PDA

View Full Version : win32.agent.baf removal



anthem12
2009-12-01, 18:49
SD has been unsuccessful at removing this infection (infection respawns on reboot and/or log out)
Thing is csrss.exe appears to not actually be using any CPU....
To my knowledge csrss.exe is an actual Microsoft process but it can be be piggybacked on... didn't know whether I should try removing it from the registry or not due to possible system instability....
Got me scratching my head anyways.... :blink:

Here is the short of the log:


Win32.Agent.baf: [SBI $4696926B] Settings (Registry value, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\C:\Windows\csrss.exe


--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-03-05 TeaTimer.exe (1.6.6.32)
2009-05-09 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-11-04 advcheck.dll (1.6.5.20)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2009-10-08 Includes\Adware.sbi (*)
2009-11-24 Includes\AdwareC.sbi (*)
2009-01-22 Includes\Cookies.sbi (*)
2009-11-03 Includes\Dialer.sbi (*)
2009-11-24 Includes\DialerC.sbi (*)
2009-01-22 Includes\HeavyDuty.sbi (*)
2009-05-26 Includes\Hijackers.sbi (*)
2009-11-24 Includes\HijackersC.sbi (*)
2009-10-20 Includes\Keyloggers.sbi (*)
2009-11-24 Includes\KeyloggersC.sbi (*)
2009-11-24 Includes\Malware.sbi (*)
2009-11-25 Includes\MalwareC.sbi (*)
2009-03-25 Includes\PUPS.sbi (*)
2009-11-24 Includes\PUPSC.sbi (*)
2009-01-22 Includes\Revision.sbi (*)
2009-01-13 Includes\Security.sbi (*)
2009-11-24 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2009-11-03 Includes\Spyware.sbi (*)
2009-11-24 Includes\SpywareC.sbi (*)
2009-06-08 Includes\Tracks.uti
2009-11-17 Includes\Trojans.sbi (*)
2009-11-24 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll

anthem12
2009-12-01, 18:57
--- Search result list ---
Win32.Agent.baf: [SBI $4696926B] Settings (Registry value, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\C:\Windows\csrss.exe


--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

--- System information ---
Windows Vista (Build: 6000) (6.0.6000)
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2


--- Startup entries list ---
Located: HK_LM:Run, Adobe ARM
command: "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
file: C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
size: 935288
MD5: 3103FE27C967675B019E880AA6DA3D6D

Located: HK_LM:Run, Adobe Reader Speed Launcher
command: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
file: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
size: 39792
MD5: E284188C5CF416378CC740EB13059A50

Located: HK_LM:Run, Ad-Watch
command: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
file: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
size: 788880
MD5: BB4588AEBF480C95AD2B4FC92F99995D

Located: HK_LM:Run, GrooveMonitor
command: "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
file: C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
size: 31016
MD5: 38D198A2DD54A67120040566A38103BA

Located: HK_LM:Run, HotKeysCmds
command: C:\Windows\system32\hkcmd.exe
file: C:\Windows\system32\hkcmd.exe
size: 173592
MD5: 63FFA18E782DEBBE8CC62195AD3783CA

Located: HK_LM:Run, HSON
command: %ProgramFiles%\TOSHIBA\TBS\HSON.exe
file: C:\Program Files\TOSHIBA\TBS\HSON.exe
size: 55416
MD5: 15058804D8A48C67C007DD1D797CC72A

Located: HK_LM:Run, IgfxTray
command: C:\Windows\system32\igfxtray.exe
file: C:\Windows\system32\igfxtray.exe
size: 141848
MD5: 48A9D4961DD0C0E4DECD99DA597AE7B7

Located: HK_LM:Run, IntelliPoint
command: "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
file: C:\Program Files\Microsoft IntelliPoint\ipoint.exe
size: 849280
MD5: F4E7979D8ADEBEEDEAD33019A5BD52BF

Located: HK_LM:Run, itype
command: "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
file: C:\Program Files\Microsoft IntelliType Pro\itype.exe
size: 813912
MD5: F2E2AAD0EE3E886161A907F473A10B20

Located: HK_LM:Run, KeNotify
command: C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
file: C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
size: 34352
MD5: AFD400AEBCAB252C99E60991FF00D9D2

Located: HK_LM:Run, OODefragTray
command: C:\Windows\system32\oodtray.exe
file: C:\Windows\system32\oodtray.exe
size: 2553088
MD5: C881A5E34F0D897B680B45D5539D2260

Located: HK_LM:Run, Persistence
command: C:\Windows\system32\igfxpers.exe
file: C:\Windows\system32\igfxpers.exe
size: 150552
MD5: BBF84F08A343374BED5687AA6C5797B8

Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files\QuickTime\QTTask.exe" -atboottime
file: C:\Program Files\QuickTime\QTTask.exe
size: 417792
MD5: 8CBD57D84729DEBEE1E83CB5FA3E3D7A

Located: HK_LM:Run, RtHDVCpl
command: RtHDVCpl.exe
file: C:\Windows\RtHDVCpl.exe
size: 4489216
MD5: 82EAD5A5804BB2937416254A45B6C3C0

Located: HK_LM:Run, SmoothView
command: %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
file: C:\Program Files\Toshiba\SmoothView\SmoothView.exe
size: 448632
MD5: 9C8EC2B3E7912A50EE8F02AFE2AC2121

Located: HK_LM:Run, SunJavaUpdateSched
command: "C:\Program Files\Java\jre6\bin\jusched.exe"
file: C:\Program Files\Java\jre6\bin\jusched.exe
size: 149280
MD5: 90E0F7FDCAC66FB50C1CE1A1C7396642

Located: HK_LM:Run, SVPWUTIL
command: C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
file: C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe
size: 438272
MD5: E8FE2998200DBD6FA80D253F136713BA

Located: HK_LM:Run, SynTPEnh
command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 1316136
MD5: DE3BF6F6A72E8A26945E1B8EAFA5DC64

Located: HK_LM:Run, TkBellExe
command: "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
file: C:\Program Files\Common Files\Real\Update_OB\realsched.exe
size: 185896
MD5: 89D583FC41D48328128A974C25AFAEB7

Located: HK_LM:Run, TPwrMain
command: %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
file: C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE
size: 411192
MD5: F5EF0675D6EC37F81F8794AEC9630BE0

Located: HK_LM:Run, Update
command: C:\Windows\csrss.exe
file: C:\Windows\csrss.exe
size: 110592
MD5: 7FD55B60EFF7858B556D4CF1A67E6781

Located: HK_LM:Run, Windows Mobile-based device management
command: %windir%\WindowsMobile\wmdSync.exe
file: C:\Windows\WindowsMobile\wmdSync.exe
size: 215552
MD5: 4AB05041D5C922B9A7A5D9059F5538CD

Located: HK_CU:Run, Sidebar
where: S-1-5-19...
command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
file: C:\Program Files\Windows Sidebar\Sidebar.exe
size: 1232896
MD5: 582F3A0BA61D8F0D50C66B592808B6D6

Located: HK_CU:Run, WindowsWelcomeCenter
where: S-1-5-19...
command: rundll32.exe oobefldr.dll,ShowWelcomeCenter
file: C:\Windows\system32\oobefldr.dll
size: 2159104
MD5: 736A6F5FF321AAAAB140B1100E345F04

Located: HK_CU:Run, Sidebar
where: S-1-5-20...
command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
file: C:\Program Files\Windows Sidebar\Sidebar.exe
size: 1232896
MD5: 582F3A0BA61D8F0D50C66B592808B6D6

Located: HK_CU:Run, WindowsWelcomeCenter
where: S-1-5-20...
command: rundll32.exe oobefldr.dll,ShowWelcomeCenter
file: C:\Windows\system32\oobefldr.dll
size: 2159104
MD5: 736A6F5FF321AAAAB140B1100E345F04

Located: HK_CU:Run, ehTray.exe
where: S-1-5-21-3398961202-3135422642-1813794195-1005...
command: C:\Windows\ehome\ehTray.exe
file: C:\Windows\ehome\ehTray.exe
size: 125440
MD5: 2E0953919779A44BF9DFB7B07C58535A

Located: HK_CU:Run, Skype
where: S-1-5-21-3398961202-3135422642-1813794195-1005...
command: "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
file: C:\Program Files\Skype\Phone\Skype.exe
size: 25623336
MD5: BF9EAB227D409CE1E75C23BB10CF5DBC

Located: HK_CU:Run, TOSCDSPD
where: S-1-5-21-3398961202-3135422642-1813794195-1005...
command: TOSCDSPD.EXE
file: TOSCDSPD.EXE
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: Startup (common), Bluetooth.lnk
where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
file: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
size: 715568
MD5: FAA1AD70DA329768FA53041733EB4B57

Located: Startup (user), OneNote 2007 Screen Clipper and Launcher.lnk
where: C:\Users\mercury996\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
file: C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
size: 98632
MD5: D91AFB6D2A0DA7539B74FB5838775D94

Located: WinLogon, igfxcui
command: igfxdev.dll
file: igfxdev.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!



--- Browser helper object list ---
{DBC80044-A445-435b-BC74-9C25C1C588A9} (Java(tm) Plug-In 2 SSV Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Java(tm) Plug-In 2 SSV Helper
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2ssv.dll
Short name:
Date (created): 4/4/2009 8:18:48 AM
Date (last access): 7/25/2073 4:23:58 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 41760
Attributes: archive
MD5: 1E57B1A44C7DFFA1C38534279C14B3CE
CRC32: BA79295C
Version: 6.0.150.3



--- ActiveX list ---
{17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool)
DPF name:
CLSID name: Windows Genuine Advantage Validation Tool
Installer: C:\Windows\Downloaded Program Files\LegitCheckControl.inf
Codebase: http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab
description:
classification: Legitimate
known filename: LegitCheckControl.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\Windows\system32\
Long name: LegitCheckControl.DLL
Short name: LEGITC~1.DLL
Date (created): 3/20/2008 6:06:36 PM
Date (last access): 3/20/2008 6:06:36 PM
Date (last write): 3/20/2008 6:06:36 PM
Filesize: 1480232
Attributes: archive
MD5: E058C4821D48E0A67F6069CB50818D44
CRC32: 3513AE02
Version: 1.7.69.2

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2iexp.dll
Short name:
Date (created): 4/4/2009 8:18:48 AM
Date (last access): 7/25/2073 4:23:58 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 100128
Attributes: archive
MD5: C1968E3263202DC9CCF9A832C5018F90
CRC32: 5D6D1C9B
Version: 6.0.150.3

{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2iexp.dll
Short name:
Date (created): 4/4/2009 8:18:48 AM
Date (last access): 7/25/2073 4:23:58 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 100128
Attributes: archive
MD5: C1968E3263202DC9CCF9A832C5018F90
CRC32: 5D6D1C9B
Version: 6.0.150.3

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre6\bin\
Long name: npjpi160_15.dll
Short name: NPJPI1~1.DLL
Date (created): 7/25/2009 2:00:36 AM
Date (last access): 7/25/2073 4:24:12 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 136992
Attributes: archive
MD5: C79293AA0C64855B6FC3E0E874B472CE
CRC32: EA2282C5
Version: 6.0.150.3



--- Process list ---
PID: 5600 (1044) C:\Windows\system32\Dwm.exe
size: 83456
MD5: E87B968F3D49117445893EB0503FE34F
PID: 2856 (1076) C:\Windows\system32\taskeng.exe
size: 166400
MD5: 1226E9FAE5B8508801EC974E3C9D9C14
PID: 2160 (5152) C:\Windows\Explorer.EXE
size: 2923520
MD5: 6D06CD98D954FE87FB2DB8108793B399
PID: 5588 (2160) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 1316136
MD5: DE3BF6F6A72E8A26945E1B8EAFA5DC64
PID: 3040 (2160) C:\Program Files\Toshiba\Utilities\KeNotify.exe
size: 34352
MD5: AFD400AEBCAB252C99E60991FF00D9D2
PID: 2072 (2160) C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
size: 411192
MD5: F5EF0675D6EC37F81F8794AEC9630BE0
PID: 2264 (2160) C:\Program Files\Toshiba\SmoothView\SmoothView.exe
size: 448632
MD5: 9C8EC2B3E7912A50EE8F02AFE2AC2121
PID: 1304 (2160) C:\Windows\RtHDVCpl.exe
size: 4489216
MD5: 82EAD5A5804BB2937416254A45B6C3C0
PID: 4136 (2160) C:\Windows\WindowsMobile\wmdSync.exe
size: 215552
MD5: 4AB05041D5C922B9A7A5D9059F5538CD
PID: 5964 (2160) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
size: 31016
MD5: 38D198A2DD54A67120040566A38103BA
PID: 4588 (2160) C:\Program Files\Common Files\Real\Update_OB\realsched.exe
size: 185896
MD5: 89D583FC41D48328128A974C25AFAEB7
PID: 520 (2160) C:\Windows\System32\igfxtray.exe
size: 141848
MD5: 48A9D4961DD0C0E4DECD99DA597AE7B7
PID: 5244 (2160) C:\Windows\System32\hkcmd.exe
size: 173592
MD5: 63FFA18E782DEBBE8CC62195AD3783CA
PID: 2560 (2160) C:\Windows\System32\igfxpers.exe
size: 150552
MD5: BBF84F08A343374BED5687AA6C5797B8
PID: 2168 ( 836) C:\Windows\system32\igfxsrvc.exe
size: 252952
MD5: C5C241A18788EED88E6C276D04B7D6AB
PID: 4852 (2160) C:\Program Files\Java\jre6\bin\jusched.exe
size: 149280
MD5: 90E0F7FDCAC66FB50C1CE1A1C7396642
PID: 1856 (2160) C:\Windows\csrss.exe
size: 110592
MD5: 7FD55B60EFF7858B556D4CF1A67E6781
PID: 2820 (2160) C:\Program Files\Microsoft IntelliType Pro\itype.exe
size: 813912
MD5: F2E2AAD0EE3E886161A907F473A10B20
PID: 3060 (2160) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
size: 849280
MD5: F4E7979D8ADEBEEDEAD33019A5BD52BF
PID: 2780 (2160) C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
size: 417792
MD5: F492D06FC6F79A5564B67069C91EED5F
PID: 3156 (2160) C:\Windows\ehome\ehtray.exe
size: 125440
MD5: 2E0953919779A44BF9DFB7B07C58535A
PID: 6136 (2160) C:\Program Files\Skype\Phone\Skype.exe
size: 25623336
MD5: BF9EAB227D409CE1E75C23BB10CF5DBC
PID: 4708 (2160) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
size: 715568
MD5: FAA1AD70DA329768FA53041733EB4B57
PID: 3708 (5588) C:\Program Files\Synaptics\SynTP\SynToshiba.exe
size: 200704
MD5: 4402D4585AE9D7DF24CEBE3853489791
PID: 4568 ( 836) C:\Windows\ehome\ehmsas.exe
size: 37376
MD5: 693E4C15CEE5D6487D7913A2701B5E40
PID: 1280 ( 836) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
size: 1600304
MD5: 850D23F943C391B0DEBC0D9E071A7989
PID: 1420 (5588) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
size: 103720
MD5: 90CF2D5DF131A409A513927A62E1F704
PID: 2604 (2160) C:\Windows\system32\NOTEPAD.EXE
size: 151040
MD5: FF7F14FDA901090E337488A1900E3660
PID: 3616 (2160) C:\Program Files\Mozilla Firefox\firefox.exe
size: 908248
MD5: 3EB0BF64DB2BDBAD94ECD9AAD16E6BA0
PID: 2520 (2160) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5365592
MD5: 0477C2F9171599CA5BC3307FDFBA8D89
PID: 3264 (2160) C:\Windows\regedit.exe
size: 134656
MD5: F13123E76FDA33E55F11E0EB832E832A
PID: 0 ( 0) [System Process]
PID: 4 ( 0) System
PID: 416 ( 4) smss.exe
size: 62976
PID: 560 ( 548) csrss.exe
size: 110592
PID: 600 ( 548) wininit.exe
size: 95744
PID: 644 ( 600) services.exe
size: 279552
PID: 660 ( 600) lsass.exe
size: 7680
PID: 668 ( 600) lsm.exe
size: 210944
PID: 836 ( 644) svchost.exe
size: 22016
PID: 876 ( 644) PresentationFontCache.exe
PID: 920 ( 644) svchost.exe
size: 22016
PID: 1016 ( 644) svchost.exe
size: 22016
PID: 1044 ( 644) svchost.exe
size: 22016
PID: 1076 ( 644) svchost.exe
size: 22016
PID: 1240 (1016) audiodg.exe
size: 88064
PID: 1272 ( 644) SLsvc.exe
size: 2605568
PID: 1332 ( 644) svchost.exe
size: 22016
PID: 1516 ( 644) svchost.exe
size: 22016
PID: 1628 (1044) wlanext.exe
size: 73728
PID: 1792 ( 644) svchost.exe
size: 22016
PID: 2836 ( 644) agrsmsvc.exe
size: 9216
PID: 2872 ( 644) mDNSResponder.exe
PID: 2884 ( 644) svchost.exe
size: 22016
PID: 2928 ( 644) CFSvcs.exe
PID: 2964 ( 644) EvtEng.exe
PID: 3084 ( 644) oodag.exe
size: 1352960
PID: 3160 ( 644) pinger.exe
PID: 3208 ( 644) svchost.exe
size: 22016
PID: 3236 ( 644) RegSrvc.exe
PID: 3312 ( 644) svchost.exe
size: 22016
PID: 3344 ( 644) swupdtmr.exe
PID: 3376 ( 644) TNaviSrv.exe
PID: 3404 ( 644) TODDSrv.exe
size: 114688
PID: 3448 ( 644) TosCoSrv.exe
PID: 3560 ( 644) TosBtSrv.exe
PID: 3576 ( 644) ULCDRSvr.exe
PID: 3596 ( 644) svchost.exe
size: 22016
PID: 3624 ( 644) SearchIndexer.exe
size: 287744
PID: 3980 ( 644) svchost.exe
size: 22016
PID: 3988 (1076) taskeng.exe
size: 166400
PID: 4076 (1044) WUDFHost.exe
size: 143360
PID: 2440 ( 836) WmiPrvSE.exe
PID: 5748 ( 644) wmpnetwk.exe
PID: 2516 ( 644) ehsched.exe
PID: 5136 ( 644) ehrecvr.exe
PID: 440 (3160) Ivpsvmgr.exe
PID: 2936 ( 644) spoolsv.exe
size: 124928
PID: 2688 ( 836) HP1006MC.EXE
PID: 2664 (4644) csrss.exe
size: 110592
PID: 1596 (4644) winlogon.exe
size: 308224
PID: 4884 (5884) C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
size: 204288
MD5: BB4588AEBF480C95AD2B4FC92F99995D
PID: 5324 ( 836) C:\Windows\system32\DllHost.exe
size: 7168
MD5: BE01E566D1F569AAB32D0335613E1EEA
PID: 5884 ( 644) AAWService.exe
PID: 5004 ( 836) unsecapp.exe


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 12/1/2009 9:55:52 AM

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\Windows\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.toshibadirect.com/dpdstart
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.toshibadirect.com/dpdstart
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://go.microsoft.com/fwlink/?LinkId=54896


--- Winsock Layered Service Provider list ---
Namespace Provider 3: E-mail Naming Shim Provider
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename:

Namespace Provider 4: PNRP Cloud Namespace Provider
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename:

Namespace Provider 5: PNRP Name Namespace Provider
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename:



--- Uninstall list ---
AC3Filter (remove only) (AC3Filter)
uninstall cmd: C:\Program Files\AC3Filter\uninstall.exe

Ad-Aware (Ad-Aware)
version (major): 8
version (minor): 1
install location: C:\Program Files\Lavasoft\Ad-Aware
uninstall cmd: "C:\ProgramData\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe" REMOVE=TRUE MODIFY=FALSE
publisher: Lavasoft
comments: All rights reserved
help link: http://www.lavasoft.com/support/supportcenter

Adobe Flash Player 10 Plugin 10.0.22.87 (Adobe Flash Player Plugin)
uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
publisher: Adobe Systems Incorporated

Adobe Shockwave Player 10.1.4.20 (Adobe Shockwave Player)
uninstall cmd: C:\Windows\System32\Macromed\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Macromed\SHOCKW~1\Install.log
publisher: Adobe Systems, Inc.
help link: http://www.adobe.com/support/shockwave

Adobe Photoshop CS3 10.0 (Adobe_2ac78060bc5856b0c1cf873bb919b58)
estimated size: 1153950
uninstall cmd: C:\Program Files\Common Files\Adobe\Installers\2ac78060bc5856b0c1cf873bb919b58\Setup.exe
publisher: Adobe Systems Incorporated
help link: http://www.adobe.com/support
help telephone: http://www.adobe.com/support

Adobe ExtendScript Toolkit 2 2.0.2 (Adobe_3e054d2218e7aa282c2369d939e58ff)
estimated size: 16809
uninstall cmd: C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
publisher: Adobe Systems Incorporated

Adobe Color Common Settings 1.0.1 (Adobe_6c8e2cb4fd241c55406016127a6ab2e)
estimated size: 9416
uninstall cmd: C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
publisher: Adobe Systems Incorporated

Broadcom High Definition Video Decoder (BCM70010)
uninstall cmd: "C:\Program Files\Broadcom\Broadcom MediaPC 70010\uninstall.exe"
publisher: Broadcom Corporation

(Connection Manager)

Curse Client (CurseClient)
uninstall cmd: C:\Program Files\Curse\uninstall.exe

Desktop Dialer (Desktop Dialer)
uninstall cmd: C:\Windows\unvise32.exe C:\Program Files\DesktopDialer\uninstal.log

Diablo II (Diablo II)
uninstall cmd: C:\Program Files\Common Files\Blizzard Entertainment\Diablo II\Uninstall.exe
publisher: Blizzard Entertainment

DivX Plus DirectShow Filters (DivX Plus DirectShow Filters)
install location: C:\Program Files\DivX\DivX Plus DirectShow Filters
uninstall cmd: C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
publisher: DivX, Inc.

(DXM_Runtime)

Microsoft Office Enterprise 2007 12.0.4518.1014 (ENTERPRISE)
install location: C:\Program Files\Microsoft Office
uninstall cmd: "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
publisher: Microsoft Corporation

Intel(R) Graphics Media Accelerator Driver (HDMI)
version (major): 7
version (minor): 15
estimated size: 39000000
install location: C:\Windows\system32
uninstall cmd: C:\Windows\system32\igxpun.exe -uninstall
publisher: Intel Corporation

(InstallShield_{12688FD7-CB92-4A5B-BEE4-5C8E0574434F})

TOSHIBA Supervisor Password 1.48.0.8C (InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 2156
install date: 20070530
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1033
publisher: TOSHIBA
comments: 0

TOSHIBA Hardware Setup 1.48.0.11C (InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 7760
install date: 20070530
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1033
publisher: TOSHIBA

TOSHIBA Extended Tiles for Windows Mobility Center 1.01.00 (InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 1222
install date: 20070530
install location: C:\Program Files\TOSHIBA\MobilityCenter\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{617C36FD-0CBE-4600-84B2-441CEB12FADF}\setup.exe -runfromtemp -l0x0409
publisher: TOSHIBA Corporation

TOSHIBA Flash Cards Support Utility 1.48.0.3C (InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 20
install date: 20070530
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{620BBA5E-F848-4D56-8BDA-584E44584C5E}
publisher: TOSHIBA

Texas Instruments PCIxx21/x515/xx12 drivers. 1.23.0000 (InstallShield_{F7B05784-334C-4F76-8BAB-30ABEB7FD534})
version: 18284544
version (major): 1
version (minor): 23
estimated size: 812
install date: 20080530
install location: C:\Windows\tiinst\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{F7B05784-334C-4F76-8BAB-30ABEB7FD534}\setup.exe -runfromtemp -l0x0409
publisher: Texas Instruments Inc.
comments: TI PCIxx21/PCIx515/xx12 Software components
contact: Customer Support Department
help link: Please contact your vendor directly
help telephone: ...

TOSHIBA Value Added Package 1.0.24 (InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8})
version: 16777240
version (major): 1
estimated size: 32899
install date: 20070530
install location: C:\Program Files\Toshiba\TOSHIBAValueAddedPackage\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\setup.exe -runfromtemp -l0x0409
publisher: TOSHIBA Corporation

Mozilla Firefox (3.5.5) 3.5.5 (en-US) (Mozilla Firefox (3.5.5))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe
publisher: Mozilla
comments: Mozilla Firefox

(MPlayer2)

oggcodecs 0.71.0946 0.71.0946 (oggcodecs)
uninstall cmd: C:\Program Files\illiminable\oggcodecs\uninst.exe
publisher: illiminable

Intel PROSet Wireless (ProInst)
uninstall cmd: Intel PROSet Wireless

RealPlayer (RealPlayer 6.0)
install location: C:\Program Files\Real\RealPlayer\realplay.exe
publisher: RealNetworks
comments: Play, Save, and Organize your music and videos, Burn a CD, or simply take your music with you.
contact: RealNetworks

(Shockwave)

Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash)
uninstall cmd: C:\Windows\system32\Macromed\Flash\UninstFl.exe -q
publisher: Adobe Systems
help link: http://www.adobe.com/go/flashplayer_support/

StarCraft (StarCraft)
uninstall cmd: C:\Program Files\Common Files\Blizzard Entertainment\StarCraft (2)\Uninstall.exe
publisher: Blizzard Entertainment

Synaptics Pointing Device Driver 11.1.18.0 (SynTPDeinstKey)
uninstall cmd: rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
publisher: Synaptics

System Requirements Lab (SystemRequirementsLab)
uninstall cmd: C:\Program Files\SystemRequirementsLab\Uninstall.exe

TOSHIBA Software Modem 2.1.77 (SM2177ALD03) (TOSHIBA Software Modem)
uninstall cmd: Tosmreg -U
publisher: Agere Systems

Intel(R) TV Wizard (TVWiz)
install location: C:\Program Files\Intel
uninstall cmd: C:\Windows\system32\TVWizudlg.exe -uninstall
publisher: Intel Corporation

WinAce Archiver 2.69 (WinAce Archiver)
uninstall cmd: "C:\Program Files\WinAce\SXUNINST.EXE" "C:\Program Files\WinAce\SXUNINST.INI"
publisher: e-merge GmbH
help link: mailto:techsupport@winace.com

Winamp 5.531 (Winamp)
uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"
publisher: Nullsoft, Inc
help link: http://forums.winamp.com

Windows Media Encoder 9 Series (Windows Media Encoder 9)
uninstall cmd: msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}

WinRAR archiver (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

World of Warcraft 2.1.1.1374 (World of Warcraft)
install location: C:\Users\Yes\Saved Games\World of Warcraft\
install source: C:\Users\Yes\Saved Games\World of Warcraft\
uninstall cmd: C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe
publisher: Blizzard Entertainment

Xilisoft DVD Ripper Ultimate 5.0.50.0814 (Xilisoft DVD Ripper Ultimate 5)
uninstall cmd: C:\Program Files\Xilisoft\DVD Ripper Ultimate 5\Uninstall.exe
publisher: Xilisoft
help link: http://www.xilisoft.com

Adobe Photoshop CS3 10 ({0046FA01-C5B9-4985-BACB-398DC480FC05})
version: 167772160
version (major): 10
estimated size: 347376
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobePhotoshop10en_US\
uninstall cmd: MsiExec.exe /I{0046FA01-C5B9-4985-BACB-398DC480FC05}
publisher: Adobe Systems Incorporated

TOSHIBA Speech System SR Engine(U.S.) Version1.0 ({008D69EB-70FF-46AB-9C75-924620DF191A})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{008D69EB-70FF-46AB-9C75-924620DF191A}\Setup.exe" -l0x9 UNINSTALL

WIDCOMM Bluetooth Software 6.0.1.4400 6.0.1.4400 ({03D1988F-469F-4843-8E6E-E5FE9D17889D})
version: 100663297
version (major): 6
estimated size: 57074
install date: 20091128
install source: C:\Users\MERCUR~1\AppData\Local\Temp\BTWTEMP\Win32\
uninstall cmd: MsiExec.exe /X{03D1988F-469F-4843-8E6E-E5FE9D17889D}
publisher: Broadcom Corporation
help link:
help telephone:

Adobe Help Viewer CS3 1 ({04AF207D-9A77-465A-8B76-991F6AB66245})
version: 16777216
version (major): 1
estimated size: 4149
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeHelpViewerAll\
uninstall cmd: MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
publisher: Adobe Systems Incorporated

Adobe Bridge Start Meeting 1.0 ({08B32819-6EEF-4057-AEDA-5AB681A36A23})
version: 16777216
version (major): 1
estimated size: 489
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\BridgeStartMeeting\
uninstall cmd: MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
publisher: Adobe Systems Incorporated

Apple Application Support 1.0 ({0C34B801-6AEC-4667-B053-03A67E2D0415})
version: 16777216
version (major): 1
estimated size: 33009
install date: 20091105
install source: C:\Users\mercury996\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{0C34B801-6AEC-4667-B053-03A67E2D0415}
publisher: Apple Inc.
contact: AppleCare Support
help link: http://www.apple.com/support/
help telephone: 1-800-275-2273

Microsoft IntelliPoint 6.1 6.10.156.0 ({0E4BC542-9CFD-4E97-B586-9F1E5516E7B9})
version: 101318812
version (major): 6
version (minor): 10
estimated size: 11636
install date: 20091116
install source: D:\ipoint\setup\
publisher: Microsoft
help link: http://support.microsoft.com/

Utility Common Driver 0.0.50.7C ({12688FD7-CB92-4A5B-BEE4-5C8E0574434F})
version: 50
estimated size: 148
install date: 20070530
publisher: TOSHIBA

DivX Converter 7.1.0 ({13F3917B56CD4C25848BDC69916971BB})
install location: C:\Program Files\DivX\DivX Converter
publisher: DivX, Inc.

Rosetta Stone Version 3 3.3.5.2 ({148E08FF-D7C4-46ED-8D4D-601C67FE0AFD})
version: 50528261
version (major): 3
version (minor): 3
estimated size: 141528
install date: 20090714
install location: C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\
install source: C:\Users\mercury996\AppData\Local\Temp\RosettaStoneLtd_TEMP_installer\
uninstall cmd: MsiExec.exe /X{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}
publisher: Rosetta Stone Ltd.
help link: http://www.RosettaStone.com

Adobe WinSoft Linguistics Plugin 1.0 ({184CE391-7E0E-4C63-9935-D7A10EDFD3C6})
version: 16777216
version (major): 1
estimated size: 8205
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeWinSoftLinguisticsPluginAll\
uninstall cmd: MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
publisher: Adobe Systems Incorporated

AutoUpdate 1.1 ({18D10072035C4515918F7E37EAFAACFC})
install location: C:\Program Files\DivX\AutoUpdate

Adobe ExtendScript Toolkit 2 2.0.2 ({24D7346D-D4B4-45E8-98EA-75EC14B42DD8})
version: 33554434
version (major): 2
estimated size: 15277
install date: 20081014
install source: C:\Users\mercury996\AppData\Local\Installer4388\payloads\AdobeExtendScriptToolkit2.0.2All\
uninstall cmd: MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
publisher: Adobe Systems Incorporated

Java(TM) 6 Update 15 6.0.150 ({26A24AE4-039D-4CA4-87B4-2F83216013FF})
version: 100663426
version (major): 6
estimated size: 96800
install date: 20090404
install location: C:\Program Files\Java\jre6\
install source: C:\Users\Yes\AppData\LocalLow\Sun\Java\jre1.6.0_13\
uninstall cmd: MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre6\README.txt

({26A24AE4-039D-4CA4-87B4-2F83216014FB})

({26A24AE4-039D-4CA4-87B4-2F83216015FB})

Adobe Stock Photos CS3 1.5 ({29E5EA97-5F74-4A57-B8B2-D4F169117183})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 8794
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeStockPhotos1.5All\
uninstall cmd: MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
publisher: Adobe Systems Incorporated

Nero DriveSpeed 4.4.10.100 ({33cf58f5-48d8-4575-83d6-96f574e4d83a})
version: 67371018
version (major): 4
version (minor): 4
estimated size: 3292
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero DriveSpeed\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_19\
uninstall cmd: MsiExec.exe /X{33cf58f5-48d8-4575-83d6-96f574e4d83a}
publisher: Nero AG

Nero Recode 4.4.22.0 ({359cfc0a-beb1-440d-95ba-cf63a86da34f})
version: 67371030
version (major): 4
version (minor): 4
estimated size: 83504
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Recode\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_12\
uninstall cmd: MsiExec.exe /X{359cfc0a-beb1-440d-95ba-cf63a86da34f}
publisher: Nero AG

Nero Rescue Agent 2.4.11.100 ({368ba326-73ad-4351-84ed-3c0a7a52cc53})
version: 33816587
version (major): 2
version (minor): 4
estimated size: 3168
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero RescueAgent\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_21\
uninstall cmd: MsiExec.exe /X{368ba326-73ad-4351-84ed-3c0a7a52cc53}
publisher: Nero AG

MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F})
version: 68429425
version (major): 4
version (minor): 20
estimated size: 1269
install date: 20070530
uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
publisher: Microsoft Corporation
help link: http://support.microsoft.com/kb/927978

TOSHIBA Speech System TTS Engine(U.S.) Version1.0 ({3FBF6F99-8EC6-41B4-8527-0A32241B5496})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}\Setup.exe" -l0x9

DivX Version Checker 7.1.0.9 ({3FC7CBBC4C1E11DCA1A752EA55D89593})
install location: C:\Program Files\DivX\DivX Updater
publisher: DivX, Inc.

TOSHIBA Software Upgrades 4.2 ({425A2BC2-AA64-4107-9C29-484245BBEA05})
version: 67239936
install date: 20070530
install location: C:\TOSHIBA\IVP
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{425A2BC2-AA64-4107-9C29-484245BBEA05}\setup.exe" -l0x9 -removeonly
publisher: TOSHIBA

Nero Vision 6.4.9.100 ({43e39830-1826-415d-8bae-86845787b54b})
version: 100925449
version (major): 6
version (minor): 4
estimated size: 164125
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Vision\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_16\
uninstall cmd: MsiExec.exe /X{43e39830-1826-415d-8bae-86845787b54b}
publisher: Nero AG

Nero ControlCenter 9.0.0.1 ({4E8C27C2-D727-4C00-A90E-C3F6376EEE70})
version: 150994944
version (major): 9
estimated size: 9360
install date: 20090924
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1002529\unit_app_63\
publisher: Nero AG

Adobe Color EU Extra Settings 1.0 ({51846830-E7B2-4218-8968-B77F0FF475B8})
version: 16777216
version (major): 1
estimated size: 1661
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeColorEU_ExtraSettingsAll\
uninstall cmd: MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
publisher: Adobe Systems Incorporated

TOSHIBA Supervisor Password 1.48.0.8C ({51B4E156-14A5-4904-9AE4-B1AA2A0E46BE})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 2156
install date: 20070530
publisher: TOSHIBA
comments: 0

TOSHIBA Hardware Setup 1.48.0.11C ({5279374D-87FE-4879-9385-F17278EBB9D3})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 7760
install date: 20070530
publisher: TOSHIBA

Adobe Linguistics CS3 3.0.0 ({54793AA1-5001-42F4-ABB6-C364617C6078})
version: 50331648
version (major): 3
estimated size: 67177
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeLinguisticsAll\
uninstall cmd: MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
publisher: Adobe Systems Incorporated

DolbyFiles 2.0 ({56BE5CC9-95E6-4128-ABEA-968414CA9C80})
version: 33554432
version (major): 2
estimated size: 520
install date: 20090924
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1002529\unit_app_69\
publisher: Nero AG

neroxml 1.0.0 ({56C049BE-79E9-4502-BEA7-9754A3E60F9B})
version: 16777216
version (major): 1
estimated size: 1268
install date: 20090923
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005256\unit_tpi_msxml-4\
uninstall cmd: MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
publisher: Nero AG
contact: Nero AG

NeroExpress 9.4.13.100 ({595a3116-40bb-4e0f-a2e8-d7951da56270})
version: 151257101
version (major): 9
version (minor): 4
estimated size: 163378
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Express\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_6\
uninstall cmd: MsiExec.exe /X{595a3116-40bb-4e0f-a2e8-d7951da56270}
publisher: Nero AG

TOSHIBA Disc Creator 2.0.0.8 ({5DA0E02F-970B-424B-BF41-513A5018E4C0})
version: 33554432
version (major): 2
estimated size: 8478
install date: 20070530
install location: C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\
uninstall cmd: MsiExec.exe /X{5DA0E02F-970B-424B-BF41-513A5018E4C0}
publisher: TOSHIBA Corporation

VC80CRTRedist - 8.0.50727.4053 1.1.0 ({5EE7D259-D137-4438-9A5F-42F432EC0421})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 1589
install date: 20091017
install source: C:\Program Files\Common Files\DivX Shared\
uninstall cmd: MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
publisher: DivX, Inc
comments: Install VC80 C++ Runtimes
contact: DivX, Inc

TOSHIBA Extended Tiles for Windows Mobility Center 1.01.00 ({617C36FD-0CBE-4600-84B2-441CEB12FADF})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 1222
install date: 20070530
install location: C:\Program Files\TOSHIBA\MobilityCenter\
publisher: TOSHIBA Corporation

TOSHIBA Flash Cards Support Utility 1.48.0.3C ({620BBA5E-F848-4D56-8BDA-584E44584C5E})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 20
install date: 20070530
publisher: TOSHIBA

2.1 ({622E6F16-0904-49B6-BBE1-4CC836314CCF})
version: 33619968
version (major): 2
install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD Tweak and Fit 2.1
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x9
publisher: Ulead Systems, Inc.

({62369F2F77534556AEF4C58152E3BDE5})

Nero CoverDesigner 4.4.8.100 ({62ac81f6-bdd3-4110-9d36-3e9eaab40999})
version: 67371016
version (major): 4
version (minor): 4
estimated size: 22406
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero CoverDesigner\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_5\
uninstall cmd: MsiExec.exe /X{62ac81f6-bdd3-4110-9d36-3e9eaab40999}
publisher: Nero AG

Adobe Setup 1.0 ({64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1})
version: 16777216
version (major): 1
estimated size: 4340
install date: 20081014
install source: C:\Users\mercury996\AppData\Local\Installer4192\
uninstall cmd: MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
publisher: Adobe Systems Incorporated

Apple Software Update 2.1.1.116 ({6956856F-B6B3-4BE0-BA0B-8F495BE32033})
version: 33619969
version (major): 2
version (minor): 1
estimated size: 2208
install date: 20091105
install location: C:\Program Files\Apple Software Update\
install source: C:\Users\mercury996\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
publisher: Apple Inc.
contact: AppleCare Support
help link: http://www.apple.com/support/
help telephone: 1-800-275-2273

2.2 ({697AFC77-F318-4CD4-BF16-F50F4C1072DA})
version: 33685504
version (major): 2
install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD DiscRecorder 2.2
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x9
publisher: Ulead Systems, Inc.

Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4})
version: 16777216
version (major): 1
estimated size: 296
install date: 20081127
install source: C:\Users\Yes\AppData\Local\Temp\IXP000.TMP\
uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
publisher: Microsoft Corp

Adobe Fonts All 1.0 ({6ABE0BEE-D572-4FE8-B434-9E72A289431B})
version: 16777216
version (major): 1
estimated size: 1761
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeFontsAll\
uninstall cmd: MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
publisher: Adobe Systems Incorporated

TOSHIBA HD DVD PLAYER 4.11.12 ({6C5F3BDC-0A1B-4436-A696-5939629D5C31})
version: 67829772
install date: 20080530
install location: C:\Program Files\TOSHIBA\TOSHIBA HD DVD PLAYER
uninstall cmd: C:\Program Files\InstallShield Installation Information\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}\setup.exe -runfromtemp -l0x0009 -ADDREMOVE -removeonly
publisher: TOSHIBA Corporation

Adobe Color Common Settings 1.0.1 ({6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF})
version: 16777217
version (major): 1
estimated size: 23935
install date: 20081014
install source: C:\Users\mercury996\AppData\Local\Installer4192\payloads\AdobeColorCommonSet1.0.1All\
uninstall cmd: MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
publisher: Adobe Systems Incorporated

Adobe Asset Services CS3 3 ({6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61})
version: 50331648
version (major): 3
estimated size: 47129
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeAssetServices3All\
uninstall cmd: MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
publisher: Adobe Systems Incorporated

Microsoft Visual C++ 2005 Redistributable 8.0.56336 ({7299052b-02a4-4627-81f2-1818da5d550d})
version: 134274064
version (major): 8
estimated size: 421
install date: 20090923
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005256\unit_tpi_vcredist-x86-2005Sp1\
uninstall cmd: MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
publisher: Microsoft Corporation

7.1.0 ({7585478E9D9B42108671C12F8714CEFE})
install location: C:\Program Files\DivX\DivX Converter
uninstall cmd: C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
publisher: DivX, Inc.

Nero StartSmart 9.4.11.100 ({7748ac8c-18e3-43bb-959b-088faea16fb2})
version: 151257099
version (major): 9
version (minor): 4
estimated size: 169924
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero StartSmart\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_15\
uninstall cmd: MsiExec.exe /X{7748ac8c-18e3-43bb-959b-088faea16fb2}
publisher: Nero AG

Nero BurnRights 3.4.10.100 ({7829db6f-a066-4e40-8912-cb07887c20bb})
version: 50593802
version (major): 3
version (minor): 4
estimated size: 2997
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero BurnRights\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_22\
uninstall cmd: MsiExec.exe /X{7829db6f-a066-4e40-8912-cb07887c20bb}
publisher: Nero AG

TOSHIBA ConfigFree 7.00.29 ({78C6A78A-8B03-48C8-A47C-78BA1FCA2307})
version: 117440541
install date: 20070530
install location: C:\Program Files\TOSHIBA\ConfigFree
uninstall cmd: C:\Program Files\InstallShield Installation Information\{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}\setup.exe -runfromtemp -l0x0009 uninstall -removeonly
publisher: TOSHIBA

DivX Codec 6.9.1 ({7B63B2922B174135AFC0E1377DD81EC2})
install location: C:\Program Files\DivX\DivX Codec
uninstall cmd: C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
publisher: DivX, Inc.

Adobe XMP Panels CS3 1.0 ({802771A9-A856-4A41-ACF7-1450E523C923})
version: 16777216
version (major): 1
estimated size: 197
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeXMPPanelsAll\
uninstall cmd: MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
publisher: Adobe Systems Incorporated

Nero DiscSpeed 5.4.10.100 ({869200db-287a-4dc0-b02b-2b6787fbcd4c})
version: 84148234
version (major): 5
version (minor): 4
estimated size: 3662
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero DiscSpeed\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_57\
uninstall cmd: MsiExec.exe /X{869200db-287a-4dc0-b02b-2b6787fbcd4c}
publisher: Nero AG

Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista 1.00.0000 ({8833FFB6-5B0C-4764-81AA-06DFEED9A476})
version: 16777216
install date: 20070626
install location: C:\Program Files\Realtek\VISTA_8169
uninstall cmd: C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0009 -removeonly
publisher: Realtek

DivX Player 7.2.0 ({8ADFC4160D694100B5B8A22DE9DCABD9})
install location: C:\Program Files\DivX\DivX Player
uninstall cmd: C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
publisher: DivX, Inc.

Macromedia Dreamweaver MX 6.0 ({8B4AB829-DFD3-436D-B808-D9733D76C590})
version (major): 6
install location: C:\Program Files\Macromedia\Dreamweaver MX
install source: C:\Program Files\Macromedia
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8B4AB829-DFD3-436D-B808-D9733D76C590}\Setup.exe" -l0x9 mmUninstall
publisher: Macromedia

Adobe Device Central CS3 1.0 ({8D2BA474-F406-4710-9AE4-D4F22D21F0DD})
version: 16777216
version (major): 1
estimated size: 137150
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeDeviceCentralAll\
uninstall cmd: MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
publisher: Adobe Systems Incorporated

anthem12
2009-12-01, 18:59
--- Search result list ---
Win32.Agent.baf: [SBI $4696926B] Settings (Registry value, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\C:\Windows\csrss.exe


--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

--- System information ---
Windows Vista (Build: 6000) (6.0.6000)
/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2


--- Startup entries list ---
Located: HK_LM:Run, Adobe ARM
command: "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
file: C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
size: 935288
MD5: 3103FE27C967675B019E880AA6DA3D6D

Located: HK_LM:Run, Adobe Reader Speed Launcher
command: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
file: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
size: 39792
MD5: E284188C5CF416378CC740EB13059A50

Located: HK_LM:Run, Ad-Watch
command: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
file: C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
size: 788880
MD5: BB4588AEBF480C95AD2B4FC92F99995D

Located: HK_LM:Run, GrooveMonitor
command: "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
file: C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
size: 31016
MD5: 38D198A2DD54A67120040566A38103BA

Located: HK_LM:Run, HotKeysCmds
command: C:\Windows\system32\hkcmd.exe
file: C:\Windows\system32\hkcmd.exe
size: 173592
MD5: 63FFA18E782DEBBE8CC62195AD3783CA

Located: HK_LM:Run, HSON
command: %ProgramFiles%\TOSHIBA\TBS\HSON.exe
file: C:\Program Files\TOSHIBA\TBS\HSON.exe
size: 55416
MD5: 15058804D8A48C67C007DD1D797CC72A

Located: HK_LM:Run, IgfxTray
command: C:\Windows\system32\igfxtray.exe
file: C:\Windows\system32\igfxtray.exe
size: 141848
MD5: 48A9D4961DD0C0E4DECD99DA597AE7B7

Located: HK_LM:Run, IntelliPoint
command: "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
file: C:\Program Files\Microsoft IntelliPoint\ipoint.exe
size: 849280
MD5: F4E7979D8ADEBEEDEAD33019A5BD52BF

Located: HK_LM:Run, itype
command: "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
file: C:\Program Files\Microsoft IntelliType Pro\itype.exe
size: 813912
MD5: F2E2AAD0EE3E886161A907F473A10B20

Located: HK_LM:Run, KeNotify
command: C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
file: C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
size: 34352
MD5: AFD400AEBCAB252C99E60991FF00D9D2

Located: HK_LM:Run, OODefragTray
command: C:\Windows\system32\oodtray.exe
file: C:\Windows\system32\oodtray.exe
size: 2553088
MD5: C881A5E34F0D897B680B45D5539D2260

Located: HK_LM:Run, Persistence
command: C:\Windows\system32\igfxpers.exe
file: C:\Windows\system32\igfxpers.exe
size: 150552
MD5: BBF84F08A343374BED5687AA6C5797B8

Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files\QuickTime\QTTask.exe" -atboottime
file: C:\Program Files\QuickTime\QTTask.exe
size: 417792
MD5: 8CBD57D84729DEBEE1E83CB5FA3E3D7A

Located: HK_LM:Run, RtHDVCpl
command: RtHDVCpl.exe
file: C:\Windows\RtHDVCpl.exe
size: 4489216
MD5: 82EAD5A5804BB2937416254A45B6C3C0

Located: HK_LM:Run, SmoothView
command: %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
file: C:\Program Files\Toshiba\SmoothView\SmoothView.exe
size: 448632
MD5: 9C8EC2B3E7912A50EE8F02AFE2AC2121

Located: HK_LM:Run, SunJavaUpdateSched
command: "C:\Program Files\Java\jre6\bin\jusched.exe"
file: C:\Program Files\Java\jre6\bin\jusched.exe
size: 149280
MD5: 90E0F7FDCAC66FB50C1CE1A1C7396642

Located: HK_LM:Run, SVPWUTIL
command: C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe SVPwUTIL
file: C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe
size: 438272
MD5: E8FE2998200DBD6FA80D253F136713BA

Located: HK_LM:Run, SynTPEnh
command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 1316136
MD5: DE3BF6F6A72E8A26945E1B8EAFA5DC64

Located: HK_LM:Run, TkBellExe
command: "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
file: C:\Program Files\Common Files\Real\Update_OB\realsched.exe
size: 185896
MD5: 89D583FC41D48328128A974C25AFAEB7

Located: HK_LM:Run, TPwrMain
command: %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
file: C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE
size: 411192
MD5: F5EF0675D6EC37F81F8794AEC9630BE0

Located: HK_LM:Run, Update
command: C:\Windows\csrss.exe
file: C:\Windows\csrss.exe
size: 110592
MD5: 7FD55B60EFF7858B556D4CF1A67E6781

Located: HK_LM:Run, Windows Mobile-based device management
command: %windir%\WindowsMobile\wmdSync.exe
file: C:\Windows\WindowsMobile\wmdSync.exe
size: 215552
MD5: 4AB05041D5C922B9A7A5D9059F5538CD

Located: HK_CU:Run, Sidebar
where: S-1-5-19...
command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
file: C:\Program Files\Windows Sidebar\Sidebar.exe
size: 1232896
MD5: 582F3A0BA61D8F0D50C66B592808B6D6

Located: HK_CU:Run, WindowsWelcomeCenter
where: S-1-5-19...
command: rundll32.exe oobefldr.dll,ShowWelcomeCenter
file: C:\Windows\system32\oobefldr.dll
size: 2159104
MD5: 736A6F5FF321AAAAB140B1100E345F04

Located: HK_CU:Run, Sidebar
where: S-1-5-20...
command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
file: C:\Program Files\Windows Sidebar\Sidebar.exe
size: 1232896
MD5: 582F3A0BA61D8F0D50C66B592808B6D6

Located: HK_CU:Run, WindowsWelcomeCenter
where: S-1-5-20...
command: rundll32.exe oobefldr.dll,ShowWelcomeCenter
file: C:\Windows\system32\oobefldr.dll
size: 2159104
MD5: 736A6F5FF321AAAAB140B1100E345F04

Located: HK_CU:Run, ehTray.exe
where: S-1-5-21-3398961202-3135422642-1813794195-1005...
command: C:\Windows\ehome\ehTray.exe
file: C:\Windows\ehome\ehTray.exe
size: 125440
MD5: 2E0953919779A44BF9DFB7B07C58535A

Located: HK_CU:Run, Skype
where: S-1-5-21-3398961202-3135422642-1813794195-1005...
command: "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
file: C:\Program Files\Skype\Phone\Skype.exe
size: 25623336
MD5: BF9EAB227D409CE1E75C23BB10CF5DBC

Located: HK_CU:Run, TOSCDSPD
where: S-1-5-21-3398961202-3135422642-1813794195-1005...
command: TOSCDSPD.EXE
file: TOSCDSPD.EXE
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!

Located: Startup (common), Bluetooth.lnk
where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
file: C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
size: 715568
MD5: FAA1AD70DA329768FA53041733EB4B57

Located: Startup (user), OneNote 2007 Screen Clipper and Launcher.lnk
where: C:\Users\mercury996\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
file: C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
size: 98632
MD5: D91AFB6D2A0DA7539B74FB5838775D94

Located: WinLogon, igfxcui
command: igfxdev.dll
file: igfxdev.dll
size: 0
MD5: D41D8CD98F00B204E9800998ECF8427E
Warning: if the file is actually larger than 0 bytes,
the checksum could not be properly calculated!



--- Browser helper object list ---
{DBC80044-A445-435b-BC74-9C25C1C588A9} (Java(tm) Plug-In 2 SSV Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Java(tm) Plug-In 2 SSV Helper
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2ssv.dll
Short name:
Date (created): 4/4/2009 8:18:48 AM
Date (last access): 7/25/2073 4:23:58 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 41760
Attributes: archive
MD5: 1E57B1A44C7DFFA1C38534279C14B3CE
CRC32: BA79295C
Version: 6.0.150.3



--- ActiveX list ---
{17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool)
DPF name:
CLSID name: Windows Genuine Advantage Validation Tool
Installer: C:\Windows\Downloaded Program Files\LegitCheckControl.inf
Codebase: http://download.microsoft.com/download/8/b/d/8bd77752-5704-4d68-a152-f7252adaa4f2/LegitCheckControl.cab
description:
classification: Legitimate
known filename: LegitCheckControl.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\Windows\system32\
Long name: LegitCheckControl.DLL
Short name: LEGITC~1.DLL
Date (created): 3/20/2008 6:06:36 PM
Date (last access): 3/20/2008 6:06:36 PM
Date (last write): 3/20/2008 6:06:36 PM
Filesize: 1480232
Attributes: archive
MD5: E058C4821D48E0A67F6069CB50818D44
CRC32: 3513AE02
Version: 1.7.69.2

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2iexp.dll
Short name:
Date (created): 4/4/2009 8:18:48 AM
Date (last access): 7/25/2073 4:23:58 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 100128
Attributes: archive
MD5: C1968E3263202DC9CCF9A832C5018F90
CRC32: 5D6D1C9B
Version: 6.0.150.3

{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
Path: C:\Program Files\Java\jre6\bin\
Long name: jp2iexp.dll
Short name:
Date (created): 4/4/2009 8:18:48 AM
Date (last access): 7/25/2073 4:23:58 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 100128
Attributes: archive
MD5: C1968E3263202DC9CCF9A832C5018F90
CRC32: 5D6D1C9B
Version: 6.0.150.3

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)
DPF name: Java Runtime Environment 1.6.0
CLSID name: Java Plug-in 1.6.0_15
Installer:
Codebase: http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre6\bin\
Long name: npjpi160_15.dll
Short name: NPJPI1~1.DLL
Date (created): 7/25/2009 2:00:36 AM
Date (last access): 7/25/2073 4:24:12 AM
Date (last write): 7/25/2009 4:23:04 AM
Filesize: 136992
Attributes: archive
MD5: C79293AA0C64855B6FC3E0E874B472CE
CRC32: EA2282C5
Version: 6.0.150.3



--- Process list ---
PID: 5600 (1044) C:\Windows\system32\Dwm.exe
size: 83456
MD5: E87B968F3D49117445893EB0503FE34F
PID: 2856 (1076) C:\Windows\system32\taskeng.exe
size: 166400
MD5: 1226E9FAE5B8508801EC974E3C9D9C14
PID: 2160 (5152) C:\Windows\Explorer.EXE
size: 2923520
MD5: 6D06CD98D954FE87FB2DB8108793B399
PID: 5588 (2160) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 1316136
MD5: DE3BF6F6A72E8A26945E1B8EAFA5DC64
PID: 3040 (2160) C:\Program Files\Toshiba\Utilities\KeNotify.exe
size: 34352
MD5: AFD400AEBCAB252C99E60991FF00D9D2
PID: 2072 (2160) C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
size: 411192
MD5: F5EF0675D6EC37F81F8794AEC9630BE0
PID: 2264 (2160) C:\Program Files\Toshiba\SmoothView\SmoothView.exe
size: 448632
MD5: 9C8EC2B3E7912A50EE8F02AFE2AC2121
PID: 1304 (2160) C:\Windows\RtHDVCpl.exe
size: 4489216
MD5: 82EAD5A5804BB2937416254A45B6C3C0
PID: 4136 (2160) C:\Windows\WindowsMobile\wmdSync.exe
size: 215552
MD5: 4AB05041D5C922B9A7A5D9059F5538CD
PID: 5964 (2160) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
size: 31016
MD5: 38D198A2DD54A67120040566A38103BA
PID: 4588 (2160) C:\Program Files\Common Files\Real\Update_OB\realsched.exe
size: 185896
MD5: 89D583FC41D48328128A974C25AFAEB7
PID: 520 (2160) C:\Windows\System32\igfxtray.exe
size: 141848
MD5: 48A9D4961DD0C0E4DECD99DA597AE7B7
PID: 5244 (2160) C:\Windows\System32\hkcmd.exe
size: 173592
MD5: 63FFA18E782DEBBE8CC62195AD3783CA
PID: 2560 (2160) C:\Windows\System32\igfxpers.exe
size: 150552
MD5: BBF84F08A343374BED5687AA6C5797B8
PID: 2168 ( 836) C:\Windows\system32\igfxsrvc.exe
size: 252952
MD5: C5C241A18788EED88E6C276D04B7D6AB
PID: 4852 (2160) C:\Program Files\Java\jre6\bin\jusched.exe
size: 149280
MD5: 90E0F7FDCAC66FB50C1CE1A1C7396642
PID: 1856 (2160) C:\Windows\csrss.exe
size: 110592
MD5: 7FD55B60EFF7858B556D4CF1A67E6781
PID: 2820 (2160) C:\Program Files\Microsoft IntelliType Pro\itype.exe
size: 813912
MD5: F2E2AAD0EE3E886161A907F473A10B20
PID: 3060 (2160) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
size: 849280
MD5: F4E7979D8ADEBEEDEAD33019A5BD52BF
PID: 2780 (2160) C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
size: 417792
MD5: F492D06FC6F79A5564B67069C91EED5F
PID: 3156 (2160) C:\Windows\ehome\ehtray.exe
size: 125440
MD5: 2E0953919779A44BF9DFB7B07C58535A
PID: 6136 (2160) C:\Program Files\Skype\Phone\Skype.exe
size: 25623336
MD5: BF9EAB227D409CE1E75C23BB10CF5DBC
PID: 4708 (2160) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
size: 715568
MD5: FAA1AD70DA329768FA53041733EB4B57
PID: 3708 (5588) C:\Program Files\Synaptics\SynTP\SynToshiba.exe
size: 200704
MD5: 4402D4585AE9D7DF24CEBE3853489791
PID: 4568 ( 836) C:\Windows\ehome\ehmsas.exe
size: 37376
MD5: 693E4C15CEE5D6487D7913A2701B5E40
PID: 1280 ( 836) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
size: 1600304
MD5: 850D23F943C391B0DEBC0D9E071A7989
PID: 1420 (5588) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
size: 103720
MD5: 90CF2D5DF131A409A513927A62E1F704
PID: 2604 (2160) C:\Windows\system32\NOTEPAD.EXE
size: 151040
MD5: FF7F14FDA901090E337488A1900E3660
PID: 3616 (2160) C:\Program Files\Mozilla Firefox\firefox.exe
size: 908248
MD5: 3EB0BF64DB2BDBAD94ECD9AAD16E6BA0
PID: 2520 (2160) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 5365592
MD5: 0477C2F9171599CA5BC3307FDFBA8D89
PID: 3264 (2160) C:\Windows\regedit.exe
size: 134656
MD5: F13123E76FDA33E55F11E0EB832E832A
PID: 0 ( 0) [System Process]
PID: 4 ( 0) System
PID: 416 ( 4) smss.exe
size: 62976
PID: 560 ( 548) csrss.exe
size: 110592
PID: 600 ( 548) wininit.exe
size: 95744
PID: 644 ( 600) services.exe
size: 279552
PID: 660 ( 600) lsass.exe
size: 7680
PID: 668 ( 600) lsm.exe
size: 210944
PID: 836 ( 644) svchost.exe
size: 22016
PID: 876 ( 644) PresentationFontCache.exe
PID: 920 ( 644) svchost.exe
size: 22016
PID: 1016 ( 644) svchost.exe
size: 22016
PID: 1044 ( 644) svchost.exe
size: 22016
PID: 1076 ( 644) svchost.exe
size: 22016
PID: 1240 (1016) audiodg.exe
size: 88064
PID: 1272 ( 644) SLsvc.exe
size: 2605568
PID: 1332 ( 644) svchost.exe
size: 22016
PID: 1516 ( 644) svchost.exe
size: 22016
PID: 1628 (1044) wlanext.exe
size: 73728
PID: 1792 ( 644) svchost.exe
size: 22016
PID: 2836 ( 644) agrsmsvc.exe
size: 9216
PID: 2872 ( 644) mDNSResponder.exe
PID: 2884 ( 644) svchost.exe
size: 22016
PID: 2928 ( 644) CFSvcs.exe
PID: 2964 ( 644) EvtEng.exe
PID: 3084 ( 644) oodag.exe
size: 1352960
PID: 3160 ( 644) pinger.exe
PID: 3208 ( 644) svchost.exe
size: 22016
PID: 3236 ( 644) RegSrvc.exe
PID: 3312 ( 644) svchost.exe
size: 22016
PID: 3344 ( 644) swupdtmr.exe
PID: 3376 ( 644) TNaviSrv.exe
PID: 3404 ( 644) TODDSrv.exe
size: 114688
PID: 3448 ( 644) TosCoSrv.exe
PID: 3560 ( 644) TosBtSrv.exe
PID: 3576 ( 644) ULCDRSvr.exe
PID: 3596 ( 644) svchost.exe
size: 22016
PID: 3624 ( 644) SearchIndexer.exe
size: 287744
PID: 3980 ( 644) svchost.exe
size: 22016
PID: 3988 (1076) taskeng.exe
size: 166400
PID: 4076 (1044) WUDFHost.exe
size: 143360
PID: 2440 ( 836) WmiPrvSE.exe
PID: 5748 ( 644) wmpnetwk.exe
PID: 2516 ( 644) ehsched.exe
PID: 5136 ( 644) ehrecvr.exe
PID: 440 (3160) Ivpsvmgr.exe
PID: 2936 ( 644) spoolsv.exe
size: 124928
PID: 2688 ( 836) HP1006MC.EXE
PID: 2664 (4644) csrss.exe
size: 110592
PID: 1596 (4644) winlogon.exe
size: 308224
PID: 4884 (5884) C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
size: 204288
MD5: BB4588AEBF480C95AD2B4FC92F99995D
PID: 5324 ( 836) C:\Windows\system32\DllHost.exe
size: 7168
MD5: BE01E566D1F569AAB32D0335613E1EEA
PID: 5884 ( 644) AAWService.exe
PID: 5004 ( 836) unsecapp.exe


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 12/1/2009 9:55:52 AM

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\Windows\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.toshibadirect.com/dpdstart
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.toshibadirect.com/dpdstart
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://go.microsoft.com/fwlink/?LinkId=54896


--- Winsock Layered Service Provider list ---
Namespace Provider 3: E-mail Naming Shim Provider
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename:

Namespace Provider 4: PNRP Cloud Namespace Provider
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename:

Namespace Provider 5: PNRP Name Namespace Provider
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename:



--- Uninstall list ---
AC3Filter (remove only) (AC3Filter)
uninstall cmd: C:\Program Files\AC3Filter\uninstall.exe

Ad-Aware (Ad-Aware)
version (major): 8
version (minor): 1
install location: C:\Program Files\Lavasoft\Ad-Aware
uninstall cmd: "C:\ProgramData\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe" REMOVE=TRUE MODIFY=FALSE
publisher: Lavasoft
comments: All rights reserved
help link: http://www.lavasoft.com/support/supportcenter

Adobe Flash Player 10 Plugin 10.0.22.87 (Adobe Flash Player Plugin)
uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
publisher: Adobe Systems Incorporated

Adobe Shockwave Player 10.1.4.20 (Adobe Shockwave Player)
uninstall cmd: C:\Windows\System32\Macromed\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Macromed\SHOCKW~1\Install.log
publisher: Adobe Systems, Inc.
help link: http://www.adobe.com/support/shockwave

Adobe Photoshop CS3 10.0 (Adobe_2ac78060bc5856b0c1cf873bb919b58)
estimated size: 1153950
uninstall cmd: C:\Program Files\Common Files\Adobe\Installers\2ac78060bc5856b0c1cf873bb919b58\Setup.exe
publisher: Adobe Systems Incorporated
help link: http://www.adobe.com/support
help telephone: http://www.adobe.com/support

Adobe ExtendScript Toolkit 2 2.0.2 (Adobe_3e054d2218e7aa282c2369d939e58ff)
estimated size: 16809
uninstall cmd: C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
publisher: Adobe Systems Incorporated

Adobe Color Common Settings 1.0.1 (Adobe_6c8e2cb4fd241c55406016127a6ab2e)
estimated size: 9416
uninstall cmd: C:\Program Files\Common Files\Adobe\Installers\6c8e2cb4fd241c55406016127a6ab2e\Setup.exe
publisher: Adobe Systems Incorporated

Broadcom High Definition Video Decoder (BCM70010)
uninstall cmd: "C:\Program Files\Broadcom\Broadcom MediaPC 70010\uninstall.exe"
publisher: Broadcom Corporation

(Connection Manager)

Curse Client (CurseClient)
uninstall cmd: C:\Program Files\Curse\uninstall.exe

Desktop Dialer (Desktop Dialer)
uninstall cmd: C:\Windows\unvise32.exe C:\Program Files\DesktopDialer\uninstal.log

Diablo II (Diablo II)
uninstall cmd: C:\Program Files\Common Files\Blizzard Entertainment\Diablo II\Uninstall.exe
publisher: Blizzard Entertainment

DivX Plus DirectShow Filters (DivX Plus DirectShow Filters)
install location: C:\Program Files\DivX\DivX Plus DirectShow Filters
uninstall cmd: C:\Program Files\DivX\DivXDSFiltersUninstall.exe /DSFILTERS
publisher: DivX, Inc.

(DXM_Runtime)

Microsoft Office Enterprise 2007 12.0.4518.1014 (ENTERPRISE)
install location: C:\Program Files\Microsoft Office
uninstall cmd: "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
publisher: Microsoft Corporation

Intel(R) Graphics Media Accelerator Driver (HDMI)
version (major): 7
version (minor): 15
estimated size: 39000000
install location: C:\Windows\system32
uninstall cmd: C:\Windows\system32\igxpun.exe -uninstall
publisher: Intel Corporation

(InstallShield_{12688FD7-CB92-4A5B-BEE4-5C8E0574434F})

TOSHIBA Supervisor Password 1.48.0.8C (InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 2156
install date: 20070530
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE} /l1033
publisher: TOSHIBA
comments: 0

TOSHIBA Hardware Setup 1.48.0.11C (InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 7760
install date: 20070530
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{5279374D-87FE-4879-9385-F17278EBB9D3} /l1033
publisher: TOSHIBA

TOSHIBA Extended Tiles for Windows Mobility Center 1.01.00 (InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 1222
install date: 20070530
install location: C:\Program Files\TOSHIBA\MobilityCenter\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{617C36FD-0CBE-4600-84B2-441CEB12FADF}\setup.exe -runfromtemp -l0x0409
publisher: TOSHIBA Corporation

TOSHIBA Flash Cards Support Utility 1.48.0.3C (InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 20
install date: 20070530
uninstall cmd: C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{620BBA5E-F848-4D56-8BDA-584E44584C5E}
publisher: TOSHIBA

Texas Instruments PCIxx21/x515/xx12 drivers. 1.23.0000 (InstallShield_{F7B05784-334C-4F76-8BAB-30ABEB7FD534})
version: 18284544
version (major): 1
version (minor): 23
estimated size: 812
install date: 20080530
install location: C:\Windows\tiinst\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{F7B05784-334C-4F76-8BAB-30ABEB7FD534}\setup.exe -runfromtemp -l0x0409
publisher: Texas Instruments Inc.
comments: TI PCIxx21/PCIx515/xx12 Software components
contact: Customer Support Department
help link: Please contact your vendor directly
help telephone: ...

TOSHIBA Value Added Package 1.0.24 (InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8})
version: 16777240
version (major): 1
estimated size: 32899
install date: 20070530
install location: C:\Program Files\Toshiba\TOSHIBAValueAddedPackage\
uninstall cmd: C:\Program Files\InstallShield Installation Information\{FEDD27A0-B306-45EF-BF58-B527406B42C8}\setup.exe -runfromtemp -l0x0409
publisher: TOSHIBA Corporation

Mozilla Firefox (3.5.5) 3.5.5 (en-US) (Mozilla Firefox (3.5.5))
install location: C:\Program Files\Mozilla Firefox
uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe
publisher: Mozilla
comments: Mozilla Firefox

(MPlayer2)

oggcodecs 0.71.0946 0.71.0946 (oggcodecs)
uninstall cmd: C:\Program Files\illiminable\oggcodecs\uninst.exe
publisher: illiminable

Intel PROSet Wireless (ProInst)
uninstall cmd: Intel PROSet Wireless

RealPlayer (RealPlayer 6.0)
install location: C:\Program Files\Real\RealPlayer\realplay.exe
publisher: RealNetworks
comments: Play, Save, and Organize your music and videos, Burn a CD, or simply take your music with you.
contact: RealNetworks

(Shockwave)

Adobe Flash Player 9 ActiveX 9 (ShockwaveFlash)
uninstall cmd: C:\Windows\system32\Macromed\Flash\UninstFl.exe -q
publisher: Adobe Systems
help link: http://www.adobe.com/go/flashplayer_support/

StarCraft (StarCraft)
uninstall cmd: C:\Program Files\Common Files\Blizzard Entertainment\StarCraft (2)\Uninstall.exe
publisher: Blizzard Entertainment

Synaptics Pointing Device Driver 11.1.18.0 (SynTPDeinstKey)
uninstall cmd: rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
publisher: Synaptics

System Requirements Lab (SystemRequirementsLab)
uninstall cmd: C:\Program Files\SystemRequirementsLab\Uninstall.exe

TOSHIBA Software Modem 2.1.77 (SM2177ALD03) (TOSHIBA Software Modem)
uninstall cmd: Tosmreg -U
publisher: Agere Systems

Intel(R) TV Wizard (TVWiz)
install location: C:\Program Files\Intel
uninstall cmd: C:\Windows\system32\TVWizudlg.exe -uninstall
publisher: Intel Corporation

WinAce Archiver 2.69 (WinAce Archiver)
uninstall cmd: "C:\Program Files\WinAce\SXUNINST.EXE" "C:\Program Files\WinAce\SXUNINST.INI"
publisher: e-merge GmbH
help link: mailto:techsupport@winace.com

Winamp 5.531 (Winamp)
uninstall cmd: "C:\Program Files\Winamp\UninstWA.exe"
publisher: Nullsoft, Inc
help link: http://forums.winamp.com

Windows Media Encoder 9 Series (Windows Media Encoder 9)
uninstall cmd: msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}

WinRAR archiver (WinRAR archiver)
uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

World of Warcraft 2.1.1.1374 (World of Warcraft)
install location: C:\Users\Yes\Saved Games\World of Warcraft\
install source: C:\Users\Yes\Saved Games\World of Warcraft\
uninstall cmd: C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe
publisher: Blizzard Entertainment

Xilisoft DVD Ripper Ultimate 5.0.50.0814 (Xilisoft DVD Ripper Ultimate 5)
uninstall cmd: C:\Program Files\Xilisoft\DVD Ripper Ultimate 5\Uninstall.exe
publisher: Xilisoft
help link: http://www.xilisoft.com

Adobe Photoshop CS3 10 ({0046FA01-C5B9-4985-BACB-398DC480FC05})
version: 167772160
version (major): 10
estimated size: 347376
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobePhotoshop10en_US\
uninstall cmd: MsiExec.exe /I{0046FA01-C5B9-4985-BACB-398DC480FC05}
publisher: Adobe Systems Incorporated

TOSHIBA Speech System SR Engine(U.S.) Version1.0 ({008D69EB-70FF-46AB-9C75-924620DF191A})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{008D69EB-70FF-46AB-9C75-924620DF191A}\Setup.exe" -l0x9 UNINSTALL

WIDCOMM Bluetooth Software 6.0.1.4400 6.0.1.4400 ({03D1988F-469F-4843-8E6E-E5FE9D17889D})
version: 100663297
version (major): 6
estimated size: 57074
install date: 20091128
install source: C:\Users\MERCUR~1\AppData\Local\Temp\BTWTEMP\Win32\
uninstall cmd: MsiExec.exe /X{03D1988F-469F-4843-8E6E-E5FE9D17889D}
publisher: Broadcom Corporation
help link:
help telephone:

Adobe Help Viewer CS3 1 ({04AF207D-9A77-465A-8B76-991F6AB66245})
version: 16777216
version (major): 1
estimated size: 4149
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeHelpViewerAll\
uninstall cmd: MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
publisher: Adobe Systems Incorporated

Adobe Bridge Start Meeting 1.0 ({08B32819-6EEF-4057-AEDA-5AB681A36A23})
version: 16777216
version (major): 1
estimated size: 489
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\BridgeStartMeeting\
uninstall cmd: MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
publisher: Adobe Systems Incorporated

Apple Application Support 1.0 ({0C34B801-6AEC-4667-B053-03A67E2D0415})
version: 16777216
version (major): 1
estimated size: 33009
install date: 20091105
install source: C:\Users\mercury996\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{0C34B801-6AEC-4667-B053-03A67E2D0415}
publisher: Apple Inc.
contact: AppleCare Support
help link: http://www.apple.com/support/
help telephone: 1-800-275-2273

Microsoft IntelliPoint 6.1 6.10.156.0 ({0E4BC542-9CFD-4E97-B586-9F1E5516E7B9})
version: 101318812
version (major): 6
version (minor): 10
estimated size: 11636
install date: 20091116
install source: D:\ipoint\setup\
publisher: Microsoft
help link: http://support.microsoft.com/

Utility Common Driver 0.0.50.7C ({12688FD7-CB92-4A5B-BEE4-5C8E0574434F})
version: 50
estimated size: 148
install date: 20070530
publisher: TOSHIBA

DivX Converter 7.1.0 ({13F3917B56CD4C25848BDC69916971BB})
install location: C:\Program Files\DivX\DivX Converter
publisher: DivX, Inc.

Rosetta Stone Version 3 3.3.5.2 ({148E08FF-D7C4-46ED-8D4D-601C67FE0AFD})
version: 50528261
version (major): 3
version (minor): 3
estimated size: 141528
install date: 20090714
install location: C:\Program Files\Rosetta Stone\Rosetta Stone Version 3\
install source: C:\Users\mercury996\AppData\Local\Temp\RosettaStoneLtd_TEMP_installer\
uninstall cmd: MsiExec.exe /X{148E08FF-D7C4-46ED-8D4D-601C67FE0AFD}
publisher: Rosetta Stone Ltd.
help link: http://www.RosettaStone.com

Adobe WinSoft Linguistics Plugin 1.0 ({184CE391-7E0E-4C63-9935-D7A10EDFD3C6})
version: 16777216
version (major): 1
estimated size: 8205
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeWinSoftLinguisticsPluginAll\
uninstall cmd: MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
publisher: Adobe Systems Incorporated

AutoUpdate 1.1 ({18D10072035C4515918F7E37EAFAACFC})
install location: C:\Program Files\DivX\AutoUpdate

Adobe ExtendScript Toolkit 2 2.0.2 ({24D7346D-D4B4-45E8-98EA-75EC14B42DD8})
version: 33554434
version (major): 2
estimated size: 15277
install date: 20081014
install source: C:\Users\mercury996\AppData\Local\Installer4388\payloads\AdobeExtendScriptToolkit2.0.2All\
uninstall cmd: MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
publisher: Adobe Systems Incorporated

Java(TM) 6 Update 15 6.0.150 ({26A24AE4-039D-4CA4-87B4-2F83216013FF})
version: 100663426
version (major): 6
estimated size: 96800
install date: 20090404
install location: C:\Program Files\Java\jre6\
install source: C:\Users\Yes\AppData\LocalLow\Sun\Java\jre1.6.0_13\
uninstall cmd: MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013FF}
publisher: Sun Microsystems, Inc.
contact: http://java.com
help link: http://java.com
readme: C:\Program Files\Java\jre6\README.txt

({26A24AE4-039D-4CA4-87B4-2F83216014FB})

({26A24AE4-039D-4CA4-87B4-2F83216015FB})

Adobe Stock Photos CS3 1.5 ({29E5EA97-5F74-4A57-B8B2-D4F169117183})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 8794
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeStockPhotos1.5All\
uninstall cmd: MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
publisher: Adobe Systems Incorporated

Nero DriveSpeed 4.4.10.100 ({33cf58f5-48d8-4575-83d6-96f574e4d83a})
version: 67371018
version (major): 4
version (minor): 4
estimated size: 3292
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero DriveSpeed\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_19\
uninstall cmd: MsiExec.exe /X{33cf58f5-48d8-4575-83d6-96f574e4d83a}
publisher: Nero AG

Nero Recode 4.4.22.0 ({359cfc0a-beb1-440d-95ba-cf63a86da34f})
version: 67371030
version (major): 4
version (minor): 4
estimated size: 83504
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Recode\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_12\
uninstall cmd: MsiExec.exe /X{359cfc0a-beb1-440d-95ba-cf63a86da34f}
publisher: Nero AG

Nero Rescue Agent 2.4.11.100 ({368ba326-73ad-4351-84ed-3c0a7a52cc53})
version: 33816587
version (major): 2
version (minor): 4
estimated size: 3168
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero RescueAgent\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_21\
uninstall cmd: MsiExec.exe /X{368ba326-73ad-4351-84ed-3c0a7a52cc53}
publisher: Nero AG

MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F})
version: 68429425
version (major): 4
version (minor): 20
estimated size: 1269
install date: 20070530
uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
publisher: Microsoft Corporation
help link: http://support.microsoft.com/kb/927978

TOSHIBA Speech System TTS Engine(U.S.) Version1.0 ({3FBF6F99-8EC6-41B4-8527-0A32241B5496})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}\Setup.exe" -l0x9

DivX Version Checker 7.1.0.9 ({3FC7CBBC4C1E11DCA1A752EA55D89593})
install location: C:\Program Files\DivX\DivX Updater
publisher: DivX, Inc.

TOSHIBA Software Upgrades 4.2 ({425A2BC2-AA64-4107-9C29-484245BBEA05})
version: 67239936
install date: 20070530
install location: C:\TOSHIBA\IVP
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{425A2BC2-AA64-4107-9C29-484245BBEA05}\setup.exe" -l0x9 -removeonly
publisher: TOSHIBA

Nero Vision 6.4.9.100 ({43e39830-1826-415d-8bae-86845787b54b})
version: 100925449
version (major): 6
version (minor): 4
estimated size: 164125
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Vision\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_16\
uninstall cmd: MsiExec.exe /X{43e39830-1826-415d-8bae-86845787b54b}
publisher: Nero AG

Nero ControlCenter 9.0.0.1 ({4E8C27C2-D727-4C00-A90E-C3F6376EEE70})
version: 150994944
version (major): 9
estimated size: 9360
install date: 20090924
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1002529\unit_app_63\
publisher: Nero AG

Adobe Color EU Extra Settings 1.0 ({51846830-E7B2-4218-8968-B77F0FF475B8})
version: 16777216
version (major): 1
estimated size: 1661
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeColorEU_ExtraSettingsAll\
uninstall cmd: MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
publisher: Adobe Systems Incorporated

TOSHIBA Supervisor Password 1.48.0.8C ({51B4E156-14A5-4904-9AE4-B1AA2A0E46BE})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 2156
install date: 20070530
publisher: TOSHIBA
comments: 0

TOSHIBA Hardware Setup 1.48.0.11C ({5279374D-87FE-4879-9385-F17278EBB9D3})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 7760
install date: 20070530
publisher: TOSHIBA

Adobe Linguistics CS3 3.0.0 ({54793AA1-5001-42F4-ABB6-C364617C6078})
version: 50331648
version (major): 3
estimated size: 67177
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeLinguisticsAll\
uninstall cmd: MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
publisher: Adobe Systems Incorporated

DolbyFiles 2.0 ({56BE5CC9-95E6-4128-ABEA-968414CA9C80})
version: 33554432
version (major): 2
estimated size: 520
install date: 20090924
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1002529\unit_app_69\
publisher: Nero AG

neroxml 1.0.0 ({56C049BE-79E9-4502-BEA7-9754A3E60F9B})
version: 16777216
version (major): 1
estimated size: 1268
install date: 20090923
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005256\unit_tpi_msxml-4\
uninstall cmd: MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
publisher: Nero AG
contact: Nero AG

NeroExpress 9.4.13.100 ({595a3116-40bb-4e0f-a2e8-d7951da56270})
version: 151257101
version (major): 9
version (minor): 4
estimated size: 163378
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Express\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_6\
uninstall cmd: MsiExec.exe /X{595a3116-40bb-4e0f-a2e8-d7951da56270}
publisher: Nero AG

TOSHIBA Disc Creator 2.0.0.8 ({5DA0E02F-970B-424B-BF41-513A5018E4C0})
version: 33554432
version (major): 2
estimated size: 8478
install date: 20070530
install location: C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\
uninstall cmd: MsiExec.exe /X{5DA0E02F-970B-424B-BF41-513A5018E4C0}
publisher: TOSHIBA Corporation

VC80CRTRedist - 8.0.50727.4053 1.1.0 ({5EE7D259-D137-4438-9A5F-42F432EC0421})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 1589
install date: 20091017
install source: C:\Program Files\Common Files\DivX Shared\
uninstall cmd: MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
publisher: DivX, Inc
comments: Install VC80 C++ Runtimes
contact: DivX, Inc

TOSHIBA Extended Tiles for Windows Mobility Center 1.01.00 ({617C36FD-0CBE-4600-84B2-441CEB12FADF})
version: 16842752
version (major): 1
version (minor): 1
estimated size: 1222
install date: 20070530
install location: C:\Program Files\TOSHIBA\MobilityCenter\
publisher: TOSHIBA Corporation

TOSHIBA Flash Cards Support Utility 1.48.0.3C ({620BBA5E-F848-4D56-8BDA-584E44584C5E})
version: 19922944
version (major): 1
version (minor): 48
estimated size: 20
install date: 20070530
publisher: TOSHIBA

2.1 ({622E6F16-0904-49B6-BBE1-4CC836314CCF})
version: 33619968
version (major): 2
install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD Tweak and Fit 2.1
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{622E6F16-0904-49B6-BBE1-4CC836314CCF}\setup.exe" -l0x9
publisher: Ulead Systems, Inc.

({62369F2F77534556AEF4C58152E3BDE5})

Nero CoverDesigner 4.4.8.100 ({62ac81f6-bdd3-4110-9d36-3e9eaab40999})
version: 67371016
version (major): 4
version (minor): 4
estimated size: 22406
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero CoverDesigner\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_5\
uninstall cmd: MsiExec.exe /X{62ac81f6-bdd3-4110-9d36-3e9eaab40999}
publisher: Nero AG

Adobe Setup 1.0 ({64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1})
version: 16777216
version (major): 1
estimated size: 4340
install date: 20081014
install source: C:\Users\mercury996\AppData\Local\Installer4192\
uninstall cmd: MsiExec.exe /I{64C1FA9A-FA94-4B6E-B3E4-8573738E4AD1}
publisher: Adobe Systems Incorporated

Apple Software Update 2.1.1.116 ({6956856F-B6B3-4BE0-BA0B-8F495BE32033})
version: 33619969
version (major): 2
version (minor): 1
estimated size: 2208
install date: 20091105
install location: C:\Program Files\Apple Software Update\
install source: C:\Users\mercury996\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
publisher: Apple Inc.
contact: AppleCare Support
help link: http://www.apple.com/support/
help telephone: 1-800-275-2273

2.2 ({697AFC77-F318-4CD4-BF16-F50F4C1072DA})
version: 33685504
version (major): 2
install location: c:\program files\ulead systems\dvd moviefactory for toshiba\Ulead DVD DiscRecorder 2.2
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{697AFC77-F318-4CD4-BF16-F50F4C1072DA}\setup.exe" -l0x9
publisher: Ulead Systems, Inc.

Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4})
version: 16777216
version (major): 1
estimated size: 296
install date: 20081127
install source: C:\Users\Yes\AppData\Local\Temp\IXP000.TMP\
uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
publisher: Microsoft Corp

Adobe Fonts All 1.0 ({6ABE0BEE-D572-4FE8-B434-9E72A289431B})
version: 16777216
version (major): 1
estimated size: 1761
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeFontsAll\
uninstall cmd: MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
publisher: Adobe Systems Incorporated

TOSHIBA HD DVD PLAYER 4.11.12 ({6C5F3BDC-0A1B-4436-A696-5939629D5C31})
version: 67829772
install date: 20080530
install location: C:\Program Files\TOSHIBA\TOSHIBA HD DVD PLAYER
uninstall cmd: C:\Program Files\InstallShield Installation Information\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}\setup.exe -runfromtemp -l0x0009 -ADDREMOVE -removeonly
publisher: TOSHIBA Corporation

Adobe Color Common Settings 1.0.1 ({6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF})
version: 16777217
version (major): 1
estimated size: 23935
install date: 20081014
install source: C:\Users\mercury996\AppData\Local\Installer4192\payloads\AdobeColorCommonSet1.0.1All\
uninstall cmd: MsiExec.exe /I{6D4AC5A4-4CF9-4F90-8111-B9B53CE257BF}
publisher: Adobe Systems Incorporated

Adobe Asset Services CS3 3 ({6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61})
version: 50331648
version (major): 3
estimated size: 47129
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeAssetServices3All\
uninstall cmd: MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
publisher: Adobe Systems Incorporated

Microsoft Visual C++ 2005 Redistributable 8.0.56336 ({7299052b-02a4-4627-81f2-1818da5d550d})
version: 134274064
version (major): 8
estimated size: 421
install date: 20090923
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005256\unit_tpi_vcredist-x86-2005Sp1\
uninstall cmd: MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
publisher: Microsoft Corporation

7.1.0 ({7585478E9D9B42108671C12F8714CEFE})
install location: C:\Program Files\DivX\DivX Converter
uninstall cmd: C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
publisher: DivX, Inc.

Nero StartSmart 9.4.11.100 ({7748ac8c-18e3-43bb-959b-088faea16fb2})
version: 151257099
version (major): 9
version (minor): 4
estimated size: 169924
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero StartSmart\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_15\
uninstall cmd: MsiExec.exe /X{7748ac8c-18e3-43bb-959b-088faea16fb2}
publisher: Nero AG

Nero BurnRights 3.4.10.100 ({7829db6f-a066-4e40-8912-cb07887c20bb})
version: 50593802
version (major): 3
version (minor): 4
estimated size: 2997
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero BurnRights\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_22\
uninstall cmd: MsiExec.exe /X{7829db6f-a066-4e40-8912-cb07887c20bb}
publisher: Nero AG

TOSHIBA ConfigFree 7.00.29 ({78C6A78A-8B03-48C8-A47C-78BA1FCA2307})
version: 117440541
install date: 20070530
install location: C:\Program Files\TOSHIBA\ConfigFree
uninstall cmd: C:\Program Files\InstallShield Installation Information\{78C6A78A-8B03-48C8-A47C-78BA1FCA2307}\setup.exe -runfromtemp -l0x0009 uninstall -removeonly
publisher: TOSHIBA

DivX Codec 6.9.1 ({7B63B2922B174135AFC0E1377DD81EC2})
install location: C:\Program Files\DivX\DivX Codec
uninstall cmd: C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
publisher: DivX, Inc.

Adobe XMP Panels CS3 1.0 ({802771A9-A856-4A41-ACF7-1450E523C923})
version: 16777216
version (major): 1
estimated size: 197
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeXMPPanelsAll\
uninstall cmd: MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
publisher: Adobe Systems Incorporated

Nero DiscSpeed 5.4.10.100 ({869200db-287a-4dc0-b02b-2b6787fbcd4c})
version: 84148234
version (major): 5
version (minor): 4
estimated size: 3662
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero DiscSpeed\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_57\
uninstall cmd: MsiExec.exe /X{869200db-287a-4dc0-b02b-2b6787fbcd4c}
publisher: Nero AG

Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network Card Driver for Windows Vista 1.00.0000 ({8833FFB6-5B0C-4764-81AA-06DFEED9A476})
version: 16777216
install date: 20070626
install location: C:\Program Files\Realtek\VISTA_8169
uninstall cmd: C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\setup.exe -runfromtemp -l0x0009 -removeonly
publisher: Realtek

DivX Player 7.2.0 ({8ADFC4160D694100B5B8A22DE9DCABD9})
install location: C:\Program Files\DivX\DivX Player
uninstall cmd: C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
publisher: DivX, Inc.

Macromedia Dreamweaver MX 6.0 ({8B4AB829-DFD3-436D-B808-D9733D76C590})
version (major): 6
install location: C:\Program Files\Macromedia\Dreamweaver MX
install source: C:\Program Files\Macromedia
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8B4AB829-DFD3-436D-B808-D9733D76C590}\Setup.exe" -l0x9 mmUninstall
publisher: Macromedia

Adobe Device Central CS3 1.0 ({8D2BA474-F406-4710-9AE4-D4F22D21F0DD})
version: 16777216
version (major): 1
estimated size: 137150
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeDeviceCentralAll\
uninstall cmd: MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
publisher: Adobe Systems Incorporated

anthem12
2009-12-01, 19:00
Adobe Type Support 1.0 ({8E6808E2-613D-4FCD-81A2-6C8FA8E03312})
version: 16777216
version (major): 1
estimated size: 5677
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeTypeSupportAll\
uninstall cmd: MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
publisher: Adobe Systems Incorporated

Microsoft Office Access MUI (English) 2007 12.0.4518.1014 ({90120000-0015-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 31916
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0117-0409-0000-0000000FF1CE}-C\Access.en-us\
uninstall cmd: MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Excel MUI (English) 2007 12.0.4518.1014 ({90120000-0016-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 15444
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0016-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office PowerPoint MUI (English) 2007 12.0.4518.1014 ({90120000-0018-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 15389
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0018-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Publisher MUI (English) 2007 12.0.4518.1014 ({90120000-0019-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 24282
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0019-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Outlook MUI (English) 2007 12.0.4518.1014 ({90120000-001A-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 22828
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-001A-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Word MUI (English) 2007 12.0.4518.1014 ({90120000-001B-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 18657
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-001B-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Proof (English) 2007 12.0.4518.1014 ({90120000-001F-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 51191
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.en\
uninstall cmd: MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Proof (French) 2007 12.0.4518.1014 ({90120000-001F-040C-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 23416
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\
uninstall cmd: MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Proof (Spanish) 2007 12.0.4518.1014 ({90120000-001F-0C0A-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 38197
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.es\
uninstall cmd: MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Proofing (English) 2007 12.0.4518.1014 ({90120000-002C-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 506
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Enterprise 2007 12.0.4518.1014 ({90120000-0030-0000-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 613795
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office InfoPath MUI (English) 2007 12.0.4518.1014 ({90120000-0044-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 8746
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0044-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Shared MUI (English) 2007 12.0.4518.1014 ({90120000-006E-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 36038
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office OneNote MUI (English) 2007 12.0.4518.1014 ({90120000-00A1-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 37842
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-00A1-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Groove MUI (English) 2007 12.0.4518.1014 ({90120000-00BA-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 3566
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0114-0409-0000-0000000FF1CE}-C\Groove.en-us\
uninstall cmd: MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Groove Setup Metadata MUI (English) 2007 12.0.4518.1014 ({90120000-0114-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 502
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0114-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Shared Setup Metadata MUI (English) 2007 12.0.4518.1014 ({90120000-0115-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 502
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Microsoft Office Access Setup Metadata MUI (English) 2007 12.0.4518.1014 ({90120000-0117-0409-0000-0000000FF1CE})
version: 201331110
version (major): 12
estimated size: 502
install date: 20081013
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All Users\{90120000-0117-0409-0000-0000000FF1CE}-C\
uninstall cmd: MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
publisher: Microsoft Corporation

Adobe Anchor Service CS3 1.0 ({90176341-0A8B-4CCC-A78D-F862228A6B95})
version: 16777216
version (major): 1
estimated size: 1025
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeALMAnchorServiceAll\
uninstall cmd: MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
publisher: Adobe Systems Incorporated

Adobe Color NA Recommended Settings 1.0 ({95655ED4-7CA5-46DF-907F-7144877A32E5})
version: 16777216
version (major): 1
estimated size: 1661
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeColorNA_RecommendedAll\
uninstall cmd: MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
publisher: Adobe Systems Incorporated

Nero Installer 2.0.0.1 ({961D53EA-40DC-4156-AD74-25684CE05F81})
version: 33554432
version (major): 2
estimated size: 9205
install date: 20090924
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1002529\unit_app_30\
publisher: Nero AG

Nero ControlCenter 0.0.0.1 ({9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F})
estimated size: 16
install date: 20090924
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1002529\unit_hlp_63\
publisher: Nero AG

Adobe Bridge CS3 2 ({9C9824D9-9000-4373-A6A5-D0E5D4831394})
version: 33554432
version (major): 2
estimated size: 265322
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeBridge2All\
uninstall cmd: MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
publisher: Adobe Systems Incorporated

Nero PhotoSnap 1.53.2.0 ({9e82b934-9a25-445b-b8df-8012808074ac})
version: 20250626
version (major): 1
version (minor): 53
estimated size: 17140
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero PhotoSnap\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_10\
uninstall cmd: MsiExec.exe /X{9e82b934-9a25-445b-b8df-8012808074ac}
publisher: Nero AG

NeroLiveGadget 1.2.7.100 ({9e9fdde6-2c26-492a-85a0-05646b3f2795})
version: 16908295
version (major): 1
version (minor): 2
estimated size: 29608
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\NeroLive.Gadget\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_74\
uninstall cmd: MsiExec.exe /X{9e9fdde6-2c26-492a-85a0-05646b3f2795}
publisher: Nero AG

Advertising Center 0.0.0.1 ({9F3523F8-DAD7-AE52-6DA7-45CDDDF33726})
estimated size: 21364
install date: 20090924
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1002529\unit_app_61\
publisher: Nero AG

CD/DVD Drive Acoustic Silencer 2.00.03 ({9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D})
version: 33554435
install location: C:\Program Files\TOSHIBA\TOSCDSPD
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}\setup.exe" -l0x9
publisher: TOSHIBA

Nero WaveEditor 5.4.23.0 ({a209525b-3377-43f4-b886-32f6b6e7356f})
version: 84148247
version (major): 5
version (minor): 4
estimated size: 81261
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero WaveEditor\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_17\
uninstall cmd: MsiExec.exe /X{a209525b-3377-43f4-b886-32f6b6e7356f}
publisher: Nero AG

Adobe CMaps 1.0 ({A2B242BD-FF8D-4840-9DAA-9170EABEC59C})
version: 16777216
version (major): 1
estimated size: 6493
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeCMapsAll\
uninstall cmd: MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
publisher: Adobe Systems Incorporated

Adobe Color - Photoshop Specific 1.0 ({A2D81E70-2A98-4A08-A628-94388B063C5E})
version: 16777216
version (major): 1
estimated size: 4961
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeColorPhotoshopAll\
uninstall cmd: MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
publisher: Adobe Systems Incorporated

QuickTime 7.64.17.73 ({A429C2AE-EBF1-4F81-A221-1C115CAADDAD})
version: 121634833
version (major): 7
version (minor): 64
estimated size: 78335
install date: 20091105
install location: C:\Program Files\QuickTime\
install source: C:\Users\mercury996\AppData\Local\Apple\Apple Software Update\
uninstall cmd: MsiExec.exe /I{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}
publisher: Apple Inc.
contact: AppleCare Support
help link: http://www.apple.com/support/
help telephone: 1-800-275-2273

Macromedia Extension Manager 1.5 ({A5BA14E0-7384-11D4-BAE7-00409631A2C8})
version (major): 1
version (minor): 5
install location: C:\Program Files\Macromedia\Extension Manager
install source: C:\Program Files\Macromedia
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}\setup.exe" -l0x9 mmUninstall
publisher: Macromedia

({A644254B-92F6-4970-8635-AB0775371E72})
install location: C:\Program Files\InterVideo\AVControl
uninstall cmd: "C:\Program Files\InstallShield Installation Information\{A644254B-92F6-4970-8635-AB0775371E72}\setup.exe" --u:{A644254B-92F6-4970-8635-AB0775371E72}
publisher: InterVideo Inc.
contact: support@intervideo.com
help link: http://www.intervideo.com/jsp/Support.jsp

ImagXpress 7.0.74.0 ({A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D})
version: 117440586
version (major): 7
estimated size: 3575
install date: 20090923
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005256\unit_tpi_imagxpress-7.0.74.0\
publisher: Nero AG

H.264 Decoder 1.1.0 ({A96E97134CA649888820BCDE5E300BBD})
install location: C:\Program Files\DivX\DivX Plus DirectShow Filters
publisher: DivX, Inc.

MKV Splitter 1.0.1 ({AAC389499AEF40428987B3D30CFC76C9})
install location: C:\Program Files\DivX\DivX Plus DirectShow Filters
publisher: DivX, Inc.

Nero 9 Trial ({ab0ba72b-4443-4e02-8c87-8dcbec85d632})
version (major): 9
version (minor): 4
install date: 20090924
install location: C:\Program Files\Nero\Nero ControlCenter 4
uninstall cmd: C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="8M01-209M-AH6P-5UW0-WHAW-C53X-473X-79MH"
publisher: Nero AG
comments: Nero AG
contact: techsupport@nero.com
help link: http://www.nero.com

PDF Settings 1.0 ({AC5B0C19-D851-42F4-BDA0-410ECF7F70A5})
version: 16777216
version (major): 1
estimated size: 579
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobePDFSettingsNAEU\
uninstall cmd: MsiExec.exe /I{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}
publisher: Adobe Systems Incorporated

Adobe Reader 8.1.7 8.1.7 ({AC76BA86-7AD7-1033-7B44-A81300000003})
version: 134283271
version (major): 8
version (minor): 1
estimated size: 91639
install date: 20091017
install source: C:\Users\Yes\AppData\Local\Adobe\Updater5\Install\reader8rdr-en_US\
uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81300000003}
publisher: Adobe Systems Incorporated
comments:
contact: Customer Support
help link: http://www.adobe.com/support/main.html
readme: C:\Program Files\Adobe\Reader 8.0\Reader\Readme.htm

AAC Decoder 7.1.0 ({AEF9DC35ADDF4825B049ACBFD1C6EB37})
install location: C:\Program Files\DivX\DivX Plus DirectShow Filters
publisher: DivX, Inc.

DivX Converter 7.1.0 ({B13A7C41581B411290FBC0395694E2A9})
install location: C:\Program Files\DivX\DivX Converter
uninstall cmd: C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
publisher: DivX, Inc.

DolbyFiles 2.0 ({b1adf008-e898-4fe2-8a1f-690d9a06acaf})
version: 33554432
version (major): 2
estimated size: 480
install date: 20090924
install location: WillBeSetByCA
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_69\
uninstall cmd: MsiExec.exe /X{b1adf008-e898-4fe2-8a1f-690d9a06acaf}
publisher: Nero AG

Advertising Center 0.0.0.1 ({b2ec4a38-b545-4a00-8214-13fe0e915e6d})
estimated size: 17285
install date: 20090924
install location: WillBeSetByCA
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005263\unit_app_61\
uninstall cmd: MsiExec.exe /X{b2ec4a38-b545-4a00-8214-13fe0e915e6d}
publisher: Nero AG

Adobe Camera Raw 4.0 4.0 ({B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C})
version: 67108864
version (major): 4
estimated size: 9969
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeCameraRaw4.0All\
uninstall cmd: MsiExec.exe /I{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}
publisher: Adobe Systems Incorporated

Adobe Setup 1.0 ({B3C02EC1-A7B0-4987-9A43-8789426AAA7D})
version: 16777216
version (major): 1
estimated size: 6260
install date: 20081014
install source: C:\Users\mercury996\AppData\Local\Installer4388\
uninstall cmd: MsiExec.exe /I{B3C02EC1-A7B0-4987-9A43-8789426AAA7D}
publisher: Adobe Systems Incorporated

Spybot - Search & Destroy 1.6.2 ({B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1)
install date: 20090509
install location: C:\Program Files\Spybot - Search & Destroy\
uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
publisher: Safer Networking Limited
help link: http://www.safer-networking.org/index.php?page=support

Microsoft XML Parser 8.20.8730.4 ({B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE})
version: 135537178
version (major): 8
version (minor): 20
estimated size: 792
install date: 20070530
publisher: Microsoft Corporation

DivX Web Player 1.5.0 ({B7050CBDB2504B34BC2A9CA0A692CC29})
install location: C:\Program Files\DivX\DivX Web Player
uninstall cmd: C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
publisher: DivX,Inc.

Menu Templates - Starter Kit 9.4.2.0 ({b78120a0-cf84-4366-a393-4d0a59bc546c})
version: 151257090
version (major): 9
version (minor): 4
estimated size: 5872
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Templates\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_62\
uninstall cmd: MsiExec.exe /X{b78120a0-cf84-4366-a393-4d0a59bc546c}
publisher: Nero AG

Adobe Default Language CS3 1.0 ({B9B35331-B7E4-4E5C-BF4C-7BC87856124D})
version: 16777216
version (major): 1
estimated size: 1730
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeDefaultLanguageCS3All\
uninstall cmd: MsiExec.exe /I{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}
publisher: Adobe Systems Incorporated

Nero ControlCenter 9.0.0.1 ({bd5ca0da-71ad-43da-b19e-6eee0c9adc9a})
version: 150994944
version (major): 9
estimated size: 10940
install date: 20090924
install location: WillBeSetByCA
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005263\unit_app_63\
uninstall cmd: MsiExec.exe /X{bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}
publisher: Nero AG

Toshiba Registration 1.00.0000 ({C53D16CC-E56F-47B8-906E-70AAF8EABB4F})
version: 16777216
version (major): 1
estimated size: 2200
install date: 20070530
install location: C:\Program Files\Toshiba Registration\
install source: C:\Windows\Downloaded Installations\{AC78AE4F-92B1-4975-9124-15C3B0A8BA1D}\
uninstall cmd: MsiExec.exe /I{C53D16CC-E56F-47B8-906E-70AAF8EABB4F}
publisher: Datalode Inc.

SoundTrax 4.4.23.0 ({c5a7cb6c-e76d-408f-ba0e-85605420fe9d})
version: 67371031
version (major): 4
version (minor): 4
estimated size: 99313
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero SoundTrax\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_14\
uninstall cmd: MsiExec.exe /X{c5a7cb6c-e76d-408f-ba0e-85605420fe9d}
publisher: Nero AG

Microsoft IntelliType Pro 6.1 6.10.156.0 ({C73A3AB4-99A4-45E5-B77F-09A3065E0D6A})
version: 101318812
version (major): 6
version (minor): 10
estimated size: 13070
install date: 20091116
install source: D:\itype\setup\
publisher: Microsoft
help link: http://support.microsoft.com/

Bluetooth Stack for Windows by Toshiba v5.10.06(T) ({CEBB6BFB-D708-4F99-A633-BC2600E01EF6})
version: 83886080
version (major): 5
version (minor): 10
estimated size: 55977
install date: 20091128
install location: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\WZSE0.TMP\
uninstall cmd: MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}

NeroBurningROM 9.4.13.100 ({d025a639-b9c9-417d-8531-208859000af8})
version: 151257101
version (major): 9
version (minor): 4
estimated size: 163550
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Burning ROM\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_4\
uninstall cmd: MsiExec.exe /X{d025a639-b9c9-417d-8531-208859000af8}
publisher: Nero AG

Adobe Version Cue CS3 Client 3 ({D0DFF92A-492E-4C40-B862-A74A173C25C5})
version: 50331648
version (major): 3
estimated size: 22411
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeVersionCueClient3All\
uninstall cmd: MsiExec.exe /I{D0DFF92A-492E-4C40-B862-A74A173C25C5}
publisher: Adobe Systems Incorporated

Skype™ 4.1 4.1.179 ({D103C4BA-F905-437A-8049-DB24763BBE36})
version: 67174579
version (major): 4
version (minor): 1
estimated size: 25627
install date: 20091122
install location: C:\Program Files\Skype\
install source: C:\ProgramData\Skype\{D103C4BA-F905-437A-8049-DB24763BBE36}\
uninstall cmd: MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
publisher: Skype Technologies S.A.
help link: http://ui.skype.com/ui/0/4.1.0.179/en/help

Adobe Setup 1.0 ({D1BB4446-AE9C-4256-9A7F-4D46604D2462})
version: 16777216
version (major): 1
estimated size: 16064
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\
uninstall cmd: MsiExec.exe /I{D1BB4446-AE9C-4256-9A7F-4D46604D2462}
publisher: Adobe Systems Incorporated

Adobe PDF Library Files 8.0 ({D2559B88-CC9D-4B48-81BB-F492BAA9C48C})
version: 134217728
version (major): 8
estimated size: 59001
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobePDFL8All\
uninstall cmd: MsiExec.exe /I{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}
publisher: Adobe Systems Incorporated

Nero ShowTime 5.4.13.100 ({d9dcf92e-72eb-412d-ac71-3b01276e5f8b})
version: 84148237
version (major): 5
version (minor): 4
estimated size: 92714
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero ShowTime\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_13\
uninstall cmd: MsiExec.exe /X{d9dcf92e-72eb-412d-ac71-3b01276e5f8b}
publisher: Nero AG

SnagIt 8 8.2.3 ({DA0BF7AB-88EB-4675-8FA1-531EAD938821})
version: 134348803
version (major): 8
version (minor): 2
estimated size: 28006
install date: 20091029
install location: C:\Program Files\TechSmith\SnagIt 8\
install source: C:\Program Files\Common Files\Wise Installation Wizard\
uninstall cmd: MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
publisher: TechSmith Corporation
help link: http://support.techsmith.com

Adobe Color JA Extra Settings 1.0 ({DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029})
version: 16777216
version (major): 1
estimated size: 2777
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeColorJA_ExtraSettingsAll\
uninstall cmd: MsiExec.exe /I{DD7DB3C5-6FA3-4FA3-8A71-C2F2940EB029}
publisher: Adobe Systems Incorporated

Ad-Aware 8.1.0 ({DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF})
version: 134283264
version (major): 8
version (minor): 1
estimated size: 150229
install date: 20091027
install location: C:\Program Files\Lavasoft\Ad-Aware
install source: C:\Users\MERCUR~1\AppData\Local\Temp\mia1\
uninstall cmd: C:\ProgramData\{CFBD8779-FAAB-4357-84F2-1EC8619FADA6}\Ad-AwareInstallation.exe
publisher: Lavasoft

Nero Live 1.4.40.0 ({df6a95f5-adc1-406a-bdc6-2aa7cc0182aa})
version: 17039400
version (major): 1
version (minor): 4
estimated size: 30391
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero Live\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_71\
uninstall cmd: MsiExec.exe /X{df6a95f5-adc1-406a-bdc6-2aa7cc0182aa}
publisher: Nero AG

Windows Media Encoder 9 Series 9.00.2980 ({E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E})
version: 150997924
version (major): 9
estimated size: 13911
install date: 20070530
install source: C:\Windows\Installer\
uninstall cmd: MsiExec.exe /I{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}
publisher: Microsoft Corporation
help link: http://go.microsoft.com/fwlink/?LinkId=9647

Nero 9 ({e48972e9-8629-4470-9ad2-d53ea094806a})
version (major): 9
version (minor): 4
install date: 20090924
install location: C:\Program Files\Nero\Nero ControlCenter 4
uninstall cmd: C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="5M03-8086-26T8-W2H9-HLX9-82TE-MXL2-59MX"
publisher: Nero AG
comments: Nero AG
contact: techsupport@nero.com
help link: http://www.nero.com

Movie Templates - Starter Kit 9.4.2.0 ({e498385e-1c51-459a-b45f-1721e37aa1a0})
version: 151257090
version (major): 9
version (minor): 4
estimated size: 48544
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Templates\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_64\
uninstall cmd: MsiExec.exe /X{e498385e-1c51-459a-b45f-1721e37aa1a0}
publisher: Nero AG

Adobe Update Manager CS3 5.1.0 ({E69AE897-9E0B-485C-8552-7841F48D42D8})
version: 83951616
version (major): 5
version (minor): 1
estimated size: 2226
install date: 20081202
install source: E:\Downloads\Torrent Files\Torrents\Adobe Photoshop CS3 Extended + Crack\payloads\AdobeAUM5.1All\
uninstall cmd: MsiExec.exe /I{E69AE897-9E0B-485C-8552-7841F48D42D8}
publisher: Adobe Systems Incorporated

Nero Installer 4.4.9.0 ({E8A80433-302B-4FF1-815D-FCC8EAC482FF})
version: 67371017
version (major): 4
version (minor): 4
estimated size: 18701
install date: 20090923
install location: WillBeSetByCA
install source: C:\Users\mercury996\AppData\Local\Temp\NERO1005256\unit_app_30\
uninstall cmd: MsiExec.exe /X{e8a80433-302b-4ff1-815d-fcc8eac482ff}
publisher: Nero AG

TOSHIBA SD Memory Utilities 1.8.1.1 ({EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7})
version: 17301505
version (major): 1
version (minor): 8
estimated size: 1003
install date: 20070530
install location: C:\Program Files\TOSHIBA\TOSHIBA SD Memory Utilities\
uninstall cmd: MsiExec.exe /X{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}
publisher: TOSHIBA

TOSHIBA Speech System Applications ({EE033C1F-443E-41EC-A0E2-559B539A4E4D})
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}\Setup.exe" -l0x9

Realtek High Definition Audio Driver 6.0.1.5433 ({F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC})
version: 35782656
install date: 20070626
install location: C:\Program Files\Realtek\InstallShield\
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x9 -removeonly
publisher: Realtek Semiconductor Corp.

Nero Disc Copy Gadget 2.4.17.0 ({f1861f30-3419-44db-b2a1-c274825698b3})
version: 33816593
version (major): 2
version (minor): 4
estimated size: 30435
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\NeroDiscCopy9.Gadget\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_50\
uninstall cmd: MsiExec.exe /X{f1861f30-3419-44db-b2a1-c274825698b3}
publisher: Nero AG

DVD MovieFactory for TOSHIBA 5.3 ({F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485})
version: 84082688
version (major): 5
install location: C:\Program Files\Ulead Systems\DVD MovieFactory for TOSHIBA\Ulead DVD MovieFactory 5
uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}\setup.exe" -l0x9
publisher: Ulead Systems, Inc.

Intel(R) PROSet/Wireless WiFi Software 12.04.0000 ({F22FD942-651D-4EE8-BD6F-7E0AF5E17625})
version: 201588736
version (major): 12
version (minor): 4
estimated size: 81215
install date: 20090609
install location: C:\Program Files\Intel\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\sef2EAD.tmp\
uninstall cmd: MsiExec.exe /I{F22FD942-651D-4EE8-BD6F-7E0AF5E17625}
publisher: Intel Corporation
comments: Intel(R) PROSet/Wireless WiFi Software installation package
contact: Intel(R) Customer Support
help link: http://support.intel.com/support/index.htm
help telephone: 1-916-377-7000

Visual C++ 2008 x86 Runtime - (v9.0.30729) 9.0.30729 ({F333A33D-125C-32A2-8DCE-5C5D14231E27})
version: 151025673
version (major): 9
estimated size: 251
install date: 20090509
install source: C:\Users\Yes\AppData\Local\Temp\mia5A80.tmp\data\Microsoft Visual C++ Runtime 9.0 (includes ATL and MFC) Service Pack 1\mFileBagIDE.dll\bag\
uninstall cmd: MsiExec.exe /X{F333A33D-125C-32A2-8DCE-5C5D14231E27}
publisher: Microsoft Corporation

Visual C++ 2008 x86 Runtime - v9.0.30729.01 9.0.30729.01 ({F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01)
uninstall cmd: C:\Windows\system32\msiexec.exe /x {F333A33D-125C-32A2-8DCE-5C5D14231E27} /qb+ REBOOTPROMPT=""
publisher: Microsoft Corporation

O&O Defrag Professional 11.5.4065 ({F530581E-12FE-43B4-A28D-E5257AAD63E6})
version: 184881121
version (major): 11
version (minor): 5
estimated size: 35898
install date: 20090516
install location: C:\Program Files\OO Software\Defrag\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\O&O Defrag Professional\
uninstall cmd: MsiExec.exe /I{F530581E-12FE-43B4-A28D-E5257AAD63E6}
publisher: O&O Software GmbH
contact: Technical Support
help link: http://www.oo-software.com
help telephone: ++49 (30) 4303 4300
readme: Readme.txt

TIPCI 1.23.0000 ({F7B05784-334C-4F76-8BAB-30ABEB7FD534})
version: 18284544
version (major): 1
version (minor): 23
estimated size: 812
install date: 20080530
install location: C:\Windows\tiinst\
publisher: Texas Instruments Inc.
comments: TI PCIxx21/PCIx515/xx12 Software components
contact: Customer Support Department
help link: Please contact your vendor directly
help telephone: ...

Nero InfoTool 6.4.10.100 ({fbcdfd61-7dcf-4e71-9226-873ba0053139})
version: 100925450
version (major): 6
version (minor): 4
estimated size: 4768
install date: 20090924
install location: C:\Program Files\Nero\Nero 9\Nero InfoTool\
install source: C:\Users\MERCUR~1\AppData\Local\Temp\NERO1004803\unit_app_20\
uninstall cmd: MsiExec.exe /X{fbcdfd61-7dcf-4e71-9226-873ba0053139}
publisher: Nero AG

TOSHIBA Value Added Package 1.0.24 ({FEDD27A0-B306-45EF-BF58-B527406B42C8})
version: 16777240
version (major): 1
estimated size: 32899
install date: 20070530
install location: C:\Program Files\Toshiba\TOSHIBAValueAddedPackage\
publisher: TOSHIBA Corporation



--- System Services ---
Service (registry key): .NET CLR Data
Registry path: \SYSTEM\CurrentControlSet\Services\
Control Set: CurrentControlSet
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET CLR Networking
Registry path: \SYSTEM\CurrentControlSet\Services\
Control Set: CurrentControlSet
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET Data Provider for Oracle
Registry path: \SYSTEM\CurrentControlSet\Services\
Control Set: CurrentControlSet
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NET Data Provider for SqlServer
Registry path: \SYSTEM\CurrentControlSet\Services\
Control Set: CurrentControlSet
Start: 0
Type: 0
Error Control: 0

Service (registry key): .NETFramework
Registry path: \SYSTEM\CurrentControlSet\Services\
Control Set: CurrentControlSet
Start: 0
Type: 0
Error Control: 0

Service (registry key): ACPI
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Microsoft ACPI Driver
Image path: system32\drivers\acpi.sys
Image size: 258232
Image MD5: 84FC6DF81212D16BE5C4F441682FECCC
Control Set: CurrentControlSet
Start: 0
Type: 1
Error Control: 3

Service (registry key): adp94xx
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\adp94xx.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpahci
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\adpahci.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu160m
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\adpu160m.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): adpu320
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\adpu320.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): adsi
Registry path: \SYSTEM\CurrentControlSet\Services\
Control Set: CurrentControlSet
Start: 0
Type: 0
Error Control: 0

Service (registry key): AeLookupSvc
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%SystemRoot%\system32\aelupsvc.dll,-1
Description: @%SystemRoot%\system32\aelupsvc.dll,-2
Object name: localSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 2
Type: 32
Error Control: 1

Service (registry key): AFD
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Ancilliary Function Driver for Winsock
Description: Ancilliary Function Driver for Winsock
Image path: \SystemRoot\system32\drivers\afd.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 1
Type: 1
Error Control: 1

Service (registry key): AgereModemAudio
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Agere Modem Call Progress Audio
Object name: LocalSystem
Image path: C:\Windows\system32\agrsmsvc.exe
Image size: 9216
Image MD5: 39E435C90C9C4F780FA0ED05CA3C3A1B
Control Set: CurrentControlSet
Start: 2
Type: 16
Error Control: 1

Service (registry key): AgereSoftModem
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: TOSHIBA V92 Software Modem
Image path: system32\DRIVERS\AGRSM.sys
Image size: 1161888
Image MD5: CE91B158FA490CF4C4D487A4130F4660
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): agp440
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Intel AGP Bus Filter
Image path: \SystemRoot\system32\drivers\agp440.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): aic78xx
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\djsvs.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): ALG
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%SystemRoot%\system32\Alg.exe,-112
Description: @%SystemRoot%\system32\Alg.exe,-113
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 58880
Image MD5: E69FB0E3112C40FDC0EF7D21A52DC951
Control Set: CurrentControlSet
Start: 3
Type: 16
Error Control: 1

Service (registry key): aliide
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\aliide.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 3

Service (registry key): amdagp
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: AMD AGP Bus Filter Driver
Image path: \SystemRoot\system32\drivers\amdagp.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): amdide
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\amdide.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 3

Service (registry key): AmdK7
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: AMD K7 Processor Driver
Image path: \SystemRoot\system32\drivers\amdk7.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): AmdK8
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: AMD K8 Processor Driver
Image path: \SystemRoot\system32\drivers\amdk8.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): Appinfo
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%systemroot%\system32\appinfo.dll,-100
Description: @%systemroot%\system32\appinfo.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,ProfSvc

Service (registry key): arc
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\arc.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): arcsas
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\arcsas.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): AsyncMac
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: RAS Asynchronous Media Driver
Description: RAS Asynchronous Media Driver
Image path: system32\DRIVERS\asyncmac.sys
Image size: 17408
Image MD5: E86CF7CE67D5DE898F27EF884DC357D8
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): atapi
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: IDE Channel
Image path: system32\drivers\atapi.sys
Image size: 21560
Image MD5: B35CFCEF838382AB6490B321C87EDF17
Control Set: CurrentControlSet
Start: 0
Type: 1
Error Control: 3

Service (registry key): AudioEndpointBuilder
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%SystemRoot%\system32\audiosrv.dll,-204
Description: @%SystemRoot%\System32\audiosrv.dll,-205
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 2
Type: 32
Error Control: 1
Depends On services: PlugPlay

Service (registry key): Audiosrv
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%SystemRoot%\system32\audiosrv.dll,-200
Description: @%SystemRoot%\System32\audiosrv.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 2
Type: 32
Error Control: 1
Depends On services: AudioEndpointBuilder,RpcSs,MMCSS

Service (registry key): BattC
Registry path: \SYSTEM\CurrentControlSet\Services\
Control Set: CurrentControlSet
Start: 0
Type: 0
Error Control: 0

Service (registry key): Beep
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Beep
Control Set: CurrentControlSet
Start: 1
Type: 1
Error Control: 1

Service (registry key): BFE
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%SystemRoot%\system32\bfe.dll,-1001
Description: @%SystemRoot%\system32\bfe.dll,-1002
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs

Service (registry key): BITS
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%SystemRoot%\system32\qmgr.dll,-1000
Description: @%SystemRoot%\system32\qmgr.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,EventSystem

Service (registry key): blbdrive
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: \SystemRoot\system32\drivers\blbdrive.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): Bonjour Service
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##
Description: ##Id_String2.6844F930_1628_4223_B5CC_5BB94B879762##
Object name: LocalSystem
Image path: "C:\Program Files\Bonjour\mDNSResponder.exe"
Image size: 229376
Image MD5: 73686FE0B2E0469F89FD2075BE724704
Control Set: CurrentControlSet
Start: 2
Type: 16
Error Control: 1
Depends On services: Tcpip

Service (registry key): bowser
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Bowser
Description: Implements the datagram receiver for the computer browser browser service.
Image path: system32\DRIVERS\bowser.sys
Image size: 69632
Image MD5: 913CD06FBE9105CE6077E90FD4418561
Control Set: CurrentControlSet
Start: 3
Type: 2
Error Control: 1

Service (registry key): BRCMDECO
Registry path: \SYSTEM\CurrentControlSet\Services\
Image path: system32\DRIVERS\BRCMHD32.sys
Image size: 68864
Image MD5: 0623AE76E7EA62DAF42246900CECD64D
Control Set: CurrentControlSet
Start: 1
Type: 1
Error Control: 1

Service (registry key): BrFiltLo
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Brother USB Mass-Storage Lower Filter Driver
Image path: \SystemRoot\system32\drivers\brfiltlo.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): BrFiltUp
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Brother USB Mass-Storage Upper Filter Driver
Image path: \SystemRoot\system32\drivers\brfiltup.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): Browser
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%systemroot%\system32\browser.dll,-100
Description: @%systemroot%\system32\browser.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 2
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer

Service (registry key): Brserid
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Brother MFC Serial Port Interface Driver (WDM)
Image path: \SystemRoot\system32\drivers\brserid.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): BrSerWdm
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Brother WDM Serial driver
Image path: \SystemRoot\system32\drivers\brserwdm.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): BrUsbMdm
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Brother MFC USB Fax Only Modem
Image path: \SystemRoot\system32\drivers\brusbmdm.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): BrUsbSer
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Brother MFC USB Serial WDM Driver
Image path: \SystemRoot\system32\drivers\brusbser.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): BthEnum
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Bluetooth Request Block Driver
Image path: system32\DRIVERS\BthEnum.sys
Image size: 19456
Image MD5: 064FBC56921051DE1075495D628B815F
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): BTHMODEM
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Bluetooth Serial Communications Driver
Image path: \SystemRoot\system32\drivers\bthmodem.sys
Image size: 0
Image MD5: D41D8CD98F00B204E9800998ECF8427E
Control Set: CurrentControlSet
Start: 4
Type: 1
Error Control: 1

Service (registry key): BthPan
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Bluetooth Device (Personal Area Network)
Description: Bluetooth Device (Personal Area Network)
Image path: system32\DRIVERS\bthpan.sys
Image size: 92160
Image MD5: B8C3D9DDF85FD197C3E5F849FEF71144
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): BTHPORT
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: Bluetooth Port Driver
Image path: System32\Drivers\BTHport.sys
Image size: 220160
Image MD5: B24757D9154CCA035E1BBD3DB92966D7
Control Set: CurrentControlSet
Start: 3
Type: 1
Error Control: 1

Service (registry key): BthServ
Registry path: \SYSTEM\CurrentControlSet\Services\
Display name: @%SystemRoot%\System32\bthserv.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k bthsvcs
Image size: 22016
Image MD5: 10DA15933D582D2FEDCF705EFE394B09
Control Set: CurrentControlSet
Start: 2
Type: 32
Error Control: 1
Depends On services: rpcss

tashi
2009-12-01, 19:10
Hello anthem12,

Please see this forum's FAQ and start a new topic.
"BEFORE you POST"(READ this Procedure BEFORE Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)

http://forums.spybot.info/showpost.php?p=25290&postcount=4
(http://forums.spybot.info/showpost.php?p=25290&postcount=4)
Best regards.