well i just downloaded Spybot S&D cause i read avira and windows firewall are good but don't really do anything for spy/malware so thought i'll download this and should be good to go. so i update Spybot and have it scan and it detects Smitfraud-C in a registry. i've never copied a log before so i just right-clicked and copied the full report. and the location is below. I've read that spybot can do false alarms and i want your all's opinions. I hope i posted in the right place. --- Search result list --- Hint of the Day: Click the bar at the right of this to see more information! () Code: Smitfraud-C.: [SBI $0BD9EC75] Autorun settings (Registry value, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Windows --- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) --- 2008-07-07 blindman.exe (1.0.0.8) 2008-07-07 SDFiles.exe (1.6.0.4) 2008-07-07 SDMain.exe (1.0.0.6) 2008-07-07 SDShred.exe (1.0.2.3) 2008-07-07 SDUpdate.exe (1.6.0.8) 2008-07-07 SDWinSec.exe (1.0.0.12) 2008-07-07 SpybotSD.exe (1.6.0.30) 2008-09-16 TeaTimer.exe (1.6.3.25) 2008-11-06 unins000.exe (51.49.0.0) 2008-07-07 Update.exe (1.6.0.7) 2008-10-22 advcheck.dll (1.6.2.13) 2007-04-02 aports.dll (2.1.0.0) 2008-06-14 DelZip179.dll (1.79.11.1) 2008-09-15 SDHelper.dll (1.6.2.14) 2008-06-19 sqlite3.dll 2008-10-22 Tools.dll (2.1.6.8) 2008-11-04 Includes\Adware.sbi (*) 2008-11-05 Includes\AdwareC.sbi (*) 2008-06-03 Includes\Cookies.sbi (*) 2008-09-02 Includes\Dialer.sbi (*) 2008-09-09 Includes\DialerC.sbi (*) 2008-07-23 Includes\HeavyDuty.sbi (*) 2008-09-02 Includes\Hijackers.sbi (*) 2008-10-28 Includes\HijackersC.sbi (*) 2008-09-09 Includes\Keyloggers.sbi (*) 2008-11-04 Includes\KeyloggersC.sbi (*) 2004-11-29 Includes\LSP.sbi (*) 2008-11-04 Includes\Malware.sbi (*) 2008-11-04 Includes\MalwareC.sbi (*) 2008-11-03 Includes\PUPS.sbi (*) 2008-11-04 Includes\PUPSC.sbi (*) 2007-11-07 Includes\Revision.sbi (*) 2008-06-18 Includes\Security.sbi (*) 2008-10-23 Includes\SecurityC.sbi (*) 2008-06-03 Includes\Spybots.sbi (*) 2008-06-03 Includes\SpybotsC.sbi (*) 2008-11-04 Includes\Spyware.sbi (*) 2008-11-04 Includes\SpywareC.sbi (*) 2008-06-03 Includes\Tracks.uti 2008-11-04 Includes\Trojans.sbi (*) 2008-11-04 Includes\TrojansC.sbi (*) 2008-03-04 Plugins\Chai.dll 2008-03-05 Plugins\Fennel.dll 2008-02-26 Plugins\Mate.dll 2007-12-24 Plugins\TCPIPAddress.dll --- System information --- Windows Vista (Build: 6000) (6.0.6000) / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB929729) / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) / MSXML4SP2: Security update for MSXML4 SP2 (KB936181) / MSXML4SP2: Security update for MSXML4 SP2 (KB941833) --- Startup entries list --- Located: HK_LM:Run, Adobe Reader Speed Launcher command: "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" file: C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe size: 34672 [URL=http://www.go4expert.com/articles/md5-tutorial-t319/]MD5[/URL]: 69B16C7B7746BA5C642FC05B3561FC73 Located: HK_LM:Run, AppleSyncNotifier command: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe file: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe size: 111936 MD5: 3C59CB80D1849128C14FF2B3245419BE Located: HK_LM:Run, avgnt command: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min file: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe size: 266497 MD5: 6E812818306D460D62B4ABEA9FDC6679 Located: HK_LM:Run, iTunesHelper command: "C:\Program Files\iTunes\iTunesHelper.exe" file: C:\Program Files\iTunes\iTunesHelper.exe size: 289576 MD5: A7FA648719063B234A434A089FC0F49D Located: HK_LM:Run, NvCplDaemon command: RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup file: C:\Windows\system32\NvCpl.dll size: 13580832 MD5: D76615BD370039309C7D9A8EBF0D16D9 Located: HK_LM:Run, NvMediaCenter command: RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit file: C:\Windows\system32\NvMcTray.dll size: 92704 MD5: 95B8975A500804F104F45185D7888387 Located: HK_LM:Run, QuickTime Task command: "C:\Program Files\QuickTime\QTTask.exe" -atboottime file: C:\Program Files\QuickTime\QTTask.exe size: 413696 MD5: 6CD5C3276C83F72677D647F27EE14ABD Located: HK_LM:Run, RtHDVCpl command: RtHDVCpl.exe file: C:\Windows\RtHDVCpl.exe size: 6139904 MD5: E6CB83FF2C098C6FFCF2D43A4AAC9B54 Located: HK_LM:Run, SunJavaUpdateSched command: "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" file: C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe size: 144784 MD5: 6AB4C021FBD36DC6764924C312428D97 Located: HK_LM:Run, Windows command: C:\Users\Andrew\AppData\Local\Temp\Setup_ver1.1400.0.exe file: C:\Users\Andrew\AppData\Local\Temp\Setup_ver1.1400.0.exe size: 0 MD5: D41D8CD98F00B204E9800998ECF8427E Warning: if the file is actually larger than 0 bytes, the checksum could not be properly calculated! Located: HK_LM:Run, Windows Defender command: %ProgramFiles%\Windows Defender\MSASCui.exe -hide file: C:\Program Files\Windows Defender\MSASCui.exe size: 1006264 MD5: 9AD9E2FB2811123DA13DE84CC154AB77 Located: HK_CU:Run, Sidebar where: S-1-5-19... command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem file: C:\Program Files\Windows Sidebar\Sidebar.exe size: 1232896 MD5: 582F3A0BA61D8F0D50C66B592808B6D6 Located: HK_CU:Run, WindowsWelcomeCenter where: S-1-5-19... command: rundll32.exe oobefldr.dll,ShowWelcomeCenter file: C:\Windows\system32\oobefldr.dll size: 2159104 MD5: 736A6F5FF321AAAAB140B1100E345F04 Located: HK_CU:Run, Sidebar where: S-1-5-20... command: %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem file: C:\Program Files\Windows Sidebar\Sidebar.exe size: 1232896 MD5: 582F3A0BA61D8F0D50C66B592808B6D6 Located: HK_CU:Run, WindowsWelcomeCenter where: S-1-5-20... command: rundll32.exe oobefldr.dll,ShowWelcomeCenter file: C:\Windows\system32\oobefldr.dll size: 2159104 MD5: 736A6F5FF321AAAAB140B1100E345F04 Located: HK_CU:Run, Aim6 where: S-1-5-21-1739370521-1019035071-1242431718-1000... command: "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp file: C:\Program Files\AIM6\aim6.exe size: 49960 MD5: D049458A0DE08CFCC5B97D07FEB97483 Located: HK_CU:Run, DAEMON Tools Lite where: S-1-5-21-1739370521-1019035071-1242431718-1000... command: "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun file: C:\Program Files\DAEMON Tools Lite\daemon.exe size: 490952 MD5: 36D773CBEA37AB24966963A9B4891227 Located: HK_CU:Run, NVIDIA nTune where: S-1-5-21-1739370521-1019035071-1242431718-1000... command: "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" resetprofile file: C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe size: 106496 MD5: 83559492293687F2237D0B751B457451 Located: HK_CU:Run, Sidebar where: S-1-5-21-1739370521-1019035071-1242431718-1000... command: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun file: C:\Program Files\Windows Sidebar\sidebar.exe size: 1232896 MD5: 582F3A0BA61D8F0D50C66B592808B6D6 Located: HK_CU:Run, SpybotSD TeaTimer where: S-1-5-21-1739370521-1019035071-1242431718-1000... command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe size: 1833296 MD5: 63B3FF83B87AFCEBA89CED54695DA0F6 Located: HK_CU:Run, WindowsWelcomeCenter where: S-1-5-21-1739370521-1019035071-1242431718-1000... command: rundll32.exe oobefldr.dll,ShowWelcomeCenter file: C:\Windows\system32\oobefldr.dll size: 2159104 MD5: 736A6F5FF321AAAAB140B1100E345F04 Located: HK_CU:Run, WMPNSCFG where: S-1-5-21-1739370521-1019035071-1242431718-1000... command: C:\Program Files\Windows Media Player\WMPNSCFG.exe file: C:\Program Files\Windows Media Player\WMPNSCFG.exe size: 201728 MD5: 20EF9002CFF89C4C1077E4415EC7297B Located: Startup (user), RealTemp - Shortcut.lnk where: C:\Users\Andrew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup... command: C:\Users\Andrew\Documents\RealTemp_2.70\RealTemp.exe file: C:\Users\Andrew\Documents\RealTemp_2.70\RealTemp.exe size: 110592 MD5: E7B24790FCE1993DE65D40CEC9CD9074 Located: WinLogon, WBSrv command: C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll file: C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll size: 222456 MD5: 32616497842C138E2BFCACB4B68D7CA8 --- Browser helper object list --- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} (AcroIEHelperStub) location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: AcroIEHelperStub CLSID name: Adobe PDF Link Helper Path: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\ Long name: AcroIEHelperShim.dll Short name: ACROIE~2.DLL Date (created): 6/11/2008 9:33:16 PM Date (last access): 9/21/2008 7:19:10 PM Date (last write): 6/11/2008 9:33:16 PM Filesize: 75128 Attributes: archive MD5: E96C752BBA0E22330A43258FC800200E CRC32: E5D72083 Version: 9.0.0.332 --- ActiveX list --- {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_07 Installer: Codebase: [url]http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab[/url] description: Sun Java classification: Legitimate known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll info link: info source: Patrick M. Kolla Path: C:\Program Files\Java\jre1.6.0_07\bin\ Long name: npjpi160_07.dll Short name: NPJPI1~1.DLL Date (created): 6/10/2008 1:32:34 AM Date (last access): 6/10/2072 1:32:34 AM Date (last write): 6/10/2008 3:27:02 AM Filesize: 132496 Attributes: archive MD5: 7C83A2809E13950359189767AC9D5DB8 CRC32: 925C2A88 Version: 6.0.70.6 {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_07 Installer: Codebase: [url]http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab[/url] Path: C:\Program Files\Java\jre1.6.0_07\bin\ Long name: npjpi160_07.dll Short name: NPJPI1~1.DLL Date (created): 6/10/2008 1:32:34 AM Date (last access): 6/10/2072 1:32:34 AM Date (last write): 6/10/2008 3:27:02 AM Filesize: 132496 Attributes: archive MD5: 7C83A2809E13950359189767AC9D5DB8 CRC32: 925C2A88 Version: 6.0.70.6 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_07 Installer: Codebase: [url]http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab[/url] description: classification: Legitimate known filename: npjpi150_06.dll info link: info source: Safer Networking Ltd. Path: C:\Program Files\Java\jre1.6.0_07\bin\ Long name: npjpi160_07.dll Short name: NPJPI1~1.DLL Date (created): 6/10/2008 1:32:34 AM Date (last access): 6/10/2072 1:32:34 AM Date (last write): 6/10/2008 3:27:02 AM Filesize: 132496 Attributes: archive MD5: 7C83A2809E13950359189767AC9D5DB8 CRC32: 925C2A88 Version: 6.0.70.6 --- Process list --- PID: 3688 (1088) C:\Windows\system32\taskeng.exe size: 166400 MD5: 1226E9FAE5B8508801EC974E3C9D9C14 PID: 3728 (1072) C:\Windows\system32\Dwm.exe size: 83456 MD5: E87B968F3D49117445893EB0503FE34F PID: 3800 (3700) C:\Windows\Explorer.EXE size: 2923520 MD5: 6D06CD98D954FE87FB2DB8108793B399 PID: 3912 (3800) C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe size: 144784 MD5: 6AB4C021FBD36DC6764924C312428D97 PID: 3948 (3800) C:\Windows\RtHDVCpl.exe size: 6139904 MD5: E6CB83FF2C098C6FFCF2D43A4AAC9B54 PID: 4024 (3800) C:\Program Files\iTunes\iTunesHelper.exe size: 289576 MD5: A7FA648719063B234A434A089FC0F49D PID: 784 (3800) C:\Program Files\DAEMON Tools Lite\daemon.exe size: 490952 MD5: 36D773CBEA37AB24966963A9B4891227 PID: 3104 (3800) C:\Program Files\AIM6\aim6.exe size: 49960 MD5: D049458A0DE08CFCC5B97D07FEB97483 PID: 688 (3800) C:\Program Files\Windows Media Player\wmpnscfg.exe size: 201728 MD5: 20EF9002CFF89C4C1077E4415EC7297B PID: 1464 (3800) C:\Users\Andrew\Documents\RealTemp_2.70\RealTemp.exe size: 110592 MD5: E7B24790FCE1993DE65D40CEC9CD9074 PID: 2392 (3104) C:\Program Files\AIM6\aolsoftware.exe size: 41824 MD5: 863850926D128DBD4690D7A42E2568E0 PID: 5036 (3800) C:\Program Files\Windows Media Player\wmplayer.exe size: 168960 MD5: 81D386F15E10E19F9A0804D900460324 PID: 776 (1088) C:\Windows\system32\wuauclt.exe size: 53448 MD5: D316E28958873859B88D72CF47AD1EA5 PID: 2824 (4772) C:\Program Files\uTorrent\uTorrent.exe size: 270128 MD5: F6DFB6E9341D3C0E47527B586B3EF0C3 PID: 3624 (5804) C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe size: 266497 MD5: 6E812818306D460D62B4ABEA9FDC6679 PID: 3680 (3228) C:\Windows\winsxs\x86_microsoft-windows-commandprompt_31bf3856ad364e35_6.0.6000.16386_none_88d604c11d71789b\cmd.exe size: 320000 MD5: 349CD4318E6E351C9BB72EE13B7CA807 PID: 5876 (3568) C:\Program Files\Windows Sidebar\sidebar.exe size: 1232896 MD5: 582F3A0BA61D8F0D50C66B592808B6D6 PID: 5952 (5876) C:\Program Files\Windows Sidebar\sidebar.exe size: 1232896 MD5: 582F3A0BA61D8F0D50C66B592808B6D6 PID: 4848 (3800) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 4891472 MD5: 3B1B5D09D3C9C4CD39D4DB06ED7A0855 PID: 5328 (3800) C:\Program Files\Mozilla Firefox\firefox.exe size: 307712 MD5: F18DEADD748D1F2C8BA4C1ECFEC7DB2C PID: 0 ( 0) [System Process] PID: 4 ( 0) System PID: 444 ( 4) smss.exe size: 62976 PID: 512 ( 500) csrss.exe size: 7680 PID: 556 ( 444) psxss.exe size: 648704 PID: 564 ( 548) csrss.exe size: 7680 PID: 580 ( 500) wininit.exe size: 95744 PID: 612 ( 580) services.exe size: 279552 PID: 652 ( 580) lsass.exe size: 7680 PID: 660 ( 580) lsm.exe size: 210944 PID: 800 ( 612) svchost.exe size: 22016 PID: 864 ( 548) winlogon.exe size: 308224 PID: 892 ( 612) svchost.exe size: 22016 PID: 952 ( 612) svchost.exe size: 22016 PID: 1008 ( 612) svchost.exe size: 22016 PID: 1072 ( 612) svchost.exe size: 22016 PID: 1088 ( 612) svchost.exe size: 22016 PID: 1192 (1008) audiodg.exe size: 88064 PID: 1228 ( 612) SLsvc.exe size: 2605568 PID: 1340 ( 612) svchost.exe size: 22016 PID: 1404 ( 612) VistaSrv.exe PID: 1412 (1404) WBVista.exe PID: 1500 ( 612) svchost.exe size: 22016 PID: 1732 ( 612) spoolsv.exe size: 124928 PID: 1756 ( 612) sched.exe PID: 1768 ( 612) svchost.exe size: 22016 PID: 2036 ( 612) avguard.exe PID: 268 ( 612) AppleMobileDeviceService.exe PID: 304 ( 612) mDNSResponder.exe PID: 376 ( 612) CISVC.EXE size: 11264 PID: 388 ( 612) DkService.exe PID: 788 ( 612) inetinfo.exe PID: 552 ( 612) svchost.exe size: 22016 PID: 1184 ( 612) NBService.exe PID: 2064 ( 612) nTuneService.exe PID: 2096 ( 612) svchost.exe size: 22016 PID: 2128 ( 612) TCPSVCS.EXE size: 9728 PID: 2180 ( 612) snmp.exe size: 47104 PID: 2204 ( 612) svchost.exe size: 22016 PID: 2240 ( 612) UpdateCenterService.exe PID: 2332 ( 612) ViewpointService.exe PID: 2372 ( 612) svchost.exe size: 22016 PID: 2396 ( 612) svchost.exe size: 22016 PID: 2448 ( 612) SearchIndexer.exe size: 287744 PID: 2492 ( 612) nSvcAppFlt.exe PID: 2540 ( 612) nSvcIp.exe PID: 3332 (1088) taskeng.exe size: 166400 PID: 744 ( 612) wmpnetwk.exe PID: 3908 ( 612) iPodService.exe PID: 3524 (5036) mfpmp.exe size: 24576 PID: 5416 ( 612) svchost.exe size: 22016 PID: 3168 ( 612) SDWinSec.exe size: 809296 MD5: 55C1E4FDFD62A48FB5A2CE25F3AA8AE8 --- Browser start & search pages list --- Spybot - Search & Destroy browser pages report, 11/6/2008 10:30:39 PM HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\Windows\system32\blank.htm HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page %SystemRoot%\system32\blank.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url] --- Winsock Layered Service Provider list --- Protocol 0: NVIDIA App Filter over [MSAFD Tcpip [TCP/IP]] GUID: {E4C91EE5-6E1F-4043-8842-5459A9014C8C} Filename: %SYSTEMROOT%\system32\nvLsp.dll Protocol 1: NVIDIA App Filter over [MSAFD Tcpip [UDP/IP]] GUID: {E4C91EE5-6E1F-4043-8842-5459A9014C8C} Filename: %SYSTEMROOT%\system32\nvLsp.dll Protocol 2: NVIDIA App Filter over [MSAFD Tcpip [RAW/IP]] GUID: {E4C91EE5-6E1F-4043-8842-5459A9014C8C} Filename: %SYSTEMROOT%\system32\nvLsp.dll Protocol 13: NVIDIA App Filter GUID: {561A1E9F-D78B-40E3-866D-4CE5CF6BB83F} Filename: %SYSTEMROOT%\system32\nvLsp.dll Namespace Provider 3: E-mail Naming Shim Provider GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE} Filename: Namespace Provider 4: PNRP Cloud Namespace Provider GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D} Filename: Namespace Provider 5: PNRP Name Namespace Provider GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D} Filename: --- Uninstall list --- (AddressBook) Adobe AIR 1.0.4990 (Adobe AIR) install location: C:\ uninstall cmd: C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall publisher: Adobe Systems Inc. Adobe Flash Player 10 Plugin 10.0.12.36 (Adobe Flash Player Plugin) uninstall cmd: C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe publisher: Adobe Systems Incorporated Adobe Shockwave Player 11 (Adobe Shockwave Player) version (major): 11 install location: C:\Windows\system32\Adobe\ uninstall cmd: C:\Windows\System32\Adobe\SHOCKW~1\UNWISE.EXE C:\Windows\System32\Adobe\SHOCKW~1\Install.log publisher: Adobe Systems, Inc. help link: [url]http://www.adobe.com/support/shockwave[/url] AIM 6 (AIM_6) uninstall cmd: C:\Program Files\AIM6\uninst.exe Avira AntiVir Personal - Free Antivirus (AntiVir PersonalEdition Classic) uninstall cmd: C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE publisher: Avira GmbH help link: [url]http://www.avira.com/classic-support[/url] (AOL Diagnostics_N) (AOLOCP_Y) Acrobat.com 1.1.377 (com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) install location: C:\Program Files\Adobe\Acrobat.com\ uninstall cmd: C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 publisher: Adobe Systems Incorporated Company of Heroes 2.301.0 (Company of Heroes) install location: C:\Program Files\THQ\Company of Heroes uninstall cmd: "C:\Program Files\THQ\Company of Heroes\Uninstall_English.exe" publisher: THQ Inc. (Connection Manager) Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro 7.07 (Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro_is1) install location: C:\Program Files\Cucusoft\avi-dvd-pro\ uninstall cmd: "C:\Program Files\Cucusoft\avi-dvd-pro\unins000.exe" publisher: Cucusoft, Inc. help link: [url]http://www.avi-vcd.com[/url] Dev-C++ 5 beta 9 release (4.9.9.2) (Dev-C++) uninstall cmd: "C:\Dev-Cpp\uninstall.exe" (DirectDrawEx) (DXM_Runtime) (Fontcore) (IE40) (IE4Data) (IE5BAKEX) (IEData) (InstallShield Uninstall Information) NVIDIA System Update 1.00.0000 (InstallShield_{6F69C969-2942-4E7B-B594-75B37664B8BA}) version: 16777216 version (major): 1 estimated size: 4072 install date: 20081026 install location: C:\Program Files\NVIDIA Corporation\System Update\ install source: C:\Users\Andrew\AppData\Local\Temp\{5471F754-11CF-48EF-BF37-43BAB9A663E1}\ uninstall cmd: "C:\Program Files\InstallShield Installation Information\{6F69C969-2942-4E7B-B594-75B37664B8BA}\setup.exe" -runfromtemp -l0x0409 -removeonly publisher: NVIDIA Corporation NVIDIA Performance 1.00.0000 (InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) version: 16777216 version (major): 1 estimated size: 18197 install date: 20081026 install location: C:\Program Files\NVIDIA Corporation\ install source: C:\Users\Andrew\AppData\Local\Temp\{F2AE7AE0-A296-4CC0-8923-DD005C05F575}\ uninstall cmd: "C:\Program Files\InstallShield Installation Information\{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}\setup.exe" -runfromtemp -l0x0409 -removeonly publisher: NVIDIA Corporation comments: Your Comments contact: Customer Support Department help link: [url]http://www.yourcompany.com/help[/url] help telephone: 1-408-486-0000 NVIDIA ForceWare Network Access Manager 1.00.6777 (InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) version: 16783993 version (major): 1 estimated size: 40190 install date: 20080828 install location: C:\Program Files\NVIDIA Corporation\NetworkAccessManager\ install source: C:\Users\Andrew\AppData\Local\Temp\{11AB7CEC-D882-4C68-BEB0-C8C5A0C2A679}\ uninstall cmd: "C:\Program Files\InstallShield Installation Information\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\setup.exe" -runfromtemp -l0x0409 -removeonly publisher: NVIDIA Corporation NVIDIA System Monitor 1.00.0000 (InstallShield_{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) version: 16777216 version (major): 1 estimated size: 11538 install date: 20081026 install location: C:\Program Files\NVIDIA Corporation\ install source: C:\Users\Andrew\AppData\Local\Temp\{9E459F09-CFFF-402A-8FAD-4A7069D89CA6}\ uninstall cmd: "C:\Program Files\InstallShield Installation Information\{E9CFBE78-ED91-4FCF-9E6F-210E477E527D}\setup.exe" -runfromtemp -l0x0409 -removeonly publisher: NVIDIA Corporation comments: Your Comments contact: Customer Support Department help link: [url]http://www.yourcompany.com/help[/url] help telephone: 1-408-486-0000 Security Update for Windows Media Encoder (KB954156) (KB954156) uninstall cmd: msiexec.exe /I {E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} MSIPATCHREMOVE={E836F1B7-43FB-46B0-A0D9-E4D2A5951659} /qb publisher: Microsoft Corporation help link: [url]http://support.microsoft.com/?kbid=954156[/url] LimeWire 4.18.8 4.18.8 (LimeWire) uninstall cmd: "C:\Program Files\LimeWire\uninstall.exe" publisher: Lime Wire, LLC help link: [url]http://www.limewire.com/support[/url] Microsoft .NET Framework 1.1 Hotfix (KB929729) (M929729) uninstall cmd: "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M929729\M929729Uninstall.msp" MediaCoder 0.6.1 0.6.1 (MediaCoder) uninstall cmd: C:\Program Files\MediaCoder\uninst.exe publisher: Stanley Huang Microsoft .NET Framework 1.1 (Microsoft .NET Framework 1.1 (1033)) uninstall cmd: msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} readme: file://C:\Windows\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm (MobileOptionPack) Mozilla Firefox (3.0.3) 3.0.3 (en-US) (Mozilla Firefox (3.0.3)) install location: C:\Program Files\Mozilla Firefox uninstall cmd: C:\Program Files\Mozilla Firefox\uninstall\helper.exe publisher: Mozilla comments: Mozilla Firefox (MPlayer2) NVIDIA Drivers (NVIDIA Drivers) uninstall cmd: C:\Windows\system32\NVUNINST.EXE UninstallGUI (SchedulingAgent) (Shockwave) Sins of a Solar Empire (Sins of a Solar Empire) install location: C:\Program Files\Stardock Games\Sins of a Solar Empire uninstall cmd: "C:\ProgramData\{0E8E33D8-193A-414A-A909-0F101A142D26}\setup.exe" REMOVE=TRUE MODIFY=FALSE publisher: Stardock Entertainment comments: © 2008 Ironclad Games and Stardock Entertainment, Inc. All rights reserved. help link: [url]http://www.sinsofasolarempire.com/[/url] SkinStudio (SkinStudio) install location: C:\Program Files\Stardock\Object Desktop\SKS uninstall cmd: "C:\ProgramData\{CCD0104E-95C0-4C73-A3E3-42C3D2072E43}\SkinStudio.exe" REMOVE=TRUE MODIFY=FALSE publisher: Stardock Corporation comments: Copyright © 2007 Stardock Corporation. All Rights Reserved. contact: Stardock Corporation help link: [url]http://www.stardock.com[/url] Microsoft Office Standard 2007 Trial 12.0.6215.1000 (STANDARDR) install location: C:\Program Files\Microsoft Office uninstall cmd: "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall STANDARDR /dll OSETUP.DLL publisher: Microsoft Corporation Zombie Panic! Source (Steam App 17500) install location: c:\program files\steam\steamapps\l337luke\zombie panic! source uninstall cmd: "C:\Program Files\Steam\steam.exe" steam://uninstall/17500 publisher: Zombie Panic! Team help link: [url]http://support.steampowered.com/[/url] Counter-Strike: Source (Steam App 240) install location: c:\program files\steam\steamapps\l337luke\counter-strike source uninstall cmd: "C:\Program Files\Steam\steam.exe" steam://uninstall/240 publisher: Valve help link: [url]http://support.steampowered.com/[/url] Team Fortress 2 (Steam App 440) install location: c:\program files\steam\steamapps\l337luke\team fortress 2 uninstall cmd: "C:\Program Files\Steam\steam.exe" steam://uninstall/440 publisher: Valve help link: [url]http://support.steampowered.com/[/url] SwiftKit (SwiftKit) uninstall cmd: C:\Program Files\SwiftKit\Uninstall.exe Viewpoint Media Player (ViewpointMediaPlayer) uninstall cmd: C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u WindowBlinds 6.30 (WindowBlinds) install location: C:\Program Files\Stardock\Object Desktop\WindowBlinds uninstall cmd: C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\UNWISE.EXE C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\INSTALL.LOG publisher: Stardock Corporation comments: Copyright © 1998-2008 Stardock Corporation. All rights reserved. help link: [url]http://www.stardock.com/support[/url] WinRAR archiver (WinRAR archiver) uninstall cmd: C:\Program Files\WinRAR\uninstall.exe Zeus (Zeus) uninstall cmd: C:\Windows\IsUninst.exe -f"C:\Impressions Games\Zeus\Uninst.isu" Adobe AIR 1.0.8.4990 ({00203668-8170-44A0-BE44-B632FA4D780F}) version: 16777224 version (major): 1 estimated size: 24847 install date: 20080921 install source: C:\Users\Andrew\AppData\Local\NOS\Adobe AIR Installer\ uninstall cmd: MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} publisher: Adobe Systems Inc. Nero ShowTime 4.99.0.0 ({02627ee5-eaca-4742-a9cc-e687631773e4}) version: 73596928 version (major): 4 version (minor): 99 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_13\ publisher: Nero AG Steam 1.0.0.0 ({048298C9-A4D3-490B-9FF9-AB023A9238F3}) version: 16777216 version (major): 1 estimated size: 1341 install date: 20080828 install source: C:\Users\Andrew\Downloads\ uninstall cmd: MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3} publisher: Valve comments: Steam help link: [url]http://support.steampowered.com/[/url] Nero BurningROM 9.0.0.0 ({086a7d8c-0a38-4c7f-819a-620275550d5c}) version: 150994944 version (major): 9 estimated size: 100 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_4\ publisher: Nero AG Driver Sweeper 1.5.5 ({0965D484-1777-4BA5-8C3A-095A6B0D2696}_is1) install date: 20081027 install location: C:\Program Files\Driver Sweeper\ uninstall cmd: "C:\Program Files\Driver Sweeper\unins000.exe" publisher: Phyxion.net - Guru3D.com help link: [url]http://www.phyxion.net/[/url] Nero 9 Trial ({09686b00-e1bf-4838-8ecf-46f30e598ce8}) install date: 20081026 uninstall cmd: C:\Program Files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe REMOVESERIALNUMBER="8M01-20A9-HA9A-K0HH-91PX-566L-3PT8-WW3H" publisher: Nero AG comments: Nero AG contact: [email]techsupport@nero.com[/email] help link: [url]http://www.nero.com[/url] Company of Heroes - FAKEMSI 2.0.0.0 ({14574B7F-75D1-4718-B7F2-EBF6E2862A35}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{14574B7F-75D1-4718-B7F2-EBF6E2862A35} publisher: THQ Inc. Company of Heroes - FAKEMSI 2.0.0.0 ({199E6632-EB28-4F73-AECB-3E192EB92D18}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{199E6632-EB28-4F73-AECB-3E192EB92D18} publisher: THQ Inc. Microsoft Visual J# .NET Redistributable Package 1.1 1.1.4322 ({1A655D51-1423-48A3-B748-8F5A0BE294C8}) version: 16847074 version (major): 1 version (minor): 1 estimated size: 11679 install date: 20080909 install source: C:\Users\Andrew\AppData\Local\Temp\IXP000.TMP\ uninstall cmd: MsiExec.exe /X{1A655D51-1423-48A3-B748-8F5A0BE294C8} publisher: Microsoft readme: file://C:\Windows\Microsoft.NET\Framework\v1.1.4322\Repairjshcore.htm Nero PhotoSnap Help 1.53.2.0 ({1c00c7c5-e615-4139-b817-7f4003de68c0}) version: 20250626 version (major): 1 version (minor): 53 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_10\ publisher: Nero AG Nero InfoTool 5.99.5.105 ({20400dbd-e6db-45b8-9b6b-1dd7033818ec}) version: 90374149 version (major): 5 version (minor): 99 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_20\ publisher: Nero AG Nero StartSmart Help 9.0.0.0 ({2348b586-c9ae-46ce-936c-a68e9426e214}) version: 150994944 version (major): 9 estimated size: 100 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_15\ publisher: Nero AG Company of Heroes - FAKEMSI 2.0.0.0 ({25724802-CC14-4B90-9F3B-3D6955EE27B1}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{25724802-CC14-4B90-9F3B-3D6955EE27B1} publisher: THQ Inc. Star Wars®: Knights of the Old Republic (TM) ({2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}) uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A9A40C7-6670-4D5F-8F41-D12E2E08B48B}\setup.exe" -l0x9 LOST PLANET TRIAL DX10 1.0.0.0 ({2D390654-EBA1-4EB4-A53D-B631CD44F4E0}) version: 16777216 version (major): 1 estimated size: 401648 install date: 20030101 install location: C:\Program Files\CAPCOM\LOST_PLANET_TRIAL_DX10\ install source: C:\Users\Andrew\AppData\Local\Temp\{371F9601-B407-480E-8C58-2A040C4AA89B}\ uninstall cmd: MsiExec.exe /X{2D390654-EBA1-4EB4-A53D-B631CD44F4E0} publisher: CAPCOM CO.,LTD. Java(TM) 6 Update 7 1.6.0.70 ({3248F0A8-6813-11D6-A77B-00B0D0160070}) version: 17170432 version (major): 1 version (minor): 6 estimated size: 139514 install date: 20080901 install source: [url]http://javadl.sun.com/webapps/download/GetFile/1.6.0_07-b06/windows-i586/[/url] uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070} publisher: Sun Microsystems, Inc. contact: [url]http://java.com[/url] help link: [url]http://java.com[/url] readme: C:\Program Files\Java\jre1.6.0_07\README.txt Company of Heroes - FAKEMSI 2.0.0.0 ({32C4A4EB-C97D-414E-99C5-38F8DFD31D5D}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{32C4A4EB-C97D-414E-99C5-38F8DFD31D5D} publisher: THQ Inc. Nero DriveSpeed 3.99.5.105 ({33cf58f5-48d8-4575-83d6-96f574e4d83a}) version: 56819717 version (major): 3 version (minor): 99 estimated size: 3244 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_19\ publisher: Nero AG Nero Recode 3.53.0.0 ({359cfc0a-beb1-440d-95ba-cf63a86da34f}) version: 53805056 version (major): 3 version (minor): 53 estimated size: 84596 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_12\ publisher: Nero AG Nero Rescue Agent 1.99.0.1 ({368ba326-73ad-4351-84ed-3c0a7a52cc53}) version: 23265280 version (major): 1 version (minor): 99 estimated size: 4832 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_21\ publisher: Nero AG iTunes 8.0.0.35 ({41B9E2CF-0B3F-442A-B5B3-592A4A355634}) version: 134217728 version (major): 8 estimated size: 89551 install date: 20080921 install location: C:\Program Files\iTunes\ install source: C:\Users\Andrew\AppData\Local\Apple\Apple Software Update\ uninstall cmd: MsiExec.exe /I{41B9E2CF-0B3F-442A-B5B3-592A4A355634} publisher: Apple Inc. contact: AppleCare Support help link: [url]http://www.apple.com/support/[/url] help telephone: 1-800-275-2273 Nero Vision 6.0.6.100 ({43e39830-1826-415d-8bae-86845787b54b}) version: 100663302 version (major): 6 estimated size: 151345 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_16\ publisher: Nero AG Company of Heroes - FAKEMSI 2.0.0.0 ({50193078-F553-4EBA-AA77-64C9FAA12F98}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{50193078-F553-4EBA-AA77-64C9FAA12F98} publisher: THQ Inc. Company of Heroes - FAKEMSI 2.0.0.0 ({51D718D1-DA81-4FAD-919F-5C1CE3C33379}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{51D718D1-DA81-4FAD-919F-5C1CE3C33379} publisher: THQ Inc. neroxml 1.0.0 ({56C049BE-79E9-4502-BEA7-9754A3E60F9B}) version: 16777216 version (major): 1 estimated size: 3795 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_tpi_msxml-4\ uninstall cmd: MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} publisher: Nero AG contact: Nero AG ({582876EC-A178-44D4-9823-C10D6C62EAFF}) uninstall cmd: MsiExec /X{A7E07C2B-2220-4415-87E3-784D5814BC93} NeroExpress 9.0.9.100 ({595a3116-40bb-4e0f-a2e8-d7951da56270}) version: 150994953 version (major): 9 estimated size: 154334 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_6\ publisher: Nero AG Nero Vision 0.0.0.1 ({5d9be3c1-8ba4-4e7e-82fd-9f74fa6815d1}) estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_16\ publisher: Nero AG Nero RescueAgent Help 1.99.0.1 ({5e08ecd1-c98e-4711-bf65-8fd736b3f969}) version: 23265280 version (major): 1 version (minor): 99 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_21\ publisher: Nero AG Nero Disc Copy Gadget Help 2.0.0.0 ({60c731fb-c951-41ce-ad41-8e54c8594609}) version: 33554432 version (major): 2 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_50\ publisher: Nero AG Star Wars(R) Knights of the Old Republic(R) II: The Sith Lords(TM) 1.00.0000 ({629F65FB-7F3C-4D66-A1C0-20722744B7B6}) version: 16777216 install date: 20081021 install location: C:\Program Files\LucasArts\SWKotOR2 install source: E:\ uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{629F65FB-7F3C-4D66-A1C0-20722744B7B6}\setup.exe" -l0x9 -removeonly publisher: Obsidian help link: [url]http://www.lucasarts.com[/url] Nero CoverDesigner 4.0.5.100 ({62ac81f6-bdd3-4110-9d36-3e9eaab40999}) version: 67108869 version (major): 4 estimated size: 27026 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_5\ publisher: Nero AG Company of Heroes - FAKEMSI 2.0.0.0 ({66F78C51-D108-4F0C-A93C-1CBE74CE338F}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{66F78C51-D108-4F0C-A93C-1CBE74CE338F} publisher: THQ Inc. Apple Software Update 2.1.1.116 ({6956856F-B6B3-4BE0-BA0B-8F495BE32033}) version: 33619969 version (major): 2 version (minor): 1 estimated size: 2208 install date: 20080921 install location: C:\Program Files\Apple Software Update\ install source: C:\Users\Andrew\AppData\Local\Apple\Apple Software Update\ uninstall cmd: MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} publisher: Apple Inc. contact: AppleCare Support help link: [url]http://www.apple.com/support/[/url] help telephone: 1-800-275-2273 Windows Media Player Firefox Plugin 1.0.0.8 ({69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) version: 16777216 version (major): 1 estimated size: 296 install date: 20080911 install source: C:\Users\Andrew\AppData\Local\Temp\IXP000.TMP\ uninstall cmd: MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4} publisher: Microsoft Corp SkinStudio 6.30 ({6A731356-4835-4C6A-B83B-E402191665F8}) version: 102629376 version (major): 6 version (minor): 30 estimated size: 32813 install date: 20081029 install location: C:\Program Files\Stardock\Object Desktop\SKS install source: C:\Users\Andrew\AppData\Local\Temp\mia1\ uninstall cmd: C:\ProgramData\{CCD0104E-95C0-4C73-A3E3-42C3D2072E43}\SkinStudio.exe publisher: Stardock Corporation MobileMe Control Panel 2.1.0.24 ({6DA9102E-199F-43A0-A36B-6EF48081A658}) version: 33619968 version (major): 2 version (minor): 1 estimated size: 5247 install date: 20080921 install location: C:\Program Files\Common Files\Apple\Mobile Device Support\ install source: C:\Users\Andrew\AppData\Local\Apple\Apple Software Update\ uninstall cmd: MsiExec.exe /I{6DA9102E-199F-43A0-A36B-6EF48081A658} publisher: Apple Inc. contact: AppleCare Support help link: [url]http://www.apple.com/support/[/url] help telephone: 1-800-275-2273 NVIDIA System Update 1.00.0000 ({6F69C969-2942-4E7B-B594-75B37664B8BA}) version: 16777216 version (major): 1 estimated size: 4072 install date: 20081026 install location: C:\Program Files\NVIDIA Corporation\System Update\ install source: C:\Users\Andrew\AppData\Local\Temp\{5471F754-11CF-48EF-BF37-43BAB9A663E1}\ uninstall cmd: MsiExec.exe /I{6F69C969-2942-4E7B-B594-75B37664B8BA} publisher: NVIDIA Corporation Microsoft Visual C++ 2005 Redistributable 8.0.56336 ({7299052b-02a4-4627-81f2-1818da5d550d}) version: 134274064 version (major): 8 estimated size: 418 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\00000001_TEMP\ uninstall cmd: MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} publisher: Microsoft Corporation Nero StartSmart 9.0.10.100 ({7748ac8c-18e3-43bb-959b-088faea16fb2}) version: 150994954 version (major): 9 estimated size: 160576 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_15\ publisher: Nero AG Acrobat.com 0.0.0 ({77DCDCE3-2DED-62F3-8154-05E745472D07}) estimated size: 1623 install date: 20080921 install source: C:\Users\Andrew\AppData\Local\Temp\fla8A21.tmp\ uninstall cmd: MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07} publisher: Adobe Systems Incorporated Nero Live Help 1.0.162.0 ({77e33d87-255e-413e-9c8d-eed2a7f9bebf}) version: 16777378 version (major): 1 estimated size: 100 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_71\ publisher: Nero AG Nero BurnRights 2.99.6.100 ({7829db6f-a066-4e40-8912-cb07887c20bb}) version: 40042502 version (major): 2 version (minor): 99 estimated size: 2897 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_22\ publisher: Nero AG NVIDIA Performance 1.00.0000 ({7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) version: 16777216 version (major): 1 estimated size: 18197 install date: 20081026 install location: C:\Program Files\NVIDIA Corporation\ install source: C:\Users\Andrew\AppData\Local\Temp\{F2AE7AE0-A296-4CC0-8923-DD005C05F575}\ uninstall cmd: MsiExec.exe /I{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} publisher: NVIDIA Corporation comments: Your Comments contact: Customer Support Department help link: [url]http://www.yourcompany.com/help[/url] help telephone: 1-408-486-0000 NVIDIA ForceWare Network Access Manager 1.00.6777 ({7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) version: 16783993 version (major): 1 estimated size: 40190 install date: 20080828 install location: C:\Program Files\NVIDIA Corporation\NetworkAccessManager\ install source: C:\Users\Andrew\AppData\Local\Temp\{11AB7CEC-D882-4C68-BEB0-C8C5A0C2A679}\ uninstall cmd: MsiExec.exe /I{7CFA46E3-CC2F-4355-82AE-6012DC3633FD} publisher: NVIDIA Corporation Company of Heroes - FAKEMSI 2.0.0.0 ({7F4B1592-222F-4E5F-A100-E5AFD61A0BB3}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{7F4B1592-222F-4E5F-A100-E5AFD61A0BB3} publisher: THQ Inc. Company of Heroes - FAKEMSI 2.0.0.0 ({80D03817-7943-4839-8E96-B9F924C5E67D}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{80D03817-7943-4839-8E96-B9F924C5E67D} publisher: THQ Inc. Nero Express 9.0.0.0 ({83202942-84b3-4c50-8622-b8c0aa2d2885}) version: 150994944 version (major): 9 estimated size: 100 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_6\ publisher: Nero AG Nero DiscSpeed 4.99.5.105 ({869200db-287a-4dc0-b02b-2b6787fbcd4c}) version: 73596933 version (major): 4 version (minor): 99 estimated size: 3521 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_57\ publisher: Nero AG Bonjour 1.0.105 ({8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}) version: 16777321 version (major): 1 estimated size: 497 install date: 20080921 install location: C:\Program Files\Bonjour\ install source: C:\Users\Andrew\AppData\Local\Apple\Apple Software Update\ uninstall cmd: MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959} publisher: Apple Inc. contact: AppleCare Support help link: [url]http://www.apple.com/support/[/url] help telephone: 1-800-275-2273 QuickTime 7.55.90.70 ({8DC42D05-680B-41B0-8878-6C14D24602DB}) version: 121045082 version (major): 7 version (minor): 55 estimated size: 89495 install date: 20080921 install location: C:\Program Files\QuickTime\ install source: C:\Users\Andrew\AppData\Local\Apple\Apple Software Update\ uninstall cmd: MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB} publisher: Apple Inc. contact: AppleCare Support help link: [url]http://www.apple.com/support/[/url] help telephone: 1-800-275-2273 Microsoft Office Excel MUI (English) 2007 12.0.6215.1000 ({90120000-0016-0409-0000-0000000FF1CE}) version: 201332807 version (major): 12 estimated size: 36912 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-0016-0409-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-0016-0409-0000-0000000FF1CE}_STANDARDR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}) uninstall cmd: msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office PowerPoint MUI (English) 2007 12.0.6215.1000 ({90120000-0018-0409-0000-0000000FF1CE}) version: 201332807 version (major): 12 estimated size: 15389 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-0018-0409-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-0018-0409-0000-0000000FF1CE}_STANDARDR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}) uninstall cmd: msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Outlook MUI (English) 2007 12.0.6215.1000 ({90120000-001A-0409-0000-0000000FF1CE}) version: 201332807 version (major): 12 estimated size: 22828 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-001A-0409-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-001A-0409-0000-0000000FF1CE}_STANDARDR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}) uninstall cmd: msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Word MUI (English) 2007 12.0.6215.1000 ({90120000-001B-0409-0000-0000000FF1CE}) version: 201332807 version (major): 12 estimated size: 18657 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-001B-0409-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-001B-0409-0000-0000000FF1CE}_STANDARDR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}) uninstall cmd: msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Proof (English) 2007 12.0.6213.1000 ({90120000-001F-0409-0000-0000000FF1CE}) version: 201332805 version (major): 12 estimated size: 47895 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.en\ uninstall cmd: MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-001F-0409-0000-0000000FF1CE}_STANDARDR_{3EC77D26-799B-4CD8-914F-C1565E796173}) uninstall cmd: msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Proof (French) 2007 12.0.6213.1000 ({90120000-001F-040C-0000-0000000FF1CE}) version: 201332805 version (major): 12 estimated size: 23188 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.fr\ uninstall cmd: MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-001F-040C-0000-0000000FF1CE}_STANDARDR_{430971B1-C31E-45DA-81E0-72C095BAB72C}) uninstall cmd: msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Proof (Spanish) 2007 12.0.6213.1000 ({90120000-001F-0C0A-0000-0000000FF1CE}) version: 201332805 version (major): 12 estimated size: 38157 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\Proof.es\ uninstall cmd: MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-001F-0C0A-0000-0000000FF1CE}_STANDARDR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}) uninstall cmd: msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Proofing (English) 2007 12.0.4518.1014 ({90120000-002C-0409-0000-0000000FF1CE}) version: 201331110 version (major): 12 estimated size: 506 install date: 20080907 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-002C-0409-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE} publisher: Microsoft Corporation Microsoft Office Shared MUI (English) 2007 12.0.6215.1000 ({90120000-006E-0409-0000-0000000FF1CE}) version: 201332807 version (major): 12 estimated size: 48486 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-006E-0409-0000-0000000FF1CE}_STANDARDR_{FAD8A83E-9BAC-4179-9268-A35948034D85}) uninstall cmd: msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Shared Setup Metadata MUI (English) 2007 12.0.6215.1000 ({90120000-0115-0409-0000-0000000FF1CE}) version: 201332807 version (major): 12 estimated size: 502 install date: 20080922 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{90120000-0115-0409-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE} publisher: Microsoft Corporation 2007 Microsoft Office Suite Service Pack 1 (SP1) ({90120000-0115-0409-0000-0000000FF1CE}_STANDARDR_{FAD8A83E-9BAC-4179-9268-A35948034D85}) uninstall cmd: msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Microsoft Office Standard 2007 12.0.6215.1000 ({91120000-0012-0000-0000-0000000FF1CE}) version: 201332807 version (major): 12 estimated size: 732947 install date: 20081016 install location: C:\Program Files\Microsoft Office\ install source: C:\MSOCache\All Users\{91120000-0012-0000-0000-0000000FF1CE}-C\ uninstall cmd: MsiExec.exe /X{91120000-0012-0000-0000-0000000FF1CE} publisher: Microsoft Corporation Security Update for 2007 Microsoft Office System (KB955936) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{1D94099C-2BBA-440E-BD5E-093BBDF8F028}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {1D94099C-2BBA-440E-BD5E-093BBDF8F028} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/955936[/url] Update for Microsoft Office Outlook 2007 (KB952142) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{4AD3A076-427C-491F-A5B7-7D1DE788A756}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/952142[/url] Security Update for Microsoft Office PowerPoint 2007 (KB951338) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{558B709B-821B-4FC5-90FC-9A8890641E77}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/951338[/url] Security Update for Microsoft Office system 2007 (KB954326) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{5F7F6FFF-395D-480E-8450-64F385D82C5F}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/954326[/url] Security Update for Microsoft Office Excel 2007 (KB955470) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{6E8637D8-10D6-4568-AA06-E2706F31685E}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {6E8637D8-10D6-4568-AA06-E2706F31685E} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/955470[/url] Security Update for 2007 Microsoft Office System (KB951944) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{797AE457-BA17-4BBC-B501-25FB3A0103C7}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/951944[/url] Security Update for Microsoft Office system 2007 (KB951808) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{8F375E11-4FD6-4B89-9E2B-A76D48B51E00}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {8F375E11-4FD6-4B89-9E2B-A76D48B51E00} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/951808[/url] Update for Office 2007 (KB946691) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{A420F522-7395-4872-9882-C591B4B92278}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/946691[/url] Security Update for Microsoft Office Word 2007 (KB950113) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{AD72BABE-C733-4FCF-9674-4314466191B9}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {AD72BABE-C733-4FCF-9674-4314466191B9} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/950113[/url] 2007 Microsoft Office Suite Service Pack 1 (SP1) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/936982[/url] Update for Outlook 2007 Junk Email Filter (kb957258) ({91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{E070CDA4-A8DD-47FA-89A0-F5DA5D5DDFF9}) uninstall cmd: msiexec /package {91120000-0012-0000-0000-0000000FF1CE} /uninstall {E070CDA4-A8DD-47FA-89A0-F5DA5D5DDFF9} publisher: Microsoft help link: [url]http://support.microsoft.com/kb/957258[/url] Company of Heroes - FAKEMSI 2.0.0.0 ({97E5205F-EA4F-438F-B211-F1846419F1C1}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{97E5205F-EA4F-438F-B211-F1846419F1C1} publisher: THQ Inc. "Nero SoundTrax Help 4.0.15.0 ({98a67610-a3b5-4098-a423-3708040026d3}) version: 67108879 version (major): 4 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_14\ publisher: Nero AG Company of Heroes - FAKEMSI 2.0.0.0 ({99A7722D-9ACB-43F3-A222-ABC7133F159E}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{99A7722D-9ACB-43F3-A222-ABC7133F159E} publisher: THQ Inc. SPORE™ 1.00.0000 ({9DF0196F-B6B8-4C3A-8790-DE42AA530101}) version: 16777216 install date: 20080911 install location: C:\Program Files\Electronic Arts\SPORE install source: C:\Users\Andrew\Desktop\spor\ uninstall cmd: "C:\Program Files\InstallShield Installation Information\{9DF0196F-B6B8-4C3A-8790-DE42AA530101}\SPORESetup.exe" -runfromtemp -l0x0009 -removeonly publisher: Electronic Arts Nero PhotoSnap 1.53.2.0 ({9e82b934-9a25-445b-b8df-8012808074ac}) version: 20250626 version (major): 1 version (minor): 53 estimated size: 18472 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_10\ publisher: Nero AG Nero WaveEditor 5.0.18.0 ({a209525b-3377-43f4-b886-32f6b6e7356f}) version: 83886098 version (major): 5 estimated size: 82837 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_17\ publisher: Nero AG NVIDIA PhysX v8.09.04 8.09.04 ({A7E07C2B-2220-4415-87E3-784D5814BC93}) version: 134807556 version (major): 8 version (minor): 9 estimated size: 133484 install date: 20081026 install location: C:\Windows\TEMP\ install source: C:\Program Files\Common Files\Wise Installation Wizard\ uninstall cmd: MsiExec.exe /X{A7E07C2B-2220-4415-87E3-784D5814BC93} publisher: NVIDIA Corporation comments: PhysX Driver & Engines: 2.3.1/2/3; 2.4.0/1/4; 2.5.0/1/2/3/4; 2.6.0/1/2/3/4; 2.7.0/1/2/3/4/5/6; 2.8.0/1 help link: [url]www.NVIDIA.com[/url] ImagXpress 7.0.74.0 ({A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}) version: 117440586 version (major): 7 estimated size: 3575 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_tpi_imagxpress-7.0.74.0\ publisher: Nero AG Apple Mobile Device Support 2.1.0.25 ({AA9768AA-FF0B-4C66-A085-31E934F77841}) version: 33619968 version (major): 2 version (minor): 1 estimated size: 37980 install date: 20080921 install location: C:\Program Files\Common Files\Apple\Mobile Device Support\ install source: C:\Users\Andrew\AppData\Local\Apple\Apple Software Update\ uninstall cmd: MsiExec.exe /I{AA9768AA-FF0B-4C66-A085-31E934F77841} publisher: Apple Inc. contact: AppleCare Support help link: [url]http://www.apple.com/support/[/url] help telephone: 1-800-275-2273 Adobe Reader 9 9.0.0 ({AC76BA86-7AD7-1033-7B44-A90000000001}) version: 150994944 version (major): 9 estimated size: 207548 install date: 20080921 install location: C:\Program Files\Adobe\Reader 9.0\Reader\ install source: C:\Users\Andrew\Desktop\Adobe Reader 9 Installer\READER9\ uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001} publisher: Adobe Systems Incorporated comments: contact: Customer Support help link: [url]http://www.adobe.com/support/main.html[/url] readme: C:\Program Files\Adobe\Reader 9.0\Readme.htm Nero Recode Help 3.53.0.0 ({ad6bc5cc-2ef0-49c4-b33d-cdc8b2c4dc80}) version: 53805056 version (major): 3 version (minor): 53 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_12\ publisher: Nero AG ({AFD5ED58-271A-4907-96C2-2745C83BB035}) DolbyFiles 2.0 ({b1adf008-e898-4fe2-8a1f-690d9a06acaf}) version: 33554432 version (major): 2 estimated size: 520 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_69\ publisher: Nero AG Advertising Center 0.0.0.1 ({b2ec4a38-b545-4a00-8214-13fe0e915e6d}) estimated size: 21364 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_61\ publisher: Nero AG Spybot - Search & Destroy 1.6.0 ({B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) install date: 20081106 install location: C:\Program Files\Spybot - Search & Destroy\ uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe" publisher: Safer Networking Limited help link: [url]http://www.safer-networking.org/index.php?page=support[/url] Diskeeper 2008 Pro Premier 12.0.781.32 ({B695F0BF-D610-4C5E-B7AC-C9FF6C172CC0}) version: 201327373 version (major): 12 estimated size: 16691 install date: 20081025 install location: C:\Program Files\Diskeeper Corporation\Diskeeper\ install source: C:\Windows\Installer\{CC376B29-60E1-43A1-A8D1-2BF0318D3C6C}\ uninstall cmd: MsiExec.exe /X{B695F0BF-D610-4C5E-B7AC-C9FF6C172CC0} publisher: Diskeeper Corporation comments: Disk Defragmenter contact: Technical Support help link: [url]http://www.diskeeper.com/support/support.asp[/url] help telephone: US - 818-771-1600 EU - 44-1342-327-477 Japan - 03-3447-7544 Menu Templates - Starter Kit 9.0.4.0 ({b78120a0-cf84-4366-a393-4d0a59bc546c}) version: 150994948 version (major): 9 estimated size: 5872 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_62\ publisher: Nero AG Company of Heroes - FAKEMSI 2.0.0.0 ({BA801B94-C28D-46EE-B806-E1E021A3D519}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{BA801B94-C28D-46EE-B806-E1E021A3D519} publisher: THQ Inc. ({BB8B979E-E336-47E7-96BC-1031C1B94561}) Nero ControlCenter 9.0.0.1 ({bd5ca0da-71ad-43da-b19e-6eee0c9adc9a}) version: 150994944 version (major): 9 estimated size: 9360 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_63\ publisher: Nero AG MSXML 4.0 SP2 (KB936181) 4.20.9848.0 ({C04E32E0-0416-434D-AFB9-6969D703A9EF}) version: 68429432 version (major): 4 version (minor): 20 estimated size: 1296 install date: 20081028 install source: c:\7e067801e473437c85586541384c41\ uninstall cmd: MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF} publisher: Microsoft Corporation help link: [url]http://support.microsoft.com/kb/936181[/url] Medieval II Total War 1.03.000 ({C0698BDA-0D29-40EE-8570-A31106DF9AB1}) version: 16973824 install date: 20080911 install location: C:\Program Files\SEGA\Medieval II Total War install source: D:\ uninstall cmd: C:\Program Files\InstallShield Installation Information\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}\setup.exe -runfromtemp -l0x0009 -removeonly publisher: SEGA help link: [url]http://www.sega.com/support[/url] help telephone: 1-800-USA-SEGA Ultimate Encoder 2006 Trial 6.06 ({C48BC7E5-B0B9-4F79-92DB-E0B973E32D4F}) version: 101056512 version (major): 6 version (minor): 6 estimated size: 22071 install date: 20080910 install location: C:\Program Files\Ultimate Encoder 2006 Trial install source: C:\Users\Andrew\AppData\Local\Temp\mia1\ publisher: Ultimate Systems MSXML 4.0 SP2 (KB941833) 4.20.9849.0 ({C523D256-313D-4866-B36A-F3DE528246EF}) version: 68429433 version (major): 4 version (minor): 20 estimated size: 1296 install date: 20081029 install source: c:\0b5cd00c65fe8072dea086a6\ uninstall cmd: MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF} publisher: Microsoft Corporation help link: [url]http://support.microsoft.com/kb/941833[/url] SoundTrax 4.0.18.0 ({c5a7cb6c-e76d-408f-ba0e-85605420fe9d}) version: 67108882 version (major): 4 estimated size: 102001 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_14\ publisher: Nero AG Microsoft .NET Framework 1.1 1.1.4322 ({CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) version: 16847074 version (major): 1 version (minor): 1 estimated size: 67662 install date: 20080912 install source: C:\Users\Andrew\AppData\Local\Temp\IXP000.TMP\ uninstall cmd: MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} publisher: Microsoft readme: file://C:\Windows\Microsoft.NET\Framework\v1.1.4322\1033\RepairRedist.htm Nero DiscSpeed 4.99.5.105 ({cc019e3f-59d2-4486-8d4b-878105b62a71}) version: 73596933 version (major): 4 version (minor): 99 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_57\ publisher: Nero AG Nero CoverDesigner Help 4.0.0.0 ({ce96f5a5-584d-4f8f-aa3e-9baed413db72}) version: 67108864 version (major): 4 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_5\ publisher: Nero AG NeroBurningROM 9.0.9.100 ({d025a639-b9c9-417d-8531-208859000af8}) version: 150994953 version (major): 9 estimated size: 154506 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_4\ publisher: Nero AG Company of Heroes - FAKEMSI 2.0.0.0 ({D4D244D1-05E0-4D24-86A2-B2433C435671}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{D4D244D1-05E0-4D24-86A2-B2433C435671} publisher: THQ Inc. Nero ShowTime 4.99.0.0 ({d9dcf92e-72eb-412d-ac71-3b01276e5f8b}) version: 73596928 version (major): 4 version (minor): 99 estimated size: 84026 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_13\ publisher: Nero AG Nero Live 1.0.164.0 ({df6a95f5-adc1-406a-bdc6-2aa7cc0182aa}) version: 16777380 version (major): 1 estimated size: 31571 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_71\ publisher: Nero AG Windows Media Encoder 9 Series 9.00.2980 ({E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}) version: 150997924 version (major): 9 estimated size: 14201 install date: 20080912 install source: C:\Program Files\Ultimate Encoder 2006 Trial\ uninstall cmd: MsiExec.exe /X{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E} publisher: Microsoft Corporation help link: [url]http://go.microsoft.com/fwlink/?LinkId=9647[/url] Movie Templates - Starter Kit 9.0.4.0 ({e498385e-1c51-459a-b45f-1721e37aa1a0}) version: 150994948 version (major): 9 estimated size: 48544 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_64\ publisher: Nero AG Nero DriveSpeed 3.99.5.105 ({e5c7d048-f9b4-4219-b323-8bdb01a2563d}) version: 56819717 version (major): 3 version (minor): 99 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_19\ publisher: Nero AG Nero WaveEditor Help 5.0.15.0 ({e8631efb-6b9a-426c-b1ce-e7173ca26bf8}) version: 83886095 version (major): 5 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_17\ publisher: Nero AG Nero Installer 2.0.0.1 ({e8a80433-302b-4ff1-815d-fcc8eac482ff}) version: 33554432 version (major): 2 estimated size: 9253 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_30\ publisher: Nero AG NVIDIA System Monitor 1.00.0000 ({E9CFBE78-ED91-4FCF-9E6F-210E477E527D}) version: 16777216 version (major): 1 estimated size: 11538 install date: 20081026 install location: C:\Program Files\NVIDIA Corporation\ install source: C:\Users\Andrew\AppData\Local\Temp\{9E459F09-CFFF-402A-8FAD-4A7069D89CA6}\ uninstall cmd: MsiExec.exe /I{E9CFBE78-ED91-4FCF-9E6F-210E477E527D} publisher: NVIDIA Corporation comments: Your Comments contact: Customer Support Department help link: [url]http://www.yourcompany.com/help[/url] help telephone: 1-408-486-0000 ({E9F81423-211E-46B6-9AE0-38568BC5CF6F}) Company of Heroes - FAKEMSI 2.0.0.0 ({EAF636A9-F664-4703-A659-85A894DA264F}) version: 33554432 version (major): 2 estimated size: 16 install date: 20080831 install source: C:\Users\Andrew\AppData\Local\Temp\24a385ff892e45f58e982fff4f38c6ac\ uninstall cmd: MsiExec.exe /I{EAF636A9-F664-4703-A659-85A894DA264F} publisher: THQ Inc. Sins of a Solar Empire 1.00.00 ({ECCA8FE7-767A-4C8A-9DAA-BAB60F877C41}) version: 16777216 version (major): 1 estimated size: 1585424 install date: 20080921 install location: C:\Program Files\Stardock Games\Sins of a Solar Empire install source: C:\Users\Andrew\AppData\Local\Temp\mia1\ uninstall cmd: C:\ProgramData\{0E8E33D8-193A-414A-A909-0F101A142D26}\setup.exe publisher: Stardock Entertainment, Inc. Realtek High Definition Audio Driver 6.0.1.5618 ({F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) version: 37355520 install date: 20080828 install location: C:\Program Files\Realtek\Audio\InstallShield\ install source: C:\Users\Andrew\AppData\Local\Temp\pft48F3~tmp\ uninstall cmd: RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly publisher: Realtek Semiconductor Corp. Nero Disc Copy Gadget 1.53.0.0 ({f1861f30-3419-44db-b2a1-c274825698b3}) version: 20250624 version (major): 1 version (minor): 53 estimated size: 30391 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_50\ publisher: Nero AG Nero ControlCenter 0.0.0.1 ({f4041dce-3fe1-4e18-8a9e-9de65231ee36}) estimated size: 16 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_63\ publisher: Nero AG Nero BurnRights 2.99.6.100 ({f6bdd7c5-89ed-4569-9318-469aa9732572}) version: 40042502 version (major): 2 version (minor): 99 estimated size: 104 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_hlp_22\ publisher: Nero AG Nero InfoTool 5.99.5.105 ({fbcdfd61-7dcf-4e71-9226-873ba0053139}) version: 90374149 version (major): 5 version (minor): 99 estimated size: 4660 install date: 20081026 install source: C:\Users\Andrew\AppData\Local\Temp\NERO1002626\unit_app_20\ publisher: Nero AG --- System Services --- Service (registry key): .NET CLR Data Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET CLR Networking Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for Oracle Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for SqlServer Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NETFramework Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ACPI Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft ACPI Driver Image path: system32\drivers\acpi.sys Image size: 258232 Image MD5: 84FC6DF81212D16BE5C4F441682FECCC Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): adp94xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adp94xx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adpahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adpahci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adpu160m Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adpu160m.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adpu320 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\adpu320.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): adsi Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): AeLookupSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\aelupsvc.dll,-1 Description: @%SystemRoot%\system32\aelupsvc.dll,-2 Object name: localSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): AFD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Ancilliary Function Driver for Winsock Description: Ancilliary Function Driver for Winsock Image path: \SystemRoot\system32\drivers\afd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): agp440 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel AGP Bus Filter Image path: \SystemRoot\system32\drivers\agp440.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): aic78xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\djsvs.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ALG Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\Alg.exe,-112 Description: @%SystemRoot%\system32\Alg.exe,-113 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\alg.exe Image size: 58880 Image MD5: E69FB0E3112C40FDC0EF7D21A52DC951 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): aliide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\aliide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): ALSysIO Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ALSysIO Image path: \??\C:\Users\Andrew\AppData\Local\Temp\ALSysIO.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): amdagp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD AGP Bus Filter Driver Image path: \SystemRoot\system32\drivers\amdagp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): amdide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\amdide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): AmdK7 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD K7 Processor Driver Image path: \SystemRoot\system32\drivers\amdk7.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): AmdK8 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD K8 Processor Driver Image path: \SystemRoot\system32\drivers\amdk8.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): AntiVirScheduler Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Avira AntiVir Personal - Free Antivirus Scheduler Description: Service to schedule Avira AntiVir Personal - Free Antivirus jobs and updates. Object name: LocalSystem Image path: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe" Image size: 68865 Image MD5: D6C8942BEA3698A2E7559BD423BFA5D7 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): AntiVirService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Avira AntiVir Personal - Free Antivirus Guard Description: Offers permanent protection against viruses and malware with the AntiVir search engine. Object name: LocalSystem Image path: "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe" Image size: 151297 Image MD5: 335A142923FE7F97E8C8388ACD067568 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): Appinfo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\appinfo.dll,-100 Description: @%systemroot%\system32\appinfo.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,ProfSvc Service (registry key): Apple Mobile Device Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Apple Mobile Device Description: Provides the interface to Apple mobile devices. Object name: LocalSystem Image path: "C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe" Image size: 116040 Image MD5: B8E865D24F2753A35CC2A9A6A3CE1AD4 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: Tcpip Service (registry key): AppMgmt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @appmgmts.dll,-3250 Description: @appmgmts.dll,-3251 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): arc Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\arc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): arcsas Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\arcsas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ASP.NET Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ASP.NET_1.1.4322 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ASP.NET_2.0.50727 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): AsyncMac Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: RAS Asynchronous Media Driver Description: RAS Asynchronous Media Driver Image path: system32\DRIVERS\asyncmac.sys Image size: 17408 Image MD5: E86CF7CE67D5DE898F27EF884DC357D8 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): atapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IDE Channel Image path: system32\drivers\atapi.sys Image size: 21560 Image MD5: B35CFCEF838382AB6490B321C87EDF17 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): AudioEndpointBuilder Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\audiosrv.dll,-204 Description: @%SystemRoot%\System32\audiosrv.dll,-205 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): Audiosrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\audiosrv.dll,-200 Description: @%SystemRoot%\System32\audiosrv.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: AudioEndpointBuilder,RpcSs,MMCSS Service (registry key): avgio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avgio Image path: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: FltMgr Service (registry key): avgntflt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avgntflt Description: Avira AntiVir Personal - Free Antivirus mini-filter used for on-access scan to provide real-time antivirus security. Image path: \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): avipbb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avipbb Description: Avira's Driver for RootKit Detection Image path: system32\DRIVERS\avipbb.sys Image size: 75072 Image MD5: C132C2F16A99C0EAD91C600BB81A31F0 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): AxInstSV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\AxInstSV.dll,-103 Description: @%SystemRoot%\system32\AxInstSV.dll,-104 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k AxInstSVGroup Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): BattC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Beep Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Beep Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): BFE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\bfe.dll,-1001 Description: @%SystemRoot%\system32\bfe.dll,-1002 Object name: NT AUTHORITY\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): BITS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qmgr.dll,-1000 Description: @%SystemRoot%\system32\qmgr.dll,-1001 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,EventSystem Service (registry key): blbdrive Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\blbdrive.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Bonjour Service Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Bonjour Service Description: Bonjour allows applications like iTunes and Safari to advertise and discover services on the local network. Having Bonjour running enables you to connect to hardware devices like Apple TV and software services like iTunes sharing and AirTunes. If you disable Bonjour, any network service that explicitly depends on it will fail to start. Object name: LocalSystem Image path: "C:\Program Files\Bonjour\mDNSResponder.exe" Image size: 238888 Image MD5: 9EFE4236F8670846B6E7C5B0EFF6E715 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: Tcpip Service (registry key): bowser Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Bowser Description: Implements the datagram receiver for the computer browser browser service. Image path: system32\DRIVERS\bowser.sys Image size: 69632 Image MD5: 913CD06FBE9105CE6077E90FD4418561 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): BrFiltLo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother USB Mass-Storage Lower Filter Driver Image path: \SystemRoot\system32\drivers\brfiltlo.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BrFiltUp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother USB Mass-Storage Upper Filter Driver Image path: \SystemRoot\system32\drivers\brfiltup.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Browser Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\browser.dll,-100 Description: @%systemroot%\system32\browser.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServer Service (registry key): Brserid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC Serial Port Interface Driver (WDM) Image path: \SystemRoot\system32\drivers\brserid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): BrSerWdm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother WDM Serial driver Image path: \SystemRoot\system32\drivers\brserwdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): BrUsbMdm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC USB Fax Only Modem Image path: \SystemRoot\system32\drivers\brusbmdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): BrUsbSer Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC USB Serial WDM Driver Image path: \SystemRoot\system32\drivers\brusbser.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BTHMODEM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Bluetooth Serial Communications Driver Image path: \SystemRoot\system32\drivers\bthmodem.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): cdfs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: CD/DVD File System Reader Description: ISO9660/Joliet File System Reader for CD/DVDs. (Core) (All pieces) Image path: system32\DRIVERS\cdfs.sys Image size: 70144 Image MD5: 6C3A437FC873C6F6A4FC620B6888CB86 Control Set: CurrentControlSet Start: 4 Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class" Service (registry key): cdrom Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: CD-ROM Driver Image path: system32\DRIVERS\cdrom.sys Image size: 67072 Image MD5: 8D1866E61AF096AE8B582454F5E4D303 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): CertPropSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\certprop.dll,-11 Description: @%SystemRoot%\System32\certprop.dll,-12 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): circlass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Consumer IR Devices Image path: \SystemRoot\system32\drivers\circlass.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): CISVC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\CISVC.EXE,-1 Description: @%systemroot%\system32\CISVC.EXE,-2 Object name: LocalSystem Image path: %systemroot%\system32\CISVC.EXE Image size: 11264 Image MD5: A6F1CBAF61DA96E3A4E97B1B54D8280F Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): CLFS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Common Log (CLFS) Description: Common Log (CLFS) Image path: System32\CLFS.sys Image size: 224824 Image MD5: 1B84FD0937D3B99AF9BA38DDFF3DAF54 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): clr_optimization_v2.0.50727_32 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft .NET Framework NGEN v2.0.50727_X86 Description: Microsoft .NET Framework NGEN Object name: LocalSystem Image path: %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe Image size: 59392 Image MD5: D3BF342F47996E18490970FCFB8126A8 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Service (registry key): cmdide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\cmdide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): Compbatt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Composite Battery Driver Image path: \SystemRoot\system32\drivers\compbatt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): COMSysApp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-947 Description: @comres.dll,-948 Object name: LocalSystem Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} Image size: 7168 Image MD5: BE01E566D1F569AAB32D0335613E1EEA Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,EventSystem,SENS Service (registry key): ContentFilter Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ContentIndex Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): cpuz130 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: cpuz130 Image path: \??\C:\Users\Andrew\AppData\Local\Temp\cpuz130\cpuz_x32.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): crcdisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Crcdisk Filter Driver Image path: system32\drivers\crcdisk.sys Image size: 22632 Image MD5: 2A213AE086BBEC5E937553C7D9A2B22C Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): Crusoe Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Transmeta Crusoe Processor Driver Image path: \SystemRoot\system32\drivers\crusoe.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): crypt32 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): CryptSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001 Description: @%SystemRoot%\system32\cryptsvc.dll,-1002 Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): CSC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Offline Files Driver Description: Allows network files to be used while the local computer is offline. Image path: system32\drivers\csc.sys Image size: 320000 Image MD5: EE95A5F89766F199557E5900CE6B2D7D Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: rdbss Service (registry key): CscService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\cscsvc.dll,-200 Description: @%systemroot%\system32\cscsvc.dll,-201 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): DCLocator Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): DcomLaunch Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @oleres.dll,-5012 Description: @oleres.dll,-5013 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): DfsC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Dfs Client Driver Description: Dfs Client Driver Image path: System32\Drivers\dfsc.sys Image size: 74752 Image MD5: A7179DE59AE269AB70345527894CCD7C Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Depends On services: Mup Service (registry key): DFSR Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @dfsrres.dll,-101 Description: @dfsrres.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\DFSR.exe Image size: 2089984 Image MD5: E0D584AA76C7D845BA9F3A788260528F Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,EventSystem Service (registry key): Dhcp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\dhcpcsvc.dll,-100 Description: @%SystemRoot%\system32\dhcpcsvc.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,Tdx,Afd Service (registry key): disk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Disk Driver Image path: system32\drivers\disk.sys Image size: 52840 Image MD5: 841AF4C4D41D3E3B2F244E976B0F7963 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): Diskeeper Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Diskeeper Description: Allows Diskeeper to run on this computer and improve file system performance. Object name: LocalSystem Image path: "C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe" Image size: 1123608 Image MD5: D5DD4633FAD3E2CDC4D7E7353AE6D61D Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): Dnscache Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\dnsapi.dll,-101 Description: @%SystemRoot%\System32\dnsapi.dll,-102 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Tdx Service (registry key): dot3svc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\dot3svc.dll,-1102 Description: @%systemroot%\system32\dot3svc.dll,-1103 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,Ndisuio,Eaphost Service (registry key): DPS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\dps.dll,-500 Description: @%systemroot%\system32\dps.dll,-501 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): drmkaud Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Kernel DRM Audio Descrambler Image path: system32\drivers\drmkaud.sys Image size: 5632 Image MD5: EE472CD2C01F6F8E8AA1FA06FFEF61B6 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): DXGKrnl Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: LDDM Graphics Subsystem Description: Controls the underlying video driver stacks to provide fully-featured display capabilities. Image path: \SystemRoot\System32\drivers\dxgkrnl.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): E1G60 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel(R) PRO/1000 NDIS 6 Adapter Driver Image path: system32\DRIVERS\E1G60I32.sys Image size: 117760 Image MD5: F88FB26547FD2CE6D0A5AF2985892C48 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): EapHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\eapsvc.dll,-1 Description: @%systemroot%\system32\eapsvc.dll,-2 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,KeyIso Service (registry key): Ecache Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ReadyBoost Caching Driver Description: ReadyBoost Caching Driver Image path: System32\drivers\ecache.sys Image size: 132200 Image MD5: 0EFC7531B936EE57FDB4E837664C509F Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): ehRecvr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehrecvr.exe,-101 Description: @%SystemRoot%\ehome\ehrecvr.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehRecvr.exe Image size: 291840 Image MD5: B4580122B0A7B263B6EE9ACBA69C8013 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): ehSched Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehsched.exe,-101 Description: @%SystemRoot%\ehome\ehsched.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehsched.exe Image size: 131072 Image MD5: AD1870C8E5D6DD340C829E6074BF3C3F Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): ehstart Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehstart.dll,-101 Description: @%SystemRoot%\ehome\ehstart.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %windir%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: RPCSS Service (registry key): elxstor Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\elxstor.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): EmdCache Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): EMDMgmt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\emdmgmt.dll,-1000 Description: @%SystemRoot%\system32\emdmgmt.dll,-1001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: rpcss,ecache,slsvc,fileinfo Service (registry key): ESENT Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Eventlog Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wevtsvc.dll,-200 Description: @%SystemRoot%\system32\wevtsvc.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): EventSystem Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2450 Description: @comres.dll,-2451 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): fastfat Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FAT12/16/32 File System Driver Description: Note - dependance on CDROM.SYS only if required to read/write DVD-RAM media (which appears as CD class device). (Core) (All pieces) Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): Fax Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fxsresm.dll,-118 Description: @%systemroot%\system32\fxsresm.dll,-122 Object name: NT AUTHORITY\NetworkService Image path: %systemroot%\system32\fxssvc.exe Image size: 521216 Image MD5: 93F75490B02033DF8EDF4D7089C7E1D8 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: TapiSrv,RpcSs,PlugPlay,Spooler Service (registry key): fdc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Floppy Disk Controller Driver Image path: system32\DRIVERS\fdc.sys Image size: 25088 Image MD5: 63BDADA84951B9C03E641800E176898A Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): fdPHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fdPHost.dll,-100 Description: @%systemroot%\system32\fdPHost.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FDResPub Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fdrespub.dll,-100 Description: @%systemroot%\system32\fdrespub.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FileInfo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: File Information FS MiniFilter Description: Collects information about files in memory to be consumed by other system services. Image path: system32\drivers\fileinfo.sys Image size: 56424 Image MD5: 65773D6115C037FFD7EF8280AE85EB9D Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 1 Depends On services: fltmgr Service (registry key): Filetrace Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FileTrace Description: ETW File Trace Filter Image path: system32\drivers\filetrace.sys Image size: 27648 Image MD5: C226DD0DE060745F3E042F58DCF78402 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): flpydisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Floppy Disk Driver Image path: system32\DRIVERS\flpydisk.sys Image size: 20480 Image MD5: 6603957EFF5EC62D25075EA8AC27DE68 Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): FltMgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FltMgr Description: File System Filter Manager Driver Image path: system32\drivers\fltmgr.sys Image size: 183912 Image MD5: A6A8DA7AE4D53394AB22AC3AB6D3F5D3 Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 3 Service (registry key): FontCache3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309 Description: @%SystemRoot%\system32\PresentationHost.exe,-3310 Object name: NT Authority\LocalService Image path: %systemroot%\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe Image size: 36864 Image MD5: 7EF57375636991F794BF40B522A8E7EF Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): ForceWare Intelligent Application Manager (IAM) Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ForceWare Intelligent Application Manager (IAM) Object name: LocalSystem Image path: C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe Image size: 598016 Image MD5: F41965ACB0CF5AC5E5F0F319B949EAED Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Depends On services: RPCSS,WINMGMT Service (registry key): Fs_Rec Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 8 Error Control: 0 Service (registry key): fvevol Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: BitLocker Drive Encryption Filter Driver Description: Bitlocker Drive Encryption Filter Driver Image path: System32\DRIVERS\fvevol.sys Image size: 121960 Image MD5: 06A1CF72FBE3B50035FBFF428C8D84B4 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): gagp30kx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms Image path: \SystemRoot\system32\drivers\gagp30kx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): GEARAspiWDM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: GEAR ASPI Filter Driver Image path: System32\Drivers\GEARAspiWDM.sys Image size: 15464 Image MD5: AB8A6A87D9D7255C3884D5B9541A6E80 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): getPlus(R) Helper Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: getPlus(R) Helper Object name: LocalSystem Image path: C:\Program Files\NOS\bin\getPlus_HelperSvc.exe Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): gpsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @gpapi.dll,-112 Description: @gpapi.dll,-113 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,Mup Service (registry key): HdAudAddService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft 1.1 UAA Function Driver for High Definition Audio Service Image path: system32\drivers\HdAudio.sys Image size: 235520 Image MD5: CB04C744BE0A61B1D648FAED182C3B59 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HDAudBus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft UAA Bus Driver for High Definition Audio Image path: system32\DRIVERS\HDAudBus.sys Image size: 53760 Image MD5: 0DB613A7E427B5663563677796FD5258 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HidBth Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Bluetooth HID Miniport Image path: \SystemRoot\system32\drivers\hidbth.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 0 Service (registry key): HidIr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Infrared HID Driver Image path: \SystemRoot\system32\drivers\hidir.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 0 Service (registry key): hidserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\hidserv.dll,-101 Description: @%SystemRoot%\System32\hidserv.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): HidUsb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft HID Class Driver Image path: system32\DRIVERS\hidusb.sys Image size: 12288 Image MD5: 3C64042B95E583B366BA4E5D2450235E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): hkmsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\kmsvc.dll,-6 Description: @%SystemRoot%\system32\kmsvc.dll,-7 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): HpCISSs Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\hpcisss.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): HTTP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: HTTP Description: This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start. Image path: system32\drivers\HTTP.sys Image size: 385536 Image MD5: F31D27CCF514549A17E79BEBE01B40B6 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): i2omp Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\i2omp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): i8042prt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: i8042 Keyboard and PS/2 Mouse Port Driver Image path: system32\DRIVERS\i8042prt.sys Image size: 54784 Image MD5: 1C9EE072BAA3ABB460B91D7EE9152660 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): iaStorV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel RAID Controller Vista Image path: \SystemRoot\system32\drivers\iastorv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): idsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8192 Object name: LocalSystem Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" Image size: 741376 Image MD5: 6D1D3CAB85BA0C63CB83296A8A1825F9 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): iirsp Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\iirsp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): IISADMIN Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%windir%\system32\inetsrv\iisres.dll,-30007 Description: @%windir%\system32\inetsrv\iisres.dll,-30008 Object name: LocalSystem Image path: %windir%\system32\inetsrv\inetinfo.exe Image size: 13824 Image MD5: 54F2E6414D403DB9FB168DCC2F78AFE5 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,SamSS,HTTP Service (registry key): IKEEXT Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ikeext.dll,-501 Description: @%SystemRoot%\system32\ikeext.dll,-502 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: BFE Service (registry key): inetaccs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): InetInfo Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): IntcAzAudAddService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Service for Realtek HD Audio (WDM) Image path: system32\drivers\RTKVHDA.sys Image size: 2134424 Image MD5: 219CA9A36D6DE2EC04F958C907673436 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): intelide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\intelide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): intelppm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel Processor Driver Image path: system32\DRIVERS\intelppm.sys Image size: 39424 Image MD5: CE44CC04262F28216DD4341E9E36A16F Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): IPBusEnum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\IPBusEnum.dll,-102 Description: @%systemroot%\system32\IPBusEnum.dll,-103 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,fdPHost Service (registry key): IpFilterDriver Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IP Traffic Filter Driver Description: IP Traffic Filter Driver Image path: system32\DRIVERS\ipfltdrv.sys Image size: 47104 Image MD5: 880C6F86CC3F551B8FEA2C11141268C0 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): iphlpsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\iphlpsvc.dll,-200 Description: @%SystemRoot%\system32\iphlpsvc.dll,-201 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi Service (registry key): IpInIp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IP in IP Tunnel Driver Description: IP in IP Tunnel Driver Image path: system32\DRIVERS\ipinip.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IPMIDRV Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\ipmidrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): IPNAT Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IP Network Address Translator Description: IP Network Address Translator Image path: system32\DRIVERS\ipnat.sys Image size: 99840 Image MD5: 10077C35845101548037DF04FD1A420B Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): iPod Service Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: iPod Service Description: iPod hardware management services Object name: LocalSystem Image path: "C:\Program Files\iPod\bin\iPodService.exe" Image size: 536872 Image MD5: 3E1544C58548E3332C3F11768BEDE52E Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs Service (registry key): iprip Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\iprip.dll,-200 Description: @%Systemroot%\system32\iprip.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k ipripsvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): IRENUM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IR Bus Enumerator Description: IR Bus Enumerator Image path: system32\drivers\irenum.sys Image size: 13312 Image MD5: A82F328F4792304184642D6D397BB1E3 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): ISAPISearch Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): isapnp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PnP ISA/EISA Bus Driver Image path: \SystemRoot\system32\drivers\isapnp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): iScsiPrt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: iScsiPort Driver Image path: system32\DRIVERS\msiscsi.sys Image size: 168552 Image MD5: 4DCA456D4D5723F8FA9C6760D240B0DF Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): iteatapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ITEATAPI_Service_Install Image path: \SystemRoot\system32\drivers\iteatapi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): iteraid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ITERAID_Service_Install Image path: \SystemRoot\system32\drivers\iteraid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): kbdclass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Keyboard Class Driver Image path: system32\DRIVERS\kbdclass.sys Image size: 35384 Image MD5: B076B2AB806B3F696DAB21375389101C Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): kbdhid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Keyboard HID Driver Image path: \SystemRoot\system32\drivers\kbdhid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 0 Service (registry key): KeyIso Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @keyiso.dll,-100 Description: @keyiso.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): KSecDD Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\Drivers\ksecdd.sys Image size: 407144 Image MD5: 11D0BC1F2AFD8ABBB5A3DC47A042DE54 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): KtmRm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2946 Description: @comres.dll,-2947 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): LanmanServer Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\srvsvc.dll,-100 Description: @%systemroot%\system32\srvsvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: SamSS,Srv Service (registry key): LanmanWorkstation Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wkssvc.dll,-100 Description: @%systemroot%\system32\wkssvc.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Bowser,MRxSmb10,MRxSmb20,NSI Service (registry key): ldap Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): lltdio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Link-Layer Topology Discovery Mapper I/O Driver Image path: system32\DRIVERS\lltdio.sys Image size: 47104 Image MD5: FD015B4F95DAA2B712F0E372A116FBAD Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): lltdsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\lltdres.dll,-1 Description: @%SystemRoot%\system32\lltdres.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss,lltdio Service (registry key): lmhosts Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\lmhsvc.dll,-101 Description: @%SystemRoot%\system32\lmhsvc.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NetBT,Afd Service (registry key): Lsa Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): LSI_FC Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\lsi_fc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): LSI_SAS Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\lsi_sas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): LSI_SCSI Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\lsi_scsi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): luafv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: UAC File Virtualization Description: Virtualizes file write failures to per-user locations. Image path: \SystemRoot\system32\drivers\luafv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): Mcx2Svc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehres.dll,-15501 Description: @%SystemRoot%\ehome\ehres.dll,-15502 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Depends On services: SSDPSRV,IPBusEnum,TermService,fdphost Service (registry key): megasas Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\megasas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): MMCSS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\mmcss.dll,-100 Description: @%systemroot%\system32\mmcss.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): Modem Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\drivers\modem.sys Image size: 31744 Image MD5: 21755967298A46FB6ADFEC9DB6012211 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): monitor Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Monitor Class Function Driver Service Image path: system32\DRIVERS\monitor.sys Image size: 41984 Image MD5: 7446E104A5FE5987CA9E4983FBAC4F97 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): mouclass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Mouse Class Driver Image path: system32\DRIVERS\mouclass.sys Image size: 34360 Image MD5: 5FBA13C1A1841B0885D316ED3589489D Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): mouhid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Mouse HID Driver Image path: system32\DRIVERS\mouhid.sys Image size: 15872 Image MD5: B569B5C5D3BDE545DF3A6AF512CCCDBA Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): MountMgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Mount Point Manager Image path: System32\drivers\mountmgr.sys Image size: 54888 Image MD5: 01F1E5A3E4877C931CBB31613FEC16A6 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): mpio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Multi-Path Bus Driver Image path: \SystemRoot\system32\drivers\mpio.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): mpsdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23092 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23093 Image path: System32\drivers\mpsdrv.sys Image size: 63488 Image MD5: 6E7A7F0C1193EE5648443FE2D4B789EC Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MpsSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: mpsdrv,bfe Service (registry key): Mraid35x Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\mraid35x.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): MRxDAV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: WebDav Client Redirector Driver Description: WebDav Client Redirector Driver Image path: \SystemRoot\system32\drivers\mrxdav.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SMB MiniRedirector Wrapper and Engine Description: Implements the framework for the SMB filesystem redirector Image path: system32\DRIVERS\mrxsmb.sys Image size: 101888 Image MD5: 529B64F9735D27FEF1B8EA1678F8C79E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb10 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SMB 1.x MiniRedirector Description: Implements the SMB 1.x (CIFS) protocol. This protocol provides connectivity to network resources on pre-Windows Vista servers Image path: system32\DRIVERS\mrxsmb10.sys Image size: 211456 Image MD5: 58A9AB5754FA4CABEDE7401283B5A771 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): mrxsmb20 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SMB 2.0 MiniRedirector Description: Implements the SMB 2.0 protocol, which provides connectivity to network resources on Windows Vista and later servers Image path: system32\DRIVERS\mrxsmb20.sys Image size: 58368 Image MD5: 30A67C7D8B80281028916DED6A64AEC9 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): msahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\msahci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): msdsm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Multi-Path Device Specific Module Image path: \SystemRoot\system32\drivers\msdsm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): MSDTC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2797 Description: @comres.dll,-2798 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\msdtc.exe Image size: 106496 Image MD5: BC64A92D821EFEA8BAB8E8CAF1B668BC Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): MSDTC Bridge 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Msfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): MSFTPSVC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%windir%\system32\inetsrv\iisres.dll,-30005 Description: @%windir%\system32\inetsrv\iisres.dll,-30006 Object name: LocalSystem Image path: %windir%\system32\inetsrv\inetinfo.exe Image size: 13824 Image MD5: 54F2E6414D403DB9FB168DCC2F78AFE5 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: IISADMIN Service (registry key): msisadrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ISA/EISA Class Driver Image path: system32\drivers\msisadrv.sys Image size: 13928 Image MD5: 5F454A16A5146CD91A176D70F0CFA3EC Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): MSiSCSI Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000 Description: @%SystemRoot%\system32\iscsidsc.dll,-5001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): msiserver Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\msimsg.dll,-27 Description: @%SystemRoot%\system32\msimsg.dll,-32 Object name: LocalSystem Image path: %systemroot%\system32\msiexec /V Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: rpcss Service (registry key): MSKSSRV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Service Proxy Image path: system32\drivers\MSKSSRV.sys Image size: 8192 Image MD5: 892CEDEFA7E0FFE7BE8DA651B651D047 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPCLOCK Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Clock Proxy Image path: system32\drivers\MSPCLOCK.sys Image size: 5888 Image MD5: AE2CB1DA69B2676B4CEE2A501AF5871C Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPQM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Quality Manager Proxy Image path: system32\drivers\MSPQM.sys Image size: 5504 Image MD5: F910DA84FA90C44A3ADDB7CD874463FD Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MsRPC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSSCNTRS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): mssmbios Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft System Management BIOS Driver Image path: system32\DRIVERS\mssmbios.sys Image size: 28776 Image MD5: 4385C80EDE885E25492D408CAD91BD6F Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSTEE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Tee/Sink-to-Sink Converter Image path: system32\drivers\MSTEE.sys Image size: 6016 Image MD5: C826DD1373F38AFD9CA46EC3C436A14E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Mup Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Mup Description: Multiple UNC Provider Image path: System32\Drivers\mup.sys Image size: 46696 Image MD5: FA7AA70050CF5E2D15DE00941E5665E5 Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 1 Service (registry key): napagent Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qagentrt.dll,-6 Description: @%SystemRoot%\system32\qagentrt.dll,-7 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): NativeWifiP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NativeWiFi Filter Image path: system32\DRIVERS\nwifi.sys Image size: 154624 Image MD5: 6DA4A0FC7C0E83DF0CB3CFD0A514C3BC Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NDIS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NDIS System Driver Description: NDIS System Driver Image path: system32\drivers\ndis.sys Image size: 500840 Image MD5: 227C11E1E7CF6EF8AFB2A238D209760C Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): NdisTapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access NDIS TAPI Driver Description: Remote Access NDIS TAPI Driver Image path: system32\DRIVERS\ndistapi.sys Image size: 20480 Image MD5: 81659CDCBD0F9A9E07E6878AD8C78D3F Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Ndisuio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NDIS Usermode I/O Protocol Image path: system32\DRIVERS\ndisuio.sys Image size: 16896 Image MD5: 5DE5EE546BF40838EBE0E01CB629DF64 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NdisWan Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access NDIS WAN Driver Description: Remote Access NDIS WAN Driver Image path: system32\DRIVERS\ndiswan.sys Image size: 118784 Image MD5: 397402ADCBB8946223A1950101F6CD94 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NDProxy Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Nero BackItUp Scheduler 4.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Nero BackItUp Scheduler 4.0 Description: Nero BackItUp Scheduler 4.0 is responsible to control all jobs created using Nero BackItUp. These jobs can create backups of selected files/folders/partitions or complete hard disk to hard disk, network drive, disc or FTP. Object name: LocalSystem Image path: C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe Image size: 935208 Image MD5: C7F5C284B6F46FCAF6910EA4E644700B Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): NetBIOS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NetBIOS Interface Description: NetBIOS Interface Image path: system32\DRIVERS\netbios.sys Image size: 35840 Image MD5: 356DBB9F98E8DC1028DD3092FCEEB877 Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): netbt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NETBT Description: This service implements NetBios over TCP/IP. Image path: System32\DRIVERS\netbt.sys Image size: 184320 Image MD5: E3A168912E7EEFC3BD3B814720D68B41 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: Tdx,tcpip Service (registry key): Netlogon Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\netlogon.dll,-102 Description: @%SystemRoot%\System32\netlogon.dll,-103 Object name: LocalSystem Image path: %systemroot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation Service (registry key): Netman Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\netman.dll,-109 Description: @%SystemRoot%\system32\netman.dll,-110 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,nsi Service (registry key): netprofm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\netprof.dll,-246 Description: @%SystemRoot%\system32\netprof.dll,-247 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,nlasvc Service (registry key): NetTcpPortSharing Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8200 Object name: NT AUTHORITY\LocalService Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" Image size: 122880 Image MD5: B418382DE04FF58567AA07A2B66B2332 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Service (registry key): nfrd960 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\nfrd960.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): NlaSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\nlasvc.dll,-1 Description: @%SystemRoot%\System32\nlasvc.dll,-2 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,RpcSs,TcpIp Service (registry key): Npfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): nsi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\nsisvc.dll,-200 Description: @%SystemRoot%\system32\nsisvc.dll,-201 Object name: NT Authority\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: nsiproxy Service (registry key): nsiproxy Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NSI proxy service Description: NSI proxy service Image path: system32\drivers\nsiproxy.sys Image size: 16384 Image MD5: B488DFEC274DE1FC9D653870EF2587BE Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): nSvcIp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ForceWare IP service Object name: LocalSystem Image path: C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe Image size: 163840 Image MD5: ACC2B405B537BB361FDE81D065F6463D Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Depends On services: WINMGMT Service (registry key): NTDS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Ntfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): NtmsSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ntmssvc.dll,-2 Description: @%SystemRoot%\system32\ntmssvc.dll,-3 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k rsmsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): ntrigdigi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: N-trig HID Tablet Driver Image path: \SystemRoot\system32\drivers\ntrigdigi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): nTuneService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Performance Service Description: Service to allow a remote administrator to access this machine for gathering information, and performing performance updates Object name: LocalSystem Image path: C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe /StartService Image size: 155648 Image MD5: 5C8C9551F525A5B2477BA46ECA780583 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 0 Service (registry key): Null Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): NVENETFD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVIDIA nForce Networking Controller Driver Image path: system32\DRIVERS\nvmfdx32.sys Image size: 1042464 Image MD5: AE78A7285DF03A277415FC62F8CE8F24 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): nvlddmkm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\nvlddmkm.sys Image size: 7379872 Image MD5: 00832A21237BA36901B5A3E499F2E197 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): NvNetBus Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): NVR0Dev Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVR0Dev Image path: \??\C:\Windows\nvoclock.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NVR0FLASHDev Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVR0FLASHDev Image path: \??\C:\Windows\nvflash.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): nvraid Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\nvraid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): nvstor Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\drivers\nvstor.sys Image size: 40040 Image MD5: 9E0BA19A28C498A6D323D065DB76DFFC Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): nvstor32 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\nvstor32.sys Image size: 110624 Image MD5: 76CB39BD08CD9C2933210C34E4F88A0D Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): nvsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVIDIA Display Driver Service Description: Provides system and desktop level support to the NVIDIA display driver Object name: LocalSystem Image path: %SystemRoot%\system32\nvvsvc.exe Image size: 196608 Image MD5: 24A4AD50C9B79C47DA3414B82B94C71C Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: nvlddmkm Service (registry key): nv_agp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVIDIA nForce AGP Bus Filter Image path: \SystemRoot\system32\drivers\nv_agp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NwlnkFlt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IPX Traffic Filter Driver Description: IPX Traffic Filter Driver Image path: system32\DRIVERS\nwlnkflt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: NwlnkFwd Service (registry key): NwlnkFwd Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IPX Traffic Forwarder Driver Description: IPX Traffic Forwarder Driver Image path: system32\DRIVERS\nwlnkfwd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): odserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Office Diagnostics Service Description: Run portions of Microsoft Office Diagnostics. Object name: LocalSystem Image path: "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE" Image size: 443776 Image MD5: E54AA592A65F317390EEE386A8821692 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): ohci1394 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Texas Instruments OHCI Compliant IEEE 1394 Host Controller Image path: system32\DRIVERS\ohci1394.sys Image size: 62080 Image MD5: BE32DA025A0BE1878F0EE8D6D9386CD5 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ose Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Office Source Engine Description: Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports. Object name: LocalSystem Image path: "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE" Image size: 145184 Image MD5: 5A432A042DAE460ABE7199B758E8606C Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): Outlook Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): p2pimsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8004 Description: @%SystemRoot%\system32\p2psvc.dll,-8005 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): p2psvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8006 Description: @%SystemRoot%\system32\p2psvc.dll,-8007 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: p2pimsvc,PNRPSvc Service (registry key): Parport Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Parallel port driver Image path: \SystemRoot\system32\drivers\parport.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): partmgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Partition Manager Description: Disk class filter driver that auctions out partitions to volume managers Image path: System32\drivers\partmgr.sys Image size: 49256 Image MD5: 555A5B2C8022983BC7467BC925B222EE Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): Parvdm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\parvdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 0 Depends On services: Parport Depends On group: "Parallel arbitrator" Service (registry key): PcaSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\pcasvc.dll,-1 Description: @%SystemRoot%\system32\pcasvc.dll,-2 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): pci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PCI Bus Driver Image path: system32\drivers\pci.sys Image size: 140392 Image MD5: 1085D75657807E0E8B32F9E19A1647C3 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): pciide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\drivers\pciide.sys Image size: 15928 Image MD5: CABA65E9C41CD2900D4C92D4F825C5F8 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): pcmcia Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\pcmcia.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): PEAUTH Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PEAUTH Image path: system32\drivers\peauth.sys Image size: 878080 Image MD5: 6349F6ED9C623B44B52EA3C63C831A92 Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): PerfDisk Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfNet Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfOS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PerfProc Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): pla Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\pla.dll,-500 Description: @%systemroot%\system32\pla.dll,-501 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): PlugPlay Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\umpnpmgr.dll,-100 Description: @%SystemRoot%\system32\umpnpmgr.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): PNRPAutoReg Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8002 Description: @%SystemRoot%\system32\p2psvc.dll,-8003 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: pnrpsvc Service (registry key): PNRPsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8000 Description: @%SystemRoot%\system32\p2psvc.dll,-8001 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: p2pimsvc Service (registry key): PolicyAgent Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\polstore.dll,-5010 Description: @%SystemRoot%\system32\polstore.dll,-5011 Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Tcpip,bfe Service (registry key): PortProxy Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): PptpMiniport Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: WAN Miniport (PPTP) Description: WAN Miniport (PPTP) Image path: system32\DRIVERS\raspptp.sys Image size: 61440 Image MD5: 6C359AC71D7B550A0D41F9DB4563CE05 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Processor Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Processor Driver Image path: \SystemRoot\system32\drivers\processr.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ProfSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\profsvc.dll,-300 Description: @%systemroot%\system32\profsvc.dll,-301 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): ProtectedStorage Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\psbase.dll,-300 Description: @%systemroot%\system32\psbase.dll,-301 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): PSched Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\drivers\pacer.sys,-101 Description: @%SystemRoot%\System32\drivers\pacer.sys,-101 Image path: system32\DRIVERS\pacer.sys Image size: 70144 Image MD5: 2C8BAE55247C4E09352E870292E4D1AB Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): PsxDrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PsxDrv Description: PsxDrv Image path: system32\drivers\psxdrv.sys Image size: 8704 Image MD5: 93850BBDDD7FFBD1B33DCC1129DD627A Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): ql2300 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: QLogic Fibre Channel Miniport Driver Image path: \SystemRoot\system32\drivers\ql2300.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ql40xx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: QLogic iSCSI Miniport Driver Image path: \SystemRoot\system32\drivers\ql40xx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): QWAVE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qwave.dll,-1 Description: @%SystemRoot%\system32\qwave.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %windir%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss,psched,QWAVEdrv,LLTDIO Service (registry key): QWAVEdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\qwavedrv.sys,-1 Description: @%SystemRoot%\system32\drivers\qwavedrv.sys,-2 Image path: \SystemRoot\system32\drivers\qwavedrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): RasAcd Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access Auto Connection Driver Description: Remote Access Auto Connection Driver Image path: System32\DRIVERS\rasacd.sys Image size: 11776 Image MD5: BD7B30F55B3649506DD8B3D38F571D2A Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): RasAuto Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\rasauto.dll,-200 Description: @%Systemroot%\system32\rasauto.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RasMan,Tapisrv Service (registry key): Rasl2tp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: WAN Miniport (L2TP) Description: WAN Miniport (L2TP) Image path: system32\DRIVERS\rasl2tp.sys Image size: 75776 Image MD5: 88587DD843E2059848995B407B67F6CF Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): RasMan Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\rasmans.dll,-200 Description: @%Systemroot%\system32\rasmans.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: Tapisrv Service (registry key): RasPppoe Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access PPPOE Driver Description: Remote Access PPPOE Driver Image path: system32\DRIVERS\raspppoe.sys Image size: 41472 Image MD5: CCF4E9C6CBBAC81437F88CB2AE0B6C96 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): rdbss Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Redirected Buffering Sub Sysytem Description: Provides the framework for network mini-redirectors Image path: system32\DRIVERS\rdbss.sys Image size: 222208 Image MD5: 54129C5D9581BBEC8BD1EBD3BA813F47 Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Depends On services: Mup Service (registry key): RDPCDD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: RDPCDD Description: RDPDD Chained DD Image path: System32\DRIVERS\RDPCDD.sys Image size: 6144 Image MD5: 794585276B5D7FCA9F3FC15543F9F0B9 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 0 Service (registry key): RDPDD Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): rdpdr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Terminal Server Device Redirector Driver Image path: system32\DRIVERS\rdpdr.sys Image size: 242688 Image MD5: E8BD98D46F2ED77132BA927FCCB47D8B Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): RDPENCDD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: RDP Encoder Mirror Driver Description: RDP Encoder Mirror Driver Image path: system32\drivers\rdpencdd.sys Image size: 6144 Image MD5: 980B56E2E273E19D3A9D72D5C420F008 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 0 Service (registry key): RDPNP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drprov.dll,-100 Description: @%systemroot%\system32\drprov.dll,-101 Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): RDPWD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: RDP Winstation Driver Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): RemoteAccess Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\mprdim.dll,-200 Description: @%Systemroot%\system32\mprdim.dll,-201 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Depends On services: RpcSS,RasMan,bfe Depends On group: NetBIOSGroup Service (registry key): RemoteRegistry Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @regsvc.dll,-1 Description: @regsvc.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k regsvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): RpcLocator Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\Locator.exe,-2 Description: @%systemroot%\system32\Locator.exe,-3 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\locator.exe Image size: 7680 Image MD5: 5123F83CBC4349D065534EEB6BBDC42B Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): RpcSs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @oleres.dll,-5010 Description: @oleres.dll,-5011 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k rpcss Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: DcomLaunch Service (registry key): rspndr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Link-Layer Topology Discovery Responder Image path: system32\DRIVERS\rspndr.sys Image size: 60416 Image MD5: 97E939D2128FEC5D5A3E6E79B290A2F4 Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): SamSs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\samsrv.dll,-1 Description: @%SystemRoot%\system32\samsrv.dll,-2 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 7680 Image MD5: 6A0E382E74280E4CC0DF17FE2661D003 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): sbp2port Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SBP-2 Transport/Protocol Bus Driver Image path: \SystemRoot\system32\drivers\sbp2port.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SBSDWSCService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SBSD Security Center Service Object name: LocalSystem Image path: C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe Image size: 809296 Image MD5: 55C1E4FDFD62A48FB5A2CE25F3AA8AE8 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: wscsvc Service (registry key): SCardSvr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\SCardSvr.dll,-1 Description: @%SystemRoot%\System32\SCardSvr.dll,-5 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): Schedule Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\schedsvc.dll,-100 Description: @%SystemRoot%\system32\schedsvc.dll,-101 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,EventLog Service (registry key): SCPolicySvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\certprop.dll,-13 Description: @%SystemRoot%\System32\certprop.dll,-14 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): SDRSVC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\sdrsvc.dll,-107 Description: @%SystemRoot%\system32\sdrsvc.dll,-102 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k SDRSVC Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): secdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Security Driver Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): seclogon Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\seclogon.dll,-7001 Description: @%SystemRoot%\system32\seclogon.dll,-7000 Object name: LocalSystem Image path: %windir%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): SENS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\Sens.dll,-200 Description: @%SystemRoot%\system32\Sens.dll,-201 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: EventSystem Service (registry key): Serenum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Serenum Filter Driver Image path: system32\DRIVERS\serenum.sys Image size: 17920 Image MD5: 68E44E331D46F0FB38F0863A84CD1A31 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Serial Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Serial port driver Image path: system32\DRIVERS\serial.sys Image size: 83456 Image MD5: C70D69A918B178D3C3B06339B40C2E1B Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 0 Service (registry key): sermouse Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Serial Mouse Driver Image path: \SystemRoot\system32\drivers\sermouse.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ServiceModelEndpoint 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelOperation 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ServiceModelService 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): SessionEnv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\SessEnv.dll,-1026 Description: @%SystemRoot%\System32\SessEnv.dll,-1027 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,LanmanWorkstation Service (registry key): sffdisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SFF Storage Class Driver Image path: \SystemRoot\system32\drivers\sffdisk.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): sffp_mmc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SFF Storage Protocol Driver for MMC Image path: \SystemRoot\system32\drivers\sffp_mmc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): sffp_sd Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SFF Storage Protocol Driver for SDBus Image path: \SystemRoot\system32\drivers\sffp_sd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): sfloppy Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: High-Capacity Floppy Disk Drive Image path: \SystemRoot\system32\drivers\sfloppy.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SharedAccess Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ipnathlp.dll,-106 Description: @%SystemRoot%\system32\ipnathlp.dll,-107 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Depends On services: Netman,WinMgmt,RasMan,BFE Service (registry key): ShellHWDetection Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\shsvcs.dll,-12288 Description: @%SystemRoot%\System32\shsvcs.dll,-12289 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: RpcSs Service (registry key): simptcp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\simptcp.dll,-200 Description: @%SystemRoot%\system32\simptcp.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\tcpsvcs.exe Image size: 9728 Image MD5: BFBC6A711E4D229B49C98861CF9BD72C Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: afd Service (registry key): sisagp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: SIS AGP Bus Filter Image path: \SystemRoot\system32\drivers\sisagp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): SiSRaid2 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sisraid2.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SiSRaid4 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sisraid4.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): slsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\SLsvc.exe,-101 Description: @%SystemRoot%\system32\SLsvc.exe,-100 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\SLsvc.exe Image size: 2605568 Image MD5: A1DCD30534835CB67733AD00175125A6 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RpcSs Service (registry key): SLUINotify Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\SLUINotify.dll,-103 Description: @%SystemRoot%\system32\SLUINotify.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: SLSvc,netprofm,EventSystem Service (registry key): Smb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50005 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50006 Image path: system32\DRIVERS\smb.sys Image size: 66048 Image MD5: AC0D90738ADB51A6FD12FF00874A2162 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): SMSvcHost 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): SNMP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\snmp.exe,-3 Description: @%SystemRoot%\system32\snmp.exe,-4 Object name: LocalSystem Image path: %SystemRoot%\System32\snmp.exe Image size: 47104 Image MD5: EF45DA704206C9B0FB12C50EF17EC99C Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): SNMPTRAP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\snmptrap.exe,-3 Description: @%SystemRoot%\system32\snmptrap.exe,-4 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\snmptrap.exe Image size: 12800 Image MD5: 2A146A055B4401C16EE62D18B8E2A032 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): spldr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Security Processor Loader Driver Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): Spooler Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\spoolsv.exe,-1 Description: @%systemroot%\system32\spoolsv.exe,-2 Object name: LocalSystem Image path: %SystemRoot%\System32\spoolsv.exe Image size: 124928 Image MD5: DA612EF2556776DF2630B68BF2D48935 Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Depends On services: RPCSS,http Service (registry key): sptd Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\Drivers\sptd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): srv Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\DRIVERS\srv.sys Image size: 290304 Image MD5: 63695467D2AF343EE8D6766399AA1204 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: srv2 Service (registry key): srv2 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: srv2 Description: Default SDDL for Windows Resource Protected file Image path: System32\DRIVERS\srv2.sys Image size: 130048 Image MD5: E8C4D5BCA3C7B5C2A040052AA467B5BF Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: srvnet Service (registry key): srvnet Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\DRIVERS\srvnet.sys Image size: 84992 Image MD5: CD11A0767E82DD8B1A3A26D305DBEC0F Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): SSDPSRV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\ssdpsrv.dll,-100 Description: @%systemroot%\system32\ssdpsrv.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: HTTP Service (registry key): ssmdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ssmdrv Description: Avira Snapshot Driver Image path: system32\DRIVERS\ssmdrv.sys Image size: 28352 Image MD5: 3D2829FDE1C52FC64DA5413889CE4DEE Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): Steam Client Service Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Steam Client Service Description: Steam Client Service monitors and updates Steam content Object name: LocalSystem Image path: C:\Program Files\Common Files\Steam\SteamService.exe /RunAsService Image size: 87288 Image MD5: B3397246ACFD892FF568C8D5C4D0FACA Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): stisvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wiaservc.dll,-9 Description: @%SystemRoot%\system32\wiaservc.dll,-10 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k imgsvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RpcSs,ShellHWDetection Service (registry key): swenum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Software Bus Driver Image path: system32\DRIVERS\swenum.sys Image size: 12776 Image MD5: 1379BDB336F8158C176A465E30759F57 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): swprv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\swprv.dll,-103 Description: @%SystemRoot%\System32\swprv.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k swprv Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): Symc8xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\symc8xx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Sym_hi Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sym_hi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Sym_u3 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\sym_u3.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): SysMain Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\sysmain.dll,-1000 Description: @%SystemRoot%\system32\sysmain.dll,-1001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: rpcss,fileinfo Service (registry key): TabletInputService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\TabSvc.dll,-100 Description: @%SystemRoot%\system32\TabSvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): TapiSrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tapisrv.dll,-10100 Description: @%SystemRoot%\system32\tapisrv.dll,-10101 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: PlugPlay,RpcSs Service (registry key): TBS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tbssvc.dll,-100 Description: @%SystemRoot%\system32\tbssvc.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): Tcpip Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50003 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50003 Image path: System32\drivers\tcpip.sys Image size: 803328 Image MD5: 5DF77458AA92FDB36FCE79C60F74AB5D Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): Tcpip6 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft IPv6 Protocol Driver Description: Microsoft IPv6 Protocol Driver Image path: system32\DRIVERS\tcpip.sys Image size: 803328 Image MD5: 5DF77458AA92FDB36FCE79C60F74AB5D Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): tcpipreg Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TCP/IP Registry Compatibility Description: Provides compatibility for legacy applications which interact with TCP/IP through the registry. If this service is stopped, certain applications may have impaired functionality. Image path: System32\drivers\tcpipreg.sys Image size: 27648 Image MD5: 5CE0C4A7B12D0067DAD527D72B68C726 Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): TDPIPE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TDPIPE Image path: system32\drivers\tdpipe.sys Image size: 17920 Image MD5: 964248AEF49C31FA6A93201A73FFAF50 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): TDTCP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: TDTCP Image path: system32\drivers\tdtcp.sys Image size: 28672 Image MD5: 7D2C1AE1648A60FCE4AA0F7982E419D3 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): tdx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tcpipcfg.dll,-50004 Description: @%SystemRoot%\system32\tcpipcfg.dll,-50004 Image path: system32\DRIVERS\tdx.sys Image size: 68096 Image MD5: AB4FDE8AF4A0270A46A001C08CBCE1C2 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): TermDD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Terminal Device Driver Image path: system32\DRIVERS\termdd.sys Image size: 50792 Image MD5: 2C549BD9DD091FBFAA0A2A48E82EC2FB Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): TermService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\termsrv.dll,-268 Description: @%SystemRoot%\System32\termsrv.dll,-267 Object name: NT Authority\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,TermDD Service (registry key): Themes Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\shsvcs.dll,-8192 Description: @%SystemRoot%\System32\shsvcs.dll,-8193 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): THREADORDER Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\mmcss.dll,-102 Description: @%systemroot%\system32\mmcss.dll,-103 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): TlntSvr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\tlntsvr.exe,-119 Description: @%SystemRoot%\system32\tlntsvr.exe,-116 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\tlntsvr.exe Image size: 75776 Image MD5: 18720B71393AD23954D69A361E500F47 Control Set: CurrentControlSet Start: 4 Type: 16 Error Control: 1 Depends On services: RPCSS,TCPIP Service (registry key): TrkWks Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\trkwks.dll,-1 Description: @%SystemRoot%\system32\trkwks.dll,-2 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): TrustedInstaller Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 Description: @%SystemRoot%\servicing\TrustedInstaller.exe,-101 Object name: localSystem Image path: %SystemRoot%\servicing\TrustedInstaller.exe Image size: 27136 Image MD5: 34E388A395FEDBA1D0511ED39BBF4074 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): TSDDD Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): tssecsrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Terminal Services Security Filter Driver Description: Terminal Services Security Filter Driver Image path: System32\DRIVERS\tssecsrv.sys Image size: 23552 Image MD5: 29F0ECA726F0D51F7E048BDB0B372F29 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): tunmp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Tun Miniport Adapter Driver Image path: system32\DRIVERS\tunmp.sys Image size: 15360 Image MD5: A858917785681743C512950FDFA14DB7 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): tunnel Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft IPv6 Tunnel Miniport Adapter Driver Image path: system32\DRIVERS\tunnel.sys Image size: 23040 Image MD5: 29F1D1D888EE61D20D5662E72AA34129 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): uagp35 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft AGPv3.5 Filter Image path: \SystemRoot\system32\drivers\uagp35.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): udfs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: udfs Description: Reads/Writes UDF 1.02,1.5,2.0x,2.5 disc formats, usually found on C/DVD discs. (Core) (All pieces) Image path: system32\DRIVERS\udfs.sys Image size: 225280 Image MD5: 6348DA98707CEDA8A0DFB05820E17732 Control Set: CurrentControlSet Start: 4 Type: 2 Error Control: 1 Service (registry key): UGatherer Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): UGTHRSVC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): UI0Detect Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ui0detect.exe,-101 Description: @%SystemRoot%\system32\ui0detect.exe,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\UI0Detect.exe Image size: 35840 Image MD5: 24A333F4F14DCFB6FF6D5A1B9E5D79DD Control Set: CurrentControlSet Start: 3 Type: 272 Error Control: 1 Service (registry key): uliagpkx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Uli AGP Bus Filter Image path: \SystemRoot\system32\drivers\uliagpkx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): uliahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\uliahci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): UlSata Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\ulsata.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): ulsata2 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\ulsata2.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): umbus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: UMBus Enumerator Driver Image path: system32\DRIVERS\umbus.sys Image size: 34816 Image MD5: 3FB78F1D1DD86D87BECECD9DFFA24DD9 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): UmRdpService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\umrdp.dll,-1000 Description: @%SystemRoot%\system32\umrdp.dll,-1001 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: TermService Service (registry key): UpdateCenterService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Update Center Service Description: Update Center Service Object name: LocalSystem Image path: C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe /StartService Image size: 114688 Image MD5: E76CAEFFF6D132DFC891433AD074D8C1 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 0 Service (registry key): upnphost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\upnphost.dll,-213 Description: @%systemroot%\system32\upnphost.dll,-214 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: SSDPSRV,HTTP Service (registry key): usb Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): USBAAPL Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Apple Mobile USB Driver Image path: System32\Drivers\usbaapl.sys Image size: 32000 Image MD5: DF38374E12E73C25B37B6F8A9B8622EF Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbccgp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft USB Generic Parent Driver Image path: \SystemRoot\system32\drivers\usbccgp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): usbcir Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: eHome Infrared Receiver (USBCIR) Image path: \SystemRoot\system32\drivers\usbcir.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): usbehci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft USB 2.0 Enhanced Host Controller Miniport Driver Image path: system32\DRIVERS\usbehci.sys Image size: 38400 Image MD5: C9FCD05B0A80EA08C2768E5A279B14DE Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbhub Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: USB2 Enabled Hub Image path: system32\DRIVERS\usbhub.sys Image size: 192000 Image MD5: 5E44F7D957F7560DA06BFE6B84B58A35 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbohci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft USB Open Host Controller Miniport Driver Image path: system32\DRIVERS\usbohci.sys Image size: 19456 Image MD5: 9333E482A173938788CBDE8F81EC52FB Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbprint Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft USB PRINTER Class Image path: \SystemRoot\system32\drivers\usbprint.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): USBSTOR Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: USB Mass Storage Driver Image path: system32\DRIVERS\USBSTOR.SYS Image size: 55296 Image MD5: 7887CE56934E7F104E98C975F47353C5 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): usbuhci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft USB Universal Host Controller Miniport Driver Image path: system32\DRIVERS\usbuhci.sys Image size: 22528 Image MD5: 325DBBACB8A36AF9988CCF40EAC228CC Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): USB_RNDIS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Compact Wireless-G USB Network Adapter with SpeedBooster Image path: system32\DRIVERS\usb8023.sys Image size: 14848 Image MD5: B930B3E1F15824CEE12B5838ED8EE40B Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): UxSms Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\dwm.exe,-2000 Description: @%SystemRoot%\system32\dwm.exe,-2001 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): vds Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\vds.exe,-100 Description: @%SystemRoot%\system32\vds.exe,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\vds.exe Image size: 392704 Image MD5: C9D0BAFEE0D0A2681F048CA61BC0DA96 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,PlugPlay Service (registry key): vga Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\vgapnp.sys Image size: 26112 Image MD5: 7D92BE0028ECDEDEC74617009084B5EF Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): VgaSave Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\System32\drivers\vga.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 0 Service (registry key): viaagp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: VIA AGP Bus Filter Image path: \SystemRoot\system32\drivers\viaagp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ViaC7 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: VIA C7 Processor Driver Image path: \SystemRoot\system32\drivers\viac7.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): viaide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\viaide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 3 Service (registry key): Viewpoint Manager Service Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Viewpoint Manager Service Description: Ensures Viewpoint 3D and Rich Media Technologies are up to date Object name: LocalSystem Image path: "C:\Program Files\Viewpoint\Common\ViewpointService.exe" Image size: 24652 Image MD5: 5F974FDE801C73952770736BECDE11E7 Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Depends On services: RPCSS Service (registry key): volmgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Volume Manager Driver Image path: system32\drivers\volmgr.sys Image size: 50280 Image MD5: 103E84C95832D0ED93507997CC7B54E8 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): volmgrx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Dynamic Volume Manager Description: Extension of the volume manager driver that manages software RAID volumes (spanned, striped, mirrored, RAID-5) on dynamic disks Image path: System32\drivers\volmgrx.sys Image size: 290408 Image MD5: 294DA8D3F965F6A8DB934A83C7B461FF Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): volsnap Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Storage volumes Image path: system32\drivers\volsnap.sys Image size: 211000 Image MD5: 80DC0C9BCB579ED9815001A4D37CBFD5 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): vsmraid Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\drivers\vsmraid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): VSS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\vssvc.exe,-102 Description: @%systemroot%\system32\vssvc.exe,-101 Object name: LocalSystem Image path: %systemroot%\system32\vssvc.exe Image size: 924160 Image MD5: E0E29D9EF2524ABD11749C7C2FD7F607 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): W32Time Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\w32time.dll,-200 Description: @%SystemRoot%\system32\w32time.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): W3SVC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%windir%\system32\inetsrv\iisres.dll,-30003 Description: @%windir%\system32\inetsrv\iisres.dll,-30004 Object name: LocalSystem Image path: %windir%\system32\svchost.exe -k iissvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: WAS,HTTP Service (registry key): WacomPen Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Wacom Serial Pen HID Driver Image path: \SystemRoot\system32\drivers\wacompen.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): Wanarp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access IP ARP Driver Description: Remote Access IP ARP Driver Image path: system32\DRIVERS\wanarp.sys Image size: 61952 Image MD5: 6798C1209A53B5A0DED8D437C45145FF Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Wanarpv6 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Remote Access IPv6 ARP Driver Description: Remote Access IPv6 ARP Driver Image path: system32\DRIVERS\wanarp.sys Image size: 61952 Image MD5: 6798C1209A53B5A0DED8D437C45145FF Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): WAS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%windir%\system32\inetsrv\iisres.dll,-30001 Description: @%windir%\system32\inetsrv\iisres.dll,-30002 Object name: LocalSystem Image path: %windir%\system32\svchost.exe -k iissvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): wbengine Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wbengine.exe,-104 Description: @%systemroot%\system32\wbengine.exe,-105 Object name: localSystem Image path: "%systemroot%\system32\wbengine.exe" Image size: 562176 Image MD5: 6D2F099D4CE88777E46CB1808C87B132 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): wcncsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wcncsvc.dll,-3 Description: @%SystemRoot%\system32\wcncsvc.dll,-4 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): WcsPlugInService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\WcsPlugInService.dll,-200 Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k wcssvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): Wd Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Watchdog Timer Driver Image path: system32\drivers\wd.sys Image size: 19560 Image MD5: AFC5AD65B991C1E205CF25CFDBF7A6F4 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): Wdf01000 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Kernel Mode Driver Frameworks service Image path: system32\drivers\Wdf01000.sys Image size: 495160 Image MD5: 7B5F66E4A2219C7D9DAF9E738480E534 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): WdiServiceHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wdi.dll,-502 Description: @%systemroot%\system32\wdi.dll,-503 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k wdisvc Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): WdiSystemHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wdi.dll,-500 Description: @%systemroot%\system32\wdi.dll,-501 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): WebClient Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\webclnt.dll,-100 Description: @%systemroot%\system32\webclnt.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: MRxDAV Service (registry key): Wecsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wecsvc.dll,-200 Description: @%SystemRoot%\system32\wecsvc.dll,-201 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): wercplsupport Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wercplsupport.dll,-101 Description: @%SystemRoot%\System32\wercplsupport.dll,-100 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): WerSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wersvc.dll,-100 Description: @%SystemRoot%\System32\wersvc.dll,-101 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k WerSvcGroup Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Service (registry key): WinDefend Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 Description: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-3068 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k secsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): WindowBlinds Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Stardock WindowBlinds Description: Stardock WindowBlinds Service Object name: LocalSystem Image path: C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\VistaSrv.exe Image size: 230648 Image MD5: C498874A4E20813DB9A42D7EC21EFA9D Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Service (registry key): Windows Workflow Foundation 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): WinHttpAutoProxySvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\winhttp.dll,-100 Description: @%SystemRoot%\system32\winhttp.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: Dhcp Service (registry key): Winmgmt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\wbem\wmisvc.dll,-205 Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204 Object name: localSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 0 Depends On services: RPCSS Service (registry key): WinRing0_1_1_1 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: WinRing0_1_1_1 Image path: \??\C:\Users\Andrew\Documents\RealTemp_2.70\WinRing0.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): WinRM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\wsmsvc.dll,-101 Description: @%Systemroot%\system32\wsmsvc.dll,-102 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,HTTP Service (registry key): Winsock Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 4 Error Control: 1 Service (registry key): WinSock2 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Wlansvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wlansvc.dll,-257 Description: @%SystemRoot%\System32\wlansvc.dll,-258 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: nativewifip,RpcSs,Ndisuio,Eaphost Service (registry key): WmiAcpi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Windows Management Interface for ACPI Image path: \SystemRoot\system32\drivers\wmiacpi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): WmiApRpl Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): wmiApSrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 Description: @%Systemroot%\system32\wbem\wmiapsrv.exe,-111 Object name: localSystem Image path: %systemroot%\system32\wbem\WmiApSrv.exe Image size: 137216 Image MD5: A279323BEE5FFFAFDA222910BCE92132 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): WMPNetworkSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 Description: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-102 Object name: NT AUTHORITY\NetworkService Image path: "%ProgramFiles%\Windows Media Player\wmpnetwk.exe" Image size: 895488 Image MD5: ACB2E63D50157E3EA7140F29D9E76A48 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: UPnPHost,http Service (registry key): WMSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%windir%\system32\inetsrv\iisres.dll,-20001 Description: @%windir%\system32\inetsrv\iisres.dll,-20002 Object name: NT AUTHORITY\LocalService Image path: %windir%\system32\inetsrv\wmsvc.exe Image size: 10752 Image MD5: CB42221865D9147BEC618D3A0BD3DB26 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: HTTP Service (registry key): WPCSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wpcsvc.dll,-100 Description: @%SystemRoot%\system32\wpcsvc.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): WPDBusEnum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wpdbusenum.dll,-100 Description: @%SystemRoot%\system32\wpdbusenum.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): ws2ifsl Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Windows Socket 2.0 Non-IFS Service Provider Support Environment Description: Winsock IFS driver Image path: \SystemRoot\system32\drivers\ws2ifsl.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): wscsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\wscsvc.dll,-200 Description: @%SystemRoot%\System32\wscsvc.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,WinMgmt Service (registry key): WSearch Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\SearchIndexer.exe,-103 Description: @%systemroot%\system32\SearchIndexer.exe,-104 Object name: LocalSystem Image path: %systemroot%\system32\SearchIndexer.exe /Embedding Image size: 287744 Image MD5: 5DE40982E3AE45DC00586A93637B351B Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): WSearchIdxPi Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): wuauserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wuaueng.dll,-105 Description: @%systemroot%\system32\wuaueng.dll,-106 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): WUDFRd Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\WUDFRd.sys Image size: 82560 Image MD5: A2AAFCC8A204736296D937C7C545B53F Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): wudfsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wudfsvc.dll,-1000 Description: @%SystemRoot%\system32\wudfsvc.dll,-1001 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 22016 Image MD5: 10DA15933D582D2FEDCF705EFE394B09 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): xmlprov Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): {5B94A6E5-1873-4081-8F96-CFCCD6CC4B31} Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): {AD3B0F5F-6656-41AC-9593-90D7020C6084} Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): ajl77r8t Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0
IF u re posting such a long info, for the ease of reading pls post it as an attachment. No anti spyware is perfect, it ll give some false alarms, but it 'll be very little. So no need to worry. S&D is a good program. And avoid posting such lonnnnnnnng posts.
haha i did that last night before i went to bed, had no idea it was so long, next time i'll put it in a box or something to scroll through. and thx that's what i figured.