| |
| |||||||
Log-Analyse und Auswertung: ICQ-Account über Trojaner(?) "Fotoalbum.exe" gehackt- weitere Gefährdung meiner Daten?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
18.11.2010, 21:29
| #1 |
| |  ICQ-Account über Trojaner(?) "Fotoalbum.exe" gehackt- weitere Gefährdung meiner Daten? Hallo liebe User, liebe Experten, ich habe vor ca. einer Woche einen Trojaner(?) mit dem Namen "Fotoalbum.exe" über ICQ empfangen. Noch am selben Tag haben sich meine Freunde beschwert, warum ich ihnen Viren schicken würde. Der Sender dieser Datei hat mein ICQ- Passwort geändert, schickt diese Datei an meine gesamte Kontaktliste und ich habe keinen Zugriff mehr darauf. So weit die Fakten. Auf Ratschläge von Freunden hin habe ich "SpyBot" installiert und es ca. 5 mal durchlaufen lassen, es findet aber jedes Mal dieselbe Spyware, obwohl es diese nach jedem Durchgang als "gelöscht" anzeigt. Meine Sorge ist nun, dass dieser "Hacker" nicht nur an meinem ICQ, sondern auch an anderen Passwörtern interressiert ist und auch an diese herankommt, ohne dass ich etwas davon bemerke. Meine Frage an euch: Besteht eine konkrete Gefahr und was kann ich gegen diese Trojaner tun? Ich habe schon viele Threads gefunden, in denen vom Befall durch diese .exe berichtet wird, aber keinen Lösungsvorschlag etc.. Infos zu meinem PC: Ich habe Windows 7 und benutze avast als Antiviren- Programm VIELEN DANK für eure Hilfe im Voraus!!! migruee  -->Ich habe den gesamten Bericht von "SpyBot" gepostet, weil ich nicht wusste, welcher Teil davon der wichtige ist.  --- Search result list --- Tradedoubler: Verfolgender Cookie (Internet Explorer: Mike) (Cookie, fixed) MediaPlex: Verfolgender Cookie (Internet Explorer: Mike) (Cookie, fixed) Right Media: Verfolgender Cookie (Internet Explorer: Mike) (Cookie, fixed) DoubleClick: Verfolgender Cookie (Internet Explorer: Mike) (Cookie, fixed) MediaPlex: Verfolgender Cookie (Internet Explorer: Mike) (Cookie, fixed) --- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) --- 2009-01-26 blindman.exe (1.0.0.8) 2009-01-26 SDFiles.exe (1.6.1.7) 2009-01-26 SDMain.exe (1.0.0.6) 2009-01-26 SDShred.exe (1.0.2.5) 2009-01-26 SDUpdate.exe (1.6.0.12) 2009-01-26 SDWinSec.exe (1.0.0.12) 2009-01-26 SpybotSD.exe (1.6.2.46) 2009-03-05 TeaTimer.exe (1.6.6.32) 2010-11-12 unins000.exe (51.49.0.0) 2009-01-26 Update.exe (1.6.0.7) 2009-11-04 advcheck.dll (1.6.5.20) 2007-04-02 aports.dll (2.1.0.0) 2008-06-14 DelZip179.dll (1.79.11.1) 2009-01-26 SDHelper.dll (1.6.2.14) 2008-06-19 sqlite3.dll 2009-01-26 Tools.dll (2.1.6.10) 2009-01-16 UninsSrv.dll (1.0.0.0) 2010-06-29 Includes\Adware.sbi (*) 2010-10-12 Includes\AdwareC.sbi (*) 2010-08-13 Includes\Cookies.sbi (*) 2010-09-22 Includes\Dialer.sbi (*) 2010-10-12 Includes\DialerC.sbi (*) 2010-01-25 Includes\HeavyDuty.sbi (*) 2010-11-04 Includes\Hijackers.sbi (*) 2010-11-03 Includes\HijackersC.sbi (*) 2010-09-15 Includes\iPhone.sbi (*) 2010-08-02 Includes\Keyloggers.sbi (*) 2010-10-12 Includes\KeyloggersC.sbi (*) 2010-09-13 Includes\Malware.sbi (*) 2010-11-09 Includes\MalwareC.sbi (*) 2010-05-18 Includes\PUPS.sbi (*) 2010-10-12 Includes\PUPSC.sbi (*) 2010-01-25 Includes\Revision.sbi (*) 2009-01-13 Includes\Security.sbi (*) 2010-10-12 Includes\SecurityC.sbi (*) 2008-06-03 Includes\Spybots.sbi (*) 2008-06-03 Includes\SpybotsC.sbi (*) 2010-06-29 Includes\Spyware.sbi (*) 2010-10-26 Includes\SpywareC.sbi (*) 2010-03-08 Includes\Tracks.uti 2010-11-02 Includes\Trojans.sbi (*) 2010-10-12 Includes\TrojansC-02.sbi (*) 2010-10-12 Includes\TrojansC-03.sbi (*) 2010-10-12 Includes\TrojansC-04.sbi (*) 2010-11-09 Includes\TrojansC-05.sbi (*) 2010-10-12 Includes\TrojansC.sbi (*) 2008-03-04 Plugins\Chai.dll 2008-03-05 Plugins\Fennel.dll 2008-02-26 Plugins\Mate.dll 2007-12-24 Plugins\TCPIPAddress.dll --- System information --- Unknown Windows version 6.1 (Build: 7600) (6.1.7600) --- Startup entries list --- Located: HK_LM:Run, Adobe Reader Speed Launcher command: "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" file: C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe size: 35696 MD5: 452FA961163EF4AEE4815796A13AB2CF Located: HK_LM:Run, APLangApp command: "C:\Program Files\AnyPC Client\APLangApp.exe" file: C:\Program Files\AnyPC Client\APLangApp.exe size: 13312 MD5: D68D99A04F0C31EF149C6BF20543CB7F Located: HK_LM:Run, avast5 command: "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui file: C:\Program Files\Alwil Software\Avast5\avastUI.exe size: 2838912 MD5: 6C1B31F5C16E03153F0037AC6C451FFD Located: HK_LM:Run, CLMLServer command: "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" file: C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe size: 103720 MD5: 54FA8528EDA1B6B34615F4EA3FCB35E6 Located: HK_LM:Run, DivXUpdate command: "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW file: C:\Program Files\DivX\DivX Update\DivXUpdate.exe size: 1164584 MD5: E85247CB3AA491B337EABBE665E36091 Located: HK_LM:Run, fsi command: C:\Program Files\Phoenix Technologies Ltd\FailSafe\FailSafeLauncher.exe file: C:\Program Files\Phoenix Technologies Ltd\FailSafe\FailSafeLauncher.exe size: 9728 MD5: 873C01514E9E4150F6CD8A8B5AD708FD Located: HK_LM:Run, NvCplDaemon command: RUNDLL32.EXE C:\windows\system32\NvCpl.dll,NvStartup file: C:\windows\system32\NvCpl.dll size: 13830760 MD5: 47C3F982224C22CCE27482157028CC6A Located: HK_LM:Run, PDVD8LanguageShortcut command: "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe" file: C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe size: 50472 MD5: F8270CFD51F9D6BF42140FA4071C83FE Located: HK_LM:Run, RemoteControl8 command: "C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe" file: C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe size: 91432 MD5: 28FD28A29C637C9AFEFE0A26E27C6DFE Located: HK_LM:Run, RtHDVCpl command: C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s file: C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe size: 8092192 MD5: 64F562F206E5474B9E01F8CD944770A6 Located: HK_LM:Run, SynTPEnh command: %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe file: C:\Program Files\Synaptics\SynTP\SynTPEnh.exe size: 1578280 MD5: 3EE8375B1063CF4A0C4353123F4129C5 Located: HK_LM:Run, UCam_Menu command: "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0" file: C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe size: 222504 MD5: 4EFCDF3DB1BBA69C09622991280C4ACB Located: HK_LM:Run, UpdateLBPShortCut command: "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" file: C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe size: 222504 MD5: 4EFCDF3DB1BBA69C09622991280C4ACB Located: HK_LM:Run, UpdateP2GoShortCut command: "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" file: C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe size: 222504 MD5: 4EFCDF3DB1BBA69C09622991280C4ACB Located: HK_LM:Run, UpdatePDRShortCut command: "C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0" file: C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe size: 222504 MD5: AAD52179D4A526AD4A705B87C6E4F72A Located: HK_LM:Run, UpdatePPShortCut command: "C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0" file: C:\Program Files\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe size: 218408 MD5: 9ACFD9D5E12D849B28C78FED6D620EB3 Located: HK_LM:Run, UpdatePSTShortCut command: "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter" file: C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe size: 210216 MD5: 82A3031F7FAA61CB5E040B0D98A104AF Located: HK_CU:Run, ICQ where: S-1-5-21-1072828290-3828818215-1948454868-1000... command: "C:\Program Files\ICQ7.2\ICQ.exe" silent loginmode=4 file: C:\Program Files\ICQ7.2\ICQ.exe size: 133432 MD5: 7DB6CC7CE07451DDA753ED507A0F0305 Located: HK_CU:Run, msnmsgr where: S-1-5-21-1072828290-3828818215-1948454868-1000... command: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background file: C:\Program Files\Windows Live\Messenger\msnmsgr.exe size: 3872080 MD5: E01B7A2EB4EC9AD8643BDCDE15427C4D --- Browser helper object list --- {18DF081C-E8AD-4283-A596-FA578C2EBDC3} (AcroIEHelperStub) location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: AcroIEHelperStub CLSID name: Adobe PDF Link Helper Path: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\ Long name: AcroIEHelperShim.dll Short name: ACROIE~2.DLL Date (created): 2/27/2009 11:07:26 AM Date (last access): 9/13/2010 7:59:30 PM Date (last write): 2/27/2009 11:07:26 AM Filesize: 75128 Attributes: archive MD5: 5CF6190CD875DA6B35256FEE573E7908 CRC32: 764BA81B Version: 9.1.0.163 {5C255C8A-E604-49b4-9D64-90988571CECB} () location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: CLSID name: {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Anmelde-Hilfsprogramm) location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: CLSID name: Windows Live Anmelde-Hilfsprogramm Path: C:\Program Files\Common Files\Microsoft Shared\Windows Live\ Long name: WindowsLiveLogin.dll Short name: WINDOW~1.DLL Date (created): 1/22/2009 2:41:30 PM Date (last access): 9/13/2010 8:10:54 PM Date (last write): 1/22/2009 2:41:30 PM Filesize: 408448 Attributes: archive MD5: B7899C3E21B299D7A3C0DA96CAE340BD CRC32: 288935F8 Version: 5.0.818.5 {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} (QIPBHO) location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ BHO name: QIPBHO CLSID name: QIPBHO Class Path: C:\Users\Mike\AppData\Roaming\Microsoft\Internet Explorer\ Long name: qipsearchbar.dll Short name: QIPSEA~1.DLL Date (created): 9/13/2010 9:06:10 PM Date (last access): 9/13/2010 9:06:10 PM Date (last write): 9/10/2010 1:11:38 PM Filesize: 149968 Attributes: archive MD5: A317D9883350FA8F2A181A53BE9C7F41 CRC32: 64DC3C9C Version: 1.0.1.0 --- ActiveX list --- --- Process list --- PID: 2964 (1028) C:\windows\system32\Dwm.exe size: 92672 MD5: 505BF4D1CADEB8D4F8BCD08D944DE25D PID: 2972 ( 564) C:\windows\system32\taskhost.exe size: 49152 MD5: 8F4F5A5C1BAE72CE6EAEEA1CA3F98CA2 PID: 3000 (2932) C:\windows\Explorer.EXE size: 2614272 MD5: 2626FC9755BE22F805D3CFA0CE3EE727 PID: 3496 (3000) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe size: 8092192 MD5: 64F562F206E5474B9E01F8CD944770A6 PID: 3504 (3000) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe size: 1578280 MD5: 3EE8375B1063CF4A0C4353123F4129C5 PID: 3528 (3000) C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe size: 103720 MD5: 54FA8528EDA1B6B34615F4EA3FCB35E6 PID: 3784 (3000) C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe size: 91432 MD5: 28FD28A29C637C9AFEFE0A26E27C6DFE PID: 3844 (3000) C:\Program Files\AnyPC Client\APLangApp.exe size: 13312 MD5: D68D99A04F0C31EF149C6BF20543CB7F PID: 3896 (3000) C:\Program Files\Alwil Software\Avast5\AvastUI.exe size: 2838912 MD5: 6C1B31F5C16E03153F0037AC6C451FFD PID: 3992 (3000) C:\Program Files\DivX\DivX Update\DivXUpdate.exe size: 1164584 MD5: E85247CB3AA491B337EABBE665E36091 PID: 4024 (3000) C:\Program Files\ICQ7.2\ICQ.exe size: 133432 MD5: 7DB6CC7CE07451DDA753ED507A0F0305 PID: 5780 (1068) C:\windows\system32\wuauclt.exe size: 47104 MD5: B0DA80FF42A0819D162A86612896AAF2 PID: 1396 (3000) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 5365592 MD5: 0477C2F9171599CA5BC3307FDFBA8D89 PID: 3960 (3000) C:\Program Files\Opera\opera.exe size: 836464 MD5: 611BA6CD548C0CC7B4B6551913C1471B PID: 5292 ( 748) C:\windows\system32\DllHost.exe size: 7168 MD5: A63DC5C2EA944E6657203E0C8EDEAF61 PID: 0 ( 0) [System Process] PID: 4 ( 0) System PID: 300 ( 4) smss.exe size: 69632 PID: 444 ( 376) csrss.exe size: 6144 PID: 496 ( 376) wininit.exe size: 96256 PID: 516 ( 508) csrss.exe size: 6144 PID: 564 ( 496) services.exe size: 259072 PID: 580 ( 496) lsass.exe size: 22528 PID: 588 ( 496) lsm.exe size: 261120 PID: 676 ( 508) winlogon.exe size: 285696 PID: 748 ( 564) svchost.exe size: 20992 PID: 836 ( 564) nvvsvc.exe size: 219752 PID: 876 ( 564) svchost.exe size: 20992 PID: 928 ( 564) svchost.exe size: 20992 PID: 1028 ( 564) svchost.exe size: 20992 PID: 1068 ( 564) svchost.exe size: 20992 PID: 1188 ( 564) svchost.exe size: 20992 PID: 1264 ( 836) nvvsvc.exe size: 219752 PID: 1376 ( 564) svchost.exe size: 20992 PID: 1508 ( 564) AvastSvc.exe PID: 1768 ( 564) spoolsv.exe size: 316928 PID: 1804 ( 564) svchost.exe size: 20992 PID: 1968 ( 564) svchost.exe size: 20992 PID: 2020 ( 564) ICQ Service.exe PID: 332 ( 564) OberonGameConsoleService.exe PID: 1432 ( 564) RichVideo.exe PID: 1336 ( 564) svchost.exe size: 20992 PID: 1228 ( 564) svchost.exe size: 20992 PID: 2088 ( 564) SDWinSec.exe PID: 2920 (1068) taskeng.exe size: 190464 PID: 3084 (2920) EasySpeedUpManager.exe PID: 3152 (2920) SSCKbdHk.exe PID: 3184 (2920) WCScheduler.exe PID: 3208 (2920) dmhkcore.exe PID: 4048 (3504) SynTPHelper.exe PID: 3460 ( 564) SearchIndexer.exe size: 428032 PID: 3704 ( 564) wmpnetwk.exe PID: 1120 (3064) SUPNOT~1.EXE PID: 5144 ( 928) audiodg.exe size: 100864 PID: 5536 (3460) SearchProtocolHost.exe size: 164352 PID: 4216 (3460) SearchFilterHost.exe size: 86528 PID: 4700 ( 564) svchost.exe size: 20992 --- Browser start & search pages list --- Spybot - Search & Destroy browser pages report, 11/18/2010 9:02:42 PM HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\windows\system32\blank.htm HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page hxxp://search.qip.ru HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar hxxp://search.qip.ru/ie HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page hxxp://start.icq.com/ HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Page_URL hxxp://qip.ru HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Search_URL hxxp://search.qip.ru HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\SearchAssistant hxxp://search.qip.ru/ie HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page C:\Windows\System32\blank.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page hxxp://go.microsoft.com/fwlink/?LinkId=54896 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL hxxp://go.microsoft.com/fwlink/?LinkId=69157 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL hxxp://go.microsoft.com/fwlink/?LinkId=54896 --- Winsock Layered Service Provider list --- Namespace Provider 3: E-Mail-Namenshimanbieter GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE} Filename: Namespace Provider 4: PNRP-Wolken-Namespaceanbieter GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D} Filename: Namespace Provider 5: PNRP-Namen-Namespaceanbieter GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D} Filename: --- Uninstall list --- --- System Services --- Service (registry key): .NET CLR Data Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET CLR Networking Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET CLR Networking 4.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for Oracle Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NET Data Provider for SqlServer Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): .NETFramework Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): 1394ohci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: 1394 OHCI Compliant Host Controller Image path: \SystemRoot\system32\DRIVERS\1394ohci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ACPI Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft ACPI Driver Image path: system32\DRIVERS\ACPI.sys Image size: 274496 Image MD5: F0E07D144C8685B8774BC32FC8DA4DF0 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): AcpiPmi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ACPI Power Meter Driver Image path: \SystemRoot\system32\DRIVERS\acpipmi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): adp94xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\adp94xx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): adpahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\adpahci.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): adpu320 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\adpu320.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): adsi Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): AeLookupSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\aelupsvc.dll,-1 Description: @%SystemRoot%\system32\aelupsvc.dll,-2 Object name: localSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): AFD Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drivers\afd.sys,-1000 Description: @%systemroot%\system32\drivers\afd.sys,-1000 Image path: \SystemRoot\system32\drivers\afd.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): agp440 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel AGP Bus Filter Image path: \SystemRoot\system32\DRIVERS\agp440.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): aic78xx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\djsvs.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ALG Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\Alg.exe,-112 Description: @%SystemRoot%\system32\Alg.exe,-113 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\alg.exe Image size: 59392 Image MD5: 18A54E132947CD98FEA9ACCC57F98F13 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): aliide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\aliide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 3 Service (registry key): amdagp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD AGP Bus Filter Driver Image path: \SystemRoot\system32\DRIVERS\amdagp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): amdide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\amdide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 3 Service (registry key): AmdK8 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD K8 Processor Driver Image path: \SystemRoot\system32\DRIVERS\amdk8.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): AmdPPM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: AMD Processor Driver Image path: \SystemRoot\system32\DRIVERS\amdppm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): amdsata Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\amdsata.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): amdsbs Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\amdsbs.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): amdxata Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\amdxata.sys Image size: 23616 Image MD5: B81C2B5616F6420A9941EA093A92B150 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): AppID Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\appidsvc.dll,-102 Description: @%systemroot%\system32\appidsvc.dll,-103 Image path: \SystemRoot\system32\drivers\appid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: FltMgr,DisCache Service (registry key): AppIDSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\appidsvc.dll,-100 Description: @%systemroot%\system32\appidsvc.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,AppID,CryptSvc Service (registry key): Appinfo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\appinfo.dll,-100 Description: @%systemroot%\system32\appinfo.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,ProfSvc Service (registry key): arc Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\arc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): arcsas Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\arcsas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): aswFsBlk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: aswFsBlk Description: avast! mini-filter driver (aswFsBlk) Control Set: CurrentControlSet Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): aswMonFlt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: aswMonFlt Description: avast! mini-filter driver (aswMonFlt) Image path: \??\C:\windows\system32\drivers\aswMonFlt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): aswRdr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: aswRdr Description: avast! TDI Redirect driver Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): aswSP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: aswSP Description: avast! Self Protection Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): aswTdi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Network Shield Support Description: avast! Network Shield TDI driver Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): AsyncMac Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\rascfg.dll,-32000 Description: @%systemroot%\system32\rascfg.dll,-32000 Image path: system32\DRIVERS\asyncmac.sys Image size: 17920 Image MD5: ADD2ADE1C2B285AB8378D2DAAF991481 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): atapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IDE Channel Image path: system32\DRIVERS\atapi.sys Image size: 21584 Image MD5: 338C86357871C167A96AB976519BF59E Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): athr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Atheros Extensible Wireless LAN device driver Image path: system32\DRIVERS\athr.sys Image size: 1227776 Image MD5: 0F4B6B99D6CDC1D93DF1FA690796B2F7 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): AudioEndpointBuilder Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\audiosrv.dll,-204 Description: @%SystemRoot%\System32\audiosrv.dll,-205 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: PlugPlay Service (registry key): Audiosrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\audiosrv.dll,-200 Description: @%SystemRoot%\System32\audiosrv.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: AudioEndpointBuilder,RpcSs,MMCSS Service (registry key): avast! Antivirus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Antivirus Description: Verwaltet und implementiert avast! Antivirus-Dienste für diesen Computer. Dies beinhaltet den Echtzeit-Schutz, den Virus Container und den Planer. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe" Image size: 40384 Image MD5: ACB544D7254F366DFB48F380BC36CD25 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: aswMonFlt,RpcSS Service (registry key): avast! Mail Scanner Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Mail Scanner Description: Implementiert Mail-Überprüfung für avast! Antivirus. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe" Image size: 40384 Image MD5: ACB544D7254F366DFB48F380BC36CD25 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: "avast! Antivirus" Service (registry key): avast! Web Scanner Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: avast! Web Scanner Description: Implementiert Web-Überprüfung (HTTP) für avast! Antivirus. Object name: LocalSystem Image path: "C:\Program Files\Alwil Software\Avast5\AvastSvc.exe" Image size: 40384 Image MD5: ACB544D7254F366DFB48F380BC36CD25 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: "avast! Antivirus" Service (registry key): AxInstSV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\AxInstSV.dll,-103 Description: @%SystemRoot%\system32\AxInstSV.dll,-104 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k AxInstSVGroup Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): b06bdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Broadcom NetXtreme II VBD Image path: \SystemRoot\system32\DRIVERS\bxvbdx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): b57nd60x Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0 Image path: system32\DRIVERS\b57nd60x.sys Image size: 229888 Image MD5: BD8869EB9CDE6BBE4508D869929869EE Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BattC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): BDESVC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\bdesvc.dll,-100 Description: @%SystemRoot%\system32\bdesvc.dll,-101 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): Beep Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Beep Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): BFE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\bfe.dll,-1001 Description: @%SystemRoot%\system32\bfe.dll,-1002 Object name: NT AUTHORITY\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): BITS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qmgr.dll,-1000 Description: @%SystemRoot%\system32\qmgr.dll,-1001 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,EventSystem Service (registry key): blbdrive Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\blbdrive.sys Image size: 35328 Image MD5: 2287078ED48FCFC477B05B20CF38F36F Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): bowser Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\browser.dll,-102 Description: @%systemroot%\system32\browser.dll,-103 Image path: system32\DRIVERS\bowser.sys Image size: 69632 Image MD5: FCAFAEF6798D7B51FF029F99A9898961 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): BrFiltLo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother USB Mass-Storage Lower Filter Driver Image path: \SystemRoot\system32\DRIVERS\BrFiltLo.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BrFiltUp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother USB Mass-Storage Upper Filter Driver Image path: \SystemRoot\system32\DRIVERS\BrFiltUp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Browser Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\browser.dll,-100 Description: @%systemroot%\system32\browser.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation,LanmanServer Service (registry key): Brserid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC Serial Port Interface Driver (WDM) Image path: \SystemRoot\System32\Drivers\Brserid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BrSerWdm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother WDM Serial driver Image path: \SystemRoot\System32\Drivers\BrSerWdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BrUsbMdm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC USB Fax Only Modem Image path: \SystemRoot\System32\Drivers\BrUsbMdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BrUsbSer Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Brother MFC USB Serial WDM Driver Image path: \SystemRoot\System32\Drivers\BrUsbSer.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BTHMODEM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Bluetooth Serial Communications Driver Image path: \SystemRoot\system32\DRIVERS\bthmodem.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): BTHPORT Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): bthserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\bthserv.dll,-101 Description: @%SystemRoot%\System32\bthserv.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k bthsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): cdfs Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: CD/DVD File System Reader Description: ISO9660/Joliet File System Reader for CD/DVDs. (Core) (All pieces) Image path: system32\DRIVERS\cdfs.sys Image size: 70656 Image MD5: 77EA11B065E0A8AB902D78145CA51E10 Control Set: CurrentControlSet Start: 4 Type: 2 Error Control: 1 Depends On group: "SCSI CDROM Class" Service (registry key): cdrom Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: CD-ROM Driver Image path: system32\DRIVERS\cdrom.sys Image size: 108544 Image MD5: BA6E70AA0E6091BC39DE29477D866A77 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): CertPropSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\certprop.dll,-11 Description: @%SystemRoot%\System32\certprop.dll,-12 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): circlass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Consumer IR Devices Image path: \SystemRoot\system32\DRIVERS\circlass.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): CLFS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\clfs.sys,-100 Description: @%SystemRoot%\system32\clfs.sys,-101 Image path: System32\CLFS.sys Image size: 249408 Image MD5: 635181E0E9BBF16871BF5380D71DB02D Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): clr_optimization_v2.0.50727_32 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft .NET Framework NGEN v2.0.50727_X86 Description: Microsoft .NET Framework NGEN Object name: LocalSystem Image path: %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe Image size: 66384 Image MD5: D88040F816FDA31C3B466F0FA0918F29 Control Set: CurrentControlSet Start: 4 Type: 16 Error Control: 0 Service (registry key): clr_optimization_v4.0.30319_32 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft .NET Framework NGEN v4.0.30319_X86 Description: Microsoft .NET Framework NGEN Object name: LocalSystem Image path: C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe Image size: 130384 Image MD5: C5A75EB48E2344ABDC162BDA79E16841 Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 0 Service (registry key): CmBatt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft ACPI Control Method Battery Driver Image path: system32\DRIVERS\CmBatt.sys Image size: 14080 Image MD5: DEA805815E587DAD1DD2C502220B5616 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): cmdide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\cmdide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 3 Service (registry key): CNG Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\Drivers\cng.sys Image size: 369568 Image MD5: 1B675691ED940766149C93E8F4488D68 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): Compbatt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Composite Battery Driver Image path: system32\DRIVERS\compbatt.sys Image size: 19024 Image MD5: A6023D3823C37043986713F118A89BEE Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): CompositeBus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Composite Bus Enumerator Driver Image path: system32\DRIVERS\CompositeBus.sys Image size: 31232 Image MD5: F1724BA27E97D627F808FB0BA77A28A6 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): COMSysApp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-947 Description: @comres.dll,-948 Object name: LocalSystem Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} Image size: 7168 Image MD5: A63DC5C2EA944E6657203E0C8EDEAF61 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RpcSs,EventSystem,SENS Service (registry key): crcdisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Crcdisk Filter Driver Image path: \SystemRoot\system32\DRIVERS\crcdisk.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 4 Type: 1 Error Control: 1 Service (registry key): crypt32 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): CryptSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001 Description: @%SystemRoot%\system32\cryptsvc.dll,-1002 Object name: NT Authority\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): DCLocator Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): DcomLaunch Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @oleres.dll,-5012 Description: @oleres.dll,-5013 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): defragsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\defragsvc.dll,-101 Description: @%SystemRoot%\system32\defragsvc.dll,-102 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k defragsvc Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS Service (registry key): DfsC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drivers\dfsc.sys,-101 Description: @%systemroot%\system32\drivers\dfsc.sys,-102 Image path: System32\Drivers\dfsc.sys Image size: 78336 Image MD5: 8E09E52EE2E3CEB199EF3DD99CF9E3FB Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Depends On services: Mup Service (registry key): Dhcp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\dhcpcore.dll,-100 Description: @%SystemRoot%\system32\dhcpcore.dll,-101 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,Tdx,Afd Service (registry key): discache Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drivers\discache.sys,-102 Description: @%systemroot%\system32\drivers\discache.sys,-101 Image path: System32\drivers\discache.sys Image size: 32256 Image MD5: 1A050B0274BFB3890703D490F330C0DA Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): Disk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Laufwerktreiber Image path: system32\DRIVERS\disk.sys Image size: 57424 Image MD5: 565003F326F99802E68CA78F2A68E9FF Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): Dnscache Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\dnsapi.dll,-101 Description: @%SystemRoot%\System32\dnsapi.dll,-102 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\system32\svchost.exe -k NetworkService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Tdx,nsi Service (registry key): dot3svc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\dot3svc.dll,-1102 Description: @%systemroot%\system32\dot3svc.dll,-1103 Object name: localSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,Ndisuio,Eaphost Service (registry key): DPS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\dps.dll,-500 Description: @%systemroot%\system32\dps.dll,-501 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): drmkaud Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Trusted Audio Drivers Image path: system32\drivers\drmkaud.sys Image size: 5120 Image MD5: B918E7C5F9BF77202F89E1A9539F2EB4 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): DXGKrnl Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: LDDM Graphics Subsystem Description: Controls the underlying video driver stacks to provide fully-featured display capabilities. Image path: \SystemRoot\System32\drivers\dxgkrnl.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): EapHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\eapsvc.dll,-1 Description: @%systemroot%\system32\eapsvc.dll,-2 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,KeyIso Service (registry key): ebdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Broadcom NetXtreme II 10 GigE VBD Image path: \SystemRoot\system32\DRIVERS\evbdx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): EFS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\efssvc.dll,-100 Description: @%SystemRoot%\system32\efssvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\lsass.exe Image size: 22528 Image MD5: F42309C4191C506B71DB5D1126D26318 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS Service (registry key): ehRecvr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehrecvr.exe,-101 Description: @%SystemRoot%\ehome\ehrecvr.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehRecvr.exe Image size: 556032 Image MD5: 1697C39978CD69F6FBC15302EDCECE1F Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): ehSched Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehsched.exe,-101 Description: @%SystemRoot%\ehome\ehsched.exe,-102 Object name: NT AUTHORITY\networkService Image path: %systemroot%\ehome\ehsched.exe Image size: 94720 Image MD5: D389BFF34F80CAEDE417BF9D1507996A Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 0 Depends On services: RPCSS Service (registry key): elxstor Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\elxstor.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ErrDev Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Hardware Error Device Driver Image path: \SystemRoot\system32\DRIVERS\errdev.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ESENT Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): eventlog Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\wevtsvc.dll,-200 Description: @%SystemRoot%\system32\wevtsvc.dll,-201 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): EventSystem Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2450 Description: @comres.dll,-2451 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: rpcss Service (registry key): exfat Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: exFAT File System Driver Description: exFAT File System Driver Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): fastfat Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FAT12/16/32 File System Driver Description: Note - dependance on CDROM.SYS only if required to read/write DVD-RAM media (which appears as CD class device). (Core) (All pieces) Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): Fax Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fxsresm.dll,-118 Description: @%systemroot%\system32\fxsresm.dll,-122 Object name: NT AUTHORITY\NetworkService Image path: %systemroot%\system32\fxssvc.exe Image size: 522752 Image MD5: F7EA23CC5E6BF2181F3F399D54F6EFC1 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: TapiSrv,RpcSs,PlugPlay,Spooler Service (registry key): fdc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Floppy Disk Controller Driver Image path: \SystemRoot\system32\DRIVERS\fdc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): fdPHost Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fdPHost.dll,-100 Description: @%systemroot%\system32\fdPHost.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FDResPub Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\fdrespub.dll,-100 Description: @%systemroot%\system32\fdrespub.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSs,http Service (registry key): FileInfo Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\fileinfo.sys,-100 Description: @%SystemRoot%\system32\drivers\fileinfo.sys,-101 Image path: system32\drivers\fileinfo.sys Image size: 58448 Image MD5: 6CF00369C97F3CF563BE99BE983D13D8 Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 1 Depends On services: fltmgr Service (registry key): Filetrace Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\filetrace.sys,-10001 Description: @%SystemRoot%\system32\drivers\filetrace.sys,-10000 Image path: system32\drivers\filetrace.sys Image size: 28160 Image MD5: 42C51DC94C91DA21CB9196EB64C45DB9 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): flpydisk Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Floppy Disk Driver Image path: \SystemRoot\system32\DRIVERS\flpydisk.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): FltMgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\fltmgr.sys,-10001 Description: @%SystemRoot%\system32\drivers\fltmgr.sys,-10000 Image path: system32\drivers\fltmgr.sys Image size: 198208 Image MD5: 7520EC808E0C35E0EE6F841294316653 Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 3 Service (registry key): FontCache Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\FntCache.dll,-100 Description: @%systemroot%\system32\FntCache.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): FontCache3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309 Description: @%SystemRoot%\system32\PresentationHost.exe,-3310 Object name: NT Authority\LocalService Image path: %systemroot%\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe Image size: 42856 Image MD5: E56F39F6B7FDA0AC77A79B0FD3DE1A2F Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): FsDepends Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\fsdepends.sys,-10001 Description: @%SystemRoot%\system32\drivers\fsdepends.sys,-10000 Image path: System32\drivers\FsDepends.sys Image size: 46160 Image MD5: 1A16B57943853E598CFF37FE2B8CBF1D Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 3 Depends On services: fltmgr Service (registry key): fssfltr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: FssFltr Image path: system32\DRIVERS\fssfltr.sys Image size: 54632 Image MD5: B74B0578FD1D3F897E95F2A2B69EA051 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: tcpip Service (registry key): fsssvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Windows Live Family Safety-Dienst Description: Dieser Dienst aktiviert Family Safety auf diesem Computer. Family Safety funktioniert nicht, wenn dieser Dienst nicht ausgeführt wird. Object name: LocalSystem Image path: "C:\Program Files\Windows Live\Family Safety\fsssvc.exe" Image size: 704872 Image MD5: 45B52394F9624237F33A8A3D73C0B221 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: rpcss Service (registry key): Fs_Rec Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 8 Error Control: 0 Service (registry key): fvevol Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\fvevol.sys,-100 Description: @%SystemRoot%\system32\drivers\fvevol.sys,-100 Image path: System32\DRIVERS\fvevol.sys Image size: 194488 Image MD5: DAFBD9FE39197495AED6D51F3B85B5D2 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): gagp30kx Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms Image path: \SystemRoot\system32\DRIVERS\gagp30kx.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): gpsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @gpapi.dll,-112 Description: @gpapi.dll,-113 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RPCSS,Mup Service (registry key): hcw85cir Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Hauppauge Consumer Infrared Receiver Image path: \SystemRoot\system32\drivers\hcw85cir.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HdAudAddService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft 1.1 UAA Function Driver for High Definition Audio Service Image path: system32\drivers\HdAudio.sys Image size: 304128 Image MD5: 3530CAD25DEBA7DC7DE8BB51632CBC5F Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HDAudBus Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft UAA Bus Driver for High Definition Audio Image path: system32\DRIVERS\HDAudBus.sys Image size: 108544 Image MD5: 717A2207FD6F13AD3E664C7D5A43C7BF Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HidBatt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: HID UPS Battery Driver Image path: \SystemRoot\system32\DRIVERS\HidBatt.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HidBth Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Bluetooth HID Miniport Image path: \SystemRoot\system32\DRIVERS\hidbth.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): HidIr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Infrared HID Driver Image path: \SystemRoot\system32\DRIVERS\hidir.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): hidserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\hidserv.dll,-101 Description: @%SystemRoot%\System32\hidserv.dll,-102 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): HidUsb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft HID Class-Treiber Image path: system32\DRIVERS\hidusb.sys Image size: 24064 Image MD5: 25072FB35AC90B25F9E4E3BACF774102 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): hkmsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\kmsvc.dll,-6 Description: @%SystemRoot%\system32\kmsvc.dll,-7 Object name: localSystem Image path: %SystemRoot%\System32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): HomeGroupListener Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\ListSvc.dll,-100 Description: @%SystemRoot%\System32\ListSvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanServer Service (registry key): HomeGroupProvider Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\provsvc.dll,-100 Description: @%SystemRoot%\System32\provsvc.dll,-101 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: netprofm,fdrespub,fdphost Service (registry key): HpSAMD Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\HpSAMD.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): HTTP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\http.sys,-1 Description: @%SystemRoot%\system32\drivers\http.sys,-2 Image path: system32\drivers\HTTP.sys Image size: 513024 Image MD5: C531C7FD9E8B62021112787C4E2C5A5A Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): hwpolicy Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drivers\hwpolicy.sys,-101 Description: @%systemroot%\system32\drivers\hwpolicy.sys,-102 Image path: System32\drivers\hwpolicy.sys Image size: 13904 Image MD5: 8305F33CDE89AD6C7A0763ED0B5A8D42 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): i8042prt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: i8042 Keyboard and PS/2 Mouse Port Driver Image path: system32\DRIVERS\i8042prt.sys Image size: 80896 Image MD5: F151F0BDC47F4A28B1B20A0818EA36D6 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): iaStor Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel AHCI Controller Image path: system32\DRIVERS\iaStor.sys Image size: 331288 Image MD5: 0BAA4115DFFFD6A6D809A89D65E1281A Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 1 Service (registry key): iaStorV Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\iaStorV.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ICQ Service Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: ICQ Service Object name: LocalSystem Image path: C:\Program Files\ICQ6Toolbar\ICQ Service.exe Image size: 246520 Image MD5: 5C7D72EAB04B1DF8C5D2ACC6551FDE49 Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 0 Depends On services: RPCSS Service (registry key): idsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8192 Object name: LocalSystem Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" Image size: 878416 Image MD5: 5AF815EB5BC9802E5A064E2BA62BFC0C Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): igfx Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\igdkmd32.sys Image size: 4756480 Image MD5: AD626F6964F4D364D226C39E06872DD3 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): iirsp Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\iirsp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): IKEEXT Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\ikeext.dll,-501 Description: @%SystemRoot%\system32\ikeext.dll,-502 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: BFE Service (registry key): inetaccs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): IntcAzAudAddService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Service for Realtek HD Audio (WDM) Image path: system32\drivers\RTKVHDA.sys Image size: 2811296 Image MD5: 3202E26501E5E18C35DC2CC74709A704 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): intelide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\intelide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 3 Service (registry key): intelppm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Intel Processor Driver Image path: system32\DRIVERS\intelppm.sys Image size: 53760 Image MD5: 3B514D27BFC4ACCB4037BC6685F766E0 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): IPBusEnum Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\IPBusEnum.dll,-102 Description: @%systemroot%\system32\IPBusEnum.dll,-103 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,fdPHost Service (registry key): IpFilterDriver Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\rascfg.dll,-32013 Description: @%systemroot%\system32\rascfg.dll,-32013 Image path: system32\DRIVERS\ipfltdrv.sys Image size: 58880 Image MD5: 709D1761D3B19A932FF0238EA6D50200 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): iphlpsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\iphlpsvc.dll,-500 Description: @%SystemRoot%\system32\iphlpsvc.dll,-501 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi Service (registry key): IPMIDRV Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\IPMIDrv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): IPNAT Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: IP Network Address Translator Image path: System32\drivers\ipnat.sys Image size: 101888 Image MD5: A5FA468D67ABCDAA36264E463A7BB0CD Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Depends On services: Tcpip Service (registry key): IRENUM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\irenum.sys,-100 Description: @%SystemRoot%\system32\drivers\irenum.sys,-101 Image path: system32\drivers\irenum.sys Image size: 13824 Image MD5: 42996CFF20A3084A56017B7902307E9F Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): isapnp Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\isapnp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 3 Service (registry key): iScsiPrt Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: iScsiPort Driver Image path: \SystemRoot\system32\DRIVERS\msiscsi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): kbdclass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Keyboard Class Driver Image path: system32\DRIVERS\kbdclass.sys Image size: 42576 Image MD5: ADEF52CA1AEAE82B50DF86B56413107E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): kbdhid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Keyboard HID Driver Image path: \SystemRoot\system32\DRIVERS\kbdhid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): KeyIso Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @keyiso.dll,-100 Description: @keyiso.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\lsass.exe Image size: 22528 Image MD5: F42309C4191C506B71DB5D1126D26318 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): KSecDD Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\Drivers\ksecdd.sys Image size: 67664 Image MD5: E36A061EC11B373826905B21BE10948F Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): KSecPkg Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: System32\Drivers\ksecpkg.sys Image size: 133720 Image MD5: 365C6154BBBC5377173F1CA7BFB6CC59 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): KtmRm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2946 Description: @comres.dll,-2947 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkServiceAndNoImpersonation Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): LanmanServer Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\srvsvc.dll,-100 Description: @%systemroot%\system32\srvsvc.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: SamSS,Srv Service (registry key): LanmanWorkstation Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wkssvc.dll,-100 Description: @%systemroot%\system32\wkssvc.dll,-101 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: Bowser,MRxSmb10,MRxSmb20,NSI Service (registry key): ldap Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): lltdio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Link-Layer Topology Discovery Mapper I/O Driver Image path: system32\DRIVERS\lltdio.sys Image size: 48128 Image MD5: F7611EC07349979DA9B0AE1F18CCC7A6 Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 1 Service (registry key): lltdsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\lltdres.dll,-1 Description: @%SystemRoot%\system32\lltdres.dll,-2 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: rpcss,lltdio Service (registry key): lmhosts Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\lmhsvc.dll,-101 Description: @%SystemRoot%\system32\lmhsvc.dll,-102 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NetBT,Afd Service (registry key): Lsa Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): LSI_FC Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\lsi_fc.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): LSI_SAS Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\lsi_sas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): LSI_SAS2 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\lsi_sas2.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): LSI_SCSI Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\lsi_scsi.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): luafv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drivers\luafv.sys,-100 Description: @%systemroot%\system32\drivers\luafv.sys,-101 Image path: \SystemRoot\system32\drivers\luafv.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 2 Error Control: 1 Depends On services: FltMgr Service (registry key): Mcx2Svc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\ehome\ehres.dll,-15501 Description: @%SystemRoot%\ehome\ehres.dll,-15502 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Depends On services: SSDPSRV,IPBusEnum,TermService,fdphost Service (registry key): megasas Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\megasas.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MegaSR Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\MegaSR.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MMCSS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\mmcss.dll,-100 Description: @%systemroot%\system32\mmcss.dll,-101 Object name: LocalSystem Image path: %SystemRoot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Service (registry key): Modem Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\drivers\modem.sys Image size: 31744 Image MD5: F001861E5700EE84E2D4E52C712F4964 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): monitor Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Monitor-Klassenfunktionstreiber-Dienst Image path: system32\DRIVERS\monitor.sys Image size: 23552 Image MD5: 79D10964DE86B292320E9DFE02282A23 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): mouclass Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Mausklassentreiber Image path: system32\DRIVERS\mouclass.sys Image size: 41552 Image MD5: FB18CC1D4C2E716B6B903B0AC0CC0609 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): mouhid Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Maus-HID-Treiber Image path: system32\DRIVERS\mouhid.sys Image size: 26112 Image MD5: 2C388D2CD01C9042596CF3C8F3C7B24D Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): mountmgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\mountmgr.sys,-100 Description: @%SystemRoot%\system32\drivers\mountmgr.sys,-101 Image path: System32\drivers\mountmgr.sys Image size: 78416 Image MD5: 921C18727C5920D6C0300736646931C2 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): mpio Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\mpio.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): mpsdrv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23092 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23093 Image path: System32\drivers\mpsdrv.sys Image size: 60416 Image MD5: AD2723A7B53DD1AACAE6AD8C0BFBF4D0 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MpsSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090 Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091 Object name: NT Authority\LocalService Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: mpsdrv,bfe Service (registry key): MRxDAV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\webclnt.dll,-104 Description: @%systemroot%\system32\webclnt.dll,-105 Image path: \SystemRoot\system32\drivers\mrxdav.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wkssvc.dll,-1002 Description: @%systemroot%\system32\wkssvc.dll,-1003 Image path: system32\DRIVERS\mrxsmb.sys Image size: 123392 Image MD5: F1B6AA08497EA86CA6EF6F7A08B0BFB8 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: rdbss Service (registry key): mrxsmb10 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wkssvc.dll,-1004 Description: @%systemroot%\system32\wkssvc.dll,-1005 Image path: system32\DRIVERS\mrxsmb10.sys Image size: 221696 Image MD5: 5613358B4050F46F5A9832DA8050D6E4 Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): mrxsmb20 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\wkssvc.dll,-1006 Description: @%systemroot%\system32\wkssvc.dll,-1007 Image path: system32\DRIVERS\mrxsmb20.sys Image size: 95744 Image MD5: 25C9792778D80FEB4C8201E62281BFDF Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Depends On services: mrxsmb Service (registry key): msahci Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\msahci.sys Image size: 27712 Image MD5: 4326D168944123F38DD3B2D9C37A0B12 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): msdsm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\msdsm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSDTC Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @comres.dll,-2797 Description: @comres.dll,-2798 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\msdtc.exe Image size: 134144 Image MD5: E1BCE74A3BD9902B72599C0192A07E27 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: RPCSS,SamSS Service (registry key): MSDTC Bridge 3.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): MSDTC Bridge 4.0.0.0 Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Msfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): mshidkmdf Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\mshidkmdf.sys,-100 Description: @%SystemRoot%\system32\drivers\mshidkmdf.sys,-101 Image path: \SystemRoot\System32\drivers\mshidkmdf.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): msisadrv Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\msisadrv.sys Image size: 13888 Image MD5: 0A4E5757AE09FA9622E3158CC1AEF114 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): MSiSCSI Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000 Description: @%SystemRoot%\system32\iscsidsc.dll,-5001 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k netsvcs Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): msiserver Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\msimsg.dll,-27 Description: @%SystemRoot%\system32\msimsg.dll,-32 Object name: LocalSystem Image path: %systemroot%\system32\msiexec.exe /V Image size: 73216 Image MD5: A8492E3929E7B981DA541286709C8479 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Depends On services: rpcss Service (registry key): MSKSSRV Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Service Proxy Image path: system32\drivers\MSKSSRV.sys Image size: 8320 Image MD5: 8C0860D6366AAFFB6C5BB9DF9448E631 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPCLOCK Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Clock Proxy Image path: system32\drivers\MSPCLOCK.sys Image size: 5888 Image MD5: 3EA8B949F963562CEDBB549EAC0C11CE Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSPQM Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Quality Manager Proxy Image path: system32\drivers\MSPQM.sys Image size: 5504 Image MD5: F456E973590D663B1073E9C463B40932 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MsRPC Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MSSCNTRS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): mssmbios Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft System Management BIOS Driver Image path: system32\DRIVERS\mssmbios.sys Image size: 28240 Image MD5: FC6B9FF600CC585EA38B12589BD4E246 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): MSTEE Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Streaming Tee/Sink-to-Sink Converter Image path: system32\drivers\MSTEE.sys Image size: 6144 Image MD5: B42C6B921F61A6E55159B8BE6CD54A36 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): MTConfig Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Input Configuration Driver Image path: \SystemRoot\system32\DRIVERS\MTConfig.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Mup Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\drivers\mup.sys,-101 Description: @%systemroot%\system32\drivers\mup.sys,-102 Image path: System32\Drivers\mup.sys Image size: 49728 Image MD5: 159FAD02F64E6381758C990F753BCC80 Control Set: CurrentControlSet Start: 0 Type: 2 Error Control: 1 Service (registry key): napagent Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\qagentrt.dll,-6 Description: @%SystemRoot%\system32\qagentrt.dll,-7 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): NativeWifiP Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NativeWiFi Filter Image path: system32\DRIVERS\nwifi.sys Image size: 267264 Image MD5: 26384429FCD85D83746F63E798AB1480 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NDIS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\ndis.sys,-200 Description: @%SystemRoot%\system32\drivers\ndis.sys,-201 Image path: system32\drivers\ndis.sys Image size: 710720 Image MD5: 23759D175A0A9BAAF04D05047BC135A8 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): NdisCap Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NDIS Capture LightWeight Filter Description: NDIS Capture LightWeight Filter Image path: system32\DRIVERS\ndiscap.sys Image size: 27136 Image MD5: 0E1787AA6C9191D3D319E8BAFE86F80C Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NdisTapi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\rascfg.dll,-32001 Description: @%systemroot%\system32\rascfg.dll,-32001 Image path: system32\DRIVERS\ndistapi.sys Image size: 20992 Image MD5: E4A8AEC125A2E43A9E32AFEEA7C9C888 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): Ndisuio Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NDIS Usermode I/O Protocol Image path: system32\DRIVERS\ndisuio.sys Image size: 45568 Image MD5: B30AE7F2B6D7E343B0DF32E6C08FCE75 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NdisWan Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\system32\rascfg.dll,-32002 Description: @%systemroot%\system32\rascfg.dll,-32002 Image path: system32\DRIVERS\ndiswan.sys Image size: 118784 Image MD5: 267C415EADCBE53C9CA873DEE39CF3A4 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NDProxy Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NetBIOS Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NetBIOS Interface Description: NetBIOS Interface Image path: system32\DRIVERS\netbios.sys Image size: 36352 Image MD5: 80B275B1CE3B0E79909DB7B39AF74D51 Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): NetBT Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NetBT Description: @%SystemRoot%\system32\drivers\netbt.sys,-1 Image path: System32\DRIVERS\netbt.sys Image size: 187904 Image MD5: DD52A733BF4CA5AF84562A5E2F963B91 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Depends On services: Tdx,tcpip Service (registry key): Netlogon Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\netlogon.dll,-102 Description: @%SystemRoot%\System32\netlogon.dll,-103 Object name: LocalSystem Image path: %systemroot%\system32\lsass.exe Image size: 22528 Image MD5: F42309C4191C506B71DB5D1126D26318 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: LanmanWorkstation Service (registry key): Netman Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\netman.dll,-109 Description: @%SystemRoot%\system32\netman.dll,-110 Object name: LocalSystem Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,nsi Service (registry key): netprofm Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\netprofm.dll,-202 Description: @%SystemRoot%\system32\netprofm.dll,-203 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs,nlasvc Service (registry key): NetTcpPortSharing Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201 Description: @%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8200 Object name: NT AUTHORITY\LocalService Image path: "%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" Image size: 128848 Image MD5: FE2AA5A684B0DD9B1FAE57B7817C198B Control Set: CurrentControlSet Start: 4 Type: 32 Error Control: 1 Service (registry key): nfrd960 Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\nfrd960.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): NlaSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\System32\nlasvc.dll,-1 Description: @%SystemRoot%\System32\nlasvc.dll,-2 Object name: NT AUTHORITY\NetworkService Image path: %SystemRoot%\System32\svchost.exe -k NetworkService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: NSI,RpcSs,TcpIp Service (registry key): Npfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 2 Error Control: 1 Service (registry key): nsi Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\nsisvc.dll,-200 Description: @%SystemRoot%\system32\nsisvc.dll,-201 Object name: NT Authority\LocalService Image path: %systemroot%\system32\svchost.exe -k LocalService Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 2 Type: 32 Error Control: 1 Depends On services: nsiproxy Service (registry key): nsiproxy Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\nsiproxy.sys,-2 Description: @%SystemRoot%\system32\drivers\nsiproxy.sys,-1 Image path: system32\drivers\nsiproxy.sys Image size: 16896 Image MD5: E9A0A4D07E53D8FEA2BB8387A3293C58 Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): NTDS Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 0 Type: 0 Error Control: 0 Service (registry key): Ntfs Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 3 Type: 2 Error Control: 1 Service (registry key): Null Registry path: \SYSTEM\CurrentControlSet\Services\ Control Set: CurrentControlSet Start: 1 Type: 1 Error Control: 1 Service (registry key): NVHDA Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Service for NVIDIA High Definition Audio Driver Image path: system32\drivers\nvhda32v.sys Image size: 66080 Image MD5: D2F4C4B22969236382CA853B8DAA2D4E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): nvlddmkm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: system32\DRIVERS\nvlddmkm.sys Image size: 9923624 Image MD5: 104C0FE08DD64965CF788D91CCBB2CC6 Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): nvraid Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\nvraid.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): nvstor Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\nvstor.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 3 Service (registry key): nvsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVIDIA Display Driver Service Description: Provides system and desktop level support to the NVIDIA display driver Object name: LocalSystem Image path: C:\windows\system32\nvvsvc.exe Image size: 219752 Image MD5: 63A9CACE87C31A46BDF4AD448D9A033A Control Set: CurrentControlSet Start: 2 Type: 16 Error Control: 0 Service (registry key): nv_agp Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: NVIDIA nForce AGP Bus Filter Image path: \SystemRoot\system32\DRIVERS\nv_agp.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): OberonGameConsoleService Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Oberon Media Game Console service Description: GameConsole management services Object name: LocalSystem Image path: "C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe" Image size: 44312 Image MD5: B5D5DA8230D3D3525839D939A9196C3E Control Set: CurrentControlSet Start: 2 Type: 272 Error Control: 1 Service (registry key): odserv Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Microsoft Office Diagnostics Service Description: Komponenten der Microsoft Office-Diagnose ausführen. Object name: LocalSystem Image path: "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE" Image size: 441712 Image MD5: 1F0E05DFF4F5A833168E49BE1256F002 Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): ohci1394 Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: 1394 OHCI Compliant Host Controller (Legacy) Image path: \SystemRoot\system32\DRIVERS\ohci1394.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 Service (registry key): ose Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Office Source Engine Description: Speichert Installationsdateien, die für Updates und Reparieren verwendet werden, und ist zum Herunterladen von Setup-Updates und Watson-Fehlerberichten erforderlich. Object name: LocalSystem Image path: "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE" Image size: 145184 Image MD5: 5A432A042DAE460ABE7199B758E8606C Control Set: CurrentControlSet Start: 3 Type: 16 Error Control: 1 Service (registry key): p2pimsvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\pnrpsvc.dll,-8004 Description: @%SystemRoot%\system32\pnrpsvc.dll,-8005 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Service (registry key): p2psvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\p2psvc.dll,-8006 Description: @%SystemRoot%\system32\p2psvc.dll,-8007 Object name: NT AUTHORITY\LocalService Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: p2pimsvc,PNRPSvc Service (registry key): Parport Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: Parallel port driver Image path: \SystemRoot\system32\DRIVERS\parport.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 0 Service (registry key): partmgr Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\drivers\partmgr.sys,-100 Description: @%SystemRoot%\system32\drivers\partmgr.sys,-101 Image path: System32\drivers\partmgr.sys Image size: 56912 Image MD5: FF4218952B51DE44FE910953A3E686B9 Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): Parvdm Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\parvdm.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 2 Type: 1 Error Control: 0 Depends On services: Parport Depends On group: "Parallel arbitrator" Service (registry key): PcaSvc Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: @%SystemRoot%\system32\pcasvc.dll,-1 Description: @%SystemRoot%\system32\pcasvc.dll,-2 Object name: LocalSystem Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted Image size: 20992 Image MD5: 54A47F6B5E09A77E61649109C6A08866 Control Set: CurrentControlSet Start: 3 Type: 32 Error Control: 1 Depends On services: RpcSs Service (registry key): pci Registry path: \SYSTEM\CurrentControlSet\Services\ Display name: PCI Bus Driver Image path: system32\DRIVERS\pci.sys Image size: 153680 Image MD5: C858CB77C577780ECC456A892E7E7D0F Control Set: CurrentControlSet Start: 0 Type: 1 Error Control: 3 Service (registry key): pciide Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\pciide.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 3 Service (registry key): pcmcia Registry path: \SYSTEM\CurrentControlSet\Services\ Image path: \SystemRoot\system32\DRIVERS\pcmcia.sys Image size: 0 Image MD5: D41D8CD98F00B204E9800998ECF8427E Control Set: CurrentControlSet Start: 3 Type: 1 Error Control: 1 |
| Themen zu ICQ-Account über Trojaner(?) "Fotoalbum.exe" gehackt- weitere Gefährdung meiner Daten? |
| adobe, afd.sys, avast, avast!, bho, browser, desktop, diagnostics, dnsapi.dll, error, explorer, fotoalbum.exe, frage, internet, internet explorer, lanmanworkstation, location, msiexec.exe, nvidia, object, passwort geändert, presentationhost.exe, realtek, registry, registry key, required, rundll, scan, software, spybot, spyware, system, trojaner, trojaner ?, updates, usb, viren, warum, windows, write |
Baum-Darstellung