Infecté par Bifrose.LA

patou57 · le 12 août 2008

Il faut trouver un remplaçant à Antivir:

Téléchargez Malwarebytes' Anti-Malware (MBAM)

* Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update Malwarebytes' Anti-Malware et Launch Malwarebytes' Anti-Malware sont cochées

MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

* Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

Si le pare-feu demande l'autorisation à MBAM de se connecter, acceptez.

* Une fois la mise à jour terminée, allez dans l'onglet Recherche.

* Sélectionnez "Exécuter un examen complet"

* Cliquez sur "Rechercher"

* .L' analyse prendra un certain temps, soyez patient !

* A la fin , un message affichera :

L'examen s'est terminé normalement.

*Si MBAM n'a rien trouvé, il le dira aussi.

Cliquez sur "Ok" pour poursuivre.

*Fermez les navigateurs.

Cliquez sur Afficher les résultats .

*Sélectionnez tout et cliquez sur Supprimer la sélection,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

* Copiez-collez ce rapport dans la prochaine réponse.

J'avais déja fait un scan avec MBAM, mais s'il faut je le refais...

styx · le 12 août 2008

Salut à tous

pear,

Bien qu' il ait fait ses preuves, Malwarebytes Anti-malware ne remplit pas tout à fait les

même fonctions qu' Antivir, sauf erreur !

Falkra · le 12 août 2008

N'intervenez pas de façon intempestive dans les désinfections des autres (voir ma signature).

Pear n'est pas fou, et n'a pas dit ça. Les deux points peuvent être une faute de frappe, et les couleurs BBcode diffèrent.

patou57 · le 12 août 2008

Voila le rapport avec spybot, pour donner une idée de ce qu'il trouve

--- Search result list ---

Hint of the Day: Click the bar at the right of this to see more information! ()

Win32.Bifrose.LA: [sBI $44EDC9AF] Réglages (Clé du registre, nothing done)

HKEY_LOCAL_MACHINE\SOFTWARE\Cn911

--- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) ---

2008-07-07 blindman.exe (1.0.0.

2008-07-07 SDFiles.exe (1.6.0.4)

2008-07-07 SDMain.exe (1.0.0.6)

2008-07-07 SDShred.exe (1.0.2.3)

2008-07-07 SDUpdate.exe (1.6.0.

2008-07-07 SDWinSec.exe (1.0.0.12)

2008-07-07 SpybotSD.exe (1.6.0.30)

2008-07-07 TeaTimer.exe (1.6.0.20)

2008-08-09 unins000.exe (51.49.0.0)

2008-08-12 unins001.exe (51.49.0.0)

2008-07-07 Update.exe (1.6.0.7)

2008-07-07 advcheck.dll (1.6.1.12)

2007-04-02 aports.dll (2.1.0.0)

2008-06-14 DelZip179.dll (1.79.11.1)

2008-07-07 SDHelper.dll (1.6.0.12)

2008-06-19 sqlite3.dll

2008-07-07 Tools.dll (2.1.5.7)

2008-08-05 Includes\Adware.sbi (*)

2008-08-05 Includes\AdwareC.sbi (*)

2008-06-03 Includes\Cookies.sbi (*)

2008-06-03 Includes\Dialer.sbi (*)

2008-08-05 Includes\DialerC.sbi (*)

2008-07-23 Includes\HeavyDuty.sbi (*)

2008-07-30 Includes\Hijackers.sbi (*)

2008-07-08 Includes\HijackersC.sbi (*)

2008-08-05 Includes\Keyloggers.sbi (*)

2008-08-05 Includes\KeyloggersC.sbi (*)

2004-11-29 Includes\LSP.sbi (*)

2008-08-05 Includes\Malware.sbi (*)

2008-08-05 Includes\MalwareC.sbi (*)

2008-08-05 Includes\PUPS.sbi (*)

2008-08-05 Includes\PUPSC.sbi (*)

2007-11-07 Includes\Revision.sbi (*)

2008-06-18 Includes\Security.sbi (*)

2008-08-05 Includes\SecurityC.sbi (*)

2008-06-03 Includes\Spybots.sbi (*)

2008-06-03 Includes\SpybotsC.sbi (*)

2008-08-04 Includes\Spyware.sbi (*)

2008-08-05 Includes\SpywareC.sbi (*)

2008-06-03 Includes\Tracks.uti

2008-08-05 Includes\Trojans.sbi (*)

2008-08-06 Includes\TrojansC.sbi (*)

2008-03-04 Plugins\Chai.dll

2008-03-05 Plugins\Fennel.dll

2008-02-26 Plugins\Mate.dll

2007-12-24 Plugins\TCPIPAddress.dll

--- System information ---

Windows Vista (Build: 6001) Service Pack 1 (6.0.6001)

/ MSXML4SP2: FIX: ASP stops responding when calling Response.Redirect to another server using msxml4 sp2

/ MSXML4SP2: Security update for MSXML4 SP2 (KB936181)

/ MSXML4SP2: Security update for MSXML4 SP2 (KB941833)

--- Startup entries list ---

Located: HK_LM:Run, !AVG Anti-Spyware

command: "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

file: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

size: 6731312

MD5: CC6BC45DD5A58158645E7FB2953604FE

Located: HK_LM:Run, ArcSoft Connection Service

command: C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

file: C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

size: 31232

MD5: 464C9D3EB01BB20968493C68B1511159

Located: HK_LM:Run, avgnt

command: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

file: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

size: 266497

MD5: 6E812818306D460D62B4ABEA9FDC6679

Located: HK_LM:Run, hpWirelessAssistant

command: %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

file: C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

size: 472800

MD5: F3C9ADCBF74090552EDC76F81A553D81

Located: HK_LM:Run, NvCplDaemon

command: RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup

file: C:\Windows\system32\NvCpl.dll

size: 7770112

MD5: 5D6EA09BBDC10B2B1A49FB46E9092C1C

Located: HK_LM:Run, NvMediaCenter

command: RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

file: C:\Windows\system32\NvMcTray.dll

size: 81920

MD5: DC57BA749066CA3D492C2C8D069D8422

Located: HK_LM:Run, NvSvc

command: RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart

file: C:\Windows\system32\nvsvc.dll

size: 90191

MD5: 8A9DF9256BB78B724603932F5C1758FC

Located: HK_LM:Run, QuickTime Task

command: "C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime

file: C:\Program Files\VistaCodecPack\QT\QTTask.exe

size: 286720

MD5: 49CCFBE5D5225B9D3CC78C09DEE147D0

Located: HK_LM:Run, SynTPEnh

command: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

size: 1033512

MD5: 19D93154C82FE39A99B269CED1056A92

Located: HK_LM:Run, WAWifiMessage

command: %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

file: C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe

size: 317152

MD5: 6006C370B18A345203D26038518F5F86

Located: HK_LM:Run, Windows Defender

command: %ProgramFiles%\Windows Defender\MSASCui.exe -hide

file: C:\Program Files\Windows Defender\MSASCui.exe

size: 1008184

MD5: 0D392EDE3B97E0B3131B2F63EF1DB94E

Located: HK_LM:Run, Windows Mobile-based device management

command: %windir%\WindowsMobile\wmdSync.exe

file: C:\Windows\WindowsMobile\wmdSync.exe

size: 215552

MD5: 4AB05041D5C922B9A7A5D9059F5538CD

Located: HK_LM:Run, !AVG Anti-Spyware (DISABLED)

command: "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

file: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

size: 6731312

MD5: CC6BC45DD5A58158645E7FB2953604FE

Located: HK_LM:Run, Adobe Reader Speed Launcher (DISABLED)

command: "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

file: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

size: 39792

MD5: 8B9145D229D4E89D15ACB820D4A3A90F

Located: HK_LM:Run, HP Health Check Scheduler (DISABLED)

command: C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

file: C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

size: 46704

MD5: 58EC2A2D7B7211F568A75C8D30C68257

Located: HK_LM:Run, HP Software Update (DISABLED)

command: C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

file: C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe

size: 49152

MD5: 821F73B833C4DAEBC33C1A9A4B16BB5A

Located: HK_LM:Run, hpqSRMon (DISABLED)

command: C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe

file: C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe

size: 80896

MD5: 941A08CBDEEDF16B6C986B6BA7C9A5D0

Located: HK_LM:Run, NvMediaCenter (DISABLED)

command: RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit

file: C:\Windows\system32\NvMcTray.dll

size: 81920

MD5: DC57BA749066CA3D492C2C8D069D8422

Located: HK_LM:Run, NvSvc (DISABLED)

command: RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart

file: C:\Windows\system32\nvsvc.dll

size: 90191

MD5: 8A9DF9256BB78B724603932F5C1758FC

Located: HK_LM:Run, QlbCtrl (DISABLED)

command: %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

file: C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe

size: 159744

MD5: 20321CA0F49D143FDB4CEF926A05E10A

Located: HK_LM:Run, QPService (DISABLED)

command: "C:\Program Files\HP\QuickPlay\QPService.exe"

file: C:\Program Files\HP\QuickPlay\QPService.exe

size: 167936

MD5: 9F8F1BA3941DAD9325FFC166E76DFADB

Located: HK_LM:Run, SunJavaUpdateSched (DISABLED)

command: "C:\Program Files\Java\jre1.6.0\bin\jusched.exe"

file: C:\Program Files\Java\jre1.6.0\bin\jusched.exe

size: 77824

MD5: 8F5E772B91A10AC97415B760FF21A94F

Located: HK_LM:Run, SynTPStart (DISABLED)

command: C:\Program Files\Synaptics\SynTP\SynTPStart.exe

file: C:\Program Files\Synaptics\SynTP\SynTPStart.exe

size: 102400

MD5: A3418E4D4A5EE636D44922DC2567FA18

Located: HK_LM:Run, Windows Mobile Device Center (DISABLED)

command: %windir%\WindowsMobile\wmdc.exe

file: C:\Windows\WindowsMobile\wmdc.exe

size: 648072

MD5: 96B3C4E20F02CA16AA1E3E425BFFCC8B

Located: HK_LM:Run, Windows Mobile-based device management (DISABLED)

command: %windir%\WindowsMobile\wmdSync.exe

file: C:\Windows\WindowsMobile\wmdSync.exe

size: 215552

MD5: 4AB05041D5C922B9A7A5D9059F5538CD

Located: HK_CU:Run, Sidebar

where: S-1-5-19...

command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem

file: C:\Program Files\Windows Sidebar\Sidebar.exe

size: 1233920

MD5: FD278E51A7D6F52D22FCE6C67E037AD6

Located: HK_CU:Run, WindowsWelcomeCenter

where: S-1-5-19...

command: rundll32.exe oobefldr.dll,ShowWelcomeCenter

file: C:\Windows\system32\oobefldr.dll

size: 2153472

MD5: 83E4A5435B0FA6AD0166722621A04725

Located: HK_CU:Run, Sidebar

where: S-1-5-20...

command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem

file: C:\Program Files\Windows Sidebar\Sidebar.exe

size: 1233920

MD5: FD278E51A7D6F52D22FCE6C67E037AD6

Located: HK_CU:Run, WindowsWelcomeCenter

where: S-1-5-20...

command: rundll32.exe oobefldr.dll,ShowWelcomeCenter

file: C:\Windows\system32\oobefldr.dll

size: 2153472

MD5: 83E4A5435B0FA6AD0166722621A04725

Located: HK_CU:Run, Sidebar

where: S-1-5-21-3858235561-3552012657-3696386842-1000...

command: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

file: C:\Program Files\Windows Sidebar\sidebar.exe

size: 1233920

MD5: FD278E51A7D6F52D22FCE6C67E037AD6

Located: HK_CU:Run, SpybotSD TeaTimer

where: S-1-5-21-3858235561-3552012657-3696386842-1000...

command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

size: 2156368

MD5: 08FC1FAD357F053043016597B6559BDC

Located: HK_CU:Run, WMPNSCFG

where: S-1-5-21-3858235561-3552012657-3696386842-1000...

command: C:\Program Files\Windows Media Player\WMPNSCFG.exe

file: C:\Program Files\Windows Media Player\WMPNSCFG.exe

size: 202240

MD5: 35937EAD711207544E219C2A19A78A7D

Located: HK_CU:Run, ehTray.exe (DISABLED)

where: S-1-5-21-3858235561-3552012657-3696386842-1000...

command: C:\Windows\ehome\ehTray.exe

file: C:\Windows\ehome\ehTray.exe

size: 125952

MD5: BF08674925F151BD4537B89A493E3E0C

Located: Démarrage (tous utilisateurs), Event Reminder.lnk

where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...

command: C:\Program Files\Broderbund\PrintMaster\PMremind.exe

file: C:\Program Files\Broderbund\PrintMaster\PMremind.exe

size: 323584

MD5: BBCC597AB4227C13540849865952017D

Located: Démarrage (tous utilisateurs), PHOTOfunSTUDIO -viewer-.lnk

where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...

command: C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe

file: C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe

size: 40960

MD5: 2240A1A5973B31F9D050C137BD5794EA

--- Browser helper object list ---

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)

location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

BHO name:

CLSID name: SSVHelper Class

Path: C:\Program Files\Java\jre1.6.0\bin\

Long name: ssv.dll

Short name:

Date (created): 30/03/2007 22:10:04

Date (last access): 17/04/2007 09:31:28

Date (last write): 30/03/2007 22:10:04

Filesize: 501384

Attributes: archive

MD5: C647547F1BB66FA0BE237CAFC49EA5F9

CRC32: C4215F57

Version: 6.0.0.104

{9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live)

location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

BHO name:

CLSID name: Programme d'aide de l'Assistant de connexion Windows Live

Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live\

Long name: WindowsLiveLogin.dll

Short name: WINDOW~1.DLL

Date (created): 20/09/2007 11:30:18

Date (last access): 11/11/2007 21:05:48

Date (last write): 20/09/2007 11:30:18

Filesize: 328752

Attributes: archive

MD5: 59CF5BF6684AFCF906CADAD39B4214DE

CRC32: C363813C

Version: 4.200.520.1

{AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper)

location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

BHO name:

CLSID name: Google Toolbar Helper

description: Google toolbar

classification: Open for discussion

known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll

info link: http://toolbar.google.com/

info source: TonyKlein

Path: c:\program files\google\

Long name: GoogleToolbar2.dll

Short name: GOOGLE~2.DLL

Date (created): 17/05/2007 21:52:40

Date (last access): 17/05/2007 21:52:40

Date (last write): 17/05/2007 21:52:40

Filesize: 2436160

Attributes: readonly archive

MD5: 6D44E0C3B43D27484FBB355E470C4188

CRC32: 2DE875CD

Version: 4.0.1601.4978

--- ActiveX list ---

{56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control)

DPF name:

CLSID name: OnlineScanner Control

Installer: C:\Windows\Downloaded Program Files\OnlineScanner.inf

Codebase: http://www.eset.eu/OnlineScanner.cab

Path: C:\Windows\system32\

Long name: OnlineScanner.ocx

Short name: ONLINE~1.OCX

Date (created): 06/08/2007 13:18:16

Date (last access): 06/08/2007 13:18:16

Date (last write): 06/08/2007 13:18:16

Filesize: 2707456

Attributes: archive

MD5: 41B8A44F69C6C5C2F9DAFEA1ED184D20

CRC32: E1F281AC

Version: 1.0.0.337

{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control)

DPF name:

CLSID name: BDSCANONLINE Control

Installer: C:\Windows\Downloaded Program Files\oscan8.inf

Codebase: http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab

Path: C:\Windows\DOWNLO~1\

Long name: oscan8.ocx

Short name:

Date (created): 25/10/2007 16:54:18

Date (last access): 25/10/2007 16:54:18

Date (last write): 25/10/2007 16:54:18

Filesize: 471040

Attributes: archive

MD5: BC4E154A06C9208EF36669B1B9E5FDAD

CRC32: DF08A08D

Version: 1.0.0.1

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ()

DPF name:

CLSID name:

Installer: C:\Windows\Downloaded Program Files\erma.inf

Codebase: http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab

--- Process list ---

PID: 1768 (1204) C:\Windows\system32\Dwm.exe

size: 81920

MD5: 59903071D7ACE6A02093C47E9E38AF97

PID: 1812 (1732) C:\Windows\Explorer.EXE

size: 2927104

MD5: FFA764631CB70A30065C12EF8E174F9F

PID: 1964 (1812) C:\Program Files\Windows Defender\MSASCui.exe

size: 1008184

MD5: 0D392EDE3B97E0B3131B2F63EF1DB94E

PID: 1972 (1812) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

size: 1033512

MD5: 19D93154C82FE39A99B269CED1056A92

PID: 1992 (1812) C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

size: 6731312

MD5: CC6BC45DD5A58158645E7FB2953604FE

PID: 376 (1812) C:\Windows\WindowsMobile\wmdSync.exe

size: 215552

MD5: 4AB05041D5C922B9A7A5D9059F5538CD

PID: 436 (1812) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

size: 31232

MD5: 464C9D3EB01BB20968493C68B1511159

PID: 468 (1812) C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

size: 266497

MD5: 6E812818306D460D62B4ABEA9FDC6679

PID: 612 (1812) C:\Program Files\Windows Sidebar\sidebar.exe

size: 1233920

MD5: FD278E51A7D6F52D22FCE6C67E037AD6

PID: 692 (1812) C:\Program Files\Windows Media Player\wmpnscfg.exe

size: 202240

MD5: 35937EAD711207544E219C2A19A78A7D

PID: 688 (1812) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

size: 2156368

MD5: 08FC1FAD357F053043016597B6559BDC

PID: 1564 (1224) C:\Windows\system32\taskeng.exe

size: 169472

MD5: 5F109032CE46B7184ED9E50F9FE8489E

PID: 1712 (1812) C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-\PhAutoRun.exe

size: 40960

MD5: 2240A1A5973B31F9D050C137BD5794EA

PID: 1912 ( 544) C:\Windows\System32\rundll32.exe

size: 44544

MD5: 4B555106290BD117334E9A08761C035A

PID: 2420 ( 612) C:\Program Files\Windows Sidebar\sidebar.exe

size: 1233920

MD5: FD278E51A7D6F52D22FCE6C67E037AD6

PID: 1360 (1972) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

size: 95528

MD5: 892699A6AEB910C58B726BD70BEA4F4B

PID: 1020 ( 928) C:\Windows\system32\wbem\unsecapp.exe

size: 37888

MD5: 25873356E52849C3F5B3F1B02317E8C8

PID: 156 (1812) C:\Program Files\Mozilla Firefox\firefox.exe

size: 7667312

MD5: 8FD9724777C5DA9665ADB7B554F746BC

PID: 3200 (1812) C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

size: 1187448

MD5: F7013B3996C49FECA21A684A0E524733

PID: 3636 (1808) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

size: 4891472

MD5: 3B1B5D09D3C9C4CD39D4DB06ED7A0855

PID: 3068 (1920) C:\Windows\system32\conime.exe

size: 69120

MD5: F96EBC5A624349D81DCC7600A3C5DC43

PID: 2388 ( 928) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe

size: 118336

MD5: 7FA0AA2F3DABA5BEB2C4AC1EEC054EFA

PID: 1928 (1812) C:\Program Files\Internet Explorer\iexplore.exe

size: 625664

MD5: 5B92133D3E7FB2644677686305E29E81

PID: 0 ( 0) [system Process]

PID: 4 ( 0) System

PID: 524 ( 4) smss.exe

size: 64000

PID: 620 ( 608) csrss.exe

size: 6144

PID: 672 ( 608) wininit.exe

size: 96768

PID: 684 ( 664) csrss.exe

size: 6144

PID: 720 ( 672) services.exe

size: 279040

PID: 732 ( 672) lsass.exe

size: 9728

PID: 740 ( 672) lsm.exe

size: 229888

PID: 824 ( 664) winlogon.exe

size: 314880

PID: 928 ( 720) svchost.exe

size: 21504

PID: 996 ( 720) svchost.exe

size: 21504

PID: 1036 ( 720) svchost.exe

size: 21504

PID: 1164 ( 720) svchost.exe

size: 21504

PID: 1204 ( 720) svchost.exe

size: 21504

PID: 1224 ( 720) svchost.exe

size: 21504

PID: 1300 (1164) audiodg.exe

size: 88064

PID: 1332 ( 720) SLsvc.exe

size: 2623488

PID: 1372 ( 720) svchost.exe

size: 21504

PID: 1556 ( 720) svchost.exe

size: 21504

PID: 1756 ( 720) aawservice.exe

PID: 1500 ( 720) spoolsv.exe

size: 125952

PID: 912 ( 720) sched.exe

PID: 1792 ( 720) svchost.exe

size: 21504

PID: 2144 (1224) taskeng.exe

size: 169472

PID: 2452 ( 720) a2service.exe

PID: 2492 ( 720) ACService.exe

PID: 2508 ( 720) avguard.exe

PID: 2536 ( 720) guard.exe

PID: 2548 ( 720) svchost.exe

size: 21504

PID: 2564 ( 720) CLCapSvc.exe

PID: 2608 ( 720) LSSrvc.exe

PID: 2624 ( 720) MDM.EXE

PID: 2756 ( 720) svchost.exe

size: 21504

PID: 2792 ( 720) svchost.exe

size: 21504

PID: 2824 ( 720) svchost.exe

size: 21504

PID: 2880 ( 720) SearchIndexer.exe

size: 302080

PID: 3020 ( 720) XAudio.exe

PID: 3060 ( 720) hpqwmiex.exe

PID: 3252 ( 720) CLSched.exe

PID: 3556 ( 720) svchost.exe

size: 21504

PID: 3712 ( 720) wmpnetwk.exe

PID: 3824 ( 720) alg.exe

size: 59392

PID: 2876 ( 928) WmiPrvSE.exe

PID: 3312 ( 720) HPHC_Service.exe

PID: 3092 ( 720) svchost.exe

size: 21504

PID: 1940 ( 720) SDWinSec.exe

size: 809296

MD5: 55C1E4FDFD62A48FB5A2CE25F3AA8AE8

--- Browser start & search pages list ---

Spybot - Search & Destroy browser pages report, 12/08/2008 22:24:24

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page

C:\Windows\system32\blank.htm

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page

http://recherche.neuf.fr/

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar

http://recherche.neuf.fr/ie/default.html

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page

http://home.neuf.fr/

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant

http://ie.search.msn.com/fr/srchasst/srchasst.htm

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@

http://home.microsoft.com/access/autosearch.asp?p=%s

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page

%SystemRoot%\system32\blank.htm

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page

http://go.microsoft.com/fwlink/?LinkId=54896

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page

http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL

http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL

http://recherche.neuf.fr/

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant

http://recherche.neuf.fr/ie/default.html

--- Winsock Layered Service Provider list ---

Namespace Provider 1: Fournisseur Shim d'affectation de noms de messagerie

GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}

Filename:

Namespace Provider 2: Fournisseur d'espace de noms du nuage PNRP

GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}

Filename:

Namespace Provider 3: Fournisseur d'espace de noms du nom PNRP

GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}

Filename:

--- Uninstall list ---

Adobe Flash Player ActiveX 9.0.115.0 (Adobe Flash Player ActiveX)

uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe

publisher: Adobe Systems Incorporated

help link: http://www.adobe.com/go/flashplayer_support/

Adobe Flash Player Plugin 9.0.124.0 (Adobe Flash Player Plugin)

uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe

publisher: Adobe Systems Incorporated

Avira AntiVir Personal - Free Antivirus (AntiVir PersonalEdition Classic)

uninstall cmd: C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE

publisher: Avira GmbH

help link: http://www.avira.com/classic-support

AVG Anti-Spyware 7.5 (AVGAntiSpyware75)

install location: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5

uninstall cmd: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe

publisher: Grisoft Ltd.

help link: http://www.grisoft.com

Broadcom 802.11 Wireless LAN Adapter 4.102.15.61 (Broadcom 802.11b Network Adapter)

uninstall cmd: "C:\Program Files\Broadcom\Broadcom 802.11\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11\Driver"

publisher: Broadcom Corporation

CamStudio 2.02 Fr (CamStudio 2.02 Fr_is1)

uninstall cmd: "C:\Program Files\CamStudio\unins000.exe"

Canon Inkjet Printer Driver Add-On Module (CANONIJINBOXADDON100)

uninstall cmd: C:\Program Files\Common Files\Canon\IJ\InboxPrnV100\SETUP.EXE -R

CCleaner (remove only) (CCleaner)

uninstall cmd: "C:\Program Files\CCleaner\uninst.exe"

CD Jaquette 5.0 (CD Jaquette)

uninstall cmd: "C:\JSAL Software\CD Jaquette\uninstall.exe"

Conexant HD Audio (CNXT_HDAUDIO)

uninstall cmd: C:\Program Files\CONEXANT\CNXT_HDAUDIO\UIU32a.exe -U -IwisR30B7.INF

HDAUDIO Soft Data Fax Modem with SmartCP (CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5045&SUBSYS_103C30B7)

uninstall cmd: C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_5045&SUBSYS_103C30B7\UIU32m.EXE -U -IwqcVenz.inf

HDAUDIO Soft Data Fax Modem with SmartCP (CNXT_MODEM_HDA_HSF)

uninstall cmd: C:\Program Files\CONEXANT\CNXT_MODEM_HDA_HSF\UIU32m.exe -U -IwqcVenz.inf

(Connection Manager)

Canon Utilities Easy-PhotoPrint (Easy-PhotoPrint)

uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe uninst.ini

Easy-WebPrint (Easy-WebPrint)

uninstall cmd: C:\Windows\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"

eMule (eMule)

uninstall cmd: "C:\Program Files\eMule\Uninstall.exe"

EVEREST Ultimate Edition v4.50 4.50 (EVEREST Ultimate Edition_is1)

install location: C:\Program Files\Lavalys\EVEREST Ultimate Edition\

uninstall cmd: "C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"

publisher: Lavalys, Inc.

help link: http://www.lavalys.com

HijackThis 2.0.2 2.0.2 (HijackThis)

uninstall cmd: "C:\Users\Patrice CATTELAIN\Desktop\HijackThis.exe" /uninstall

publisher: TrendMicro

(InstallShield Uninstall Information)

jv16 PowerTools 1.3 (jv16 PowerTools_is1)

uninstall cmd: "C:\Program Files\jv16 PowerTools\unins000.exe"

K-Lite Codec Pack 3.6.5 Full 3.6.5 (KLiteCodecPack_is1)

install date: 20080111

install location: C:\Program Files\K-Lite Codec Pack\

uninstall cmd: "C:\Program Files\K-Lite Codec Pack\unins000.exe"

LimeWire 4.16.6 4.16.6 (LimeWire)

uninstall cmd: "C:\Program Files\LimeWire\uninstall.exe"

publisher: Lime Wire, LLC

help link: http://www.limewire.com/support

LM 2.5 (LM 2.5)

uninstall cmd: C:\Program Files\LM Version-2.5-F\Désintallation de la Lanterne Magique.exe

Malwarebytes' Anti-Malware (Malwarebytes' Anti-Malware_is1)

install date: 20080811

install location: C:\Program Files\Malwarebytes' Anti-Malware\

uninstall cmd: "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

publisher: Malwarebytes Corporation

help link: http://www.malwarebytes.org

Media Player Classic 6.4.8.3 6.4.8.3 (Media Player Classic)

uninstall cmd: C:\Program Files\Media Player Classic\mpc_uninst.exe

publisher: Gabest

Mozilla Firefox (2.0.0.16) 2.0.0.16 (fr) (Mozilla Firefox (2.0.0.16))

install location: C:\Program Files\Mozilla Firefox

uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe

publisher: Mozilla

comments: Mozilla Firefox

Canon MP Navigator 2.0 (MP Navigator 2.0)

install location: C:\Program Files\Canon\MP Navigator 2.0

uninstall cmd: "C:\Program Files\Canon\MP Navigator 2.0\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator 2.0\uninst.ini

Barre d'outils MSN (MSN Toolbar)

uninstall cmd: C:\Program Files\MSN Toolbar\01.01.2607.0\fr\mtbs.exe c

Neuf - Kit de connexion 7.11.22.4 (Neuf_Kit)

uninstall cmd: C:\Program Files\Neuf\Kit\uninstall.exe

publisher: Neuf

help link: http://abonnes.neuf.fr

help telephone: 0892 222 109

NVIDIA Drivers (NVIDIA Drivers)

Picasa 2 2.0 (Picasa2)

uninstall cmd: "C:\Program Files\Picasa2\Uninstall.exe"

publisher: Google, Inc.

help link: http://www.picasa.com/

SAMSUNG CDMA Modem Driver Set (SAMSUNG CDMA Modem)

uninstall cmd: C:\Windows\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe

SAMSUNG Mobile USB Modem Software (SAMSUNG Mobile USB Modem)

uninstall cmd: C:\Windows\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe

SAMSUNG Mobile USB Modem 1.0 Software (SAMSUNG Mobile USB Modem 1.0)

uninstall cmd: C:\Windows\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe

Smart Data Recovery v3.1 3.1 (Smart Data Recovery_is1)

install location: C:\Program Files\Smart Data Recovery\

uninstall cmd: "C:\Program Files\Smart Data Recovery\unins001.exe"

publisher: Smart PC Solutions, LLC

help link: http://www.smartpctools.com

Synaptics Pointing Device Driver 10.2.4.0 (SynTPDeinstKey)

uninstall cmd: rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall

publisher: Synaptics

System Requirements Lab (SystemRequirementsLab)

uninstall cmd: C:\Program Files\SystemRequirementsLab\Uninstall.exe

VivilProject SpeedTest v4.02 version Francaise (VivilProject SpeedTest_is1)

install date: 20080427

install location: C:\VivilProject SpeedTest\

uninstall cmd: "C:\VivilProject SpeedTest\unins000.exe"

publisher: Sebastien WILLEMIJNS

help link: http://80.247.230.136/speedtest

VideoLAN VLC media player 0.8.6h 0.8.6h (VLC media player)

uninstall cmd: C:\Program Files\VideoLAN\VLC\uninstall.exe

publisher: VideoLAN Team

Vodafone WCDMA Composite Device Drive Software (Vodafone WCDMA Composite Device Drive)

uninstall cmd: C:\Windows\system32\Samsung_USB_Drivers\4\SSVDUninstall.exe

GIMP 2.4.6 (WinGimp-2.0_is1)

install date: 20080606

install location: C:\Program Files\GIMP-2.0\

uninstall cmd: "C:\Program Files\GIMP-2.0\setup\unins000.exe"

help link: http://groups.yahoo.com/group/gimpwin-users/

Archiveur WinRAR (WinRAR archiver)

uninstall cmd: C:\Program Files\WinRAR\uninstall.exe

Yahoo! Toolbar avec bloqueur de fenêtres pop-up (Yahoo! Companion)

uninstall cmd: C:\PROGRA~1\Yahoo!\Common\unyt.exe

HP Wireless Assistant 3.00 B2 ({02F33FB0-F7D5-4C0A-B4AD-8CE5CE230BBE})

version: 50331650

version (major): 3

estimated size: 3847

install date: 20070330

install location: C:\Program Files\Hewlett-Packard\HP Wireless Assistant\

install source: C:\Swsetup\WLASST\disk1\

uninstall cmd: MsiExec.exe /I{02F33FB0-F7D5-4C0A-B4AD-8CE5CE230BBE}

publisher: Hewlett-Packard

comments: HP Wireless Assistant

help link: http://www.hp.com

Roxio Creator Tools 3.3.0 ({0394CDC8-FABD-4ed8-B104-03393876DFDF})

version: 50528256

version (major): 3

version (minor): 3

estimated size: 345

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\RCP_TOOLS_33\

uninstall cmd: MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF}

publisher: Roxio

help link: http://support.sonic.com/

Roxio Creator Data 3.3.0 ({0D397393-9B50-4c52-84D5-77E344289F87})

version: 50528256

version (major): 3

version (minor): 3

estimated size: 892

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\RCP_DATA_33\

uninstall cmd: MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87}

publisher: Roxio

help link: http://support.sonic.com/

Security Update for CAPICOM (KB931906) 2.1.0.2 ({0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A})

version: 33619968

version (major): 2

version (minor): 1

estimated size: 770

install date: 20071111

install source: C:\Windows\TEMP\IXP000.TMP\

uninstall cmd: MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}

publisher: Microsoft Corporation

Roxio Creator EasyArchive 3.3.0 ({11F93B4B-48F0-4A4E-AE77-DFA96A99664B})

version: 50528256

version (major): 3

version (minor): 3

estimated size: 1690

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\RCP_EASYARCHIVE_33\

uninstall cmd: MsiExec.exe /I{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}

publisher: Roxio

help link: http://support.sonic.com/

HPPhotoSmartPhotobookWebPack1 1.00.0000 ({12A76360-388E-4B27-ABEB-D5FC5378DD2A})

version: 16777216

version (major): 1

estimated size: 1821

install date: 20080407

install source: C:\Users\PATRIC~1\AppData\Local\Temp\7zSA535.tmp\setup\HPPhotoSmartPhotobookWebPack1\

publisher: Hewlett-Packard

HP Active Support Library 1.0.21 ({21E62565-8639-457C-B64C-A3FF0A8B4D80})

version: 16777237

version (major): 1

estimated size: 11184

install date: 20070330

install location: C:\Program Files\Hewlett-Packard\HP Health Check\

install source: C:\Users\ADMINI~1\AppData\Local\Temp\{359098A0-743B-4349-8C7E-11F521CC5DBC}\

uninstall cmd: C:\Program Files\InstallShield Installation Information\{21E62565-8639-457C-B64C-A3FF0A8B4D80}\setup.exe -runfromtemp -l0x0409

publisher: Hewlett-Packard

Hewlett-Packard Active Check 1.1.4.0 ({254C37AA-6B72-4300-84F6-98A82419187E})

version: 16842756

version (major): 1

version (minor): 1

estimated size: 530

install date: 20070330

install source: C:\Users\ADMINI~1\AppData\Local\Temp\

uninstall cmd: MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}

publisher: Hewlett-Packard

Java SE Runtime Environment 6 1.6.0.0 ({3248F0A8-6813-11D6-A77B-00B0D0160000})

version: 17170432

version (major): 1

version (minor): 6

estimated size: 117374

install date: 20070330

install source: C:\Users\Administrateur\AppData\LocalLow\Sun\Java\jre1.6.0\

uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160000}

publisher: Sun Microsystems, Inc.

contact: http://java.com

help link: http://java.com

readme: C:\Program Files\Java\jre1.6.0\README.txt

Roxio MyDVD Basic v9 9.0.114 ({33C65B6A-5D73-4E3E-A1F9-127C27BD3F72})

version: 150995058

version (major): 9

estimated size: 306791

install date: 20070330

install location: C:\Program Files\Roxio\Roxio MyDVD Basic v9\

install source: C:\SWSETUP\RoxioCB9\EMC_90\

uninstall cmd: MsiExec.exe /I{33C65B6A-5D73-4E3E-A1F9-127C27BD3F72}

publisher: Roxio

comments: Digital Media Suite - Programme d'installation

contact: http://support.roxio.com

help link: http://support.roxio.com

readme: C:\Program Files\Roxio\Roxio MyDVD Basic v9\ReadMe.htm

PSSWCORE 2.02.0000 ({34BFB099-07B2-4E95-A673-7362D60866A2})

version: 33685504

version (major): 2

version (minor): 2

estimated size: 30949

install date: 20080407

install source: C:\Users\PATRIC~1\AppData\Local\Temp\7zSA535.tmp\setup\HPPhotoSmartCore\

publisher: Hewlett-Packard

HP Quick Launch Buttons 6.10 B9 6.10 B9 ({34D2AB40-150D-475D-AE32-BD23FB5EE355})

version: 101318865

install date: 20070330

install location: C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons

install source: C:\SWSETUP\QLB\Disk1\

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe" -l0x40c uninst

publisher: Hewlett-Packard

help link: http://www.hp.com

Sonic Activation Module 1.0 ({35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0})

version: 16777216

version (major): 1

estimated size: 8214

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\ACTIVATION_103\

uninstall cmd: MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}

publisher: Sonic Solutions

MSXML 4.0 SP2 (KB927978) 4.20.9841.0 ({37477865-A3F1-4772-AD43-AAFC6BCFF99F})

version: 68429425

version (major): 4

version (minor): 20

estimated size: 1269

install date: 20070518

install source: c:\a6c4c6168ed6c8b212f23e91df4c34\

uninstall cmd: MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}

publisher: Microsoft Corporation

help link: http://support.microsoft.com/kb/927978

HP Easy Setup - Frontend 5.00.0000 ({40F7AED3-0C7D-4582-99F6-484A515C73F2})

version: 83886080

install date: 20070330

install location: C:\Program Files\Hewlett-Packard\HP Easy Setup - Frontend

install source: c:\HP\tmp\src\

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40F7AED3-0C7D-4582-99F6-484A515C73F2}\setup.exe" -l0x9 -removeonly

publisher: Hewlett-Packard

HP QuickPlay 3.0 ({45D707E9-F3C4-11D9-A373-0050BAE317E1})

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\setup.exe" -uninstall

ArcSoft Software Suite ({497A1721-088F-41EF-8876-B43C9DA5528B})

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{497A1721-088F-41EF-8876-B43C9DA5528B}\Setup.exe" -l0x40c

publisher: ArcSoft

Cards_Calendar_OrderGift_DoMorePlugout 1.00.0000 ({4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6})

version: 16777216

version (major): 1

estimated size: 1888

install date: 20080407

install source: C:\Users\PATRIC~1\AppData\Local\Temp\7zSA535.tmp\setup\Cards_Calendar_Ordergift_Domore_Plugout\

publisher: Hewlett-Packard

HP Pavilion Webcam Driver for Vista v061.001.00005 061.001.00005 ({5CA81D12-9EC2-4082-972B-43ECA63F41F2})

version: 1023475717

install date: 20070517

install location: C:\SWSETUP\MISC5\

install source: C:\SWSetup\WCAM1\Setup.exe

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CA81D12-9EC2-4082-972B-43ECA63F41F2}\setup.exe" -l0x40c -removeonly

publisher: Chicony

Roxio Creator Copy 3.3.0 ({619CDD8A-14B6-43a1-AB6C-0F4EE48CE048})

version: 50528256

version (major): 3

version (minor): 3

estimated size: 648

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\RCP_COPY_33\

uninstall cmd: MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}

publisher: Roxio

help link: http://support.sonic.com/

Roxio Express Labeler 3 2.1.0 ({6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA})

version: 33619968

version (major): 2

version (minor): 1

estimated size: 16612

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\EXPRESSLABELER_31\

uninstall cmd: MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}

publisher: Roxio

Hewlett-Packard Asset Agent 2.0.55.0 ({669D4A35-146B-4314-89F1-1AC3D7B88367})

version: 33554487

version (major): 2

estimated size: 849

install date: 20070330

install source: C:\Users\ADMINI~1\AppData\Local\Temp\

uninstall cmd: MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}

publisher: HP

Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742) 8.1.2 ({6846389C-BAC0-4374-808E-B120F86AF5D7})

version: 134283266

version (major): 8

version (minor): 1

estimated size: 8180

install date: 20080707

install location: C:\Program Files\Adobe\Security Update\

install source: C:\Users\Patrice CATTELAIN\AppData\Local\Adobe\Updater5\Install\reader8rdr-fr_FR\

uninstall cmd: MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}

publisher: Adobe Systems, Inc

comments: Your Comments

contact: Customer Support Department

help link: http://www.Adobe.com

help telephone: 1-555-555-4505

Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4})

version: 16777216

version (major): 1

estimated size: 296

install date: 20080410

install source: C:\Users\PATRIC~1\AppData\Local\Temp\IXP000.TMP\

uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

publisher: Microsoft Corp

Microsoft Works 08.05.0822 ({6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C})

version: 134546230

version (major): 8

version (minor): 5

estimated size: 276579

install date: 20070330

install source: C:\swsetup\MSWorks\FR\

uninstall cmd: MsiExec.exe /I{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}

publisher: Microsoft Corporation

comments: Microsoft Works 8.0 installation.

help link: http://go.microsoft.com/fwlink/?LinkId=6831

help telephone:

Apple Software Update 2.0.0.21 ({74EC78BC-B379-4E29-9006-8F161DCAABA6})

version: 33554432

version (major): 2

estimated size: 2204

install date: 20080628

install location: C:\Program Files\Apple Software Update\

install source: C:\Users\PATRIC~1\AppData\Local\Temp\IXP316.TMP\

uninstall cmd: MsiExec.exe /I{74EC78BC-B379-4E29-9006-8F161DCAABA6}

publisher: Apple Inc.

contact: Assistance AppleCare

help link: http://www.apple.com/fr/support/

help telephone: 0825 888 024

6.5.1 ({7585478E9D9B42108671C12F8714CEFE})

install location: C:\Program Files\DivX

uninstall cmd: C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

publisher: DivX, Inc.

Samsung Samples Installer 1.00.0000 ({7AC15160-A49B-4A89-B181-D4619C025FFF})

version: 16777216

install date: 20080510

install location: C:\Program Files\Samsung\Samsung PC Studio 3

install source: C:\Users\PATRIC~1\AppData\Local\Temp\byeE9C0.tmp\Disk1\

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AC15160-A49B-4A89-B181-D4619C025FFF}\setup.exe" -l0x40c -removeonly

publisher: Samsung Electronics Co., Ltd.

Roxio Creator Audio 3.3.0 ({83FFCFC7-88C6-41c6-8752-958A45325C82})

version: 50528256

version (major): 3

version (minor): 3

estimated size: 1110

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\RCP_AUDIO_33\

uninstall cmd: MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82}

publisher: Roxio

help link: http://support.sonic.com/

ArcSoft PhotoStudio 5.5 ({85309D89-7BE9-4094-BB17-24999C6118FC})

version (major): 5

version (minor): 5

install location: C:\Program Files\ArcSoft\PhotoStudio 5.5

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{85309D89-7BE9-4094-BB17-24999C6118FC}\SETUP.EXE" -l0x40c

publisher: ArcSoft

VSO CopyToDVD 4 4.0.5 ({870F1750-BA89-11DA-A94D-0800200C9A66}_is1)

install date: 20080218

install location: C:\Program Files\VSO\

uninstall cmd: "C:\Program Files\VSO\unins000.exe"

publisher: VSO Software

Microsoft Silverlight 1.0.30401.0 ({89F4137D-6C26-4A84-BDB8-2E5A4BB71E00})

version: 16807617

version (major): 1

install date: 20080526

install source: c:\temp\ext8202\

uninstall cmd: MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

publisher: Microsoft Corporation

help link: http://go.microsoft.com/fwlink/?LinkID=91955

3.0.7.009 ({8ADC27DB-E2C8-446C-A576-166C05C2DD24})

version: 50331655

version (major): 3

estimated size: 192

install date: 20070330

install source: C:\SwSetup\HPUpdate\

publisher: Hewlett-Packard

DivX Player 6.6.0 ({8ADFC4160D694100B5B8A22DE9DCABD9})

install location: C:\Program Files\DivX

uninstall cmd: C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER

HP Update 4.000.005.007 ({8C6027FD-53DC-446D-BB75-CACD7028A134})

version: 67108869

version (major): 4

estimated size: 3654

install date: 20070330

install source: C:\SwSetup\HPUpdate\

uninstall cmd: MsiExec.exe /X{8C6027FD-53DC-446D-BB75-CACD7028A134}

publisher: Hewlett-Packard

contact: http://www.hp.com/support

PrintMaster ({8DD144C1-5EAD-4D55-80A1-ACAF893A4FFE})

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8DD144C1-5EAD-4D55-80A1-ACAF893A4FFE}\setup.exe" anything

Microsoft Office Professional Edition 2003 11.0.8173.0 ({9011040C-6000-11D3-8CFE-0150048383C9})

version: 184557549

version (major): 11

estimated size: 827415

install date: 20080709

uninstall cmd: MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}

publisher: Microsoft Corporation

help link: http://www.microsoft.com/support

readme: C:\Program Files\Microsoft Office\OFFICE11\1036\OFREADME.HTM

Microsoft Office FrontPage 2003 11.0.8173.0 ({9017040C-6000-11D3-8CFE-0150048383C9})

version: 184557549

version (major): 11

estimated size: 552270

install date: 20080312

install source: C:\MSOCache\All Users\9000040c-6000-11D3-8CFE-0150048383C9\

uninstall cmd: MsiExec.exe /I{9017040C-6000-11D3-8CFE-0150048383C9}

publisher: Microsoft Corporation

help link: http://www.microsoft.com/support

readme: C:\Program Files\Microsoft Office\OFFICE11\1036\OFREADME.HTM

Microsoft Office Project Professional 2003 11.0.8173.0 ({903B040C-6000-11D3-8CFE-0150048383C9})

version: 184557549

version (major): 11

estimated size: 378371

install date: 20080409

install source: C:\MSOCache\All Users\9000040c-6000-11D3-8CFE-0150048383C9\

uninstall cmd: MsiExec.exe /I{903B040C-6000-11D3-8CFE-0150048383C9}

publisher: Microsoft Corporation

help link: http://www.microsoft.com/support

readme: C:\Program Files\Microsoft Office\OFFICE11\1036\PJREADME.HTM

Gestionnaire pour appareils Windows Mobile 6.1.6965.0 ({904CCF62-818D-4675-BC76-D37EB399F917})

version: 100735797

version (major): 6

version (minor): 1

estimated size: 28165

install date: 20080316

install source: C:\Windows\WindowsMobile\

uninstall cmd: MsiExec.exe /X{904CCF62-818D-4675-BC76-D37EB399F917}

publisher: Microsoft Corporation

Microsoft Office Visio Professional 2003 11.0.8173.0 ({9051040C-6000-11D3-8CFE-0150048383C9})

version: 184557549

version (major): 11

estimated size: 449531

install date: 20080409

install source: C:\MSOCache\All Users\9000040c-6000-11D3-8CFE-0150048383C9\

uninstall cmd: MsiExec.exe /I{9051040C-6000-11D3-8CFE-0150048383C9}

publisher: Microsoft Corporation

help link: http://www.microsoft.com/support

readme: C:\Program Files\Microsoft Office\Visio11\1036\VIREADME.HTM

Microsoft Office OneNote 2003 11.0.8173.0 ({90A1040C-6000-11D3-8CFE-0150048383C9})

version: 184557549

version (major): 11

estimated size: 297457

install date: 20080312

install source: C:\MSOCache\All Users\9000040c-6000-11D3-8CFE-0150048383C9\

uninstall cmd: MsiExec.exe /I{90A1040C-6000-11D3-8CFE-0150048383C9}

publisher: Microsoft Corporation

help link: http://www.microsoft.com/support

readme: C:\Program Files\Microsoft Office\OFFICE11\1036\OFREADME.HTM

Microsoft Office PowerPoint Viewer 2003 11.0.6458.0 ({90AF040C-6000-11D3-8CFE-0150048383C9})

version: 184555834

version (major): 11

estimated size: 4111

install date: 20080315

install location: C:\Program Files\Microsoft Office\

install source: C:\Users\PATRIC~1\AppData\Local\Temp\IXP000.TMP\

uninstall cmd: MsiExec.exe /X{90AF040C-6000-11D3-8CFE-0150048383C9}

publisher: Microsoft Corporation

help link: http://www.microsoft.com/support

Canon MP170 ({91175441-4E5D-4e13-B116-828FD352CDB2})

uninstall cmd: "C:\Windows\system32\CanonIJ Uninstaller Information\{91175441-4E5D-4e13-B116-828FD352CDB2}\DelDrv.exe" /U:{91175441-4E5D-4e13-B116-828FD352CDB2} /L0x0009

QuickTime 7.2.0.240 ({95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC})

version: 117571584

version (major): 7

version (minor): 2

estimated size: 75788

install date: 20080628

install location: C:\Program Files\VistaCodecPack\QT\

install source: C:\Users\PATRIC~1\AppData\Local\Temp\IXP316.TMP\

uninstall cmd: MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}

publisher: Apple Inc.

contact: Assistance AppleCare

help link: http://www.apple.com/fr/support/

help telephone: (33) 0825 888 024

PHOTOfunSTUDIO -viewer- 2.00.000 ({9A9DBEBC-C800-4776-A970-D76D6AA405B1})

version: 33554432

install date: 20080628

install location: C:\Program Files\Panasonic\PHOTOfunSTUDIO -viewer-

install source: E:\PHOTOFUN\Setup\

uninstall cmd: C:\Program Files\InstallShield Installation Information\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}\setup.exe -runfromtemp -l0x040c -z"Uninstall" -removeonly

publisher: Panasonic

Private folder 1.00.0000 ({A3D7D9D7-9A65-4F7D-B660-CBD4105129CF})

version: 16777216

version (major): 1

estimated size: 2078

install date: 20071114

install location: C:\Program Files\Private folder\My Product Name\

install source: C:\Windows\Downloaded Installations\{81098DCE-9FAC-4204-8890-06EF3B89C358}\

uninstall cmd: MsiExec.exe /I{A3D7D9D7-9A65-4F7D-B660-CBD4105129CF}

publisher: Your Company Name

Galerie de photos Windows Live 12.0.1347.0718 ({A70FA218-6598-4AC9-813D-63597C5DD068})

version: 201327939

version (major): 12

estimated size: 21445

install date: 20080807

install source: C:\Windows\SoftwareDistribution\Download\3a0ec7b3c737fb664542cf342f6fe212\img\

uninstall cmd: MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}

publisher: Microsoft Corporation

help link: http://photogallery.live.com/

HP Customer Experience Enhancements 1.00.0000 ({AB5E289E-76BF-4251-9F3F-9B763F681AE0})

version: 16777216

install date: 20070330

install location: C:\Program Files\Hewlett-Packard\HP Customer Experience Enhancements

install source: c:\HP\tmp\src\

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB5E289E-76BF-4251-9F3F-9B763F681AE0}\setup.exe" -l0x9 -removeonly

publisher: Hewlett-Packard

Adobe Reader 8.1.2 - Français 8.1.2 ({AC76BA86-7AD7-1036-7B44-A81200000003})

version: 134283266

version (major): 8

version (minor): 1

estimated size: 147922

install date: 20080316

install location: C:\Program Files\Adobe\Reader 8.0\Reader\

install source: C:\Users\PATRIC~1\AppData\Local\Temp\Adobe Reader 8\

uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}

publisher: Adobe Systems Incorporated

comments:

contact: Support clientèle

help link: http://www.adobe.fr/support/main.html

readme: C:\Program Files\Adobe\Reader 8.0\Reader\Lisezmoi.htm

Assistant de connexion Windows Live 4.200.520.1 ({AFA4E5FD-ED70-4D92-99D0-162FD56DC986})

version: 80216584

version (major): 4

version (minor): 200

estimated size: 1333

install date: 20071111

install source: C:\Program Files\Common Files\WindowsLiveInstaller\MsiSources\

uninstall cmd: MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}

publisher: Microsoft Corporation

DivX Converter 6.5.1 ({B13A7C41581B411290FBC0395694E2A9})

install location: C:\Program Files\DivX

uninstall cmd: C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER

publisher: DivX, Inc.

HP Image Zone Express 1.1.002.037 ({B314F1F2-49DF-41DD-A1B4-DC4192EC1021})

version: 16842754

version (major): 1

version (minor): 1

estimated size: 7818

install date: 20080416

install location: C:\Program Files\HP\

install source: C:\Users\PATRIC~1\AppData\Local\Temp\IXP000.TMP\

uninstall cmd: MsiExec.exe /X{B314F1F2-49DF-41DD-A1B4-DC4192EC1021}

publisher: Hewlett-Packard

help link: http://www.hp.com

Spybot - Search & Destroy 1.6.0 ({B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1)

install date: 20080812

install location: C:\Program Files\Spybot - Search & Destroy\

uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins001.exe"

publisher: Safer Networking Limited

help link: http://www.safer-networking.org/index.php?page=support

DivX Web Player 1.4.0 ({B7050CBDB2504B34BC2A9CA0A692CC29})

install location: C:\Program Files\DivX

uninstall cmd: C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN

publisher: DivX,Inc.

HP Photosmart Essential 2.5 1.02.0000 ({BAD0FA60-09CF-4411-AE6A-C2844C8812FA})

version: 16908288

version (major): 1

version (minor): 2

estimated size: 770

install date: 20080407

install source: C:\Users\PATRIC~1\AppData\Local\Temp\7zSA535.tmp\setup\HPPhotoSmartEssential\

publisher: Hewlett-Packard

MSXML 4.0 SP2 (KB936181) 4.20.9848.0 ({C04E32E0-0416-434D-AFB9-6969D703A9EF})

version: 68429432

version (major): 4

version (minor): 20

estimated size: 1296

install date: 20070820

install source: c:\c5d86f0e101beb142a717ddd6f64\

uninstall cmd: MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}

publisher: Microsoft Corporation

help link: http://support.microsoft.com/kb/936181

Samsung PC Studio 3.0.1.60404 ({C4A4722E-79F9-417C-BD72-8D359A090C97})

version: 50331648

install date: 20080510

install location: C:\Program Files\Samsung\Samsung PC Studio 3\

install source: C:\Users\PATRIC~1\AppData\Local\Temp\bye5E72.tmp\Disk1\

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C4A4722E-79F9-417C-BD72-8D359A090C97}\setup.exe" -l0x40c -removeonly

publisher: Samsung Electronics Co., Ltd.

comments: Samsung PC Studio 3 Maintenance

contact: Samsung Electronics Co., Ltd.

help link: http://www.samsungmobile.co.kr

help telephone: +82 2051 4151

MSXML 4.0 SP2 (KB941833) 4.20.9849.0 ({C523D256-313D-4866-B36A-F3DE528246EF})

version: 68429433

version (major): 4

version (minor): 20

estimated size: 1296

install date: 20071010

install source: c:\568c7fc337e4be0b0ac8b79af1e1ad\

uninstall cmd: MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}

publisher: Microsoft Corporation

help link: http://support.microsoft.com/kb/941833

Roxio Creator Basic v9 3.3.0 ({C8B0680B-CDAE-4809-9F91-387B6DE00F7C})

version: 50528256

version (major): 3

version (minor): 3

estimated size: 21971

install date: 20070330

install source: C:\SWSETUP\RoxioCB9\RCP_CORE_33\

uninstall cmd: MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}

publisher: Roxio

help link: http://support.sonic.com/

TuneUp Utilities 2007 6.0.2200 ({C8BB4912-12D9-42AE-B571-E580D8CD1B5B})

version: 100665496

version (major): 6

estimated size: 27354

install date: 20070918

install source: C:\Program Files\Common Files\Wise Installation Wizard\

uninstall cmd: MsiExec.exe /I{C8BB4912-12D9-42AE-B571-E580D8CD1B5B}

publisher: TuneUp Software

help link: www.tuneup.de

DivX Content Uploader 1.2.1 ({D050D7362D214723AD585B541FFB6C11})

install location: C:\Program Files\DivX

uninstall cmd: C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER

publisher: DivX, Inc.

Google Toolbar for Internet Explorer 4.0.0.002 ({DBEA1034-5882-4A88-8033-81C4EF0CFA29})

version: 67108864

version (major): 4

estimated size: 2132

install date: 20070517

install source: C:\hp\tmp\src\

uninstall cmd: MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}

publisher: Google Inc.

Ad-Aware 2007 7.0.2.6 ({DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF})

version: 117440514

version (major): 7

estimated size: 27833

install date: 20080208

install location: C:\Program Files\Lavasoft\Ad-Aware 2007\

install source: C:\Program Files\Common Files\Wise Installation Wizard\

uninstall cmd: MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}

publisher: Lavasoft

help link: http://www.lavasoftsupport.com

VideoToolkit01 100.0.128.000 ({E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC})

version: 1677721728

version (major): 100

estimated size: 448

install date: 20080407

install source: C:\Users\PATRIC~1\AppData\Local\Temp\7zSA535.tmp\setup\VideoToolkit01\

publisher: Hewlett-Packard

LightScribe 1.4.124.1 1.4.124.1 ({E1180142-3B31-4DCC-9D27-7AC2D37662BF})

version: 17039484

version (major): 1

version (minor): 4

estimated size: 4122

install date: 20070330

install location: C:\Program Files\Common Files\LightScribe\

install source: C:\SWSETUP\LSHSI\

publisher: http://www.lightscribe.com

comments: LightScribe

contact: LightScribe

help link: http://www.lightscribe.com

help telephone: 1-000-000-0000

HP Help and Support 1.0.0 ({E4DDBA93-769B-49D8-BA33-8814E45ED0C1})

version: 16777216

version (major): 1

estimated size: 21429

install date: 20070330

install source: C:\SWSetup\HSC\

uninstall cmd: MsiExec.exe /I{E4DDBA93-769B-49D8-BA33-8814E45ED0C1}

publisher: Hewlett-Packard

comments: HP Customized Help and Support

contact: Hewlett-Packard

help link: http://www.support.hp.com

help telephone: http://www.hp.com/go/assistance

Mise à jour du pilote du Gestionnaire pour appareils Windows Mobile 6.1.6965.0 ({E7044E25-3038-4A76-9064-344AC038043E})

version: 100735797

version (major): 6

version (minor): 1

estimated size: 43432

install date: 20080316

install source: C:\Users\PATRIC~1\AppData\Local\Temp\IXP000.TMP\

uninstall cmd: MsiExec.exe /X{E7044E25-3038-4A76-9064-344AC038043E}

publisher: Microsoft Corporation

Samsung PC Studio 3 USB Driver Installer 1.00.0000 ({EBA29752-DDD2-4B62-B2E3-9841F92A3E3A})

version: 16777216

install date: 20080510

install location: C:\Program Files\Samsung\Samsung PC Studio 3

install source: C:\Users\PATRIC~1\AppData\Local\Temp\bye33BB.tmp\Disk1\

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}\setup.exe" -l0x40c -removeonly

publisher: Samsung Electronics Co., Ltd.

comments: Samsung PC Studio 3 Maintenance

contact: Samsung Electronics Co., Ltd.

help link: http://www.samsungmobile.co.kr

help telephone: +82 2051 4151

HP User Guide 42 1.00.0004 ({EED81D76-80ED-443D-90B3-FC5E838D2F5F})

version: 16777220

version (major): 1

estimated size: 198684

install date: 20070330

install location: C:\Program Files\Hewlett-Packard\Documentation\

install source: C:\Users\ADMINI~1\AppData\Local\Temp\_isA035\

uninstall cmd: MsiExec.exe /I{EED81D76-80ED-443D-90B3-FC5E838D2F5F}

publisher: Nom de votre société

Microsoft SQL Server 2005 Compact Edition [ENU] 3.1.0000 ({F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8})

version: 50397184

version (major): 3

version (minor): 1

estimated size: 1783

install date: 20071111

install location: C:\Program Files\Microsoft SQL Server Compact Edition\

install source: C:\Windows\SoftwareDistribution\Download\c7521dc9f7251d48337eb3bfee9e2b2a\img\

uninstall cmd: MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}

publisher: Microsoft Corporation

help link: http://www.microsoft.com/sql/everywhere

Windows Live Messenger 8.1.0178.00 ({F6326B60-1B1D-4ABF-BFCD-7B7404F44411})

version: 134283442

version (major): 8

version (minor): 1

estimated size: 29620

install date: 20080112

install source: C:\Users\PATRIC~1\AppData\Local\Temp\IXP000.TMP\

uninstall cmd: MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}

publisher: Microsoft Corporation

HP Easy Setup - Core 1.00.0000 ({F94234DB-FD06-42C3-B88D-6FC4DC9F988C})

version: 16777216

install date: 20070330

install location: C:\Program Files\Hewlett-Packard\HP Easy Setup - Core

install source: c:\HP\tmp\src\

uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F94234DB-FD06-42C3-B88D-6FC4DC9F988C}\setup.exe" -l0x9

publisher: Hewlett-Packard

ASL_HS_Installer32 1.0.9 ({FAB0C302-CB18-4A7A-BA03-C3DC23101A68})

version: 16777225

version (major): 1

estimated size: 396

install date: 20070330

install location: C:\Users\ADMINI~1\AppData\Local\Temp\

install source: C:\Users\ADMINI~1\AppData\Local\Temp\

uninstall cmd: MsiExec.exe /I{FAB0C302-CB18-4A7A-BA03-C3DC23101A68}

publisher: Hewlett-Packard

--- System Services ---

Service (registry key): .NET CLR Data

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): .NET CLR Networking

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): .NET Data Provider for Oracle

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): .NET Data Provider for SqlServer

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): .NETFramework

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): a2free

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: a-squared Free Service

Description: Scans the PC for unwanted software and provides protection from malicious code

Object name: LocalSystem

Image path: "C:\Program Files\a-squared Free\a2service.exe"

Image size: 380536

Image MD5: 4E3A07545479F3964D49AA310E8505E5

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Service (registry key): aawservice

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Ad-Aware 2007 Service

Description: Protects your computer from spyware

Object name: LocalSystem

Image path: "C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe"

Image size: 587096

Image MD5: 0629361FAC4576BA48AB39F4903DCE9E

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 0

Depends On services: RpcSS

Service (registry key): ACDaemon

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ArcSoft Connect Daemon

Object name: LocalSystem

Image path: C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

Image size: 51712

Image MD5: 419C06524DC5A79BAAD9A67339C1C65C

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 0

Service (registry key): ACPI

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote ACPI Microsoft

Image path: system32\drivers\acpi.sys

Image size: 266808

Image MD5: FCB8C7210F0135E24C6580F7F649C73C

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): AddFiltr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AddFiltr

Object name: LocalSystem

Image path: "C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe"

Image size: 126976

Image MD5: E6D2486EC85A36B8336ED456D0317D96

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

Service (registry key): adp94xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adp94xx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): adpahci

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adpahci.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): adpu160m

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adpu160m.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): adpu320

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adpu320.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): adsi

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): AeLookupSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\aelupsvc.dll,-1

Description: @%SystemRoot%\system32\aelupsvc.dll,-2

Object name: localSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): Afc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PPdus ASPI Shell

Image path: system32\drivers\Afc.sys

Image size: 11776

Image MD5: A7B8A3A79D35215D798A300DF49ED23F

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): AFD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Ancilliary Function Driver for Winsock

Description: Ancilliary Function Driver for Winsock

Image path: \SystemRoot\system32\drivers\afd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): agp440

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Intel AGP Bus Filter

Image path: \SystemRoot\system32\drivers\agp440.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): aic78xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\djsvs.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): ALG

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\Alg.exe,-112

Description: @%SystemRoot%\system32\Alg.exe,-113

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\alg.exe

Image size: 59392

Image MD5: A1545B731579895D8CC44FC0481C1192

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Service (registry key): aliide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\aliide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

Service (registry key): amdagp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AMD AGP Bus Filter Driver

Image path: \SystemRoot\system32\drivers\amdagp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): amdide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\amdide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

Service (registry key): AmdK7

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AMD K7 Processor Driver

Image path: \SystemRoot\system32\drivers\amdk7.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): AmdK8

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de processeur AMD K8

Image path: system32\DRIVERS\amdk8.sys

Image size: 44032

Image MD5: 93AE7F7DD54AB986A6F1A1B37BE7442D

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): AntiVirScheduler

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Avira AntiVir Personal - Free Antivirus Scheduler

Description: Service to schedule Avira AntiVir Personal - Free Antivirus jobs and updates.

Object name: LocalSystem

Image path: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe"

Image size: 68865

Image MD5: 9773E0650E0BAB7AE161D2A0ECC7678A

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Service (registry key): AntiVirService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Avira AntiVir Personal - Free Antivirus Guard

Description: Offers permanent protection against viruses and malware with the AntiVir search engine.

Object name: LocalSystem

Image path: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe"

Image size: 149761

Image MD5: C17761C7381E028EBCA071944A97EB3E

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Service (registry key): Appinfo

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\appinfo.dll,-100

Description: @%systemroot%\system32\appinfo.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,ProfSvc

Service (registry key): arc

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\arc.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): arcsas

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\arcsas.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): aswMonFlt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: aswMonFlt

Description: avast! mini-filter driver (aswMonFlt)

Image path: system32\DRIVERS\aswMonFlt.sys

Image size: 51280

Image MD5: 5C3C0DA947798C99D8C094BF3DCC03A8

Control Set: CurrentControlSet

Start: 2

Type: 2

Error Control: 1

Depends On services: FltMgr

Service (registry key): AsyncMac

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de média asynchrone RAS

Description: Pilote de média asynchrone RAS

Image path: system32\DRIVERS\asyncmac.sys

Image size: 17408

Image MD5: 53B202ABEE6455406254444303E87BE1

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): atapi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Canal IDE

Image path: system32\drivers\atapi.sys

Image size: 21560

Image MD5: 2D9C903DC76A66813D350A562DE40ED9

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): athrusb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Atheros Wireless LAN USB device driver

Image path: system32\DRIVERS\athrusb.sys

Image size: 449536

Image MD5: 59DB74EF3B328852A736578DFF3FCAD6

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): AudioEndpointBuilder

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\audiosrv.dll,-204

Description: @%SystemRoot%\System32\audiosrv.dll,-205

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: PlugPlay

Service (registry key): Audiosrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\audiosrv.dll,-200

Description: @%SystemRoot%\System32\audiosrv.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: AudioEndpointBuilder,RpcSs,MMCSS

Service (registry key): AVG Anti-Spyware Driver

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AVG Anti-Spyware Driver

Image path: \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): AVG Anti-Spyware Guard

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AVG Anti-Spyware Guard

Object name: LocalSystem

Image path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

Image size: 312880

Image MD5: 5DCD235C061022BCDA9AA48670B64211

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Service (registry key): AvgAsCln

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AVG Anti-Spyware Clean Driver

Image path: System32\DRIVERS\AvgAsCln.sys

Image size: 10872

Image MD5: 856B0CEE009946BF2D327E6B24FE7E3F

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): avgio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avgio

Image path: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: FltMgr

Service (registry key): avgntflt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avgntflt

Description: Avira AntiVir Personal - Free Antivirus mini-filter used for on-access scan to provide real-time antivirus security.

Image path: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: FltMgr

Service (registry key): avipbb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avipbb

Description: Avira's Driver for RootKit Detection

Image path: system32\DRIVERS\avipbb.sys

Image size: 75072

Image MD5: C132C2F16A99C0EAD91C600BB81A31F0

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): BattC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): BCM43XV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de la carte réseau extensible Broadcom 802.11

Image path: system32\DRIVERS\bcmwl6.sys

Image size: 534016

Image MD5: 746F59822A5187510471FC46889B8CC9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): BCM43XX

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote pour carte réseau Broadcom 802.11

Image path: system32\DRIVERS\bcmwl6.sys

Image size: 534016

Image MD5: 746F59822A5187510471FC46889B8CC9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Beep

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Beep

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): BFE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\bfe.dll,-1001

Description: @%SystemRoot%\system32\bfe.dll,-1002

Object name: NT AUTHORITY\LocalService

Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): BITS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\qmgr.dll,-1000

Description: @%SystemRoot%\system32\qmgr.dll,-1001

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,EventSystem

Service (registry key): blbdrive

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\blbdrive.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): bowser

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Bowser

Description: Implements the datagram receiver for the computer browser browser service.

Image path: system32\DRIVERS\bowser.sys

Image size: 69632

Image MD5: 74B442B2BE1260B7588C136177CEAC66

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Service (registry key): BrFiltLo

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother USB Mass-Storage Lower Filter Driver

Image path: \SystemRoot\system32\drivers\brfiltlo.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): BrFiltUp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother USB Mass-Storage Upper Filter Driver

Image path: \SystemRoot\system32\drivers\brfiltup.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Browser

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\browser.dll,-100

Description: @%systemroot%\system32\browser.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: LanmanWorkstation,LanmanServer

Service (registry key): Brserid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother MFC Serial Port Interface Driver (WDM)

Image path: \SystemRoot\system32\drivers\brserid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): BrSerWdm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother WDM Serial driver

Image path: \SystemRoot\system32\drivers\brserwdm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): BrUsbMdm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother MFC USB Fax Only Modem

Image path: \SystemRoot\system32\drivers\brusbmdm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): BrUsbSer

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother MFC USB Serial WDM Driver

Image path: \SystemRoot\system32\drivers\brusbser.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): BTHMODEM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Bluetooth Serial Communications Driver

Image path: \SystemRoot\system32\drivers\bthmodem.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): BTHPORT

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): BthServ

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\bthserv.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k bthsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: rpcss

Service (registry key): cdfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: CD/DVD File System Reader

Description: ISO9660/Joliet File System Reader for CD/DVDs. (Core) (All pieces)

Image path: system32\DRIVERS\cdfs.sys

Image size: 70144

Image MD5: 7ADD03E75BEB9E6DD102C3081D29840A

Control Set: CurrentControlSet

Start: 4

Type: 2

Error Control: 1

Depends On group: "SCSI CDROM Class"

Service (registry key): cdrom

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de CD-ROM

Image path: system32\DRIVERS\cdrom.sys

Image size: 67072

Image MD5: 1EC25CEA0DE6AC4718BF89F9E1778B57

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): CertPropSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\certprop.dll,-11

Description: @%SystemRoot%\System32\certprop.dll,-12

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): circlass

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Consumer IR Devices

Image path: \SystemRoot\system32\drivers\circlass.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): CLCapSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: CyberLink Background Capture Service (CBCS)

Description: Provides background buffering, recording and burning functionality for CyberLink Capturing

Object name: LocalSystem

Image path: "C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe"

Image size: 270431

Image MD5: 9EE919B88977505BC3AFD499AC2DD59B

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

Depends On services: RPCSS

Service (registry key): CLFS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Common Log (CLFS)

Description: Common Log (CLFS)

Image path: System32\CLFS.sys

Image size: 247352

Image MD5: 465745561C832B29F7C48B488AAB3842

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): clr_optimization_v2.0.50727_32

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft .NET Framework NGEN v2.0.50727_X86

Description: Microsoft .NET Framework NGEN

Object name: LocalSystem

Image path: %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

Image size: 70144

Image MD5: A4AF4201BD519971F8F34724F3CA9DBB

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

Service (registry key): CLSched

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: CyberLink Task Scheduler (CTS)

Description: Enables a user to configure and schedule a automated task for CyberLink Scheduling

Object name: LocalSystem

Image path: "C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe"

Image size: 118877

Image MD5: 0185BC0BEBAD66241C2B31E88D6F1F1F

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

Depends On services: RPCSS,CLCapSvc

Service (registry key): CmBatt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote pour Batterie à méthode de contrôle ACPI Microsoft

Image path: system32\DRIVERS\CmBatt.sys

Image size: 14208

Image MD5: 99AFC3795B58CC478FBBBCDC658FCB56

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): cmdide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\cmdide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

Service (registry key): CnxtHdAudService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Conexant UAA Function Driver for High Definition Audio Service

Image path: system32\drivers\CHDRT32.sys

Image size: 182272

Image MD5: A4D44AB8423791DB757B38150EC599A4

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Compbatt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de batterie composite Microsoft

Image path: system32\DRIVERS\compbatt.sys

Image size: 20792

Image MD5: 6AFEF0B60FA25DE07C0968983EE4F60A

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): COMSysApp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-947

Description: @comres.dll,-948

Object name: LocalSystem

Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}

Image size: 7168

Image MD5: BE01E566D1F569AAB32D0335613E1EEA

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RpcSs,EventSystem,SENS

Service (registry key): crcdisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Crcdisk Filter Driver

Image path: system32\drivers\crcdisk.sys

Image size: 22632

Image MD5: 2A213AE086BBEC5E937553C7D9A2B22C

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

Service (registry key): Crusoe

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Transmeta Crusoe Processor Driver

Image path: \SystemRoot\system32\drivers\crusoe.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): crypt32

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): CryptSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001

Description: @%SystemRoot%\system32\cryptsvc.dll,-1002

Object name: NT Authority\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): DCLocator

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): DcomLaunch

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @oleres.dll,-5012

Description: @oleres.dll,-5013

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): DfsC

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\drivers\dfsc.sys,-101

Description: @%systemroot%\system32\drivers\dfsc.sys,-102

Image path: System32\Drivers\dfsc.sys

Image size: 75264

Image MD5: 9E635AE5E8AD93E2B5989E2E23679F97

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

Depends On services: Mup

Service (registry key): DFSR

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @dfsrres.dll,-101

Description: @dfsrres.dll,-102

Object name: LocalSystem

Image path: %SystemRoot%\system32\DFSR.exe

Image size: 2091520

Image MD5: FA3463F25F9CC9C3BCF1E7912FEFF099

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RpcSs,EventSystem

Service (registry key): Dhcp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\dhcpcsvc.dll,-100

Description: @%SystemRoot%\system32\dhcpcsvc.dll,-101

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: NSI,Tdx,Afd

Service (registry key): disk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de disque

Image path: system32\drivers\disk.sys

Image size: 55352

Image MD5: 64109E623ABD6955C8FB110B592E68B7

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

Service (registry key): Dnscache

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\dnsapi.dll,-101

Description: @%SystemRoot%\System32\dnsapi.dll,-102

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Tdx

Service (registry key): dot3svc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\dot3svc.dll,-1102

Description: @%systemroot%\system32\dot3svc.dll,-1103

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,Ndisuio,Eaphost

Service (registry key): DPS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\dps.dll,-500

Description: @%systemroot%\system32\dps.dll,-501

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): drmkaud

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Filtre de décodeur DRM (Noyau Microsoft)

Image path: system32\drivers\drmkaud.sys

Image size: 5632

Image MD5: 97FEF831AB90BEE128C9AF390E243F80

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): DXGKrnl

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: LDDM Graphics Subsystem

Description: Controls the underlying video driver stacks to provide fully-featured display capabilities.

Image path: \SystemRoot\System32\drivers\dxgkrnl.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): E100B

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de carte Intel ® PRO

Image path: system32\DRIVERS\e100b325.sys

Image size: 163328

Image MD5: C0B00E55CF82D122D25983C7A6A53DEA

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): E1G60

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Intel® PRO/1000 NDIS 6 Adapter Driver

Image path: system32\DRIVERS\E1G60I32.sys

Image size: 117760

Image MD5: F88FB26547FD2CE6D0A5AF2985892C48

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): eabfiltr

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\eabfiltr.sys

Image size: 8192

Image MD5: A6476585B4FEFEE46A9F42E4D2BFDFA4

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

Service (registry key): eabusb

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): EapHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\eapsvc.dll,-1

Description: @%systemroot%\system32\eapsvc.dll,-2

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS,KeyIso

Service (registry key): Ecache

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ReadyBoost Caching Driver

Description: ReadyBoost Caching Driver

Image path: System32\drivers\ecache.sys

Image size: 143416

Image MD5: DD2CD259D83D8B72C02C5F2331FF9D68

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): ehRecvr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehrecvr.exe,-101

Description: @%SystemRoot%\ehome\ehrecvr.exe,-102

Object name: NT AUTHORITY\networkService

Image path: %systemroot%\ehome\ehRecvr.exe

Image size: 292352

Image MD5: 9BE3744D295A7701EB425332014F0797

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

Depends On services: RPCSS

Service (registry key): ehSched

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehsched.exe,-101

Description: @%SystemRoot%\ehome\ehsched.exe,-102

Object name: NT AUTHORITY\networkService

Image path: %systemroot%\ehome\ehsched.exe

Image size: 131072

Image MD5: AD1870C8E5D6DD340C829E6074BF3C3F

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

Depends On services: RPCSS

Service (registry key): ehstart

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehstart.dll,-101

Description: @%SystemRoot%\ehome\ehstart.dll,-102

Object name: NT AUTHORITY\LocalService

Image path: %windir%\system32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: RPCSS

Service (registry key): elxstor

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\elxstor.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): EmdCache

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): EMDMgmt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\emdmgmt.dll,-1000

Description: @%SystemRoot%\system32\emdmgmt.dll,-1001

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: rpcss,ecache,slsvc,fileinfo

Service (registry key): EraserUtilRebootDrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: EraserUtilRebootDrv

Image path: \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): ESENT

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): Eventlog

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wevtsvc.dll,-200

Description: @%SystemRoot%\system32\wevtsvc.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): EventSystem

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-2450

Description: @comres.dll,-2451

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: rpcss

Service (registry key): exfat

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: exFAT File System Driver

Description: exFAT File System Driver

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Service (registry key): fastfat

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: FAT12/16/32 File System Driver

Description: Note - dependance on CDROM.SYS only if required to read/write DVD-RAM media (which appears as CD class device). (Core) (All pieces)

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Service (registry key): fdc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Floppy Disk Controller Driver

Image path: system32\DRIVERS\fdc.sys

Image size: 25088

Image MD5: 63BDADA84951B9C03E641800E176898A

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): fdPHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\fdPHost.dll,-100

Description: @%systemroot%\system32\fdPHost.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,http

Service (registry key): FDResPub

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\fdrespub.dll,-100

Description: @%systemroot%\system32\fdrespub.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,http

Service (registry key): FileInfo

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: File Information FS MiniFilter

Description: Collects information about files in memory to be consumed by other system services.

Image path: system32\drivers\fileinfo.sys

Image size: 58936

Image MD5: A8C0139A884861E3AAE9CFE73B208A9F

Control Set: CurrentControlSet

Start: 0

Type: 2

Error Control: 1

Depends On services: fltmgr

Service (registry key): Filetrace

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: FileTrace

Description: ETW File Trace Filter

Image path: system32\drivers\filetrace.sys

Image size: 27648

Image MD5: 0AE429A696AECBC5970E3CF2C62635AE

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: FltMgr

Service (registry key): flpydisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Floppy Disk Driver

Image path: system32\DRIVERS\flpydisk.sys

Image size: 20480

Image MD5: 6603957EFF5EC62D25075EA8AC27DE68

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): FltMgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: FltMgr

Description: File System Filter Manager Driver

Image path: system32\drivers\fltmgr.sys

Image size: 192056

Image MD5: 05EA53AFE985443011E36DAB07343B46

Control Set: CurrentControlSet

Start: 0

Type: 2

Error Control: 3

Service (registry key): FontCache3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309

Description: @%SystemRoot%\system32\PresentationHost.exe,-3310

Object name: NT Authority\LocalService

Image path: %systemroot%\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

Image size: 36864

Image MD5: 993883524AA9CF1C90E1545411A9AC9C

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Service (registry key): Fs_Rec

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 8

Error Control: 0

Service (registry key): gagp30kx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms

Image path: \SystemRoot\system32\drivers\gagp30kx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): gpsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @gpapi.dll,-112

Description: @gpapi.dll,-113

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,Mup

Service (registry key): gusvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Google Updater Service

Object name: LocalSystem

Image path: "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"

Image size: 138168

Image MD5: 751C1D2CA2ABF4A9F5A6B8D7D45B907C

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

Depends On services: RPCSS

Service (registry key): HBtnKey

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\cpqbttn.sys

Image size: 9472

Image MD5: DE15777902A5D9121857D155873A1D1B

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): HdAudAddService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft UAA Function Driver for High Definition Audio Service

Image path: system32\drivers\CHDART.sys

Image size: 159232

Image MD5: 07EEE11D6E2B78122E17DB3878B4C687

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): HDAudBus

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de bus UAA Microsoft pour High Definition Audio

Image path: system32\DRIVERS\HDAudBus.sys

Image size: 53760

Image MD5: C87B1EE051C0464491C1A7B03FA0BC99

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): HidBth

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Bluetooth HID Miniport

Image path: \SystemRoot\system32\drivers\hidbth.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

Service (registry key): HidIr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Infrared HID Driver

Image path: \SystemRoot\system32\drivers\hidir.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

Service (registry key): hidserv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\hidserv.dll,-101

Description: @%SystemRoot%\System32\hidserv.dll,-102

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): HidUsb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de classe HID Microsoft

Image path: system32\DRIVERS\hidusb.sys

Image size: 12288

Image MD5: 854CA287AB7FAF949617A788306D967E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): hkmsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\kmsvc.dll,-6

Description: @%SystemRoot%\system32\kmsvc.dll,-7

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): HP Health Check Service

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: HP Health Check Service

Description: HP Health Check Service

Object name: LocalSystem

Image path: "C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe"

Image size: 58984

Image MD5: D6B25A2A39547DD835E730BEF97FC1E0

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Service (registry key): HpCISSs

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\hpcisss.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): hpqwmiex

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: hpqwmiex

Object name: LocalSystem

Image path: C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe

Image size: 135168

Image MD5: 04C1DCBB226C6AE647B794833CE3CEB6

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RPCSS,WinMgmt

Service (registry key): HSFHWAZL

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\VSTAZL3.SYS

Image size: 200704

Image MD5: 46D67209550973257601A533E2AC5785

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): HSF_DPV

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\HSX_DPV.sys

Image size: 984064

Image MD5: 1882827F41DEE51C70E24C567C35BFB5

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): HSXHWAZL

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\HSXHWAZL.sys

Image size: 208896

Image MD5: A44DDF3BA83E4664BF4DE9220097578C

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): HTTP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: HTTP

Description: This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start.

Image path: system32\drivers\HTTP.sys

Image size: 401408

Image MD5: 406C027C18E98A396FAA1963DAD5FF70

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): i2omp

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\i2omp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): i8042prt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote pour clavier i8042 et souris sur port PS/2

Image path: system32\DRIVERS\i8042prt.sys

Image size: 54784

Image MD5: 22D56C8184586B7A1F6FA60BE5F5A2BD

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): ialm

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\igdkmd32.sys

Image size: 1380864

Image MD5: 496DB78E6A0C4C44023D9A92B4A7AC31

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): iaStorV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Intel RAID Controller Vista

Image path: \SystemRoot\system32\drivers\iastorv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): ICSharing

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): idsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193

Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8192

Object name: LocalSystem

Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"

Image size: 864256

Image MD5: E7CC3AEAED9893A88876744CD439F76C

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): iirsp

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\iirsp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): IKEEXT

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\ikeext.dll,-501

Description: @%SystemRoot%\system32\ikeext.dll,-502

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: BFE

Service (registry key): inetaccs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): intelide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\intelide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

Service (registry key): intelppm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de processeur Intel

Image path: system32\DRIVERS\intelppm.sys

Image size: 39424

Image MD5: CE44CC04262F28216DD4341E9E36A16F

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): IPBusEnum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\IPBusEnum.dll,-102

Description: @%systemroot%\system32\IPBusEnum.dll,-103

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,fdPHost

Service (registry key): IpFilterDriver

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32013

Description: @%systemroot%\system32\rascfg.dll,-32013

Image path: system32\DRIVERS\ipfltdrv.sys

Image size: 47616

Image MD5: 62C265C38769B864CB25B4BCF62DF6C3

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

Service (registry key): iphlpsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\iphlpsvc.dll,-200

Description: @%SystemRoot%\system32\iphlpsvc.dll,-201

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi

Service (registry key): IpInIp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IP in IP Tunnel Driver

Description: IP in IP Tunnel Driver

Image path: system32\DRIVERS\ipinip.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

Service (registry key): IPMIDRV

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\ipmidrv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): IPNAT

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IP Network Address Translator

Description: IP Network Address Translator

Image path: system32\DRIVERS\ipnat.sys

Image size: 100864

Image MD5: 8793643A67B42CEC66490B2A0CF92D68

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

Service (registry key): IRENUM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IR Bus Enumerator

Description: IR Bus Enumerator

Image path: system32\drivers\irenum.sys

Image size: 13312

Image MD5: 109C0DFB82C3632FBD11949B73AEEAC9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): isapnp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PnP ISA/EISA Bus Driver

Image path: \SystemRoot\system32\drivers\isapnp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

Service (registry key): iScsiPrt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote iScsiPort

Image path: system32\DRIVERS\msiscsi.sys

Image size: 181304

Image MD5: F247EEC28317F6C739C16DE420097301

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): iteatapi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ITEATAPI_Service_Install

Image path: \SystemRoot\system32\drivers\iteatapi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): iteraid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ITERAID_Service_Install

Image path: \SystemRoot\system32\drivers\iteraid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): kbdclass

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de la classe Clavier

Image path: system32\DRIVERS\kbdclass.sys

Image size: 35384

Image MD5: 37605E0A8CF00CBBA538E753E4344C6E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): kbdhid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote HID de clavier

Image path: system32\DRIVERS\kbdhid.sys

Image size: 15872

Image MD5: 18247836959BA67E3511B62846B9C2E0

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

Service (registry key): KeyIso

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @keyiso.dll,-100

Description: @keyiso.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): KSecDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\Drivers\ksecdd.sys

Image size: 441400

Image MD5: 5367DC846CAE9639B899BFD13B97A8C9

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): KtmRm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-2946

Description: @comres.dll,-2947

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,SamSS

Service (registry key): LanmanServer

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\srvsvc.dll,-100

Description: @%systemroot%\system32\srvsvc.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: SamSS,Srv

Service (registry key): LanmanWorkstation

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wkssvc.dll,-100

Description: @%systemroot%\system32\wkssvc.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Bowser,MRxSmb10,MRxSmb20,NSI

Service (registry key): ldap

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): LightScribeService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: LightScribeService Direct Disc Labeling Service

Description: Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work.

Object name: LocalSystem

Image path: "C:\Program Files\Common Files\LightScribe\LSSrvc.exe"

Image size: 61440

Image MD5: 6E5DAC168D1FF9843E84A59D51D31107

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 0

Service (registry key): lltdio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote d’E/S du mappage de découverte de topologie de la couche de liaison

Image path: system32\DRIVERS\lltdio.sys

Image size: 47104

Image MD5: D1C5883087A0C3F1344D9D55A44901F6

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Service (registry key): lltdsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\lltdres.dll,-1

Description: @%SystemRoot%\system32\lltdres.dll,-2

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: rpcss,lltdio

Service (registry key): lmhosts

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\lmhsvc.dll,-101

Description: @%SystemRoot%\system32\lmhsvc.dll,-102

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: NetBT,Afd

Service (registry key): Lsa

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): LSI_FC

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\lsi_fc.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): LSI_SAS

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\lsi_sas.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): LSI_SCSI

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\lsi_scsi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): luafv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: UAC File Virtualization

Description: Virtualizes file write failures to per-user locations.

Image path: \SystemRoot\system32\drivers\luafv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 2

Type: 2

Error Control: 1

Depends On services: FltMgr

Service (registry key): MBAMSwissArmy

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: MBAMSwissArmy

Image path: \??\C:\Windows\system32\drivers\mbamswissarmy.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Mcx2Svc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehres.dll,-15501

Description: @%SystemRoot%\ehome\ehres.dll,-15502

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 4

Type: 32

Error Control: 1

Depends On services: SSDPSRV,IPBusEnum,TermService,fdphost

Service (registry key): MDM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Machine Debug Manager

Description: Prend en charge le débogage local et distant pour les débogueurs Visual Studio et de script. Si ce service est arrêté, les débogueurs ne fonctionneront pas correctement.

Object name: LocalSystem

Image path: "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"

Image size: 322120

Image MD5: 11F714F85530A2BD134074DC30E99FCA

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

Depends On services: RPCSS

Service (registry key): mdmxsdk

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\mdmxsdk.sys

Image size: 12672

Image MD5: 0CEA2D0D3FA284B85ED5B68365114F76

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 0

Service (registry key): megasas

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\megasas.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): MMCSS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\mmcss.dll,-100

Description: @%systemroot%\system32\mmcss.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): Modem

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\drivers\modem.sys

Image size: 31744

Image MD5: E13B5EA0F51BA5B1512EC671393D09BA

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): monitor

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Service Pilote de fonction de classe Moniteur Microsoft

Image path: system32\DRIVERS\monitor.sys

Image size: 41984

Image MD5: 0A9BB33B56E294F686ABB7C1E4E2D8A8

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): mouclass

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de la classe Souris

Image path: system32\DRIVERS\mouclass.sys

Image size: 34360

Image MD5: 5BF6A1326A335C5298477754A506D263

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): mouhid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote HID de souris

Image path: system32\DRIVERS\mouhid.sys

Image size: 15872

Image MD5: 93B8D4869E12CFBE663915502900876F

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): MountMgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Mount Point Manager

Description: Driver responsible with maintaining persistent drive letters and names for volumes

Image path: System32\drivers\mountmgr.sys

Image size: 57400

Image MD5: BDAFC88AA6B92F7842416EA6A48E1600

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): mpio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Multi-Path Bus Driver

Image path: \SystemRoot\system32\drivers\mpio.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): mpsdrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23092

Description: @%SystemRoot%\system32\FirewallAPI.dll,-23093

Image path: System32\drivers\mpsdrv.sys

Image size: 64000

Image MD5: 22241FEBA9B2DEFA669C8CB0A8DD7D2E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): MpsSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090

Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: mpsdrv,bfe

Service (registry key): Mraid35x

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\mraid35x.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): MRxDAV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: WebDav Client Redirector Driver

Description: WebDav Client Redirector Driver

Image path: \SystemRoot\system32\drivers\mrxdav.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: rdbss

Service (registry key): mrxsmb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SMB MiniRedirector Wrapper and Engine

Description: Implements the framework for the SMB filesystem redirector

Image path: system32\DRIVERS\mrxsmb.sys

Image size: 105472

Image MD5: C4AD205530888404E2B5FC8D9319B119

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: rdbss

Service (registry key): mrxsmb10

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SMB 1.x MiniRedirector

Description: Implements the SMB 1.x (CIFS) protocol. This protocol provides connectivity to network resources on pre-Windows Vista servers

Image path: system32\DRIVERS\mrxsmb10.sys

Image size: 211968

Image MD5: 67E55CED3FC143C82A8197988BFC1F9A

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: mrxsmb

Service (registry key): mrxsmb20

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SMB 2.0 MiniRedirector

Description: Implements the SMB 2.0 protocol, which provides connectivity to network resources on Windows Vista and later servers

Image path: system32\DRIVERS\mrxsmb20.sys

Image size: 78848

Image MD5: 3268B8C3FA92BFC086355C39B45E9CC9

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: mrxsmb

Service (registry key): msahci

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\msahci.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

Service (registry key): msdsm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Multi-Path Device Specific Module

Image path: \SystemRoot\system32\drivers\msdsm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): MSDTC

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-2797

Description: @comres.dll,-2798

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\msdtc.exe

Image size: 105984

Image MD5: FD7520CC3A80C5FC8C48852BB24C6DED

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS,SamSS

Service (registry key): MSDTC Bridge 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): Msfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

Service (registry key): msisadrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de classe ISA/EISA

Image path: system32\drivers\msisadrv.sys

Image size: 16440

Image MD5: 0F400E306F385C56317357D6DEA56F62

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): MSiSCSI

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000

Description: @%SystemRoot%\system32\iscsidsc.dll,-5001

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): msiserver

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\msimsg.dll,-27

Description: @%SystemRoot%\system32\msimsg.dll,-32

Object name: LocalSystem

Image path: %systemroot%\system32\msiexec /V

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: rpcss

Service (registry key): MSKSSRV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Proxy de service de répartition Microsoft

Image path: system32\drivers\MSKSSRV.sys

Image size: 8192

Image MD5: D8C63D34D9C9E56C059E24EC7185CC07

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): MSPCLOCK

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Proxy d'horloge de répartition Microsoft

Image path: system32\drivers\MSPCLOCK.sys

Image size: 5888

Image MD5: 1D373C90D62DDB641D50E55B9E78D65E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): MSPQM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Proxy de gestion de qualité de répartition Microsoft

Image path: system32\drivers\MSPQM.sys

Image size: 5504

Image MD5: B572DA05BF4E098D4BBA3A4734FB505B

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): MsRPC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): MSSCNTRS

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): mssmbios

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote BIOS de gestion de systèmes Microsoft

Image path: system32\DRIVERS\mssmbios.sys

Image size: 31288

Image MD5: E384487CB84BE41D09711C30CA79646C

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): MSTEE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Convertisseur en T/site-à-site de répartition Microsoft

Image path: system32\drivers\MSTEE.sys

Image size: 6016

Image MD5: 7199C1EEC1E4993CAF96B8C0A26BD58A

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Mup

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Mup

Description: Multiple UNC Provider

Image path: System32\Drivers\mup.sys

Image size: 49720

Image MD5: 6DFD1D322DE55B0B7DB7D21B90BEC49C

Control Set: CurrentControlSet

Start: 0

Type: 2

Error Control: 1

Service (registry key): napagent

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\qagentrt.dll,-6

Description: @%SystemRoot%\system32\qagentrt.dll,-7

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): NativeWifiP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Filtre NativeWiFi

Image path: system32\DRIVERS\nwifi.sys

Image size: 148480

Image MD5: DD721F8635191132992E7CEAA3C43C84

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): NDIS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NDIS System Driver

Description: NDIS System Driver

Image path: system32\drivers\ndis.sys

Image size: 529464

Image MD5: 9BDC71790FA08F0A0B5F10462B1BD0B1

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): NdisTapi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32001

Description: @%systemroot%\system32\rascfg.dll,-32001

Image path: system32\DRIVERS\ndistapi.sys

Image size: 20992

Image MD5: 0E186E90404980569FB449BA7519AE61

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Ndisuio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NDIS mode utilisateur E/S Protocole

Image path: system32\DRIVERS\ndisuio.sys

Image size: 16896

Image MD5: D6973AA34C4D5D76C0430B181C3CD389

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): NdisWan

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32002

Description: @%systemroot%\system32\rascfg.dll,-32002

Image path: system32\DRIVERS\ndiswan.sys

Image size: 121344

Image MD5: 3D14C3B3496F88890D431E8AA022A411

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): NDProxy

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): NetBIOS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NetBIOS Interface

Description: NetBIOS Interface

Image path: system32\DRIVERS\netbios.sys

Image size: 35840

Image MD5: BCD093A5A6777CF626434568DC7DBA78

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

Service (registry key): netbt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NETBT

Description: This service implements NetBios over TCP/IP.

Image path: System32\DRIVERS\netbt.sys

Image size: 184320

Image MD5: 7C5FEE5B1C5728507CD96FB4A13E7A02

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: Tdx,tcpip

Service (registry key): Netlogon

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\netlogon.dll,-102

Description: @%SystemRoot%\System32\netlogon.dll,-103

Object name: LocalSystem

Image path: %systemroot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: LanmanWorkstation

Service (registry key): Netman

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\netman.dll,-109

Description: @%SystemRoot%\system32\netman.dll,-110

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,nsi

Service (registry key): netprofm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\netprof.dll,-246

Description: @%SystemRoot%\system32\netprof.dll,-247

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,nlasvc

Service (registry key): NetTcpPortSharing

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201

Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8200

Object name: NT AUTHORITY\LocalService

Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"

Image size: 122880

Image MD5: F9102685F97F9BA85F4A70AFCF722CFE

Control Set: CurrentControlSet

Start: 4

Type: 32

Error Control: 1

Service (registry key): nfrd960

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\nfrd960.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): NlaSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\nlasvc.dll,-1

Description: @%SystemRoot%\System32\nlasvc.dll,-2

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: NSI,RpcSs,TcpIp

Service (registry key): Npfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

Service (registry key): nsi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\nsisvc.dll,-200

Description: @%SystemRoot%\system32\nsisvc.dll,-201

Object name: NT Authority\LocalService

Image path: %systemroot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: nsiproxy

Service (registry key): nsiproxy

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NSI proxy service

Description: NSI proxy service

Image path: system32\drivers\nsiproxy.sys

Image size: 16384

Image MD5: 609773E344A97410CE4EBF74A8914FCF

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): NTDS

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): Ntfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Service (registry key): ntrigdigi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: N-trig HID Tablet Driver

Image path: \SystemRoot\system32\drivers\ntrigdigi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): Null

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): NVENETFD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NVIDIA nForce Networking Controller Driver

Image path: system32\DRIVERS\nvmfdx32.sys

Image size: 1065384

Image MD5: 74C825C573AA6E115590D94E7BF86901

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): nvlddmkm

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\nvlddmkm.sys

Image size: 4465184

Image MD5: 446864078DBE3059587954CB2D858A9B

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): nvraid

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\nvraid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): nvsmu

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\nvsmu.sys

Image size: 11520

Image MD5: ADFDD343B1D3A9E061F17C730F1E83DC

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): nvstor

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\drivers\nvstor.sys

Image size: 35920

Image MD5: 4A5FCAB82D9BF6AF8A023A66802FE9E9

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): nv_agp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NVIDIA nForce AGP Bus Filter

Image path: \SystemRoot\system32\drivers\nv_agp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): NwlnkFlt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IPX Traffic Filter Driver

Description: IPX Traffic Filter Driver

Image path: system32\DRIVERS\nwlnkflt.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: NwlnkFwd

Service (registry key): NwlnkFwd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IPX Traffic Forwarder Driver

Description: IPX Traffic Forwarder Driver

Image path: system32\DRIVERS\nwlnkfwd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): ohci1394

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Contrôleur hôte compatible IEE 1394 RICOH OHCI

Image path: system32\DRIVERS\ohci1394.sys

Image size: 61952

Image MD5: 790E27C3DB53410B40FF9EF2FD10A1D9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): ose

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Office Source Engine

Description: Enregistre les fichiers d'installation utilisés pour les mises à jour et les réparations, et est nécessaire au téléchargement des mises à jour d'installation et des rapports d'erreur Watson.

Object name: LocalSystem

Image path: "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"

Image size: 89136

Image MD5: 7A56CF3E3F12E8AF599963B16F50FB6A

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Service (registry key): Outlook

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): p2pimsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8004

Description: @%SystemRoot%\system32\p2psvc.dll,-8005

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): p2psvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8006

Description: @%SystemRoot%\system32\p2psvc.dll,-8007

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: p2pimsvc,PNRPSvc

Service (registry key): Parport

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Parallel port driver

Image path: \SystemRoot\system32\drivers\parport.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): partmgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Partition Manager

Description: Disk class filter driver that auctions out partitions to volume managers

Image path: System32\drivers\partmgr.sys

Image size: 56376

Image MD5: 3B38467E7C3DAED009DFE359E17F139F

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): Parvdm

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\parvdm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 0

Depends On services: Parport

Depends On group: "Parallel arbitrator"

Service (registry key): PcaSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\pcasvc.dll,-1

Description: @%SystemRoot%\system32\pcasvc.dll,-2

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): pci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de bus PCI

Image path: system32\drivers\pci.sys

Image size: 151096

Image MD5: 01B94418DEB235DFF777CC80076354B4

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): pciide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\drivers\pciide.sys

Image size: 16440

Image MD5: FC175F5DDAB666D7F4D17449A547626F

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): pcmcia

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\pcmcia.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): pcouffin

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: VSO Software pcouffin

Image path: System32\Drivers\pcouffin.sys

Image size: 47360

Image MD5: 5B6C11DE7E839C05248CED8825470FEF

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): PEAUTH

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PEAUTH

Image path: system32\drivers\peauth.sys

Image size: 878080

Image MD5: 6349F6ED9C623B44B52EA3C63C831A92

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Service (registry key): PerfDisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): PerfNet

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): PerfOS

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): PerfProc

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): pla

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\pla.dll,-500

Description: @%systemroot%\system32\pla.dll,-501

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS

Service (registry key): Planificateur LiveUpdate automatique

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Planificateur LiveUpdate automatique

Description: Gère la planification des sessions de LiveUpdate automatique

Object name: LocalSystem

Image path: "C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe"

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RPCSS

Service (registry key): PlugPlay

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\umpnpmgr.dll,-100

Description: @%SystemRoot%\system32\umpnpmgr.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): PNRPAutoReg

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8002

Description: @%SystemRoot%\system32\p2psvc.dll,-8003

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: pnrpsvc

Service (registry key): PNRPsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8000

Description: @%SystemRoot%\system32\p2psvc.dll,-8001

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: p2pimsvc

Service (registry key): PolicyAgent

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\polstore.dll,-5010

Description: @%SystemRoot%\system32\polstore.dll,-5011

Object name: NT Authority\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Tcpip,bfe

Service (registry key): PortProxy

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): PptpMiniport

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Miniport réseau étendu WAN (PPTP)

Description: Miniport réseau étendu WAN (PPTP)

Image path: system32\DRIVERS\raspptp.sys

Image size: 62976

Image MD5: ECFFFAEC0C1ECD8DBC77F39070EA1DB1

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Processor

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Processor Driver

Image path: \SystemRoot\system32\drivers\processr.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): ProfSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\profsvc.dll,-300

Description: @%systemroot%\system32\profsvc.dll,-301

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): ProtectedStorage

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\psbase.dll,-300

Description: @%systemroot%\system32\psbase.dll,-301

Object name: LocalSystem

Image path: %SystemRoot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): PSched

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\drivers\pacer.sys,-101

Description: @%SystemRoot%\System32\drivers\pacer.sys,-101

Image path: system32\DRIVERS\pacer.sys

Image size: 72192

Image MD5: BFEF604508A0ED1EAE2A73E872555FFB

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): PxHelp20

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PxHelp20

Image path: System32\Drivers\PxHelp20.sys

Image size: 20640

Image MD5: 183EF96BCC2EC3D5294CB2C2C0ECBCD1

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

Service (registry key): ql2300

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: QLogic Fibre Channel Miniport Driver

Image path: \SystemRoot\system32\drivers\ql2300.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): ql40xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: QLogic iSCSI Miniport Driver

Image path: \SystemRoot\system32\drivers\ql40xx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): QWAVE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\qwave.dll,-1

Description: @%SystemRoot%\system32\qwave.dll,-2

Object name: NT AUTHORITY\LocalService

Image path: %windir%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: rpcss,psched,QWAVEdrv,LLTDIO

Service (registry key): QWAVEdrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\drivers\qwavedrv.sys,-1

Description: @%SystemRoot%\system32\drivers\qwavedrv.sys,-2

Image path: \SystemRoot\system32\drivers\qwavedrv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): RapiMgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%windir%\WindowsMobile\rapimgr.dll,-104

Description: @%windir%\WindowsMobile\rapimgr.dll,-105

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k WindowsMobile

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS

Service (registry key): RasAcd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Remote Access Auto Connection Driver

Description: Remote Access Auto Connection Driver

Image path: System32\DRIVERS\rasacd.sys

Image size: 11776

Image MD5: 147D7F9C556D259924351FEB0DE606C3

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): RasAuto

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\rasauto.dll,-200

Description: @%Systemroot%\system32\rasauto.dll,-201

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RasMan,Tapisrv

Service (registry key): Rasl2tp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Miniport réseau étendu WAN (L2TP)

Description: Miniport réseau étendu WAN (L2TP)

Image path: system32\DRIVERS\rasl2tp.sys

Image size: 76288

Image MD5: A214ADBAF4CB47DD2728859EF31F26B0

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): RasMan

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\rasmans.dll,-200

Description: @%Systemroot%\system32\rasmans.dll,-201

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: Tapisrv,SstpSvc

Service (registry key): RasPppoe

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32007

Description: @%systemroot%\system32\rascfg.dll,-32007

Image path: system32\DRIVERS\raspppoe.sys

Image size: 41472

Image MD5: 3E9D9B048107B40D87B97DF2E48E0744

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): RasSstp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\sstpsvc.dll,-202

Description: @%systemroot%\system32\sstpsvc.dll,-202

Image path: system32\DRIVERS\rassstp.sys

Image size: 69120

Image MD5: A7D141684E9500AC928A772ED8E6B671

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): rdbss

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Redirected Buffering Sub Sysytem

Description: Provides the framework for network mini-redirectors

Image path: system32\DRIVERS\rdbss.sys

Image size: 224768

Image MD5: 6E1C5D0457622F9EE35F683110E93D14

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

Depends On services: Mup

Service (registry key): RDPCDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: RDPCDD

Description: RDPDD Chained DD

Image path: System32\DRIVERS\RDPCDD.sys

Image size: 6144

Image MD5: 89E59BE9A564262A3FB6C4F4F1CD9899

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

Service (registry key): RDPDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): rdpdr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Terminal Server Device Redirector Driver

Image path: \SystemRoot\system32\drivers\rdpdr.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): RDPENCDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: RDP Encoder Mirror Driver

Description: RDP Encoder Mirror Driver

Image path: system32\drivers\rdpencdd.sys

Image size: 6144

Image MD5: 9D91FE5286F748862ECFFA05F8A0710C

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

Service (registry key): RDPNP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\drprov.dll,-100

Description: @%systemroot%\system32\drprov.dll,-101

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): RDPWD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: RDP Winstation Driver

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): RemoteAccess

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\mprdim.dll,-200

Description: @%Systemroot%\system32\mprdim.dll,-201

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 4

Type: 32

Error Control: 1

Depends On services: RpcSS,RasMan,bfe

Depends On group: NetBIOSGroup

Service (registry key): RemoteRegistry

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @regsvc.dll,-1

Description: @regsvc.dll,-2

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k regsvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS

Service (registry key): rimmptsk

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\rimmptsk.sys

Image size: 32256

Image MD5: D85E3FA9F5B1F29BB4ED185C450D1470

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Service (registry key): rimsptsk

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\rimsptsk.sys

Image size: 43520

Image MD5: DB8EB01C58C9FADA00C70B1775278AE0

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Service (registry key): rismxdp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Ricoh xD-Picture Card Driver

Image path: system32\DRIVERS\rixdptsk.sys

Image size: 37376

Image MD5: 6C1F93C0760C9F79A1869D07233DF39D

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Service (registry key): RoxMediaDB9

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: RoxMediaDB9

Description: Roxio RoxMediaDB9 Service

Object name: LocalSystem

Image path: "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe"

Image size: 887544

Image MD5: AD1411A7EA50F2F97A73A3F51153066E

Control Set: CurrentControlSet

Start: 3

Type: 272

Error Control: 0

Service (registry key): RpcLocator

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\Locator.exe,-2

Description: @%systemroot%\system32\Locator.exe,-3

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\locator.exe

Image size: 7680

Image MD5: 5123F83CBC4349D065534EEB6BBDC42B

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Service (registry key): RpcSs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @oleres.dll,-5010

Description: @oleres.dll,-5011

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k rpcss

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: DcomLaunch

Service (registry key): rspndr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Répondeur de découverte de topologie de la couche de liaison

Image path: system32\DRIVERS\rspndr.sys

Image size: 60416

Image MD5: 9C508F4074A39E8B4B31D27198146FAD

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Service (registry key): SamSs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\samsrv.dll,-1

Description: @%SystemRoot%\system32\samsrv.dll,-2

Object name: LocalSystem

Image path: %SystemRoot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS

Service (registry key): sbp2port

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SBP-2 Transport/Protocol Bus Driver

Image path: \SystemRoot\system32\drivers\sbp2port.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): SBSDWSCService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SBSD Security Center Service

Object name: LocalSystem

Image path: C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe

Image size: 809296

Image MD5: 55C1E4FDFD62A48FB5A2CE25F3AA8AE8

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: wscsvc

Service (registry key): SCardSvr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\SCardSvr.dll,-1

Description: @%SystemRoot%\System32\SCardSvr.dll,-5

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: PlugPlay

Service (registry key): Schedule

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\schedsvc.dll,-100

Description: @%SystemRoot%\system32\schedsvc.dll,-101

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,EventLog

Service (registry key): SCPolicySvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\certprop.dll,-13

Description: @%SystemRoot%\System32\certprop.dll,-14

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): sdbus

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\sdbus.sys

Image size: 88576

Image MD5: 126EA89BCC413EE45E3004FB0764888F

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): SDRSVC

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\sdrsvc.dll,-107

Description: @%SystemRoot%\system32\sdrsvc.dll,-102

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k SDRSVC

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

Service (registry key): secdrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Security Driver

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Service (registry key): seclogon

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\seclogon.dll,-7001

Description: @%SystemRoot%\system32\seclogon.dll,-7000

Object name: LocalSystem

Image path: %windir%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): SENS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\Sens.dll,-200

Description: @%SystemRoot%\system32\Sens.dll,-201

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: EventSystem

Service (registry key): Serenum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Serenum Filter Driver

Image path: \SystemRoot\system32\drivers\serenum.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Serial

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Serial Port Driver

Image path: \SystemRoot\system32\drivers\serial.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): sermouse

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Serial Mouse Driver

Image path: \SystemRoot\system32\drivers\sermouse.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): ServiceModelEndpoint 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): ServiceModelOperation 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): ServiceModelService 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): SessionEnv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\SessEnv.dll,-1026

Description: @%SystemRoot%\System32\SessEnv.dll,-1027

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS,LanmanWorkstation

Service (registry key): sffdisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de classe de stockage SFF

Image path: system32\DRIVERS\sffdisk.sys

Image size: 13312

Image MD5: 3EFA810BDCA87F6ECC24F9832243FE86

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): sffp_mmc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SFF Storage Protocol Driver for MMC

Image path: \SystemRoot\system32\drivers\sffp_mmc.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): sffp_sd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de protocole de stockage SFF pour SDBus

Image path: system32\DRIVERS\sffp_sd.sys

Image size: 11776

Image MD5: 3D0EA348784B7AC9EA9BD9F317980979

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): sfloppy

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: High-Capacity Floppy Disk Drive

Image path: \SystemRoot\system32\drivers\sfloppy.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): SharedAccess

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\ipnathlp.dll,-106

Description: @%SystemRoot%\system32\ipnathlp.dll,-107

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Netman,WinMgmt,RasMan,BFE

Service (registry key): ShellHWDetection

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\shsvcs.dll,-12288

Description: @%SystemRoot%\System32\shsvcs.dll,-12289

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: RpcSs

Service (registry key): sisagp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SIS AGP Bus Filter

Image path: \SystemRoot\system32\drivers\sisagp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): SiSRaid2

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sisraid2.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): SiSRaid4

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sisraid4.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): slsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\SLsvc.exe,-101

Description: @%SystemRoot%\system32\SLsvc.exe,-100

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\SLsvc.exe

Image size: 2623488

Image MD5: 0BA91E1358AD25236863039BB2609A2E

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RpcSs

Service (registry key): SLUINotify

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\SLUINotify.dll,-103

Description: @%SystemRoot%\system32\SLUINotify.dll,-102

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: SLSvc,netprofm,EventSystem

Service (registry key): Smb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50005

Description: @%SystemRoot%\system32\tcpipcfg.dll,-50006

Image path: system32\DRIVERS\smb.sys

Image size: 66560

Image MD5: 031E6BCD53C9B2B9ACE111EAFEC347B6

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: Tcpip

Service (registry key): SMSvcHost 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): SNMPTRAP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\snmptrap.exe,-3

Description: @%SystemRoot%\system32\snmptrap.exe,-4

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\snmptrap.exe

Image size: 12800

Image MD5: 2A146A055B4401C16EE62D18B8E2A032

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Service (registry key): spldr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Security Processor Loader Driver

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): Spooler

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\spoolsv.exe,-1

Description: @%systemroot%\system32\spoolsv.exe,-2

Object name: LocalSystem

Image path: %SystemRoot%\System32\spoolsv.exe

Image size: 125952

Image MD5: 846CDF9A3CF4DA9B306ADFB7D55EE4C2

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

Depends On services: RPCSS,http

Service (registry key): sptd

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\Drivers\sptd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

Service (registry key): srv

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\DRIVERS\srv.sys

Image size: 288256

Image MD5: 3D7C04ABA41AC96BA7E9D123EC8F7FA3

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: srv2

Service (registry key): srv2

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: srv2

Description: Default SDDL for Windows Resource Protected file

Image path: System32\DRIVERS\srv2.sys

Image size: 144384

Image MD5: 805FAC010405AD3F82EF8DF0BB035D81

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: srvnet

Service (registry key): srvnet

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\DRIVERS\srvnet.sys

Image size: 98304

Image MD5: F63A0A58AAFE34D7A1A0A74ABCCDD9C0

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Service (registry key): SSDPSRV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\ssdpsrv.dll,-100

Description: @%systemroot%\system32\ssdpsrv.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: HTTP

Service (registry key): ssmdrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ssmdrv

Description: Avira Snapshot Driver

Image path: system32\DRIVERS\ssmdrv.sys

Image size: 28352

Image MD5: 3D2829FDE1C52FC64DA5413889CE4DEE

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): ssm_bus

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SAMSUNG Mobile USB Device II 1.0 driver (WDM)

Image path: system32\DRIVERS\ssm_bus.sys

Image size: 58320

Image MD5: DF5C19F053EFF7F8BA25D73AEA899656

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): ssm_mdfl

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SAMSUNG Mobile USB Modem II 1.0 Filter

Description: SAMSUNG Mobile USB Modem II 1.0 Filter

Image path: system32\DRIVERS\ssm_mdfl.sys

Image size: 8336

Image MD5: 5347169FA449EABC4D0728AE39FAB926

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): ssm_mdm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SAMSUNG Mobile USB Modem II 1.0 Drivers

Description: SAMSUNG Mobile USB Modem II 1.0 Drivers

Image path: system32\DRIVERS\ssm_mdm.sys

Image size: 94000

Image MD5: 7AAE23DD105EED15C4F45FC269FA42A9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): SstpSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\sstpsvc.dll,-200

Description: @%SystemRoot%\system32\sstpsvc.dll,-201

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): stisvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wiaservc.dll,-9

Description: @%SystemRoot%\system32\wiaservc.dll,-10

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k imgsvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RpcSs,ShellHWDetection

Service (registry key): stllssvr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: stllssvr

Object name: LocalSystem

Image path: "C:\Program Files\Common Files\SureThing Shared\stllssvr.exe"

Image size: 73728

Image MD5: B254B1434208F280EDF3785613DCC41B

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

Service (registry key): swenum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de bus logiciel

Image path: system32\DRIVERS\swenum.sys

Image size: 15288

Image MD5: 7BA58ECF0C0A9A69D44B3DCA62BECF56

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): swprv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\swprv.dll,-103

Description: @%SystemRoot%\System32\swprv.dll,-102

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k swprv

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

Service (registry key): Symc8xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\symc8xx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): Sym_hi

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sym_hi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): Sym_u3

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sym_u3.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): SynTP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Synaptics TouchPad Driver

Image path: system32\DRIVERS\SynTP.sys

Image size: 196784

Image MD5: BF7AA84D5AF0FAA0978C840E63B17DBF

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): SysMain

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\sysmain.dll,-1000

Description: @%SystemRoot%\system32\sysmain.dll,-1001

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: rpcss,fileinfo

Service (registry key): TabletInputService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\TabSvc.dll,-100

Description: @%SystemRoot%\system32\TabSvc.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: PlugPlay,RpcSs

Service (registry key): TapiSrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tapisrv.dll,-10100

Description: @%SystemRoot%\system32\tapisrv.dll,-10101

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: PlugPlay,RpcSs

Service (registry key): TBS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tbssvc.dll,-100

Description: @%SystemRoot%\system32\tbssvc.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): Tcpip

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50003

Description: @%SystemRoot%\system32\tcpipcfg.dll,-50003

Image path: System32\drivers\tcpip.sys

Image size: 891448

Image MD5: 82E266BEE5F0167E41C6ECFDD2A79C02

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

Service (registry key): Tcpip6

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de protocole IPv6 Microsoft

Description: Pilote de protocole IPv6 Microsoft

Image path: system32\DRIVERS\tcpip.sys

Image size: 891448

Image MD5: 82E266BEE5F0167E41C6ECFDD2A79C02

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

Service (registry key): tcpipreg

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: TCP/IP Registry Compatibility

Description: Provides compatibility for legacy applications which interact with TCP/IP through the registry. If this service is stopped, certain applications may have impaired functionality.

Image path: System32\drivers\tcpipreg.sys

Image size: 30208

Image MD5: D4A2E4A4B011F3A883AF77315A5AE76B

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Depends On services: tcpip

Service (registry key): TDPIPE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: TDPIPE

Image path: system32\drivers\tdpipe.sys

Image size: 17920

Image MD5: 5DCF5E267BE67A1AE926F2DF77FBCC56

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): TDTCP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: TDTCP

Image path: system32\drivers\tdtcp.sys

Image size: 29184

Image MD5: 389C63E32B3CEFED425B61ED92D3F021

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): tdx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50004

Description: @%SystemRoot%\system32\tcpipcfg.dll,-50004

Image path: system32\DRIVERS\tdx.sys

Image size: 71680

Image MD5: D09276B1FAB033CE1D40DCBDF303D10F

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: Tcpip

Service (registry key): TermDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de périphérique terminal

Image path: system32\DRIVERS\termdd.sys

Image size: 54328

Image MD5: A048056F5E1A96A9BF3071B91741A5AA

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): TermService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\termsrv.dll,-268

Description: @%SystemRoot%\System32\termsrv.dll,-267

Object name: NT Authority\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,TermDD

Service (registry key): Themes

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\shsvcs.dll,-8192

Description: @%SystemRoot%\System32\shsvcs.dll,-8193

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): THREADORDER

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\mmcss.dll,-102

Description: @%systemroot%\system32\mmcss.dll,-103

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): TrkWks

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\trkwks.dll,-1

Description: @%SystemRoot%\system32\trkwks.dll,-2

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): TrustedInstaller

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\servicing\TrustedInstaller.exe,-100

Description: @%SystemRoot%\servicing\TrustedInstaller.exe,-101

Object name: localSystem

Image path: %SystemRoot%\servicing\TrustedInstaller.exe

Image size: 39424

Image MD5: 16613A1BAD034D4ECF957AF18B7C2FF5

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Service (registry key): TSDDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): tssecsrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Terminal Services Security Filter Driver

Description: Terminal Services Security Filter Driver

Image path: System32\DRIVERS\tssecsrv.sys

Image size: 23552

Image MD5: DCF0F056A2E4F52287264F5AB29CF206

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): tunnel

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de carte miniport Microsoft IPv6 Tunnel

Image path: system32\DRIVERS\tunnel.sys

Image size: 23040

Image MD5: 119B8184E106BAEDC83FCE5DDF3950DA

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): uagp35

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft AGPv3.5 Filter

Image path: \SystemRoot\system32\drivers\uagp35.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): udfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: udfs

Description: Reads/Writes UDF 1.02,1.5,2.0x,2.5 disc formats, usually found on C/DVD discs. (Core) (All pieces)

Image path: system32\DRIVERS\udfs.sys

Image size: 226816

Image MD5: 8B5088058FA1D1CD897A2113CCFF6C58

Control Set: CurrentControlSet

Start: 4

Type: 2

Error Control: 1

Service (registry key): UGatherer

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): UGTHRSVC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): UI0Detect

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\ui0detect.exe,-101

Description: @%SystemRoot%\system32\ui0detect.exe,-102

Object name: LocalSystem

Image path: %SystemRoot%\system32\UI0Detect.exe

Image size: 35840

Image MD5: ECEF404F62863755951E09C802C94AD5

Control Set: CurrentControlSet

Start: 3

Type: 272

Error Control: 1

Service (registry key): uliagpkx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Uli AGP Bus Filter

Image path: \SystemRoot\system32\drivers\uliagpkx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): uliahci

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\uliahci.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): UlSata

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\ulsata.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): ulsata2

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\ulsata2.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): umbus

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote d’énumérateur UMBus

Image path: system32\DRIVERS\umbus.sys

Image size: 34816

Image MD5: 32CFF9F809AE9AED85464492BF3E32D2

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): upnphost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\upnphost.dll,-213

Description: @%systemroot%\system32\upnphost.dll,-214

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: SSDPSRV,HTTP

Service (registry key): usb

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): usbccgp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote parent générique USB Microsoft

Image path: system32\DRIVERS\usbccgp.sys

Image size: 73216

Image MD5: CAF811AE4C147FFCD5B51750C7F09142

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): usbcir

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: eHome Infrared Receiver (USBCIR)

Image path: \SystemRoot\system32\drivers\usbcir.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): usbehci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0

Image path: system32\DRIVERS\usbehci.sys

Image size: 39424

Image MD5: CEBE90821810E76320155BEBA722FCF9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): usbhub

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Concentrateur USB2

Image path: system32\DRIVERS\usbhub.sys

Image size: 194560

Image MD5: CC6B28E4CE39951357963119CE47B143

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): usbohci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote miniport de contrôleur hôte ouvert USB Microsoft

Image path: system32\DRIVERS\usbohci.sys

Image size: 19456

Image MD5: 7BDB7B0E7D45AC0402D78B90789EF47C

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): usbprint

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Classe d'imprimantes USB Microsoft

Image path: system32\DRIVERS\usbprint.sys

Image size: 18944

Image MD5: E75C4B5269091D15A2E7DC0B6D35F2F5

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): usbscan

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de scanneur USB

Image path: system32\DRIVERS\usbscan.sys

Image size: 35328

Image MD5: A508C9BD8724980512136B039BBA65E9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): USBSTOR

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de stockage de masse USB

Image path: system32\DRIVERS\USBSTOR.SYS

Image size: 55296

Image MD5: 87BA6B83C5D19B69160968D07D6E2982

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): usbuhci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote miniport de contrôleur hôte universel USB Microsoft

Image path: system32\DRIVERS\usbuhci.sys

Image size: 22528

Image MD5: 325DBBACB8A36AF9988CCF40EAC228CC

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): usbvideo

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: USB Video Device (WDM)

Image path: System32\Drivers\usbvideo.sys

Image size: 134016

Image MD5: E67998E8F14CB0627A769F6530BCB352

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): usnjsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Service Messenger Sharing Folders USN Journal Reader

Description: Service installé par Messenger pour permettre les opérations de partage

Object name: LocalSystem

Image path: "C:\Program Files\MSN Messenger\usnsvc.exe"

Image size: 97136

Image MD5: C5B70A6AA947667CE0E5FC84A05EC8B6

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: rpcss,eventlog

Service (registry key): UxSms

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\dwm.exe,-2000

Description: @%SystemRoot%\system32\dwm.exe,-2001

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): UxTuneUp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\uxtuneup.dll,-4096

Description: @%SystemRoot%\System32\uxtuneup.dll,-4097

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Themes

Service (registry key): vds

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\vds.exe,-100

Description: @%SystemRoot%\system32\vds.exe,-112

Object name: LocalSystem

Image path: %SystemRoot%\System32\vds.exe

Image size: 382976

Image MD5: B13BC395B9D6116628F5AF47E0802AC4

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RpcSs,PlugPlay

Service (registry key): vga

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\vgapnp.sys

Image size: 26112

Image MD5: 7D92BE0028ECDEDEC74617009084B5EF

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): VgaSave

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\System32\drivers\vga.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

Service (registry key): viaagp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: VIA AGP Bus Filter

Image path: \SystemRoot\system32\drivers\viaagp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): ViaC7

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: VIA C7 Processor Driver

Image path: \SystemRoot\system32\drivers\viac7.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): viaide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\viaide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

Service (registry key): volmgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote du Gestionnaire de volume

Image path: system32\drivers\volmgr.sys

Image size: 52792

Image MD5: 69503668AC66C77C6CD7AF86FBDF8C43

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): volmgrx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Dynamic Volume Manager

Description: Extension of the volume manager driver that manages software RAID volumes (spanned, striped, mirrored, RAID-5) on dynamic disks

Image path: System32\drivers\volmgrx.sys

Image size: 294456

Image MD5: 98F5FFE6316BD74E9E2C97206C190196

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): volsnap

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Volumes de stockage

Image path: system32\drivers\volsnap.sys

Image size: 227896

Image MD5: D8B4A53DD2769F226B3EB374374987C9

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

Service (registry key): vsmraid

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\vsmraid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): VSS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\vssvc.exe,-102

Description: @%systemroot%\system32\vssvc.exe,-101

Object name: LocalSystem

Image path: %systemroot%\system32\vssvc.exe

Image size: 1054720

Image MD5: D5FB73D19C46ADE183F968E13F186B23

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

Service (registry key): VxD

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): W32Time

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\w32time.dll,-200

Description: @%SystemRoot%\system32\w32time.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Service (registry key): W3SVC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): WacomPen

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Wacom Serial Pen HID Driver

Image path: \SystemRoot\system32\drivers\wacompen.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): Wanarp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Remote Access IP ARP Driver

Description: Remote Access IP ARP Driver

Image path: system32\DRIVERS\wanarp.sys

Image size: 62464

Image MD5: 55201897378CCA7AF8B5EFD874374A26

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Wanarpv6

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Remote Access IPv6 ARP Driver

Description: Remote Access IPv6 ARP Driver

Image path: system32\DRIVERS\wanarp.sys

Image size: 62464

Image MD5: 55201897378CCA7AF8B5EFD874374A26

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Service (registry key): WcesComm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%windir%\WindowsMobile\wcescomm.dll,-40079

Description: @%windir%\WindowsMobile\wcescomm.dll,-40080

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k WindowsMobile

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RapiMgr

Service (registry key): wcncsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wcncsvc.dll,-3

Description: @%SystemRoot%\system32\wcncsvc.dll,-4

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: rpcss

Service (registry key): WcsPlugInService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\WcsPlugInService.dll,-200

Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k wcssvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): Wd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Watchdog Timer Driver

Image path: \SystemRoot\system32\drivers\wd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): Wdf01000

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Kernel Mode Driver Frameworks service

Image path: system32\drivers\Wdf01000.sys

Image size: 503864

Image MD5: B6F0A7AD6D4BD325FBCD8BAC96CD8D96

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

Service (registry key): WdiServiceHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wdi.dll,-502

Description: @%systemroot%\system32\wdi.dll,-503

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k wdisvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): WdiSystemHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wdi.dll,-500

Description: @%systemroot%\system32\wdi.dll,-501

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): WebClient

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\webclnt.dll,-100

Description: @%systemroot%\system32\webclnt.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: MRxDAV

Service (registry key): Wecsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wecsvc.dll,-200

Description: @%SystemRoot%\system32\wecsvc.dll,-201

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: HTTP,Eventlog,mpssvc

Service (registry key): wercplsupport

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wercplsupport.dll,-101

Description: @%SystemRoot%\System32\wercplsupport.dll,-100

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Service (registry key): WerSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wersvc.dll,-100

Description: @%SystemRoot%\System32\wersvc.dll,-101

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k WerSvcGroup

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Service (registry key): winachsf

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\HSX_CNXT.sys

Image size: 660480

Image MD5: E096FFB754F1E45AE1BDDAC1275AE2C5

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

Service (registry key): WinDefend

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103

Description: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-3068

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k secsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): Windows Workflow Foundation 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): WinHttpAutoProxySvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\winhttp.dll,-100

Description: @%SystemRoot%\system32\winhttp.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: Dhcp

Service (registry key): Winmgmt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\wbem\wmisvc.dll,-205

Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204

Object name: localSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: RPCSS

Service (registry key): WinRM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\wsmsvc.dll,-101

Description: @%Systemroot%\system32\wsmsvc.dll,-102

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS,HTTP

Service (registry key): Winsock

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 4

Error Control: 1

Service (registry key): WinSock2

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): winusb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote WinUsb

Image path: system32\DRIVERS\winusb.sys

Image size: 31616

Image MD5: F03110711B17AD31271CB2BAF0DBB2B1

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): Wlansvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wlansvc.dll,-257

Description: @%SystemRoot%\System32\wlansvc.dll,-258

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: nativewifip,RpcSs,Ndisuio,Eaphost

Service (registry key): WmiAcpi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Windows Management Interface for ACPI

Image path: system32\DRIVERS\wmiacpi.sys

Image size: 11264

Image MD5: 2E7255D172DF0B8283CDFB7B433B864E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): WmiApRpl

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): wmiApSrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110

Description: @%Systemroot%\system32\wbem\wmiapsrv.exe,-111

Object name: localSystem

Image path: %systemroot%\system32\wbem\WmiApSrv.exe

Image size: 137728

Image MD5: ABA4CF9F856D9A3A25F4DDD7690A6E9D

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Service (registry key): WMPNetworkSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101

Description: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-102

Object name: NT AUTHORITY\NetworkService

Image path: "%ProgramFiles%\Windows Media Player\wmpnetwk.exe"

Image size: 896512

Image MD5: 3978704576A121A9204F8CC49A301A9B

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: UPnPHost,http

Service (registry key): WPCSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wpcsvc.dll,-100

Description: @%SystemRoot%\system32\wpcsvc.dll,-101

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): WPDBusEnum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wpdbusenum.dll,-100

Description: @%SystemRoot%\system32\wpdbusenum.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

Service (registry key): ws2ifsl

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Winsock IFS driver

Description: Winsock IFS driver

Image path: \SystemRoot\system32\drivers\ws2ifsl.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

Service (registry key): wscsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wscsvc.dll,-200

Description: @%SystemRoot%\System32\wscsvc.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,WinMgmt

Service (registry key): WSearch

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\SearchIndexer.exe,-103

Description: @%systemroot%\system32\SearchIndexer.exe,-104

Object name: LocalSystem

Image path: %systemroot%\system32\SearchIndexer.exe /Embedding

Image size: 302080

Image MD5: EF68EEBE88FDBE6D31F3E446C1DD9FB8

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RPCSS

Service (registry key): WSearchIdxPi

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): wuauserv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wuaueng.dll,-105

Description: @%systemroot%\system32\wuaueng.dll,-106

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: rpcss

Service (registry key): WUDFRd

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\WUDFRd.sys

Image size: 83328

Image MD5: AC13CB789D93412106B0FB6C7EB2BCB6

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Service (registry key): wudfsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wudfsvc.dll,-1000

Description: @%SystemRoot%\system32\wudfsvc.dll,-1001

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: PlugPlay

Service (registry key): XAudio

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\xaudio.sys

Image size: 8704

Image MD5: 19E7C173B6242AD7521E537AE54768BF

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 0

Service (registry key): XAudioService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: XAudioService

Description: User-mode gate for Modem Speakerphone

Object name: LocalSystem

Image path: %SystemRoot%\system32\DRIVERS\xaudio.exe

Image size: 386560

Image MD5: CDA0BC78672B50C43649FF34E1FD0FF8

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Service (registry key): xmlprov

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): {79D9E772-CB41-4CD6-A37A-4B5FD72F113C}

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Service (registry key): {D3AE7335-C264-4438-88BE-CFA888AAB009}

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

pear · le 12 août 2008

Je n'ai pas demandé de rapport Spybot dont, avec d'autres, je pense qu'il est dépassé, mais un rapport Mbam.

patou57 · le 12 août 2008

Je n'ai pas demandé de rapport Spybot dont, avec d'autres, je pense qu'il est dépassé, mais un rapport Mbam.

Excuse moi oui je sais l'autre est en cour, je le poste quand fini

Je croyais juste bien faire

patou57 · le 12 août 2008

Voila le rapport MBDA comme demandé

Malwarebytes' Anti-Malware 1.24

Version de la base de données: 1045

Windows 6.0.6001 Service Pack 1

00:28:56 13/08/2008

mbam-log-8-13-2008 (00-28-56).txt

Type de recherche: Examen complet (C:\|)

Eléments examinés: 155364

Temps écoulé: 3 hour(s), 5 minute(s), 38 second(s)

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 0

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 0

Dossier(s) infecté(s): 0

Fichier(s) infecté(s): 0

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):

(Aucun élément nuisible détecté)

Dossier(s) infecté(s):

(Aucun élément nuisible détecté)

Fichier(s) infecté(s):

(Aucun élément nuisible détecté)

Mark · le 13 août 2008

Bonjour pear

Jète un oeil par ici si tu le veux bien :

http://www.commentcamarche.net/forum/affic...ojan-bifrose-la

Étant donné que patou57 reçoit de l'aide là-bas et que le helper a décidé de poursuivre en sachant très bien qu'il y avait de l'aide ici - sans te contacter pour t'en aviser, je te conseillerais de stopper les recherches car vous risquez de tourner en rond avec requêtes et manipulations en double, à l'aveugle. Pire, ça pourrait provoquer de la confusion chez le visiteur donc le risque de fausse manip devient réel.

patou57 : je n'apprécie pas ton silence quant à l'aide que tu reçois sur CCM. Les bénévoles sur forums ont suffisamment de boulot et le travail en double bouffe un temps fou, sans parler du risque de confusion qui peut engendrer de graves conséquences.

Le helper là-bas savait que tu étais ici et a décidé de poursuivre malgré tout (son choix) ; si pear veut poursuivre ici, je ne m'y opposerai pas, mais je l'appuierai à 100% s'il décide de terminer maintenant.

@+

pear · le 13 août 2008

Ok, J'arrête.

C'est trop souvent que cela se produit.

Mais qu'y faire ?

Mark · le 13 août 2008

Salut pear ;

Qu'y faire ? Difficile de modifier ce genre de comportement... On dénonce, on explique tout en espérant que ça ne se reproduise pas. On fait signe aux collègues impliqués aussi, peu importe sur quel forum.

@++

Connexion

Pas encore inscrit ?

Infecté par Bifrose.LA

Messages recommandés

patou57

styx

Falkra

patou57

pear

patou57

patou57

Mark

pear

Mark

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer