144,384 hdaudbus.sys
04/13/2008 12:39 PM 20,480 secdrv.sys
04/13/2008 12:39 PM 142,592 aec.sys
04/13/2008 01:45 PM 60,032 USBAUDIO.sys
04/13/2008 01:45 PM 60,160 drmk.sys
04/13/2008 01:45 PM 49,408 stream.sys
04/13/2008 02:16 PM 141,056 ks.sys
04/13/2008 02:19 PM 146,048 portcls.sys
04/13/2008 02:31 PM 35,840 processr.sys
04/13/2008 02:31 PM 42,752 p3.sys
04/13/2008 02:31 PM 37,376 amdk6.sys
04/13/2008 02:31 PM 36,736 crusoe.sys
04/13/2008 02:31 PM 36,352 intelppm.sys
04/13/2008 02:31 PM 37,760 amdk7.sys
04/13/2008 02:32 PM 66,048 udfs.sys
04/13/2008 02:32 PM 30,848 npfs.sys
04/13/2008 02:32 PM 19,072 msfs.sys
04/13/2008 02:32 PM 180,608 mrxdav.sys
04/13/2008 02:32 PM 196,224 rdpdr.sys
04/13/2008 02:32 PM 129,792 fltmgr.sys
04/13/2008 02:33 PM 44,544 fips.sys
04/13/2008 02:36 PM 14,208 battc.sys
04/13/2008 02:36 PM 5,888 smbali.sys
04/13/2008 02:36 PM 187,776 acpi.sys
04/13/2008 02:36 PM 10,240 compbatt.sys
04/13/2008 02:36 PM 13,952 cmbatt.sys
04/13/2008 02:36 PM 42,752 alim1541.sys
04/13/2008 02:36 PM 42,368 agp440.sys
04/13/2008 02:36 PM 8,832 wmiacpi.sys
04/13/2008 02:36 PM 44,928 agpcpq.sys
04/13/2008 02:36 PM 40,960 sisagp.sys
04/13/2008 02:36 PM 43,008 amdagp.sys
04/13/2008 02:36 PM 46,464 gagp30kx.sys
04/13/2008 02:36 PM 42,240 viaagp.sys
04/13/2008 02:36 PM 44,672 uagp35.sys
04/13/2008 02:36 PM 63,744 mf.sys
04/13/2008 02:36 PM 37,248 isapnp.sys
04/13/2008 02:36 PM 120,192 pcmcia.sys
04/13/2008 02:36 PM 79,232 sdbus.sys
04/13/2008 02:36 PM 68,224 pci.sys
04/13/2008 02:36 PM 15,488 mssmbios.sys
04/13/2008 02:36 PM 73,472 sr.sys
04/13/2008 02:38 PM 71,168 dxg.sys
04/13/2008 02:39 PM 384,768 update.sys
04/13/2008 02:39 PM 42,368 mountmgr.sys
04/13/2008 02:39 PM 24,576 kbdclass.sys
04/13/2008 02:39 PM 23,040 mouclass.sys
04/13/2008 02:39 PM 5,504 MSTEE.sys
04/13/2008 02:39 PM 5,376 mspclock.sys
04/13/2008 02:39 PM 4,992 mspqm.sys
04/13/2008 02:39 PM 7,552 mskssrv.sys
04/13/2008 02:39 PM 4,352 swenum.sys
04/13/2008 02:40 PM 80,128 parport.sys
04/13/2008 02:40 PM 15,744 serenum.sys
04/13/2008 02:40 PM 27,392 fdc.sys
04/13/2008 02:40 PM 20,480 flpydisk.sys
04/13/2008 02:40 PM 57,600 redbook.sys
04/13/2008 02:40 PM 5,504 intelide.sys
04/13/2008 02:40 PM 24,960 pciidex.sys
04/13/2008 02:40 PM 96,512 atapi.sys
04/13/2008 02:40 PM 96,384 scsiport.sys
04/13/2008 02:40 PM 5,376 viaide.sys
04/13/2008 02:40 PM 14,208 diskdump.sys
04/13/2008 02:40 PM 36,352 disk.sys
04/13/2008 02:40 PM 11,904 sffdisk.sys
04/13/2008 02:40 PM 11,008 sffp_sd.sys
04/13/2008 02:40 PM 11,392 sfloppy.sys
04/13/2008 02:40 PM 10,240 sffp_mmc.sys
04/13/2008 02:40 PM 19,712 partmgr.sys
04/13/2008 02:40 PM 14,976 tape.sys
04/13/2008 02:40 PM 42,112 imapi.sys
04/13/2008 02:41 PM 52,352 volsnap.sys
04/13/2008 02:41 PM 18,560 i2omp.sys
04/13/2008 02:41 PM 8,576 i2omgmt.sys
04/13/2008 02:43 PM 12,672 mutohpen.sys
04/13/2008 02:43 PM 14,208 wacompen.sys
04/13/2008 02:44 PM 20,992 vga.sys
04/13/2008 02:44 PM 81,664 videoprt.sys
04/13/2008 02:44 PM 153,344 dmio.sys
04/13/2008 02:44 PM 799,744 dmboot.sys
04/13/2008 02:45 PM 52,864 dmusic.sys
04/13/2008 02:45 PM 6,272 splitter.sys
04/13/2008 02:45 PM 172,416 kmixer.sys
04/13/2008 02:45 PM 56,576 swmidi.sys
04/13/2008 02:45 PM 2,944 drmkaud.sys
04/13/2008 02:45 PM 24,960 hidparse.sys
04/13/2008 02:45 PM 19,200 hidir.sys
04/13/2008 02:45 PM 36,864 hidclass.sys
04/13/2008 02:45 PM 10,368 hidusb.sys
04/13/2008 02:45 PM 15,104 usbscan.sys
04/13/2008 02:45 PM 20,608 usbuhci.sys
04/13/2008 02:45 PM 30,208 usbehci.sys
04/13/2008 02:45 PM 143,872 usbport.sys
04/13/2008 02:45 PM 59,520 usbhub.sys
04/13/2008 02:45 PM 26,368 USBSTOR.SYS
04/13/2008 02:45 PM 32,128 usbccgp.sys
04/13/2008 02:45 PM 25,600 usbcamd.sys
04/13/2008 02:45 PM 25,728 usbcamd2.sys
04/13/2008 02:45 PM 15,872 usbintel.sys
04/13/2008 02:46 PM 25,344 sonydcam.sys
04/13/2008 02:46 PM 61,696 ohci1394.sys
04/13/2008 02:46 PM 53,376 1394bus.sys
04/13/2008 02:46 PM 121,984 usbvideo.sys
04/13/2008 02:46 PM 10,880 NdisIP.sys
04/13/2008 02:46 PM 15,232 StreamIP.sys
04/13/2008 02:46 PM 11,136 SLIP.sys
04/13/2008 02:46 PM 19,200 WSTCODEC.SYS
04/13/2008 02:46 PM 17,024 CCDECODE.sys
04/13/2008 02:46 PM 85,248 NABTSFEC.sys
04/13/2008 02:46 PM 18,944 bthusb.sys
04/13/2008 02:46 PM 25,600 hidbth.sys
04/13/2008 02:46 PM 36,480 bthprint.sys
04/13/2008 02:46 PM 59,136 rfcomm.sys
04/13/2008 02:46 PM 17,024 bthenum.sys
04/13/2008 02:46 PM 37,888 bthmodem.sys
04/13/2008 02:47 PM 25,856 usbprint.sys
04/13/2008 02:51 PM 59,904 atmarpc.sys
04/13/2008 02:51 PM 60,800 arp1394.sys
04/13/2008 02:51 PM 61,824 nic1394.sys
04/13/2008 02:51 PM 55,808 atmlane.sys
04/13/2008 02:51 PM 101,120 bthpan.sys
04/13/2008 02:53 PM 40,320 nmnt.sys
04/13/2008 02:53 PM 71,552 bridge.sys
04/13/2008 02:53 PM 36,608 ip6fw.sys
04/13/2008 02:54 PM 11,264 irenum.sys
04/13/2008 02:55 PM 14,592 ndisuio.sys
04/13/2008 02:56 PM 12,288 tunmp.sys
04/13/2008 02:56 PM 34,688 netbios.sys
04/13/2008 02:56 PM 88,320 nwlnkipx.sys
04/13/2008 02:56 PM 35,072 msgpc.sys
04/13/2008 02:56 PM 69,120 psched.sys
04/13/2008 02:56 PM 30,592 rndismpx.sys
04/13/2008 02:56 PM 12,800 usb8023x.sys
04/13/2008 02:56 PM 12,800 usb8023.sys
04/13/2008 02:56 PM 30,592 rndismp.sys
04/13/2008 02:57 PM 20,864 ipinip.sys
04/13/2008 02:57 PM 152,832 ipnat.sys
04/13/2008 02:57 PM 34,560 wanarp.sys
04/13/2008 02:57 PM 14,336 asyncmac.sys
04/13/2008 02:57 PM 10,112 ndistapi.sys
04/13/2008 02:57 PM 40,576 ndproxy.sys
04/13/2008 02:57 PM 41,472 raspppoe.sys
04/13/2008 03:00 PM 19,072 tdi.sys
04/13/2008 03:00 PM 30,080 modem.sys
04/13/2008 03:14 PM 63,744 cdfs.sys
04/13/2008 03:14 PM 143,744 fastfat.sys
04/13/2008 03:15 PM 64,512 serial.sys
04/13/2008 03:15 PM 574,976 ntfs.sys
04/13/2008 03:15 PM 60,800 sysaudio.sys
04/13/2008 03:16 PM 49,536 classpnp.sys
04/13/2008 03:17 PM 105,344 mup.sys
04/13/2008 03:17 PM 83,072 wdmaud.sys
04/13/2008 03:18 PM 52,480 i8042prt.sys
04/13/2008 03:19 PM 75,264 ipsec.sys
04/13/2008 03:19 PM 51,328 rasl2tp.sys
04/13/2008 03:19 PM 48,384 raspptp.sys
04/13/2008 03:20 PM 182,656 ndis.sys
04/13/2008 03:20 PM 91,520 ndiswan.sys
04/13/2008 03:21 PM 162,816 netbt.sys
04/13/2008 03:28 PM 175,744 rdbss.sys
04/13/2008 08:11 PM 3,647 adv07nt5.dll
04/13/2008 08:11 PM 3,711 adv09nt5.dll
04/13/2008 08:11 PM 3,135 adv08nt5.dll
04/13/2008 08:11 PM 3,615 adv05nt5.dll
04/13/2008 08:11 PM 4,255 adv01nt5.dll
04/13/2008 08:11 PM 3,967 adv02nt5.dll
04/13/2008 08:11 PM 3,775 adv11nt5.dll
04/13/2008 08:11 PM 14,143 atv06nt5.dll
04/13/2008 08:11 PM 25,471 atv04nt5.dll
04/13/2008 08:11 PM 21,183 atv01nt5.dll
04/13/2008 08:11 PM 17,279 atv10nt5.dll
04/13/2008 08:11 PM 15,423 ch7xxnt5.dll
04/13/2008 08:11 PM 11,359 atv02nt5.dll
04/13/2008 08:12 PM 3,901 siint5.dll
04/13/2008 08:12 PM 11,325 vchnt5.dll
04/13/2008 08:13 PM 12,040 tdpipe.sys
04/13/2008 08:13 PM 40,840 termdd.sys
04/13/2008 08:13 PM 21,896 tdtcp.sys
04/13/2008 08:13 PM 139,656 rdpwd.sys
05/02/2008 06:49 AM 62,976 cdrom.sys
05/08/2008 10:02 AM 203,136 rmcast.sys
06/13/2008 07:05 AM 272,128 bthport.sys
06/20/2008 07:51 AM 361,600 tcpip.sys
08/14/2008 06:04 AM 138,496 afd.sys
05/18/2009 03:17 PM 26,600 GEARAspiWDM.sys
06/24/2009 07:18 AM 92,928 ksecdd.sys
07/13/2009 04:50 PM 91,904 WudfPf.sys
07/13/2009 04:50 PM 132,224 WudfRd.sys
07/14/2009 10:35 AM 37,608 wdfldr.sys
07/14/2009 10:35 AM 444,136 wdf01000.sys
10/20/2009 12:20 PM 265,728 http.sys
12/31/2009 12:50 PM 353,792 srv.sys
01/07/2010 02:22 PM 40,832 zumbus.sys
02/11/2010 08:02 AM 226,880 tcpip6.sys
02/24/2010 09:11 AM 455,680 mrxsmb.sys
03/12/2010 03:16 PM 216,200 avgldx86.sys
04/19/2010 08:47 PM 41,984 usbaapl.sys
06/02/2010 09:34 AM 29,584 avgmfx86.sys
06/02/2010 09:34 AM 242,896 avgtdix.sys
06/29/2010 10:43 PM <DIR> UMDF
07/07/2010 08:29 AM <DIR> Avg
07/07/2010 02:43 PM <DIR> .
07/07/2010 02:43 PM <DIR> ..
354 File(s) 36,258,239 bytes
6 Dir(s) 10,686,386,176 bytes free
Virtual drives found? Environment variables ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Familia ROdriguez\Application Data
asl.log=Destination=file;OnFirstLog=command,environment
CLASSPATH=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=DJ5WFLB1
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Familia ROdriguez
LOGONSERVER=\\DJ5WFLB1
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\QuickTime\QTSystem\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 14 Stepping 8, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0e08
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=C:\Program Files\Java\jre6\lib\ext\QTJava.zip
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\FAMILI~1\LOCALS~1\Temp
TMP=C:\DOCUME~1\FAMILI~1\LOCALS~1\Temp
USERDOMAIN=DJ5WFLB1
USERNAME=Familia ROdriguez
USERPROFILE=C:\Documents and Settings\Familia ROdriguez
windir=C:\WINDOWS
Stealth malware? HelpAssistant User name HelpAssistant
Full Name Remote Desktop Help Assistant Account
Comment Account for Providing Remote Assistance
User's comment
Country code 000 (System Default)
Account active No
Account expires Never
Password last set 2/15/2010 5:33 PM
Password expires Never
Password changeable 2/15/2010 5:33 PM
Password required Yes
User may change password No
Workstations allowed All
Logon script
User profile
Home directory
Last logon 2/15/2010 5:33 PM
Logon hours allowed All
Local Group Memberships
Global Group memberships *None
The command completed successfully.
C:\documents and settings\helpassistant Found!
C:\documents and settings\helpassistant* Found!
Internet Explorer ! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main
Default_Page_URL REG_SZ
http://go.microsoft.com/fwlink/?LinkId=69157 Default_Search_URL REG_SZ
http://go.microsoft.com/fwlink/?LinkId=54896 Search Page REG_SZ
http://go.microsoft.com/fwlink/?LinkId=54896 Enable_Disk_Cache REG_SZ yes
Cache_Percent_of_Disk REG_BINARY 0A000000
Delete_Temp_Files_On_Exit REG_SZ yes
Local Page REG_SZ C:\WINDOWS\system32\blank.htm
Anchor_Visitation_Horizon REG_BINARY 01000000
Use_Async_DNS REG_SZ yes
Placeholder_Width REG_BINARY 1A000000
Placeholder_Height REG_BINARY 1A000000
Start Page REG_SZ
http://go.microsoft.com/fwlink/?LinkId=69157 CompanyName REG_SZ Microsoft Corporation
Custom_Key REG_SZ MICROSO
Wizard_Version REG_SZ 6.0.2600.0000
FullScreen REG_SZ no
Default_Secondary_Page_URL REG_MULTI_SZ \0
Extensions Off Page REG_SZ about:NoAdd-ons
Security Risk Page REG_SZ about:SecurityRisk
Check_Associations REG_SZ yes
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\ErrorThresholds
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\UrlTemplate
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings
User Agent REG_SZ Mozilla/4.0 (compatible; MSIE 8.0; Win32)
IE5_UA_Backup_Flag REG_SZ 5.0
NoNetAutodial REG_DWORD 0x0
MigrateProxy REG_DWORD 0x1
EmailName REG_SZ IEUser@
AutoConfigProxy REG_SZ wininet.dll
MimeExclusionListForCache REG_SZ multipart/mixed multipart/x-mixed-replace multipart/x-byteranges
WarnOnPost REG_BINARY 01000000
UseSchannelDirectly REG_BINARY 01000000
EnableHttp1_1 REG_DWORD 0x1
PrivacyAdvanced REG_DWORD 0x0
EnableNegotiate REG_DWORD 0x1
ProxyEnable REG_DWORD 0x1
PrivDiscUiShown REG_DWORD 0x1
ProxyOverride REG_SZ <local>
ProxyOverride.Bonjour REG_SZ
UrlEncoding REG_DWORD 0x0
SecureProtocols REG_DWORD 0x28
ZonesSecurityUpgrade REG_BINARY CAFACC967A90CA01
DisableCachingOfSSLPages REG_DWORD 0x0
WarnonZoneCrossing REG_DWORD 0x0
ProxyHttp1.1 REG_DWORD 0x0
Zdpggpledeez9m1o REG_DWORD 0x617
GlobalUserOffline REG_DWORD 0x0
ProxyServer REG_SZ http=127.0.0.1:5577
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\5.0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Cache
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Lockdown_Zones
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\P3P
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Passport
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\TemplatePolicies
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main
NoUpdateCheck REG_DWORD 0x1
NoJITSetup REG_DWORD 0x1
Disable Script Debugger REG_SZ yes
Show_ChannelBand REG_SZ No
Anchor Underline REG_SZ yes
Cache_Update_Frequency REG_SZ Once_Per_Session
Display Inline Images REG_SZ yes
Do404Search REG_BINARY 01000000
Local Page REG_SZ C:\WINDOWS\system32\blank.htm
Save_Session_History_On_Exit REG_SZ no
Show_FullURL REG_SZ no
Show_StatusBar REG_SZ yes
Show_ToolBar REG_SZ yes
Show_URLinStatusBar REG_SZ yes
Show_URLToolBar REG_SZ yes
Start Page REG_SZ
www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us Use_DlgBox_Colors REG_SZ yes
Search Page REG_SZ
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch UseHR REG_DWORD 0x1
Enable Browser Extensions REG_SZ yes
Use Search Asst REG_SZ yes
Search Bar REG_SZ
Default_Page_URL REG_SZ
www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us FullScreen REG_SZ no
Window_Placement REG_BINARY 2C0000000000000001000000FFFFFFFFFFFFFFF
FFFFFFFFFFFFFFFFF6000000060000000800300
00B8020000
NotifyDownloadComplete REG_SZ yes
XMLHTTP REG_DWORD 0x1
UseClearType REG_SZ yes
Play_Background_Sounds REG_SZ yes
Play_Animations REG_SZ yes
CompatibilityFlags REG_DWORD 0x0
IE8RunOnceLastShown REG_DWORD 0x1
IE8RunOnceLastShown_TIMESTAMP REG_BINARY 0E5A4CB7DB1DCB01
IE8TourShown REG_DWORD 0x1
IE8TourShownTime REG_BINARY 942F20D30D92CA01
Error Dlg Displayed On Every Error REG_SZ no
Check_Associations REG_SZ no
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Default Feeds
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\WindowsSearch
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search
SearchAssistant REG_SZ
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm CustomizeSearch REG_SZ
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm Default_Page_URL REG_SZ
www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us Start Page REG_SZ
www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks
{CFBFAE00-17A6-11D0-99CB-00C04FD64497} REG_SZ
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar
{2318C2B1-4965-11d4-9B18-009027A5CD4F} REG_BINARY 00
{EF99BD32-C1FB-11D2-892F-0090271D4F88} REG_BINARY 00
! REG.EXE VERSION 3.0
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Google Search
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Translate English Word
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Backward Links
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Cached Snapshot of Page
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Similar Pages
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Translate Page into English
Protocol hijack? Security Center ! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center
FirstRunDisabled REG_DWORD 0x1
AntiVirusDisableNotify REG_DWORD 0x0
FirewallDisableNotify REG_DWORD 0x0
UpdatesDisableNotify REG_DWORD 0x0
AntiVirusOverride REG_DWORD 0x0
FirewallOverride REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile
EnableFirewall REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
DisableNotifications REG_DWORD 0x0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts
! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe REG_SZ C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe REG_SZ C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL
C:\Program Files\America Online 9.0\waol.exe REG_SZ C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL
C:\Program Files\AVG\AVG9\avgemc.exe REG_SZ C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe
C:\Program Files\AVG\AVG9\avgupd.exe REG_SZ C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe
C:\Program Files\AVG\AVG9\avgnsx.exe REG_SZ C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe
C:\Program Files\Windows Live\Messenger\wlcsdk.exe REG_SZ C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe REG_SZ C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
%windir%\Network Diagnostic\xpnetdiag.exe REG_SZ %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000
C:\Program Files\uTorrent\uTorrent.exe REG_SZ C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent
C:\Program Files\VideoLAN\VLC\vlc.exe REG_SZ C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player
C:\Program Files\TeamViewer\Version5\TeamViewer.exe REG_SZ C:\Program Files\TeamViewer\Version5\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application
C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe REG_SZ C:\WINDOWS\pchealth\helpctr\binaries\helpctr.exe:*:Enabled:Remote Assistance - Windows Messenger and Voice
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe REG_SZ C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger
C:\Program Files\QuickTime\QuickTimePlayer.exe REG_SZ C:\Program Files\QuickTime\QuickTimePlayer.exe:*:Enabled:QuickTime Player
C:\Program Files\Bonjour\mDNSResponder.exe REG_SZ C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour
C:\Program Files\iTunes\iTunes.exe REG_SZ C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes
C:\Program Files\FrostWire\FrostWire.exe REG_SZ C:\Program Files\FrostWire\FrostWire.exe:*:Enabled:FrostWire
Uninstall List ! REG.EXE VERSION 3.0
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
AOL Connectivity Services REG_SZ
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AddressBook
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Adobe Flash Player Plugin
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Adobe_2ac78060bc5856b0c1cf873bb919b58
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ASIO4ALL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Audacity 1.3 Beta (Unicode)_is1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG9Uninstall
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AviSynth
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Branding
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Broadcom 802.11b Network Adapter
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Connection Manager
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Dell Digital Jukebox Driver
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DirectAnimation
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DirectDrawEx
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DXM_Runtime
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Edirol HQ Orchestral v1.01
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FL Studio 9
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Fontcore
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free Audio CD Burner_is1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free Audio Converter_is1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free Video to iPod Converter_is1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free YouTube Download_is1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Free YouTube to MP3 Converter_is1
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ICW
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IDNMitigationAPIs
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IE40
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IE4Data
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IE5BAKEX
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ie7
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ie8
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IEData
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IL Download Manager
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windo