KMBowen01
2008-03-29, 16:50
StartupList report, 3/29/2008, 11:39:59 AM
StartupList version: 1.52.2
Started from : C:\Program Files\Trend Micro\HijackThis\HijackThis.EXE
Detected: Windows XP SP2 (WinNT 5.01.2600)
Detected: Internet Explorer v7.00 (7.00.6000.16608)
* Using default options
==================================================
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\Program Files\Lexmark 2400 Series\lxcrmon.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\Program Files\Lexmark 2400 Series\ezprint.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\lxcrcoms.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\NOTEPAD.EXE
--------------------------------------------------
Listing of startup folders:
Shell folders Common Startup:
[C:\Documents and Settings\All Users\Start Menu\Programs\Startup]
AutoCAD Startup Accelerator.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart16.exe
Compaq Connections.lnk = C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
ExpressPLNRnote.lnk = C:\Program Files\Creative Home\Hallmark Card Studio Express\Planner\PLNRnote.exe
--------------------------------------------------
Checking Windows NT UserInit:
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
UserInit = C:\WINDOWS\system32\userinit.exe,
--------------------------------------------------
Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Recguard = C:\WINDOWS\SMINST\RECGUARD.EXE
HPBootOp = "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
lxcrmon.exe = "C:\Program Files\Lexmark 2400 Series\lxcrmon.exe"
EzPrint = "C:\Program Files\Lexmark 2400 Series\ezprint.exe"
ddoctorv2 = "C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2
HP Software Update = C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
TkBellExe = "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
LXCRCATS = rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16
SunJavaUpdateSched = "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
ISUSPM Startup = C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
--------------------------------------------------
Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
MsnMsgr = "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
SpybotSD TeaTimer = C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
--------------------------------------------------
Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:
Shell=*INI section not found*
SCRNSAVE.EXE=*INI section not found*
drivers=*INI section not found*
Shell & screensaver key from Registry:
Shell=Explorer.exe
SCRNSAVE.EXE=*Registry value not found*
drivers=*Registry value not found*
Policies Shell key:
HKCU\..\Policies: Shell=*Registry value not found*
HKLM\..\Policies: Shell=*Registry value not found*
--------------------------------------------------
Enumerating Browser Helper Objects:
(no name) - C:\Program Files\Lexmark Toolbar\toolband.dll - {1017A80C-6F09-4548-A84D-EDD6AC9525F0}
(no name) - (no file) - {16707FB6-AFF7-43EC-86E7-031AEADC8F82}
(no name) - (no file) - {18594300-565A-4504-862B-44F6A31243AA}
(no name) - (no file) - {187AF423-8278-4453-9F29-A310FA3DE196}
(no name) - (no file) - {2B8A0F08-7BD8-41E7-9306-86BC47DDEF79}
(no name) - (no file) - {2DEAE7EE-7D6F-49C8-B1C3-B4182E0E1945}
(no name) - (no file) - {34B994B2-F38C-46FA-9B4C-4F88B827ABCE}
(no name) - (no file) - {3A55CE82-6A53-4E82-AFBA-4A5548606294}
(no name) - (no file) - {3DC253E2-BA87-43CD-935B-854FF590F36A}
(no name) - (no file) - {485B67DF-EEEC-4D27-ACCA-CC08C43061CE}
(no name) - (no file) - {48C900FE-41DA-442F-BCFD-A792B6B4733F}
(no name) - (no file) - {4A831016-CA95-431D-894B-897A15E5914C}
(no name) - (no file) - {4C046A11-EA52-41CF-83D8-A9FB68725C13}
(no name) - (no file) - {4D9865A7-775F-4F18-81A6-D0D9CBDC9C8C}
(no name) - C:\PROGRA~1\COMCAS~1\COMCAS~1.DLL - {4E7BD74F-2B8D-469E-93BE-BE2DF4D9AE29}
(no name) - (no file) - {4EA7CAB4-DF8A-402F-B9F2-1E6A13DDC14A}
(no name) - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll - {53707962-6F74-2D53-2644-206D7942484F}
(no name) - (no file) - {562970A5-053E-4A7C-85AA-50B50E33B601}
(no name) - (no file) - {57F51F8C-2A03-4D4D-A89E-13AE8BDAC8B8}
(no name) - (no file) - {60CA9CFC-6EA4-4F8C-AE95-BFFAB2DBC80F}
(no name) - C:\WINDOWS\dsaip32b.dll - {687A466A-D7CB-4FDF-965C-92462A82D7F0}
(no name) - (no file) - {6E31D724-40A5-4495-ACF5-2A1DC43AF14C}
(no name) - (no file) - {717C1727-DF7D-4637-9D61-4749875BA1E0}
(no name) - (no file) - {717E8FAE-816A-44FA-9FD0-75F81F388896}
(no name) - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
(no name) - (no file) - {76AC5C0F-641D-42B0-A0E2-436B7486D916}
scriptproxy - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll - {7DB2D5A0-7241-4E79-B68D-6309F01C5231}
(no name) - (no file) - {8339BA61-0EC8-4CD8-B673-0A4EEDA4DBE0}
(no name) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll - {9030D464-4C02-4ABF-8ECC-5164760863C6}
(no name) - (no file) - {9237ADE3-E075-4569-83F6-77322DA793BB}
(no name) - (no file) - {9D55C6C3-0E25-45B9-BFD6-8653E91F8137}
(no name) - (no file) - {9FA52483-FAC3-4344-8228-420BC20ADA10}
(no name) - (no file) - {A339F871-5D79-4C58-AAD8-D0FB3F32F8B6}
(no name) - C:\WINDOWS\system32\ssqrs.dll (file missing) - {A3DA6312-DB42-4A62-A264-C8248F6A2389}
(no name) - (no file) - {A824F585-849C-47BC-99AD-8A739F844089}
(no name) - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\plugin\WebHelper.dll - {AAAE832A-5FFF-4661-9C8F-369692D1DCB9}
(no name) - C:\Program Files\Windows Live Toolbar\msntb.dll - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}
(no name) - (no file) - {C089D1E4-D77D-417E-BDC8-0C05CA99DDC2}
(no name) - (no file) - {CA506F2B-623A-462F-BB46-791261F4AF0B}
(no name) - (no file) - {CFF77473-219D-4625-9109-847B9C264C18}
(no name) - (no file) - {D5519A4A-BEA0-4C80-BCC7-F2575FF1BBA2}
(no name) - (no file) - {E3599C8E-B9F1-48DE-8B65-3227A79E4F9D}
(no name) - (no file) - {E9A4953F-3DDE-46D1-BCD4-D06E82FE5D6D}
(no name) - (no file) - {F8C58E2B-588C-4006-B536-DC9B03AEDF10}
(no name) - (no file) - {FB48E70E-7775-476C-830A-9E8BB466E127}
(no name) - (no file) - {FD630687-E79C-4E15-81EB-82D7C70425B8}
--------------------------------------------------
Enumerating Task Scheduler jobs:
Check Updates for Windows Live Toolbar.job
McDefragTask.job
McQcTask.job
--------------------------------------------------
Enumerating Download Program Files:
[Windows Genuine Advantage Validation Tool]
InProcServer32 = C:\WINDOWS\system32\LegitCheckControl.DLL
CODEBASE = http://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
[{D27CDB6E-AE6D-11CF-96B8-444553540000}]
CODEBASE = http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
--------------------------------------------------
Enumerating ShellServiceObjectDelayLoad items:
PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
CDBurn: C:\WINDOWS\system32\SHELL32.dll
WebCheck: C:\WINDOWS\system32\webcheck.dll
SysTray: C:\WINDOWS\system32\stobject.dll
WPDShServiceObj: C:\WINDOWS\system32\WPDShServiceObj.dll
--------------------------------------------------
End of report, 9,629 bytes
Report generated in 0.157 seconds
Command line options:
/verbose - to add additional info on each section
/complete - to include empty sections and unsuspicious data
/full - to include several rarely-important sections
/force9x - to include Win9x-only startups even if running on WinNT
/forcent - to include WinNT-only startups even if running on Win9x
/forceall - to include all Win9x and WinNT startups, regardless of platform
/history - to list version history only
StartupList version: 1.52.2
Started from : C:\Program Files\Trend Micro\HijackThis\HijackThis.EXE
Detected: Windows XP SP2 (WinNT 5.01.2600)
Detected: Internet Explorer v7.00 (7.00.6000.16608)
* Using default options
==================================================
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\Program Files\Lexmark 2400 Series\lxcrmon.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\Program Files\Lexmark 2400 Series\ezprint.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\lxcrcoms.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\NOTEPAD.EXE
--------------------------------------------------
Listing of startup folders:
Shell folders Common Startup:
[C:\Documents and Settings\All Users\Start Menu\Programs\Startup]
AutoCAD Startup Accelerator.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart16.exe
Compaq Connections.lnk = C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
ExpressPLNRnote.lnk = C:\Program Files\Creative Home\Hallmark Card Studio Express\Planner\PLNRnote.exe
--------------------------------------------------
Checking Windows NT UserInit:
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
UserInit = C:\WINDOWS\system32\userinit.exe,
--------------------------------------------------
Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Recguard = C:\WINDOWS\SMINST\RECGUARD.EXE
HPBootOp = "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
lxcrmon.exe = "C:\Program Files\Lexmark 2400 Series\lxcrmon.exe"
EzPrint = "C:\Program Files\Lexmark 2400 Series\ezprint.exe"
ddoctorv2 = "C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2
HP Software Update = C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
TkBellExe = "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
LXCRCATS = rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16
SunJavaUpdateSched = "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
ISUSPM Startup = C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
--------------------------------------------------
Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
MsnMsgr = "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
SpybotSD TeaTimer = C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
--------------------------------------------------
Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:
Shell=*INI section not found*
SCRNSAVE.EXE=*INI section not found*
drivers=*INI section not found*
Shell & screensaver key from Registry:
Shell=Explorer.exe
SCRNSAVE.EXE=*Registry value not found*
drivers=*Registry value not found*
Policies Shell key:
HKCU\..\Policies: Shell=*Registry value not found*
HKLM\..\Policies: Shell=*Registry value not found*
--------------------------------------------------
Enumerating Browser Helper Objects:
(no name) - C:\Program Files\Lexmark Toolbar\toolband.dll - {1017A80C-6F09-4548-A84D-EDD6AC9525F0}
(no name) - (no file) - {16707FB6-AFF7-43EC-86E7-031AEADC8F82}
(no name) - (no file) - {18594300-565A-4504-862B-44F6A31243AA}
(no name) - (no file) - {187AF423-8278-4453-9F29-A310FA3DE196}
(no name) - (no file) - {2B8A0F08-7BD8-41E7-9306-86BC47DDEF79}
(no name) - (no file) - {2DEAE7EE-7D6F-49C8-B1C3-B4182E0E1945}
(no name) - (no file) - {34B994B2-F38C-46FA-9B4C-4F88B827ABCE}
(no name) - (no file) - {3A55CE82-6A53-4E82-AFBA-4A5548606294}
(no name) - (no file) - {3DC253E2-BA87-43CD-935B-854FF590F36A}
(no name) - (no file) - {485B67DF-EEEC-4D27-ACCA-CC08C43061CE}
(no name) - (no file) - {48C900FE-41DA-442F-BCFD-A792B6B4733F}
(no name) - (no file) - {4A831016-CA95-431D-894B-897A15E5914C}
(no name) - (no file) - {4C046A11-EA52-41CF-83D8-A9FB68725C13}
(no name) - (no file) - {4D9865A7-775F-4F18-81A6-D0D9CBDC9C8C}
(no name) - C:\PROGRA~1\COMCAS~1\COMCAS~1.DLL - {4E7BD74F-2B8D-469E-93BE-BE2DF4D9AE29}
(no name) - (no file) - {4EA7CAB4-DF8A-402F-B9F2-1E6A13DDC14A}
(no name) - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll - {53707962-6F74-2D53-2644-206D7942484F}
(no name) - (no file) - {562970A5-053E-4A7C-85AA-50B50E33B601}
(no name) - (no file) - {57F51F8C-2A03-4D4D-A89E-13AE8BDAC8B8}
(no name) - (no file) - {60CA9CFC-6EA4-4F8C-AE95-BFFAB2DBC80F}
(no name) - C:\WINDOWS\dsaip32b.dll - {687A466A-D7CB-4FDF-965C-92462A82D7F0}
(no name) - (no file) - {6E31D724-40A5-4495-ACF5-2A1DC43AF14C}
(no name) - (no file) - {717C1727-DF7D-4637-9D61-4749875BA1E0}
(no name) - (no file) - {717E8FAE-816A-44FA-9FD0-75F81F388896}
(no name) - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
(no name) - (no file) - {76AC5C0F-641D-42B0-A0E2-436B7486D916}
scriptproxy - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll - {7DB2D5A0-7241-4E79-B68D-6309F01C5231}
(no name) - (no file) - {8339BA61-0EC8-4CD8-B673-0A4EEDA4DBE0}
(no name) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll - {9030D464-4C02-4ABF-8ECC-5164760863C6}
(no name) - (no file) - {9237ADE3-E075-4569-83F6-77322DA793BB}
(no name) - (no file) - {9D55C6C3-0E25-45B9-BFD6-8653E91F8137}
(no name) - (no file) - {9FA52483-FAC3-4344-8228-420BC20ADA10}
(no name) - (no file) - {A339F871-5D79-4C58-AAD8-D0FB3F32F8B6}
(no name) - C:\WINDOWS\system32\ssqrs.dll (file missing) - {A3DA6312-DB42-4A62-A264-C8248F6A2389}
(no name) - (no file) - {A824F585-849C-47BC-99AD-8A739F844089}
(no name) - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\plugin\WebHelper.dll - {AAAE832A-5FFF-4661-9C8F-369692D1DCB9}
(no name) - C:\Program Files\Windows Live Toolbar\msntb.dll - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}
(no name) - (no file) - {C089D1E4-D77D-417E-BDC8-0C05CA99DDC2}
(no name) - (no file) - {CA506F2B-623A-462F-BB46-791261F4AF0B}
(no name) - (no file) - {CFF77473-219D-4625-9109-847B9C264C18}
(no name) - (no file) - {D5519A4A-BEA0-4C80-BCC7-F2575FF1BBA2}
(no name) - (no file) - {E3599C8E-B9F1-48DE-8B65-3227A79E4F9D}
(no name) - (no file) - {E9A4953F-3DDE-46D1-BCD4-D06E82FE5D6D}
(no name) - (no file) - {F8C58E2B-588C-4006-B536-DC9B03AEDF10}
(no name) - (no file) - {FB48E70E-7775-476C-830A-9E8BB466E127}
(no name) - (no file) - {FD630687-E79C-4E15-81EB-82D7C70425B8}
--------------------------------------------------
Enumerating Task Scheduler jobs:
Check Updates for Windows Live Toolbar.job
McDefragTask.job
McQcTask.job
--------------------------------------------------
Enumerating Download Program Files:
[Windows Genuine Advantage Validation Tool]
InProcServer32 = C:\WINDOWS\system32\LegitCheckControl.DLL
CODEBASE = http://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
[{D27CDB6E-AE6D-11CF-96B8-444553540000}]
CODEBASE = http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
--------------------------------------------------
Enumerating ShellServiceObjectDelayLoad items:
PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
CDBurn: C:\WINDOWS\system32\SHELL32.dll
WebCheck: C:\WINDOWS\system32\webcheck.dll
SysTray: C:\WINDOWS\system32\stobject.dll
WPDShServiceObj: C:\WINDOWS\system32\WPDShServiceObj.dll
--------------------------------------------------
End of report, 9,629 bytes
Report generated in 0.157 seconds
Command line options:
/verbose - to add additional info on each section
/complete - to include empty sections and unsuspicious data
/full - to include several rarely-important sections
/force9x - to include Win9x-only startups even if running on WinNT
/forcent - to include WinNT-only startups even if running on Win9x
/forceall - to include all Win9x and WinNT startups, regardless of platform
/history - to list version history only