MeMedia.AdVantage détecté par spybot

[didoufr]

telechargé

aucun rapport ! après recherche sur le disc rien

rapport hi

même erreur de date

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 21:23:15, on 05/10/2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

 

Running processes:

C:\Windows\System32\smss.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\wininit.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\winlogon.exe

C:\Windows\system32\svchost.exe

C:\Windows\System32\svchost.exe

C:\Windows\system32\Ati2evxx.exe

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\Ati2evxx.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\spoolsv.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\a-squared Free\a2service.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE

C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

c:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

C:\Windows\system32\svchost.exe

C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe

C:\Program Files\Spyware Doctor\pctsAuxs.exe

C:\Program Files\Spyware Doctor\pctsSvc.exe

C:\Windows\system32\svchost.exe

C:\Windows\System32\svchost.exe

C:\Program Files\Spyware Doctor\pctsTray.exe

C:\Windows\system32\SearchIndexer.exe

C:\Windows\system32\WUDFHost.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\hp\support\hpsysdrv.exe

c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE

C:\Windows\RtHDVCpl.exe

C:\Windows\System32\jureg.exe

C:\Program Files\Alwil Software\Avast4\ashDisp.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\Windows\system32\schtasks.exe

C:\Program Files\Search Settings\SearchSettings.exe

C:\Program Files\Winamp\winampa.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe

C:\Program Files\DAEMON Tools Lite\daemon.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Windows\ehome\ehtray.exe

C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Windows\ehome\ehmsas.exe

C:\Program Files\Google\Google Updater\GoogleUpdater.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

C:\hp\kbd\kbd.exe

C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

C:\Program Files\Lphant\eLePhantClient.exe

C:\Windows\system32\conime.exe

C:\Program Files\Shareaza\Shareaza.exe

C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe

C:\Program Files\Internet Explorer\ieuser.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe

C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\wbem\wmiprvse.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll

F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: LuckyTender - {5E2402A0-5F99-4188-B30D-D8743996B340} - (no file)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll

O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll

O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)

O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe

O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE

O4 - HKLM\..\Run: [startCCC] "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"

O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe

O4 - HKLM\..\Run: [sunJavaUpdateReg] "C:\Windows\system32\jureg.exe"

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

O4 - HKLM\..\Run: [searchSettings] C:\Program Files\Search Settings\SearchSettings.exe

O4 - HKLM\..\Run: [iSTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"

O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"

O4 - HKLM\..\RunOnce: [PCDrProfiler] C:\Program Files\PC-Doctor 5 for Windows\RunProfiler.exe -r

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun

O4 - HKCU\..\Run: [EPSON Stylus DX6000 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\Users\hp\AppData\Local\Temp\E_SEC90.tmp" /EF "HKCU"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [Google Update] "C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)

O13 - Gopher Prefix:

O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - http://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab

O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/sit...b?1214591254569

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1214591115543

O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection Class) - http://h20270.www2.hp.com/ediags/gmn2/inst...ctDetection.cab

O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - http://ipgweb.cce.hp.com/rdqemea/downloads/msxml4.cab

O16 - DPF: {BA162249-F2C5-4851-8ADC-FC58CB424243} (Image Uploader Control) - http://copainsdavant.linternaute.com/html_...geUploader5.cab

O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe

O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: SolidPDFConverterReadSpool (ScReadSpool) - VoyagerSoft, LLC - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe

O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe

 

--

End of file - 13111 bytes

[pear]

Bonsoir,

 

il ne se met pas a la bonne date ???????????? je ne sais pas pourquoi

 

Vous n'auriez pas un problème de pile Cmos ?

Etonnant que ça revienne ces toolbars.

C'est vous ou "à l'insu de votre plein gré"

Téléchargez Toolbar-S&D sur le Bureau.

• Lancez l'installation du programme en exécutant le fichier téléchargé.
  
• Double-cliquez sur le raccourci de Toolbar-S&D.
  
• Sélectionnez la langue souhaitée en tapant la lettre de votre choix puis en validant avec la touche Entrée.
  
• Choisisssez l'option 1 (Recherche).
  
• Patientez jusqu'à la fin de la recherche.
  
• Postez le rapport généré. (C:\TB.txt)
  

Relancez Toolbar-S&D en double-cliquant sur le raccourci. Tapez sur "2" et validez par"Entrée".

Ne fermez pas la fenêtre lors de la suppression !

Un rapport sera généré,

postez son contenu ici.

 

NOTE : Si le Bureau ne réapparait pas, appuyer simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.

Allez à l'onglet "Processus". Cliquez en haut à gauche sur Fichier ->"Exécuter..."

Tapez explorer et validez.

Modifié le 24 octobre 2008 par pear

[didoufr]

'© Eric_71 ( Contact : eric.71.MesPages@gmail.com )

On Error Resume Next

Dim fso

Set FSO = CreateObject("Scripting.FileSystemObject")

Set FTX = FSO.createTextFile("OS_v.txt",true)

strComputer = "."

Set objWMIService = GetObject("winmgmts:" & "{impersonationLevel=impersonate}!\\" & _

strComputer & "\root\cimv2")

 

Set OS__infos = objWMIService.ExecQuery("Select * from Win32_OperatingSystem")

Set BO__infos = objWMIService.ExecQuery("Select * from Win32_ComputerSystem")

Set US__infos = objWMIService.ExecQuery("Select * from Win32_NetworkLoginProfile")

Set PR__infos = objWMIService.ExecQuery("Select * from Win32_Processor")

Set BI__infos = objWMIService.ExecQuery("Select * from Win32_BIOS")

Set DI__infos = objWMIService.ExecQuery("Select * from Win32_LogicalDisk",,48)

Set objWMISecurity = GetObject("winmgmts:{impersonationLevel=impersonate}!\\.\root\SecurityCenter")

Set colAV = objWMISecurity.ExecQuery("Select * from AntiVirusProduct")

Set colFI = objWMISecurity.ExecQuery("Select * from FirewallProduct")

Set wshNetwork = CreateObject("WScript.Network")

strUser = wshNetwork.Username

For Each objOS__ in OS__infos

OSvers = objOS__.Caption & " ( v" & objOS__.Version & " ) " & objOS__.CSDVersion

OSbuild = objOS__.BuildType

Next

For Each objBO__ in BO__infos

BOprocT = objBO__.SystemType

Next

For Each objPR__ in PR__infos

PRprocN = objPR__.Name

Next

For Each objBI__ in BI__infos

BIbios = "BIOS : " & objBI__.Name

Next

For Each objUS__ in US__infos

If objUS__.Privileges = 2 Then

USuser = "USER : " & strUser & " ( Administrator )"

Else

USuser = "USER : " & strUser & " ( Not Administrator ! )"

End If

Next

For Each objBO__ in BO__infos

BOboot = "BOOT : " & objBO__.BootupState

Next

For Each objAV In colAV

If objAV.OnAccessScanningEnabled = 0 Then

AVstatus = "Not Activated"

Else

AVstatus = "Activated"

End If

Next

For Each objFI In colFI

If objFI.Enabled = 0 Then

FIstatus = "Not Activated"

Else

FIstatus = "Activated"

End If

Next

For Each objAV in colAV

AVstat = "Antivirus : " & objAV.DisplayName & " " & objAV.VersionNumber & " (" & AVstatus & ")"

Next

For Each objFI In colFI

FIstat = "Firewall : " & objFI.DisplayName & " " & objFI.VersionNumber & " (" & FIstatus & ")"

Next

For Each objDI__ in DI__infos

Select Case objDI__.DriveType

Case 1 strTL = "..."

Case 2 strTL = "USB"

Case 3 strTL = "Local Disk"

Case 4 strTL = "Disque réseau"

Case 5 strTL = "CD or DVD"

Case 6 strTL = "RAM"

Case Else strTL = "..."

End Select

If objDI__.DriveType =2 Then

strTD = Int(objDI__.Size /1048576) & " Mo"

Else

strTD = Int(objDI__.Size /1073741824) & " Go"

End If

if strTD = " Go" Then

strDI = strDI & objDI__.Name & "\ (" & strTL & ")" & vbCrlf

elseif strTD = " Mo" Then

strDI = strDI & objDI__.Name & "\ (" & strTL & ")" & vbCrlf

else

strDI = strDI & objDI__.Name & "\ (" & strTL & ") - " & objDI__.FileSystem & _

" - Total : " & strTD & " Free : " & Int(objDI__.FreeSpace /1073741824) & " Go" & vbCrlf

end if

Next

FTX.writeline OSvers

FTX.writeline BOprocT & " ( " & OSbuild & " : " & PRprocN & " )"

FTX.writeline BIbios

FTX.writeline USuser

FTX.writeline BOboot

FTX.writeline ""

FTX.writeline AVstat

FTX.writeline FIstat

FTX.writeline ""

FTX.writeline strDI

FTX.close

 

 

erreur

voici le rapport aprs suppression (2)

 

'© Eric_71 ( Contact : eric.71.MesPages@gmail.com )

On Error Resume Next

Dim fso

Set FSO = CreateObject("Scripting.FileSystemObject")

Set FTX = FSO.createTextFile("OS_v.txt",true)

strComputer = "."

Set objWMIService = GetObject("winmgmts:" & "{impersonationLevel=impersonate}!\\" & _

strComputer & "\root\cimv2")

 

Set OS__infos = objWMIService.ExecQuery("Select * from Win32_OperatingSystem")

Set BO__infos = objWMIService.ExecQuery("Select * from Win32_ComputerSystem")

Set US__infos = objWMIService.ExecQuery("Select * from Win32_NetworkLoginProfile")

Set PR__infos = objWMIService.ExecQuery("Select * from Win32_Processor")

Set BI__infos = objWMIService.ExecQuery("Select * from Win32_BIOS")

Set DI__infos = objWMIService.ExecQuery("Select * from Win32_LogicalDisk",,48)

Set objWMISecurity = GetObject("winmgmts:{impersonationLevel=impersonate}!\\.\root\SecurityCenter")

Set colAV = objWMISecurity.ExecQuery("Select * from AntiVirusProduct")

Set colFI = objWMISecurity.ExecQuery("Select * from FirewallProduct")

Set wshNetwork = CreateObject("WScript.Network")

strUser = wshNetwork.Username

For Each objOS__ in OS__infos

OSvers = objOS__.Caption & " ( v" & objOS__.Version & " ) " & objOS__.CSDVersion

OSbuild = objOS__.BuildType

Next

For Each objBO__ in BO__infos

BOprocT = objBO__.SystemType

Next

For Each objPR__ in PR__infos

PRprocN = objPR__.Name

Next

For Each objBI__ in BI__infos

BIbios = "BIOS : " & objBI__.Name

Next

For Each objUS__ in US__infos

If objUS__.Privileges = 2 Then

USuser = "USER : " & strUser & " ( Administrator )"

Else

USuser = "USER : " & strUser & " ( Not Administrator ! )"

End If

Next

For Each objBO__ in BO__infos

BOboot = "BOOT : " & objBO__.BootupState

Next

For Each objAV In colAV

If objAV.OnAccessScanningEnabled = 0 Then

AVstatus = "Not Activated"

Else

AVstatus = "Activated"

End If

Next

For Each objFI In colFI

If objFI.Enabled = 0 Then

FIstatus = "Not Activated"

Else

FIstatus = "Activated"

End If

Next

For Each objAV in colAV

AVstat = "Antivirus : " & objAV.DisplayName & " " & objAV.VersionNumber & " (" & AVstatus & ")"

Next

For Each objFI In colFI

FIstat = "Firewall : " & objFI.DisplayName & " " & objFI.VersionNumber & " (" & FIstatus & ")"

Next

For Each objDI__ in DI__infos

Select Case objDI__.DriveType

Case 1 strTL = "..."

Case 2 strTL = "USB"

Case 3 strTL = "Local Disk"

Case 4 strTL = "Disque réseau"

Case 5 strTL = "CD or DVD"

Case 6 strTL = "RAM"

Case Else strTL = "..."

End Select

If objDI__.DriveType =2 Then

strTD = Int(objDI__.Size /1048576) & " Mo"

Else

strTD = Int(objDI__.Size /1073741824) & " Go"

End If

if strTD = " Go" Then

strDI = strDI & objDI__.Name & "\ (" & strTL & ")" & vbCrlf

elseif strTD = " Mo" Then

strDI = strDI & objDI__.Name & "\ (" & strTL & ")" & vbCrlf

else

strDI = strDI & objDI__.Name & "\ (" & strTL & ") - " & objDI__.FileSystem & _

" - Total : " & strTD & " Free : " & Int(objDI__.FreeSpace /1073741824) & " Go" & vbCrlf

end if

Next

FTX.writeline OSvers

FTX.writeline BOprocT & " ( " & OSbuild & " : " & PRprocN & " )"

FTX.writeline BIbios

FTX.writeline USuser

FTX.writeline BOboot

FTX.writeline ""

FTX.writeline AVstat

FTX.writeline FIstat

FTX.writeline ""

FTX.writeline strDI

FTX.close

[pear]

Bpnsoir ,

ce n'est pas le rapport , c'est le source .

Quand vous avez lancé l'outil, un rapport est apparu à la fin de la procédure que vous deviez copier/coller.

 

Vous pouvez le retrouver dans le fichier ToolbarSd sous tb- txt.

Modifié le 26 octobre 2008 par pear

[didoufr]

?? c'est ça

-----------\\ ToolBar S&D 1.2.2 XP/Vista

 

 

"C:\ToolBar SD" ( MAJ : 04-10-2008|21:00 )

Option : [2] ( 26/10/2008|18:01 )

[pear]

Vous le faites exprès ?

[didoufr]

c'est le resultat !!!!!!!!!!!!!!!!!!! qui s'affiche

et étant donné que je ne sais comment fonctionne le logiciel je ne sais pas s'il me donne autre chose pardi !!

j'ai trouvé un tb et un tb2

en plus suis sur le portable car ll'autre ades soucis donc le rapport etant sur l'autre ! il vas suivre

en tout eta de cause le machin advantage est toujours détecté

a ++

[didoufr]

Vous le faites exprès ?

 

voici tb1

 

-----------\\ ToolBar S&D 1.2.2 XP/Vista

 

 

"C:\ToolBar SD" ( MAJ : 04-10-2008|21:00 )

Option : [1] ( 07/10/2008|14:33 )

 

[ UAC => 1 ]

 

-----------\\ Recherche de Fichiers / Dossiers ...

 

C:\Program Files\Search Settings

C:\Program Files\Search Settings\kb127

C:\Program Files\Search Settings\SearchSettings.exe

C:\Program Files\VMNToolbar

C:\Program Files\VMNToolbar\uninstall.exe

C:\Program Files\VMNToolbar\vmntoolbar.dll.old53

 

-----------\\ [..\Internet Explorer\Main]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\Windows\\system32\\blank.htm"

"Search Page"="http://www.google.com"'>http://www.google.com"

"Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie"

"Start Page"="http://www.google.fr/"'>http://www.google.fr/"

"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"'>http://go.microsoft.com/fwlink/?LinkId=75720"

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"'>http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"'>http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"

"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896"

"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

 

 

--------------------\\ Recherche d'autres infections

 

--------------------\\ Cracks & Keygens ..

 

C:\Users\hp\AppData\Roaming\BitTorrent\AVS Video Converter v4.3.1.371 + Crack.rar.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Bus Driver (With Crack).rar.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Macromedia Dreamweaver 8 FR + Keygen.rar.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Magic DVD Copier 4.8.0.4 +Keygen.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Magic DVD Copier 4.8.0.5 Incl. Keygen.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Nero 8.1.1.4 en Fran‡ais + Keygen.zip.1.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Nero 8.1.1.4 en Fran‡ais + Keygen.zip.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\system mechanic 7.0.3 newest crack.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\System Mechanic Pro v7.5.10.5 Multilanguage + Crack.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\SystemMechanic.v7.5.11.Pro +Keygen.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\System_Mechanic_Professional_8.0.0.18[+CRack].torrent

C:\Users\hp\AppData\Roaming\Microsoft\Windows\Cookies\Low\hp@crackserialkeygen[2].txt

C:\Users\hp\Documents\Downloads\Nero 7.5.9\keygen.exe

C:\Users\hp\Favorites\cracks etc

C:\Users\hp\Favorites\cracks etc\Crack et S‚rial.url

C:\Users\hp\Favorites\cracks etc\Les Cracks de Superg‚g‚.url

C:\Users\hp\Favorites\torrent\Bit Torrent Search Engine eMule BitTorrent Binary Usenet Serials Cracks.url

 

 

[ UAC => 1 ]

 

 

1 - "C:\ToolBar SD\TB_1.txt" - 07/10/2008|14:34 - Option : [1]

 

 

et voici tb2

 

 

-----------\\ ToolBar S&D 1.2.2 XP/Vista

 

 

"C:\ToolBar SD" ( MAJ : 04-10-2008|21:00 )

Option : [2] ( 09/10/2008|21:37 )

 

[ UAC => 1 ]

 

-----------\\ SUPPRESSION

 

Supprime! - C:\Program Files\Search Settings\kb127

Supprime! - C:\Program Files\Search Settings\SearchSettings.exe

Supprime! - C:\Program Files\VMNToolbar\uninstall.exe

Supprime! - C:\Program Files\VMNToolbar\vmntoolbar.dll.old53

Supprime! - C:\Program Files\Search Settings

Supprime! - C:\Program Files\VMNToolbar

 

-----------\\ Recherche de Fichiers / Dossiers ...

 

 

-----------\\ [..\Internet Explorer\Main]

 

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Local Page"="C:\\Windows\\system32\\blank.htm"

"Search Page"="http://www.google.com"

"Search Bar"="http://www.google.com/ie"

"Start Page"="http://www.google.fr/"

"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"

"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"

"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

 

 

--------------------\\ Recherche d'autres infections

 

--------------------\\ Cracks & Keygens ..

 

C:\Users\hp\AppData\Roaming\BitTorrent\AVS Video Converter v4.3.1.371 + Crack.rar.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Bus Driver (With Crack).rar.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Macromedia Dreamweaver 8 FR + Keygen.rar.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Magic DVD Copier 4.8.0.4 +Keygen.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Magic DVD Copier 4.8.0.5 Incl. Keygen.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Nero 8.1.1.4 en Fran‡ais + Keygen.zip.1.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\Nero 8.1.1.4 en Fran‡ais + Keygen.zip.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\system mechanic 7.0.3 newest crack.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\System Mechanic Pro v7.5.10.5 Multilanguage + Crack.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\SystemMechanic.v7.5.11.Pro +Keygen.torrent

C:\Users\hp\AppData\Roaming\BitTorrent\System_Mechanic_Professional_8.0.0.18[+CRack].torrent

C:\Users\hp\AppData\Roaming\Microsoft\Windows\Cookies\Low\hp@crackserialkeygen[2].txt

C:\Users\hp\AppData\Roaming\Microsoft\Windows\Recent\InterVideo.WinDVD.Platinum.v8.0.6.72.Multilangages.Incl-Keygen0020.iso.lnk

C:\Users\hp\Documents\Downloads\Nero 7.5.9\keygen.exe

C:\Users\hp\Favorites\cracks etc

C:\Users\hp\Favorites\cracks etc\Crack et S‚rial.url

C:\Users\hp\Favorites\cracks etc\Les Cracks de Superg‚g‚.url

C:\Users\hp\Favorites\torrent\Bit Torrent Search Engine eMule BitTorrent Binary Usenet Serials Cracks.url

 

 

[ UAC => 1 ]

 

 

1 - "C:\ToolBar SD\TB_1.txt" - 07/10/2008|14:34 - Option : [1]

2 - "C:\ToolBar SD\TB_2.txt" - 09/10/2008|21:39 - Option : [2]

[pear]

Cette fois le rapport Toolbar&sd est complet.

 

en tout eta de cause le machin advantage est toujours détecté

 

Vous pouvez poster le rapport Spybot où cela apparait ?

Pourrait-il s'agir de ceci:

http://www.reuters.com/article/pressReleas...008+PRN20080909 ?

 

ou de cela ?

 

A partir de la version 1.38, la version gratuite de BS.Player comporte un adware appelé WhenU.

En septembre 2007 WhenU Save a été remplacé par MeMedia AdVantage. C'est lui qui vous pollue !

 

1- En cas de besoin : Afficher les fichiers et dossiers cachés :

- Ouvrir le poste de travail ou l'Explorateur Windows

- Menu "Outils" / "Options des Dossiers..." / onglet "Affichage".

- Dans le cadre "Paramètres avancés" :

- A "Fichiers et dossiers cachés" -> cochez "Afficher les fichiers et dossiers cachés"

- Décochez "Masquer les extensions des fichiers dont le type est connu"

- Décoche "Masquer les fichiers protégés du système d'exploitation"

- A la demaznde de confirmation répondre "Oui".

 

2a- Désinstaller d'abord BS.Player

Bouton "Démarrer" / "Panneau de configuration" / "Ajout-Suppression de programmes"

Recherchez "BS.Player" et supprimez-le.

 

2b- Si la suppression échoue :

- Bouton "Démarrer" / "Tous les programmes"

- Dans la liste ou les sous-listes recherche -> "BS.Player"

- Associé à cet item "BS.Player", il doit y avoir "uninstall Bs.Player"

- Cliquer dessus pour le désinstaller.

 

2c- Si cette méthode échoue encore le faire en mode sans échec.

Mode sans échec : au démarrage du pc tapoter la la touche F8.

 

3a- Désinstaller "AdVantage"

- Bouton "Démarrer" / "Panneau de configuration" / "Ajout-Suppression de programmes"

- Recherchez "AdVantage" et supprimez-le.

 

3b- Si la suppression échoue :

- Avec l'explorateur Windows allez dans le dossier C:\Program Files\advantage

- Puis double cliquez sur le fichier "advuninst.exe"

 

3c- Si cette méthode échoue encore le faire en mode sans échec.

 

4- Suppression du dossier "AdVantage"

- Avec l'explorateur Windows aller dans le dossier C:\Program Files

- Recherchez le dossier AdVantage et supprimez-le.

 

5-Si le dossier de BS.Player est toujours présent dans C:\Program Files -> le supprimer.

 

6- Si "Masquer les fichiers protégés du système d'exploitation" dans l'étape 1 était coché -> le recocher.

Modifié le 28 octobre 2008 par pear

[didoufr]

tout est OK

je voiyais deja mes extensions et mes fichiers cachés , maintenant je vois le reste !

je n'ai pas bs.player ni adVantage je n'ai jamais rien installé de ces deux choses moi même ( même bsplayer ) a ma connaissance,

pour le site cité je ne comprend pas l'anglais

voici le dernier rapport spybot

 

c'est long !!

 

--- Search result list ---

Le conseil du jour: Cliquez sur la barre située à droite pour voir plus d'informations! ()

 

 

MeMedia.AdVantage: [sBI $EE985419] ID Application (Clé du registre, nothing done)

HKEY_CLASSES_ROOT\AppID\{69E0089F-28BC-4BB5-862B-E2B07C3B83C6}

 

 

--- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) ---

 

2008-07-07 blindman.exe (1.0.0.

2008-07-07 SDFiles.exe (1.6.0.4)

2008-07-07 SDMain.exe (1.0.0.6)

2008-07-07 SDShred.exe (1.0.2.3)

2008-07-07 SDUpdate.exe (1.6.0.

2008-07-07 SDWinSec.exe (1.0.0.12)

2008-07-07 SpybotSD.exe (1.6.0.30)

2008-09-16 TeaTimer.exe (1.6.3.25)

2008-08-10 unins000.exe (51.49.0.0)

2008-07-07 Update.exe (1.6.0.7)

2008-07-07 advcheck.dll (1.6.1.12)

2007-04-02 aports.dll (2.1.0.0)

2008-06-14 DelZip179.dll (1.79.11.1)

2008-09-15 SDHelper.dll (1.6.2.14)

2008-06-19 sqlite3.dll

2008-07-07 Tools.dll (2.1.5.7)

2008-09-02 Includes\Adware.sbi (*)

2008-10-14 Includes\AdwareC.sbi (*)

2008-06-03 Includes\Cookies.sbi (*)

2008-09-02 Includes\Dialer.sbi (*)

2008-09-09 Includes\DialerC.sbi (*)

2008-07-23 Includes\HeavyDuty.sbi (*)

2008-09-02 Includes\Hijackers.sbi (*)

2008-10-07 Includes\HijackersC.sbi (*)

2008-09-09 Includes\Keyloggers.sbi (*)

2008-10-14 Includes\KeyloggersC.sbi (*)

2004-11-29 Includes\LSP.sbi (*)

2008-10-08 Includes\Malware.sbi (*)

2008-10-22 Includes\MalwareC.sbi (*)

2008-09-02 Includes\PUPS.sbi (*)

2008-10-14 Includes\PUPSC.sbi (*)

2007-11-07 Includes\Revision.sbi (*)

2008-06-18 Includes\Security.sbi (*)

2008-09-30 Includes\SecurityC.sbi (*)

2008-06-03 Includes\Spybots.sbi (*)

2008-06-03 Includes\SpybotsC.sbi (*)

2008-10-22 Includes\Spyware.sbi (*)

2008-10-14 Includes\SpywareC.sbi (*)

2008-06-03 Includes\Tracks.uti

2008-10-15 Includes\Trojans.sbi (*)

2008-10-14 Includes\TrojansC.sbi (*)

2008-03-04 Plugins\Chai.dll

2008-03-05 Plugins\Fennel.dll

2008-02-26 Plugins\Mate.dll

2007-12-24 Plugins\TCPIPAddress.dll

 

 

 

--- System information ---

Windows Vista (Build: 6001) Service Pack 1 (6.0.6001)

 

 

--- Startup entries list ---

Located: HK_LM:Run,

command:

file:

size: 0

MD5: D41D8CD98F00B204E9800998ECF8427E

Warning: if the file is actually larger than 0 bytes,

the checksum could not be properly calculated!

 

Located: HK_LM:Run, avast!

command: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

file: C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe

size: 78008

MD5: 66893067C2FB0505F151D3FCB8EA92B5

 

Located: HK_LM:Run, avgnt

command: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

file: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

size: 266497

MD5: 6E812818306D460D62B4ABEA9FDC6679

 

Located: HK_LM:Run, hpsysdrv

command: c:\hp\support\hpsysdrv.exe

file: c:\hp\support\hpsysdrv.exe

size: 65536

MD5: 9A4322EE420D6FACD4D4B1FF6CB856B1

 

Located: HK_LM:Run, ISTray

command: "C:\Program Files\Spyware Doctor\pctsTray.exe"

file: C:\Program Files\Spyware Doctor\pctsTray.exe

size: 1166216

MD5: DB98920FABBE86FB1DC1457034D65748

 

Located: HK_LM:Run, KBD

command: C:\HP\KBD\KbdStub.EXE

file: C:\HP\KBD\KbdStub.EXE

size: 65536

MD5: 7088B136BB58A5F95CF0DE8386CA6C0F

 

Located: HK_LM:Run, NBKeyScan

command: "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"

file: C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

size: 2213160

MD5: D18BD766746B7BE0ABEFA20DC36FD1C8

 

Located: HK_LM:Run, RtHDVCpl

command: RtHDVCpl.exe

file: C:\Windows\RtHDVCpl.exe

size: 4874240

MD5: 361CD47DC5BD83EE24407903233B0D9A

 

Located: HK_LM:Run, StartCCC

command: "c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"

file: c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

size: 90112

MD5: 033FF248550305ED52ED2D2844A8A11B

 

Located: HK_LM:Run, SunJavaUpdateReg

command: "C:\Windows\system32\jureg.exe"

file: C:\Windows\system32\jureg.exe

size: 54672

MD5: E2137B1EB32E3C207D9AD096EB826463

 

Located: HK_LM:Run, WinampAgent

command: "C:\Program Files\Winamp\winampa.exe"

file: C:\Program Files\Winamp\winampa.exe

size: 36352

MD5: E7DEADB409CD8A4552C91ABF624F138F

 

Located: HK_LM:Run, Windows Defender

command: %ProgramFiles%\Windows Defender\MSASCui.exe -hide

file: C:\Program Files\Windows Defender\MSASCui.exe

size: 1008184

MD5: 0D392EDE3B97E0B3131B2F63EF1DB94E

 

Located: HK_CU:Run, DAEMON Tools Lite

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun

file: C:\Program Files\DAEMON Tools Lite\daemon.exe

size: 486856

MD5: B3507538A9BA346A898150032869A523

 

Located: HK_CU:Run, ehTray.exe

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: C:\Windows\ehome\ehTray.exe

file: C:\Windows\ehome\ehTray.exe

size: 125952

MD5: BF08674925F151BD4537B89A493E3E0C

 

Located: HK_CU:Run, EPSON Stylus DX6000 Series

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\Users\hp\AppData\Local\Temp\E_SEC90.tmp" /EF "HKCU"

file: C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE

size: 139264

MD5: 4981B0B81D85F693B3E9B2C40FA7F64B

 

Located: HK_CU:Run, Google Update

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: "C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe" /c

file: C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe

size: 133104

MD5: 626A24ED1228580B9518C01930936DF9

 

Located: HK_CU:Run, HPAdvisor

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun

file: C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe

size: 1783136

MD5: 1245DA794B0D1E8F33F961C23E66A277

 

Located: HK_CU:Run, Sidebar

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

file: C:\Program Files\Windows Sidebar\sidebar.exe

size: 1233920

MD5: FD278E51A7D6F52D22FCE6C67E037AD6

 

Located: HK_CU:Run, SpybotSD TeaTimer

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

size: 1833296

MD5: 63B3FF83B87AFCEBA89CED54695DA0F6

 

Located: HK_CU:Run, WMPNSCFG

where: S-1-5-21-3727703810-3204211959-613685194-1000...

command: C:\Program Files\Windows Media Player\WMPNSCFG.exe

file: C:\Program Files\Windows Media Player\WMPNSCFG.exe

size: 202240

MD5: 35937EAD711207544E219C2A19A78A7D

 

Located: Démarrage (tous utilisateurs), Microsoft Office.lnk

where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...

command: C:\Program Files\Microsoft Office\Office\OSA9.EXE

file: C:\Program Files\Microsoft Office\Office\OSA9.EXE

size: 65588

MD5: 47EC5D6D431C28E8F336B9A398F1D823

 

 

 

--- Browser helper object list ---

{5E2402A0-5F99-4188-B30D-D8743996B340} (LuckyTender)

location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

BHO name: LuckyTender

CLSID name: SliderShowCtrl Class

 

{9030D464-4C02-4ABF-8ECC-5164760863C6} (Programme d'aide de l'Assistant de connexion Windows Live)

location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

BHO name:

CLSID name: Programme d'aide de l'Assistant de connexion Windows Live

Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live\

Long name: WindowsLiveLogin.dll

Short name: WINDOW~1.DLL

Date (created): 20/09/2007 09:30:18

Date (last access): 04/05/2008 17:49:24

Date (last write): 20/09/2007 09:30:18

Filesize: 328752

Attributes: archive

MD5: 59CF5BF6684AFCF906CADAD39B4214DE

CRC32: C363813C

Version: 4.200.520.1

 

{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} (Google Toolbar Notifier BHO)

location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\

BHO name:

CLSID name: Google Toolbar Notifier BHO

Path: C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\

Long name: swg.dll

Short name:

Date (created): 05/10/2008 20:43:30

Date (last access): 05/10/2008 20:43:30

Date (last write): 05/10/2008 20:43:30

Filesize: 652784

Attributes: archive

MD5: 7D566FF02484EA2BCDEF6E8D7E9D9D13

CRC32: 922F62CE

Version: 4.1.805.4472

 

 

 

--- ActiveX list ---

{166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control)

DPF name:

CLSID name: Shockwave ActiveX Control

Installer: C:\Windows\Downloaded Program Files\swdir.inf

Codebase: http://download.macromedia.com/pub/shockwa...director/sw.cab

description: Macromedia ShockWave Flash Player 7

classification: Legitimate

known filename: SWDIR.DLL

info link:

info source: Patrick M. Kolla

Path: C:\Windows\system32\Adobe\Director\

Long name: swdir.dll

Short name:

Date (created): 23/06/2008 13:01:24

Date (last access): 23/06/2008 13:01:24

Date (last write): 17/06/2008 15:23:02

Filesize: 202168

Attributes: archive

MD5: 25F0A729215D2CAF61F0BF5092D07CF9

CRC32: 93C62F10

Version: 11.0.0.458

 

{49232000-16E4-426C-A231-62846947304B} (SysData Class)

DPF name:

CLSID name: SysData Class

Installer: C:\Windows\Downloaded Program Files\sysinfo.inf

Codebase: http://ipgweb.cce.hp.com/rdqemea/downloads/sysinfo.cab

description:

classification: Legitimate

known filename: SysInfo.dll

info link:

info source: Safer Networking Ltd.

Path: C:\Windows\DOWNLO~1\

Long name: SysInfo.dll

Short name:

Date (created): 15/05/2007 15:33:20

Date (last access): 15/05/2007 15:33:20

Date (last write): 15/05/2007 15:33:20

Filesize: 251448

Attributes: archive

MD5: 55E8A05DDA26E8C455A7730721DCAF60

CRC32: 38BB3B52

Version: 2.4.0.0

 

{5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class)

DPF name:

CLSID name: MUCatalogWebControl Class

Installer: C:\Windows\Downloaded Program Files\MicrosoftUpdateCatalogWebControl.inf

Codebase: http://catalog.update.microsoft.com/v7/sit...b?1214591254569

Path: C:\Windows\system32\

Long name: MicrosoftUpdateCatalogWebControl.dll

Short name: MICROS~1.DLL

Date (created): 31/07/2007 01:25:54

Date (last access): 31/07/2007 01:25:54

Date (last write): 31/07/2007 01:25:54

Filesize: 142696

Attributes: archive

MD5: 6F28C6D6022AD49B36ED3A9BA5368805

CRC32: 91F5EA19

Version: 7.0.6000.569

 

{6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)

DPF name:

CLSID name: WUWebControl Class

Installer: C:\Windows\Downloaded Program Files\wuweb.inf

Codebase: http://www.update.microsoft.com/windowsupd...b?1214591115543

description:

classification: Legitimate

known filename: wuweb.dll

info link:

info source: Safer Networking Ltd.

Path: C:\Windows\system32\

Long name: wuweb.dll

Short name:

Date (created): 30/07/2007 18:19:46

Date (last access): 30/07/2007 18:19:46

Date (last write): 30/07/2007 18:19:46

Filesize: 203096

Attributes: archive

MD5: FD984F9BFC9C62BD6546BD183CE5ADE7

CRC32: 8092F837

Version: 7.0.6000.381

 

{6B75345B-AA36-438A-BBE6-4078B4C6984D} (HpProductDetection Class)

DPF name:

CLSID name: HpProductDetection Class

Installer: C:\Windows\Downloaded Program Files\setup.inf

Codebase: http://h20270.www2.hp.com/ediags/gmn2/inst...ctDetection.cab

description:

classification: Legitimate

known filename: HPDeviceDetection.dll

info link:

info source: Safer Networking Ltd.

Path: C:\Program Files\HP\Common\

Long name: HPDeviceDetection.dll

Short name: HPDEVI~1.DLL

Date (created): 15/05/2008 15:04:46

Date (last access): 14/08/2008 18:12:26

Date (last write): 15/05/2008 15:04:46

Filesize: 581424

Attributes: archive

MD5: 22DBF5C41D952312E63E0D3D99A2EFA4

CRC32: DE644726

Version: 4.0.11.0

 

{88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0)

DPF name:

CLSID name: XML DOM Document 4.0

Installer: C:\Windows\Downloaded Program Files\msxml4.inf

Codebase: http://ipgweb.cce.hp.com/rdqemea/downloads/msxml4.cab

description:

classification: Legitimate

known filename:

info link:

info source: Safer Networking Ltd.

Path: c:\Windows\system32\

Long name: msxml4.dll

Short name:

Date (created): 24/08/2007 17:08:24

Date (last access): 29/05/2008 18:18:32

Date (last write): 24/08/2007 17:08:24

Filesize: 1275392

Attributes: archive

MD5: 2F4FD597D2B19CFCD7BB1AC00FC5D46F

CRC32: 0AD21A01

Version: 4.20.9849.0

 

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0)

DPF name: Java Runtime Environment 1.6.0

CLSID name: Java Plug-in 1.6.0_05

Installer:

Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab

description: Sun Java

classification: Legitimate

known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll

info link:

info source: Patrick M. Kolla

Path: C:\Program Files\Java\jre1.6.0_05\bin\

Long name: npjpi160_05.dll

Short name: NPJPI1~1.DLL

Date (created): 22/02/2008 01:33:32

Date (last access): 22/02/2008 01:33:32

Date (last write): 22/02/2008 03:25:20

Filesize: 132496

Attributes: archive

MD5: 4FDFB86D78994BD71CBB779A7809E9CD

CRC32: 5A0EB880

Version: 6.0.50.13

 

{8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ()

DPF name:

CLSID name:

Installer: C:\Windows\Downloaded Program Files\erma.inf

Codebase: http://fpdownload.macromedia.com/get/flash...t/ultrashim.cab

description:

classification: Open for discussion

known filename:

info link:

info source: Safer Networking Ltd.

 

{BA162249-F2C5-4851-8ADC-FC58CB424243} (Image Uploader Control)

DPF name:

CLSID name: Image Uploader Control

Installer: C:\Windows\Downloaded Program Files\ImageUploader5.inf

Codebase: http://copainsdavant.linternaute.com/html_...geUploader5.cab

Path: C:\Windows\Downloaded Program Files\

Long name: ImageUploader5.ocx

Short name: IMAGEU~1.OCX

Date (created): 30/12/2007 11:02:56

Date (last access): 30/12/2007 11:02:56

Date (last write): 30/12/2007 11:02:56

Filesize: 3008016

Attributes: archive

MD5: 422117D1277C55AC445C7E2D4F463920

CRC32: 3505FCE7

Version: 5.0.15.0

 

{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)

DPF name: Java Runtime Environment 1.6.0

CLSID name: Java Plug-in 1.6.0_01

Installer:

Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab

description:

classification: Legitimate

known filename: npjpi160_01.dll

info link:

info source: Safer Networking Ltd.

Path: C:\Program Files\Java\jre1.6.0_05\bin\

Long name: ssv.dll

Short name:

Date (created): 21/05/2008 19:10:16

Date (last access): 22/02/2008 01:33:32

Date (last write): 22/02/2008 03:25:20

Filesize: 509328

Attributes: archive

MD5: 5B42CB6A121256465B251840FDB1B2FE

CRC32: 6EF0BCE9

Version: 6.0.50.13

 

{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)

DPF name: Java Runtime Environment 1.6.0

CLSID name: Java Plug-in 1.6.0_04

Installer:

Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab

Path: C:\Program Files\Java\jre1.6.0_05\bin\

Long name: ssv.dll

Short name:

Date (created): 21/05/2008 19:10:16

Date (last access): 22/02/2008 01:33:32

Date (last write): 22/02/2008 03:25:20

Filesize: 509328

Attributes: archive

MD5: 5B42CB6A121256465B251840FDB1B2FE

CRC32: 6EF0BCE9

Version: 6.0.50.13

 

{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)

DPF name: Java Runtime Environment 1.6.0

CLSID name: Java Plug-in 1.6.0_05

Installer:

Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab

Path: C:\Program Files\Java\jre1.6.0_05\bin\

Long name: ssv.dll

Short name:

Date (created): 21/05/2008 19:10:16

Date (last access): 22/02/2008 01:33:32

Date (last write): 22/02/2008 03:25:20

Filesize: 509328

Attributes: archive

MD5: 5B42CB6A121256465B251840FDB1B2FE

CRC32: 6EF0BCE9

Version: 6.0.50.13

 

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0)

DPF name: Java Runtime Environment 1.6.0

CLSID name: Java Plug-in 1.6.0_05

Installer:

Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab

description:

classification: Legitimate

known filename: npjpi150_06.dll

info link:

info source: Safer Networking Ltd.

Path: C:\Program Files\Java\jre1.6.0_05\bin\

Long name: npjpi160_05.dll

Short name: NPJPI1~1.DLL

Date (created): 22/02/2008 01:33:32

Date (last access): 22/02/2008 01:33:32

Date (last write): 22/02/2008 03:25:20

Filesize: 132496

Attributes: archive

MD5: 4FDFB86D78994BD71CBB779A7809E9CD

CRC32: 5A0EB880

Version: 6.0.50.13

 

 

 

--- Process list ---

PID: 1872 (1116) C:\Windows\system32\Dwm.exe

size: 81920

MD5: 59903071D7ACE6A02093C47E9E38AF97

PID: 1948 (1860) C:\Windows\Explorer.EXE

size: 2927104

MD5: FFA764631CB70A30065C12EF8E174F9F

PID: 1376 (1128) C:\Windows\system32\taskeng.exe

size: 169472

MD5: 5F109032CE46B7184ED9E50F9FE8489E

PID: 2436 (1948) C:\Program Files\Windows Defender\MSASCui.exe

size: 1008184

MD5: 0D392EDE3B97E0B3131B2F63EF1DB94E

PID: 2492 (1948) C:\hp\support\hpsysdrv.exe

size: 65536

MD5: 9A4322EE420D6FACD4D4B1FF6CB856B1

PID: 2620 (2612) c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE

size: 49152

MD5: E681281D9BFC9D45D3B72532717E5880

PID: 2636 (1948) C:\Windows\RtHDVCpl.exe

size: 4874240

MD5: 361CD47DC5BD83EE24407903233B0D9A

PID: 2652 (1948) C:\Windows\System32\jureg.exe

size: 54672

MD5: E2137B1EB32E3C207D9AD096EB826463

PID: 2676 (2652) C:\Windows\system32\schtasks.exe

size: 151552

MD5: 1F171553F1138DC0062A71A7D275055A

PID: 2688 (1948) C:\Program Files\Alwil Software\Avast4\ashDisp.exe

size: 78008

MD5: 66893067C2FB0505F151D3FCB8EA92B5

PID: 2708 (1948) C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

size: 266497

MD5: 6E812818306D460D62B4ABEA9FDC6679

PID: 2784 (1948) C:\Program Files\Winamp\winampa.exe

size: 36352

MD5: E7DEADB409CD8A4552C91ABF624F138F

PID: 2796 (1948) C:\Program Files\Windows Sidebar\sidebar.exe

size: 1233920

MD5: FD278E51A7D6F52D22FCE6C67E037AD6

PID: 2956 (1948) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe

size: 1783136

MD5: 1245DA794B0D1E8F33F961C23E66A277

PID: 2984 (1948) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

size: 1833296

MD5: 63B3FF83B87AFCEBA89CED54695DA0F6

PID: 2992 (1948) C:\Windows\ehome\ehtray.exe

size: 125952

MD5: BF08674925F151BD4537B89A493E3E0C

PID: 3008 (1948) C:\Users\hp\AppData\Local\Google\Update\GoogleUpdate.exe

size: 133104

MD5: 626A24ED1228580B9518C01930936DF9

PID: 3024 (1948) C:\Program Files\Windows Media Player\wmpnscfg.exe

size: 202240

MD5: 35937EAD711207544E219C2A19A78A7D

PID: 3040 ( 844) C:\Windows\ehome\ehmsas.exe

size: 37376

MD5: 0F4195B9B348DE5CF9B822F81704B20E

PID: 2888 ( 844) C:\Windows\System32\mobsync.exe

size: 95744

MD5: 9B89B3BB79EA1ACF041F40A7B6FC5827

PID: 4348 (2620) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

size: 49152

MD5: 25CA1677AAA3CDC99CD4FCF940886F3C

PID: 4340 (2564) C:\hp\kbd\kbd.exe

size: 67128

MD5: 7CAC10A1C258DFCB5ADE563BAE6D2F15

PID: 3556 (1948) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe

size: 4891472

MD5: 3B1B5D09D3C9C4CD39D4DB06ED7A0855

PID: 1068 ( 528) C:\Program Files\Internet Explorer\ieuser.exe

size: 299520

MD5: 5B2E1C16A2C420F60CD391B666003F14

PID: 4988 ( 528) C:\Program Files\Internet Explorer\iexplore.exe

size: 625664

MD5: 5B92133D3E7FB2644677686305E29E81

PID: 3644 ( 844) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe

size: 118336

MD5: 7FA0AA2F3DABA5BEB2C4AC1EEC054EFA

PID: 0 ( 0) [system Process]

PID: 4 ( 0) System

PID: 452 ( 4) smss.exe

size: 64000

PID: 536 ( 524) csrss.exe

size: 6144

PID: 592 ( 524) wininit.exe

size: 96768

PID: 604 ( 584) csrss.exe

size: 6144

PID: 640 ( 592) services.exe

size: 279040

PID: 652 ( 592) lsass.exe

size: 9728

PID: 664 ( 592) lsm.exe

size: 229888

PID: 740 ( 584) winlogon.exe

size: 314880

PID: 844 ( 640) svchost.exe

size: 21504

PID: 908 ( 640) svchost.exe

size: 21504

PID: 980 ( 640) svchost.exe

size: 21504

PID: 1028 ( 640) Ati2evxx.exe

size: 610304

PID: 1080 ( 640) svchost.exe

size: 21504

PID: 1116 ( 640) svchost.exe

size: 21504

PID: 1128 ( 640) svchost.exe

size: 21504

PID: 1252 (1080) audiodg.exe

size: 88064

PID: 1288 ( 640) SLsvc.exe

size: 2623488

PID: 1344 ( 640) svchost.exe

size: 21504

PID: 1500 ( 640) svchost.exe

size: 21504

PID: 1700 (1028) Ati2evxx.exe

size: 610304

PID: 1744 ( 640) aswUpdSv.exe

PID: 1768 ( 640) ashServ.exe

PID: 1148 ( 640) spoolsv.exe

size: 125952

PID: 1452 ( 640) sched.exe

PID: 1572 ( 640) svchost.exe

size: 21504

PID: 2444 (1128) taskeng.exe

size: 169472

PID: 3228 ( 640) a2service.exe

PID: 3292 ( 640) avguard.exe

PID: 3316 ( 640) E_S30RP1.EXE

PID: 3348 ( 640) GoogleUpdaterService.exe

PID: 3448 ( 640) LSSrvc.exe

PID: 3524 ( 640) NBService.exe

PID: 3592 ( 640) svchost.exe

size: 21504

PID: 3604 ( 640) SolidPdfService.exe

PID: 3636 ( 640) svchost.exe

size: 21504

PID: 3672 ( 640) svchost.exe

size: 21504

PID: 3772 ( 640) SearchIndexer.exe

size: 439808

PID: 4032 (1116) WUDFHost.exe

size: 142336

PID: 2912 ( 640) ashMaiSv.exe

PID: 3200 ( 640) ashWebSv.exe

PID: 3988 ( 640) wmpnetwk.exe

PID: 4652 ( 640) PresentationFontCache.exe

PID: 2360 ( 640) HPHC_Service.exe

PID: 5324 (5148) C:\Program Files\Spyware Doctor\pctsTray.exe

size: 1166216

MD5: DB98920FABBE86FB1DC1457034D65748

PID: 4948 (1948) C:\Windows\System32\notepad.exe

size: 151040

MD5: DAF60E13E96ECB67F0EDAA89C6B01B8D

PID: 3280 ( 640) pctsAuxs.exe

PID: 5148 ( 640) pctsSvc.exe

PID: 5356 ( 640) infocard.exe

 

 

--- Browser start & search pages list ---

Spybot - Search & Destroy browser pages report, 28/10/2008 16:18:18

 

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page

C:\Windows\system32\blank.htm

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page

http://www.google.com

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar

http://www.google.com/ie

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page

http://www.google.fr/

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant

http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\CustomizeSearch

http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@

http://home.microsoft.com/access/autosearch.asp?p=%s

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page

%SystemRoot%\system32\blank.htm

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page

http://go.microsoft.com/fwlink/?LinkId=54896

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page

http://www.msn.com/

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL

http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL

http://go.microsoft.com/fwlink/?LinkId=54896

 

 

--- Winsock Layered Service Provider list ---

Namespace Provider 1: Fournisseur Shim d'affectation de noms de messagerie

GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}

Filename:

 

Namespace Provider 2: Fournisseur d'espace de noms du nuage PNRP

GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}

Filename:

 

Namespace Provider 3: Fournisseur d'espace de noms du nom PNRP

GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}

Filename:

 

 

 

--- Uninstall list ---

 

 

--- System Services ---

Service (registry key): .NET CLR Data

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): .NET CLR Networking

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): .NET Data Provider for Oracle

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): .NET Data Provider for SqlServer

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): .NETFramework

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): a2free

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: a-squared Free Service

Description: Scans the PC for unwanted software and provides protection from malicious code

Object name: LocalSystem

Image path: "C:\Program Files\a-squared Free\a2service.exe"

Image size: 418936

Image MD5: 163779706D018733E985DBB337BBF6B4

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

 

Service (registry key): ACPI

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote ACPI Microsoft

Image path: system32\drivers\acpi.sys

Image size: 266808

Image MD5: FCB8C7210F0135E24C6580F7F649C73C

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): Adobe LM Service

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Adobe LM Service

Description: Adobe LM Service

Object name: LocalSystem

Image path: "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"

Image size: 68096

Image MD5: D01DD9E6A7DFE540181147A38B13F43A

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): adp94xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adp94xx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): adpahci

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adpahci.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): adpu160m

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adpu160m.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): adpu320

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\adpu320.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): adsi

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): AeLookupSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\aelupsvc.dll,-1

Description: @%SystemRoot%\system32\aelupsvc.dll,-2

Object name: localSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): AFD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Ancilliary Function Driver for Winsock

Description: Ancilliary Function Driver for Winsock

Image path: \SystemRoot\system32\drivers\afd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): agp440

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Intel AGP Bus Filter

Image path: \SystemRoot\system32\drivers\agp440.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): aic78xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\djsvs.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): ALG

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\Alg.exe,-112

Description: @%SystemRoot%\system32\Alg.exe,-113

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\alg.exe

Image size: 59392

Image MD5: A1545B731579895D8CC44FC0481C1192

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): aliide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\aliide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): amdagp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AMD AGP Bus Filter Driver

Image path: \SystemRoot\system32\drivers\amdagp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): amdide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\amdide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): AmdK7

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AMD K7 Processor Driver

Image path: \SystemRoot\system32\drivers\amdk7.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): AmdK8

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: AMD K8 Processor Driver

Image path: \SystemRoot\system32\drivers\amdk8.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): AntiVirScheduler

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Avira AntiVir Personal – Free Antivirus Scheduler

Description: Service to schedule Avira AntiVir Personal – Free Antivirus jobs and updates.

Object name: LocalSystem

Image path: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe"

Image size: 68865

Image MD5: D6C8942BEA3698A2E7559BD423BFA5D7

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

 

Service (registry key): AntiVirService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Avira AntiVir Personal – Free Antivirus Guard

Description: Offers permanent protection against viruses and malware with the AntiVir search engine.

Object name: LocalSystem

Image path: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe"

Image size: 151297

Image MD5: 335A142923FE7F97E8C8388ACD067568

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

 

Service (registry key): Appinfo

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\appinfo.dll,-100

Description: @%systemroot%\system32\appinfo.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,ProfSvc

 

Service (registry key): arc

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\arc.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): arcsas

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\arcsas.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): Aspi32

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

 

Service (registry key): aswFsBlk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: aswFsBlk

Description: avast! mini-filter driver (aswFsBlk)

Image path: system32\DRIVERS\aswFsBlk.sys

Image size: 20560

Image MD5: 976E2AD5A62044629C2DE2CA8563722A

Control Set: CurrentControlSet

Start: 2

Type: 2

Error Control: 1

Depends On services: FltMgr

 

Service (registry key): aswMonFlt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: aswMonFlt

Description: avast! mini-filter driver (aswMonFlt)

Image path: system32\DRIVERS\aswMonFlt.sys

Image size: 51280

Image MD5: 5C3C0DA947798C99D8C094BF3DCC03A8

Control Set: CurrentControlSet

Start: 2

Type: 2

Error Control: 1

Depends On services: FltMgr

 

Service (registry key): aswRdr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: aswRdr

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: tcpip

 

Service (registry key): aswSP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avast! Self Protection

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): aswTdi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avast! Network Shield Support

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: tcpip

 

Service (registry key): aswUpdSv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avast! iAVS4 Control Service

Description: Fournit la mise à jour automatique pour l'antivirus avast!.

Object name: LocalSystem

Image path: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"

Image size: 16056

Image MD5: E2323AD197689D607EBC52137B4DFB2E

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

 

Service (registry key): AsyncMac

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de média asynchrone RAS

Description: Pilote de média asynchrone RAS

Image path: system32\DRIVERS\asyncmac.sys

Image size: 17408

Image MD5: 53B202ABEE6455406254444303E87BE1

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): atapi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Canal IDE

Image path: system32\drivers\atapi.sys

Image size: 21560

Image MD5: 2D9C903DC76A66813D350A562DE40ED9

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): Ati External Event Utility

Registry path: \SYSTEM\CurrentControlSet\Services\

Object name: LocalSystem

Image path: %SystemRoot%\system32\Ati2evxx.exe

Image size: 610304

Image MD5: A98B419C1537457C12C5D42317550079

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

 

Service (registry key): Atierecord

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): atikmdag

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\atikmdag.sys

Image size: 3151872

Image MD5: 63FC6A312BB0FBBBF355CB5D4A1C7764

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

 

Service (registry key): AudioEndpointBuilder

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\audiosrv.dll,-204

Description: @%SystemRoot%\System32\audiosrv.dll,-205

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: PlugPlay

 

Service (registry key): Audiosrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\audiosrv.dll,-200

Description: @%SystemRoot%\System32\audiosrv.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: AudioEndpointBuilder,RpcSs,MMCSS

 

Service (registry key): avast! Antivirus

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avast! Antivirus

Description: Gère et implémente les services de l'antivirus avast! pour cet ordinateur. Ceci inclut la protection résidente, la zone de quarantaine et le planificateur.

Object name: LocalSystem

Image path: "C:\Program Files\Alwil Software\Avast4\ashServ.exe"

Image size: 147640

Image MD5: 58E57D723BD437049F74408016E1735D

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

Depends On services: aswMonFlt,RpcSS

 

Service (registry key): avast! Mail Scanner

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avast! Mail Scanner

Description: Implémente l'analyse du courrier électronique pour l'antivirus avast!.

Object name: LocalSystem

Image path: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service

Image size: 250040

Image MD5: BCEA9A5EEF52351E1632DD417D3E7308

Control Set: CurrentControlSet

Start: 3

Type: 272

Error Control: 1

Depends On services: "avast! Antivirus"

 

Service (registry key): avast! Web Scanner

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avast! Web Scanner

Description: Implémente l'analyse du contenu web (HTTP) pour l'antivirus avast!.

Object name: LocalSystem

Image path: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service

Image size: 348344

Image MD5: B2203D1A09CAC8232780BFCF01A9B853

Control Set: CurrentControlSet

Start: 3

Type: 272

Error Control: 1

Depends On services: "avast! Antivirus"

 

Service (registry key): avgio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avgio

Image path: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: FltMgr

 

Service (registry key): avgntflt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avgntflt

Description: Avira AntiVir Personal – Free Antivirus mini-filter used for on-access scan to provide real-time antivirus security.

Image path: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: FltMgr

 

Service (registry key): avipbb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: avipbb

Description: Avira's Driver for RootKit Detection

Image path: system32\DRIVERS\avipbb.sys

Image size: 75072

Image MD5: C132C2F16A99C0EAD91C600BB81A31F0

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): BattC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): Beep

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Beep

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): BFE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\bfe.dll,-1001

Description: @%SystemRoot%\system32\bfe.dll,-1002

Object name: NT AUTHORITY\LocalService

Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): BITS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\qmgr.dll,-1000

Description: @%SystemRoot%\system32\qmgr.dll,-1001

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,EventSystem

 

Service (registry key): blbdrive

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\blbdrive.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): bowser

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Bowser

Description: Implements the datagram receiver for the computer browser browser service.

Image path: system32\DRIVERS\bowser.sys

Image size: 69632

Image MD5: 74B442B2BE1260B7588C136177CEAC66

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

 

Service (registry key): BrFiltLo

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother USB Mass-Storage Lower Filter Driver

Image path: \SystemRoot\system32\drivers\brfiltlo.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): BrFiltUp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother USB Mass-Storage Upper Filter Driver

Image path: \SystemRoot\system32\drivers\brfiltup.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Browser

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\browser.dll,-100

Description: @%systemroot%\system32\browser.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: LanmanWorkstation,LanmanServer

 

Service (registry key): Brserid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother MFC Serial Port Interface Driver (WDM)

Image path: \SystemRoot\system32\drivers\brserid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): BrSerWdm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother WDM Serial driver

Image path: \SystemRoot\system32\drivers\brserwdm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): BrUsbMdm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother MFC USB Fax Only Modem

Image path: \SystemRoot\system32\drivers\brusbmdm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): BrUsbSer

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Brother MFC USB Serial WDM Driver

Image path: \SystemRoot\system32\drivers\brusbser.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): BTHMODEM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Bluetooth Serial Communications Driver

Image path: \SystemRoot\system32\drivers\bthmodem.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): cdfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: CD/DVD File System Reader

Description: ISO9660/Joliet File System Reader for CD/DVDs. (Core) (All pieces)

Image path: system32\DRIVERS\cdfs.sys

Image size: 70144

Image MD5: 7ADD03E75BEB9E6DD102C3081D29840A

Control Set: CurrentControlSet

Start: 4

Type: 2

Error Control: 1

Depends On group: "SCSI CDROM Class"

 

Service (registry key): cdrom

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de CD-ROM

Image path: system32\DRIVERS\cdrom.sys

Image size: 67072

Image MD5: 1EC25CEA0DE6AC4718BF89F9E1778B57

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): CertPropSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\certprop.dll,-11

Description: @%SystemRoot%\System32\certprop.dll,-12

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): Cifp_umwpa

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): circlass

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Consumer IR Devices

Image path: \SystemRoot\system32\drivers\circlass.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): CLFS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Common Log (CLFS)

Description: Common Log (CLFS)

Image path: System32\CLFS.sys

Image size: 247352

Image MD5: 465745561C832B29F7C48B488AAB3842

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): clr_optimization_v2.0.50727_32

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft .NET Framework NGEN v2.0.50727_X86

Description: Microsoft .NET Framework NGEN

Object name: LocalSystem

Image path: %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

Image size: 70144

Image MD5: A4AF4201BD519971F8F34724F3CA9DBB

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

 

Service (registry key): cmdide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\cmdide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): Compbatt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Composite Battery Driver

Image path: \SystemRoot\system32\drivers\compbatt.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): COMSysApp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-947

Description: @comres.dll,-948

Object name: LocalSystem

Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}

Image size: 7168

Image MD5: BE01E566D1F569AAB32D0335613E1EEA

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RpcSs,EventSystem,SENS

 

Service (registry key): crcdisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Crcdisk Filter Driver

Image path: system32\drivers\crcdisk.sys

Image size: 22632

Image MD5: 2A213AE086BBEC5E937553C7D9A2B22C

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

 

Service (registry key): Crusoe

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Transmeta Crusoe Processor Driver

Image path: \SystemRoot\system32\drivers\crusoe.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): crypt32

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): CryptSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001

Description: @%SystemRoot%\system32\cryptsvc.dll,-1002

Object name: NT Authority\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): DCLocator

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): DcomLaunch

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @oleres.dll,-5012

Description: @oleres.dll,-5013

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): DfsC

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\drivers\dfsc.sys,-101

Description: @%systemroot%\system32\drivers\dfsc.sys,-102

Image path: System32\Drivers\dfsc.sys

Image size: 75264

Image MD5: 9E635AE5E8AD93E2B5989E2E23679F97

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

Depends On services: Mup

 

Service (registry key): DFSR

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @dfsrres.dll,-101

Description: @dfsrres.dll,-102

Object name: LocalSystem

Image path: %SystemRoot%\system32\DFSR.exe

Image size: 2091520

Image MD5: FA3463F25F9CC9C3BCF1E7912FEFF099

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RpcSs,EventSystem

 

Service (registry key): Dhcp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\dhcpcsvc.dll,-100

Description: @%SystemRoot%\system32\dhcpcsvc.dll,-101

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: NSI,Tdx,Afd

 

Service (registry key): disk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de disque

Image path: system32\drivers\disk.sys

Image size: 55352

Image MD5: 64109E623ABD6955C8FB110B592E68B7

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

 

Service (registry key): Dnscache

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\dnsapi.dll,-101

Description: @%SystemRoot%\System32\dnsapi.dll,-102

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Tdx

 

Service (registry key): dot3svc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\dot3svc.dll,-1102

Description: @%systemroot%\system32\dot3svc.dll,-1103

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,Ndisuio,Eaphost

 

Service (registry key): DPS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\dps.dll,-500

Description: @%systemroot%\system32\dps.dll,-501

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): drmkaud

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Filtre de décodeur DRM (Noyau Microsoft)

Image path: system32\drivers\drmkaud.sys

Image size: 5632

Image MD5: 97FEF831AB90BEE128C9AF390E243F80

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): DXGKrnl

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: LDDM Graphics Subsystem

Description: Controls the underlying video driver stacks to provide fully-featured display capabilities.

Image path: \SystemRoot\System32\drivers\dxgkrnl.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

 

Service (registry key): E1G60

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Intel® PRO/1000 NDIS 6 Adapter Driver

Image path: system32\DRIVERS\E1G60I32.sys

Image size: 117760

Image MD5: F88FB26547FD2CE6D0A5AF2985892C48

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): EapHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\eapsvc.dll,-1

Description: @%systemroot%\system32\eapsvc.dll,-2

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS,KeyIso

 

Service (registry key): Ecache

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ReadyBoost Caching Driver

Description: ReadyBoost Caching Driver

Image path: System32\drivers\ecache.sys

Image size: 143416

Image MD5: DD2CD259D83D8B72C02C5F2331FF9D68

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): ehRecvr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehrecvr.exe,-101

Description: @%SystemRoot%\ehome\ehrecvr.exe,-102

Object name: NT AUTHORITY\networkService

Image path: %systemroot%\ehome\ehRecvr.exe

Image size: 292352

Image MD5: 9BE3744D295A7701EB425332014F0797

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

Depends On services: RPCSS

 

Service (registry key): ehSched

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehsched.exe,-101

Description: @%SystemRoot%\ehome\ehsched.exe,-102

Object name: NT AUTHORITY\networkService

Image path: %systemroot%\ehome\ehsched.exe

Image size: 131072

Image MD5: AD1870C8E5D6DD340C829E6074BF3C3F

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

Depends On services: RPCSS

 

Service (registry key): ehstart

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehstart.dll,-101

Description: @%SystemRoot%\ehome\ehstart.dll,-102

Object name: NT AUTHORITY\LocalService

Image path: %windir%\system32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: RPCSS

 

Service (registry key): ElRawDisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ElRawDisk

Image path: \??\C:\Windows\system32\drivers\elrawdsk.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): elxstor

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\elxstor.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): EmdCache

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): EMDMgmt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\emdmgmt.dll,-1000

Description: @%SystemRoot%\system32\emdmgmt.dll,-1001

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: rpcss,ecache,slsvc,fileinfo

 

Service (registry key): EPSON_PM_RPCV4_01

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: EPSON V3 Service4(01)

Object name: LocalSystem

Image path: C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE

Image size: 102400

Image MD5: CDCA791AFA0483F44BBA576DBFAFD04D

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

 

Service (registry key): ESENT

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): Eventlog

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wevtsvc.dll,-200

Description: @%SystemRoot%\system32\wevtsvc.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): EventSystem

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-2450

Description: @comres.dll,-2451

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: rpcss

 

Service (registry key): exfat

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: exFAT File System Driver

Description: exFAT File System Driver

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

 

Service (registry key): fastfat

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: FAT12/16/32 File System Driver

Description: Note - dependance on CDROM.SYS only if required to read/write DVD-RAM media (which appears as CD class device). (Core) (All pieces)

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

 

Service (registry key): fdc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Floppy Disk Controller Driver

Image path: system32\DRIVERS\fdc.sys

Image size: 25088

Image MD5: 63BDADA84951B9C03E641800E176898A

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): fdPHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\fdPHost.dll,-100

Description: @%systemroot%\system32\fdPHost.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,http

 

Service (registry key): FDResPub

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\fdrespub.dll,-100

Description: @%systemroot%\system32\fdrespub.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,http

 

Service (registry key): FileInfo

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: File Information FS MiniFilter

Description: Collects information about files in memory to be consumed by other system services.

Image path: system32\drivers\fileinfo.sys

Image size: 58936

Image MD5: A8C0139A884861E3AAE9CFE73B208A9F

Control Set: CurrentControlSet

Start: 0

Type: 2

Error Control: 1

Depends On services: fltmgr

 

Service (registry key): Filetrace

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: FileTrace

Description: ETW File Trace Filter

Image path: system32\drivers\filetrace.sys

Image size: 27648

Image MD5: 0AE429A696AECBC5970E3CF2C62635AE

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: FltMgr

 

Service (registry key): flpydisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Floppy Disk Driver

Image path: system32\DRIVERS\flpydisk.sys

Image size: 20480

Image MD5: 6603957EFF5EC62D25075EA8AC27DE68

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): FltMgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: FltMgr

Description: File System Filter Manager Driver

Image path: system32\drivers\fltmgr.sys

Image size: 192056

Image MD5: 05EA53AFE985443011E36DAB07343B46

Control Set: CurrentControlSet

Start: 0

Type: 2

Error Control: 3

 

Service (registry key): FontCache3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309

Description: @%SystemRoot%\system32\PresentationHost.exe,-3310

Object name: NT Authority\LocalService

Image path: %systemroot%\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

Image size: 36864

Image MD5: 993883524AA9CF1C90E1545411A9AC9C

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): Fs_Rec

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 8

Error Control: 0

 

Service (registry key): gagp30kx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms

Image path: \SystemRoot\system32\drivers\gagp30kx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): GameConsoleService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: GameConsoleService

Description: GameConsole management services

Object name: LocalSystem

Image path: "C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe"

Image size: 165416

Image MD5: 617DC2877015270914CA3C03873560D5

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS,EVENTLOG

 

Service (registry key): gpsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @gpapi.dll,-112

Description: @gpapi.dll,-113

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,Mup

 

Service (registry key): gusvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Google Updater Service

Object name: LocalSystem

Image path: "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"

Image size: 168432

Image MD5: 34B56A3C195AEE6AE11001D277ACC83E

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 0

Depends On services: RPCSS

 

Service (registry key): HdAudAddService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio

Image path: system32\drivers\HdAudio.sys

Image size: 235520

Image MD5: CB04C744BE0A61B1D648FAED182C3B59

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): HDAudBus

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de bus UAA Microsoft pour High Definition Audio

Image path: system32\DRIVERS\HDAudBus.sys

Image size: 53760

Image MD5: C87B1EE051C0464491C1A7B03FA0BC99

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): HidBth

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Bluetooth HID Miniport

Image path: \SystemRoot\system32\drivers\hidbth.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

 

Service (registry key): HidIr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Infrared HID Driver

Image path: \SystemRoot\system32\drivers\hidir.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

 

Service (registry key): hidserv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\hidserv.dll,-101

Description: @%SystemRoot%\System32\hidserv.dll,-102

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): HidUsb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft HID Class Driver

Image path: \SystemRoot\system32\drivers\hidusb.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

 

Service (registry key): hkmsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\kmsvc.dll,-6

Description: @%SystemRoot%\system32\kmsvc.dll,-7

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): HP Health Check Service

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: HP Health Check Service

Description: HP Health Check Service

Object name: LocalSystem

Image path: "c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe"

Image size: 65536

Image MD5: 0D26C438E2938A3E6BDD91173BC96FF0

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

 

Service (registry key): HpCISSs

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\hpcisss.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): HTTP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: HTTP

Description: This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start.

Image path: system32\drivers\HTTP.sys

Image size: 401408

Image MD5: 406C027C18E98A396FAA1963DAD5FF70

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): i2omp

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\i2omp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): i8042prt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote pour clavier i8042 et souris sur port PS/2

Image path: system32\DRIVERS\i8042prt.sys

Image size: 54784

Image MD5: 22D56C8184586B7A1F6FA60BE5F5A2BD

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): iaStorV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Intel RAID Controller Vista

Image path: \SystemRoot\system32\drivers\iastorv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): idsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193

Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8192

Object name: LocalSystem

Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe"

Image size: 864256

Image MD5: E7CC3AEAED9893A88876744CD439F76C

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): iirsp

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\iirsp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): IKEEXT

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\ikeext.dll,-501

Description: @%SystemRoot%\system32\ikeext.dll,-502

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: BFE

 

Service (registry key): IKFileSec

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: File Security Driver

Image path: system32\drivers\ikfilesec.sys

Image size: 42376

Image MD5: BF1D66C139A4E9BE079D47FCFA993578

Control Set: CurrentControlSet

Start: 0

Type: 2

Error Control: 1

Depends On services: FltMgr

 

Service (registry key): IKSysFlt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: System Filter Driver

Image path: system32\drivers\iksysflt.sys

Image size: 66952

Image MD5: A90856D3FC565A0D0165574E51A6D088

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): IKSysSec

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: System Security Driver

Image path: system32\drivers\iksyssec.sys

Image size: 81288

Image MD5: 6EBDED50D6E19879BC3A86C36D3A0F9D

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: IKSysFlt

 

Service (registry key): inetaccs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): IntcAzAudAddService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Service for Realtek HD Audio (WDM)

Image path: system32\drivers\RTKVHDA.sys

Image size: 2047576

Image MD5: EDC37B918E583A5A813C53D4F5588255

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): intelide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\intelide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): intelppm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Intel Processor Driver

Image path: system32\DRIVERS\intelppm.sys

Image size: 39424

Image MD5: CE44CC04262F28216DD4341E9E36A16F

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): IPBusEnum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\IPBusEnum.dll,-102

Description: @%systemroot%\system32\IPBusEnum.dll,-103

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,fdPHost

 

Service (registry key): IpFilterDriver

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32013

Description: @%systemroot%\system32\rascfg.dll,-32013

Image path: system32\DRIVERS\ipfltdrv.sys

Image size: 47616

Image MD5: 62C265C38769B864CB25B4BCF62DF6C3

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

 

Service (registry key): iphlpsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\iphlpsvc.dll,-200

Description: @%SystemRoot%\system32\iphlpsvc.dll,-201

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi

 

Service (registry key): IpInIp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IP in IP Tunnel Driver

Description: IP in IP Tunnel Driver

Image path: system32\DRIVERS\ipinip.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

 

Service (registry key): IPMIDRV

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\ipmidrv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): IPNAT

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IP Network Address Translator

Description: IP Network Address Translator

Image path: system32\DRIVERS\ipnat.sys

Image size: 100864

Image MD5: 8793643A67B42CEC66490B2A0CF92D68

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

 

Service (registry key): IRENUM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IR Bus Enumerator

Description: IR Bus Enumerator

Image path: system32\drivers\irenum.sys

Image size: 13312

Image MD5: 109C0DFB82C3632FBD11949B73AEEAC9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

 

Service (registry key): isapnp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PnP ISA/EISA Bus Driver

Image path: \SystemRoot\system32\drivers\isapnp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): iScsiPrt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote iScsiPort

Image path: system32\DRIVERS\msiscsi.sys

Image size: 181304

Image MD5: F247EEC28317F6C739C16DE420097301

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): iteatapi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ITEATAPI_Service_Install

Image path: \SystemRoot\system32\drivers\iteatapi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): iteraid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ITERAID_Service_Install

Image path: \SystemRoot\system32\drivers\iteraid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): kbdclass

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de la classe Clavier

Image path: system32\DRIVERS\kbdclass.sys

Image size: 35384

Image MD5: 37605E0A8CF00CBBA538E753E4344C6E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): kbdhid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Keyboard HID Driver

Image path: \SystemRoot\system32\drivers\kbdhid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

 

Service (registry key): KeyIso

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @keyiso.dll,-100

Description: @keyiso.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): KSecDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\Drivers\ksecdd.sys

Image size: 441400

Image MD5: 5367DC846CAE9639B899BFD13B97A8C9

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): KtmRm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-2946

Description: @comres.dll,-2947

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,SamSS

 

Service (registry key): LanmanServer

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\srvsvc.dll,-100

Description: @%systemroot%\system32\srvsvc.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: SamSS,Srv

 

Service (registry key): LanmanWorkstation

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wkssvc.dll,-100

Description: @%systemroot%\system32\wkssvc.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Bowser,MRxSmb10,MRxSmb20,NSI

 

Service (registry key): ldap

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): LightScribeService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: LightScribeService Direct Disc Labeling Service

Description: Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work.

Object name: LocalSystem

Image path: "c:\Program Files\Common Files\LightScribe\LSSrvc.exe"

Image size: 79136

Image MD5: 75AC54B996F7C8E17594EBC32B6614BD

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 0

 

Service (registry key): lltdio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote d’E/S du mappage de découverte de topologie de la couche de liaison

Image path: system32\DRIVERS\lltdio.sys

Image size: 47104

Image MD5: D1C5883087A0C3F1344D9D55A44901F6

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

 

Service (registry key): lltdsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\lltdres.dll,-1

Description: @%SystemRoot%\system32\lltdres.dll,-2

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: rpcss,lltdio

 

Service (registry key): lmhosts

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\lmhsvc.dll,-101

Description: @%SystemRoot%\system32\lmhsvc.dll,-102

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: NetBT,Afd

 

Service (registry key): Lsa

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): LSI_FC

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\lsi_fc.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): LSI_SAS

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\lsi_sas.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): LSI_SCSI

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\lsi_scsi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): luafv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: UAC File Virtualization

Description: Virtualizes file write failures to per-user locations.

Image path: \SystemRoot\system32\drivers\luafv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 2

Type: 2

Error Control: 1

Depends On services: FltMgr

 

Service (registry key): Mcx2Svc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\ehome\ehres.dll,-15501

Description: @%SystemRoot%\ehome\ehres.dll,-15502

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 4

Type: 32

Error Control: 1

Depends On services: SSDPSRV,IPBusEnum,TermService,fdphost

 

Service (registry key): megasas

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\megasas.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): Messenger

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): MMCSS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\mmcss.dll,-100

Description: @%systemroot%\system32\mmcss.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): Modem

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\drivers\modem.sys

Image size: 31744

Image MD5: E13B5EA0F51BA5B1512EC671393D09BA

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

 

Service (registry key): monitor

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Service Pilote de fonction de classe Moniteur Microsoft

Image path: system32\DRIVERS\monitor.sys

Image size: 41984

Image MD5: 0A9BB33B56E294F686ABB7C1E4E2D8A8

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): mouclass

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de la classe Souris

Image path: system32\DRIVERS\mouclass.sys

Image size: 34360

Image MD5: 5BF6A1326A335C5298477754A506D263

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): mouhid

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Mouse HID Driver

Image path: \SystemRoot\system32\drivers\mouhid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

 

Service (registry key): MountMgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Mount Point Manager

Description: Driver responsible with maintaining persistent drive letters and names for volumes

Image path: System32\drivers\mountmgr.sys

Image size: 57400

Image MD5: BDAFC88AA6B92F7842416EA6A48E1600

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): mpio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Multi-Path Bus Driver

Image path: \SystemRoot\system32\drivers\mpio.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): mpsdrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23092

Description: @%SystemRoot%\system32\FirewallAPI.dll,-23093

Image path: System32\drivers\mpsdrv.sys

Image size: 64000

Image MD5: 22241FEBA9B2DEFA669C8CB0A8DD7D2E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): MpsSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090

Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: mpsdrv,bfe

 

Service (registry key): Mraid35x

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\mraid35x.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): MRxDAV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: WebDav Client Redirector Driver

Description: WebDav Client Redirector Driver

Image path: \SystemRoot\system32\drivers\mrxdav.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: rdbss

 

Service (registry key): mrxsmb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SMB MiniRedirector Wrapper and Engine

Description: Implements the framework for the SMB filesystem redirector

Image path: system32\DRIVERS\mrxsmb.sys

Image size: 105472

Image MD5: C4AD205530888404E2B5FC8D9319B119

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: rdbss

 

Service (registry key): mrxsmb10

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SMB 1.x MiniRedirector

Description: Implements the SMB 1.x (CIFS) protocol. This protocol provides connectivity to network resources on pre-Windows Vista servers

Image path: system32\DRIVERS\mrxsmb10.sys

Image size: 211968

Image MD5: 7F14576D4F7B1930F951FE585201BBA4

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: mrxsmb

 

Service (registry key): mrxsmb20

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SMB 2.0 MiniRedirector

Description: Implements the SMB 2.0 protocol, which provides connectivity to network resources on Windows Vista and later servers

Image path: system32\DRIVERS\mrxsmb20.sys

Image size: 78848

Image MD5: 3268B8C3FA92BFC086355C39B45E9CC9

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: mrxsmb

 

Service (registry key): msahci

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\msahci.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): msdsm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Multi-Path Device Specific Module

Image path: \SystemRoot\system32\drivers\msdsm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): MSDTC

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @comres.dll,-2797

Description: @comres.dll,-2798

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\msdtc.exe

Image size: 105984

Image MD5: FD7520CC3A80C5FC8C48852BB24C6DED

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS,SamSS

 

Service (registry key): MSDTC Bridge 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): Msfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

 

Service (registry key): msisadrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de classe ISA/EISA

Image path: system32\drivers\msisadrv.sys

Image size: 16440

Image MD5: 0F400E306F385C56317357D6DEA56F62

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): MSiSCSI

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000

Description: @%SystemRoot%\system32\iscsidsc.dll,-5001

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): msiserver

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\msimsg.dll,-27

Description: @%SystemRoot%\system32\msimsg.dll,-32

Object name: LocalSystem

Image path: %systemroot%\system32\msiexec /V

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: rpcss

 

Service (registry key): MSKSSRV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Proxy de service de répartition Microsoft

Image path: system32\drivers\MSKSSRV.sys

Image size: 8192

Image MD5: D8C63D34D9C9E56C059E24EC7185CC07

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): MSPCLOCK

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Proxy d'horloge de répartition Microsoft

Image path: system32\drivers\MSPCLOCK.sys

Image size: 5888

Image MD5: 1D373C90D62DDB641D50E55B9E78D65E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): MSPQM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Proxy de gestion de qualité de répartition Microsoft

Image path: system32\drivers\MSPQM.sys

Image size: 5504

Image MD5: B572DA05BF4E098D4BBA3A4734FB505B

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): MsRPC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): MSSCNTRS

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): mssmbios

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote BIOS de gestion de systèmes Microsoft

Image path: system32\DRIVERS\mssmbios.sys

Image size: 31288

Image MD5: E384487CB84BE41D09711C30CA79646C

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): MSTEE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Convertisseur en T/site-à-site de répartition Microsoft

Image path: system32\drivers\MSTEE.sys

Image size: 6016

Image MD5: 7199C1EEC1E4993CAF96B8C0A26BD58A

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Mup

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Mup

Description: Multiple UNC Provider

Image path: System32\Drivers\mup.sys

Image size: 49720

Image MD5: 6DFD1D322DE55B0B7DB7D21B90BEC49C

Control Set: CurrentControlSet

Start: 0

Type: 2

Error Control: 1

 

Service (registry key): napagent

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\qagentrt.dll,-6

Description: @%SystemRoot%\system32\qagentrt.dll,-7

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): NativeWifiP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Filtre NativeWiFi

Image path: system32\DRIVERS\nwifi.sys

Image size: 148480

Image MD5: 3C21CE48FF529BB73DADB98770B54025

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): NDIS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NDIS System Driver

Description: NDIS System Driver

Image path: system32\drivers\ndis.sys

Image size: 529464

Image MD5: 9BDC71790FA08F0A0B5F10462B1BD0B1

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): NdisTapi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32001

Description: @%systemroot%\system32\rascfg.dll,-32001

Image path: system32\DRIVERS\ndistapi.sys

Image size: 20992

Image MD5: 0E186E90404980569FB449BA7519AE61

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Ndisuio

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NDIS mode utilisateur E/S Protocole

Image path: system32\DRIVERS\ndisuio.sys

Image size: 16896

Image MD5: D6973AA34C4D5D76C0430B181C3CD389

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): NdisWan

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32002

Description: @%systemroot%\system32\rascfg.dll,-32002

Image path: system32\DRIVERS\ndiswan.sys

Image size: 121344

Image MD5: 3D14C3B3496F88890D431E8AA022A411

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): NDProxy

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Nero BackItUp Scheduler 3

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Nero BackItUp Scheduler 3

Description: Nero BackItUp Scheduler 3 is responsible to control all jobs created using Nero BackItUp 3. These jobs can create backups of selected files/folders/partitions or complete hard disk to hard disk, network drive, disc or FTP.

Object name: LocalSystem

Image path: C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

Image size: 869672

Image MD5: C5052FB77AA42ED440F9F6B4E37145A9

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): NetBIOS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NetBIOS Interface

Description: NetBIOS Interface

Image path: system32\DRIVERS\netbios.sys

Image size: 35840

Image MD5: BCD093A5A6777CF626434568DC7DBA78

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

 

Service (registry key): netbt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NETBT

Description: This service implements NetBios over TCP/IP.

Image path: System32\DRIVERS\netbt.sys

Image size: 184320

Image MD5: 7C5FEE5B1C5728507CD96FB4A13E7A02

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: Tdx,tcpip

 

Service (registry key): Netlogon

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\netlogon.dll,-102

Description: @%SystemRoot%\System32\netlogon.dll,-103

Object name: LocalSystem

Image path: %systemroot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: LanmanWorkstation

 

Service (registry key): Netman

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\netman.dll,-109

Description: @%SystemRoot%\system32\netman.dll,-110

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs,nsi

 

Service (registry key): netprofm

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\netprof.dll,-246

Description: @%SystemRoot%\system32\netprof.dll,-247

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,nlasvc

 

Service (registry key): NetTcpPortSharing

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201

Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8200

Object name: NT AUTHORITY\LocalService

Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe"

Image size: 122880

Image MD5: F9102685F97F9BA85F4A70AFCF722CFE

Control Set: CurrentControlSet

Start: 4

Type: 32

Error Control: 1

 

Service (registry key): nfrd960

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\nfrd960.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): NlaSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\nlasvc.dll,-1

Description: @%SystemRoot%\System32\nlasvc.dll,-2

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: NSI,RpcSs,TcpIp

 

Service (registry key): NMIndexingService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NMIndexingService

Object name: LocalSystem

Image path: "C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe"

Image size: 447784

Image MD5: 74149BCF0307BB76D68C0F8912DF731C

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): Npfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

 

Service (registry key): nsi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\nsisvc.dll,-200

Description: @%SystemRoot%\system32\nsisvc.dll,-201

Object name: NT Authority\LocalService

Image path: %systemroot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: nsiproxy

 

Service (registry key): nsiproxy

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NSI proxy service

Description: NSI proxy service

Image path: system32\drivers\nsiproxy.sys

Image size: 16384

Image MD5: 609773E344A97410CE4EBF74A8914FCF

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): NTDS

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): Ntfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

 

Service (registry key): ntrigdigi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: N-trig HID Tablet Driver

Image path: \SystemRoot\system32\drivers\ntrigdigi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): Null

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): NVENETFD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NVIDIA nForce Networking Controller Driver

Image path: system32\DRIVERS\nvmfdx32.sys

Image size: 1035168

Image MD5: B896FB556B4DC1E1D2943559EA79C5C5

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): nvraid

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\nvraid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): nvstor

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\nvstor.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): nvstor32

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\nvstor32.sys

Image size: 110624

Image MD5: 63B7838E9C272BAAA7B33A0CA4EBB748

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): nv_agp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: NVIDIA nForce AGP Bus Filter

Image path: \SystemRoot\system32\drivers\nv_agp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): NwlnkFlt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IPX Traffic Filter Driver

Description: IPX Traffic Filter Driver

Image path: system32\DRIVERS\nwlnkflt.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: NwlnkFwd

 

Service (registry key): NwlnkFwd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: IPX Traffic Forwarder Driver

Description: IPX Traffic Forwarder Driver

Image path: system32\DRIVERS\nwlnkfwd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): ohci1394

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Contrôleur hôte compatible IEE 1394 VIA OHCI

Image path: system32\DRIVERS\ohci1394.sys

Image size: 61952

Image MD5: 790E27C3DB53410B40FF9EF2FD10A1D9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): p2pimsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8004

Description: @%SystemRoot%\system32\p2psvc.dll,-8005

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): p2psvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8006

Description: @%SystemRoot%\system32\p2psvc.dll,-8007

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: p2pimsvc,PNRPSvc

 

Service (registry key): Parport

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Parallel port driver

Image path: \SystemRoot\system32\drivers\parport.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): partmgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Partition Manager

Description: Disk class filter driver that auctions out partitions to volume managers

Image path: System32\drivers\partmgr.sys

Image size: 56376

Image MD5: 3B38467E7C3DAED009DFE359E17F139F

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): Parvdm

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\parvdm.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 0

Depends On services: Parport

Depends On group: "Parallel arbitrator"

 

Service (registry key): PcaSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\pcasvc.dll,-1

Description: @%SystemRoot%\system32\pcasvc.dll,-2

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): pci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de bus PCI

Image path: system32\drivers\pci.sys

Image size: 151096

Image MD5: 01B94418DEB235DFF777CC80076354B4

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): pciide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\drivers\pciide.sys

Image size: 16440

Image MD5: FC175F5DDAB666D7F4D17449A547626F

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): pcmcia

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\pcmcia.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): pcouffin

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: VSO Software pcouffin

Image path: System32\Drivers\pcouffin.sys

Image size: 47360

Image MD5: 5B6C11DE7E839C05248CED8825470FEF

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): PEAUTH

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PEAUTH

Image path: system32\drivers\peauth.sys

Image size: 878080

Image MD5: 6349F6ED9C623B44B52EA3C63C831A92

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

 

Service (registry key): PerfDisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): PerfNet

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): PerfOS

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): PerfProc

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): pla

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\pla.dll,-500

Description: @%systemroot%\system32\pla.dll,-501

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): PlugPlay

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\umpnpmgr.dll,-100

Description: @%SystemRoot%\system32\umpnpmgr.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): PNRPAutoReg

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8002

Description: @%SystemRoot%\system32\p2psvc.dll,-8003

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: pnrpsvc

 

Service (registry key): PNRPsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\p2psvc.dll,-8000

Description: @%SystemRoot%\system32\p2psvc.dll,-8001

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: p2pimsvc

 

Service (registry key): PolicyAgent

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\polstore.dll,-5010

Description: @%SystemRoot%\system32\polstore.dll,-5011

Object name: NT Authority\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Tcpip,bfe

 

Service (registry key): PortProxy

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): PptpMiniport

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Miniport réseau étendu WAN (PPTP)

Description: Miniport réseau étendu WAN (PPTP)

Image path: system32\DRIVERS\raspptp.sys

Image size: 62976

Image MD5: ECFFFAEC0C1ECD8DBC77F39070EA1DB1

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Processor

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote processeur

Image path: system32\DRIVERS\processr.sys

Image size: 40960

Image MD5: 2027293619DD0F047C584CF2E7DF4FFD

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): ProfSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\profsvc.dll,-300

Description: @%systemroot%\system32\profsvc.dll,-301

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): ProtectedStorage

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\psbase.dll,-300

Description: @%systemroot%\system32\psbase.dll,-301

Object name: LocalSystem

Image path: %SystemRoot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): Ps2

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PS2

Image path: system32\DRIVERS\PS2.sys

Image size: 19072

Image MD5: 390C204CED3785609AB24E9C52054A84

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): PSched

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\drivers\pacer.sys,-101

Description: @%SystemRoot%\System32\drivers\pacer.sys,-101

Image path: system32\DRIVERS\pacer.sys

Image size: 72192

Image MD5: BFEF604508A0ED1EAE2A73E872555FFB

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): ql2300

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: QLogic Fibre Channel Miniport Driver

Image path: \SystemRoot\system32\drivers\ql2300.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): ql40xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: QLogic iSCSI Miniport Driver

Image path: \SystemRoot\system32\drivers\ql40xx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): QWAVE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\qwave.dll,-1

Description: @%SystemRoot%\system32\qwave.dll,-2

Object name: NT AUTHORITY\LocalService

Image path: %windir%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: rpcss,psched,QWAVEdrv,LLTDIO

 

Service (registry key): QWAVEdrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\drivers\qwavedrv.sys,-1

Description: @%SystemRoot%\system32\drivers\qwavedrv.sys,-2

Image path: \SystemRoot\system32\drivers\qwavedrv.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): RasAcd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Remote Access Auto Connection Driver

Description: Remote Access Auto Connection Driver

Image path: System32\DRIVERS\rasacd.sys

Image size: 11776

Image MD5: 147D7F9C556D259924351FEB0DE606C3

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): RasAuto

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\rasauto.dll,-200

Description: @%Systemroot%\system32\rasauto.dll,-201

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RasMan,Tapisrv

 

Service (registry key): Rasl2tp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Miniport réseau étendu WAN (L2TP)

Description: Miniport réseau étendu WAN (L2TP)

Image path: system32\DRIVERS\rasl2tp.sys

Image size: 76288

Image MD5: A214ADBAF4CB47DD2728859EF31F26B0

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): RasMan

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\rasmans.dll,-200

Description: @%Systemroot%\system32\rasmans.dll,-201

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: Tapisrv,SstpSvc

 

Service (registry key): RasPppoe

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\rascfg.dll,-32007

Description: @%systemroot%\system32\rascfg.dll,-32007

Image path: system32\DRIVERS\raspppoe.sys

Image size: 41472

Image MD5: 3E9D9B048107B40D87B97DF2E48E0744

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): RasSstp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\sstpsvc.dll,-202

Description: @%systemroot%\system32\sstpsvc.dll,-202

Image path: system32\DRIVERS\rassstp.sys

Image size: 69120

Image MD5: A7D141684E9500AC928A772ED8E6B671

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): rdbss

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Redirected Buffering Sub Sysytem

Description: Provides the framework for network mini-redirectors

Image path: system32\DRIVERS\rdbss.sys

Image size: 224768

Image MD5: 6E1C5D0457622F9EE35F683110E93D14

Control Set: CurrentControlSet

Start: 1

Type: 2

Error Control: 1

Depends On services: Mup

 

Service (registry key): RDPCDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: RDPCDD

Description: RDPDD Chained DD

Image path: System32\DRIVERS\RDPCDD.sys

Image size: 6144

Image MD5: 89E59BE9A564262A3FB6C4F4F1CD9899

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

 

Service (registry key): RDPDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): rdpdr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Terminal Server Device Redirector Driver

Image path: \SystemRoot\system32\drivers\rdpdr.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): RDPENCDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: RDP Encoder Mirror Driver

Description: RDP Encoder Mirror Driver

Image path: system32\drivers\rdpencdd.sys

Image size: 6144

Image MD5: 9D91FE5286F748862ECFFA05F8A0710C

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

 

Service (registry key): RDPNP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\drprov.dll,-100

Description: @%systemroot%\system32\drprov.dll,-101

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): RDPWD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: RDP Winstation Driver

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

 

Service (registry key): RemoteAccess

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\mprdim.dll,-200

Description: @%Systemroot%\system32\mprdim.dll,-201

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 4

Type: 32

Error Control: 1

Depends On services: RpcSS,RasMan,bfe

Depends On group: NetBIOSGroup

 

Service (registry key): RemoteRegistry

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @regsvc.dll,-1

Description: @regsvc.dll,-2

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k regsvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): RpcLocator

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\Locator.exe,-2

Description: @%systemroot%\system32\Locator.exe,-3

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\locator.exe

Image size: 7680

Image MD5: 5123F83CBC4349D065534EEB6BBDC42B

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): RpcSs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @oleres.dll,-5010

Description: @oleres.dll,-5011

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k rpcss

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: DcomLaunch

 

Service (registry key): rspndr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Répondeur de découverte de topologie de la couche de liaison

Image path: system32\DRIVERS\rspndr.sys

Image size: 60416

Image MD5: 9C508F4074A39E8B4B31D27198146FAD

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

 

Service (registry key): SamSs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\samsrv.dll,-1

Description: @%SystemRoot%\system32\samsrv.dll,-2

Object name: LocalSystem

Image path: %SystemRoot%\system32\lsass.exe

Image size: 9728

Image MD5: DCF733788C7D088D814E5F80EB4B3E0F

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): sbp2port

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SBP-2 Transport/Protocol Bus Driver

Image path: \SystemRoot\system32\drivers\sbp2port.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): SBSDWSCService

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

Depends On services: wscsvc

 

Service (registry key): SCardSvr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\SCardSvr.dll,-1

Description: @%SystemRoot%\System32\SCardSvr.dll,-5

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: PlugPlay

 

Service (registry key): Schedule

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\schedsvc.dll,-100

Description: @%SystemRoot%\system32\schedsvc.dll,-101

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,EventLog

 

Service (registry key): SCPolicySvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\certprop.dll,-13

Description: @%SystemRoot%\System32\certprop.dll,-14

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): ScReadSpool

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SolidPDFConverterReadSpool

Description: Solid PDF Converter Read Spool

Object name: LocalSystem

Image path: C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe

Image size: 69632

Image MD5: 003EE6F643B8336837150B4E28D2531B

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

 

Service (registry key): sdAuxService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PC Tools Auxiliary Service

Description: Fournit à PC Tools des services de sécurité auxiliaires. Si ce service est désactivé, la protection contre les logiciels espions sera réduite.

Object name: LocalSystem

Image path: C:\Program Files\Spyware Doctor\pctsAuxs.exe

Image size: 356920

Image MD5: CCAA27BAEB46B6369269847BA7D3C011

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

 

Service (registry key): sdCoreService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: PC Tools Security Service

Description: Protège l'ordinateur contre les logiciels malveillants et les logiciels espions. Si ce service est désactivé, la protection contre les logiciels espions sera désactivée.

Object name: LocalSystem

Image path: C:\Program Files\Spyware Doctor\pctsSvc.exe

Image size: 1073544

Image MD5: 7566D4903C31027668767C29320977A0

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

 

Service (registry key): SDRSVC

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\sdrsvc.dll,-107

Description: @%SystemRoot%\system32\sdrsvc.dll,-102

Object name: localSystem

Image path: %SystemRoot%\system32\svchost.exe -k SDRSVC

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): seclogon

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\seclogon.dll,-7001

Description: @%SystemRoot%\system32\seclogon.dll,-7000

Object name: LocalSystem

Image path: %windir%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): SENS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\Sens.dll,-200

Description: @%SystemRoot%\system32\Sens.dll,-201

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: EventSystem

 

Service (registry key): Serenum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Serenum Filter Driver

Image path: \SystemRoot\system32\drivers\serenum.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Serial

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Serial Port Driver

Image path: \SystemRoot\system32\drivers\serial.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 0

 

Service (registry key): sermouse

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Serial Mouse Driver

Image path: \SystemRoot\system32\drivers\sermouse.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): ServiceModelEndpoint 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): ServiceModelOperation 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): ServiceModelService 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): SessionEnv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\SessEnv.dll,-1026

Description: @%SystemRoot%\System32\SessEnv.dll,-1027

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS,LanmanWorkstation

 

Service (registry key): sffdisk

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SFF Storage Class Driver

Image path: \SystemRoot\system32\drivers\sffdisk.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): sffp_mmc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SFF Storage Protocol Driver for MMC

Image path: \SystemRoot\system32\drivers\sffp_mmc.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): sffp_sd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SFF Storage Protocol Driver for SDBus

Image path: \SystemRoot\system32\drivers\sffp_sd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): sfloppy

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: High-Capacity Floppy Disk Drive

Image path: \SystemRoot\system32\drivers\sfloppy.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): SharedAccess

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\ipnathlp.dll,-106

Description: @%SystemRoot%\system32\ipnathlp.dll,-107

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 4

Type: 32

Error Control: 1

Depends On services: Netman,WinMgmt,RasMan,BFE

 

Service (registry key): ShellHWDetection

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\shsvcs.dll,-12288

Description: @%SystemRoot%\System32\shsvcs.dll,-12289

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: RpcSs

 

Service (registry key): SIS163u

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SiS163 usb Wireless LAN Adapter Driver

Image path: system32\DRIVERS\sis163u.sys

Image size: 215040

Image MD5: 4EDC881C138E778FEB9BD24CBC6B33ED

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): sisagp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: SIS AGP Bus Filter

Image path: \SystemRoot\system32\drivers\sisagp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): SiSRaid2

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sisraid2.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): SiSRaid4

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sisraid4.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): slsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\SLsvc.exe,-101

Description: @%SystemRoot%\system32\SLsvc.exe,-100

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\SLsvc.exe

Image size: 2623488

Image MD5: 0BA91E1358AD25236863039BB2609A2E

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): SLUINotify

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\SLUINotify.dll,-103

Description: @%SystemRoot%\system32\SLUINotify.dll,-102

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: SLSvc,netprofm,EventSystem

 

Service (registry key): Smb

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50005

Description: @%SystemRoot%\system32\tcpipcfg.dll,-50006

Image path: system32\DRIVERS\smb.sys

Image size: 66560

Image MD5: 031E6BCD53C9B2B9ACE111EAFEC347B6

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: Tcpip

 

Service (registry key): SMSvcHost 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): SNMPTRAP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\snmptrap.exe,-3

Description: @%SystemRoot%\system32\snmptrap.exe,-4

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\snmptrap.exe

Image size: 12800

Image MD5: 2A146A055B4401C16EE62D18B8E2A032

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): spldr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Security Processor Loader Driver

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): Spooler

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\spoolsv.exe,-1

Description: @%systemroot%\system32\spoolsv.exe,-2

Object name: LocalSystem

Image path: %SystemRoot%\System32\spoolsv.exe

Image size: 125952

Image MD5: 846CDF9A3CF4DA9B306ADFB7D55EE4C2

Control Set: CurrentControlSet

Start: 2

Type: 272

Error Control: 1

Depends On services: RPCSS,http

 

Service (registry key): sptd

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\Drivers\sptd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

 

Service (registry key): srv

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\DRIVERS\srv.sys

Image size: 288768

Image MD5: CE5E5D07BCDA842D3F417A8333F91440

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: srv2

 

Service (registry key): srv2

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: srv2

Description: Default SDDL for Windows Resource Protected file

Image path: System32\DRIVERS\srv2.sys

Image size: 144384

Image MD5: 805FAC010405AD3F82EF8DF0BB035D81

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

Depends On services: srvnet

 

Service (registry key): srvnet

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: System32\DRIVERS\srvnet.sys

Image size: 98304

Image MD5: F63A0A58AAFE34D7A1A0A74ABCCDD9C0

Control Set: CurrentControlSet

Start: 3

Type: 2

Error Control: 1

 

Service (registry key): SSDPSRV

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\ssdpsrv.dll,-100

Description: @%systemroot%\system32\ssdpsrv.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: HTTP

 

Service (registry key): ssmdrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: ssmdrv

Description: Avira Snapshot Driver

Image path: system32\DRIVERS\ssmdrv.sys

Image size: 28352

Image MD5: 3D2829FDE1C52FC64DA5413889CE4DEE

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): SstpSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\sstpsvc.dll,-200

Description: @%SystemRoot%\system32\sstpsvc.dll,-201

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): stisvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wiaservc.dll,-9

Description: @%SystemRoot%\system32\wiaservc.dll,-10

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k imgsvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RpcSs,ShellHWDetection

 

Service (registry key): swenum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de bus logiciel

Image path: system32\DRIVERS\swenum.sys

Image size: 15288

Image MD5: 7BA58ECF0C0A9A69D44B3DCA62BECF56

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): swprv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\swprv.dll,-103

Description: @%SystemRoot%\System32\swprv.dll,-102

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k swprv

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): Symc8xx

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\symc8xx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): SymIM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Symantec Network Security Intermediate Filter Service

Image path: system32\DRIVERS\SymIM.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): SymIMMP

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\SymIM.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Sym_hi

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sym_hi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): Sym_u3

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\sym_u3.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): SysMain

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\sysmain.dll,-1000

Description: @%SystemRoot%\system32\sysmain.dll,-1001

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: rpcss,fileinfo

 

Service (registry key): TabletInputService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\TabSvc.dll,-100

Description: @%SystemRoot%\system32\TabSvc.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: PlugPlay,RpcSs

 

Service (registry key): TapiSrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tapisrv.dll,-10100

Description: @%SystemRoot%\system32\tapisrv.dll,-10101

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: PlugPlay,RpcSs

 

Service (registry key): TBS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tbssvc.dll,-100

Description: @%SystemRoot%\system32\tbssvc.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): Tcpip

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50003

Description: @%SystemRoot%\system32\tcpipcfg.dll,-50003

Image path: System32\drivers\tcpip.sys

Image size: 891448

Image MD5: 82E266BEE5F0167E41C6ECFDD2A79C02

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

 

Service (registry key): Tcpip6

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de protocole IPv6 Microsoft

Description: Pilote de protocole IPv6 Microsoft

Image path: system32\DRIVERS\tcpip.sys

Image size: 891448

Image MD5: 82E266BEE5F0167E41C6ECFDD2A79C02

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

Depends On services: Tcpip

 

Service (registry key): tcpipreg

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: TCP/IP Registry Compatibility

Description: Provides compatibility for legacy applications which interact with TCP/IP through the registry. If this service is stopped, certain applications may have impaired functionality.

Image path: System32\drivers\tcpipreg.sys

Image size: 30208

Image MD5: D4A2E4A4B011F3A883AF77315A5AE76B

Control Set: CurrentControlSet

Start: 2

Type: 1

Error Control: 1

Depends On services: tcpip

 

Service (registry key): TDPIPE

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: TDPIPE

Image path: system32\drivers\tdpipe.sys

Image size: 17920

Image MD5: 5DCF5E267BE67A1AE926F2DF77FBCC56

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): TDTCP

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: TDTCP

Image path: system32\drivers\tdtcp.sys

Image size: 29184

Image MD5: 389C63E32B3CEFED425B61ED92D3F021

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): tdx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50004

Description: @%SystemRoot%\system32\tcpipcfg.dll,-50004

Image path: system32\DRIVERS\tdx.sys

Image size: 71680

Image MD5: D09276B1FAB033CE1D40DCBDF303D10F

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

Depends On services: Tcpip

 

Service (registry key): TermDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de périphérique terminal

Image path: system32\DRIVERS\termdd.sys

Image size: 54328

Image MD5: A048056F5E1A96A9BF3071B91741A5AA

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): TermService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\termsrv.dll,-268

Description: @%SystemRoot%\System32\termsrv.dll,-267

Object name: NT Authority\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RPCSS,TermDD

 

Service (registry key): Themes

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\shsvcs.dll,-8192

Description: @%SystemRoot%\System32\shsvcs.dll,-8193

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): THREADORDER

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\mmcss.dll,-102

Description: @%systemroot%\system32\mmcss.dll,-103

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): TrkWks

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\trkwks.dll,-1

Description: @%SystemRoot%\system32\trkwks.dll,-2

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): TrustedInstaller

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\servicing\TrustedInstaller.exe,-100

Description: @%SystemRoot%\servicing\TrustedInstaller.exe,-101

Object name: localSystem

Image path: %SystemRoot%\servicing\TrustedInstaller.exe

Image size: 39424

Image MD5: 16613A1BAD034D4ECF957AF18B7C2FF5

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): TSDDD

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): tssecsrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Terminal Services Security Filter Driver

Description: Terminal Services Security Filter Driver

Image path: System32\DRIVERS\tssecsrv.sys

Image size: 23552

Image MD5: DCF0F056A2E4F52287264F5AB29CF206

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

 

Service (registry key): TuneUp.Defrag

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\TuneUpDefragService.exe,-1

Description: @%SystemRoot%\System32\TuneUpDefragService.exe,-2

Object name: LocalSystem

Image path: %SystemRoot%\System32\TuneUpDefragService.exe

Image size: 306432

Image MD5: 233FCD3443CFBBAA27E7E463DCCBC528

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 0

 

Service (registry key): tunmp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de carte miniport Microsoft Tun

Image path: system32\DRIVERS\tunmp.sys

Image size: 15360

Image MD5: CAECC0120AC49E3D2F758B9169872D38

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): tunnel

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de carte miniport Microsoft IPv6 Tunnel

Image path: system32\DRIVERS\tunnel.sys

Image size: 23040

Image MD5: 119B8184E106BAEDC83FCE5DDF3950DA

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): uagp35

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft AGPv3.5 Filter

Image path: \SystemRoot\system32\drivers\uagp35.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): udfs

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: udfs

Description: Reads/Writes UDF 1.02,1.5,2.0x,2.5 disc formats, usually found on C/DVD discs. (Core) (All pieces)

Image path: system32\DRIVERS\udfs.sys

Image size: 226816

Image MD5: 8B5088058FA1D1CD897A2113CCFF6C58

Control Set: CurrentControlSet

Start: 4

Type: 2

Error Control: 1

 

Service (registry key): UGatherer

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): UGTHRSVC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): UI0Detect

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\ui0detect.exe,-101

Description: @%SystemRoot%\system32\ui0detect.exe,-102

Object name: LocalSystem

Image path: %SystemRoot%\system32\UI0Detect.exe

Image size: 35840

Image MD5: ECEF404F62863755951E09C802C94AD5

Control Set: CurrentControlSet

Start: 3

Type: 272

Error Control: 1

 

Service (registry key): uliagpkx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Uli AGP Bus Filter

Image path: \SystemRoot\system32\drivers\uliagpkx.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): uliahci

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\uliahci.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): UlSata

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\ulsata.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): ulsata2

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\ulsata2.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): umbus

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote d’énumérateur UMBus

Image path: system32\DRIVERS\umbus.sys

Image size: 34816

Image MD5: 32CFF9F809AE9AED85464492BF3E32D2

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): upnphost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\upnphost.dll,-213

Description: @%systemroot%\system32\upnphost.dll,-214

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: SSDPSRV,HTTP

 

Service (registry key): usb

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): usbccgp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote parent générique USB Microsoft

Image path: system32\DRIVERS\usbccgp.sys

Image size: 73216

Image MD5: CAF811AE4C147FFCD5B51750C7F09142

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): usbcir

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: eHome Infrared Receiver (USBCIR)

Image path: \SystemRoot\system32\drivers\usbcir.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): usbehci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0

Image path: system32\DRIVERS\usbehci.sys

Image size: 39424

Image MD5: CEBE90821810E76320155BEBA722FCF9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): usbhub

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de concentrateur standard USB Microsoft

Image path: system32\DRIVERS\usbhub.sys

Image size: 194560

Image MD5: CC6B28E4CE39951357963119CE47B143

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): usbohci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote miniport de contrôleur hôte ouvert USB Microsoft

Image path: system32\DRIVERS\usbohci.sys

Image size: 19456

Image MD5: 7BDB7B0E7D45AC0402D78B90789EF47C

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): usbprint

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Classe d'imprimantes USB Microsoft

Image path: system32\DRIVERS\usbprint.sys

Image size: 18944

Image MD5: E75C4B5269091D15A2E7DC0B6D35F2F5

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): usbscan

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de scanneur USB

Image path: system32\DRIVERS\usbscan.sys

Image size: 35328

Image MD5: A508C9BD8724980512136B039BBA65E9

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): USBSTOR

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote de stockage de masse USB

Image path: system32\DRIVERS\USBSTOR.SYS

Image size: 55296

Image MD5: 87BA6B83C5D19B69160968D07D6E2982

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): usbuhci

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft USB Universal Host Controller Miniport Driver

Image path: system32\DRIVERS\usbuhci.sys

Image size: 22528

Image MD5: 325DBBACB8A36AF9988CCF40EAC228CC

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): usnjsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Service Messenger Sharing Folders USN Journal Reader

Description: Service installé par Messenger pour permettre les opérations de partage

Object name: LocalSystem

Image path: "C:\Program Files\Windows Live\Messenger\usnsvc.exe"

Image size: 98328

Image MD5: 9D19B042A4FD5C02195071EA2FE0C821

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: rpcss,eventlog

 

Service (registry key): UxSms

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\dwm.exe,-2000

Description: @%SystemRoot%\system32\dwm.exe,-2001

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): UxTuneUp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\uxtuneup.dll,-4096

Description: @%SystemRoot%\System32\uxtuneup.dll,-4097

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: Themes

 

Service (registry key): vds

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\vds.exe,-100

Description: @%SystemRoot%\system32\vds.exe,-112

Object name: LocalSystem

Image path: %SystemRoot%\System32\vds.exe

Image size: 382976

Image MD5: B13BC395B9D6116628F5AF47E0802AC4

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RpcSs,PlugPlay

 

Service (registry key): vga

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\vgapnp.sys

Image size: 26112

Image MD5: 7D92BE0028ECDEDEC74617009084B5EF

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0

 

Service (registry key): VgaSave

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\System32\drivers\vga.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 0

 

Service (registry key): viaagp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: VIA AGP Bus Filter

Image path: \SystemRoot\system32\drivers\viaagp.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): ViaC7

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: VIA C7 Processor Driver

Image path: \SystemRoot\system32\drivers\viac7.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): viaide

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\viaide.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 3

 

Service (registry key): volmgr

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Pilote du Gestionnaire de volume

Image path: system32\drivers\volmgr.sys

Image size: 52792

Image MD5: 69503668AC66C77C6CD7AF86FBDF8C43

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): volmgrx

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Dynamic Volume Manager

Description: Extension of the volume manager driver that manages software RAID volumes (spanned, striped, mirrored, RAID-5) on dynamic disks

Image path: System32\drivers\volmgrx.sys

Image size: 294456

Image MD5: 98F5FFE6316BD74E9E2C97206C190196

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): volsnap

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Volumes de stockage

Image path: system32\drivers\volsnap.sys

Image size: 227896

Image MD5: D8B4A53DD2769F226B3EB374374987C9

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 3

 

Service (registry key): vsmraid

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: \SystemRoot\system32\drivers\vsmraid.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): VSS

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\vssvc.exe,-102

Description: @%systemroot%\system32\vssvc.exe,-101

Object name: LocalSystem

Image path: %systemroot%\system32\vssvc.exe

Image size: 1054720

Image MD5: D5FB73D19C46ADE183F968E13F186B23

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): VxD

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): W32Time

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\w32time.dll,-200

Description: @%SystemRoot%\system32\w32time.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

 

Service (registry key): W3SVC

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): WacomPen

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Wacom Serial Pen HID Driver

Image path: \SystemRoot\system32\drivers\wacompen.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): Wanarp

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Remote Access IP ARP Driver

Description: Remote Access IP ARP Driver

Image path: system32\DRIVERS\wanarp.sys

Image size: 62464

Image MD5: 55201897378CCA7AF8B5EFD874374A26

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): Wanarpv6

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Remote Access IPv6 ARP Driver

Description: Remote Access IPv6 ARP Driver

Image path: system32\DRIVERS\wanarp.sys

Image size: 62464

Image MD5: 55201897378CCA7AF8B5EFD874374A26

Control Set: CurrentControlSet

Start: 1

Type: 1

Error Control: 1

 

Service (registry key): wcncsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wcncsvc.dll,-3

Description: @%SystemRoot%\system32\wcncsvc.dll,-4

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: rpcss

 

Service (registry key): WcsPlugInService

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\WcsPlugInService.dll,-200

Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k wcssvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): Wd

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Watchdog Timer Driver

Image path: \SystemRoot\system32\drivers\wd.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): Wdf01000

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Kernel Mode Driver Frameworks service

Image path: system32\drivers\Wdf01000.sys

Image size: 503864

Image MD5: B6F0A7AD6D4BD325FBCD8BAC96CD8D96

Control Set: CurrentControlSet

Start: 0

Type: 1

Error Control: 1

 

Service (registry key): WdiServiceHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wdi.dll,-502

Description: @%systemroot%\system32\wdi.dll,-503

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k wdisvc

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): WdiSystemHost

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wdi.dll,-500

Description: @%systemroot%\system32\wdi.dll,-501

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): WebClient

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\webclnt.dll,-100

Description: @%systemroot%\system32\webclnt.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: MRxDAV

 

Service (registry key): Wecsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wecsvc.dll,-200

Description: @%SystemRoot%\system32\wecsvc.dll,-201

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\system32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: HTTP,Eventlog,mpssvc

 

Service (registry key): wercplsupport

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wercplsupport.dll,-101

Description: @%SystemRoot%\System32\wercplsupport.dll,-100

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

 

Service (registry key): WerSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wersvc.dll,-100

Description: @%SystemRoot%\System32\wersvc.dll,-101

Object name: localSystem

Image path: %SystemRoot%\System32\svchost.exe -k WerSvcGroup

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

 

Service (registry key): WinDefend

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103

Description: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-3068

Object name: LocalSystem

Image path: %SystemRoot%\System32\svchost.exe -k secsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): Windows Workflow Foundation 3.0.0.0

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): WinHttpAutoProxySvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\winhttp.dll,-100

Description: @%SystemRoot%\system32\winhttp.dll,-101

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: Dhcp

 

Service (registry key): Winmgmt

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\wbem\wmisvc.dll,-205

Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204

Object name: localSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 0

Depends On services: RPCSS

 

Service (registry key): WinRM

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\wsmsvc.dll,-101

Description: @%Systemroot%\system32\wsmsvc.dll,-102

Object name: NT AUTHORITY\NetworkService

Image path: %SystemRoot%\System32\svchost.exe -k NetworkService

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RPCSS,HTTP

 

Service (registry key): Winsock

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 4

Error Control: 1

 

Service (registry key): WinSock2

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): Wlansvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wlansvc.dll,-257

Description: @%SystemRoot%\System32\wlansvc.dll,-258

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: nativewifip,RpcSs,Ndisuio,Eaphost

 

Service (registry key): WLSetupSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Windows Live Setup Service

Description: Windows Live Setup Service

Object name: LocalSystem

Image path: "C:\Program Files\Windows Live\installer\WLSetupSvc.exe"

Image size: 266240

Image MD5: 94A85E956A065E23E0010A6A7826243B

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): WmiAcpi

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Microsoft Windows Management Interface for ACPI

Image path: \SystemRoot\system32\drivers\wmiacpi.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): WmiApRpl

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): wmiApSrv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110

Description: @%Systemroot%\system32\wbem\wmiapsrv.exe,-111

Object name: localSystem

Image path: %systemroot%\system32\wbem\WmiApSrv.exe

Image size: 137728

Image MD5: ABA4CF9F856D9A3A25F4DDD7690A6E9D

Control Set: CurrentControlSet

Start: 3

Type: 16

Error Control: 1

 

Service (registry key): WMPNetworkSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101

Description: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-102

Object name: NT AUTHORITY\NetworkService

Image path: "%ProgramFiles%\Windows Media Player\wmpnetwk.exe"

Image size: 896512

Image MD5: 3978704576A121A9204F8CC49A301A9B

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: UPnPHost,http

 

Service (registry key): WPCSvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wpcsvc.dll,-100

Description: @%SystemRoot%\system32\wpcsvc.dll,-101

Object name: NT Authority\LocalService

Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 3

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): WPDBusEnum

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wpdbusenum.dll,-100

Description: @%SystemRoot%\system32\wpdbusenum.dll,-101

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs

 

Service (registry key): ws2ifsl

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: Winsock IFS driver

Description: Winsock IFS driver

Image path: \SystemRoot\system32\drivers\ws2ifsl.sys

Image size: 0

Image MD5: D41D8CD98F00B204E9800998ECF8427E

Control Set: CurrentControlSet

Start: 4

Type: 1

Error Control: 1

 

Service (registry key): wscsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\System32\wscsvc.dll,-200

Description: @%SystemRoot%\System32\wscsvc.dll,-201

Object name: NT AUTHORITY\LocalService

Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: RpcSs,WinMgmt

 

Service (registry key): WSearch

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\SearchIndexer.exe,-103

Description: @%systemroot%\system32\SearchIndexer.exe,-104

Object name: LocalSystem

Image path: %systemroot%\system32\SearchIndexer.exe /Embedding

Image size: 439808

Image MD5: 7778BDFA3F6F6FBA0E75B9594098F737

Control Set: CurrentControlSet

Start: 2

Type: 16

Error Control: 1

Depends On services: RPCSS

 

Service (registry key): WSearchIdxPi

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): wuauserv

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%systemroot%\system32\wuaueng.dll,-105

Description: @%systemroot%\system32\wuaueng.dll,-106

Object name: LocalSystem

Image path: %systemroot%\system32\svchost.exe -k netsvcs

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: rpcss

 

Service (registry key): WUDFRd

Registry path: \SYSTEM\CurrentControlSet\Services\

Image path: system32\DRIVERS\WUDFRd.sys

Image size: 83328

Image MD5: AC13CB789D93412106B0FB6C7EB2BCB6

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 1

 

Service (registry key): wudfsvc

Registry path: \SYSTEM\CurrentControlSet\Services\

Display name: @%SystemRoot%\system32\wudfsvc.dll,-1000

Description: @%SystemRoot%\system32\wudfsvc.dll,-1001

Object name: LocalSystem

Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted

Image size: 21504

Image MD5: 3794B461C45882E06856F282EEF025AF

Control Set: CurrentControlSet

Start: 2

Type: 32

Error Control: 1

Depends On services: PlugPlay

 

Service (registry key): xmlprov

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): {1EC6922C-93FD-4416-AADC-96412CF79762}

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): {5C45AC97-2EF3-4159-8C55-222241CC8DB8}

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 0

Type: 0

Error Control: 0

 

Service (registry key): ajujiuug

Registry path: \SYSTEM\CurrentControlSet\Services\

Control Set: CurrentControlSet

Start: 3

Type: 1

Error Control: 0