New
#41
Code:Microsoft Windows [Version 6.1.7601] Copyright (c) 2009 Microsoft Corporation. All rights reserved. C:\Users\WINSTON>REG QUERY HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Spoo ler HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Spooler DisplayName REG_SZ @%systemroot%\system32\spoolsv.exe,-1 Group REG_SZ SpoolerGroup Description REG_SZ @%systemroot%\system32\spoolsv.exe,-2 ObjectName REG_SZ LocalSystem ErrorControl REG_DWORD 0x1 Start REG_DWORD 0x2 Type REG_DWORD 0x110 DependOnService REG_MULTI_SZ RPCSS\0http ServiceSidType REG_DWORD 0x1 RequiredPrivileges REG_MULTI_SZ SeTcbPrivilege\0SeImpersonatePrivilege \0SeAuditPrivilege\0SeChangeNotifyPrivilege\0SeAssignPrimaryTokenPrivilege\0SeLo adDriverPrivilege FailureActions REG_BINARY 80510100000000000000000003000000140000000100 000060EA00000100000060EA00000000000000000000 HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Spooler\Performance HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Spooler\Security C:\Users\WINSTON>SC QUERYEX SPOOLER SERVICE_NAME: SPOOLER TYPE : 110 WIN32_OWN_PROCESS (interactive) STATE : 1 STOPPED WIN32_EXIT_CODE : 3 (0x3) SERVICE_EXIT_CODE : 0 (0x0) CHECKPOINT : 0x0 WAIT_HINT : 0x0 PID : 0 FLAGS : C:\Users\WINSTON>DIR C:\Windows\system32\drivers\speedfan.sys Volume in drive C has no label. Volume Serial Number is D47A-AFE8 Directory of C:\Windows\system32\drivers File Not Found C:\Users\WINSTON>REG QUERY HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ ALG HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\ALG DisplayName REG_SZ @%SystemRoot%\system32\Alg.exe,-112 Description REG_SZ @%SystemRoot%\system32\Alg.exe,-113 ObjectName REG_SZ NT AUTHORITY\LocalService ErrorControl REG_DWORD 0x1 Start REG_DWORD 0x3 Type REG_DWORD 0x10 ServiceSidType REG_DWORD 0x1 RequiredPrivileges REG_MULTI_SZ SeChangeNotifyPrivilege\0SeCreateGloba lPrivilege\0SeImpersonatePrivilege FailureActions REG_BINARY 84030000000000000000000003000000140000000100 0000C0D4010001000000E09304000000000000000000 C:\Users\WINSTON>DIR C:\Windows\system32\alg.exe Volume in drive C has no label. Volume Serial Number is D47A-AFE8 Directory of C:\Windows\system32 13-Jul-09 06:38 PM 79,360 alg.exe 1 File(s) 79,360 bytes 0 Dir(s) 108,960,477,184 bytes free C:\Users\WINSTON>