Solved

Unwelcome visitors in Boot Sector (s)

Posted on 2004-03-25
13
8,020 Views
Last Modified: 2013-12-04
This is a sorrowful, tangled tale-but I am on my 3rd computer since Jan.16th. On 11/20/03 the 1st computer (80 GB HD, 1 partition, FAT32, W2K) was infected by neighbor who was file sharing AND sharing my DSL. I knew something was wrong but the computer was updated, patched, behind a router and Norton said all was well. Also ran Ad-Aware, SpyBot and SpyWare Blaster regularly and other than the ever-present data miners, they too came up with zilch. That computer crashed hard on 1/16/04 in the middle of a project. Quickly hooked up #2, a Dell that had just been delivered 3 days prior for mother who wanted to learn to email. This was a 40GB HD, 1 partition, NTFS, WIN-XP HOME. Installed the security updates, sp's, Norton, Ad-Aware, etc and back-tracked several days on by now critical project with the last backup from #1 which was on a read-only CD. On the weekend of Feb 20, 21 & 22, Wallwatcher logged over 12,600 incomings to Linksys BEFSR-41 wired router. I was the only one on the network as neigbors line has been physically cut, although I had not yet investigated #1. The odd thing about the incomings was that they were from about 40 different countries, mostly Europe and Asia. Had installed a critical update on 2/11 which caused a BSOD and an error code pointing to new drivers, of which there weren't any.  BSOD again on 2/24, same error code. Started looking around.

Services that I had disabled on 1/16, such as telephony, terminal services, remote access connection manager, etc., were running although the "startup type" still showed disabled. Then I discovered that there seemed to be an IIS and an SQL server not only installed, but also running. About that time, I also realized that I had no admin rights and was "blocked" from many files and unable to change any registry values. Norton and his sidekicks were still singing Happy Days, but MS Baseline Analyzer claimed I had no security updates . Then started getting redirects from MS, Symantec, etc. Went to my neigbor's house to use his computer, and to utter horror found the same story on his W2K, 20 GB HD, 1 partition, FAT32 computer. I thought it was because I had borrowed his router a couple of weeks earlier, while troubleshooting my mess. Except that I went to another neighbor who has W2K and again found the same story and we have never exchanged an email or anything else computer related.

Unhooked computer #2 and hooked up computer #3, a newly refurbished 6GB, W2K, 1 partition, FAT32 computer from former boyfriend that had not been used since refurbishment. He also gave me a new DSL modem. NOW it gets really wierd..on computer #2 (Dell) I could get a DSL sync light, but not a LAN light with my modem and a LAN light but no DSL SYNC light with his modem, with or without the router. I have not seen Andy since the same exact NO LAN on mine and  NO SYNC on his, happend with the modems on #3 that  he just brought over and that had worked fine at his house.

Sorry this is so long,..but while this was going on the phone was acting wierd, also. Phone company came and found my line not only hooked up to my building "B" (Townhouse condominium complex), but it was also hooked up to Building "C" on an empty pair, but alive and well with dial tone. They urged me to call the police who had no clue what we were talking about. I did contact Sans and Cert, and now my old router and HD are in Mass with Sans, but I haven't heard anything yet.

The files that I can find and read are slippery.  They change dates, directories, and even their names and file sizes.  They are encrypted and I have no experience with that. I have reformatted #3 three times, with no success. I wipe out the "unallocated" space when reinstalling, but it shows right back up. Tried Partition and Boot Magic, who sometimes see the space, but mostly don't. I download updates, only to happen on the Uninstall file later.

Now for the end at last...from what I can tell, and this is by booting from a Linux Knoppix disk, "they" are involved with VoIP and use telephony and terminal services constantly. I have all the video and audio codecs that seem to be associated with VoiP installed.There are all kinds of files relating to country phone codes and Sprint, MCi, etc. charges.  I also have files for Windows 3.1, 95, 98, ME and XP on this W2K box. There are 10 different languages and fonts installed, mostly from Eastern Europe and the Middle East (including I think, Iraq). "They" have full control of the printer and floppy drive and sometimes they show up in Explorer, but mostly they don't. If I'm in an unwelcome place, I get some not very convincing windows "error" message or just thrown out completely to another directory. I have been using my web mail, but I think they are with me there, too. I can't email an attachment (not that anybody wants one from me) as it just gets wiped out.

I have been all over the Internet and can't find anything like this. HELP! I want my life, my privacy and my computer back. This isn't about money, as I constantly order over the net and my back account is fine, although I have now changed cards. And my phone is still acting strange, with "open line" like sounds on it. Also, #1 had not had Yahoo Chat since 10/03, #2 and #3 never had it. I'm a distance learning student, in my last year,  and I may never graduate because it's all done over the web. As the most computer literate of the bunch, the neighbors are waiting on me to figure it out. After the 2nd neighbor, I quit asking, but a laptop (W2K) that I had fixed for a friend and put on the network to install updates has since shown to also have the by now familiar story. Two of us use Earthlink, the other neighbor uses Bell South.

I feel like typhoid Mary caught in a bad dream. I'm looking forward to your suggestions and thank you for reading this all the way through. I just hope it posts.

Carole
0
Comment
Question by:seashell55
  • 9
  • 3
13 Comments
 
LVL 12

Expert Comment

by:trywaredk
Comment Utility
Use this free online Trend Housecall scanner to find and clean every known virus/rootkits/backdoors:
http://housecall.trendmicro.com/housecall/start_corp.asp

Some viruses can't be removed by housecall. If so, use the free Trend Micro system cleaner:
http://www.trendmicro.com/download/tsc.asp

If you get's an ActiveX error, when loading the HouseCall web page:
http://kb.trendmicro.com/solutions/solutionDetail.asp?solutionId=4317

If you want to secure your one workstation in the future, consider to purchase PC-cillin with builtin firewall:
http://www.trendmicro.com/en/products/desktop/pc-cillin/evaluate/overview.htm

Many Regards
Jorgen Malmgren
IT-Supervisor
Denmark

:o) Your brain is like a parachute. It works best when it's open
0
 
LVL 12

Expert Comment

by:trywaredk
Comment Utility
Getting a personal Firewall
http://www.zensecurity.co.uk/default.asp?URL=personal

Download the free version of Sygate personal firewall
http://smb.sygate.com/support/documents/spf/default.htm
http://smb.sygate.com/download/download.php?pid=spf

Download the free version of ZoneAlarm firewall
http://www.zonelabs.com/store/content/company/zap_za_grid.jsp?lid=ho_za

Comparative reviews of personal firewall software:
http://www.firewallguide.com/software.htm

Firewall Product Selector - Choose yourself which one to compare
http://www.spirit.com/cgi-new/report.pl?dbase=fw&function=view

0
 
LVL 12

Expert Comment

by:trywaredk
Comment Utility
Spybot:
http://security.kolla.de/index.php

Ad-aware Standard Edition is THE award winning, free*, multicomponent adware detection and removal utility:
http://www.lavasoft.de/software/adaware/

SpyFerret detects & removes spyware
http://www.onlinepcfix.com/spyware/spyware.htm

Bazooka Adware and Spyware Scanner v1.13.01
http://www.kephyr.com/spywarescanner/

Automatic check of your browser for parasites, adware and spyware
http://www.doxdesk.com/parasite/
0
 
LVL 12

Assisted Solution

by:trywaredk
trywaredk earned 250 total points
Comment Utility
First thing to do, is to unplug the internet (phone) line from your computer.

Next thing to do, is to gain local admin permissions back again, and change the administrator accountname to YourAdministratorAccountName, and make a new guestuser called administrator with a long wird difficult password, and remove everybody else from the local admin group.

Next thing to do, is to install a firewall, and then get rid of the trojan/backdoor/virus/spyware.

Then you can plug your computer to the internet again.

Builtin and predefined groups in Windows 2000 Pro
http://www.microsoft.com/windows2000/en/professional/help/default.asp?url=/windows2000/en/professional/help/windows_security_default_settings.htm

members of the local admin group
1. Start / Run
2. Input CMD
3. Press ENTER
4. Input NET LOCALGROUP ADMINISTRATORS
5. Press ENTER

Why you should not run your computer as an administrator
http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/windows_security_whynot_admin.htm

Remove Users from Local Admin Group
http://www.winnetmag.com/WindowsSecurity/Article/ArticleID/21296/21296.html

0
 
LVL 12

Expert Comment

by:trywaredk
Comment Utility
How to Protect Boot Sector from Viruses in Windows
http://support.microsoft.com/default.aspx?scid=kb;EN-US;122221
0
 
LVL 12

Accepted Solution

by:
trywaredk earned 250 total points
Comment Utility
0
What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

 

Author Comment

by:seashell55
Comment Utility
Hi Trywaredk,

Thanks for your answer.  I will be gone all day, but will check out some of this tonight and tomorrow. But just to let you know, I am redirected away from every on-line scanner that I have found, including TrendMicro. And AdAware and Spybot, as well as Norton seem to have been disabled, or at least changed so that they do not detect the problem.

Also, any ideas how two different computers that were pre-loaded and not started until tney were behind the firewalls still became infected?

I have a new 80GB HD for computer #2 but I don't want to put it in till I know that it will remain pest-free.

Thanks for your help.
Carole
0
 
LVL 38

Assisted Solution

by:Rich Rumble
Rich Rumble earned 250 total points
Comment Utility
Very dubious and intriguing. Did I read correctly, that your neighbor's are being redirected as well, in that I mean- they appear "hacked" as well? This is what needs done. Step by Step.
1) You need that 1 NEW hd, and no other in the PC. You sound as if you've been into computers for awhile, or at least know your way around them well. Rebuild, with NO network connection. If you can get XP pro, that would be nice- I don't know xp home, but have heard it's ok... I still love 2k- so I vote for 2k over xp home for security reasons actually.
2) build it up, xp-pro or 2k. Remember no network, yet. Be sure you have CD's or are able to burn the cd's prior to the rebuild- I am very partial to mcafee, norton will suffice also. Nothing beats ZoneAlarm- even the free version is perfect for your needs. Get ZA on a cd before you build with the new 80gb HD. So build 2k or xp-pro, then get ZA on the box.
ZA has the added benefit of being able to pause/deny process's from running. It will be chatty at first, but this is normal, and welcomed. So you will be alerted when a new process wants to access the internet, and when someone want's to access your PC. Before or after ZA is installed- turn off these 3or4 services. Remote Registry-    Server  - Messenger      and if you have XP turn off      Remote helpdesk session manger
With the Server service disabled, no one can connect to your PC with another windows box- and files and folders cannot be shared. This is tripple protection- you have ZA running FW and process managment, as well as turning off the only M$ ways on to your pc. Do not check your mail that includes all email, hotmail yahoo etc...
3) hook up to the internet. Visit windows update, download the service pack if you don't have it on disk, plus the other 70+ megs of updates.  Get norton on there or mcafee- get the latest dats.
You should remain clean from intruders that way, if you somehow get infected/hacked again it's voodoo, or physical access.
Your personal login and your admin pass, should contain non-printable chars, so that your password cannot be cracked, with the conventinal password hackers out there, and key-loggers cannot pick up by default. That means a password with ALT+255 in it, preferably within 7 chars from the begining of the pass, and also past the eighth char of the pass.
ez(ALT+255)passw(ATL+255)ord is impossible with todays crackers, I've been trying that one and simpler ones for years... no go. Hold the ATL key and on the number pad on the right, hit 2 5 5 you'll see 1 astrick * in your pass, but a cracker will think it's 3. It doesn't equate to y with the umlaouts (german thingies over the letter) and it doesnt equate to 255... it's unprintable- looks like a space if you type it in notepad. It's a bit hard to type on a laptop as you'll need the function key, and have to press "ikk" or something... don't remember. Reset the Guest password, even though it is a locked account.
Here are some best-practices to follow also: http://experts-exchange.com/Security/Win_Security/Q_20932795.html

And you thought your question was long ;)

You can place your old HD's back in after that is accomplished with saftey. Now get Norton/Mcafee to scan your old HD's- use Ad-Aware and the others you mentioned. It could be a custom backdoor- but is unlikely, mcafee will detect more backdoor and hacking tools than norton, in my experience. With XP you'll also want to turn off system restore also... http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001111912274039?OpenDocument&src=sec_doc_nam

To answer your latest post- Not sure how they would get past a firewall that was any good and get in, but M$ by default is easily hacked- i.e. remote registry, terminal services (someone on xp... I could connect to anyone not running a firewall as "RemoteDesktop" is ON by default, and take over thier keyboard and mouse- with the right password, which can probably be obtained from someother program that keeps passwords in the registry- most users use 1 password to rule them all) I can also go to the managment console, and look around at their hardware, usernames, anything in the management console- event log's you name it. It's baffeling that there arent more lawsuits against M$....

The google toolbar is also a great free product that block's ads, and those ad's sometimes lead to comprimises. toolbar.google.com
Don't run Kazaa or it's ilk, and follow best practices keep up on patches which nowadays are fully automated- typically
GL!
-rich
0
 
LVL 12

Expert Comment

by:trywaredk
Comment Utility
RICHRUMBLE..."I don't know xp home, but have heard it's ok... I still love 2k- so I vote for 2k over xp home for security reasons actually."

:o) I'm on W2k also, but one important difference between XP and XP home is, that XP home does'nt have group policy.

0
 
LVL 12

Expert Comment

by:trywaredk
Comment Utility
>"But just to let you know, I am redirected away from every on-line scanner that I have found, including TrendMicro. And AdAware and Spybot, as well as Norton seem to have been disabled, or at least changed so that they do not detect the problem."

Take a look on your hosts-file, that's where the redirection could be done.
http://support.microsoft.com/?kbid=101927
%systemroot% means C:\WINNT or C:\WINDOWS

>"Also, any ideas how two different computers that were pre-loaded and not started until tney were behind the firewalls still became infected?"

1. Your firewall isn't configured correct.
2. The virus/spyware/trojan/backdoor spreads from computer to computer behind your firewall
0
 

Author Comment

by:seashell55
Comment Utility
Hi,

I appreciate the suggestions from both of you. It's been a struggle to get on the internet which is why I've not been on till now. I'm on the W2K box using the Knoppix Linux disk, but all I can do is the internet. I can't get W2K to start at all. Now, step-by-step, here is what's happened.

1. Rich-yes, at least two neighbors have the same files and activities that I do. No admin rights, redirects, and number of incomings hitting their loggers from the same IP's and countries (I had to install WallWatcher on one box to find that out).Same wierd files.

2.Try-Nobody else has been behind the firewall except me since the problem started. It was a Linksys BEFSR-41 Router. WAN access, VPN access were all disabled. I did have MTU set to 1492 because WebCT needs it (one of my classes).

3. Never have had any P2P file sharing software, Kazaa, etc.(I'm a student, but not one that is exactly out of high school, to put it delicately).

4.I put the new (from Dell) 80 GB HD in the Dell 4600C. Then I installed the WinXP Home disk that came with it. I have XP Pro, but only for upgrades, which was my next step. I set it up with 4 FAT32 partitions, approx 20 GB each. The only things attached were the keyboard, mouse, monitor. First thing I did was stop server, remote registry, (anything remote) and workstation in Services. But whatever happened had already happened..no admin rights, etc. I did NOT have a modem or phone plug anywhere near this PC. No prior HD, either. As a matter of fact, I can't get the network card to even show up...Broadcom 440 integrated.

5. Both machines are in front of me..each with their own monitor, keyboard, mouse and this one has the DSL modem. Tried setting up the printer on the Dell XP, and it is set up, shows as ready, but seems to only print remotely.

6. I can access my system information in the XP box. By some miracle I have figured out how to copy it to a floppy and then put the floppy in this box and mount it to the Knoppix disk. It's long, but I have no idea what's important and what's not..so I copied all of it. It looks like their are 2 keyboards hooked up to the XP box, but trust me, there is only 1. Also, I did restart services trying to get info out of MMC. And, the A drive is a USB drive, the XP box did not come with a floppy drive. Also, the original BIOS version was A03, and using the reverse prodcedure with the floppy, I flashed it last night to A05. But the date was Feb 14, 2004, so I'm not sure where this 1/15/2004 comes in. I have not restarted the box since flashing.

7.  Would love to hear your thoughts. It's been six weeks, 3 computers, 4 HD's and I still don't have much.  If you want to see any other files or stuff, I can try to get them out of the XP box, and some out of this one from the mounted drives. I haven't figured out yet how to copy device manager, but when I click on "Show hidden devices" 27 of them show up, most of them having to do with networking.  For example, "Remote Access Auto Connection Driver", "Remote Access IP ARP Driver", "Remote Access NDIS TAPI Driver".

8.  Is it possible for whoever has the admin rights to be accessing these computers thru some sort of wireless somethings? Another guess is that the "bugs" may involve online games.

Thanks again for your help. I really appreciate it.  Carole


??System Information report written at: 04/05/04 02:50:24
System Name: STARBUCKS
[System Summary]

Item      Value      
OS Name      Microsoft Windows XP Home Edition      
Version      5.1.2600 Service Pack 1 Build 2600      
OS Manufacturer      Microsoft Corporation      
System Name      STARBUCKS      
System Manufacturer      Dell Computer Corporation      
System Model      Dimension 4600C      
System Type      X86-based PC      
Processor      x86 Family 15 Model 2 Stepping 9 GenuineIntel ~2660 Mhz      
BIOS Version/Date      Dell Computer Corporation A05, 1/15/2004      
SMBIOS Version      2.3      
Windows Directory      C:\WINDOWS      
System Directory      C:\WINDOWS\System32      
Boot Device      \Device\HarddiskVolume1      
Locale      United States      
Hardware Abstraction Layer      Version = "5.1.2600.1106 (xpsp1.020828-1920)"      
User Name      STARBUCKS\Carole      
Time Zone      Eastern Daylight Time      
Total Physical Memory      256.00 MB      
Available Physical Memory      127.82 MB      
Total Virtual Memory      853.94 MB      
Available Virtual Memory      636.54 MB      
Page File Space      606.95 MB      
Page File      C:\pagefile.sys      

[Hardware Resources]



[Conflicts/Sharing]

Resource      Device      
I/O Port 0x00000000-0x00000CF7      PCI bus      
I/O Port 0x00000000-0x00000CF7      Direct memory access controller      
            
IRQ 4      SM Bus Controller      
IRQ 4      Multimedia Audio Controller      
            
IRQ 9      Microsoft ACPI-Compliant System      
IRQ 9      Ethernet Controller      
            
IRQ 16      Standard Universal PCI to USB Host Controller      
IRQ 16      Standard Universal PCI to USB Host Controller      
            
IRQ 18      Standard Universal PCI to USB Host Controller      
IRQ 18      Standard Dual Channel PCI IDE Controller      
            
Memory Address 0xA0000-0xBFFFF      PCI bus      
Memory Address 0xA0000-0xBFFFF      VgaSave      
            

[DMA]

Resource      Device      Status      
Channel 4      Direct memory access controller      OK      

[Forced Hardware]

Device      PNP Device ID      

[I/O]

Resource      Device      Status      
0x00000000-0x00000CF7      PCI bus      OK      
0x00000000-0x00000CF7      Direct memory access controller      OK      
0x00000D00-0x0000FFFF      PCI bus      OK      
0x0000ED98-0x0000ED9F      Video Controller (VGA Compatible)      OK      
0x0000FF80-0x0000FF9F      Standard Universal PCI to USB Host Controller      OK      
0x0000FF60-0x0000FF7F      Standard Universal PCI to USB Host Controller      OK      
0x0000FF40-0x0000FF5F      Standard Universal PCI to USB Host Controller      OK      
0x0000FF20-0x0000FF3F      Standard Universal PCI to USB Host Controller      OK      
0x0000DFF8-0x0000DFFF      PCI Simple Communications Controller      OK      
0x00000A79-0x00000A79      ISAPNP Read Data Port      OK      
0x00000279-0x00000279      ISAPNP Read Data Port      OK      
0x00000274-0x00000277      ISAPNP Read Data Port      OK      
0x00000080-0x0000009F      Direct memory access controller      OK      
0x000000C0-0x000000DF      Direct memory access controller      OK      
0x000000F0-0x000000FF      Numeric data processor      OK      
0x00000020-0x0000003F      Programmable interrupt controller      OK      
0x000000A0-0x000000BF      Programmable interrupt controller      OK      
0x000004D0-0x000004D1      Programmable interrupt controller      OK      
0x00000061-0x00000061      System speaker      OK      
0x00000070-0x0000007F      System CMOS/real time clock      OK      
0x00000040-0x0000005F      System timer      OK      
0x00000060-0x00000060      Standard 101/102-Key or Microsoft Natural PS/2 Keyboard      OK      
0x00000064-0x00000064      Standard 101/102-Key or Microsoft Natural PS/2 Keyboard      OK      
0x00000378-0x0000037F      ECP Printer Port (LPT1)      OK      
0x00000778-0x0000077F      ECP Printer Port (LPT1)      OK      
0x00000062-0x00000063      System board      OK      
0x00000065-0x0000006F      System board      OK      
0x000000E0-0x000000EF      System board      OK      
0x00000800-0x0000085F      System board      OK      
0x00000C00-0x00000C7F      System board      OK      
0x00000860-0x000008FF      System board      OK      
0x0000FFA0-0x0000FFAF      Standard Dual Channel PCI IDE Controller      OK      
0x000001F0-0x000001F7      Primary IDE Channel      OK      
0x000003F6-0x000003F6      Primary IDE Channel      OK      
0x00000170-0x00000177      Secondary IDE Channel      OK      
0x00000376-0x00000376      Secondary IDE Channel      OK      
0x0000FE00-0x0000FE07      Standard Dual Channel PCI IDE Controller      OK      
0x0000FE10-0x0000FE13      Standard Dual Channel PCI IDE Controller      OK      
0x0000FE20-0x0000FE27      Standard Dual Channel PCI IDE Controller      OK      
0x0000FE30-0x0000FE33      Standard Dual Channel PCI IDE Controller      OK      
0x0000FEA0-0x0000FEAF      Standard Dual Channel PCI IDE Controller      OK      
0x0000EDA0-0x0000EDBF      SM Bus Controller      OK      
0x0000EE00-0x0000EEFF      Multimedia Audio Controller      OK      
0x0000EDC0-0x0000EDFF      Multimedia Audio Controller      OK      
0x000003B0-0x000003BB      VgaSave      OK      
0x000003C0-0x000003DF      VgaSave      OK      
0x000001CE-0x000001CF      VgaSave      OK      
0x000002E8-0x000002EF      VgaSave      OK      

[IRQs]

Resource      Device      Status      
IRQ 9      Microsoft ACPI-Compliant System      OK      
IRQ 9      Ethernet Controller      OK      
IRQ 11      Video Controller (VGA Compatible)      OK      
IRQ 16      Standard Universal PCI to USB Host Controller      OK      
IRQ 16      Standard Universal PCI to USB Host Controller      OK      
IRQ 19      Standard Universal PCI to USB Host Controller      OK      
IRQ 18      Standard Universal PCI to USB Host Controller      OK      
IRQ 18      Standard Dual Channel PCI IDE Controller      OK      
IRQ 23      Standard Enhanced PCI to USB Host Controller      OK      
IRQ 10      PCI Simple Communications Controller      OK      
IRQ 13      Numeric data processor      OK      
IRQ 8      System CMOS/real time clock      OK      
IRQ 0      System timer      OK      
IRQ 1      Standard 101/102-Key or Microsoft Natural PS/2 Keyboard      OK      
IRQ 14      Primary IDE Channel      OK      
IRQ 15      Secondary IDE Channel      OK      
IRQ 4      SM Bus Controller      OK      
IRQ 4      Multimedia Audio Controller      OK      

[Memory]

Resource      Device      Status      
0x0000-0x9FFFF      System board      OK      
0x100000-0xFFFFFF      System board      OK      
0x1000000-0xF76FFFF      System board      OK      
0xC0000-0xFFFFF      System board      OK      
0xFEC00000-0xFEC0FFFF      System board      OK      
0xFEE00000-0xFEE0FFFF      System board      OK      
0xFED20000-0xFED8FFFF      System board      OK      
0xFECF0000-0xFECF0FFF      System board      OK      
0xFFB00000-0xFFBFFFFF      System board      OK      
0xFFC00000-0xFFFFFFFF      System board      OK      
0xA0000-0xBFFFF      PCI bus      OK      
0xA0000-0xBFFFF      VgaSave      OK      
0x80000000-0xFEBFFFFF      PCI bus      OK      
0xE8000000-0xEFFFFFFF      Video Controller (VGA Compatible)      OK      
0xFEB80000-0xFEBFFFFF      Video Controller (VGA Compatible)      OK      
0xFEB7F400-0xFEB7F7FF      Standard Enhanced PCI to USB Host Controller      OK      
0xFE9F0000-0xFE9FFFFF      PCI Simple Communications Controller      OK      
0xFE9EE000-0xFE9EFFFF      Ethernet Controller      OK      
0xFEB7FC00-0xFEB7FFFF      Standard Dual Channel PCI IDE Controller      OK      
0xFEB7FA00-0xFEB7FBFF      Multimedia Audio Controller      OK      
0xFEB7F900-0xFEB7F9FF      Multimedia Audio Controller      OK      

[Components]



[Multimedia]



[Audio Codecs]

CODEC      Manufacturer      Description      Status      File      Version      Size      Creation Date      
c:\windows\system32\iac25_32.ax      Intel Corporation      Indeo® audio software      OK      C:\WINDOWS\System32\IAC25_32.AX      2.05.53      195.00 KB (199,680 bytes)      11/14/2002 12:58 PM      
c:\windows\system32\l3codeca.acm      Fraunhofer Institut Integrierte Schaltungen IIS      Fraunhofer IIS MPEG Layer-3 Codec      OK      C:\WINDOWS\System32\L3CODECA.ACM      1, 9, 0, 0305      284.00 KB (290,816 bytes)      7/16/2003 8:31 PM      
c:\windows\system32\sl_anet.acm      Sipro Lab Telecom Inc.      Sipro Lab Telecom Audio Codec      OK      C:\WINDOWS\System32\SL_ANET.ACM      3.02      84.00 KB (86,016 bytes)      7/16/2003 8:45 PM      
c:\windows\system32\tssoft32.acm      DSP GROUP, INC.            OK      C:\WINDOWS\System32\TSSOFT32.ACM      1.01      8.00 KB (8,192 bytes)      7/16/2003 8:48 PM      
c:\windows\system32\msaud32.acm      Microsoft Corporation      Windows Media Audio Codec      OK      C:\WINDOWS\System32\MSAUD32.ACM      8.00.00.4487      288.00 KB (294,912 bytes)      7/16/2003 8:35 PM      
c:\windows\system32\msg723.acm      Microsoft Corporation            OK      C:\WINDOWS\System32\MSG723.ACM      4.4.3400      116.00 KB (118,784 bytes)      3/30/2004 6:14 PM      
c:\windows\system32\msgsm32.acm      Microsoft Corporation            OK      C:\WINDOWS\System32\MSGSM32.ACM      5.1.2600.0 (xpclient.010817-1148)      19.50 KB (19,968 bytes)      7/16/2003 8:35 PM      
c:\windows\system32\msadp32.acm      Microsoft Corporation            OK      C:\WINDOWS\System32\MSADP32.ACM      5.1.2600.1106 (xpsp1.020828-1920)      13.00 KB (13,312 bytes)      7/16/2003 8:35 PM      
c:\windows\system32\msg711.acm      Microsoft Corporation            OK      C:\WINDOWS\System32\MSG711.ACM      5.1.2600.0 (xpclient.010817-1148)      9.00 KB (9,216 bytes)      7/16/2003 8:35 PM      
c:\windows\system32\imaadp32.acm      Microsoft Corporation            OK      C:\WINDOWS\System32\IMAADP32.ACM      5.1.2600.1106 (xpsp1.020828-1920)      14.50 KB (14,848 bytes)      7/16/2003 8:30 PM      

[Video Codecs]

CODEC      Manufacturer      Description      Status      File      Version      Size      Creation Date      
c:\windows\system32\msrle32.dll      Microsoft Corporation            OK      C:\WINDOWS\System32\MSRLE32.DLL      5.1.2600.1106 (xpsp1.020828-1920)      10.00 KB (10,240 bytes)      7/16/2003 8:36 PM      
c:\windows\system32\tsbyuv.dll      Microsoft Corporation            OK      C:\WINDOWS\System32\TSBYUV.DLL      5.1.2600.0 (XPClient.010817-1148)      8.00 KB (8,192 bytes)      8/17/2001 10:36 PM      
c:\windows\system32\msvidc32.dll      Microsoft Corporation            OK      C:\WINDOWS\System32\MSVIDC32.DLL      5.1.2600.0 (xpclient.010817-1148)      25.00 KB (25,600 bytes)      7/16/2003 8:36 PM      
c:\windows\system32\ir50_32.dll      Intel Corporation      Indeo® video 5.10      OK      C:\WINDOWS\System32\IR50_32.DLL      R.5.10.15.2.55      737.50 KB (755,200 bytes)      11/14/2002 12:58 PM      
c:\windows\system32\msyuv.dll      Microsoft Corporation            OK      C:\WINDOWS\System32\MSYUV.DLL      5.1.2600.0 (XPClient.010817-1148)      16.00 KB (16,384 bytes)      8/17/2001 10:36 PM      
c:\windows\system32\msh263.drv      Microsoft Corporation            OK      C:\WINDOWS\System32\MSH263.DRV      4.4.3400      280.00 KB (286,720 bytes)      8/29/2002 3:41 AM      
c:\windows\system32\iyuv_32.dll      Microsoft Corporation            OK      C:\WINDOWS\System32\IYUV_32.DLL      5.1.2600.0 (XPClient.010817-1148)      44.50 KB (45,568 bytes)      8/17/2001 10:36 PM      
c:\windows\system32\iccvid.dll      Radius Inc.            OK      C:\WINDOWS\System32\ICCVID.DLL      1.10.0.6      108.00 KB (110,592 bytes)      7/16/2003 8:29 PM      
c:\windows\system32\ir41_32.ax      Intel Corporation            OK      C:\WINDOWS\System32\IR41_32.AX      4.51.16.03      828.50 KB (848,384 bytes)      11/14/2002 12:58 PM      
c:\windows\system32\msh261.drv      Microsoft Corporation            OK      C:\WINDOWS\System32\MSH261.DRV      4.4.3400      180.00 KB (184,320 bytes)      3/30/2004 6:13 PM      
c:\windows\system32\ir32_32.dll      Intel(R) Corporation            OK      C:\WINDOWS\System32\IR32_32.DLL      Not Available      194.50 KB (199,168 bytes)      7/16/2003 8:30 PM      

[CD-ROM]

Item      Value      
Drive      D:      
Description      CD-ROM Drive      
Media Loaded      No      
Media Type      CD-ROM      
Name      HL-DT-ST RW/DVD GCC-4241N      
Manufacturer      (Standard CD-ROM drives)      
Status      OK      
Transfer Rate      Not Available      
SCSI Target ID      0      
PNP Device ID      IDE\CDROMHL-DT-ST_RW/DVD_GCC-4241N_______________A100____\5&1B566717&0&0.0.0      
Driver      c:\windows\system32\drivers\cdrom.sys (5.1.2600.1106 (xpsp1.020828-1920), 46.38 KB (47,488 bytes), 7/16/2003 8:25 PM)      

[Sound Device]

Item      Value      

[Display]

Item      Value      

[Infrared]

Item      Value      

[Input]



[Keyboard]

Item      Value      
Description      Standard 101/102-Key or Microsoft Natural PS/2 Keyboard      
Name      Enhanced (101- or 102-key)      
Layout      00000409      
PNP Device ID      ACPI\PNP0303\4&1506BB2E&0      
Number of Function Keys      12      
I/O Port      0x00000060-0x00000060      
I/O Port      0x00000064-0x00000064      
IRQ Channel      IRQ 1      
Driver      c:\windows\system32\drivers\i8042prt.sys (5.1.2600.1106 (xpsp1.020828-1920), 49.88 KB (51,072 bytes), 7/16/2003 8:29 PM)      

[Pointing Device]

Item      Value      
Hardware Type      Microsoft USB IntelliMouse Explorer      
Number of Buttons      5      
Status      OK      
PNP Device ID      USB\VID_045E&PID_001E\5&275E89DE&0&1      
Power Management Supported      No      
Double Click Threshold      6      
Handedness      Right Handed Operation      
Driver      c:\windows\system32\drivers\hidusb.sys (5.1.2600.0 (XPClient.010817-1148), 9.38 KB (9,600 bytes), 7/16/2003 8:29 PM)      

[Modem]

Item      Value      

[Network]



[Adapter]

Item      Value      
Name      [00000001] RAS Async Adapter      
Adapter Type      Not Available      
Product Type      RAS Async Adapter      
Installed      Yes      
PNP Device ID      Not Available      
Last Reset      4/3/2004 6:42 PM      
Index      1      
Service Name      AsyncMac      
IP Address      Not Available      
IP Subnet      Not Available      
Default IP Gateway      Not Available      
DHCP Enabled      No      
DHCP Server      Not Available      
DHCP Lease Expires      Not Available      
DHCP Lease Obtained      Not Available      
MAC Address      Not Available      
            
Name      [00000002] WAN Miniport (L2TP)      
Adapter Type      Not Available      
Product Type      WAN Miniport (L2TP)      
Installed      Yes      
PNP Device ID      ROOT\MS_L2TPMINIPORT\0000      
Last Reset      4/3/2004 6:42 PM      
Index      2      
Service Name      Rasl2tp      
IP Address      Not Available      
IP Subnet      Not Available      
Default IP Gateway      Not Available      
DHCP Enabled      No      
DHCP Server      Not Available      
DHCP Lease Expires      Not Available      
DHCP Lease Obtained      Not Available      
MAC Address      Not Available      
Driver      c:\windows\system32\drivers\rasl2tp.sys (5.1.2600.1106 (xpsp1.020828-1920), 47.25 KB (48,384 bytes), 7/16/2003 8:42 PM)      
            
Name      [00000003] WAN Miniport (PPTP)      
Adapter Type      Wide Area Network (WAN)      
Product Type      WAN Miniport (PPTP)      
Installed      Yes      
PNP Device ID      ROOT\MS_PPTPMINIPORT\0000      
Last Reset      4/3/2004 6:42 PM      
Index      3      
Service Name      PptpMiniport      
IP Address      Not Available      
IP Subnet      Not Available      
Default IP Gateway      Not Available      
DHCP Enabled      No      
DHCP Server      Not Available      
DHCP Lease Expires      Not Available      
DHCP Lease Obtained      Not Available      
MAC Address      50:50:54:50:30:30      
Driver      c:\windows\system32\drivers\raspptp.sys (5.1.2600.1106 (xpsp1.020828-1920), 45.25 KB (46,336 bytes), 7/16/2003 8:42 PM)      
            
Name      [00000004] WAN Miniport (PPPOE)      
Adapter Type      Wide Area Network (WAN)      
Product Type      WAN Miniport (PPPOE)      
Installed      Yes      
PNP Device ID      ROOT\MS_PPPOEMINIPORT\0000      
Last Reset      4/3/2004 6:42 PM      
Index      4      
Service Name      RasPppoe      
IP Address      Not Available      
IP Subnet      Not Available      
Default IP Gateway      Not Available      
DHCP Enabled      No      
DHCP Server      Not Available      
DHCP Lease Expires      Not Available      
DHCP Lease Obtained      Not Available      
MAC Address      33:50:6F:45:30:30      
Driver      c:\windows\system32\drivers\raspppoe.sys (5.1.2600.0 (xpclient.010817-1148), 38.00 KB (38,912 bytes), 7/16/2003 8:42 PM)      
            
Name      [00000005] Direct Parallel      
Adapter Type      Not Available      
Product Type      Direct Parallel      
Installed      Yes      
PNP Device ID      ROOT\MS_PTIMINIPORT\0000      
Last Reset      4/3/2004 6:42 PM      
Index      5      
Service Name      Raspti      
IP Address      Not Available      
IP Subnet      Not Available      
Default IP Gateway      Not Available      
DHCP Enabled      No      
DHCP Server      Not Available      
DHCP Lease Expires      Not Available      
DHCP Lease Obtained      Not Available      
MAC Address      Not Available      
Driver      c:\windows\system32\drivers\raspti.sys (5.1.2600.0 (xpclient.010817-1148), 16.13 KB (16,512 bytes), 7/16/2003 8:42 PM)      
            
Name      [00000006] WAN Miniport (IP)      
Adapter Type      Not Available      
Product Type      WAN Miniport (IP)      
Installed      Yes      
PNP Device ID      ROOT\MS_NDISWANIP\0000      
Last Reset      4/3/2004 6:42 PM      
Index      6      
Service Name      NdisWan      
IP Address      Not Available      
IP Subnet      Not Available      
Default IP Gateway      Not Available      
DHCP Enabled      No      
DHCP Server      Not Available      
DHCP Lease Expires      Not Available      
DHCP Lease Obtained      Not Available      
MAC Address      Not Available      
Driver      c:\windows\system32\drivers\ndiswan.sys (5.1.2600.1106 (xpsp1.020828-1920), 85.50 KB (87,552 bytes), 7/16/2003 8:37 PM)      
            
Name      [00000007] Packet Scheduler Miniport      
Adapter Type      Ethernet 802.3      
Product Type      Packet Scheduler Miniport      
Installed      Yes      
PNP Device ID      ROOT\MS_PSCHEDMP\0000      
Last Reset      4/3/2004 6:42 PM      
Index      7      
Service Name            
IP Address      Not Available      
IP Subnet      Not Available      
Default IP Gateway      Not Available      
DHCP Enabled      No      
DHCP Server      Not Available      
DHCP Lease Expires      Not Available      
DHCP Lease Obtained      Not Available      
MAC Address      4E:F6:20:52:41:53      
Driver      c:\windows\system32\drivers\psched.sys (5.1.2600.1106 (xpsp1.020828-1920), 64.50 KB (66,048 bytes), 7/16/2003 8:42 PM)      

[Protocol]

Item      Value      
Name      MSAFD Tcpip [TCP/IP]      
Connectionless Service      No      
Guarantees Delivery      Yes      
Guarantees Sequencing      Yes      
Maximum Address Size      16 bytes      
Maximum Message Size      0 bytes      
Message Oriented      No      
Minimum Address Size      16 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      No      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      No      
Supports Expedited Data      Yes      
Supports Graceful Closing      Yes      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      No      
            
Name      MSAFD Tcpip [UDP/IP]      
Connectionless Service      Yes      
Guarantees Delivery      No      
Guarantees Sequencing      No      
Maximum Address Size      16 bytes      
Maximum Message Size      63.93 KB (65,467 bytes)      
Message Oriented      Yes      
Minimum Address Size      16 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      Yes      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      No      
Supports Expedited Data      No      
Supports Graceful Closing      No      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      Yes      
            
Name      RSVP UDP Service Provider      
Connectionless Service      Yes      
Guarantees Delivery      No      
Guarantees Sequencing      No      
Maximum Address Size      16 bytes      
Maximum Message Size      63.93 KB (65,467 bytes)      
Message Oriented      Yes      
Minimum Address Size      16 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      Yes      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      Yes      
Supports Expedited Data      No      
Supports Graceful Closing      No      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      Yes      
            
Name      RSVP TCP Service Provider      
Connectionless Service      No      
Guarantees Delivery      Yes      
Guarantees Sequencing      Yes      
Maximum Address Size      16 bytes      
Maximum Message Size      0 bytes      
Message Oriented      No      
Minimum Address Size      16 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      No      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      Yes      
Supports Expedited Data      Yes      
Supports Graceful Closing      Yes      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      No      
            
Name      MSAFD NetBIOS [\Device\NetBT_Tcpip_{936B295C-AFDD-42B8-B772-56BE61707C2D}] SEQPACKET 1      
Connectionless Service      No      
Guarantees Delivery      Yes      
Guarantees Sequencing      Yes      
Maximum Address Size      20 bytes      
Maximum Message Size      62.50 KB (64,000 bytes)      
Message Oriented      Yes      
Minimum Address Size      20 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      No      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      No      
Supports Expedited Data      No      
Supports Graceful Closing      No      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      No      
            
Name      MSAFD NetBIOS [\Device\NetBT_Tcpip_{936B295C-AFDD-42B8-B772-56BE61707C2D}] DATAGRAM 1      
Connectionless Service      Yes      
Guarantees Delivery      No      
Guarantees Sequencing      No      
Maximum Address Size      20 bytes      
Maximum Message Size      62.50 KB (64,000 bytes)      
Message Oriented      Yes      
Minimum Address Size      20 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      Yes      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      No      
Supports Expedited Data      No      
Supports Graceful Closing      No      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      No      
            
Name      MSAFD NetBIOS [\Device\NetBT_Tcpip_{CEF1B0F8-AB94-45AE-81D6-8212FE7364E3}] SEQPACKET 2      
Connectionless Service      No      
Guarantees Delivery      Yes      
Guarantees Sequencing      Yes      
Maximum Address Size      20 bytes      
Maximum Message Size      62.50 KB (64,000 bytes)      
Message Oriented      Yes      
Minimum Address Size      20 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      No      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      No      
Supports Expedited Data      No      
Supports Graceful Closing      No      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      No      
            
Name      MSAFD NetBIOS [\Device\NetBT_Tcpip_{CEF1B0F8-AB94-45AE-81D6-8212FE7364E3}] DATAGRAM 2      
Connectionless Service      Yes      
Guarantees Delivery      No      
Guarantees Sequencing      No      
Maximum Address Size      20 bytes      
Maximum Message Size      62.50 KB (64,000 bytes)      
Message Oriented      Yes      
Minimum Address Size      20 bytes      
Pseudo Stream Oriented      No      
Supports Broadcasting      Yes      
Supports Connect Data      No      
Supports Disconnect Data      No      
Supports Encryption      No      
Supports Expedited Data      No      
Supports Graceful Closing      No      
Supports Guaranteed Bandwidth      No      
Supports Multicasting      No      

[WinSock]

Item      Value      
File      c:\windows\system32\winsock.dll      
Size      2.80 KB (2,864 bytes)      
Version      3.10      
            
File      c:\windows\system32\wsock32.dll      
Size      21.00 KB (21,504 bytes)      
Version      5.1.2600.0 (xpclient.010817-1148)      

[Ports]



[Serial]

Item      Value      

[Parallel]

Item      Value      
Name      LPT1      
PNP Device ID      ACPI\PNP0401\4&1506BB2E&0      
I/O Port      0x00000378-0x0000037F      
I/O Port      0x00000778-0x0000077F      
Driver      c:\windows\system32\drivers\parport.sys (5.1.2600.1106 (xpsp1.020828-1920), 74.25 KB (76,032 bytes), 8/29/2002 1:27 AM)      

[Storage]



[Drives]

Item      Value      
Drive      A:      
Description      3 1/2 Inch Floppy Drive      
            
Drive      C:      
Description      Local Fixed Disk      
Compressed      No      
File System      FAT32      
Size      19.52 GB (20,964,163,584 bytes)      
Free Space      17.85 GB (19,171,115,008 bytes)      
Volume Name            
Volume Serial Number      742F959C      
            
Drive      D:      
Description      CD-ROM Disc      
            
Drive      E:      
Description      Local Fixed Disk      
Compressed      Not Available      
File System      Not Available      
Size      Not Available      
Free Space      Not Available      
Volume Name      Not Available      
Volume Serial Number      Not Available      
            
Drive      F:      
Description      Local Fixed Disk      
Compressed      No      
File System      FAT32      
Size      19.52 GB (20,964,163,584 bytes)      
Free Space      19.23 GB (20,645,920,768 bytes)      
Volume Name      DATA      
Volume Serial Number      1828C876      
            
Drive      G:      
Description      Local Fixed Disk      
Compressed      Not Available      
File System      Not Available      
Size      Not Available      
Free Space      Not Available      
Volume Name      Not Available      
Volume Serial Number      Not Available      

[Disks]

Item      Value      
Description      Disk drive      
Manufacturer      (Standard disk drives)      
Model      ST380011A      
Bytes/Sector      512      
Media Loaded      Yes      
Media Type      Fixed hard disk      
Partitions      4      
SCSI Bus      0      
SCSI Logical Unit      0      
SCSI Port      0      
SCSI Target ID      0      
Sectors/Track      63      
Size      74.50 GB (79,999,073,280 bytes)      
Total Cylinders      9,726      
Total Sectors      156,248,190      
Total Tracks      2,480,130      
Tracks/Cylinder      255      
Partition      Disk #0, Partition #0      
Partition Size      19.53 GB (20,974,431,744 bytes)      
Partition Starting Offset      32,256 bytes      
Partition      Disk #0, Partition #1      
Partition Size      19.53 GB (20,974,431,744 bytes)      
Partition Starting Offset      20,974,496,256 bytes      
Partition      Disk #0, Partition #2      
Partition Size      19.53 GB (20,974,431,744 bytes)      
Partition Starting Offset      41,948,960,256 bytes      
Partition      Disk #0, Partition #3      
Partition Size      15.90 GB (17,067,423,744 bytes)      
Partition Starting Offset      62,923,424,256 bytes      

[SCSI]

Item      Value      

[IDE]

Item      Value      
Name      Standard Dual Channel PCI IDE Controller      
Manufacturer      (Standard IDE ATA/ATAPI controllers)      
Status      OK      
PNP Device ID      PCI\VEN_8086&DEV_24DB&SUBSYS_01541028&REV_02\3&172E68DD&0&F9      
I/O Port      0x0000FFA0-0x0000FFAF      
Memory Address      0xFEB7FC00-0xFEB7FFFF      
Driver      c:\windows\system32\drivers\pciide.sys (5.1.2600.0 (XPClient.010817-1148), 3.25 KB (3,328 bytes), 7/16/2003 8:41 PM)      
            
Name      Primary IDE Channel      
Manufacturer      (Standard IDE ATA/ATAPI controllers)      
Status      OK      
PNP Device ID      PCIIDE\IDECHANNEL\4&158C87C7&0&0      
I/O Port      0x000001F0-0x000001F7      
I/O Port      0x000003F6-0x000003F6      
IRQ Channel      IRQ 14      
Driver      c:\windows\system32\drivers\atapi.sys (5.1.2600.1106 (xpsp1.020828-1920), 84.88 KB (86,912 bytes), 7/16/2003 8:24 PM)      
            
Name      Secondary IDE Channel      
Manufacturer      (Standard IDE ATA/ATAPI controllers)      
Status      OK      
PNP Device ID      PCIIDE\IDECHANNEL\4&158C87C7&0&1      
I/O Port      0x00000170-0x00000177      
I/O Port      0x00000376-0x00000376      
IRQ Channel      IRQ 15      
Driver      c:\windows\system32\drivers\atapi.sys (5.1.2600.1106 (xpsp1.020828-1920), 84.88 KB (86,912 bytes), 7/16/2003 8:24 PM)      
            
Name      Standard Dual Channel PCI IDE Controller      
Manufacturer      (Standard IDE ATA/ATAPI controllers)      
Status      OK      
PNP Device ID      PCI\VEN_8086&DEV_24D1&SUBSYS_01541028&REV_02\3&172E68DD&0&FA      
I/O Port      0x0000FE00-0x0000FE07      
I/O Port      0x0000FE10-0x0000FE13      
I/O Port      0x0000FE20-0x0000FE27      
I/O Port      0x0000FE30-0x0000FE33      
I/O Port      0x0000FEA0-0x0000FEAF      
IRQ Channel      IRQ 18      
Driver      c:\windows\system32\drivers\pciide.sys (5.1.2600.0 (XPClient.010817-1148), 3.25 KB (3,328 bytes), 7/16/2003 8:41 PM)      
            
Name      Primary IDE Channel      
Manufacturer      (Standard IDE ATA/ATAPI controllers)      
Status      OK      
PNP Device ID      PCIIDE\IDECHANNEL\4&1D59FED&0&0      
Driver      c:\windows\system32\drivers\atapi.sys (5.1.2600.1106 (xpsp1.020828-1920), 84.88 KB (86,912 bytes), 7/16/2003 8:24 PM)      
            
Name      Secondary IDE Channel      
Manufacturer      (Standard IDE ATA/ATAPI controllers)      
Status      OK      
PNP Device ID      PCIIDE\IDECHANNEL\4&1D59FED&0&1      
Driver      c:\windows\system32\drivers\atapi.sys (5.1.2600.1106 (xpsp1.020828-1920), 84.88 KB (86,912 bytes), 7/16/2003 8:24 PM)      

[Printing]

Name      Driver      Port Name      Server Name      
hp deskjet 5550 series SERIES 2      hp deskjet 5550 series      usb            

[Problem Devices]

Device      PNP Device ID      Error Code      
Video Controller (VGA Compatible)      PCI\VEN_8086&DEV_2572&SUBSYS_01541028&REV_02\3&172E68DD&0&10      The drivers for this device are not installed.      
PCI Simple Communications Controller      PCI\VEN_14F1&DEV_2702&SUBSYS_8D881028&REV_01\4&1C660DD6&0&00F0      The drivers for this device are not installed.      
Ethernet Controller      PCI\VEN_14E4&DEV_4401&SUBSYS_01541028&REV_01\4&1C660DD6&0&08F0      The drivers for this device are not installed.      
SM Bus Controller      PCI\VEN_8086&DEV_24D3&SUBSYS_01541028&REV_02\3&172E68DD&0&FB      The drivers for this device are not installed.      
Multimedia Audio Controller      PCI\VEN_8086&DEV_24D5&SUBSYS_01541028&REV_02\3&172E68DD&0&FD      The drivers for this device are not installed.      

[USB]

Device      PNP Device ID      
Standard Universal PCI to USB Host Controller      PCI\VEN_8086&DEV_24D2&SUBSYS_01541028&REV_02\3&172E68DD&0&E8      
USB Root Hub      USB\ROOT_HUB\4&3A2CB4C0&0      
Mitsumi USB Floppy      USB\VID_03EE&PID_6901\5&2C58EFFE&0&1      
MITSUMI USB FDD USB Device      USBSTOR\SFLOPPY&VEN_MITSUMI&PROD_USB_FDD&REV_1039\6&2D8B79F&0      
Standard Universal PCI to USB Host Controller      PCI\VEN_8086&DEV_24D4&SUBSYS_01541028&REV_02\3&172E68DD&0&E9      
USB Root Hub      USB\ROOT_HUB\4&110575A7&0      
Standard Universal PCI to USB Host Controller      PCI\VEN_8086&DEV_24D7&SUBSYS_01541028&REV_02\3&172E68DD&0&EA      
USB Root Hub      USB\ROOT_HUB\4&4521D64&0      
Microsoft USB IntelliMouse Explorer      USB\VID_045E&PID_001E\5&275E89DE&0&1      
Microsoft USB IntelliMouse Explorer      HID\VID_045E&PID_001E\6&2EF28599&0&0000      
Generic USB Hub      USB\VID_0451&PID_2046\5&275E89DE&0&2      
Standard Universal PCI to USB Host Controller      PCI\VEN_8086&DEV_24DE&SUBSYS_01541028&REV_02\3&172E68DD&0&EB      
USB Root Hub      USB\ROOT_HUB\4&198CB665&0      
Standard Enhanced PCI to USB Host Controller      PCI\VEN_8086&DEV_24DD&SUBSYS_01541028&REV_02\3&172E68DD&0&EF      
USB Root Hub      USB\ROOT_HUB20\4&37C8C3E8&0      

[Software Environment]



[System Drivers]

Name      Description      File      Type      Started      Start Mode      State      Status      Error Control      Accept Pause      Accept Stop      
abiosdsk      Abiosdsk      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Ignore      No      No      
abp480n5      abp480n5      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
acpi      Microsoft ACPI Driver      c:\windows\system32\drivers\acpi.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
acpiec      ACPIEC      c:\windows\system32\drivers\acpiec.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
adpu160m      adpu160m      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
afd      AFD Networking Support Environment      c:\windows\system32\drivers\afd.sys      Kernel Driver      Yes      Auto      Running      OK      Normal      No      Yes      
aha154x      Aha154x      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
aic78u2      aic78u2      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
aic78xx      aic78xx      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
aliide      AliIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
amsint      amsint      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
asc      asc      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
asc3350p      asc3350p      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
asc3550      asc3550      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
asyncmac      RAS Asynchronous Media Driver      c:\windows\system32\drivers\asyncmac.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
atapi      Standard IDE/ESDI Hard Disk Controller      c:\windows\system32\drivers\atapi.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
atdisk      Atdisk      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Ignore      No      No      
atmarpc      ATM ARP Client Protocol      c:\windows\system32\drivers\atmarpc.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
audstub      Audio Stub Driver      c:\windows\system32\drivers\audstub.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
beep      Beep      c:\windows\system32\drivers\beep.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
cbidf2k      cbidf2k      c:\windows\system32\drivers\cbidf2k.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
cd20xrnt      cd20xrnt      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
cdaudio      Cdaudio      c:\windows\system32\drivers\cdaudio.sys      Kernel Driver      No      System      Stopped      OK      Ignore      No      No      
cdfs      Cdfs      c:\windows\system32\drivers\cdfs.sys      File System Driver      Yes      Disabled      Running      OK      Normal      No      Yes      
cdrom      CD-ROM Driver      c:\windows\system32\drivers\cdrom.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
changer      Changer      Not Available      Kernel Driver      No      System      Stopped      OK      Ignore      No      No      
cmdide      CmdIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
cpqarray      Cpqarray      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
dac960nt      dac960nt      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
disk      Disk Driver      c:\windows\system32\drivers\disk.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
dmboot      dmboot      c:\windows\system32\drivers\dmboot.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
dmio      dmio      c:\windows\system32\drivers\dmio.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
dmload      dmload      c:\windows\system32\drivers\dmload.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
dpti2o      dpti2o      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
fastfat      Fastfat      c:\windows\system32\drivers\fastfat.sys      File System Driver      Yes      Disabled      Running      OK      Normal      No      Yes      
fdc      Fdc      c:\windows\system32\drivers\fdc.sys      Kernel Driver      No      System      Stopped      OK      Ignore      No      No      
fips      Fips      c:\windows\system32\drivers\fips.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
flpydisk      Flpydisk      c:\windows\system32\drivers\flpydisk.sys      Kernel Driver      No      System      Stopped      OK      Ignore      No      No      
ftdisk      Volume Manager Driver      c:\windows\system32\drivers\ftdisk.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
gpc      Generic Packet Classifier      c:\windows\system32\drivers\msgpc.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
hidusb      Microsoft HID Class Driver      c:\windows\system32\drivers\hidusb.sys      Kernel Driver      Yes      Manual      Running      OK      Ignore      No      Yes      
hpn      hpn      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
i2omgmt      i2omgmt      Not Available      Kernel Driver      No      System      Stopped      OK      Normal      No      No      
i2omp      i2omp      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
i8042prt      i8042 Keyboard and PS/2 Mouse Port Driver      c:\windows\system32\drivers\i8042prt.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
imapi      CD-Burning Filter Driver      c:\windows\system32\drivers\imapi.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
ini910u      ini910u      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
intelide      IntelIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
ipfilterdriver      IP Traffic Filter Driver      c:\windows\system32\drivers\ipfltdrv.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
ipinip      IP in IP Tunnel Driver      c:\windows\system32\drivers\ipinip.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
ipnat      IP Network Address Translator      c:\windows\system32\drivers\ipnat.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
ipsec      IPSEC driver      c:\windows\system32\drivers\ipsec.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
irenum      IR Enumerator Service      c:\windows\system32\drivers\irenum.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
isapnp      PnP ISA/EISA Bus Driver      c:\windows\system32\drivers\isapnp.sys      Kernel Driver      Yes      Boot      Running      OK      Critical      No      Yes      
kbdclass      Keyboard Class Driver      c:\windows\system32\drivers\kbdclass.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
ksecdd      KSecDD      c:\windows\system32\drivers\ksecdd.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
lbrtfdc      lbrtfdc      Not Available      Kernel Driver      No      System      Stopped      OK      Ignore      No      No      
mnmdd      mnmdd      c:\windows\system32\drivers\mnmdd.sys      Kernel Driver      Yes      System      Running      OK      Ignore      No      Yes      
modem      Modem      c:\windows\system32\drivers\modem.sys      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
mouclass      Mouse Class Driver      c:\windows\system32\drivers\mouclass.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
mouhid      Mouse HID Driver      c:\windows\system32\drivers\mouhid.sys      Kernel Driver      Yes      Manual      Running      OK      Ignore      No      Yes      
mountmgr      MountMgr      c:\windows\system32\drivers\mountmgr.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
mraid35x      mraid35x      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
mrxdav      WebDav Client Redirector      c:\windows\system32\drivers\mrxdav.sys      File System Driver      No      Manual      Stopped      OK      Normal      No      No      
mrxsmb      MRXSMB      c:\windows\system32\drivers\mrxsmb.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes      
msfs      Msfs      c:\windows\system32\drivers\msfs.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes      
mup      Mup      c:\windows\system32\drivers\mup.sys      File System Driver      Yes      Boot      Running      OK      Normal      No      Yes      
ndis      NDIS System Driver      c:\windows\system32\drivers\ndis.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
ndistapi      Remote Access NDIS TAPI Driver      c:\windows\system32\drivers\ndistapi.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
ndisuio      NDIS Usermode I/O Protocol      c:\windows\system32\drivers\ndisuio.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
ndiswan      Remote Access NDIS WAN Driver      c:\windows\system32\drivers\ndiswan.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
ndproxy      NDIS Proxy      c:\windows\system32\drivers\ndproxy.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
netbios      NetBIOS Interface      c:\windows\system32\drivers\netbios.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes      
netbt      NetBios over Tcpip      c:\windows\system32\drivers\netbt.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
npfs      Npfs      c:\windows\system32\drivers\npfs.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes      
ntfs      Ntfs      c:\windows\system32\drivers\ntfs.sys      File System Driver      No      Disabled      Stopped      OK      Normal      No      No      
null      Null      c:\windows\system32\drivers\null.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
nwlnkflt      IPX Traffic Filter Driver      c:\windows\system32\drivers\nwlnkflt.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
nwlnkfwd      IPX Traffic Forwarder Driver      c:\windows\system32\drivers\nwlnkfwd.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
omci      OMCI      c:\windows\system32\drivers\omci.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
parport      Parallel port driver      c:\windows\system32\drivers\parport.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
partmgr      PartMgr      c:\windows\system32\drivers\partmgr.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
parvdm      ParVdm      c:\windows\system32\drivers\parvdm.sys      Kernel Driver      Yes      Auto      Running      OK      Ignore      No      Yes      
pci      PCI Bus Driver      c:\windows\system32\drivers\pci.sys      Kernel Driver      Yes      Boot      Running      OK      Critical      No      Yes      
pcidump      PCIDump      Not Available      Kernel Driver      No      System      Stopped      OK      Ignore      No      No      
pciide      PCIIde      c:\windows\system32\drivers\pciide.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
pcmcia      Pcmcia      c:\windows\system32\drivers\pcmcia.sys      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
pdcomp      PDCOMP      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
pdframe      PDFRAME      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
pdreli      PDRELI      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
pdrframe      PDRFRAME      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
perc2      perc2      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
perc2hib      perc2hib      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
pptpminiport      WAN Miniport (PPTP)      c:\windows\system32\drivers\raspptp.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
processor      Processor Driver      c:\windows\system32\drivers\processr.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
psched      QoS Packet Scheduler      c:\windows\system32\drivers\psched.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
ptilink      Direct Parallel Link Driver      c:\windows\system32\drivers\ptilink.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
ql1080      ql1080      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
ql10wnt      Ql10wnt      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
ql12160      ql12160      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
ql1240      ql1240      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
ql1280      ql1280      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
rasacd      Remote Access Auto Connection Driver      c:\windows\system32\drivers\rasacd.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
rasl2tp      WAN Miniport (L2TP)      c:\windows\system32\drivers\rasl2tp.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
raspppoe      Remote Access PPPOE Driver      c:\windows\system32\drivers\raspppoe.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
raspti      Direct Parallel      c:\windows\system32\drivers\raspti.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
rdbss      Rdbss      c:\windows\system32\drivers\rdbss.sys      File System Driver      Yes      System      Running      OK      Normal      No      Yes      
rdpcdd      RDPCDD      c:\windows\system32\drivers\rdpcdd.sys      Kernel Driver      Yes      System      Running      OK      Ignore      No      Yes      
rdpwd      RDPWD      c:\windows\system32\drivers\rdpwd.sys      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
redbook      Digital CD Audio Playback Filter Driver      c:\windows\system32\drivers\redbook.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
secdrv      Secdrv      c:\windows\system32\drivers\secdrv.sys      Kernel Driver      No      Manual      Stopped      OK      Normal      No      No      
serial      Serial      c:\windows\system32\drivers\serial.sys      Kernel Driver      No      Auto      Stopped      OK      Ignore      No      No      
sfloppy      High-Capacity Floppy Disk Drive      c:\windows\system32\drivers\sfloppy.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
simbad      Simbad      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
sparrow      Sparrow      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
sr      System Restore Filter Driver      c:\windows\system32\drivers\sr.sys      File System Driver      Yes      Boot      Running      OK      Normal      No      Yes      
srv      Srv      c:\windows\system32\drivers\srv.sys      File System Driver      Yes      Manual      Running      OK      Normal      No      Yes      
swenum      Software Bus Driver      c:\windows\system32\drivers\swenum.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
symc810      symc810      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
symc8xx      symc8xx      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
sym_hi      sym_hi      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
sym_u3      sym_u3      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
tcpip      TCP/IP Protocol Driver      c:\windows\system32\drivers\tcpip.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
tdpipe      TDPIPE      c:\windows\system32\drivers\tdpipe.sys      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
tdtcp      TDTCP      c:\windows\system32\drivers\tdtcp.sys      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      
termdd      Terminal Device Driver      c:\windows\system32\drivers\termdd.sys      Kernel Driver      Yes      System      Running      OK      Normal      No      Yes      
toside      TosIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
udfs      Udfs      c:\windows\system32\drivers\udfs.sys      File System Driver      No      Disabled      Stopped      OK      Normal      No      No      
ultra      ultra      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
update      Microcode Update Driver      c:\windows\system32\drivers\update.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
usbehci      Microsoft USB 2.0 Enhanced Host Controller Miniport Driver      c:\windows\system32\drivers\usbehci.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
usbhub      Microsoft USB Standard Hub Driver      c:\windows\system32\drivers\usbhub.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
usbstor      USB Mass Storage Driver      c:\windows\system32\drivers\usbstor.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
usbuhci      Microsoft USB Universal Host Controller Miniport Driver      c:\windows\system32\drivers\usbuhci.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
vgasave      VgaSave      c:\windows\system32\drivers\vga.sys      Kernel Driver      Yes      System      Running      OK      Ignore      No      Yes      
viaide      ViaIde      Not Available      Kernel Driver      No      Disabled      Stopped      OK      Normal      No      No      
volsnap      VolSnap      c:\windows\system32\drivers\volsnap.sys      Kernel Driver      Yes      Boot      Running      OK      Normal      No      Yes      
wanarp      Remote Access IP ARP Driver      c:\windows\system32\drivers\wanarp.sys      Kernel Driver      Yes      Manual      Running      OK      Normal      No      Yes      
wdica      WDICA      Not Available      Kernel Driver      No      Manual      Stopped      OK      Ignore      No      No      

[Signed Drivers]

Device Name      Signed      Device Class      Driver Version      Driver Date      Manufacturer      INF Name      Driver Name      Device ID      
Not Available      Not Available      Not Available      Not Available      Not Available      Not Available      Not Available      Not Available      HTREE\ROOT\0      
ACPI Uniprocessor PC      Yes      COMPUTER      5.1.2600.0      7/1/2001      (Standard computers)      hal.inf      Not Available      ROOT\ACPI_HAL\0000      
Microsoft ACPI-Compliant System      Yes      SYSTEM      5.1.2535.0      7/1/2001      Microsoft      acpi.inf      Not Available      ACPI_HAL\PNP0C08\0      
ACPI Power Button      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0C0C\2&DABA3FF&0      
Processor      Yes      PROCESSOR      5.1.2600.0      7/1/2002      (Standard processor types)      cpu.inf      Not Available      ACPI\GENUINEINTEL_-_X86_FAMILY_15_MODEL_2\_0      
System board      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0C01\1      
PCI bus      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0A03\4      
PCI standard host CPU bridge      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      PCI\VEN_8086&DEV_2570&SUBSYS_00000000&REV_02\3&172E68DD&0&00      
Video Controller (VGA Compatible)      Not Available      UNKNOWN      Not Available      Not Available      Not Available      Not Available      Not Available      PCI\VEN_8086&DEV_2572&SUBSYS_01541028&REV_02\3&172E68DD&0&10      
Standard Universal PCI to USB Host Controller      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      PCI\VEN_8086&DEV_24D2&SUBSYS_01541028&REV_02\3&172E68DD&0&E8      
USB Root Hub      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      USB\ROOT_HUB\4&3A2CB4C0&0      
Mitsumi USB Floppy      Yes      USB      5.1.2600.0      7/1/2001      Mitsumi Electronics, Corp.      usbstor.inf      Not Available      USB\VID_03EE&PID_6901\5&2C58EFFE&0&1      
USB FloppyDisk Drive      Yes      FLOPPYDISK      5.1.2600.0      7/1/2001      (Standard floppy disk drives)      flpydisk.inf      Not Available      USBSTOR\SFLOPPY&VEN_MITSUMI&PROD_USB_FDD&REV_1039\6&2D8B79F&0      
Standard Universal PCI to USB Host Controller      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      PCI\VEN_8086&DEV_24D4&SUBSYS_01541028&REV_02\3&172E68DD&0&E9      
USB Root Hub      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      USB\ROOT_HUB\4&110575A7&0      
Standard Universal PCI to USB Host Controller      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      PCI\VEN_8086&DEV_24D7&SUBSYS_01541028&REV_02\3&172E68DD&0&EA      
USB Root Hub      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      USB\ROOT_HUB\4&4521D64&0      
Microsoft USB IntelliMouse Explorer      Yes      HIDCLASS      5.1.2600.1106      7/1/2001      Microsoft      input.inf      Not Available      USB\VID_045E&PID_001E\5&275E89DE&0&1      
Microsoft USB IntelliMouse Explorer      Yes      MOUSE      5.1.2600.0      7/1/2001      Microsoft      msmouse.inf      Not Available      HID\VID_045E&PID_001E\6&2EF28599&0&0000      
Generic USB Hub      Yes      USB      5.1.2600.0      7/1/2001      (Generic USB Hub)      usb.inf      Not Available      USB\VID_0451&PID_2046\5&275E89DE&0&2      
Standard Universal PCI to USB Host Controller      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      PCI\VEN_8086&DEV_24DE&SUBSYS_01541028&REV_02\3&172E68DD&0&EB      
USB Root Hub      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      USB\ROOT_HUB\4&198CB665&0      
Standard Enhanced PCI to USB Host Controller      Yes      USB      5.1.2600.0      6/1/2002      (Standard USB Host Controller)      usbport.inf      Not Available      PCI\VEN_8086&DEV_24DD&SUBSYS_01541028&REV_02\3&172E68DD&0&EF      
USB Root Hub      Yes      USB      5.1.2600.1106      7/1/2001      (Standard USB Host Controller)      usbport.inf      Not Available      USB\ROOT_HUB20\4&37C8C3E8&0      
Intel(R) 82801BA/CA PCI Bridge - 244E      Yes      SYSTEM      5.1.2600.0      7/1/2001      Intel      machine.inf      Not Available      PCI\VEN_8086&DEV_244E&SUBSYS_00000000&REV_C2\3&172E68DD&0&F0      
PCI Simple Communications Controller      Not Available      UNKNOWN      Not Available      Not Available      Not Available      Not Available      Not Available      PCI\VEN_14F1&DEV_2702&SUBSYS_8D881028&REV_01\4&1C660DD6&0&00F0      
Ethernet Controller      Not Available      UNKNOWN      Not Available      Not Available      Not Available      Not Available      Not Available      PCI\VEN_14E4&DEV_4401&SUBSYS_01541028&REV_01\4&1C660DD6&0&08F0      
PCI standard ISA bridge      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      PCI\VEN_8086&DEV_24D0&SUBSYS_00000000&REV_02\3&172E68DD&0&F8      
ISAPNP Read Data Port      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ISAPNP\READDATAPORT\0      
Direct memory access controller      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0200\4&1506BB2E&0      
Numeric data processor      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0C04\4&1506BB2E&0      
Programmable interrupt controller      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0000\4&1506BB2E&0      
System speaker      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0800\4&1506BB2E&0      
System CMOS/real time clock      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0B00\4&1506BB2E&0      
System timer      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0100\4&1506BB2E&0      
Standard 101/102-Key or Microsoft Natural PS/2 Keyboard      Yes      KEYBOARD      5.1.2600.1106      7/1/2001      (Standard keyboards)      keyboard.inf      Not Available      ACPI\PNP0303\4&1506BB2E&0      
ECP Printer Port      Yes      PORTS      5.1.2600.0      7/1/2001      (Standard port types)      msports.inf      Not Available      ACPI\PNP0401\4&1506BB2E&0      
Printer Port Logical Interface      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      LPTENUM\MICROSOFTRAWPORT\5&316E3FD5&0&LPT1      
System board      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\PNP0C01\B      
Standard Dual Channel PCI IDE Controller      Yes      HDC      5.1.2600.1106      7/1/2001      (Standard IDE ATA/ATAPI controllers)      mshdc.inf      Not Available      PCI\VEN_8086&DEV_24DB&SUBSYS_01541028&REV_02\3&172E68DD&0&F9      
Primary IDE Channel      Yes      HDC      5.1.2600.1106      7/1/2001      (Standard IDE ATA/ATAPI controllers)      mshdc.inf      Not Available      PCIIDE\IDECHANNEL\4&158C87C7&0&0      
Disk drive      Yes      DISKDRIVE      5.1.2535.0      7/1/2001      (Standard disk drives)      disk.inf      Not Available      IDE\DISKST380011A_______________________________3.16____\4A33395659424643202020202020202020202020      
Secondary IDE Channel      Yes      HDC      5.1.2600.1106      7/1/2001      (Standard IDE ATA/ATAPI controllers)      mshdc.inf      Not Available      PCIIDE\IDECHANNEL\4&158C87C7&0&1      
CD-ROM Drive      Yes      CDROM      5.1.2535.0      7/1/2001      (Standard CD-ROM drives)      cdrom.inf      Not Available      IDE\CDROMHL-DT-ST_RW/DVD_GCC-4241N_______________A100____\5&1B566717&0&0.0.0      
Standard Dual Channel PCI IDE Controller      Yes      HDC      5.1.2600.1106      7/1/2001      (Standard IDE ATA/ATAPI controllers)      mshdc.inf      Not Available      PCI\VEN_8086&DEV_24D1&SUBSYS_01541028&REV_02\3&172E68DD&0&FA      
Primary IDE Channel      Yes      HDC      5.1.2600.1106      7/1/2001      (Standard IDE ATA/ATAPI controllers)      mshdc.inf      Not Available      PCIIDE\IDECHANNEL\4&1D59FED&0&0      
Secondary IDE Channel      Yes      HDC      5.1.2600.1106      7/1/2001      (Standard IDE ATA/ATAPI controllers)      mshdc.inf      Not Available      PCIIDE\IDECHANNEL\4&1D59FED&0&1      
SM Bus Controller      Not Available      UNKNOWN      Not Available      Not Available      Not Available      Not Available      Not Available      PCI\VEN_8086&DEV_24D3&SUBSYS_01541028&REV_02\3&172E68DD&0&FB      
Multimedia Audio Controller      Not Available      UNKNOWN      Not Available      Not Available      Not Available      Not Available      Not Available      PCI\VEN_8086&DEV_24D5&SUBSYS_01541028&REV_02\3&172E68DD&0&FD      
ACPI Fixed Feature Button      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ACPI\FIXEDBUTTON\2&DABA3FF&0      
Volume Manager      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ROOT\FTDISK\0000      
Generic volume      Yes      VOLUME      5.1.2600.0      7/1/2001      Microsoft      volume.inf      Not Available      STORAGE\VOLUME\1&30A96598&0&SIGNATUREFB16FB16OFFSET7E00LENGTH4E22C6E00      
Generic volume      Yes      VOLUME      5.1.2600.0      7/1/2001      Microsoft      volume.inf      Not Available      STORAGE\VOLUME\1&30A96598&0&SIGNATUREFB16FB16OFFSET4E22D6A00LENGTH4E22C6E00      
Generic volume      Yes      VOLUME      5.1.2600.0      7/1/2001      Microsoft      volume.inf      Not Available      STORAGE\VOLUME\1&30A96598&0&SIGNATUREFB16FB16OFFSET9C45A5600LENGTH4E22C6E00      
Generic volume      Yes      VOLUME      5.1.2600.0      7/1/2001      Microsoft      volume.inf      Not Available      STORAGE\VOLUME\1&30A96598&0&SIGNATUREFB16FB16OFFSETEA6874200LENGTH3F94C3800      
AFD Networking Support Environment      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_AFD\0000      
Beep      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_BEEP\0000      
DellBIOS      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_DELLBIOS\0000      
dmboot      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_DMBOOT\0000      
dmload      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_DMLOAD\0000      
Fips      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_FIPS\0000      
Generic Packet Classifier      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_GPC\0000      
IPSEC driver      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_IPSEC\0000      
ksecdd      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_KSECDD\0000      
mnmdd      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_MNMDD\0000      
mountmgr      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_MOUNTMGR\0000      
NDIS System Driver      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_NDIS\0000      
Remote Access NDIS TAPI Driver      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_NDISTAPI\0000      
NDIS Usermode I/O Protocol      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_NDISUIO\0000      
NDProxy      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_NDPROXY\0000      
NetBios over Tcpip      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_NETBT\0000      
Null      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_NULL\0000      
OMCI      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_OMCI\0000      
PartMgr      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_PARTMGR\0000      
ParVdm      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_PARVDM\0000      
Remote Access Auto Connection Driver      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_RASACD\0000      
RDPCDD      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_RDPCDD\0000      
TCP/IP Protocol Driver      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_TCPIP\0000      
VgaSave      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_VGASAVE\0000      
VolSnap      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_VOLSNAP\0000      
Remote Access IP ARP Driver      Not Available      LEGACYDRIVER      Not Available      Not Available      Not Available      Not Available      Not Available      ROOT\LEGACY_WANARP\0000      
Audio Codecs      Yes      MEDIA      5.1.2535.0      7/1/2001      (Standard system devices)      wave.inf      Not Available      ROOT\MEDIA\MS_MMACM      
Legacy Audio Drivers      Yes      MEDIA      5.1.2535.0      7/1/2001      (Standard system devices)      wave.inf      Not Available      ROOT\MEDIA\MS_MMDRV      
Media Control Devices      Yes      MEDIA      5.1.2535.0      7/1/2001      (Standard system devices)      wave.inf      Not Available      ROOT\MEDIA\MS_MMMCI      
Legacy Video Capture Devices      Yes      MEDIA      5.1.2535.0      7/1/2001      (Standard system devices)      wave.inf      Not Available      ROOT\MEDIA\MS_MMVCD      
Video Codecs      Yes      MEDIA      5.1.2535.0      7/1/2001      (Standard system devices)      wave.inf      Not Available      ROOT\MEDIA\MS_MMVID      
WAN Miniport (L2TP)      Yes      NET      5.1.2535.0      7/1/2001      Microsoft      netrasa.inf      Not Available      ROOT\MS_L2TPMINIPORT\0000      
WAN Miniport (IP)      Yes      NET      5.1.2535.0      7/1/2001      Microsoft      netrasa.inf      Not Available      ROOT\MS_NDISWANIP\0000      
WAN Miniport (PPPOE)      Yes      NET      5.1.2535.0      7/1/2001      Microsoft      netrasa.inf      Not Available      ROOT\MS_PPPOEMINIPORT\0000      
WAN Miniport (PPTP)      Yes      NET      5.1.2535.0      7/1/2001      Microsoft      netrasa.inf      Not Available      ROOT\MS_PPTPMINIPORT\0000      
Packet Scheduler Miniport      Yes      NET      5.1.2535.0      7/1/2001      Microsoft      netpsa.inf      Not Available      ROOT\MS_PSCHEDMP\0000      
Direct Parallel      Yes      NET      5.1.2535.0      7/1/2001      Microsoft      netrasa.inf      Not Available      ROOT\MS_PTIMINIPORT\0000      
Terminal Server Keyboard Driver      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ROOT\RDP_KBD\0000      
Terminal Server Mouse Driver      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ROOT\RDP_MOU\0000      
Plug and Play Software Device Enumerator      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ROOT\SYSTEM\0000      
Microcode Update Device      Yes      SYSTEM      5.1.2600.0      7/1/2001      (Standard system devices)      machine.inf      Not Available      ROOT\SYSTEM\0001      
Not Available      Yes      Not Available      2:4.00,2:5.00,2:5.1      Not Available      Not Available      Not Available      Not Available      hp deskjet 5550 series SERIES 2      

[Environment Variables]

Variable      Value      User Name      
ComSpec      %SystemRoot%\system32\cmd.exe      <SYSTEM>      
NUMBER_OF_PROCESSORS      1      <SYSTEM>      
OS      Windows_NT      <SYSTEM>      
Path      %SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem      <SYSTEM>      
PATHEXT      .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH      <SYSTEM>      
PROCESSOR_ARCHITECTURE      x86      <SYSTEM>      
PROCESSOR_IDENTIFIER      x86 Family 15 Model 2 Stepping 9, GenuineIntel      <SYSTEM>      
PROCESSOR_LEVEL      15      <SYSTEM>      
PROCESSOR_REVISION      0209      <SYSTEM>      
TEMP      %SystemRoot%\TEMP      <SYSTEM>      
windir      %SystemRoot%      <SYSTEM>      
TEMP      %USERPROFILE%\Local Settings\Temp      NT AUTHORITY\SYSTEM      
TMP      %USERPROFILE%\Local Settings\Temp      NT AUTHORITY\SYSTEM      
TEMP      %USERPROFILE%\Local Settings\Temp      NT AUTHORITY\LOCAL SERVICE      
TMP      %USERPROFILE%\Local Settings\Temp      NT AUTHORITY\LOCAL SERVICE      
TEMP      %USERPROFILE%\Local Settings\Temp      NT AUTHORITY\NETWORK SERVICE      
TMP      %USERPROFILE%\Local Settings\Temp      NT AUTHORITY\NETWORK SERVICE      
TEMP      %USERPROFILE%\Local Settings\Temp      STARBUCKS\Carole      
TMP      %USERPROFILE%\Local Settings\Temp      STARBUCKS\Carole      

[Print Jobs]

Document      Size      Owner      Notify      Status      Time Submitted      Start Time      Until Time      Elapsed Time      Pages Printed      Job ID      Priority      Parameters      Driver      Print Processor      Host Print Queue      Data Type      Name      
file://A:\pubmed.fcgi      69592      Carole      Carole      UNKNOWN      4/4/2004 4:46 PM      Not Available      Not Available      Not Available      6815744      9      1      Not Available      hp deskjet 5550 series      WinPrint      \\STARBUCKS      NT EMF 1.008      hp deskjet 5550 series SERIES 2, 9      

[Network Connections]

Local Name      Remote Name      Type      Status      User Name      

[Running Tasks]

Name      Path      Process ID      Priority      Min Working Set      Max Working Set      Start Time      Version      Size      File Date      
system idle process      Not Available      0      0      Not Available      Not Available      Not Available      Not Available      Not Available      Not Available      
system      Not Available      4      8      0      1413120      Not Available      Not Available      Not Available      Not Available      
smss.exe      c:\windows\system32\smss.exe      344      11      204800      1413120      4/3/2004 6:42 PM      5.1.2600.1106 (xpsp1.020828-1920)      44.50 KB (45,568 bytes)      7/16/2003 8:45 PM      
csrss.exe      Not Available      400      13      Not Available      Not Available      4/3/2004 6:42 PM      Not Available      Not Available      Not Available      
winlogon.exe      c:\windows\system32\winlogon.exe      424      13      204800      1413120      4/3/2004 6:42 PM      5.1.2600.1106 (xpsp1.020828-1920)      504.50 KB (516,608 bytes)      7/16/2003 8:51 PM      
services.exe      c:\windows\system32\services.exe      476      9      204800      1413120      4/3/2004 6:42 PM      5.1.2600.0 (xpclient.010817-1148)      99.00 KB (101,376 bytes)      7/16/2003 8:44 PM      
lsass.exe      c:\windows\system32\lsass.exe      488      9      204800      1413120      4/3/2004 6:42 PM      5.1.2600.1106 (xpsp1.020828-1920)      11.50 KB (11,776 bytes)      7/16/2003 8:32 PM      
svchost.exe      c:\windows\system32\svchost.exe      668      8      204800      1413120      4/3/2004 6:42 PM      5.1.2600.0 (xpclient.010817-1148)      12.50 KB (12,800 bytes)      7/16/2003 8:47 PM      
svchost.exe      c:\windows\system32\svchost.exe      724      8      204800      1413120      4/3/2004 6:42 PM      5.1.2600.0 (xpclient.010817-1148)      12.50 KB (12,800 bytes)      7/16/2003 8:47 PM      
svchost.exe      Not Available      788      8      Not Available      Not Available      4/3/2004 6:42 PM      Not Available      Not Available      Not Available      
svchost.exe      Not Available      800      8      Not Available      Not Available      4/3/2004 6:42 PM      Not Available      Not Available      Not Available      
spoolsv.exe      c:\windows\system32\spoolsv.exe      900      8      204800      1413120      4/3/2004 6:42 PM      5.1.2600.0 (XPClient.010817-1148)      50.00 KB (51,200 bytes)      7/16/2003 8:46 PM      
explorer.exe      c:\windows\explorer.exe      1812      8      204800      1413120      4/3/2004 8:43 PM      6.00.2800.1106 (xpsp1.020828-1920)      980.50 KB (1,004,032 bytes)      7/16/2003 8:28 PM      
svchost.exe      c:\windows\system32\svchost.exe      380      8      204800      1413120      4/3/2004 10:36 PM      5.1.2600.0 (xpclient.010817-1148)      12.50 KB (12,800 bytes)      7/16/2003 8:47 PM      
mmc.exe      c:\windows\system32\mmc.exe      2044      8      204800      1413120      4/5/2004 2:39 AM      5.1.2600.0 (xpclient.010817-1148)      756.00 KB (774,144 bytes)      7/16/2003 8:33 PM      
helpctr.exe      c:\windows\pchealth\helpctr\binaries\helpctr.exe      196      8      204800      1413120      4/5/2004 2:49 AM      5.1.2600.1106 (xpsp1.020828-1920)      725.00 KB (742,400 bytes)      3/30/2004 6:13 PM      
helpsvc.exe      c:\windows\pchealth\helpctr\binaries\helpsvc.exe      108      8      204800      1413120      4/5/2004 2:49 AM      5.1.2600.1106 (xpsp1.020828-1920)      687.00 KB (703,488 bytes)      3/30/2004 6:13 PM      
wmiprvse.exe      Not Available      1148      8      Not Available      Not Available      4/5/2004 2:49 AM      Not Available      Not Available      Not Available      

[Loaded Modules]

Name      Version      Size      File Date      Manufacturer      Path      
smss      5.1.2600.1106 (xpsp1.020828-1920)      44.50 KB (45,568 bytes)      7/16/2003 8:45 PM      Microsoft Corporation      c:\windows\system32\smss.exe      
ntdll      5.1.2600.1106 (xpsp1.020828-1920)      653.00 KB (668,672 bytes)      7/16/2003 8:39 PM      Microsoft Corporation      c:\windows\system32\ntdll.dll      
winlogon      5.1.2600.1106 (xpsp1.020828-1920)      504.50 KB (516,608 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winlogon.exe      
kernel32      5.1.2600.1106 (xpsp1.020828-1920)      908.50 KB (930,304 bytes)      7/16/2003 8:31 PM      Microsoft Corporation      c:\windows\system32\kernel32.dll      
msvcrt      7.0.2600.1106 (xpsp1.020828-1920)      315.50 KB (323,072 bytes)      7/16/2003 8:36 PM      Microsoft Corporation      c:\windows\system32\msvcrt.dll      
advapi32      5.1.2600.1106 (xpsp1.020828-1920)      545.00 KB (558,080 bytes)      7/16/2003 8:23 PM      Microsoft Corporation      c:\windows\system32\advapi32.dll      
rpcrt4      5.1.2600.1140 (xpsp2.020921-0842)      494.00 KB (505,856 bytes)      11/7/2002 5:47 PM      Microsoft Corporation      c:\windows\system32\rpcrt4.dll      
gdi32      5.1.2600.1106 (xpsp1.020828-1920)      244.50 KB (250,368 bytes)      7/16/2003 8:28 PM      Microsoft Corporation      c:\windows\system32\gdi32.dll      
user32      5.1.2600.1106 (xpsp1.020828-1920)      547.00 KB (560,128 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\user32.dll      
userenv      5.1.2600.1106 (xpsp1.020828-1920)      651.50 KB (667,136 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\userenv.dll      
nddeapi      5.1.2600.0 (xpclient.010817-1148)      15.00 KB (15,360 bytes)      7/16/2003 8:37 PM      Microsoft Corporation      c:\windows\system32\nddeapi.dll      
crypt32      5.131.2600.1152 (xpsp2.021217-1051)      531.50 KB (544,256 bytes)      3/20/2003 4:18 PM      Microsoft Corporation      c:\windows\system32\crypt32.dll      
msasn1      5.1.2600.0 (XPClient.010817-1148)      50.00 KB (51,200 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\msasn1.dll      
secur32      5.1.2600.1106 (xpsp1.020828-1920)      51.00 KB (52,224 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\secur32.dll      
winsta      5.1.2600.1106 (xpsp1.020828-1920)      47.00 KB (48,128 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winsta.dll      
profmap      5.1.2600.0 (xpclient.010817-1148)      28.00 KB (28,672 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\profmap.dll      
netapi32      5.1.2600.1106 (xpsp1.020828-1920)      302.00 KB (309,248 bytes)      7/16/2003 8:37 PM      Microsoft Corporation      c:\windows\system32\netapi32.dll      
regapi      5.1.2600.1106 (xpsp1.020828-1920)      43.00 KB (44,032 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\regapi.dll      
ws2_32      5.1.2600.0 (xpclient.010817-1148)      73.50 KB (75,264 bytes)      7/16/2003 8:53 PM      Microsoft Corporation      c:\windows\system32\ws2_32.dll      
ws2help      5.1.2600.0 (xpclient.010817-1148)      18.50 KB (18,944 bytes)      7/16/2003 8:53 PM      Microsoft Corporation      c:\windows\system32\ws2help.dll      
authz      5.1.2600.0 (xpclient.010817-1148)      50.00 KB (51,200 bytes)      7/16/2003 8:24 PM      Microsoft Corporation      c:\windows\system32\authz.dll      
psapi      5.1.2600.1106 (xpsp1.020828-1920)      17.00 KB (17,408 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\psapi.dll      
version      5.1.2600.0 (xpclient.010817-1148)      16.00 KB (16,384 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\version.dll      
setupapi      5.1.2600.1106 (xpsp1.020828-1920)      911.00 KB (932,864 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\setupapi.dll      
msgina      5.1.2600.1106 (xpsp1.020828-1920)      945.50 KB (968,192 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\msgina.dll      
shell32      6.00.2800.1106 (xpsp1.020828-1920)      7.95 MB (8,336,384 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\shell32.dll      
shlwapi      6.00.2800.1106 (xpsp1.020828-1920)      392.50 KB (401,920 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\shlwapi.dll      
comctl32      5.82 (xpsp1.020828-1920)      544.00 KB (557,056 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\comctl32.dll      
odbc32      3.520.9030.0      196.00 KB (200,704 bytes)      7/16/2003 8:40 PM      Microsoft Corporation      c:\windows\system32\odbc32.dll      
comdlg32      6.00.2800.1106 (xpsp1.020828-1920)      252.00 KB (258,048 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\comdlg32.dll      
comctl32      6.0 (xpsp1.020828-1920)      900.00 KB (921,600 bytes)      3/30/2004 6:07 PM      Microsoft Corporation      c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10.0_x-ww_f7fb5805\comctl32.dll      
odbcint      3.520.7713.0      88.00 KB (90,112 bytes)      7/16/2003 8:40 PM      Microsoft Corporation      c:\windows\system32\odbcint.dll      
shsvcs      6.00.2800.1106 (xpsp1.020828-1920)      113.50 KB (116,224 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\shsvcs.dll      
sfc      5.1.2600.0 (xpclient.010817-1148)      4.00 KB (4,096 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\sfc.dll      
sfc_os      5.1.2600.1106 (xpsp1.020828-1920)      130.00 KB (133,120 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\sfc_os.dll      
wintrust      5.131.2600.0 (xpclient.010817-1148)      163.00 KB (166,912 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\wintrust.dll      
ole32      5.1.2600.1106 (xpsp1.020828-1920)      1.12 MB (1,169,920 bytes)      7/16/2003 8:40 PM      Microsoft Corporation      c:\windows\system32\ole32.dll      
imagehlp      5.1.2600.1106 (xpsp1.020828-1920)      124.00 KB (126,976 bytes)      7/16/2003 8:30 PM      Microsoft Corporation      c:\windows\system32\imagehlp.dll      
winscard      5.1.2600.0 (xpclient.010817-1148)      91.00 KB (93,184 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winscard.dll      
wtsapi32      5.1.2600.1106 (xpsp1.020828-1920)      17.00 KB (17,408 bytes)      7/16/2003 8:53 PM      Microsoft Corporation      c:\windows\system32\wtsapi32.dll      
cscdll      5.1.2600.0 (xpclient.010817-1148)      87.50 KB (89,600 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\cscdll.dll      
wlnotify      5.1.2600.1106 (xpsp1.020828-1920)      84.50 KB (86,528 bytes)      7/16/2003 8:52 PM      Microsoft Corporation      c:\windows\system32\wlnotify.dll      
winmm      5.1.2600.1106 (xpsp1.020828-1920)      167.50 KB (171,520 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winmm.dll      
winspool      5.1.2600.1106 (xpsp1.020828-1920)      129.00 KB (132,096 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winspool.drv      
mpr      5.1.2600.0 (xpclient.010817-1148)      54.50 KB (55,808 bytes)      7/16/2003 8:34 PM      Microsoft Corporation      c:\windows\system32\mpr.dll      
rsaenh      5.1.2600.1029 (xpsp1.020426-1800)      130.50 KB (133,632 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\rsaenh.dll      
uxtheme      6.00.2800.1106 (xpsp1.020828-1920)      198.50 KB (203,264 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\uxtheme.dll      
samlib      5.1.2600.1106 (xpsp1.020828-1920)      53.50 KB (54,784 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\samlib.dll      
msv1_0      5.1.2600.1106 (xpsp1.020828-1920)      106.00 KB (108,544 bytes)      7/16/2003 8:36 PM      Microsoft Corporation      c:\windows\system32\msv1_0.dll      
sxs      5.1.2600.1106 (xpsp1.020828-1920)      659.00 KB (674,816 bytes)      7/16/2003 8:47 PM      Microsoft Corporation      c:\windows\system32\sxs.dll      
cscui      5.1.2600.1106 (xpsp1.020828-1920)      300.50 KB (307,712 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\cscui.dll      
comres      2001.12.4414.42      773.50 KB (792,064 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\comres.dll      
oleaut32      3.50.5016.0      556.00 KB (569,344 bytes)      7/16/2003 8:40 PM      Microsoft Corporation      c:\windows\system32\oleaut32.dll      
clbcatq      2001.12.4414.42      457.50 KB (468,480 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\clbcatq.dll      
ntmarta      5.1.2600.1106 (xpsp1.020828-1920)      109.50 KB (112,128 bytes)      7/16/2003 8:39 PM      Microsoft Corporation      c:\windows\system32\ntmarta.dll      
wldap32      5.1.2600.1106 (xpsp1.020828-1920)      164.50 KB (168,448 bytes)      7/16/2003 8:52 PM      Microsoft Corporation      c:\windows\system32\wldap32.dll      
services      5.1.2600.0 (xpclient.010817-1148)      99.00 KB (101,376 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\services.exe      
scesrv      5.1.2600.1106 (xpsp1.020828-1920)      291.00 KB (297,984 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\scesrv.dll      
umpnpmgr      5.1.2600.1106 (xpsp1.020828-1920)      104.50 KB (107,008 bytes)      7/16/2003 8:48 PM      Microsoft Corporation      c:\windows\system32\umpnpmgr.dll      
ncobjapi      5.1.2600.1106 (xpsp1.020828-1920)      41.50 KB (42,496 bytes)      7/16/2003 8:37 PM      Microsoft Corporation      c:\windows\system32\ncobjapi.dll      
eventlog      5.1.2600.1106 (xpsp1.020828-1920)      48.00 KB (49,152 bytes)      7/16/2003 8:28 PM      Microsoft Corporation      c:\windows\system32\eventlog.dll      
lsass      5.1.2600.1106 (xpsp1.020828-1920)      11.50 KB (11,776 bytes)      7/16/2003 8:32 PM      Microsoft Corporation      c:\windows\system32\lsass.exe      
lsasrv      5.1.2600.1106 (xpsp1.020828-1920)      656.00 KB (671,744 bytes)      7/16/2003 8:32 PM      Microsoft Corporation      c:\windows\system32\lsasrv.dll      
samsrv      5.1.2600.0 (xpclient.010817-1148)      401.50 KB (411,136 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\samsrv.dll      
cryptdll      5.1.2600.0 (xpclient.010817-1148)      28.50 KB (29,184 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\cryptdll.dll      
dnsapi      5.1.2600.1106 (xpsp1.020828-1920)      136.00 KB (139,264 bytes)      7/16/2003 8:27 PM      Microsoft Corporation      c:\windows\system32\dnsapi.dll      
ntdsapi      5.1.2600.0 (xpclient.010817-1148)      63.00 KB (64,512 bytes)      7/16/2003 8:39 PM      Microsoft Corporation      c:\windows\system32\ntdsapi.dll      
msprivs      5.1.2600.0 (xpclient.010817-1148)      44.00 KB (45,056 bytes)      7/16/2003 8:36 PM      Microsoft Corporation      c:\windows\system32\msprivs.dll      
kerberos      5.1.2600.1106 (xpsp1.020828-1920)      266.50 KB (272,896 bytes)      7/16/2003 8:31 PM      Microsoft Corporation      c:\windows\system32\kerberos.dll      
netlogon      5.1.2600.1106 (xpsp1.020828-1920)      390.00 KB (399,360 bytes)      7/16/2003 8:38 PM      Microsoft Corporation      c:\windows\system32\netlogon.dll      
w32time      5.1.2600.1106 (xpsp1.020828-1920)      161.50 KB (165,376 bytes)      7/16/2003 8:50 PM      Microsoft Corporation      c:\windows\system32\w32time.dll      
msvcp60      6.00.8972.0      392.05 KB (401,462 bytes)      7/16/2003 8:36 PM      Microsoft Corporation      c:\windows\system32\msvcp60.dll      
iphlpapi      5.1.2600.2 (xpsp1.020828-1920)      81.00 KB (82,944 bytes)      7/16/2003 8:30 PM      Microsoft Corporation      c:\windows\system32\iphlpapi.dll      
schannel      5.1.2600.1106 (xpsp1.020828-1920)      133.50 KB (136,704 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\schannel.dll      
wdigest      5.1.2600.0 (xpclient.010817-1148)      45.50 KB (46,592 bytes)      7/16/2003 8:50 PM      Microsoft Corporation      c:\windows\system32\wdigest.dll      
scecli      5.1.2600.1106 (xpsp1.020828-1920)      170.50 KB (174,592 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\scecli.dll      
ipsecsvc      5.1.2600.1106 (xpsp1.020828-1920)      152.00 KB (155,648 bytes)      7/16/2003 8:30 PM      Microsoft Corporation      c:\windows\system32\ipsecsvc.dll      
oakley      5.1.2600.1106 (xpsp1.020828-1920)      321.00 KB (328,704 bytes)      7/16/2003 8:40 PM      Microsoft Corporation      c:\windows\system32\oakley.dll      
winipsec      5.1.2600.0 (xpclient.010817-1148)      25.00 KB (25,600 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winipsec.dll      
pstorsvc      5.1.2600.0 (xpclient.010817-1148)      25.00 KB (25,600 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\pstorsvc.dll      
mswsock      5.1.2600.0 (xpclient.010817-1148)      223.00 KB (228,352 bytes)      7/16/2003 8:37 PM      Microsoft Corporation      c:\windows\system32\mswsock.dll      
wshtcpip      5.1.2600.0 (xpclient.010817-1148)      17.00 KB (17,408 bytes)      7/16/2003 8:53 PM      Microsoft Corporation      c:\windows\system32\wshtcpip.dll      
psbase      5.1.2600.1106 (xpsp1.020828-1920)      81.00 KB (82,944 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\psbase.dll      
dssenh      5.1.2600.1029 (xpsp1.020426-1800)      122.00 KB (124,928 bytes)      7/16/2003 8:27 PM      Microsoft Corporation      c:\windows\system32\dssenh.dll      
svchost      5.1.2600.0 (xpclient.010817-1148)      12.50 KB (12,800 bytes)      7/16/2003 8:47 PM      Microsoft Corporation      c:\windows\system32\svchost.exe      
rpcss      5.1.2600.1106 (xpsp1.020828-1920)      254.50 KB (260,608 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\rpcss.dll      
winrnr      5.1.2600.0 (xpclient.010817-1148)      14.50 KB (14,848 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winrnr.dll      
rasadhlp      5.1.2600.0 (xpclient.010817-1148)      6.00 KB (6,144 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\rasadhlp.dll      
dhcpcsvc      5.1.2600.1106 (xpsp1.020828-1920)      97.50 KB (99,840 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\dhcpcsvc.dll      
wzcsvc      5.1.2600.1181 (xpsp2.030305-0046)      273.50 KB (280,064 bytes)      3/10/2003 12:25 PM      Microsoft Corporation      c:\windows\system32\wzcsvc.dll      
rtutils      5.1.2600.0 (xpclient.010817-1148)      39.00 KB (39,936 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\rtutils.dll      
wmi      5.1.2600.0 (XPClient.010817-1148)      5.50 KB (5,632 bytes)      7/16/2003 8:52 PM      Microsoft Corporation      c:\windows\system32\wmi.dll      
esent      5.1.2600.0 (xpclient.010817-1148)      994.50 KB (1,018,368 bytes)      7/16/2003 8:27 PM      Microsoft Corporation      c:\windows\system32\esent.dll      
rastls      5.1.2600.1106 (xpsp1.020828-1920)      89.00 KB (91,136 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\rastls.dll      
atl      3.00.9435      73.06 KB (74,810 bytes)      7/16/2003 8:24 PM      Microsoft Corporation      c:\windows\system32\atl.dll      
cryptui      5.131.2600.1106 (xpsp1.020828-1920)      460.00 KB (471,040 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\cryptui.dll      
wininet      6.00.2800.1106 (xpsp1.020828-1920)      585.00 KB (599,040 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\wininet.dll      
mprapi      5.1.2600.0 (xpclient.010817-1148)      77.50 KB (79,360 bytes)      7/16/2003 8:34 PM      Microsoft Corporation      c:\windows\system32\mprapi.dll      
activeds      5.1.2600.0 (xpclient.010817-1148)      177.50 KB (181,760 bytes)      7/16/2003 8:23 PM      Microsoft Corporation      c:\windows\system32\activeds.dll      
adsldpc      5.1.2600.1106 (xpsp1.020828-1920)      136.50 KB (139,776 bytes)      7/16/2003 8:23 PM      Microsoft Corporation      c:\windows\system32\adsldpc.dll      
rasapi32      5.1.2600.1106 (xpsp1.020828-1920)      212.00 KB (217,088 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\rasapi32.dll      
rasman      5.1.2600.1106 (xpsp1.020828-1920)      54.50 KB (55,808 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\rasman.dll      
tapi32      5.1.2600.1106 (xpsp1.020828-1920)      161.50 KB (165,376 bytes)      7/16/2003 8:47 PM      Microsoft Corporation      c:\windows\system32\tapi32.dll      
raschap      5.1.2600.1106 (xpsp1.020828-1920)      56.50 KB (57,856 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\raschap.dll      
schedsvc      5.1.2600.1106 (xpsp1.020828-1920)      155.50 KB (159,232 bytes)      3/30/2004 6:13 PM      Microsoft Corporation      c:\windows\system32\schedsvc.dll      
msidle      6.00.2600.0000 (xpclient.010817-1148)      5.00 KB (5,120 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\msidle.dll      
audiosrv      5.1.2600.1106 (xpsp1.020828-1920)      38.00 KB (38,912 bytes)      7/16/2003 8:24 PM      Microsoft Corporation      c:\windows\system32\audiosrv.dll      
cryptsvc      5.1.2600.1106 (xpsp1.020828-1920)      52.00 KB (53,248 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\cryptsvc.dll      
certcli      5.1.2600.1106 (xpsp1.020828-1920)      182.50 KB (186,880 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\certcli.dll      
ersvc      5.1.2600.1106 (xpsp1.020828-1920)      19.00 KB (19,456 bytes)      7/16/2003 8:27 PM      Microsoft Corporation      c:\windows\system32\ersvc.dll      
es      2001.12.4414.46      220.00 KB (225,280 bytes)      7/16/2003 8:27 PM      Microsoft Corporation      c:\windows\system32\es.dll      
pchsvc      5.1.2600.1106 (xpsp1.020828-1920)      29.00 KB (29,696 bytes)      3/30/2004 6:13 PM      Microsoft Corporation      c:\windows\pchealth\helpctr\binaries\pchsvc.dll      
srvsvc      5.1.2600.0 (xpclient.010817-1148)      85.00 KB (87,040 bytes)      7/16/2003 8:46 PM      Microsoft Corporation      c:\windows\system32\srvsvc.dll      
seclogon      5.1.2600.0 (xpclient.010817-1148)      20.50 KB (20,992 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\seclogon.dll      
sens      5.1.2600.1106 (xpsp1.020828-1920)      35.50 KB (36,352 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\sens.dll      
srsvc      5.1.2600.1106 (xpsp1.020828-1920)      155.00 KB (158,720 bytes)      3/30/2004 6:13 PM      Microsoft Corporation      c:\windows\system32\srsvc.dll      
powrprof      6.00.2600.0000 (xpclient.010817-1148)      14.50 KB (14,848 bytes)      7/16/2003 8:41 PM      Microsoft Corporation      c:\windows\system32\powrprof.dll      
wmisvc      5.1.2600.1106 (xpsp1.020828-1920)      99.00 KB (101,376 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wmisvc.dll      
wbemcomn      5.1.2600.1106 (xpsp1.020828-1920)      210.00 KB (215,040 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wbemcomn.dll      
vssapi      5.1.2600.1106 (xpsp1.020828-1920)      399.50 KB (409,088 bytes)      7/16/2003 8:50 PM      Microsoft Corporation      c:\windows\system32\vssapi.dll      
wuauserv      5.4.3630.1106 (xpsp1.020828-1920)      9.00 KB (9,216 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wuauserv.dll      
wuaueng      5.4.3630.1106 (xpsp1.020828-1920)      185.00 KB (189,440 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wuaueng.dll      
advpack      6.00.2800.1106 (xpsp1.020828-1920)      89.00 KB (91,136 bytes)      7/16/2003 8:23 PM      Microsoft Corporation      c:\windows\system32\advpack.dll      
comsvcs      2001.12.4414.46      1.12 MB (1,172,992 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\comsvcs.dll      
mtxclu      2001.12.4414.42      60.00 KB (61,440 bytes)      7/16/2003 8:37 PM      Microsoft Corporation      c:\windows\system32\mtxclu.dll      
wsock32      5.1.2600.0 (xpclient.010817-1148)      21.00 KB (21,504 bytes)      7/16/2003 8:53 PM      Microsoft Corporation      c:\windows\system32\wsock32.dll      
colbact      2001.12.4414.42      55.50 KB (56,832 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\colbact.dll      
clusapi      5.1.2600.1106 (xpsp1.020828-1920)      53.00 KB (54,272 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\clusapi.dll      
resutils      5.1.2600.0 (xpclient.010817-1148)      53.50 KB (54,784 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\resutils.dll      
mtxoci      2001.12.4414.42      82.00 KB (83,968 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\mtxoci.dll      
winhttp      5.1.2600.1106 (xpsp1.020828-1920)      303.00 KB (310,272 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\winhttp.dll      
wbemcore      5.1.2600.1106 (xpsp1.020828-1920)      469.00 KB (480,256 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wbemcore.dll      
esscli      5.1.2600.1106 (xpsp1.020828-1920)      230.00 KB (235,520 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\esscli.dll      
fastprox      5.1.2600.1106 (xpsp1.020828-1920)      552.00 KB (565,248 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\fastprox.dll      
wmiutils      5.1.2600.1106 (xpsp1.020828-1920)      94.00 KB (96,256 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wmiutils.dll      
repdrvfs      5.1.2600.1106 (xpsp1.020828-1920)      135.00 KB (138,240 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\repdrvfs.dll      
wmiprvsd      5.1.2600.1106 (xpsp1.020828-1920)      399.00 KB (408,576 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wmiprvsd.dll      
wbemess      5.1.2600.1106 (xpsp1.020828-1920)      253.00 KB (259,072 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wbemess.dll      
ncprov      5.1.2600.1106 (xpsp1.020828-1920)      59.00 KB (60,416 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\ncprov.dll      
sensapi      5.1.2600.1106 (xpsp1.020828-1920)      6.00 KB (6,144 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\sensapi.dll      
netman      5.1.2600.1106 (xpsp1.020828-1920)      150.50 KB (154,112 bytes)      7/16/2003 8:38 PM      Microsoft Corporation      c:\windows\system32\netman.dll      
netshell      5.1.2600.1181 (xpsp2.030305-0046)      1.56 MB (1,632,768 bytes)      3/10/2003 12:25 PM      Microsoft Corporation      c:\windows\system32\netshell.dll      
credui      5.1.2600.1106 (xpsp1.020828-1920)      155.00 KB (158,720 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\credui.dll      
upnp      5.1.2600.1106 (xpsp1.020828-1920)      117.50 KB (120,320 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\upnp.dll      
ssdpapi      5.1.2600.1106 (xpsp1.020828-1920)      26.50 KB (27,136 bytes)      7/16/2003 8:46 PM      Microsoft Corporation      c:\windows\system32\ssdpapi.dll      
rasdlg      5.1.2600.1106 (xpsp1.020828-1920)      617.00 KB (631,808 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\rasdlg.dll      
dmserver      2600.0.503.0      21.00 KB (21,504 bytes)      7/16/2003 8:27 PM      Microsoft Corp.      c:\windows\system32\dmserver.dll      
wbemsvc      5.1.2600.0 (xpclient.010817-1148)      47.00 KB (48,128 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wbemsvc.dll      
catsrvut      2001.12.4414.46      569.00 KB (582,656 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\catsrvut.dll      
mfcsubs      2001.12.4414.42      20.50 KB (20,992 bytes)      7/16/2003 8:33 PM      Microsoft Corporation      c:\windows\system32\mfcsubs.dll      
msi      2.0.2600.1106      1.99 MB (2,086,400 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\msi.dll      
cabinet      5.1.2600.1106 (xpsp1.020828-1920)      58.50 KB (59,904 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\cabinet.dll      
urlmon      6.00.2800.1106 (xpsp1.020828-1920)      445.00 KB (455,680 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\urlmon.dll      
catsrv      2001.12.4414.42      210.00 KB (215,040 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\catsrv.dll      
actxprxy      6.00.2600.0000 (XPClient.010817-1148)      96.00 KB (98,304 bytes)      7/16/2003 8:23 PM      Microsoft Corporation      c:\windows\system32\actxprxy.dll      
spoolsv      5.1.2600.0 (XPClient.010817-1148)      50.00 KB (51,200 bytes)      7/16/2003 8:46 PM      Microsoft Corporation      c:\windows\system32\spoolsv.exe      
spoolss      5.1.2600.1106 (xpsp1.020828-1920)      65.00 KB (66,560 bytes)      7/16/2003 8:46 PM      Microsoft Corporation      c:\windows\system32\spoolss.dll      
localspl      5.1.2600.1106 (xpsp1.020828-1920)      289.00 KB (295,936 bytes)      7/16/2003 8:32 PM      Microsoft Corporation      c:\windows\system32\localspl.dll      
cnbjmon      5.1.2503.0 (Lab06_N.010129-0357)      44.50 KB (45,568 bytes)      8/17/2001 10:36 PM      Microsoft Corporation      c:\windows\system32\cnbjmon.dll      
hpzlnt06      2,133,0,0      144.05 KB (147,512 bytes)      7/11/2002 7:06 AM      HP      c:\windows\system32\hpzlnt06.dll      
lprmon      5.1.2600.0 (xpclient.010817-1148)      17.00 KB (17,408 bytes)      3/30/2004 7:16 PM      Microsoft Corporation      c:\windows\system32\lprmon.dll      
lprhelp      5.1.2600.0 (xpclient.010817-1148)      8.50 KB (8,704 bytes)      7/16/2003 8:32 PM      Microsoft Corporation      c:\windows\system32\lprhelp.dll      
pjlmon      5.1.2600.0 (XPClient.010817-1148)      12.50 KB (12,800 bytes)      8/17/2001 10:36 PM      Microsoft Corporation      c:\windows\system32\pjlmon.dll      
tcpmon      5.1.2600.0 (XPClient.010817-1148)      39.50 KB (40,448 bytes)      7/16/2003 8:47 PM      Microsoft Corporation      c:\windows\system32\tcpmon.dll      
usbmon      5.1.2600.0 (XPClient.010817-1148)      14.50 KB (14,848 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\usbmon.dll      
win32spl      5.1.2600.1106 (xpsp1.020828-1920)      97.00 KB (99,328 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\win32spl.dll      
netrap      5.1.2600.0 (xpclient.010817-1148)      10.50 KB (10,752 bytes)      7/16/2003 8:38 PM      Microsoft Corporation      c:\windows\system32\netrap.dll      
inetpp      5.1.2600.0 (XPClient.010817-1148)      66.50 KB (68,096 bytes)      7/16/2003 8:30 PM      Microsoft Corporation      c:\windows\system32\inetpp.dll      
icmp      5.1.2600.0 (xpclient.010817-1148)      3.00 KB (3,072 bytes)      7/16/2003 8:29 PM      Microsoft Corporation      c:\windows\system32\icmp.dll      
hpzntp06      2,133,0,0      288.00 KB (294,912 bytes)      7/11/2002 7:06 AM      HP      c:\windows\system32\spool\drivers\w32x86\3\hpzntp06.dll      
hpz2ku06      2,133,0,0      176.00 KB (180,224 bytes)      7/11/2002 7:06 AM      HP      c:\windows\system32\spool\drivers\w32x86\3\hpz2ku06.dll      
explorer      6.00.2800.1106 (xpsp1.020828-1920)      980.50 KB (1,004,032 bytes)      7/16/2003 8:28 PM      Microsoft Corporation      c:\windows\explorer.exe      
browseui      6.00.2800.1106 (xpsp1.020828-1920)      998.00 KB (1,021,952 bytes)      7/16/2003 8:24 PM      Microsoft Corporation      c:\windows\system32\browseui.dll      
shdocvw      6.00.2800.1106 (xpsp1.020828-1920)      1.28 MB (1,341,440 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\shdocvw.dll      
apphelp      5.1.2600.1106 (xpsp1.020828-1920)      113.00 KB (115,712 bytes)      7/16/2003 8:24 PM      Microsoft Corporation      c:\windows\system32\apphelp.dll      
themeui      6.00.2800.1106 (xpsp1.020828-1920)      375.00 KB (384,000 bytes)      7/16/2003 8:48 PM      Microsoft Corporation      c:\windows\system32\themeui.dll      
msimg32      5.1.2600.1106 (xpsp1.020828-1920)      4.50 KB (4,608 bytes)      7/16/2003 8:36 PM      Microsoft Corporation      c:\windows\system32\msimg32.dll      
ntshrui      5.1.2600.1106 (xpsp1.020828-1920)      134.00 KB (137,216 bytes)      7/16/2003 8:39 PM      Microsoft Corporation      c:\windows\system32\ntshrui.dll      
webcheck      6.00.2800.1106 (xpsp1.020828-1920)      252.00 KB (258,048 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\webcheck.dll      
stobject      5.1.2600.1106 (xpsp1.020828-1920)      115.00 KB (117,760 bytes)      7/16/2003 8:46 PM      Microsoft Corporation      c:\windows\system32\stobject.dll      
batmeter      6.00.2600.0000 (xpclient.010817-1148)      26.50 KB (27,136 bytes)      7/16/2003 8:24 PM      Microsoft Corporation      c:\windows\system32\batmeter.dll      
printui      5.1.2600.1106 (xpsp1.020828-1920)      510.00 KB (522,240 bytes)      7/16/2003 8:42 PM      Microsoft Corporation      c:\windows\system32\printui.dll      
cfgmgr32      5.1.2600.0 (xpclient.010817-1148)      16.50 KB (16,896 bytes)      7/16/2003 8:25 PM      Microsoft Corporation      c:\windows\system32\cfgmgr32.dll      
browselc      6.00.2800.1106 (xpsp1.020828-1920)      61.50 KB (62,976 bytes)      7/16/2003 8:24 PM      Microsoft Corporation      c:\windows\system32\browselc.dll      
shdoclc      6.00.2600.0000 (xpclient.010817-1148)      536.00 KB (548,864 bytes)      7/16/2003 8:44 PM      Microsoft Corporation      c:\windows\system32\shdoclc.dll      
linkinfo      5.1.2600.0 (xpclient.010817-1148)      15.00 KB (15,360 bytes)      7/16/2003 8:32 PM      Microsoft Corporation      c:\windows\system32\linkinfo.dll      
mydocs      6.00.2600.0000 (xpclient.010817-1148)      86.00 KB (88,064 bytes)      7/16/2003 8:37 PM      Microsoft Corporation      c:\windows\system32\mydocs.dll      
devmgr      5.1.2600.1106 (xpsp1.020828-1920)      257.00 KB (263,168 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\devmgr.dll      
imm32      5.1.2600.1106 (xpsp1.020828-1920)      101.50 KB (103,936 bytes)      7/16/2003 8:30 PM      Microsoft Corporation      c:\windows\system32\imm32.dll      
zipfldr      6.00.2800.1164 (xpsp2.021217-1051)      309.50 KB (316,928 bytes)      3/3/2003 12:17 PM      Microsoft Corporation      c:\windows\system32\zipfldr.dll      
wiaservc      5.1.2600.1106 (xpsp1.020828-1920)      309.00 KB (316,416 bytes)      7/16/2003 8:51 PM      Microsoft Corporation      c:\windows\system32\wiaservc.dll      
mscms      5.1.2600.1106 (xpsp1.020828-1920)      66.50 KB (68,096 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\mscms.dll      
sti      5.1.2600.1106 (xpsp1.020828-1920)      60.50 KB (61,952 bytes)      7/16/2003 8:46 PM      Microsoft Corporation      c:\windows\system32\sti.dll      
mmc      5.1.2600.0 (xpclient.010817-1148)      756.00 KB (774,144 bytes)      7/16/2003 8:33 PM      Microsoft Corporation      c:\windows\system32\mmc.exe      
mfc42u      6.00.8665.0      972.05 KB (995,384 bytes)      7/16/2003 8:33 PM      Microsoft Corporation      c:\windows\system32\mfc42u.dll      
oleacc      4.2.5406.0 (xpclient.010817-1148)      159.50 KB (163,328 bytes)      7/16/2003 8:40 PM      Microsoft Corporation      c:\windows\system32\oleacc.dll      
mmcbase      5.1.2600.0 (xpclient.010817-1148)      65.00 KB (66,560 bytes)      7/16/2003 8:33 PM      Microsoft Corporation      c:\windows\system32\mmcbase.dll      
mmcndmgr      5.1.2600.1106 (xpsp1.020828-1920)      1.08 MB (1,128,960 bytes)      7/16/2003 8:33 PM      Microsoft Corporation      c:\windows\system32\mmcndmgr.dll      
msxml3      8.30.9926.0      1.07 MB (1,122,304 bytes)      7/16/2003 8:37 PM      Microsoft Corporation      c:\windows\system32\msxml3.dll      
dmocx      5.1.2600.0 (xpclient.010817-1148)      19.00 KB (19,456 bytes)      7/16/2003 8:27 PM      Microsoft Corporation      c:\windows\system32\dmocx.dll      
mlang      6.00.2600.0000 (xpclient.010817-1148)      563.50 KB (577,024 bytes)      7/16/2003 8:33 PM      Microsoft Corporation      c:\windows\system32\mlang.dll      
HelpCtr      5.1.2600.1106 (xpsp1.020828-1920)      725.00 KB (742,400 bytes)      3/30/2004 6:13 PM      Microsoft Corporation      c:\windows\pchealth\helpctr\binaries\helpctr.exe      
HCAppRes      5.1.2600.0 (xpclient.010817-1148)      6.50 KB (6,656 bytes)      3/30/2004 6:14 PM      Microsoft Corporation      c:\windows\pchealth\helpctr\binaries\hcappres.dll      
itss      5.2.3644.0      119.50 KB (122,368 bytes)      3/20/2003 3:57 PM      Microsoft Corporation      c:\windows\system32\itss.dll      
pchshell      5.1.2600.1106 (xpsp1.020828-1920)      95.50 KB (97,792 bytes)      3/30/2004 6:13 PM      Microsoft Corporation      c:\windows\pchealth\helpctr\binaries\pchshell.dll      
mshtml      6.00.2800.1106 (xpsp1.020828-1920)      2.70 MB (2,833,920 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\mshtml.dll      
msimtf      5.1.2600.1106 (xpsp1.020828-1920)      140.50 KB (143,872 bytes)      7/16/2003 8:36 PM      Microsoft Corporation      c:\windows\system32\msimtf.dll      
msctf      5.1.2600.1106 (xpsp1.020828-1920)      260.50 KB (266,752 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\msctf.dll      
jscript      5.6.0.6626      580.03 KB (593,948 bytes)      7/16/2003 8:31 PM      Microsoft Corporation      c:\windows\system32\jscript.dll      
mshtmled      6.00.2800.1106 (xpsp1.020828-1920)      430.00 KB (440,320 bytes)      7/16/2003 8:35 PM      Microsoft Corporation      c:\windows\system32\mshtmled.dll      
msls31      3.10.349.0      143.00 KB (146,432 bytes)      7/16/2003 8:36 PM      Microsoft Corporation      c:\windows\system32\msls31.dll      
vbscript      5.6.0.7426      468.03 KB (479,261 bytes)      7/16/2003 8:49 PM      Microsoft Corporation      c:\windows\system32\vbscript.dll      
msinfo      7, 0, 0, 0      340.00 KB (348,160 bytes)      3/30/2004 6:14 PM            c:\windows\pchealth\helpctr\binaries\msinfo.dll      
riched32      5.1.2600.0 (xpclient.010817-1148)      3.50 KB (3,584 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\riched32.dll      
riched20      5.30.23.1211      413.50 KB (423,424 bytes)      7/16/2003 8:43 PM      Microsoft Corporation      c:\windows\system32\riched20.dll      
wbemprox      5.1.2600.1106 (xpsp1.020828-1920)      27.50 KB (28,160 bytes)      3/30/2004 6:12 PM      Microsoft Corporation      c:\windows\system32\wbem\wbemprox.dll      
ntlanman      5.1.2600.1106 (xpsp1.020828-1920)      37.50 KB (38,400 bytes)      7/16/2003 8:39 PM      Microsoft Corporation      c:\windows\system32\ntlanman.dll      
netui0      5.1.2600.0 (xpclient.010817-1148)      73.00 KB (74,752 bytes)      7/16/2003 8:38 PM      Microsoft Corporation      c:\windows\system32\netui0.dll      
netui1      5.1.2600.0 (xpclient.010817-1148)      225.00 KB (230,400 bytes)      7/16/2003 8:38 PM      Microsoft Corporation      c:\windows\system32\netui1.dll      
drprov      5.1.2600.0 (xpclient.010817-1148)      11.50 KB (11,776 bytes)      7/16/2003 8:27 PM      Microsoft Corporation      c:\windows\system32\drprov.dll      
davclnt      5.1.2600.0 (xpclient.010817-1148)      21.50 KB (22,016 bytes)      7/16/2003 8:26 PM      Microsoft Corporation      c:\windows\system32\davclnt.dll      
HelpSvc      5.1.2600.1106 (xpsp1.020828-1920)      687.00 KB (703,488 bytes)      3/30/2004 6:13 PM      Microsoft Corporation      c:\windows\pchealth\helpctr\binaries\helpsvc.exe      

[Services]

Display Name      Name      State      Start Mode      Service Type      Path      Error Control      Start Name      Tag ID      
Alerter      Alerter      Stopped      Manual      Share Process      c:\windows\system32\svchost.exe -k localservice      Normal      NT AUTHORITY\LocalService      0      
Application Layer Gateway Service      ALG      Stopped      Manual      Own Process      c:\windows\system32\alg.exe      Normal      NT AUTHORITY\LocalService      0      
Application Management      AppMgmt      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Windows Audio      AudioSrv      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Background Intelligent Transfer Service      BITS      Stopped      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Computer Browser      Browser      Stopped      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Indexing Service      CiSvc      Stopped      Manual      Share Process      c:\windows\system32\cisvc.exe      Normal      LocalSystem      0      
ClipBook      ClipSrv      Stopped      Disabled      Own Process      c:\windows\system32\clipsrv.exe      Normal      LocalSystem      0      
COM+ System Application      COMSysApp      Stopped      Disabled      Own Process      c:\windows\system32\dllhost.exe /processid:{02d4b3f1-fd88-11d1-960d-00805fc79235}      Normal      LocalSystem      0      
Cryptographic Services      CryptSvc      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
DHCP Client      Dhcp      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Logical Disk Manager Administrative Service      dmadmin      Stopped      Manual      Share Process      c:\windows\system32\dmadmin.exe /com      Normal      LocalSystem      0      
Logical Disk Manager      dmserver      Running      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
DNS Client      Dnscache      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k networkservice      Normal      NT AUTHORITY\NetworkService      0      
Error Reporting Service      ERSvc      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Ignore      LocalSystem      0      
Event Log      Eventlog      Running      Auto      Share Process      c:\windows\system32\services.exe      Normal      LocalSystem      0      
COM+ Event System      EventSystem      Running      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Fast User Switching Compatibility      FastUserSwitchingCompatibility      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Help and Support      helpsvc      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Human Interface Device Access      HidServ      Stopped      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
IMAPI CD-Burning COM Service      ImapiService      Stopped      Manual      Own Process      c:\windows\system32\imapi.exe      Normal      LocalSystem      0      
Server      lanmanserver      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Workstation      lanmanworkstation      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
TCP/IP NetBIOS Helper      LmHosts      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k localservice      Normal      NT AUTHORITY\LocalService      0      
TCP/IP Print Server      LPDSVC      Stopped      Manual      Share Process      c:\windows\system32\tcpsvcs.exe      Normal      LocalSystem      0      
Messenger      Messenger      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
NetMeeting Remote Desktop Sharing      mnmsrvc      Stopped      Disabled      Own Process      c:\windows\system32\mnmsrvc.exe      Normal      LocalSystem      0      
Distributed Transaction Coordinator      MSDTC      Stopped      Disabled      Own Process      c:\windows\system32\msdtc.exe      Normal      NT AUTHORITY\NetworkService      0      
Windows Installer      MSIServer      Stopped      Manual      Share Process      c:\windows\system32\msiexec.exe /v      Normal      LocalSystem      0      
Network DDE      NetDDE      Stopped      Disabled      Share Process      c:\windows\system32\netdde.exe      Normal      LocalSystem      0      
Network DDE DSDM      NetDDEdsdm      Stopped      Disabled      Share Process      c:\windows\system32\netdde.exe      Normal      LocalSystem      0      
Net Logon      Netlogon      Stopped      Auto      Share Process      c:\windows\system32\lsass.exe      Normal      LocalSystem      0      
Network Connections      Netman      Running      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Network Location Awareness (NLA)      Nla      Running      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
NT LM Security Support Provider      NtLmSsp      Running      Auto      Share Process      c:\windows\system32\lsass.exe      Normal      LocalSystem      0      
Removable Storage      NtmsSvc      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Plug and Play      PlugPlay      Running      Auto      Share Process      c:\windows\system32\services.exe      Normal      LocalSystem      0      
IPSEC Services      PolicyAgent      Running      Auto      Share Process      c:\windows\system32\lsass.exe      Normal      LocalSystem      0      
Protected Storage      ProtectedStorage      Running      Auto      Share Process      c:\windows\system32\lsass.exe      Normal      LocalSystem      0      
Remote Access Auto Connection Manager      RasAuto      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Remote Access Connection Manager      RasMan      Stopped      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Remote Desktop Help Session Manager      RDSessMgr      Stopped      Disabled      Own Process      c:\windows\system32\sessmgr.exe      Normal      LocalSystem      0      
Routing and Remote Access      RemoteAccess      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Remote Procedure Call (RPC) Locator      RpcLocator      Stopped      Manual      Own Process      c:\windows\system32\locator.exe      Normal      NT AUTHORITY\NetworkService      0      
Remote Procedure Call (RPC)      RpcSs      Running      Auto      Share Process      c:\windows\system32\svchost -k rpcss      Normal      LocalSystem      0      
QoS RSVP      RSVP      Stopped      Auto      Own Process      c:\windows\system32\rsvp.exe      Normal      LocalSystem      0      
Security Accounts Manager      SamSs      Running      Auto      Share Process      c:\windows\system32\lsass.exe      Normal      LocalSystem      0      
Smart Card Helper      SCardDrv      Stopped      Disabled      Share Process      c:\windows\system32\scardsvr.exe      Ignore      NT AUTHORITY\LocalService      0      
Smart Card      SCardSvr      Stopped      Disabled      Share Process      c:\windows\system32\scardsvr.exe      Ignore      NT AUTHORITY\LocalService      0      
Task Scheduler      Schedule      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Secondary Logon      seclogon      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Ignore      LocalSystem      0      
System Event Notification      SENS      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Internet Connection Firewall (ICF) / Internet Connection Sharing (ICS)      SharedAccess      Stopped      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Shell Hardware Detection      ShellHWDetection      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Ignore      LocalSystem      0      
Print Spooler      Spooler      Running      Auto      Own Process      c:\windows\system32\spoolsv.exe      Normal      LocalSystem      0      
System Restore Service      srservice      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
SSDP Discovery Service      SSDPSRV      Running      Manual      Share Process      c:\windows\system32\svchost.exe -k localservice      Normal      NT AUTHORITY\LocalService      0      
Windows Image Acquisition (WIA)      stisvc      Running      Manual      Share Process      c:\windows\system32\svchost.exe -k imgsvc      Normal      LocalSystem      0      
MS Software Shadow Copy Provider      SwPrv      Stopped      Manual      Own Process      c:\windows\system32\dllhost.exe /processid:{1fb6c52e-f9e0-4a18-ae3f-e81072b56c92}      Ignore      LocalSystem      0      
Performance Logs and Alerts      SysmonLog      Stopped      Manual      Own Process      c:\windows\system32\smlogsvc.exe      Normal      NT Authority\NetworkService      0      
Telephony      TapiSrv      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Terminal Services      TermService      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Themes      Themes      Stopped      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Distributed Link Tracking Client      TrkWks      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Upload Manager      uploadmgr      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Universal Plug and Play Device Host      upnphost      Stopped      Manual      Share Process      c:\windows\system32\svchost.exe -k localservice      Normal      NT AUTHORITY\LocalService      0      
Uninterruptible Power Supply      UPS      Stopped      Manual      Own Process      c:\windows\system32\ups.exe      Normal      LocalSystem      0      
Volume Shadow Copy      VSS      Stopped      Manual      Own Process      c:\windows\system32\vssvc.exe      Normal      LocalSystem      0      
Windows Time      W32Time      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
WebClient      WebClient      Stopped      Disabled      Share Process      c:\windows\system32\svchost.exe -k localservice      Normal      LocalSystem      0      
Windows Management Instrumentation      winmgmt      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Ignore      LocalSystem      0      
Portable Media Serial Number      WmdmPmSp      Stopped      Manual      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
WMI Performance Adapter      WmiApSrv      Stopped      Manual      Own Process      c:\windows\system32\wbem\wmiapsrv.exe      Normal      LocalSystem      0      
Automatic Updates      wuauserv      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      
Wireless Zero Configuration      WZCSVC      Running      Auto      Share Process      c:\windows\system32\svchost.exe -k netsvcs      Normal      LocalSystem      0      

[Program Groups]

Group Name      Name      User Name      
Accessories      Default User:Accessories      Default User      
Accessories\Entertainment      Default User:Accessories\Entertainment      Default User      
Accessories\Accessibility      Default User:Accessories\Accessibility      Default User      
Startup      Default User:Startup      Default User      
Startup      All Users:Startup      All Users      
Accessories      All Users:Accessories      All Users      
Accessories\Communications      All Users:Accessories\Communications      All Users      
Accessories\System Tools      All Users:Accessories\System Tools      All Users      
Accessories\Entertainment      All Users:Accessories\Entertainment      All Users      
Accessories\Accessibility      All Users:Accessories\Accessibility      All Users      
Games      All Users:Games      All Users      
Administrative Tools      All Users:Administrative Tools      All Users      
Accessories      NT AUTHORITY\SYSTEM:Accessories      NT AUTHORITY\SYSTEM      
Accessories\Entertainment      NT AUTHORITY\SYSTEM:Accessories\Entertainment      NT AUTHORITY\SYSTEM      
Accessories\Accessibility      NT AUTHORITY\SYSTEM:Accessories\Accessibility      NT AUTHORITY\SYSTEM      
Startup      NT AUTHORITY\SYSTEM:Startup      NT AUTHORITY\SYSTEM      
Accessories      STARBUCKS\Carole:Accessories      STARBUCKS\Carole      
Accessories\Entertainment      STARBUCKS\Carole:Accessories\Entertainment      STARBUCKS\Carole      
Accessories\Accessibility      STARBUCKS\Carole:Accessories\Accessibility      STARBUCKS\Carole      
Accessories\Communications      STARBUCKS\Carole:Accessories\Communications      STARBUCKS\Carole      
Accessories\Communications\HyperTerminal      STARBUCKS\Carole:Accessories\Communications\HyperTerminal      STARBUCKS\Carole      
Startup      STARBUCKS\Carole:Startup      STARBUCKS\Carole      

[Startup Programs]

Program      Command      User Name      Location      
desktop      desktop.ini      NT AUTHORITY\SYSTEM      Startup      
desktop      desktop.ini      STARBUCKS\Carole      Startup      
desktop      desktop.ini      .DEFAULT      Startup      
desktop      desktop.ini      All Users      Common Startup      

[OLE Registration]

Object      Local Server      
Sound (OLE2)      sndrec32.exe      
Media Clip      mplay32.exe      
Video Clip      mplay32.exe /avi      
MIDI Sequence      mplay32.exe /mid      
Sound      Not Available      
Media Clip      Not Available      
Windows Media Player 7      Not Available      
WordPad Document      "%programfiles%\windows nt\accessories\wordpad.exe"      
Windows Media Services DRM Storage object      Not Available      
Bitmap Image      mspaint.exe      

[Windows Error Reporting]

Time      Type      Details      
4/2/2004 1:20 PM      Application Error      Faulting application mmc.exe, version 5.1.2600.0, faulting module ntmsapi.dll, version 5.1.2400.1106, fault address 0x00001c3e.&#x000d;&#x000a;      
3/30/2004 8:05 PM      Application Error      Faulting application mmc.exe, version 5.1.2600.0, faulting module ntmsapi.dll, version 5.1.2400.1106, fault address 0x00001c3e.&#x000d;&#x000a;      
4/1/2004 1:59 PM      Application Hang      Hanging application notepad.exe, version 5.1.2600.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.&#x000d;&#x000a;      
4/1/2004 1:16 PM      Application Hang      Hanging application notepad.exe, version 5.1.2600.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.&#x000d;&#x000a;      

[Internet Settings]



[Internet Explorer]

[ Following are sub-categories of this main category ]
[Summary]

Item      Value      
Version      6.0.2800.1106      
Build      62800.1106      
Application Path      C:\Program Files\Internet Explorer      
Language      English (United States)      
Active Printer      hp deskjet 5550 series SERIES 2,winspool,usb      
            
Cipher Strength      128-bit      
Content Advisor      Disabled      
IEAK Install      No      

[File Versions]

File      Version      Size      Date      Path      Company      
actxprxy.dll      6.0.2600.0      96 KB      7/16/2003 8:23:50 PM      C:\WINDOWS\system32      Microsoft Corporation      
advpack.dll      6.0.2800.1106      89 KB      7/16/2003 8:23:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
asctrls.ocx      6.0.2800.1106      88 KB      7/16/2003 8:24:24 PM      C:\WINDOWS\system32      Microsoft Corporation      
browselc.dll      6.0.2800.1106      62 KB      7/16/2003 8:24:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
browseui.dll      6.0.2800.1106      998 KB      7/16/2003 8:24:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
cdfview.dll      6.0.2600.0      139 KB      7/16/2003 8:25:08 PM      C:\WINDOWS\system32      Microsoft Corporation      
comctl32.dll      5.82.2800.1106      544 KB      7/16/2003 8:25:38 PM      C:\WINDOWS\system32      Microsoft Corporation      
dxtrans.dll      6.3.2800.1106      190 KB      7/16/2003 8:27:50 PM      C:\WINDOWS\system32      Microsoft Corporation      
dxtmsft.dll      6.3.2800.1106      330 KB      7/16/2003 8:27:48 PM      C:\WINDOWS\system32      Microsoft Corporation      
iecont.dll      <File Missing>      Not Available      Not Available      Not Available      Not Available      
iecontlc.dll      <File Missing>      Not Available      Not Available      Not Available      Not Available      
iedkcs32.dll      16.0.2800.1106      288 KB      7/16/2003 8:30:10 PM      C:\WINDOWS\system32      Microsoft Corporation      
iepeers.dll      6.0.2800.1106      226 KB      7/16/2003 8:30:12 PM      C:\WINDOWS\system32      Microsoft Corporation      
iesetup.dll      6.0.2800.1106      58 KB      7/16/2003 8:30:12 PM      C:\WINDOWS\system32      Microsoft Corporation      
ieuinit.inf      Not Available      19 KB      7/16/2003 8:30:12 PM      C:\WINDOWS\system32      Not Available      
iexplore.exe      6.0.2800.1106      89 KB      7/16/2003 3:30:14 PM      C:\Program Files\Internet Explorer      Microsoft Corporation      
imgutil.dll      6.0.2800.1106      30 KB      7/16/2003 8:30:18 PM      C:\WINDOWS\system32      Microsoft Corporation      
inetcpl.cpl      6.0.2800.1106      286 KB      7/16/2003 8:30:22 PM      C:\WINDOWS\system32      Microsoft Corporation      
inetcplc.dll      6.0.2600.0      108 KB      7/16/2003 8:30:22 PM      C:\WINDOWS\system32      Microsoft Corporation      
inseng.dll      6.0.2800.1106      68 KB      7/16/2003 8:30:28 PM      C:\WINDOWS\system32      Microsoft Corporation      
mlang.dll      6.0.2600.0      564 KB      7/16/2003 8:33:50 PM      C:\WINDOWS\system32      Microsoft Corporation      
msencode.dll      2000.7.25.0      92 KB      7/16/2003 8:35:36 PM      C:\WINDOWS\system32      Not Available      
mshta.exe      6.0.2600.0      24 KB      7/16/2003 8:35:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
mshtml.dll      6.0.2800.1106      2,768 KB      7/16/2003 8:35:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
mshtml.tlb      6.0.2800.1106      1,319 KB      7/16/2003 8:35:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
mshtmled.dll      6.0.2800.1106      430 KB      7/16/2003 8:35:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
mshtmler.dll      6.0.2800.1106      55 KB      7/16/2003 8:35:56 PM      C:\WINDOWS\system32      Microsoft Corporation      
msident.dll      6.0.2600.0      43 KB      7/16/2003 8:35:58 PM      C:\WINDOWS\system32      Microsoft Corporation      
msidntld.dll      6.0.2600.0      15 KB      7/16/2003 8:36:00 PM      C:\WINDOWS\system32      Microsoft Corporation      
msieftp.dll      6.0.2800.1106      225 KB      7/16/2003 8:36:00 PM      C:\WINDOWS\system32      Microsoft Corporation      
msrating.dll      6.0.2800.1106      129 KB      7/16/2003 8:36:40 PM      C:\WINDOWS\system32      Microsoft Corporation      
mstime.dll      6.0.2800.1106      485 KB      7/16/2003 8:36:50 PM      C:\WINDOWS\system32      Microsoft Corporation      
occache.dll      6.0.2600.0      86 KB      7/16/2003 8:40:12 PM      C:\WINDOWS\system32      Microsoft Corporation      
proctexe.ocx      6.3.2800.1106      74 KB      7/16/2003 8:42:06 PM      C:\WINDOWS\system32      Intel Corporation      
sendmail.dll      6.0.2600.0      52 KB      7/16/2003 8:44:14 PM      C:\WINDOWS\system32      Microsoft Corporation      
shdoclc.dll      6.0.2600.0      536 KB      7/16/2003 8:44:38 PM      C:\WINDOWS\system32      Microsoft Corporation      
shdocvw.dll      6.0.2800.1106      1,310 KB      7/16/2003 8:44:38 PM      C:\WINDOWS\system32      Microsoft Corporation      
shfolder.dll      6.0.2800.1106      22 KB      7/16/2003 8:44:40 PM      C:\WINDOWS\system32      Microsoft Corporation      
shlwapi.dll      6.0.2800.1106      393 KB      7/16/2003 8:44:42 PM      C:\WINDOWS\system32      Microsoft Corporation      
tdc.ocx      1.3.0.3130      55 KB      7/16/2003 8:47:54 PM      C:\WINDOWS\system32      Microsoft Corporation      
url.dll      6.0.2800.1106      104 KB      7/16/2003 8:49:14 PM      C:\WINDOWS\system32      Microsoft Corporation      
urlmon.dll      6.0.2800.1106      445 KB      7/16/2003 8:49:16 PM      C:\WINDOWS\system32      Microsoft Corporation      
webcheck.dll      6.0.2800.1106      252 KB      7/16/2003 8:51:08 PM      C:\WINDOWS\system32      Microsoft Corporation      
wininet.dll      6.0.2800.1106      585 KB      7/16/2003 8:51:36 PM      C:\WINDOWS\system32      Microsoft Corporation      

[Connectivity]

Item      Value      
Connection Preference      Never dial      
            
LAN Settings            
            
AutoConfigProxy      Not Available      
AutoProxyDetectMode      Enabled      
AutoConfigURL            
Proxy      Disabled      
ProxyServer            
ProxyOverride            

[Cache]

[ Following are sub-categories of this main category ]
[Summary]

Item      Value      
Page Refresh Type      Automatic      
Temporary Internet Files Folder      C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files      
Total Disk Space      Not Available      
Available Disk Space      Not Available      
Maximum Cache Size      Not Available      
Available Cache Size      Not Available      

[List of Objects]

Program File      Status      CodeBase      
No cached object information available                  

[Content]

[ Following are sub-categories of this main category ]
[Summary]

Item      Value      
Content Advisor      Disabled      

[Personal Certificates]

Issued To      Issued By      Validity      Signature Algorithm      
No personal certificate information available                        

[Other People Certificates]

Issued To      Issued By      Validity      Signature Algorithm      
No other people certificate information available                        

[Publishers]

Name      
No publisher information available      

[Security]

Zone      Security Level      
My Computer      Custom      
Local intranet      Medium-low      
Trusted sites      Low      
Internet      Medium      
Restricted sites      High      
0
 

Author Comment

by:seashell55
Comment Utility
Hi Try and Rich

Sorry it took so long to give the points.  Actually, none of the answers solved the problem and I was kind of disappointed not to hear anything after my last (really long) post. I'm still not up and running yet and although I did follow the directions when I got the new HD, it still had the same stuff running.  Turns out that the guy was using WBEM, MS Web (Based?) Enterprise Management. He had the system root changed from sys32 to CIM? in WBEM; and had denied local machine policies, while allowing group rights, of which I was not a member. I had not even heard of WBEM till all this happened.

The other thing is that the phone is involved as someone cut the phone line at the junction box at midnight last week. (But the DSL still worked)! So now Bell South is paying attention, and maybe we can find out who it is.  Earthlink is also paying attention now that I've learned how to capture TCPdump.

However, I appreciated your suggestions and the time it took to read and write your answers. And the accepted answer has turned out to be handy.

Thank you both. And if you were dubious, join the club.  Only the people who really understand computers and have seen the action, believe me.  The rest keep suggesting a vacation.  I wish i could have done a better job of explaining it. Oh yes, we also figured out the trojan that was used was one called MS DOS dos, or something like that. It came out in late 2002, but really got going in the summer of 2003, and I got hit in Nov. of 2003.

And just in case you're still interested, the guy hides all of his files as .dll, which is pretty smart cause who ever thinks to look at those?

Regards,
Carole

0
 
LVL 12

Expert Comment

by:trywaredk
Comment Utility
:o) Glad we could support you - thank you for the points

Cleaning your computer  - and protecting it in the future -  can't be answered with one issue.

As you can see in my url below there are at least 7 different issues, where you should decide 1 of each, or else you does'nt protect your computer at all.

The reason is, that the many different programs not always protects against each other, and each of them does'nt protect equally.

It's very important, that you study all of these issues in my knowledgebase (some of them are freeware):
http://www.tryware.dk/English/Knowledgebase/HowToProtectYourComputer.html

BTW: I'm using the Trend Micro virus-suite, and SoftScan , and haven't got any of my servers or computers infected since 1999.


0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now