View Single Post
  #8  
Old September 18th, 2009, 05:56 AM
Tyler05's Avatar
Tyler05 Tyler05 is offline
Senior Member
 
Join Date: Jun 2004
O/S: Windows XP Home
Location: Corte Madera, CA
Age: 37
Posts: 220
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\standard profile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AVG\AVG8\avgam.exe"="C:\Program Files\AVG\AVG8\avgam.exe:*:Enabled:avgam.exe"
"C:\Program Files\AVG\AVG8\avgdiag.exe"="C:\Program Files\AVG\AVG8\avgdiag.exe:*:Enabled:avgdiag.exe"
"C:\Program Files\AVG\AVG8\avgdiagex.exe"="C:\Program Files\AVG\AVG8\avgdiagex.exe:*:Enabled:avgdiagex.e xe"
"C:\Program Files\AVG\AVG8\avgemc.exe"="C:\Program Files\AVG\AVG8\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\World of Warcraft\Launcher.exe"="C:\Program Files\World of Warcraft\Launcher.exe:*:Enabled:Blizzard Launcher"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\DNA\btdna.exe"="C:\Program Files\DNA\btdna.exe:*:EnabledNA"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorre nt"
"C:\Program Files\Starcraft\StarCraft.exe"="C:\Program Files\Starcraft\StarCraft.exe:*:Enabled:Starcraft"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\World of Warcraft\BackgroundDownloader.exe"="C:\Program Files\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizza rd Downloader"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Sony\Station\LaunchPad\LaunchPad.exe"="C:\Pr ogram Files\Sony\Station\LaunchPad\LaunchPad.exe:*:Enabl ed:LaunchPad"
"C:\Program Files\Sony\EverQuest\EQVoiceService.exe"="C:\Progr am Files\Sony\EverQuest\EQVoiceService.exe:*:Enabled: EQVoiceService"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\sys tem32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\sys tem32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Ventrilo\Ventrilo.exe"="C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\servic es\sharedaccess\parameters\firewallpolicy\domainpr ofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32 \sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{95b3f905-2b1a-11de-ae58-001838041ca2}]
shell\AutoRun\command - wd_windows_tools\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{b444faf6-2a9e-11de-afb8-806d6172696f}]
shell\AutoRun\command - E:\Autorun.exe root.ini


======List of files/folders created in the last 1 months======

2009-09-17 19:50:23 ----D---- C:\rsit
2009-09-17 18:27:27 ----D---- C:\Documents and Settings\Tyler\Application Data\Ventrilo
2009-09-17 18:27:21 ----D---- C:\Program Files\Ventrilo
2009-09-17 18:27:17 ----A---- C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
2009-09-10 21:00:02 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2009-09-10 21:00:01 ----D---- C:\WINDOWS\system32\LogFiles
2009-09-10 21:00:01 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2009-09-10 21:00:01 ----A---- C:\WINDOWS\system32\pbsvc.exe
2009-09-10 20:59:58 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2009-09-10 20:59:57 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2009-09-10 20:59:57 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll
2009-09-10 20:59:57 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2009-09-10 20:59:57 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2009-09-10 20:59:57 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2009-09-10 20:59:56 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2009-09-10 20:59:56 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2009-09-10 20:59:56 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2009-09-10 20:59:55 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-09-10 20:59:55 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-09-10 20:59:53 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2009-09-10 20:59:53 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2009-09-10 20:59:51 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-09-10 20:59:51 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2009-09-10 20:59:50 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-09-10 20:59:50 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-09-10 20:59:50 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-09-10 20:59:50 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-09-10 20:59:49 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-09-10 20:59:49 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-09-10 20:59:49 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-09-10 20:59:49 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-09-10 20:59:48 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-09-10 20:59:48 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-09-10 20:59:40 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-09-10 20:59:40 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-09-10 20:59:40 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-09-10 20:59:39 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-09-10 20:59:39 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-09-10 20:59:39 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-09-10 20:59:38 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-09-10 20:59:38 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-09-10 20:59:37 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-09-10 20:05:35 ----D---- C:\Program Files\Steam
2009-09-07 17:33:37 ----A---- C:\WINDOWS\ODBC.INI

======List of files/folders modified in the last 1 months======

2009-09-17 21:53:45 ----D---- C:\WINDOWS\Temp
2009-09-17 21:52:53 ----D---- C:\Documents and Settings\Tyler\Application Data\FileZilla
2009-09-17 21:52:17 ----D---- C:\Program Files\Mozilla Firefox
2009-09-17 21:50:10 ----D---- C:\Documents and Settings\Tyler\Application Data\DNA
2009-09-17 20:10:15 ----SD---- C:\WINDOWS\Tasks
2009-09-17 20:09:59 ----D---- C:\Program Files\DNA
2009-09-17 19:57:20 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-09-17 19:54:19 ----D---- C:\WINDOWS\Prefetch
2009-09-17 18:27:24 ----SHD---- C:\WINDOWS\Installer
2009-09-17 18:27:21 ----RD---- C:\Program Files
2009-09-17 18:27:17 ----D---- C:\WINDOWS
2009-09-17 18:27:08 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2009-09-17 18:07:58 ----HD---- C:\WINDOWS\inf
2009-09-17 18:07:57 ----D---- C:\WINDOWS\system32\CatRoot2
2009-09-17 07:49:47 ----RSD---- C:\WINDOWS\Fonts
2009-09-10 21:01:49 ----D---- C:\WINDOWS\system32
2009-09-10 21:00:32 ----D---- C:\WINDOWS\system32\drivers
2009-09-10 20:59:48 ----RSD---- C:\WINDOWS\assembly
2009-09-10 20:59:25 ----D---- C:\WINDOWS\system32\DirectX
2009-09-07 18:11:48 ----D---- C:\Program Files\FileZilla FTP Client
2009-09-07 17:35:43 ----SD---- C:\Documents and Settings\Tyler\Application Data\Microsoft
2009-09-07 17:33:23 ----D---- C:\Program Files\Common Files\Microsoft Shared
2009-09-07 17:33:08 ----D---- C:\Program Files\Microsoft Office
2009-09-07 17:31:21 ----D---- C:\WINDOWS\system
2009-09-06 22:14:59 ----D---- C:\Program Files\Sony
2009-09-06 22:09:25 ----HD---- C:\Program Files\InstallShield Installation Information

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2009-04-27 325896]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2009-04-27 27784]
R1 AvgTdiX;AVG8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2009-04-27 108552]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-03-19 23400]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-04-25 25280]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-10-02 4613120]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-09-16 6132576]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-12-14 85120]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S3 a1a37hcp;a1a37hcp; C:\WINDOWS\system32\drivers\a1a37hcp.sys []
S3 ALLOW-IO;ALLOW-IO; \??\E:\ALLOW-IO.sys []
S3 PnkBstrK;PnkBstrK; \??\C:\WINDOWS\system32\drivers\PnkBstrK.sys []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-06-05 144712]
R2 avg8emc;AVG8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2009-04-27 908568]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2009-04-27 298776]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-09-16 163908]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-09-10 75064]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-09-10 189480]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-07-13 542496]
S2 gupdate1ca011ad3d152ee;Google Update Service (gupdate1ca011ad3d152ee); C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-09 133104]
S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-09 190448]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspn et_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\msco rsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-04-19 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\Presen tationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Reply With Quote