Thank you very much------------>>>>>>>>>>>>>>>>>>>>>>
WOW Mike is easier to get graduate from unuversity
spybot find a spyware wich is related to logitec (videocam), this the reason
why I did not delete it.
I can see that is also on a long list of Register Keys.
Do you suggest to delete it?? Because I think that this must be the
problem......................
THE REPORT:
--- Search result list ---
BackWeb lite: File extension (Registry key, nothing done)
HKEY_CLASSES_ROOT\bwpfile
BackWeb lite: File extension (Registry key, nothing done)
HKEY_CLASSES_ROOT\.bwp
BackWeb lite: Global settings (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\BackWeb
BackWeb lite: Netscape viewer (Registry value, nothing done)
HKEY_USERS\S-1-5-21-329068152-1336601894-725345543-1003\Software\Netscape\Netscape
Navigator\Viewers\application/x-bwpreview
Company:
http://www.backweb.com/
Product: BackWeb lite
Threat: Adware/Spyware
Company URL:
_
http://www.backweb.com/_
Company product URL:
_
http://www.backweb.com/products/html/backweb_eaccelerator.html_
Company privacy URL:
_
http://www.cameocast.com/legal/privacypolicy.asp_
Functionality
Installs unknown items & advertisement popups on your system.
Description
Comes with Western Digital Data Lifeline as well as with HP & Compaq
systems. If you intended to install the normal BackWeb, please add BackWeb
to your exclude list. But if you know nothing about installing BackWeb,
chances are good that it is the 'lite' version. This one connects to a
Cameocast server (Source:
http://www.cexx.org/dlgli.htm), and you can read
Cameo's privavy statement above.
Privacy Statement
BackWeb: Stay in the loop With BackWeb's reporting capabilities, you'll know
who received each delivery, when they received it, and how they interacted
with it.
CameoCast: CameoCAST pushes content to your hard drive while you are online.
[...]This information such as the type of browser being used, its operating
system, and your IP address, is gathered in order to enhance your online
experience.
BackWeb lite: Interface (IBackWebDisplaySettings4_2) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{001B3F20-D866-11D1-8B4C-00609761C47A}
BackWeb lite: Interface (IBackWebChannel4_2) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{025632A0-BCEC-11D1-8B35-00609761C47A}
BackWeb lite: Interface (IBackWebDirectoryEntry) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{0C6E0440-0B50-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebDownloadTimeConstraint) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{0D1F7C83-8123-11D0-B5CA-0000B43698D6}
BackWeb lite: Interface (IBackWebDownloadTimeConstraintCollection) (Registry
key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{0D1F7C84-8123-11D0-B5CA-0000B43698D6}
BackWeb lite: Interface (IBackWebExtension) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{0F4FE440-983F-11D0-9B9C-444553540000}
BackWeb lite: Interface (IBackWebGeneralSettings) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{12473FC3-61A7-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebDialerSettings) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{12473FC4-61A7-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebCommSettings) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{12473FC5-61A7-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebDisplaySettings) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{12473FC6-61A7-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebSetup) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{12473FC7-61A7-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebDirectory) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{15030BC0-0B52-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebStoryFieldCollection) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{1D91D9E0-004B-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWeb2) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{23F43240-F78D-11D0-9A50-00AA004812C2}
BackWeb lite: Interface (IBackWebInfoPakDownloadServices) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{2DE07D90-DC04-11D0-A875-0000B43699FC}
BackWeb lite: Interface (IBackWebSetupNotifications) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{2F099AF0-6329-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebChannelTableNotifications) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{2F523082-5A0B-11D0-9B9C-444553540000}
BackWeb lite: Interface (IBackWebSetup4) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{3667E7B0-4F28-11D1-8ADB-00609761C47A}
BackWeb lite: Interface (IBackWebFileAccess) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{3AF78A6E-6F14-11D1-A884-0000B43699FC}
BackWeb lite: Interface (IBackWebInfoPakFilesCollection) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{3AF78A71-6F14-11D1-A884-0000B43699FC}
BackWeb lite: Interface (IBackWebInfoPakFile) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{3AF78A74-6F14-11D1-A884-0000B43699FC}
BackWeb lite: Interface (IBackWebOpenInfoPakFile) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{3AF78A77-6F14-11D1-A884-0000B43699FC}
BackWeb lite: Interface (IBackWebDirectoryNotifications) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{41CEBDC0-32C1-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebStoryTableNotifications) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{44230BC0-3105-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebInfoPakNotifications) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{4A3666F3-5F2D-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWeb) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{53FCF355-5323-11D0-A864-0000B43699FC}
BackWeb lite: Interface (IBackWebChannelCollection) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{53FCF35A-5323-11D0-A864-0000B43699FC}
BackWeb lite: Interface (IBackWebChannel) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{53FCF35B-5323-11D0-A864-0000B43699FC}
BackWeb lite: Interface (IBackWebStoryField) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{5B1E13A0-004B-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebDirectoryEntryCollection) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{5DF6CE40-0B50-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebFileAccessViaDir) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{608FE360-6FB2-11D1-A885-0000B43699FC}
BackWeb lite: Interface (IBackWebInfoPak4_2) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{610141C2-7701-11D1-B042-004095903824}
BackWeb lite: Interface (IBackWebAlertSettings) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{72B62B40-17D1-11D1-96A7-F8E906C10000}
BackWeb lite: Interface (IBackWeb4) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{740904E0-0BFB-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebPlayer) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{8028B940-4932-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebAllInfoPakCollection) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{8131F530-649E-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebChannelDownloadServices) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{9132E380-DC21-11D0-A875-0000B43699FC}
BackWeb lite: Interface (IBackWebItemDownloadServices) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{93BF8F00-DBE8-11D0-A875-0000B43699FC}
BackWeb lite: Interface (IBackWebChannel2) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{9647FB70-DC0F-11D0-A875-0000B43699FC}
BackWeb lite: Interface (IBackWebStoryCollection) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{9DB46422-FF61-11D0-9951-444553540000}
BackWeb lite: Interface (IBackWebAllStoryCollection) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{9DB46423-FF61-11D0-9951-444553540000}
BackWeb lite: Interface (IBackWebStory) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{9DB46424-FF61-11D0-9951-444553540000}
BackWeb lite: Interface (IBackWebChannelVariableCollection) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{A4BC67F0-6C90-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebChannel4) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{AEE96320-2131-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebCommunications) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{BAD37BC0-2231-11D1-9951-444553540000}
BackWeb lite: Interface (IBackWebChannelCollection4) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{BCD0C200-69C1-11D1-8AF8-00609761C47A}
BackWeb lite: Interface (IBackWebFilterSettings) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{C8CEEEE0-17D6-11D1-96A7-F8E906C10000}
BackWeb lite: Interface (IBackWebApplicationNotifications) (Registry key,
nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{D0894D60-6C6C-11D0-A866-0000B43699FC}
BackWeb lite: Interface (IBackWebGeneralSettings2) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{E01AD640-F87D-11D0-9A50-00AA004812C2}
BackWeb lite: Interface (IBackWebInfoPakCollection) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{EB1FFFC1-5688-11D0-A865-0000B43699FC}
BackWeb lite: Interface (IBackWebInfoPak) (Registry key, nothing done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{EB1FFFC2-5688-11D0-A865-0000B43699FC}
BackWeb lite: Interface (IBackWebChannelVariable) (Registry key, nothing
done)
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{FEFCA7F0-6C8E-11D0-A866-0000B43699FC}
--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---
2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2005-06-03 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2005-05-31 advcheck.dll (1.0.2.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2005-05-31 Tools.dll (2.0.0.2)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2005-04-26 Includes\Cookies.sbi (*)
2005-06-30 Includes\Dialer.sbi (*)
2005-06-30 Includes\Hijackers.sbi (*)
2005-06-23 Includes\Keyloggers.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2005-06-30 Includes\Malware.sbi (*)
2005-06-09 Includes\PUPS.sbi (*)
2005-04-27 Includes\Revision.sbi (*)
2005-06-09 Includes\Security.sbi (*)
2005-06-30 Includes\Spybots.sbi (*)
2005-02-17 Includes\Tracks.uti
2005-06-30 Includes\Trojans.sbi (*)
--- System information ---
Windows XP (Build: 2600) Service Pack 2
/ DataAccess: Microsoft Data Access Components KB870669
/ DataAccess: Security Update for Microsoft Data Access Components
/ DirectX: DirectX Update 819696
/ DirectX / DX9 / SP1: DirectX 9 Hotfix - KB839643
/ Windows Media Player: Windows Media Player Hotfix [See Q828026 for more
information]
/ Windows Media Player / SP0: Windows Media Player Hotfix [See Q828026 for
more information]
/ Windows Media Player: Windows Media Update 817787
/ Windows XP / SP2: Windows XP Service Pack 2
/ Windows XP / SP3: Windows XP Hotfix - KB834707
/ Windows XP / SP3: Windows XP Hotfix - KB867282
/ Windows XP / SP3: Windows XP Hotfix - KB873333
/ Windows XP / SP3: Windows XP Hotfix - KB873339
/ Windows XP / SP3: Security Update for Windows XP (KB883939)
/ Windows XP / SP3: Windows XP Hotfix - KB885250
/ Windows XP / SP3: Windows XP Hotfix - KB885835
/ Windows XP / SP3: Windows XP Hotfix - KB885836
/ Windows XP / SP3: Windows XP Hotfix - KB886185
/ Windows XP / SP3: Windows XP Hotfix - KB887472
/ Windows XP / SP3: Windows XP Hotfix - KB887742
/ Windows XP / SP3: Windows XP Hotfix - KB888113
/ Windows XP / SP3: Windows XP Hotfix - KB888302
/ Windows XP / SP3: Security Update for Windows XP (KB890046)
/ Windows XP / SP3: Windows XP Hotfix - KB890047
/ Windows XP / SP3: Windows XP Hotfix - KB890175
/ Windows XP / SP3: Windows XP Hotfix - KB890859
/ Windows XP / SP3: Windows XP Hotfix - KB890923
/ Windows XP / SP3: Windows XP Hotfix - KB891781
/ Windows XP / SP3: Security Update for Windows XP (KB893066)
/ Windows XP / SP3: Windows XP Hotfix - KB893086
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Windows Installer 3.1 (KB893803)
/ Windows XP / SP3: Security Update for Windows XP (KB896358)
/ Windows XP / SP3: Security Update for Windows XP (KB896422)
/ Windows XP / SP3: Security Update for Windows XP (KB896428)
/ Windows XP / SP3: Update for Windows XP (KB898461)
/ Windows XP / SP3: Security Update for Windows XP (KB901214)
/ Windows XP / SP3: Security Update for Windows XP (KB903235)
--- Startup entries list ---
Located: HK_LM:Run, ABBYY Community Agent
command: D:\Program Files\ABBYY FineReader 5.0 Pro\CAgent.exe
file: D:\Program Files\ABBYY FineReader 5.0 Pro\CAgent.exe
size: 253952
MD5: 8081d6a0b47c1fa1f5186d91c0a99c52
Located: HK_LM:Run, ATIPTA
command: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
file: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
size: 335872
MD5: e7d70592d84fe14e4a6c1f09d9c1bd34
Located: HK_LM:Run, AVG7_CC
command: C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
file: C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
size: 352768
MD5: 82f0d9baf07f7a63d6ca044251dd5598
Located: HK_LM:Run, CmUsbSound
command: RunDll32 cmcnfgu.cpl,CMICtrlWnd
file:
Located: HK_LM:Run, DiskeeperSystray
command: "D:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
file:
Located: HK_LM:Run, gcasServ
command: "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
file: C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
size: 473928
MD5: fc8fff9f2e3ebfb5b6ad8d91df6c0f23
Located: HK_LM:Run, InCD
command: C:\Program Files\Ahead\InCD\InCD.exe
file: C:\Program Files\Ahead\InCD\InCD.exe
size: 966706
MD5: 170a2c4fcc2bb6198e118698c218da15
Located: HK_LM:Run, IndexSearch
command: C:\Program Files\Scansoft\PaperPort\IndexSearch.exe
file: C:\Program Files\Scansoft\PaperPort\IndexSearch.exe
size: 36864
MD5: b5bc9306c84bad6200ca5699f5602dc5
Located: HK_LM:Run, iTunesHelper
command: D:\Program Files\iTunes\iTunesHelper.exe
file: D:\Program Files\iTunes\iTunesHelper.exe
size: 278528
MD5: 2e0e2be7bd6614ea4c86b9ece793e31e
Located: HK_LM:Run, KernelFaultCheck
command: %systemroot%\system32\dumprep 0 -k
file: C:\WINDOWS\system32\dumprep.exe
size: 10752
MD5: 13922eb54890c77005268882629a31fe
Located: HK_LM:Run, LogitechVideoRepair
command: D:\Program Files\Logitech\Video\ISStart.exe
file: D:\Program Files\Logitech\Video\ISStart.exe
size: 458752
MD5: 3d9d5aa7b8a3d9f447274599d3efb578
Located: HK_LM:Run, LogitechVideoTray
command: D:\Program Files\Logitech\Video\LogiTray.exe
file: D:\Program Files\Logitech\Video\LogiTray.exe
size: 217088
MD5: ee2a9192a73d51e7f4d9099fc35c32d0
Located: HK_LM:Run, LVCOMSX
command: C:\WINDOWS\system32\LVCOMSX.EXE
file: C:\WINDOWS\system32\LVCOMSX.EXE
size: 221184
MD5: bcd419d4ea19087e91601c1c2914323a
Located: HK_LM:Run, NeroCheck
command: C:\WINDOWS\System32\\NeroCheck.exe
file: C:\WINDOWS\System32\\NeroCheck.exe
size: 155648
MD5: 3e4c03cefad8de135263236b61a49c90
Located: HK_LM:Run, PaperPort PTD
command: C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
file: C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
size: 45108
MD5: ccdc00f353963e9e7dd839817b89d593
Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files\QuickTime\qttask.exe" -atboottime
file: C:\Program Files\QuickTime\qttask.exe
size: 77824
MD5: 5d22b4258489575412f6d18affc847a2
Located: HK_LM:Run, SunJavaUpdateSched
command: C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
file: C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
size: 36975
MD5: 1f6573d67dd5dc06dd29ec7fcf81dc6f
Located: HK_LM:Run, TkBellExe
command: "C:\Program Files\Common
iles\Real\Update_OB\realsched.exe" -osboot
file: C:\Program Files\Common Files\Real\Update_OB\realsched.exe
size: 180269
MD5: 7237366a57a26b7ed71c9b081fbdd6eb
Located: HK_LM:Run, UserFaultCheck
command: %systemroot%\system32\dumprep 0 -u
file: C:\WINDOWS\system32\dumprep.exe
size: 10752
MD5: 13922eb54890c77005268882629a31fe
Located: HK_LM:Run, vSkype
command: C:\Program Files\Santa Cruz Networks\vSkype\vSkype.exe no
file:
Located: HK_LM:Run, ymetray
command: "C:\Program Files\Yahoo!\Yahoo! Music Engine\ymetray.exe"
file: C:\Program Files\Yahoo!\Yahoo! Music Engine\ymetray.exe
size: 40960
MD5: 85d3e243db49f26ab114319674e92847
Located: HK_CU:Run, ctfmon.exe
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 24232996a38c0b0cf151c2140ae29fc8
Located: HK_CU:Run, LDM
command: C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\BackWeb-8876480.exe
file:
Located: HK_CU:Run, LogitechSoftwareUpdate
command: "D:\Program Files\Logitech\Video\ManifestEngine.exe" boot
file: D:\Program Files\Logitech\Video\ManifestEngine.exe
size: 196608
MD5: c1913a21cb3a7bf314641acf0a8f81c9
Located: HK_CU:Run, PlaxoUpdate
command: C:\Program Files\Plaxo\2.1.0.80\InstallStub.exe -a
file:
Located: HK_CU:Run, Skype
command: "d:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
file: d:\Program Files\Skype\Phone\Skype.exe
size: 17675304
MD5: eed75e89529f26405e298eea66599bcb
Located: HK_CU:Run, SpybotSD TeaTimer
command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 1415824
MD5: 70496eee0ddbe485f658693826f44d38
Located: HK_CU:Run, Yahoo! Pager
command: C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
file:
Located: Startup (common), Adobe Reader Speed Launch.lnk
command: D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
file: D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
size: 29696
MD5: deb88aef013dd1eefb462d7cad642166
Located: Startup (common), eFax Live Menu 3.3.lnk
command: C:\Program Files\eFax Messenger Plus 3.3\J2GDllCmd.exe
file: C:\Program Files\eFax Messenger Plus 3.3\J2GDllCmd.exe
size: 17408
MD5: 2c0e197b4d24984d80bf165e33d43969
Located: Startup (common), eFax Tray Menu 3.3.lnk
command: C:\Program Files\eFax Messenger Plus 3.3\J2GTray.exe
file: C:\Program Files\eFax Messenger Plus 3.3\J2GTray.exe
size: 40960
MD5: 6434cce49abb8daecc5c7e88597b4de8
Located: Startup (common), Free WebSite Tools.lnk
command: D:\Program Files\CoffeeCup Software\CoffeeCup Free
FTP\ThirtyDayTimer.exe
file: D:\Program Files\CoffeeCup Software\CoffeeCup Free
FTP\ThirtyDayTimer.exe
size: 372224
MD5: 34711735750dcf9cb8580793a3bd8271
Located: Startup (common), Logitech Desktop Messenger.lnk
command: C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\LDMConf.exe
file: C:\Program Files\Logitech\Desktop
Messenger\8876480\Program\LDMConf.exe
size: 450560
MD5: a5e4cd281c93e174181c5873fafd4f16
Located: Startup (common), Microsoft Office.lnk
command: C:\Program Files\Microsoft Office\Office\OSA9.EXE
file: C:\Program Files\Microsoft Office\Office\OSA9.EXE
size: 65588
MD5: f2020569df0e5cdf0ccedb3406d15cb3
Located: Startup (common), SmartUI.lnk
command: C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe
file: C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe
size: 1568768
MD5: 7893e209a13b52651560fab999614ff2
Located: WinLogon, crypt32chain
command: crypt32.dll
file: crypt32.dll
Located: WinLogon, cryptnet
command: cryptnet.dll
file: cryptnet.dll
Located: WinLogon, cscdll
command: cscdll.dll
file: cscdll.dll
Located: WinLogon, ScCertProp
command: wlnotify.dll
file: wlnotify.dll
Located: WinLogon, Schedule
command: wlnotify.dll
file: wlnotify.dll
Located: WinLogon, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll
Located: WinLogon, SensLogn
command: WlNotify.dll
file: WlNotify.dll
Located: WinLogon, termsrv
command: wlnotify.dll
file: wlnotify.dll
Located: WinLogon, wlballoon
command: wlnotify.dll
file: wlnotify.dll
--- Browser helper object list ---
{0751BE0D-66C7-4578-89F9-7FEDFC16531C} ()
BHO name:
CLSID name:
--- ActiveX list ---
{0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility)
DPF name:
CLSID name: PCPitstop Utility
Installer: C:\WINDOWS\Downloaded Program Files\PCPitstop.inf
Codebase:
http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
description: Gateway tools
classification: Unknown
known filename: PCPITSTOP.DLL
info link:
info source: Patrick M. Kolla
Path: C:\WINDOWS\Downloaded Program Files\
Long name: PCPitstop.dll
Short name: PCPITS~1.DLL
Date (created): 28/07/2004 13.49.00
Date (last access): 15/07/2005 17.00.56
Date (last write): 05/01/2005 20.02.56
Filesize: 252416
Attributes: archive
MD5: 09B759CF3836A19F761BFC5033B01509
CRC32: AE04C3FC
Version: 1.0.0.134
{33564D57-0000-0010-8000-00AA00389B71} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\WMV9VCM.inf
Codebase:
http://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
{56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class)
DPF name:
CLSID name: RdxIE Class
Installer:
Codebase:
http://software-dl.real.com/18ad19321889bc92c715/netzip/RdxIE601.cab
description: Netster
classification: Confirmed as malware
known filename:
info link:
info source:
Path: C:\WINDOWS\Downloaded Program Files\
Long name: RdxIE.dll
Short name:
Date (created): 28/01/2004 12.13.52
Date (last access): 15/07/2005 17.00.56
Date (last write): 28/01/2004 12.13.52
Filesize: 520349
Attributes: archive
MD5: C350FD4B920362062BD39EA31007ACFB
CRC32: 9B705B2D
Version: 6.0.0.10
{9059F30F-4EB1-4BD2-9FDC-36F43A218F4A} (Microsoft RDP Client Control
(redist))
DPF name:
CLSID name: Microsoft RDP Client Control (redist)
Installer: C:\WINDOWS\Downloaded Program Files\msrdp.inf
Codebase:
http://www.cofinsim.com/antana/msrdp.cab
Path: C:\WINDOWS\DOWNLO~1\
Long name: msrdp.ocx
Short name:
Date (created): 10/08/2002 23.21.04
Date (last access): 14/07/2005 4.12.12
Date (last write): 10/08/2002 23.21.04
Filesize: 600064
Attributes: archive
MD5: B3F7D6919FB5C1AFD39A942D2439285F
CRC32: 0A3EEE6A
Version: 5.1.2600.1095
{9B03C5F1-F5AB-47EE-937D-A8EDA626F876} (Anonymizer Anti-Spyware Scanner)
DPF name:
CLSID name: Anonymizer Anti-Spyware Scanner
Installer: C:\WINDOWS\Downloaded Program Files\WebAAS.inf
Codebase:
http://download.zonelabs.com/bin/promotions/spywaredetector/WebAAS.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: WebAAS.dll
Short name:
Date (created): 20/01/2005 16.04.18
Date (last access): 15/07/2005 17.00.56
Date (last write): 20/01/2005 16.04.18
Filesize: 151552
Attributes: archive
MD5: 05CE1F289570DC4337D615B6669E065D
CRC32: F52B9D12
Version: 1.0.0.23
{9C134253-E8A3-4759-9F98-302B7981922E} (MaxViewer Class)
DPF name:
CLSID name: MaxViewer Class
Installer: C:\WINDOWS\Downloaded Program Files\np_max.inf
Codebase:
http://support.scansoft.com/pp/files/np_max.cab
Path: C:\WINDOWS\System32\
Long name: MaxX.dll
Short name:
Date (created): 26/10/2001 13.04.30
Date (last access): 14/07/2005 4.16.54
Date (last write): 26/10/2001 13.04.30
Filesize: 180224
Attributes: archive
MD5: 6BF9D08F657961B823BAA60E4F093098
CRC32: E2D8A303
Version: 1.1.1.0
{9E472D58-F10C-11CF-B7A9-0020AFD6A362} (NeRemoteDoc Class)
DPF name:
CLSID name: NeRemoteDoc Class
Installer: C:\WINDOWS\Downloaded Program Files\newebcl.inf
Codebase:
https://vault.netvoyage.com/neWeb2/neWebCl.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: neWebCl.dll
Short name:
Date (created): 22/04/2004 8.55.52
Date (last access): 15/07/2005 17.00.56
Date (last write): 22/04/2004 8.55.52
Filesize: 499712
Attributes: archive
MD5: A8409CA43FD9929FEE972CE24013E0E1
CRC32: 869F42F5
Version: 4.2.2.4
{A93D84FD-641F-43AE-B963-E6FA84BE7FE7} (LinkSys Content Update)
DPF name:
CLSID name: LinkSys Content Update
Installer: C:\WINDOWS\Downloaded Program Files\gtdownls_95.inf
Codebase:
http://www.linksysfix.com/netcheck/24/install/gtdownls.cab
Path: C:\WINDOWS\system32\
Long name: gtdownls_95.ocx
Short name: GTDOWN~1.OCX
Date (created): 06/09/2004 14.30.28
Date (last access): 14/07/2005 4.16.44
Date (last write): 06/09/2004 14.30.28
Filesize: 184320
Attributes: archive
MD5: 4051D9747C3FD625E4B4A39E5D6E3AE9
CRC32: 94D55331
Version: 1.0.0.95
{CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} (Java Runtime Environment 1.4.2)
DPF name: Java Runtime Environment 1.4.2
CLSID name: Java Plug-in 1.4.2_05
Installer:
Codebase:
http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
Path: C:\Program Files\Java\j2re1.4.2_05\bin\
Long name: NPJPI142_05.dll
Short name: NPJPI1~1.DLL
Date (created): 03/06/2068 22.05.12
Date (last access): 14/07/2005 4.04.36
Date (last write): 03/06/2004 22.05.06
Filesize: 65650
Attributes: archive
MD5: 174488C8877FA852448D1937C322AABB
CRC32: 62C2460D
Version: 1.4.2.50
{CAFEEFAC-0014-0002-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.4.2)
DPF name: Java Runtime Environment 1.4.2
CLSID name: Java Plug-in 1.4.2_06
Installer:
Codebase:
http://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
Path: C:\Program Files\Java\j2re1.4.2_06\bin\
Long name: NPJPI142_06.dll
Short name: NPJPI1~1.DLL
Date (created): 28/09/2004 21.26.10
Date (last access): 14/07/2005 4.04.52
Date (last write): 28/09/2004 21.26.00
Filesize: 65650
Attributes: archive
MD5: 69E5147BA901A9238C4EB08C84E1A85B
CRC32: 6CB34BCC
Version: 1.4.2.60
{CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_01
Installer:
Codebase:
http://java.sun.com/update/1.5.0/jinstall-1_5_0_01-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_01\bin\
Long name: NPJPI150_01.dll
Short name: NPJPI1~1.DLL
Date (created): 06/12/2068 22.31.52
Date (last access): 14/07/2005 4.05.08
Date (last write): 06/12/2004 22.49.16
Filesize: 69746
Attributes: archive
MD5: 7B8F5AAF633987C6F1B88146357D04E5
CRC32: AD99524A
Version: 1.5.0.10
{CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_02
Installer:
Codebase:
http://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab
Path: C:\Program Files\Java\jre1.5.0_02\bin\
Long name: NPJPI150_02.dll
Short name: NPJPI1~1.DLL
Date (created): 04/03/2005 4.36.50
Date (last access): 14/07/2005 4.05.28
Date (last write): 04/03/2005 4.54.18
Filesize: 69746
Attributes: archive
MD5: 6C9A4C573C0C771D99D902EE06DA3CBB
CRC32: 55F989EE
Version: 5.0.20.9
{D719897A-B07A-4C0C-AEA9-9B663A28DFCB} (iTunesDetector Class)
DPF name:
CLSID name: iTunesDetector Class
Installer: C:\WINDOWS\Downloaded Program Files\ITDetector.inf
Codebase:
http://ax.phobos.apple.com.edgesuite.net/detection/ITDetector.cab
Path: D:\Program Files\iTunes\
Long name: ITDetector.ocx
Short name: ITDETE~1.OCX
Date (created): 08/03/2004 14.07.14
Date (last access): 14/07/2005
Date (last write): 08/03/2004 14.07.14
Filesize: 49152
Attributes: archive
MD5: C45D0B763A601B1EEF0573F99F1DD732
CRC32: 09E2233A
Version: 2.0.0.0
{DBA230D1-8467-4e69-987E-5FAE815A3B45} ()
DPF name:
CLSID name:
Installer:
Codebase:
{DD1FA138-39F5-4DF5-BD04-6D814AD0C7D9} (IPhone Class)
DPF name:
CLSID name: IPhone Class
Installer: C:\WINDOWS\Downloaded Program Files\PC2Phone.inf
Codebase:
http://www.ibuzz123.com:8585/WebPhone/PC2Phone.cab
Path: C:\WINDOWS\System32\
Long name: PC2Phone.dll
Short name:
Date (created): 15/01/2004 23.03.10
Date (last access): 14/07/2005 4.17.16
Date (last write): 15/01/2004 23.03.10
Filesize: 208896
Attributes: archive
MD5: 2CB4D4755A4FCD8BD3D8C88127F712F5
CRC32: 1093A3E2
Version: 2.0.0.1
{F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5)
DPF name:
CLSID name: MSN Chat Control 4.5
Installer: C:\WINDOWS\Downloaded Program Files\MsnChat45.inf
Codebase:
http://chat.msn.com/bin/msnchat45.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: MSNChat45.ocx
Short name: MSNCHA~1.OCX
Date (created): 27/10/2003 11.35.44
Date (last access): 14/07/2005 4.12.12
Date (last write): 27/10/2003 11.35.44
Filesize: 510552
Attributes: archive
MD5: 60FED272BDBAFA8214E40AD376C9987E
CRC32: 5EE901FC
Version: 9.2.310.2401
--- Process list ---
PID: 0 ( 0) [System]
PID: 480 ( 4) \SystemRoot\System32\smss.exe
PID: 536 ( 480) \??\C:\WINDOWS\system32\csrss.exe
PID: 560 ( 480) \??\C:\WINDOWS\system32\winlogon.exe
PID: 604 ( 560) C:\WINDOWS\system32\services.exe
size: 108032
MD5: C6CE6EEC82F187615D1002BB3BB50ED4
PID: 624 ( 560) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 84885F9B82F4D55C6146EBF6065D75D2
PID: 780 ( 604) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 836 ( 604) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 904 ( 604) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 948 ( 604) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1080 ( 604) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1292 ( 604) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: 7435B108B935E42EA92CA94F59C8E717
PID: 1400 (1380) C:\WINDOWS\Explorer.EXE
size: 1032192
MD5: A0732187050030AE399B241436565E64
PID: 1488 ( 604) C:\WINDOWS\System32\Ati2evxx.exe
size: 294912
MD5: FBC566675FBFA5248EBFA4492B167240
PID: 1516 ( 604) C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
size: 330240
MD5: 9DBD26D7D7967D918C507B1E2A93A37E
PID: 1568 (1400) C:\Program Files\ATI Technologies\ATI Control
Panel\atiptaxx.exe
size: 335872
MD5: E7D70592D84FE14E4A6C1F09D9C1BD34
PID: 1576 (1400) C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
size: 36975
MD5: 1F6573D67DD5DC06DD29EC7FCF81DC6F
PID: 1584 (1400) C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
size: 45108
MD5: CCDC00F353963E9E7DD839817B89D593
PID: 1600 (1400) C:\Program Files\Common Files\Real\Update_OB\realsched.exe
size: 180269
MD5: 7237366A57A26B7ED71C9B081FBDD6EB
PID: 1608 (1400) C:\WINDOWS\system32\RunDll32.exe
size: 33280
MD5: DA285490BBD8A1D0CE6623577D5BA1FF
PID: 1616 (1400) C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
size: 352768
MD5: 82F0D9BAF07F7A63D6CA044251DD5598
PID: 1668 ( 604) C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
size: 84480
MD5: 62E6B23B906B213836470740FE449B43
PID: 1684 (1400) C:\Program Files\Yahoo!\Yahoo! Music Engine\ymetray.exe
size: 40960
MD5: 85D3E243DB49F26AB114319674E92847
PID: 1740 (1400) C:\Program Files\Ahead\InCD\InCD.exe
size: 966706
MD5: 170A2C4FCC2BB6198E118698C218DA15
PID: 1820 (1400) D:\Program Files\ABBYY FineReader 5.0 Pro\CAgent.exe
size: 253952
MD5: 8081D6A0B47C1FA1F5186D91C0A99C52
PID: 1840 (1400) C:\Program Files\QuickTime\qttask.exe
size: 77824
MD5: 5D22B4258489575412F6D18AFFC847A2
PID: 1852 ( 604) C:\Program Files\Ahead\InCD\InCDsrv.exe
size: 671796
MD5: 254A6CCA11DBAFEF78F71463633BD6FE
PID: 1876 (1400) D:\Program Files\iTunes\iTunesHelper.exe
size: 278528
MD5: 2E0E2BE7BD6614EA4C86B9ECE793E31E
PID: 1952 (1400) C:\WINDOWS\system32\LVCOMSX.EXE
size: 221184
MD5: BCD419D4EA19087E91601C1C2914323A
PID: 1976 ( 604) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 200 (1400) D:\Program Files\Logitech\Video\LogiTray.exe
size: 217088
MD5: EE2A9192A73D51E7F4D9099FC35C32D0
PID: 400 (1400) C:\Program Files\Santa Cruz Networks\vSkype\vSkype.exe
size: 258048
MD5: 849BE90B562A752F31F40D3AC97C7979
PID: 456 ( 604) C:\WINDOWS\system32\wdfmgr.exe
size: 38912
MD5: AB0A7CA90D9E3D6A193905DC1715DED0
PID: 1696 (1400) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 24232996A38C0B0CF151C2140AE29FC8
PID: 1728 (1400) C:\Program Files\Plaxo\2.1.0.80\InstallStub.exe
size: 116736
MD5: 7ABCB53C5B6E266C512004CBCEDE899A
PID: 1720 (1400) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
size: 1415824
MD5: 70496EEE0DDBE485F658693826F44D38
PID: 1920 ( 780) C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
size: 756552
MD5: 644F843DADF77A1A85DA19EDD5A5FC07
PID: 2100 ( 780) D:\Program Files\Logitech\Video\FxSvr2.exe
size: 192512
MD5: F0D7CFBE4ED807D5801950556FD418A1
PID: 2220 (1400) C:\Program Files\eFax Messenger Plus 3.3\J2GDllCmd.exe
size: 17408
MD5: 2C0E197B4D24984D80BF165E33D43969
PID: 2292 (1976) C:\WINDOWS\system32\BRMFRSMG.EXE
size: 32256
MD5: EAE7A53581A0ACA26FDDAA40CAF7BD62
PID: 2300 (1400) C:\Program Files\Scansoft\PaperPort\SmartUI\SmartUI.exe
size: 1568768
MD5: 7893E209A13B52651560FAB999614FF2
PID: 2580 ( 604) C:\Program Files\iPod\bin\iPodService.exe
size: 327680
MD5: 3AC9F355ECCE7D6BB8FF184E9B2229A9
PID: 2736 ( 604) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: F1958FBF86D5C004CF19A5951A9514B7
PID: 3536 ( 400) C:\Program Files\Santa Cruz
Networks\vSkype\vskypebuttonclient.exe
size: 57344
MD5: 968E517E66B1C56C53C57A61AD310A57
PID: 1144 (1400) C:\Program Files\Outlook Express\msimn.exe
size: 60416
MD5: 091C14F4C71328D4316248A2421190DE
PID: 260 (1824) C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
size: 90112
MD5: 3C1450374C1851762C3021AF86A5A41E
PID: 3128 ( 780) C:\PROGRA~1\MICROS~2\OFFICE11\OUTLOOK.EXE
size: 196152
MD5: 40825ACFC23E0AD28DA1FC63F77E9825
PID: 1128 ( 780) C:\Program Files\Skype\toolbars\Skype for
Outlook\SkypeOBE.exe
size: 126976
MD5: 09DADE37BCF3E83C0777D6B6B74B0091
PID: 3324 (1400) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
size: 7534698
MD5: BA42C9E39C70471BE8B9DC4E20FE9EFF
PID: 2448 (1400) C:\Program Files\Internet Explorer\iexplore.exe
size: 93184
MD5: E7484514C0464642BE7B4DC2689354C8
PID: 3820 (1376) d:\Program Files\Skype\Phone\Skype.exe
size: 17675304
MD5: EED75E89529F26405E298EEA66599BCB
PID: 1892 (1400) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 4 ( 0) System
--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 15/07/2005 17.03.46
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://red.clientapps.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.com
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar
http://red.clientapps.yahoo.com/customize/ycomp/defaults/sb/*http://www.yahoo.com/search/ie.html
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://my.yahoo.com/
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@
http://red.clientapps.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet
Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet
Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet
Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet
Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
--- Winsock Layered Service Provider list ---
Protocol 0: Google Desktop over [MSAFD Tcpip [TCP/IP]]
GUID: {3636939A-B38D-402D-BF88-E082CE211C73}
Filename: C:\Program Files\Google\Google Desktop
Search\GoogleDesktopNetwork1.dll
Protocol 1: Google Desktop over [MSAFD Tcpip [UDP/IP]]
GUID: {3636939A-B38D-402D-BF88-E082CE211C73}
Filename: C:\Program Files\Google\Google Desktop
Search\GoogleDesktopNetwork1.dll
Protocol 27: Google Desktop
GUID: {E5A29CC9-CDB8-4771-BC4F-B09FBEFF9814}
Filename: C:\Program Files\Google\Google Desktop
Search\GoogleDesktopNetwork1.dll
--- Uninstall list ---
ABBYY FineReader 5.0 Pro 5.0 (ABBYY FineReader 5.0 Pro)
install location: D:\Program Files\ABBYY FineReader 5.0 Pro\
uninstall cmd: C:\WINDOWS\bitdein2.exe
D:\PROGRA~1\ABBYYF~1.0PR\bitdeins.ini
publisher: ABBYY Software House
help link:
www.abbyyusa.com/support/index_e.htm
help telephone: +1 (510) 226-6069
(AddressBook)
Adobe Download Manager 2.0 (Remove Only) 2.0 (AdobeESD)
uninstall cmd: "C:\Program Files\Common Files\Adobe\ESD\uninst.exe"
ATI Display Driver 7.91-030625a-009918C-AMI (ATI Display Driver)
uninstall cmd: rundll32
C:\WINDOWS\System32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart
-flags:0x2010001 -inf_class
ISPLAY -clean
AVG Free Edition (AVG7Uninstall)
uninstall cmd: C:\Program Files\Grisoft\AVG Free\setup.exe /UNINSTALL
(Branding)
HUAYE USB Audio (C-Media USB Sound)
uninstall cmd: C:\WINDOWS\CmiUSB2Uninstall.exe C:\PROGRA~1\HUAYEU~1#HUAYE
USB Audio
(Connection Manager)
(DirectAnimation)
(DirectDrawEx)
(DXM_Runtime)
(Fontcore)
Google Desktop Search - (Google Desktop)
uninstall cmd: C:\Program Files\Google\Google Desktop
Search\GoogleDesktopSearchSetup.exe -uninstall
publisher: Google
help link:
http://desktop.google.com/help.html?hl=en
HearLink (HearLink)
uninstall cmd: C:\WINDOWS\GPInstall.exe "/UNINST=C:\Program
Files\HearLink\UnInst.log" "/APPNAME=HearLink"
(ICW)
(IE40)
(IE4Data)
(IE5BAKEX)
(IEData)
Ahead InCD (InCD!UninstallKey)
uninstall cmd: C:\WINDOWS\NuNInst.exe /UNINSTALL
(InstallShield Uninstall Information)
iTunes 4.7.1.30 (InstallShield_{3CB41017-F5CA-4C56-934C-ED02156251E6})
version: 67567617
version (major): 4
version (minor): 7
estimated size: 13827
install date: 20050506
install location: D:\Program Files\iTunes\
install source: C:\WINDOWS\Downloaded
Installations\{628E8630-7947-49EA-BE90-7F8BFF77A79C}\
uninstall cmd: C:\Program Files\Common Files\InstallShield\Driver\8\Intel
32\IDriver.exe /M{3CB41017-F5CA-4C56-934C-ED02156251E6}
publisher: Apple Computer, Inc.
contact: AppleCare Support
help link:
http://www.info.apple.com/
help telephone: 1-800-275-2273
Siemens Data Suite 1.0.0.76
(InstallShield_{7AE38076-D8FD-4EF9-A203-98A3EF0C66C1})
version: 16777216
version (major): 1
estimated size: 59737
install date: 20040810
install source: C:\Documents and Settings\Iachelli\Desktop\M55\
uninstall cmd:
C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe
/M{7AE38076-D8FD-4EF9-A203-98A3EF0C66C1} /l1033
publisher: Siemens AG
comments: Siemens SL55
contact: Technical Support department
help link:
http://www.my-siemens.com
help telephone: (044)
readme: Readme.txt
IrfanView (remove only) (IrfanView)
uninstall cmd: D:\Program Files\IrfanView\iv_uninstall.exe
Windows XP Hotfix - KB834707 20040929.110854 (KB834707)
uninstall cmd: C:\WINDOWS\$NtUninstallKB834707$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=834707
Windows XP Hotfix - KB867282 20050127.090417 (KB867282)
uninstall cmd: C:\WINDOWS\$NtUninstallKB867282$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=867282
Microsoft Data Access Components KB870669 (KB870669)
uninstall cmd: C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=KB870669
Windows XP Hotfix - KB873333 20050114.005213 (KB873333)
uninstall cmd: C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=873333
Windows XP Hotfix - KB873339 20041117.092459 (KB873339)
uninstall cmd: C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=873339
Security Update for Windows XP (KB883939) 1 (KB883939)
install date: 20050617
uninstall cmd: "C:\WINDOWS\$NtUninstallKB883939$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=883939
(KB884016)
Windows XP Hotfix - KB885250 20050118.202711 (KB885250)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=885250
Windows XP Hotfix - KB885835 20041027.181713 (KB885835)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=885835
Windows XP Hotfix - KB885836 20041028.173203 (KB885836)
uninstall cmd: C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=885836
Windows XP Hotfix - KB886185 20041021.090540 (KB886185)
uninstall cmd: C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=886185
Windows XP Hotfix - KB887472 20041014.162858 (KB887472)
uninstall cmd: C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=887472
Windows XP Hotfix - KB887742 20041103.095002 (KB887742)
uninstall cmd: C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=887742
Windows XP Hotfix - KB888113 20041116.131036 (KB888113)
uninstall cmd: C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=888113
Windows XP Hotfix - KB888302 20041207.111426 (KB888302)
uninstall cmd: C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=888302
Security Update for Windows XP (KB890046) 1 (KB890046)
install date: 20050617
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=890046
Windows XP Hotfix - KB890047 20041221.124506 (KB890047)
uninstall cmd: C:\WINDOWS\$NtUninstallKB890047$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=890047
Windows XP Hotfix - KB890175 20041201.233338 (KB890175)
uninstall cmd: C:\WINDOWS\$NtUninstallKB890175$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=890175
Windows XP Hotfix - KB890859 1 (KB890859)
install date: 20050415
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=890859
Windows XP Hotfix - KB890923 1 (KB890923)
install date: 20050415
uninstall cmd: "C:\WINDOWS\$NtUninstallKB890923$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=890923
Windows XP Hotfix - KB891781 20050110.165439 (KB891781)
uninstall cmd: C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=891781
Windows XP Hotfix - KB893066 1 (KB893066)
install date: 20050415
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=893066
Windows XP Hotfix - KB893086 1 (KB893086)
install date: 20050415
uninstall cmd: "C:\WINDOWS\$NtUninstallKB893086$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=893086
Windows Installer 3.1 (KB893803) 3.1 (KB893803)
uninstall cmd:
"C:\WINDOWS\$MSI31Uninstall_KB893803$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://go.microsoft.com/fwlink/?LinkId=42467
Windows Installer 3.1 (KB893803) 3.1 (KB893803v2)
uninstall cmd:
"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://go.microsoft.com/fwlink/?LinkId=42467
Security Update for Windows XP (KB896358) 1 (KB896358)
install date: 20050617
uninstall cmd: "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=896358
Security Update for Windows XP (KB896422) 1 (KB896422)
install date: 20050617
uninstall cmd: "C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=896422
Security Update for Windows XP (KB896428) 1 (KB896428)
install date: 20050617
uninstall cmd: "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=896428
Update for Windows XP (KB898461) 1 (KB898461)
install date: 20050628
uninstall cmd: "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=898461
Security Update for Windows XP (KB901214) 1 (KB901214)
uninstall cmd: "C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=901214
Security Update for Windows XP (KB903235) 1 (KB903235)
install date: 20050713
uninstall cmd: "C:\WINDOWS\$NtUninstallKB903235$\spuninst\spuninst.exe"
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=903235
LiveReg (Symantec Corporation) 2.2.0.1621 (LiveReg)
install location: C:\Program Files\Common Files\Symantec Shared\LiveReg
uninstall cmd: C:\Program Files\Common Files\Symantec
Shared\LiveReg\VcSetup.exe /REMOVE
publisher: Symantec Corporation
Logitech Print Service (Logitech Print Service)
uninstall cmd: C:\PROGRA~1\Logitech\PRINTS~1\UNWISE.EXE
C:\PROGRA~1\Logitech\PRINTS~1\INSTALL.LOG
Macromedia Shockwave Player (Macromedia Shockwave Player)
uninstall cmd: C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE
C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
(Microsoft NetShow Player 2.0)
(MobileOptionPack)
Mozilla Firefox (1.0.4) 1.0.4 (en-US) (Mozilla Firefox (1.0.4))
install location: D:\Program Files
uninstall cmd: C:\WINDOWS\UninstallFirefox.exe /ua "1.0.4 (en-US)"
publisher: Mozilla
Mozilla Thunderbird (1.0) 1.0 (en) (Mozilla Thunderbird (1.0))
install location: C:\Program Files\Mozilla Thunderbird
uninstall cmd: C:\WINDOWS\UninstallThunderbird.exe /ua "1.0 (en)"
publisher: Mozilla
(MPlayer2)
Ahead InCD EasyWrite Reader (MRW!UninstallKey)
uninstall cmd: C:\WINDOWS\unmrw.exe /UNINSTALL
(MSI30-Beta1)
(MSI30-Beta2)
(MSI30-KB884016)
(MSI30-RC1)
(MSI30-RC2)
(MSI30a-KB884016)
(MSI31-Beta)
(MSI31-RC1)
(NetMeeting)
Ahead NeroMediaPlayer (NMPUninstallKey)
uninstall cmd: C:\WINDOWS\UNNMP.exe /UNINSTALL
NVIDIA Drivers (NVIDIA Drivers)
uninstall cmd: C:\WINDOWS\system32\nvuaudio.exe UninstallGUI
NVIDIA Windows 2000/XP nForce Drivers (NVIDIAnForce)
uninstall cmd: rundll32.exe
C:\WINDOWS\System32\NVNFINST.DLL,NvUninstallCrush
(OutlookExpress)
PC Camera Capture (PC Camera Capture)
uninstall cmd: C:\WINDOWS\pcamrm.exe
(PCHealth)
uninstall cmd: rundll32.exe setupapi.dll,InstallHinfSection
DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Pdf995 (Pdf995)
uninstall cmd: c:\pdf995\setup.exe uninstall
PdfEdit995 (PdfEdit995)
uninstall cmd: c:\pdf995\res\utilities\thinsetup.exe - uninstall
Photoshare (Photoshare)
uninstall cmd: c:\pdf995\res\utilities\ultrapdf\photothinsetup.exe -
uninstall
Plaxo (Plaxo)
install location: C:\Program Files\Plaxo\2.1.0.80
uninstall cmd: C:\Program Files\Plaxo\2.1.0.80\uninstall.exe
help link:
http://www.plaxo.com/support/uninstall
Logitech® Camera Driver (QcDrv)
install location: C:\Program Files\Common Files\Logitech\QCDRV
install source: E:\Drivers\Bin\
uninstall cmd: "C:\Program Files\Common
Files\Logitech\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
QuickTime (QuickTime)
uninstall cmd: C:\WINDOWS\unvise32qt.exe
C:\WINDOWS\system32\QuickTime\Uninstall.log
(RealJukebox 1.0)
uninstall cmd: C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe
RealNetworks|RealPlayer|6.0
RealPlayer (RealPlayer 6.0)
uninstall cmd: C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe
RealNetworks|RealPlayer|6.0
(SchedulingAgent)
SearchWithin (SearchWithin)
uninstall cmd: c:\SearchWithin\thinsetup.exe - uninstall
(Shockwave)
(ShockwaveFlash)
Skype for Outlook 1.0.407 (SkypeForOutlook_is1)
install location: C:\Program Files\Skype\toolbars\Skype for Outlook\
uninstall cmd: "C:\Program Files\Skype\toolbars\Skype for
Outlook\unins000.exe"
publisher: Skype Technologies
comments:
www.skype.com
help link:
www.skype.com
Skype 1.3 1.3 (Skype_is1)
install location: d:\Program Files\Skype\Phone\
uninstall cmd: "d:\Program Files\Skype\Phone\unins000.exe"
publisher: Skype Software S.A.
help link:
http://ui.skype.com/ui/0/1.3.0.57/en/help
Spybot - Search & Destroy 1.4 1.4 (Spybot - Search & Destroy_is1)
install location: C:\Program Files\Spybot - Search & Destroy\
uninstall cmd: "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
publisher: Safer Networking Limited
UltraPdf (UltraPdf)
uninstall cmd: c:\pdf995\res\utilities\ultrapdf\thinsetup.exe - uninstall
(UNZD1201USB)
Windows Media Format Runtime (Windows Media Format Runtime)
uninstall cmd: "C:\Program Files\Windows Media Player\wmsetsdk.exe"
/UninstallAll
Windows Media Player 10 (Windows Media Player)
uninstall cmd: "C:\Program Files\Windows Media Player\Setup_wm.exe"
/Uninstall
Windows XP Service Pack 2 20040803.231319 (Windows XP Service Pack)
uninstall cmd: C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe
publisher: Microsoft Corporation
help link:
http://support.microsoft.com?kbid=811113
WinZip 9.0 (6028) (WinZip)
version (major): 9
install location: D:\PROGRA~1\WINZIP\
uninstall cmd: "D:\Program Files\WinZip\WINZIP32.EXE" /uninstall
publisher: WinZip Computing, Inc.
help link:
http://www.winzip.com/xsupport.htm
Yahoo! Anti-Spy (Yahoo! Anti-Spy)
uninstall cmd: C:\PROGRA~1\Yahoo!\common\unypsr.exe
Yahoo! Toolbar (Yahoo! Companion)
uninstall cmd: rundll32.exe
C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn0\yt.dll,DllCommand ui
Yahoo! Messenger (Yahoo! Messenger)
uninstall cmd: C:\PROGRA~1\Yahoo!\MESSEN~1\UNWISE.EXE
C:\PROGRA~1\Yahoo!\MESSEN~1\INSTALL.LOG
Yahoo! Music Engine (Yahoo! Music Engine)
uninstall cmd: "C:\Program Files\Yahoo!\Yahoo! Music
Engine\Uninstall.exe"
Yahoo! Toolbar (Yahoo! Toolbar)
Yahoo! Install Manager (YInstHelper)
uninstall cmd: C:\WINDOWS\system32\regsvr32 /u
C:\WINDOWS\cache\YINSTH~1.DLL
Microsoft Office 2000 Premium 9.00.2720
({00000409-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
estimated size: 130271
install date: 20040509
install source: E:\
uninstall cmd: MsiExec.exe /I{00000409-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link:
http://www.microsoft.com/support
readme: C:\Program Files\Microsoft Office\Office\ofread9.txt
Microsoft Office 2000 Disc 2 9.00.2720
({00040409-78E1-11D2-B60F-006097C998E7})
version: 150997664
version (major): 9
estimated size: 169472
install date: 20040814
install source: E:\
uninstall cmd: MsiExec.exe /I{00040409-78E1-11D2-B60F-006097C998E7}
publisher: Microsoft Corporation
help link:
http://www.microsoft.com/support
Logitech QuickCam 8.30.0000 ({0496D9E9-224B-4AFA-8F37-23B98D52F1EB})
version: 136183808
version (major): 8
version (minor): 30
estimated size: 243326
install date: 20050705
install location: D:\Program Files\Logitech\Video\
install source: E:\QuickCam\enu\
uninstall cmd: MsiExec.exe /I{0496D9E9-224B-4AFA-8F37-23B98D52F1EB}
publisher: Logitech, Inc.
contact: Logitech® Customer Support
help link:
http://www.logitech.com/support
help telephone: USA: (702) 269-3457 UK: +44 (0)
1344-894301
readme: D:\Program Files\Logitech\Video\Readme.txt
ATI Control Panel ({0BEDBD4E-2D34-47B5-9973-57E62B29307C})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
Brother MFL Pro Suite ({0C3FCE48-6984-11D5-90F8-00E029591716})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{0C3FCE48-6984-11D5-90F8-00E029591716}\Setup.exe" bruninst.dll
J2SE Runtime Environment 5.0 Update 1 1.5.0.10
({3248F0A8-6813-11D6-A77B-00B0D0150010})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 120317
install date: 20050307
install source: C:\Documents and Settings\Iachelli\Local
Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150010}\
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150010}
publisher: Sun Microsystems, Inc.
contact:
http://java.com
help link:
http://java.com
readme: C:\Program Files\Java\jre1.5.0_01\README.txt
J2SE Runtime Environment 5.0 Update 2 1.5.0.20
({3248F0A8-6813-11D6-A77B-00B0D0150020})
version: 17104896
version (major): 1
version (minor): 5
estimated size: 120657
install date: 20050401
install source:
http://java.sun.com/webapps/download/GetFile/1.5.0_02-b09/windows-i586/
uninstall cmd: MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
publisher: Sun Microsystems, Inc.
contact:
http://java.com
help link:
http://java.com
readme: C:\Program Files\Java\jre1.5.0_02\README.txt
WebFldrs XP 9.50.6513 ({350C97B0-3D7C-4EE8-BAA9-00BCB3D54227})
version: 154278257
version (major): 9
version (minor): 50
estimated size: 2492
install date: 20040507
install source: C:\WINDOWS\System32\
publisher: Microsoft Corporation
help link:
http://www.microsoft.com/windows
iTunes 4.7.1.30 ({3CB41017-F5CA-4C56-934C-ED02156251E6})
version: 67567617
version (major): 4
version (minor): 7
estimated size: 13827
install date: 20050506
install location: D:\Program Files\iTunes\
install source: C:\WINDOWS\Downloaded
Installations\{628E8630-7947-49EA-BE90-7F8BFF77A79C}\
publisher: Apple Computer, Inc.
contact: AppleCare Support
help link:
http://www.info.apple.com/
help telephone: 1-800-275-2273
XTNDConnect PC ({3D6ACBBB-A640-4715-BA0F-42D1EA05F23A})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{3D6ACBBB-A640-4715-BA0F-42D1EA05F23A}\Setup.exe" UNINSTALL
ATI HydraVision ({3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{3EA9D975-BFDC-4E8E-B88B-0446FBC8CA66}\setup.exe"
Microsoft AntiSpyware 1.0 ({536F7C74-844B-4683-B0C5-EA39E19A6FE3})
version: 16777216
version (major): 1
estimated size: 15255
install date: 20050629
install source: C:\WINDOWS\Downloaded
Installations\{DF2E8A41-7E98-427D-9582-7D2EAF44F827}\
uninstall cmd: MsiExec.exe /I{536F7C74-844B-4683-B0C5-EA39E19A6FE3}
publisher: Microsoft Corporation
contact: Microsoft Support
help link:
http://www.microsoft.com
SD Viewer for DSC ({5A8D3524-79DB-11D5-99D1-00010256D40E})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{5A8D3524-79DB-11D5-99D1-00010256D40E}\setup.exe"
PowerDVD ({6811CAA0-BF12-11D4-9EA1-0050BAE317E1})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
Java 2 Runtime Environment, SE v1.4.2_04 1.4.2_04
({7148F0A8-6813-11D6-A77B-00B0D0142040})
version (major): 1
version (minor): 4
estimated size: 110132
install date: 20040621
install source: C:\Documents and Settings\Iachelli\Local
Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142040}\
uninstall cmd: MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142040}
publisher: Sun Microsystems, Inc.
comments:
http://www.java.com
contact:
http://www.java.com
help link:
http://www.java.com
help telephone:
http://www.java.com
readme: Readme.txt
Java 2 Runtime Environment, SE v1.4.2_05 1.4.2_05
({7148F0A8-6813-11D6-A77B-00B0D0142050})
version (major): 1
version (minor): 4
estimated size: 110772
install date: 20041001
install source:
http://java.sun.com/webapps/download/GetFile/1.4.2_05-b04/windows-i586/
uninstall cmd: MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142050}
publisher: Sun Microsystems, Inc.
comments:
http://www.java.com
contact:
http://www.java.com
help link:
http://www.java.com
help telephone:
http://www.java.com
readme: Readme.txt
Java 2 Runtime Environment, SE v1.4.2_06 1.4.2_06
({7148F0A8-6813-11D6-A77B-00B0D0142060})
version (major): 1
version (minor): 4
estimated size: 110872
install date: 20050302
install source:
http://java.sun.com/webapps/download/GetFile/1.4.2_06-b03/windows-i586/
uninstall cmd: MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142060}
publisher: Sun Microsystems, Inc.
comments:
http://www.java.com
contact:
http://www.java.com
help link:
http://www.java.com
help telephone:
http://www.java.com
readme: Readme.txt
Siemens Data Suite 1.0.0.76 ({7AE38076-D8FD-4EF9-A203-98A3EF0C66C1})
version: 16777216
version (major): 1
estimated size: 63969
install date: 20040810
install source: C:\Documents and Settings\Iachelli\Desktop\M55\
publisher: Siemens AG
comments: Siemens SL55
contact: Technical Support department
help link:
http://www.my-siemens.com
help telephone: (044)
readme: Readme.txt
5.09 ({8A42F680-2DD6-11D4-9A8C-0040F6982C20})
version: 84475904
version (major): 5
version (minor): 9
estimated size: 2312
install date: 20040625
install source: E:\BHL\PPPORT8\Setup3100c\
uninstall cmd: MsiExec.exe /I{8A42F680-2DD6-11D4-9A8C-0040F6982C20}
publisher: ScanSoft, Inc.
comments: Rewrite from Black Ice Software, Inc.'s IS6.x project.
help link:
http://www.scansoft.com
help telephone: 978-977-2000
Logitech Desktop Messenger ({900B1197-53F5-4F46-A882-2CFFFE2EEDCB})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x10
UNINSTALL
Microsoft Office Professional Edition 2003 11.0.5614.0
({90110410-6000-11D3-8CFE-0150048383C9})
version: 184554990
version (major): 11
estimated size: 481893
install date: 20050225
install location: C:\Program Files\Microsoft Office\
install source: C:\MSOCache\All
Users\90000410-6000-11D3-8CFE-0150048383C9\
uninstall cmd: MsiExec.exe /I{90110410-6000-11D3-8CFE-0150048383C9}
publisher: Microsoft Corporation
help link:
http://www.microsoft.com/support
readme: C:\Program Files\Microsoft
Office\OFFICE11\1040\OFREADME.HTM
PenPower WorldCard Platinum ({9F914283-9139-414C-B996-F94ECEE566EC})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{9F914283-9139-414C-B996-F94ECEE566EC}\Setup.exe" -l0x9
Nero - Burning Rom 5.5.9 ({A4D7B764-4140-11D4-88EB-0050DA3579C0})
version: 84213769
version (major): 5
version (minor): 5
estimated size: 59631
install date: 20040525
install source: E:\Nero\NeroExpress55\
uninstall cmd: MsiExec.exe /X{A4D7B764-4140-11D4-88EB-0050DA3579C0}
publisher: ahead software gmbh
contact: Hotline
help link:
http://www.nero.com
help telephone:
readme: 0
vSkype 1.00.0000 ({A5191D10-4411-4A78-85E3-E189B6156BB1})
version: 16777216
version (major): 1
estimated size: 11497
install date: 20050705
install source: C:\DOCUME~1\Iachelli\LOCALS~1\Temp\_is5\
uninstall cmd: MsiExec.exe /I{A5191D10-4411-4A78-85E3-E189B6156BB1}
publisher: Santa Cruz Networks
eFax Messenger Plus 3.3 3.3 ({A5FCC3DE-56BD-48b2-8054-4BBE70BE186B})
install date: 07/01/2005
install location: C:\Program Files\eFax Messenger Plus 3.3
install source: C:\Program Files\eFax Messenger Plus 3.3
uninstall cmd: "C:\Program Files\eFax Messenger Plus 3.3\Uninstall.exe"
"C:\Program Files\eFax Messenger Plus 3.3\J2GInstall.log"
publisher: j2 Global Communications
comments: Email (e-mail address removed)2.com for further assistance
help link:
http://www.efax.com/help
MSN Messenger 7.0 7.0.0813 ({ABEB838C-A1A7-4C5D-B7E1-8B4314600813})
version: 117441325
version (major): 7
estimated size: 11792
install date: 20050516
install source: C:\DOCUME~1\Iachelli\LOCALS~1\Temp\IXP000.TMP\
uninstall cmd: MsiExec.exe /I{ABEB838C-A1A7-4C5D-B7E1-8B4314600813}
publisher: Microsoft Corporation
Adobe Acrobat 7.0.1 and Reader 7.0.1 Update 7.0.2
({AC76BA86-0000-7EC8-7489-000000000702})
version: 117440514
version (major): 7
estimated size: 1841
install date: 20050427
install source: C:\Program
Files\Adobe\{0C55731F-7B21-4936-839A-BA09B2EAED59}\
uninstall cmd: MsiExec.exe /I{AC76BA86-0000-7EC8-7489-000000000702}
publisher: Adobe Systems
comments: Adobe Acrobat 7.0.1 and Reader 7.0.1 Update
contact: Customer Support
help link:
http://www.adobe.com/support/main.html
help telephone: 1-800-833-6687
Adobe Acrobat 7.0.2 and Reader 7.0.2 Update 7.0.3
({AC76BA86-0000-7EC8-7489-000000000703})
version: 117440515
version (major): 7
estimated size: 2453
install date: 20050708
install source: C:\Program
Files\Adobe\{AC703000-70F3-4E65-BC6A-CF781045277C}\
uninstall cmd: MsiExec.exe /I{AC76BA86-0000-7EC8-7489-000000000703}
publisher: Adobe Systems
comments: Adobe Acrobat 7.0.2 and Reader 7.0.2 Update
contact: Customer Support
help link:
http://www.adobe.com/support/main.html
help telephone: 1-800-833-6687
Adobe Reader 7.0 7.0.0 ({AC76BA86-7AD7-1033-7B44-A70000000000})
version: 117440512
version (major): 7
estimated size: 68967
install date: 20050325
install location: D:\Program Files\Adobe\Acrobat 7.0\Reader\
install source: C:\Documents and Settings\Iachelli\Desktop\
uninstall cmd: MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70000000000}
publisher: Adobe Systems Incorporated
comments:
contact:
help link:
http://www.adobe.com/support/main.html
help telephone:
readme: D:\Program Files\Adobe\Acrobat 7.0\Reader\Readme.htm
PaperPort 8.0 SE 1.0.0.0000 ({AEF2D1F3-0696-11D5-8E6A-00C04F7FA234})
version: 16777216
version (major): 1
estimated size: 57202
install date: 20040625
install source: E:\BHL\PPPORT8\Setup3100c\
uninstall cmd: MsiExec.exe /I{AEF2D1F3-0696-11D5-8E6A-00C04F7FA234}
publisher: ScanSoft, Inc.
comments: project paperport 8.0
help link:
http://www.scansoft.com
help telephone: 978-977-2000
CoffeeCup Free FTP 6 ({B66899F2-C58D-4CEC-9FA8-867883FFB707})
version: 100663296
install location: D:\Program Files\CoffeeCup Software\CoffeeCup Free FTP
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{B66899F2-C58D-4CEC-9FA8-867883FFB707}\Setup.exe" -l0x9
ArcSoft Software Suite ({BC03FCE8-388F-48C0-9600-B53ACB297B5F})
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{BC03FCE8-388F-48C0-9600-B53ACB297B5F}\setup.exe" -l0x9 -uninst
Classic PhoneTools 5.01 (020404002236.00)
({E3436EE2-D5CB-4249-840B-3A0140CC34C3})
version (major): 5
version (minor): 1
install location: D:\Program Files\Classic PhoneTools
uninstall cmd: RunDll32
C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup
"C:\Program Files\InstallShield Installation
Information\{E3436EE2-D5CB-4249-840B-3A0140CC34C3}\setup.exe" -l0x9
ControlPanel
publisher: BVRP Software
help link:
http://www.bvrp.com
HighMAT Extension to Microsoft Windows XP CD Writing Wizard 1.1.1905.1
({FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F})
version: 16844657
version (major): 1
version (minor): 1
estimated size: 2202
install date: 20040524
install location: C:\Program Files\HighMAT CD Writing Wizard\
install source: C:\WINDOWS\Downloaded
Installations\{2342C7EC-3D2F-43D4-965E-49528486128F}\
uninstall cmd: MsiExec.exe /X{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}
publisher: Microsoft Corporation
readme: C:\Program Files\HighMAT CD Writing
Wizard\1033\\HighMAT_readme.htm
--- System Services ---
Service (registry key): .NET CLR Data
Start: 0
Type: 0
Error Control: 0
Service (registry key): .NET CLR Networking
Start: 0
Type: 0
Error Control: 0
Service (registry key): .NETFramework
Start: 0
Type: 0
Error Control: 0
Service (registry key): Abiosdsk
Start: 4
Type: 1
Error Control: 0
Service (registry key): abp480n5
Start: 4
Type: 1
Error Control: 1
Service (registry key): ACPI
Display name: Microsoft ACPI Driver
Image path: System32\DRIVERS\ACPI.sys
Image size: 187776
Image MD5: A10C7534F7223F4A73A948967D00E69B
Start: 0
Type: 1
Error Control: 1
Service (registry key): ACPIEC
Start: 4
Type: 1
Error Control: 1
Service (registry key): adpu160m
Start: 4
Type: 1
Error Control: 1
Service (registry key): aec
Display name: Microsoft Kernel Acoustic Echo Canceller
Image path: system32\drivers\aec.sys
Image size: 142464
Image MD5: 841F385C6CFAF66B58FBD898722BB4F0
Start: 3
Type: 1
Error Control: 1
Service (registry key): AFD
Display name: AFD Networking Support Environment
Description: AFD Networking Support Environment
Image path: \SystemRoot\System32\drivers\afd.sys
Start: 1
Type: 1
Error Control: 1
Service (registry key): Aha154x
Start: 4
Type: 1
Error Control: 1
Service (registry key): aic78u2
Start: 4
Type: 1
Error Control: 1
Service (registry key): aic78xx
Start: 4
Type: 1
Error Control: 1
Service (registry key): Alerter
Display name: Alerter
Description: Notifies selected users and computers of administrative
alerts. If the service is stopped, programs that use administrative alerts
will not receive them. If this service is disabled, any services that
explicitly depend on it will fail to start.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation
Service (registry key): ALG
Display name: Application Layer Gateway Service
Description: Provides support for 3rd party protocol plug-ins for
Internet Connection Sharing and the Windows Firewall.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\alg.exe
Image size: 44544
Image MD5: F1958FBF86D5C004CF19A5951A9514B7
Start: 3
Type: 16
Error Control: 1
Service (registry key): AliIde
Start: 4
Type: 1
Error Control: 1
Service (registry key): AmdK7
Display name: AMD K7 Processor Driver
Image path: System32\DRIVERS\amdk7.sys
Image size: 37376
Image MD5: 680AD1C1BB16239E28D8F33A54A7A3C7
Start: 1
Type: 1
Error Control: 1
Service (registry key): amsint
Start: 4
Type: 1
Error Control: 1
Service (registry key): AppMgmt
Display name: Application Management
Description: Provides software installation services such as Assign,
Publish, and Remove.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Service (registry key): asc
Start: 4
Type: 1
Error Control: 1
Service (registry key): asc3350p
Start: 4
Type: 1
Error Control: 1
Service (registry key): asc3550
Start: 4
Type: 1
Error Control: 1
Service (registry key): AsyncMac
Display name: RAS Asynchronous Media Driver
Description: RAS Asynchronous Media Driver
Image path: System32\DRIVERS\asyncmac.sys
Image size: 14336
Image MD5: 02000ABF34AF4C218C35D257024807D6
Start: 3
Type: 1
Error Control: 1
Service (registry key): atapi
Display name: Standard IDE/ESDI Hard Disk Controller
Image path: System32\DRIVERS\atapi.sys
Image size: 95360
Image MD5: CDFE4411A69C224BD1D11B2DA92DAC51
Start: 0
Type: 1
Error Control: 1
Service (registry key): Atdisk
Start: 4
Type: 1
Error Control: 0
Service (registry key): Ati HotKey Poller
Object name: LocalSystem
Image path: %SystemRoot%\System32\Ati2evxx.exe
Image size: 294912
Image MD5: FBC566675FBFA5248EBFA4492B167240
Start: 2
Type: 272
Error Control: 1
Service (registry key): ATI Smart
Display name: ATI Smart
Object name: LocalSystem
Image path: C:\WINDOWS\system32\ati2sgag.exe
Image size: 114688
Image MD5: 49D98316588BADBFF31B6B09779E99C6
Start: 2
Type: 272
Error Control: 1
Service (registry key): ati2mtag
Image path: System32\DRIVERS\ati2mtag.sys
Image size: 587264
Image MD5: 812E72F761837BDB80AD5CA83FAD474B
Start: 3
Type: 1
Error Control: 0
Service (registry key): Atmarpc
Display name: ATM ARP Client Protocol
Description: ATM ARP Client Protocol
Image path: System32\DRIVERS\atmarpc.sys
Image size: 59904
Image MD5: EC88DA854AB7D7752EC8BE11A741BB7F
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip
Service (registry key): AudioSrv
Display name: Windows Audio
Description: Manages audio devices for Windows-based programs. If this
service is stopped, audio devices and effects will not function properly. If
this service is disabled, any services that explicitly depend on it will
fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs
Service (registry key): audstub
Display name: Audio Stub Driver
Image path: System32\DRIVERS\audstub.sys
Image size: 3072
Image MD5: D9F724AA26C010A217C97606B160ED68
Start: 3
Type: 1
Error Control: 1
Service (registry key): Avg7Alrt
Display name: AVG7 Alert Manager Server
Object name: LocalSystem
Image path: C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
Image size: 330240
Image MD5: 9DBD26D7D7967D918C507B1E2A93A37E
Start: 2
Type: 272
Error Control: 1
Depends On services: RPCSS
Service (registry key): Avg7Core
Display name: AVG7 Kernel
Image path: \SystemRoot\System32\Drivers\avg7core.sys
Start: 1
Type: 1
Error Control: 1
Service (registry key): Avg7RsW
Display name: AVG7 Wrap Driver
Image path: \SystemRoot\System32\Drivers\avg7rsw.sys
Start: 1
Type: 1
Error Control: 1
Service (registry key): Avg7RsXP
Display name: AVG7 Rezident Driver
Image path: \SystemRoot\System32\Drivers\avg7rsxp.sys
Start: 1
Type: 1
Error Control: 1
Service (registry key): Avg7UpdSvc
Display name: AVG7 Update Service
Object name: LocalSystem
Image path: C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
Image size: 84480
Image MD5: 62E6B23B906B213836470740FE449B43
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): BattC
Start: 0
Type: 0
Error Control: 0
Service (registry key): Beep
Start: 1
Type: 1
Error Control: 1
Service (registry key): BITS
Display name: Background Intelligent Transfer Service
Description: Transfers files in the background using idle network
bandwidth. If the service is stopped, features such as Windows Update, and
MSN Explorer will be unable to automatically download programs and other
information. If this service is disabled, any services that explicitly
depend on it may fail to transfer files if they do not have a fail safe
mechanism to transfer files directly through IE in case BITS has been
disabled.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: Rpcss
Service (registry key): brfilt
Display name: Brother MFC Filter Driver
Image path: System32\Drivers\Brfilt.sys
Image size: 2944
Image MD5: 4BA311473E0D8557827E6F2FE33A8095
Start: 3
Type: 1
Error Control: 1
Service (registry key): Browser
Display name: Computer Browser
Description: Maintains an updated list of computers on the network and
supplies this list to computers designated as browsers. If this service is
stopped, this list will not be updated or maintained. If this service is
disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer
Service (registry key): BrSerWDM
Display name: Brother Serial driver
Image path: System32\Drivers\BrSerWdm.sys
Image size: 60416
Image MD5: 8E06CD96E00472C03770A697D04031C0
Start: 3
Type: 1
Error Control: 1
Service (registry key): BrUsbMdm
Display name: Brother MFC USB Fax Only Modem
Image path: System32\Drivers\BrUsbMdm.sys
Image size: 11008
Image MD5: 37E2D0B12DDF536CD64AF6EB3B580EF8
Start: 3
Type: 1
Error Control: 1
Service (registry key): BrUsbScn
Display name: Brother MFC USB Scanner driver
Image path: System32\Drivers\BrUsbScn.sys
Image size: 10368
Image MD5: 1C5F014048E5B2748C1A8AD297C50B6F
Start: 3
Type: 1
Error Control: 1
Service (registry key): cbidf2k
Start: 4
Type: 1
Error Control: 1
Service (registry key): CCDECODE
Display name: Closed Caption Decoder
Image path: system32\DRIVERS\CCDECODE.sys
Image size: 17024
Image MD5: 6163ED60B684BAB19D3352AB22FC48B2
Start: 3
Type: 1
Error Control: 1
Service (registry key): cd20xrnt
Start: 4
Type: 1
Error Control: 1
Service (registry key): Cdaudio
Start: 1
Type: 1
Error Control: 0
Service (registry key): Cdfs
Start: 4
Type: 2
Error Control: 1
Depends On group: "SCSI CDROM Class"
Service (registry key): Cdrom
Display name: CD-ROM Driver
Image path: System32\DRIVERS\cdrom.sys
Image size: 49536
Image MD5: AF9C19B3100FE010496B1A27181FBF72
Start: 1
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"
Service (registry key): Changer
Start: 1
Type: 1
Error Control: 0
Service (registry key): CiSvc
Display name: Indexing Service
Description: Indexes contents and properties of files on local and remote
computers; provides rapid access to files through flexible querying
language.
Object name: LocalSystem
Image path: %SystemRoot%\system32\cisvc.exe
Image size: 5632
Image MD5: 3192BD04D032A9C4A85A3278C268A13A
Start: 3
Type: 288
Error Control: 1
Depends On services: RPCSS
Service (registry key): ClipSrv
Display name: ClipBook
Description: Enables ClipBook Viewer to store information and share it
with remote computers. If the service is stopped, ClipBook Viewer will not
be able to share information with remote computers. If this service is
disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\clipsrv.exe
Image size: 33280
Image MD5: C8DEC22C4137D7A90F8BDF41CA4B82AE
Start: 4
Type: 16
Error Control: 1
Depends On services: NetDDE
Service (registry key): CmdIde
Start: 4
Type: 1
Error Control: 1
Service (registry key): cmudau
Display name: C-Media USB Sound Interface
Image path: system32\drivers\cmudau.sys
Image size: 809536
Image MD5: ECE1962163CBB069D068F1E03C560CA0
Start: 3
Type: 1
Error Control: 1
Service (registry key): COMSysApp
Display name: COM+ System Application
Description: Manages the configuration and tracking of Component Object
Model (COM)+-based components. If the service is stopped, most COM+-based
components will not function properly. If this service is disabled, any
services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\dllhost.exe
/Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 5120
Image MD5: DD87DB7387B9EB441C5674888A0D840C
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss
Service (registry key): ContentFilter
Start: 0
Type: 0
Error Control: 0
Service (registry key): ContentIndex
Start: 0
Type: 0
Error Control: 0
Service (registry key): Cpqarray
Start: 4
Type: 1
Error Control: 1
Service (registry key): CryptSvc
Display name: Cryptographic Services
Description: Provides three management services: Catalog Database
Service, which confirms the signatures of Windows files; Protected Root
Service, which adds and removes Trusted Root Certification Authority
certificates from this computer; and Key Service, which helps enroll this
computer for certificates. If this service is stopped, these management
services will not function properly. If this service is disabled, any
services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): dac2w2k
Start: 4
Type: 1
Error Control: 0
Service (registry key): dac960nt
Start: 4
Type: 1
Error Control: 1
Service (registry key): DCamUSBNW802
Display name: PC Camera Capture
Image path: system32\DRIVERS\pcam.sys
Start: 3
Type: 1
Error Control: 1
Service (registry key): DCamUSBPanas
Display name: Panasonic PCcam
Image path: system32\DRIVERS\pcam.sys
Start: 3
Type: 1
Error Control: 1
Service (registry key): DcomLaunch
Display name: DCOM Server Process Launcher
Description: Provides launch functionality for DCOM services.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost -k DcomLaunch
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Service (registry key): Dhcp
Display name: DHCP Client
Description: Manages network configuration by registering and updating IP
addresses and DNS names.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd,NetBT
Service (registry key): Disk
Display name: Disk Driver
Image path: System32\DRIVERS\disk.sys
Image size: 36352
Image MD5: 00CA44E4534865F8A3B64F7C0984BFF0
Start: 0
Type: 1
Error Control: 1
Depends On group: "SCSI miniport"
Service (registry key): DLKRTS
Display name: D-Link DFE-538TX 10/100 Adapter
Image path: System32\DRIVERS\DLKRTS.SYS
Image size: 45568
Image MD5: B66FCA3559B20C83E8F5917C549D8B09
Start: 3
Type: 1
Error Control: 1
Service (registry key): dmadmin
Display name: Logical Disk Manager Administrative Service
Description: Configures hard disk drives and volumes. The service only
runs for configuration processes and then stops.
Object name: LocalSystem
Image path: %SystemRoot%\System32\dmadmin.exe /com
Image size: 224768
Image MD5: 554C7CB178FE3BD12450B81AD63ADBC3
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay,DmServer
Service (registry key): dmboot
Image path: System32\drivers\dmboot.sys
Image size: 799744
Image MD5: C0FBB516E06E243F0CF31F597E7EBF7D
Start: 4
Type: 1
Error Control: 1
Service (registry key): dmio
Display name: Logical Disk Manager Driver
Image path: System32\drivers\dmio.sys
Image size: 153344
Image MD5: F5E7B358A732D09F4BCF2824B88B9E28
Start: 0
Type: 1
Error Control: 1
Service (registry key): dmload
Image path: System32\drivers\dmload.sys
Image size: 5888
Image MD5: E9317282A63CA4D188C0DF5E09C6AC5F
Start: 0
Type: 1
Error Control: 1
Service (registry key): dmserver
Display name: Logical Disk Manager
Description: Detects and monitors new hard disk drives and sends disk
volume information to Logical Disk Manager Administrative Service for
configuration. If this service is stopped, dynamic disk status and
configuration information may become out of date. If this service is
disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,PlugPlay
Service (registry key): DMusic
Display name: Microsoft Kernel DLS Syntheiszer
Image path: system32\drivers\DMusic.sys
Image size: 52864
Image MD5: A6F881284AC1150E37D9AE47FF601267
Start: 3
Type: 1
Error Control: 1
Service (registry key): Dnscache
Display name: DNS Client
Description: Resolves and caches Domain Name System (DNS) names for this
computer. If this service is stopped, this computer will not be able to
resolve DNS names and locate Active Directory domain controllers. If this
service is disabled, any services that explicitly depend on it will fail to
start.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: Tcpip
Service (registry key): dpti2o
Start: 4
Type: 1
Error Control: 1
Service (registry key): drmkaud
Display name: Microsoft Kernel DRM Audio Descrambler
Image path: system32\drivers\drmkaud.sys
Image size: 2944
Image MD5: 1ED4DBBAE9F5D558DBBA4CC450E3EB2E
Start: 3
Type: 1
Error Control: 1
Service (registry key): ERSvc
Display name: Error Reporting Service
Description: Allows error reporting for services and applictions running
in non-standard environments.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs
Service (registry key): Eventlog
Display name: Event Log
Description: Enables event log messages issued by Windows-based programs
and components to be viewed in Event Viewer. This service cannot be stopped.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 108032
Image MD5: C6CE6EEC82F187615D1002BB3BB50ED4
Start: 2
Type: 32
Error Control: 1
Service (registry key): EventSystem
Display name: COM+ Event System
Description: Supports System Event Notification Service (SENS), which
provides automatic distribution of events to subscribing Component Object
Model (COM) components. If the service is stopped, SENS will close and will
not be able to provide logon and logoff notifications. If this service is
disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): Fastfat
Start: 4
Type: 2
Error Control: 1
Service (registry key): FastUserSwitchingCompatibility
Display name: Fast User Switching Compatibility
Description: Provides management for applications that require assistance
in a multiple user environment.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: TermService
Service (registry key): Fdc
Display name: Floppy Disk Controller Driver
Image path: System32\DRIVERS\fdc.sys
Image size: 27392
Image MD5: CED2E8396A8838E59D8FD529C680E02C
Start: 3
Type: 1
Error Control: 1
Service (registry key): Fips
Start: 1
Type: 1
Error Control: 1
Service (registry key): Flpydisk
Display name: Floppy Disk Driver
Image path: System32\DRIVERS\flpydisk.sys
Image size: 20480
Image MD5: 0DD1DE43115B93F4D85E889D7A86F548
Start: 3
Type: 1
Error Control: 1
Service (registry key): FltMgr
Display name: FltMgr
Description: File System Filter Manager Driver
Image path: system32\drivers\fltmgr.sys
Image size: 124800
Image MD5: 157754F0DF355A9E0A6F54721914F9C6
Start: 0
Type: 2
Error Control: 1
Service (registry key): Fs_Rec
Start: 1
Type: 8
Error Control: 0
Service (registry key): Ftdisk
Display name: Volume Manager Driver
Image path: System32\DRIVERS\ftdisk.sys
Image size: 125056
Image MD5: 6AC26732762483366C3969C9E4D2259D
Start: 0
Type: 1
Error Control: 1
Service (registry key): gameenum
Display name: Game Port Enumerator
Image path: System32\DRIVERS\gameenum.sys
Image size: 10624
Image MD5: 5F92FD09E5610A5995DA7D775EADCD12
Start: 3
Type: 1
Error Control: 0
Service (registry key): GEARAspiWDM
Display name: GEAR CDRom Filter
Image path: SYSTEM32\DRIVERS\GEARAspiWDM.sys
Image size: 13872
Image MD5: 2FB04DB459C71F416EE8B05448CA4AC3
Start: 3
Type: 1
Error Control: 1
Service (registry key): Gpc
Display name: Generic Packet Classifier
Description: Generic Packet Classifier
Image path: System32\DRIVERS\msgpc.sys
Image size: 35072
Image MD5: C0F1D4A21DE5A415DF8170616703DEBF
Start: 3
Type: 1
Error Control: 1
Service (registry key): GT680x
Display name: GT680x Scanner Controller
Image path: System32\Drivers\gt680x.sys
Image size: 18120
Image MD5: 9D68BBEDAC2C3744724F6A99CC42D8E1
Start: 2
Type: 1
Error Control: 1
Service (registry key): helpsvc
Display name: Help and Support
Description: Enables Help and Support Center to run on this computer. If
this service is stopped, Help and Support Center will be unavailable. If
this service is disabled, any services that explicitly depend on it will
fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): HidServ
Display name: HID Input Service
Description: Enables generic input access to Human Interface Devices
(HID), which activates and maintains the use of predefined hot buttons on
keyboards, remote controls, and other multimedia devices. If this service is
stopped, hot buttons controlled by this service will no longer function. If
this service is disabled, any services that explicitly depend on it will
fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): HidUsb
Display name: Microsoft HID Class Driver
Image path: System32\DRIVERS\hidusb.sys
Image size: 9600
Image MD5: 1DE6783B918F540149AA69943BDFEBA8
Start: 3
Type: 1
Error Control: 0
Service (registry key): hpn
Start: 4
Type: 1
Error Control: 1
Service (registry key): HTTP
Display name: HTTP
Description: This service implements the hypertext transfer protocol
(HTTP). If this service is disabled, any services that explicitly depend on
it will fail to start.
Image path: System32\Drivers\HTTP.sys
Image size: 262400
Image MD5: BFB7B73C942E816C4FB4A5A7BAE87136
Start: 3
Type: 1
Error Control: 1
Service (registry key): HTTPFilter
Display name: HTTP SSL
Description: This service implements the secure hypertext transfer
protocol (HTTPS) for the HTTP service, using the Secure Socket Layer (SSL).
If this service is disabled, any services that explicitly depend on it will
fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k HTTPFilter
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP
Service (registry key): i2omgmt
Start: 1
Type: 1
Error Control: 1
Service (registry key): i2omp
Start: 4
Type: 1
Error Control: 1
Service (registry key): i8042prt
Display name: i8042 Keyboard and PS/2 Mouse Port Driver
Image path: System32\DRIVERS\i8042prt.sys
Image size: 52736
Image MD5: 5502B58EEF7486EE6F93F3F164DCB808
Start: 1
Type: 1
Error Control: 1
Service (registry key): Imapi
Display name: CD-Burning Filter Driver
Image path: System32\DRIVERS\imapi.sys
Image size: 41856
Image MD5: F8AA320C6A0409C0380E5D8A99D76EC6
Start: 1
Type: 1
Error Control: 1
Service (registry key): ImapiService
Display name: IMAPI CD-Burning COM Service
Description: Manages CD recording using Image Mastering Applications
Programming Interface (IMAPI). If this service is stopped, this computer
will be unable to record CDs. If this service is disabled, any services that
explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\imapi.exe
Image size: 150016
Image MD5: FA788520BCAC0F5D9D5CDE5615C0D931
Start: 3
Type: 16
Error Control: 1
Service (registry key): InCDfs
Display name: InCD File System
Start: 4
Type: 2
Error Control: 1
Service (registry key): InCDPass
Display name: InCdPass
Image path: System32\DRIVERS\InCDPass.sys
Image size: 26336
Image MD5: 9341D05EA29ED92C5AA6865DF60E6AB8
Start: 1
Type: 1
Error Control: 1
Service (registry key): InCDrec
Start: 1
Type: 8
Error Control: 1
Service (registry key): incdrm
Display name: InCD EasyWrite Reader
Start: 1
Type: 1
Error Control: 0
Service (registry key): InCDsrv
Display name: InCD File System Service
Description: Helper service for the InCD filesystem driver
Object name: LocalSystem
Image path: C:\Program Files\Ahead\InCD\InCDsrv.exe
Image size: 671796
Image MD5: 254A6CCA11DBAFEF78F71463633BD6FE
Start: 2
Type: 16
Error Control: 1
Service (registry key): inetaccs
Start: 0
Type: 0
Error Control: 0
Service (registry key): ini910u
Start: 4
Type: 1
Error Control: 1
Service (registry key): Inport
Start: 0
Type: 0
Error Control: 0
Service (registry key): IntelIde
Start: 4
Type: 1
Error Control: 1
Service (registry key): Intels51
Display name: Intel(R) 536EP Modem
Image path: System32\DRIVERS\Intels51.sys
Image size: 670203
Image MD5: CB5C2935491F0F998F1B62BFFA258464
Start: 3
Type: 1
Error Control: 1
Service (registry key): Ip6Fw
Display name: IPv6 Windows Firewall Driver
Description: Provides intrusion prevention service for a home or small
office network.
Image path: system32\drivers\ip6fw.sys
Image size: 29056
Image MD5: 4448006B6BC60E6C027932CFC38D6855
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip6
Service (registry key): IpFilterDriver
Display name: IP Traffic Filter Driver
Description: IP Traffic Filter Driver
Image path: System32\DRIVERS\ipfltdrv.sys
Image size: 32896
Image MD5: 731F22BA402EE4B62748ADAF6363C182
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip
Service (registry key): IpInIp
Display name: IP in IP Tunnel Driver
Description: IP in IP Tunnel Driver
Image path: System32\DRIVERS\ipinip.sys
Image size: 20992
Image MD5: E1EC7F5DA720B640CD8FB8424F1B14BB
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip
Service (registry key): IpNat
Display name: IP Network Address Translator
Description: IP Network Address Translator
Image path: System32\DRIVERS\ipnat.sys
Image size: 134912
Image MD5: E2168CBC7098FFE963C6F23F472A3593
Start: 3
Type: 1
Error Control: 1
Depends On services: Tcpip
Service (registry key): iPodService
Display name: iPod Service
Description: iPod hardware management services
Object name: LocalSystem
Image path: "C:\Program Files\iPod\bin\iPodService.exe"
Image size: 327680
Image MD5: 3AC9F355ECCE7D6BB8FF184E9B2229A9
Start: 3
Type: 16
Error Control: 0
Service (registry key): IPSec
Display name: IPSEC driver
Description: IPSEC driver
Image path: System32\DRIVERS\ipsec.sys
Image size: 74752
Image MD5: 64537AA5C003A6AFEEE1DF819062D0D1
Start: 1
Type: 1
Error Control: 1
Service (registry key): IRENUM
Display name: IR Enumerator Service
Image path: System32\DRIVERS\irenum.sys
Image size: 11264
Image MD5: 50708DAA1B1CBB7D6AC1CF8F56A24410
Start: 3
Type: 1
Error Control: 1
Service (registry key): ISAPISearch
Start: 0
Type: 0
Error Control: 0
Service (registry key): isapnp
Display name: PnP ISA/EISA Bus Driver
Image path: System32\DRIVERS\isapnp.sys
Image size: 35840
Image MD5: E504F706CCB699C2596E9A3DA1596E87
Start: 0
Type: 1
Error Control: 3
Service (registry key): Kbdclass
Display name: Keyboard Class Driver
Image path: System32\DRIVERS\kbdclass.sys
Image size: 24576
Image MD5: EBDEE8A2EE5393890A1ACEE971C4C246
Start: 1
Type: 1
Error Control: 1
Service (registry key): kmixer
Display name: Microsoft Kernel Wave Audio Mixer
Image path: system32\drivers\kmixer.sys
Image size: 171776
Image MD5: D93CAD07C5683DB066B0B2D2D3790EAD
Start: 3
Type: 1
Error Control: 1
Service (registry key): KSecDD
Start: 0
Type: 1
Error Control: 1
Service (registry key): lanmanserver
Display name: Server
Description: Supports file, print, and named-pipe sharing over the
network for this computer. If this service is stopped, these functions will
be unavailable. If this service is disabled, any services that explicitly
depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Service (registry key): lanmanworkstation
Display name: Workstation
Description: Creates and maintains client network connections to remote
servers. If this service is stopped, these connections will be unavailable.
If this service is disabled, any services that explicitly depend on it will
fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Service (registry key): lbrtfdc
Start: 1
Type: 1
Error Control: 0
Service (registry key): ldap
Start: 0
Type: 0
Error Control: 0
Service (registry key): LicenseService
Start: 0
Type: 0
Error Control: 0
Service (registry key): LmHosts
Display name: TCP/IP NetBIOS Helper
Description: Enables support for NetBIOS over TCP/IP (NetBT) service and
NetBIOS name resolution.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: NetBT,Afd
Service (registry key): LVUSBSta
Display name: Logitech USB Monitor Filter
Image path: system32\drivers\lvusbsta.sys
Image size: 19968
Image MD5: A9ABAD5FCB7011114082933B01E13FCE
Start: 3
Type: 1
Error Control: 1
Service (registry key): Messenger
Display name: Messenger
Description: Transmits net send and Alerter service messages between
clients and servers. This service is not related to Windows Messenger. If
this service is stopped, Alerter messages will not be transmitted. If this
service is disabled, any services that explicitly depend on it will fail to
start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,NetBIOS,PlugPlay,RpcSS
Service (registry key): mf
Image path: System32\DRIVERS\mf.sys
Image size: 63744
Image MD5: 729D83E56C29C510258A6E9E79FFDDC3
Start: 3
Type: 1
Error Control: 1
Service (registry key): mnmdd
Start: 1
Type: 1
Error Control: 0
Service (registry key): mnmsrvc
Display name: NetMeeting Remote Desktop Sharing
Description: Enables an authorized user to access this computer remotely
by using NetMeeting over a corporate intranet. If this service is stopped,
remote desktop sharing will be unavailable. If this service is disabled, any
services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\mnmsrvc.exe
Image size: 32768
Image MD5: F6415361201915B9FE3896B0E4E724FF
Start: 3
Type: 272
Error Control: 1
Service (registry key): Modem
Start: 3
Type: 1
Error Control: 0
Service (registry key): MODEMCSA
Display name: Unimodem Streaming Filter Device
Image path: system32\drivers\MODEMCSA.sys
Image size: 16128
Image MD5: 1992E0D143B09653AB0F9C5E04B0FD65
Start: 3
Type: 1
Error Control: 1
Service (registry key): Mouclass
Display name: Mouse Class Driver
Image path: System32\DRIVERS\mouclass.sys
Image size: 23040
Image MD5: 34E1F0031153E491910E12551400192C
Start: 1
Type: 1
Error Control: 1
Service (registry key): MountMgr
Display name: Mount Point Manager
Start: 0
Type: 1
Error Control: 1
Service (registry key): mraid35x
Start: 4
Type: 1
Error Control: 1
Service (registry key): MRxDAV
Display name: WebDav Client Redirector
Description: WebDav Client Redirector
Image path: System32\DRIVERS\mrxdav.sys
Image size: 181248
Image MD5: 46EDCC8F2DB2F322C24F48785CB46366
Start: 3
Type: 2
Error Control: 1
Service (registry key): MRxSmb
Display name: MRXSMB
Description: MRXSMB
Image path: System32\DRIVERS\mrxsmb.sys
Image size: 451584
Image MD5: 5DDC9A1B2EB5A4BF010CE8C019A18C1F
Start: 1
Type: 2
Error Control: 1
Service (registry key): MSDTC
Display name: Distributed Transaction Coordinator
Description: Coordinates transactions that span multiple resource
managers, such as databases, message queues, and file systems. If this
service is stopped, these transactions will not occur. If this service is
disabled, any services that explicitly depend on it will fail to start.
Object name: NT AUTHORITY\NetworkService
Image path: C:\WINDOWS\System32\msdtc.exe
Image size: 6144
Image MD5: C7C3D89EB0A6F3DBA622EA737FA335B1
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS,SamSS
Service (registry key): Msfs
Start: 1
Type: 2
Error Control: 1
Service (registry key): MSIServer
Display name: Windows Installer
Description: Adds, modifies, and removes applications provided as a
Windows Installer (*.msi) package. If this service is disabled, any services
that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\msiexec.exe /V
Image size: 78848
Image MD5: F5F0146580E7023ADB963879840777F8
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): MSKSSRV
Display name: Microsoft Streaming Service Proxy
Image path: system32\drivers\MSKSSRV.sys
Image size: 7552
Image MD5: AE431A8DD3C1D0D0610CDBAC16057AD0
Start: 3
Type: 1
Error Control: 1
Service (registry key): MSPCLOCK
Display name: Microsoft Streaming Clock Proxy
Image path: system32\drivers\MSPCLOCK.sys
Image size: 5376
Image MD5: 13E75FEF9DFEB08EEDED9D0246E1F448
Start: 3
Type: 1
Error Control: 1
Service (registry key): MSPQM
Display name: Microsoft Streaming Quality Manager Proxy
Image path: system32\drivers\MSPQM.sys
Image size: 4992
Image MD5: 1988A33FF19242576C3D0EF9CE785DA7
Start: 3
Type: 1
Error Control: 1
Service (registry key): mssmbios
Display name: Microsoft System Management BIOS Driver
Image path: System32\DRIVERS\mssmbios.sys
Image size: 15488
Image MD5: 469541F8BFD2B32659D5D463A6714BCE
Start: 3
Type: 1
Error Control: 1
Service (registry key): MSTEE
Display name: Microsoft Streaming Tee/Sink-to-Sink Converter
Image path: system32\drivers\MSTEE.sys
Image size: 5504
Image MD5: BF13612142995096AB084F2DB7F40F77
Start: 3
Type: 1
Error Control: 1
Service (registry key): ms_mpu401
Display name: Microsoft MPU-401 MIDI UART Driver
Image path: system32\drivers\msmpu401.sys
Image size: 2944
Image MD5: CA3E22598F411199ADC2DFEE76CD0AE0
Start: 3
Type: 1
Error Control: 1
Service (registry key): Mup
Display name: Mup
Start: 0
Type: 2
Error Control: 1
Service (registry key): NABTSFEC
Display name: NABTS/FEC VBI Codec
Image path: system32\DRIVERS\NABTSFEC.sys
Image size: 85376
Image MD5: 5C8DC6429C43DC6177C1FA5B76290D1A
Start: 3
Type: 1
Error Control: 1
Service (registry key): NDIS
Display name: NDIS System Driver
Start: 0
Type: 1
Error Control: 1
Service (registry key): NdisIP
Display name: Microsoft TV/Video Connection
Image path: system32\DRIVERS\NdisIP.sys
Image size: 10880
Image MD5: 520CE427A8B298F54112857BCF6BDE15
Start: 3
Type: 1
Error Control: 1
Service (registry key): NdisTapi
Display name: Remote Access NDIS TAPI Driver
Description: Remote Access NDIS TAPI Driver
Image path: System32\DRIVERS\ndistapi.sys
Image size: 9600
Image MD5: 08D43BBDACDF23F34D79E44ED35C1B4C
Start: 3
Type: 1
Error Control: 1
Service (registry key): Ndisuio
Display name: NDIS Usermode I/O Protocol
Description: NDIS Usermode I/O Protocol
Image path: System32\DRIVERS\ndisuio.sys
Image size: 12928
Image MD5: 34D6CD56409DA9A7ED573E1C90A308BF
Start: 3
Type: 1
Error Control: 1
Service (registry key): NdisWan
Display name: Remote Access NDIS WAN Driver
Description: Remote Access NDIS WAN Driver
Image path: System32\DRIVERS\ndiswan.sys
Image size: 91776
Image MD5: 0B90E255A9490166AB368CD55A529893
Start: 3
Type: 1
Error Control: 1
Service (registry key): NDProxy
Start: 3
Type: 1
Error Control: 1
Service (registry key): NetBIOS
Display name: NetBIOS Interface
Description: NetBIOS Interface
Image path: System32\DRIVERS\netbios.sys
Image size: 34560
Image MD5: 3A2ACA8FC1D7786902CA434998D7CEB4
Start: 1
Type: 2
Error Control: 1
Service (registry key): NetBT
Display name: NetBT
Description: NetBios over Tcpip
Image path: System32\DRIVERS\netbt.sys
Image size: 162816
Image MD5: 0C80E410CD2F47134407EE7DD19CC86B
Start: 1
Type: 1
Error Control: 1
Depends On services: Tcpip
Service (registry key): NetDDE
Display name: Network DDE
Description: Provides network transport and security for Dynamic Data
Exchange (DDE) for programs running on the same computer or on different
computers. If this service is stopped, DDE transport and security will be
unavailable. If this service is disabled, any services that explicitly
depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\netdde.exe
Image size: 111104
Image MD5: 05AFB5AD06462257BEA7495283C86D50
Start: 4
Type: 32
Error Control: 1
Depends On services: NetDDEDSDM
Service (registry key): NetDDEdsdm
Display name: Network DDE DSDM
Description: Manages Dynamic Data Exchange (DDE) network shares. If this
service is stopped, DDE network shares will be unavailable. If this service
is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\system32\netdde.exe
Image size: 111104
Image MD5: 05AFB5AD06462257BEA7495283C86D50
Start: 4
Type: 32
Error Control: 1
Service (registry key): Netlogon
Display name: Net Logon
Description: Supports pass-through authentication of account logon events
for computers in a domain.
Object name: LocalSystem
Image path: %SystemRoot%\System32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation
Service (registry key): Netman
Display name: Network Connections
Description: Manages objects in the Network and Dial-Up Connections
folder, in which you can view both local area network and remote
connections.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 288
Error Control: 1
Depends On services: RpcSs
Service (registry key): Nla
Display name: Network Location Awareness (NLA)
Description: Collects and stores network configuration and location
information, and notifies applications when this information changes.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: Tcpip,Afd
Service (registry key): Npfs
Start: 1
Type: 2
Error Control: 1
Service (registry key): Ntfs
Start: 4
Type: 2
Error Control: 1
Service (registry key): NtLmSsp
Display name: NT LM Security Support Provider
Description: Provides security to remote procedure call (RPC) programs
that use transports other than named pipes.
Object name: LocalSystem
Image path: %SystemRoot%\System32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 3
Type: 32
Error Control: 1
Service (registry key): NtmsSvc
Display name: Removable Storage
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): Null
Start: 1
Type: 1
Error Control: 1
Service (registry key): nvax
Display name: Service for NVIDIA(R) nForce(TM) Audio Enumerator
Image path: system32\drivers\nvax.sys
Image size: 53376
Image MD5: C940418D48B98359E9CCBAD695E5F530
Start: 3
Type: 1
Error Control: 1
Service (registry key): NVENET
Display name: NVIDIA nForce MCP Networking Adapter Driver
Image path: System32\DRIVERS\NVENET.sys
Image size: 80896
Image MD5: FBE448EFA5484A256528E1D02B959BBC
Start: 3
Type: 1
Error Control: 1
Service (registry key): nvnforce
Display name: Service for NVIDIA(R) nForce(TM) Audio
Image path: system32\drivers\nvapu.sys
Image size: 413824
Image MD5: B000A8B4946F786A56C7B020620B3A46
Start: 3
Type: 1
Error Control: 1
Service (registry key): nv_agp
Display name: NVIDIA nForce AGP Bus Filter
Image path: System32\DRIVERS\nv_agp.sys
Image size: 13568
Image MD5: DB36442C20793C53B4128EB85F9A3D32
Start: 0
Type: 1
Error Control: 1
Service (registry key): NwlnkFlt
Display name: IPX Traffic Filter Driver
Description: IPX Traffic Filter Driver
Image path: System32\DRIVERS\nwlnkflt.sys
Image size: 12416
Image MD5: B305F3FAD35083837EF46A0BBCE2FC57
Start: 3
Type: 1
Error Control: 1
Depends On services: NwlnkFwd
Service (registry key): NwlnkFwd
Display name: IPX Traffic Forwarder Driver
Description: IPX Traffic Forwarder Driver
Image path: System32\DRIVERS\nwlnkfwd.sys
Image size: 32512
Image MD5: C99B3415198D1AAB7227F2C88FD664B9
Start: 3
Type: 1
Error Control: 1
Service (registry key): ose
Display name: Office Source Engine
Description: Salva i file di installazione utilizzati per operazioni di
aggiornamento e ripristino ed è necessario per il download di aggiornamenti
al programma di installazione e per segnalazioni errori Watson.
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Microsoft Shared\Source
Engine\OSE.EXE"
Image size: 89136
Image MD5: 7A56CF3E3F12E8AF599963B16F50FB6A
Start: 3
Type: 16
Error Control: 1
Service (registry key): Outlook
Start: 0
Type: 0
Error Control: 0
Service (registry key): Parport
Display name: Parallel port driver
Image path: System32\DRIVERS\parport.sys
Image size: 80128
Image MD5: 29744EB4CE659DFE3B4122DEB45BC478
Start: 3
Type: 1
Error Control: 1
Service (registry key): PartMgr
Display name: Partition Manager
Start: 0
Type: 1
Error Control: 1
Service (registry key): ParVdm
Start: 2
Type: 1
Error Control: 0
Depends On services: Parport
Depends On group: "Parallel arbitrator"
Service (registry key): PCI
Display name: PCI Bus Driver
Image path: System32\DRIVERS\pci.sys
Image size: 68224
Image MD5: 8086D9979234B603AD5BC2F5D890B234
Start: 0
Type: 1
Error Control: 1
Service (registry key): PCIDump
Start: 1
Type: 1
Error Control: 0
Service (registry key): PCIIde
Image path: System32\DRIVERS\pciide.sys
Image size: 3328
Image MD5: CCF5F451BB1A5A2A522A76E670000FF0
Start: 0
Type: 1
Error Control: 1
Service (registry key): Pcmcia
Start: 4
Type: 1
Error Control: 1
Service (registry key): PDCOMP
Start: 3
Type: 1
Error Control: 0
Service (registry key): PDFRAME
Start: 3
Type: 1
Error Control: 0
Service (registry key): PDRELI
Start: 3
Type: 1
Error Control: 0
Service (registry key): PDRFRAME
Start: 3
Type: 1
Error Control: 0
Service (registry key): perc2
Start: 4
Type: 1
Error Control: 1
Service (registry key): perc2hib
Start: 4
Type: 1
Error Control: 1
Service (registry key): PerfDisk
Start: 0
Type: 0
Error Control: 0
Service (registry key): PerfNet
Start: 0
Type: 0
Error Control: 0
Service (registry key): PerfOS
Start: 0
Type: 0
Error Control: 0
Service (registry key): PerfProc
Start: 0
Type: 0
Error Control: 0
Service (registry key): PlugPlay
Display name: Plug and Play
Description: Enables a computer to recognize and adapt to hardware
changes with little or no user input. Stopping or disabling this service
will result in system instability.
Object name: LocalSystem
Image path: %SystemRoot%\system32\services.exe
Image size: 108032
Image MD5: C6CE6EEC82F187615D1002BB3BB50ED4
Start: 2
Type: 32
Error Control: 1
Service (registry key): PolicyAgent
Display name: IPSEC Services
Description: Manages IP security policy and starts the ISAKMP/Oakley
(IKE) and the IP security driver.
Object name: LocalSystem
Image path: %SystemRoot%\System32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS,Tcpip,IPSec
Service (registry key): PptpMiniport
Display name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Image path: System32\DRIVERS\raspptp.sys
Image size: 48384
Image MD5: 1C5CC65AAC0783C344F16353E60B72AC
Start: 3
Type: 1
Error Control: 1
Service (registry key): Processor
Display name: Processor Driver
Image path: System32\DRIVERS\processr.sys
Image size: 35328
Image MD5: 0D97D88720A4087EC93AF7DBB303B30A
Start: 1
Type: 1
Error Control: 1
Service (registry key): ProtectedStorage
Display name: Protected Storage
Description: Provides protected storage for sensitive data, such as
private keys, to prevent access by unauthorized services, processes, or
users.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 2
Type: 288
Error Control: 1
Depends On services: RpcSs
Service (registry key): PSched
Display name: QoS Packet Scheduler
Description: QoS Packet Scheduler
Image path: System32\DRIVERS\psched.sys
Image size: 69120
Image MD5: 48671F327553DCF1D27F6197F622A668
Start: 3
Type: 1
Error Control: 1
Depends On services: Gpc
Service (registry key): Ptilink
Display name: Direct Parallel Link Driver
Description: Direct Parallel Link Driver
Image path: System32\DRIVERS\ptilink.sys
Image size: 17792
Image MD5: 80D317BD1C3DBC5D4FE7B1678C60CADD
Start: 3
Type: 1
Error Control: 1
Service (registry key): PxHelp20
Display name: PxHelp20
Image path: System32\Drivers\PxHelp20.sys
Image size: 20640
Image MD5: 183EF96BCC2EC3D5294CB2C2C0ECBCD1
Start: 0
Type: 1
Error Control: 1
Service (registry key): QCMerced
Display name: Logitech QuickCam Communicate
Image path: system32\DRIVERS\LVCM.sys
Image size: 471232
Image MD5: A5D52C11EFF8B133432D98B2C2A4AEE6
Start: 3
Type: 1
Error Control: 1
Service (registry key): ql1080
Start: 4
Type: 1
Error Control: 1
Service (registry key): Ql10wnt
Start: 4
Type: 1
Error Control: 1
Service (registry key): ql12160
Start: 4
Type: 1
Error Control: 1
Service (registry key): ql1240
Start: 4
Type: 1
Error Control: 1
Service (registry key): ql1280
Start: 4
Type: 1
Error Control: 1
Service (registry key): RasAcd
Display name: Remote Access Auto Connection Driver
Description: Remote Access Auto Connection Driver
Image path: System32\DRIVERS\rasacd.sys
Image size: 8832
Image MD5: FE0D99D6F31E4FAD8159F690D68DED9C
Start: 1
Type: 1
Error Control: 1
Service (registry key): RasAuto
Display name: Remote Access Auto Connection Manager
Description: Creates a connection to a remote network whenever a program
references a remote DNS or NetBIOS name or address.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RasMan,Tapisrv
Service (registry key): Rasl2tp
Display name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Image path: System32\DRIVERS\rasl2tp.sys
Image size: 51328
Image MD5: 98FAEB4A4DCF812BA1C6FCA4AA3E115C
Start: 3
Type: 1
Error Control: 1
Service (registry key): RasMan
Display name: Remote Access Connection Manager
Description: Creates a network connection.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: Tapisrv
Service (registry key): RasPppoe
Display name: Remote Access PPPOE Driver
Description: Remote Access PPPOE Driver
Image path: System32\DRIVERS\raspppoe.sys
Image size: 41472
Image MD5: 7306EEED8895454CBED4669BE9F79FAA
Start: 3
Type: 1
Error Control: 1
Service (registry key): Raspti
Display name: Direct Parallel
Description: Direct Parallel
Image path: System32\DRIVERS\raspti.sys
Image size: 16512
Image MD5: FDBB1D60066FCFBB7452FD8F9829B242
Start: 3
Type: 1
Error Control: 1
Service (registry key): Rdbss
Display name: Rdbss
Description: Rdbss
Image path: System32\DRIVERS\rdbss.sys
Image size: 174592
Image MD5: 809CA45CAA9072B3176AD44579D7F688
Start: 1
Type: 2
Error Control: 1
Service (registry key): RDPCDD
Image path: System32\DRIVERS\RDPCDD.sys
Image size: 4224
Image MD5: 4912D5B403614CE99C28420F75353332
Start: 1
Type: 1
Error Control: 0
Service (registry key): RDPDD
Start: 0
Type: 0
Error Control: 0
Service (registry key): rdpdr
Display name: Terminal Server Device Redirector Driver
Image path: System32\DRIVERS\rdpdr.sys
Image size: 196864
Image MD5: A2CAE2C60BC37E0751EF9DDA7CEAF4AD
Start: 3
Type: 1
Error Control: 1
Service (registry key): RDPNP
Start: 0
Type: 0
Error Control: 0
Service (registry key): RDPWD
Start: 3
Type: 1
Error Control: 0
Service (registry key): RDSessMgr
Display name: Remote Desktop Help Session Manager
Description: Manages and controls Remote Assistance. If this service is
stopped, Remote Assistance will be unavailable. Before stopping this
service, see the Dependencies tab of the Properties dialog box.
Object name: LocalSystem
Image path: C:\WINDOWS\system32\sessmgr.exe
Image size: 140800
Image MD5: 729798E0933076B8FCFCD9934698F164
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): redbook
Display name: Digital CD Audio Playback Filter Driver
Image path: System32\DRIVERS\redbook.sys
Image size: 57472
Image MD5: B31B4588E4086D8D84ADBF9845C2402B
Start: 1
Type: 1
Error Control: 1
Service (registry key): RemoteAccess
Display name: Routing and Remote Access
Description: Offers routing services to businesses in local area and wide
area network environments.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 4
Type: 32
Error Control: 1
Depends On services: RpcSS
Depends On group: NetBIOSGroup
Service (registry key): RemoteRegistry
Display name: Remote Registry
Description: Enables remote users to modify registry settings on this
computer. If this service is stopped, the registry can be modified only by
users on this computer. If this service is disabled, any services that
explicitly depend on it will fail to start.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): RpcLocator
Display name: Remote Procedure Call (RPC) Locator
Description: Manages the RPC name service database.
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\locator.exe
Image size: 75264
Image MD5: 793F04A09B15E7C6C11DBDFFAF06C0AB
Start: 3
Type: 16
Error Control: 1
Depends On services: LanmanWorkstation
Service (registry key): RpcSs
Display name: Remote Procedure Call (RPC)
Description: Provides the endpoint mapper and other miscellaneous RPC
services.
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\svchost -k rpcss
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Service (registry key): RSVP
Display name: QoS RSVP
Description: Provides network signaling and local traffic control setup
functionality for QoS-aware programs and control applets.
Object name: LocalSystem
Image path: %SystemRoot%\System32\rsvp.exe
Image size: 132608
Image MD5: 471B3F9741D762ABE75E9DEEA4787E47
Start: 3
Type: 16
Error Control: 1
Depends On services: TcpIp,Afd,RpcSs
Service (registry key): rtl8139
Display name: Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT
Driver
Image path: System32\DRIVERS\RTL8139.SYS
Image size: 20992
Image MD5: D507C1400284176573224903819FFDA3
Start: 3
Type: 1
Error Control: 1
Service (registry key): SamSs
Display name: Security Accounts Manager
Description: Stores security information for local user accounts.
Object name: LocalSystem
Image path: %SystemRoot%\system32\lsass.exe
Image size: 13312
Image MD5: 84885F9B82F4D55C6146EBF6065D75D2
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): SCardSvr
Display name: Smart Card
Description: Manages access to smart cards read by this computer. If this
service is stopped, this computer will be unable to read smart cards. If
this service is disabled, any services that explicitly depend on it will
fail to start.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\SCardSvr.exe
Image size: 95744
Image MD5: 25D8DE134DF108E3DBC8D7D23B1AA58E
Start: 3
Type: 32
Error Control: 0
Depends On services: PlugPlay
Service (registry key): Schedule
Display name: Task Scheduler
Description: Enables a user to configure and schedule automated tasks on
this computer. If this service is stopped, these tasks will not be run at
their scheduled times. If this service is disabled, any services that
explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 288
Error Control: 1
Depends On services: RpcSs
Service (registry key): ScsiPort
Image path: %SystemRoot%\system32\drivers\scsiport.sys
Image size: 96256
Image MD5: D7FD0FF761E28AC0EA35AD71E0CD67E9
Start: 0
Type: 0
Error Control: 0
Service (registry key): Secdrv
Display name: Secdrv
Description: SafeDisc driver
Image path: System32\DRIVERS\secdrv.sys
Image size: 27440
Image MD5: D26E26EA516450AF9D072635C60387F4
Start: 3
Type: 1
Error Control: 1
Service (registry key): seclogon
Display name: Secondary Logon
Description: Enables starting processes under alternate credentials. If
this service is stopped, this type of logon access will be unavailable. If
this service is disabled, any services that explicitly depend on it will
fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 288
Error Control: 0
Service (registry key): SENS
Display name: System Event Notification
Description: Tracks system events such as Windows logon, network, and
power events. Notifies COM+ Event System subscribers of these events.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: EventSystem
Service (registry key): serenum
Display name: Serenum Filter Driver
Image path: System32\DRIVERS\serenum.sys
Image size: 15488
Image MD5: A2D868AEEFF612E70E213C451A70CAFB
Start: 3
Type: 1
Error Control: 1
Service (registry key): Serial
Display name: Serial port driver
Image path: System32\DRIVERS\serial.sys
Image size: 64896
Image MD5: CD9404D115A00D249F70A371B46D5A26
Start: 1
Type: 1
Error Control: 0
Service (registry key): Sfloppy
Start: 1
Type: 1
Error Control: 0
Depends On group: "SCSI miniport"
Service (registry key): SharedAccess
Display name: Windows Firewall/Internet Connection Sharing (ICS)
Description: Provides network address translation, addressing, name
resolution and/or intrusion prevention services for a home or small office
network.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: Netman,WinMgmt
Service (registry key): ShellHWDetection
Display name: Shell Hardware Detection
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs
Service (registry key): Simbad
Start: 4
Type: 1
Error Control: 1
Service (registry key): SLIP
Display name: BDA Slip De-Framer
Image path: system32\DRIVERS\SLIP.sys
Image size: 11136
Image MD5: 5CAEED86821FA2C6139E32E9E05CCDC9
Start: 3
Type: 1
Error Control: 1
Service (registry key): Sparrow
Start: 4
Type: 1
Error Control: 1
Service (registry key): splitter
Display name: Microsoft Kernel Audio Splitter
Image path: system32\drivers\splitter.sys
Image size: 6400
Image MD5: 8E186B8F23295D1E42C573B82B80D548
Start: 3
Type: 1
Error Control: 1
Service (registry key): Spooler
Display name: Print Spooler
Description: Loads files to memory for later printing.
Object name: LocalSystem
Image path: %SystemRoot%\system32\spoolsv.exe
Image size: 57856
Image MD5: 7435B108B935E42EA92CA94F59C8E717
Start: 2
Type: 272
Error Control: 1
Depends On services: RPCSS
Service (registry key): sr
Display name: System Restore Filter Driver
Image path: System32\DRIVERS\sr.sys
Image size: 73472
Image MD5: E41B6D037D6CD08461470AF04500DC24
Start: 0
Type: 2
Error Control: 1
Service (registry key): srservice
Display name: System Restore Service
Description: Performs system restore functions. To stop service, turn off
System Restore from the System Restore tab in My Computer->Properties
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): Srv
Display name: Srv
Description: Srv
Image path: System32\DRIVERS\srv.sys
Image size: 332544
Image MD5: 553007ECCE7F6565BBE645BEB66D3B69
Start: 3
Type: 2
Error Control: 1
Service (registry key): SSDPSRV
Display name: SSDP Discovery Service
Description: Enables discovery of UPnP devices on your home network.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP
Service (registry key): stisvc
Display name: Windows Image Acquisition (WIA)
Description: Provides image acquisition services for scanners and
cameras.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k imgsvc
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): streamip
Display name: BDA IPSink
Image path: system32\DRIVERS\StreamIP.sys
Image size: 15360
Image MD5: 284C57DF5DC7ABCA656BC2B96A667AFB
Start: 3
Type: 1
Error Control: 1
Service (registry key): swenum
Display name: Software Bus Driver
Image path: System32\DRIVERS\swenum.sys
Image size: 4352
Image MD5: 03C1BAE4766E2450219D20B993D6E046
Start: 3
Type: 1
Error Control: 1
Service (registry key): swmidi
Display name: Microsoft Kernel GS Wavetable Synthesizer
Image path: system32\drivers\swmidi.sys
Image size: 54272
Image MD5: 94ABC808FC4B6D7D2BBF42B85E25BB4D
Start: 3
Type: 1
Error Control: 1
Service (registry key): SwPrv
Display name: MS Software Shadow Copy Provider
Description: Manages software-based volume shadow copies taken by the
Volume Shadow Copy service. If this service is stopped, software-based
volume shadow copies cannot be managed. If this service is disabled, any
services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\dllhost.exe
/Processid:{BFD2B023-9694-4287-89A9-5E9FE70249C3}
Image size: 5120
Image MD5: DD87DB7387B9EB441C5674888A0D840C
Start: 3
Type: 16
Error Control: 0
Depends On services: rpcss
Service (registry key): swwd
Start: 0
Type: 0
Error Control: 0
Service (registry key): symc810
Start: 4
Type: 1
Error Control: 1
Service (registry key): symc8xx
Start: 4
Type: 1
Error Control: 1
Service (registry key): sym_hi
Start: 4
Type: 1
Error Control: 1
Service (registry key): sym_u3
Start: 4
Type: 1
Error Control: 1
Service (registry key): sysaudio
Display name: Microsoft Kernel System Audio Device
Image path: system32\drivers\sysaudio.sys
Image size: 60800
Image MD5: 650AD082D46BAC0E64C9C0E0928492FD
Start: 3
Type: 1
Error Control: 1
Service (registry key): SysmonLog
Display name: Performance Logs and Alerts
Description: Collects performance data from local or remote computers
based on preconfigured schedule parameters, then writes the data to a log or
triggers an alert. If this service is stopped, performance information will
not be collected. If this service is disabled, any services that explicitly
depend on it will fail to start.
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\smlogsvc.exe
Image size: 89600
Image MD5: 8B54AA346D1B1B113FFAA75501B8B1B2
Start: 3
Type: 16
Error Control: 1
Service (registry key): TapiSrv
Display name: Telephony
Description: Provides Telephony API (TAPI) support for programs that
control telephony devices and IP based voice connections on the local
computer and, through the LAN, on servers that are also running the service.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: PlugPlay,RpcSs
Service (registry key): Tcpip
Display name: TCP/IP Protocol Driver
Description: TCP/IP Protocol Driver
Image path: System32\DRIVERS\tcpip.sys
Image size: 359808
Image MD5: 88763A98A4C26C409741B4AA162720C9
Start: 1
Type: 1
Error Control: 1
Depends On services: IPSec
Service (registry key): TDPIPE
Start: 3
Type: 1
Error Control: 0
Service (registry key): TDTCP
Start: 3
Type: 1
Error Control: 0
Service (registry key): TermDD
Display name: Terminal Device Driver
Image path: System32\DRIVERS\termdd.sys
Image size: 40840
Image MD5: A540A99C281D933F3D69D55E48727F47
Start: 1
Type: 1
Error Control: 1
Service (registry key): TermService
Display name: Terminal Services
Description: Allows multiple users to be connected interactively to a
machine as well as the display of desktops and applications to remote
computers. The underpinning of Remote Desktop (including RD for
Administrators), Fast User Switching, Remote Assistance, and Terminal
Server.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost -k DComLaunch
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): Themes
Display name: Themes
Description: Provides user experience theme management.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Service (registry key): TlntSvr
Display name: Telnet
Description: Enables a remote user to log on to this computer and run
programs, and supports various TCP/IP Telnet clients, including UNIX-based
and Windows-based computers. If this service is stopped, remote user access
to programs might be unavailable. If this service is disabled, any services
that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\tlntsvr.exe
Image size: 73216
Image MD5: 37DB0A7D097310E8B4DE803FC3119C78
Start: 4
Type: 16
Error Control: 1
Depends On services: RPCSS,TCPIP,NTLMSSP
Service (registry key): TosIde
Start: 4
Type: 1
Error Control: 1
Service (registry key): TrkWks
Display name: Distributed Link Tracking Client
Description: Maintains links between NTFS files within a computer or
across computers in a network domain.
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): TSDDD
Start: 0
Type: 0
Error Control: 0
Service (registry key): Udfs
Start: 4
Type: 2
Error Control: 1
Service (registry key): ultra
Start: 4
Type: 1
Error Control: 1
Service (registry key): UMWdf
Display name: Windows User Mode Driver Framework
Description: Enables Windows user mode drivers.
Object name: NT AUTHORITY\LocalService
Image path: C:\WINDOWS\system32\wdfmgr.exe
Image size: 38912
Image MD5: AB0A7CA90D9E3D6A193905DC1715DED0
Start: 2
Type: 16
Error Control: 1
Depends On services: RpcSs
Service (registry key): Update
Display name: Microcode Update Driver
Image path: System32\DRIVERS\update.sys
Image size: 209408
Image MD5: AFF2E5045961BBC0A602BB6F95EB1345
Start: 3
Type: 1
Error Control: 1
Service (registry key): upnphost
Display name: Universal Plug and Play Device Host
Description: Provides support to host Universal Plug and Play devices.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: SSDPSRV,HTTP
Service (registry key): UPS
Display name: Uninterruptible Power Supply
Description: Manages an uninterruptible power supply (UPS) connected to
the computer.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\ups.exe
Image size: 18432
Image MD5: 3F5DF65B0758675F95A2D43918A740A3
Start: 3
Type: 16
Error Control: 1
Service (registry key): usbaudio
Display name: USB Audio Driver (WDM)
Image path: system32\drivers\usbaudio.sys
Image size: 59264
Image MD5: 45A0D14B26C35497AD93BCE7E15C9941
Start: 3
Type: 1
Error Control: 1
Service (registry key): usbccgp
Display name: Microsoft USB Generic Parent Driver
Image path: System32\DRIVERS\usbccgp.sys
Image size: 31616
Image MD5: BFFD9F120CC63BCBAA3D840F3EEF9F79
Start: 3
Type: 1
Error Control: 1
Service (registry key): usbehci
Display name: Microsoft USB 2.0 Enhanced Host Controller Miniport Driver
Image path: System32\DRIVERS\usbehci.sys
Image size: 26624
Image MD5: 15E993BA2F6946B2BFBBFCD30398621E
Start: 3
Type: 1
Error Control: 1
Service (registry key): usbhub
Display name: USB2 Enabled Hub
Image path: System32\DRIVERS\usbhub.sys
Image size: 57600
Image MD5: C72F40947F92CEA56A8FB532EDF025F1
Start: 3
Type: 1
Error Control: 1
Service (registry key): usbohci
Display name: Microsoft USB Open Host Controller Miniport Driver
Image path: System32\DRIVERS\usbohci.sys
Image size: 17024
Image MD5: BDFE799A8531BAD8A5A985821FE78760
Start: 3
Type: 1
Error Control: 1
Service (registry key): usbprint
Display name: Microsoft USB PRINTER Class
Image path: System32\DRIVERS\usbprint.sys
Image size: 25856
Image MD5: A42369B7CD8886CD7C70F33DA6FCBCF5
Start: 3
Type: 1
Error Control: 1
Service (registry key): usbscan
Display name: USB Scanner Driver
Image path: System32\DRIVERS\usbscan.sys
Image size: 15104
Image MD5: A6BC71402F4F7DD5B77FD7F4A8DDBA85
Start: 3
Type: 1
Error Control: 1
Service (registry key): USBSTOR
Display name: USB Mass Storage Driver
Image path: System32\DRIVERS\USBSTOR.SYS
Image size: 26496
Image MD5: 6CD7B22193718F1D17A47A1CD6D37E75
Start: 3
Type: 1
Error Control: 1
Service (registry key): VgaSave
Display name: VGA Display Controller.
Description: Controls the VGA display adapter to provide basic display
capabilities.
Image path: \SystemRoot\System32\drivers\vga.sys
Start: 1
Type: 1
Error Control: 0
Service (registry key): ViaIde
Start: 4
Type: 1
Error Control: 1
Service (registry key): VolSnap
Start: 0
Type: 1
Error Control: 1
Service (registry key): VSS
Display name: Volume Shadow Copy
Description: Manages and implements Volume Shadow Copies used for backup
and other purposes. If this service is stopped, shadow copies will be
unavailable for backup and the backup may fail. If this service is disabled,
any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\vssvc.exe
Image size: 289792
Image MD5: 3EE00364AE0FD8D604F46CBAF512838A
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): W32Time
Display name: Windows Time
Description: Maintains date and time synchronization on all clients and
servers in the network. If this service is stopped, date and time
synchronization will be unavailable. If this service is disabled, any
services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Service (registry key): W3SVC
Start: 0
Type: 0
Error Control: 0
Service (registry key): Wanarp
Display name: Remote Access IP ARP Driver
Description: Remote Access IP ARP Driver
Image path: System32\DRIVERS\wanarp.sys
Image size: 34560
Image MD5: 984EF0B9788ABF89974CFED4BFBAACBC
Start: 3
Type: 1
Error Control: 1
Service (registry key): WDICA
Start: 3
Type: 1
Error Control: 0
Service (registry key): wdmaud
Display name: Microsoft WINMM WDM Audio Compatibility Driver
Image path: system32\drivers\wdmaud.sys
Image size: 82944
Image MD5: 2797F33EBF50466020C430EE4F037933
Start: 3
Type: 1
Error Control: 1
Service (registry key): WebClient
Display name: WebClient
Description: Enables Windows-based programs to create, access, and modify
Internet-based files. If this service is stopped, these functions will not
be available. If this service is disabled, any services that explicitly
depend on it will fail to start.
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: MRxDAV
Service (registry key): winmgmt
Display name: Windows Management Instrumentation
Description: Provides a common interface and object model to access
management information about operating system, devices, applications and
services. If this service is stopped, most Windows-based software will not
function properly. If this service is disabled, any services that explicitly
depend on it will fail to start.
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 0
Depends On services: RPCSS,Eventlog
Service (registry key): Winsock
Start: 3
Type: 4
Error Control: 1
Service (registry key): Winsock - Google Desktop Search Backup Before First
Install
Start: 3
Type: 4
Error Control: 1
Service (registry key): Winsock - Google Desktop Search Backup Before Last
Install
Start: 3
Type: 4
Error Control: 1
Service (registry key): WinSock2
Start: 0
Type: 0
Error Control: 0
Service (registry key): Winsock2 - Google Desktop Search Backup Before First
Install
Start: 0
Type: 0
Error Control: 0
Service (registry key): Winsock2 - Google Desktop Search Backup Before Last
Install
Start: 0
Type: 0
Error Control: 0
Service (registry key): WinTrust
Start: 0
Type: 0
Error Control: 0
Service (registry key): WmdmPmSN
Display name: Portable Media Serial Number Service
Description: Retrieves the serial number of any portable media player
connected to this computer. If this service is stopped, protected content
might not be down loaded to the device.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Service (registry key): Wmi
Display name: Windows Management Instrumentation Driver Extensions
Description: Provides systems management information to and from drivers.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Service (registry key): WmiApRpl
Start: 0
Type: 0
Error Control: 0
Service (registry key): WmiApSrv
Display name: WMI Performance Adapter
Description: Provides performance library information from WMI HiPerf
providers.
Object name: LocalSystem
Image path: C:\WINDOWS\System32\wbem\wmiapsrv.exe
Image size: 126464
Image MD5: BA8CECC3E813E1F7C441B20393D4F86C
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): WS2IFSL
Display name: Windows Socket 2.0 Non-IFS Service Provider Support
Environment
Image path: \SystemRoot\System32\drivers\ws2ifsl.sys
Start: 1
Type: 1
Error Control: 1
Service (registry key): wscsvc
Display name: Security Center
Description: Monitors system security settings and configurations.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,winmgmt
Service (registry key): WSTCODEC
Display name: World Standard Teletext Codec
Image path: system32\DRIVERS\WSTCODEC.SYS
Image size: 19328
Image MD5: D5842484F05E12121C511AA93F6439EC
Start: 3
Type: 1
Error Control: 1
Service (registry key): wuauserv
Display name: Automatic Updates
Description: Enables the download and installation of critical Windows
updates. If the service is disabled, the operating system can be manually
updated at the Windows Update Web site.
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Service (registry key): WZCSVC
Display name: Wireless Zero Configuration
Description: Provides automatic configuration for the 802.11 adapters
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,Ndisuio
Service (registry key): xmlprov
Display name: Network Provisioning Service
Description: Manages XML configuration files on a domain basis for
automatic network provisioning.
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 14336
Image MD5: 8F078AE4ED187AAABC0A305146DE6716
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): ZD1201U
Display name: ZyDAS ZD1201 IEEE 802.11b Wireless LAN Driver (USB)
Image path: system32\DRIVERS\zd1201u.sys
Image size: 38656
Image MD5: 7EBCF6441B3E3521B5726B933107793C
Start: 3
Type: 1
Error Control: 1
Service (registry key): ZD1201U(ZyDAS)
Display name: ZyDAS ZD1201 IEEE 802.11b Wireless LAN Driver (USB)(ZyDAS)
Image path: system32\DRIVERS\zd1201u.sys
Image size: 38656
Image MD5: 7EBCF6441B3E3521B5726B933107793C
Start: 3
Type: 1
Error Control: 1
Service (registry key): ZDNDIS5
Display name: ZDNDIS5 Protocol Driver
Image path: \??\C:\WINDOWS\system32\ZDNDIS5.SYS
Start: 3
Type: 1
Error Control: 1
Service (registry key): {077D45F3-E034-4199-9D4E-A8922578AD8F}
Start: 0
Type: 0
Error Control: 0
Service (registry key): {1669B7FB-01EF-490A-845C-D88C6ED6DD14}
Start: 0
Type: 0
Error Control: 0
Service (registry key): {41B87827-CCBB-4E4D-9AC7-B43058A23CA6}
Start: 0
Type: 0
Error Control: 0
Service (registry key): {5F11E6A7-20FE-45E6-B073-1A49B867F67B}
Start: 0
Type: 0
Error Control: 0
Service (registry key): {614B4ACD-25C2-4938-AE15-03BFB02DA2BF}
Start: 0
Type: 0
Error Control: 0
Service (registry key): {BB396BD2-637C-4225-976F-A84E00CA9B84}
Start: 0
Type: 0
Error Control: 0
Service (registry key): {EA609A57-CDE8-4BB1-9940-BA4E7F4BA678}
Start: 0
Type: 0
Error Control: 0
Service (registry key): {F688CE24-4E6A-4350-A5C8-FDEE703C1647}
Start: 0
Type: 0
Error Control: 0
