ComputerName = WOLFE-PC TCP/IP Hostname = Wolfe-PC ---------------------------------------- xpedition v.20090727 ---------------------------------------- ControlSet001\Control\ProductOptions LastWrite = Thu Sep 16 17:09:48 2010 Ref: http://support.microsoft.com/kb/152078 http://support.microsoft.com/kb/181412 ProductType = WinNT Ref: http://technet.microsoft.com/en-us/library/cc782360%28WS.10%29.aspx WinNT indicates a workstation. ServerNT indicates a standalone server. LanmanNT indicates a domain controller (pri/backup). ProductSuite = Terminal Server Ref: http://technet.microsoft.com/en-us/library/cc784364%28WS.10%29.aspx ---------------------------------------- dllsearch v.20100824 CWDIllegalInDllSearch value not found. ---------------------------------------- ControlSet001\Control\Terminal Server LastWrite Time Fri Oct 1 13:58:13 2010 (UTC) Reference: http://support.microsoft.com/kb/243215 ProductVersion = 5.1 fDenyTSConnections = 1 1 = connections denied TSAdvertise = 0 0 = disabled, 1 = enabled (advertise Terminal Services) Ref: http://support.microsoft.com/kb/281307 TSUserEnabled = 0 1 = All users logging in are automatically part of the built-in Terminal Server User group. 0 = No one is a member of the built-in group. Ref: http://support.microsoft.com/kb/238965 ---------------------------------------- rdpport v.20100713 Remote Desktop Listening Port Number = 3389 ---------------------------------------- ControlSet001\Control\Windows key, ShutdownTime value ControlSet001\Control\Windows LastWrite Time Fri Oct 1 14:35:01 2010 (UTC) ShutdownTime = Fri Oct 1 14:35:01 2010 (UTC) ---------------------------------------- ControlSet001\Control\Watchdog\Display not found. ---------------------------------------- nolmhash v.20100712 ControlSet001\Control\Lsa LastWrite: Fri Oct 1 13:58:12 2010 NoLMHash value = 1 A value of 1 indicates that LMHashes are not stored in the SAM. ---------------------------------------- TimeZoneInformation key ControlSet001\Control\TimeZoneInformation LastWrite Time Thu Sep 16 18:38:15 2010 (UTC) DaylightName -> @tzres.dll,-111 StandardName -> @tzres.dll,-112 Bias -> 300 (5 hours) ActiveTimeBias -> 240 (4 hours) ---------------------------------------- NtfsDisableLastAccessUpdate ControlSet001\Control\FileSystem NtfsDisableLastAccessUpdate = 1 ---------------------------------------- Application \ Tue Jul 14 07:50:56 2009Z File = %SystemRoot%\system32\winevt\Logs\Application.evtx DisplayNameFile = %SystemRoot%\system32\wevtapi.dll MaxSize = 20.00MB Retention = 0 sec HardwareEvents \ Tue Jul 14 04:37:09 2009Z File = %systemroot%\system32\winevt\logs\HardwareEvents.evtx DisplayNameFile = %SystemRoot%\system32\wecsvc.dll MaxSize = 20.00MB Retention = 0 sec Internet Explorer \ Tue Jul 14 04:37:09 2009Z Key Management Service \ Tue Jul 14 04:37:09 2009Z MaxSize = 20.00MB Retention = 0 sec Media Center \ Tue Jul 14 07:50:56 2009Z File = %SystemRoot%\System32\winevt\Logs\Media Center.evtx MaxSize = 8.00MB Retention = 0 sec Security \ Tue Jul 14 04:37:09 2009Z File = %SystemRoot%\System32\winevt\Logs\Security.evtx DisplayNameFile = %SystemRoot%\system32\wevtapi.dll MaxSize = 20.00MB Retention = 0 sec System \ Thu Sep 16 17:08:33 2010Z File = %SystemRoot%\system32\winevt\Logs\System.evtx DisplayNameFile = %SystemRoot%\system32\wevtapi.dll MaxSize = 20.00MB Retention = 0 sec Windows PowerShell \ Tue Jul 14 04:37:09 2009Z MaxSize = 15.00MB Retention = 0 sec AutoBackupLogFiles = 0 ---------------------------------------- CrashOnAuditFail = 0 Feature is off; the system will not halt ---------------------------------------- CrashDumpEnabled = 2 [Kernel memory dump] DumpFile = %SystemRoot%\MEMORY.DMP MinidumpDir = %SystemRoot%\Minidump LogEvent = 1 Logs an event to the System Event Log (event ID = 1001, source = Save Dump) ---------------------------------------- CrashOnCtrlScroll not set ---------------------------------------- PagingFiles = ?:\pagefile.sys ClearPageFileAtShutdown = 0 ---------------------------------------- Error reading Heuristics value. ---------------------------------------- mountdev v.20080324 Get MountedDevices key information from the System hive file. MountedDevices LastWrite time = Fri Oct 1 13:59:13 2010Z \DosDevices\C: Drive Signature = 10 15 63 cb \??\Volume{c21c3b6f-c1b4-11df-8520-806e6f6e6963} Drive Signature = 10 15 63 cb \??\Volume{c21c3b70-c1b4-11df-8520-806e6f6e6963} Drive Signature = 10 15 63 cb \??\Volume{c21c3b71-c1b4-11df-8520-806e6f6e6963} Drive Signature = 47 ee 93 c6 \??\Volume{c21c3b81-c1b4-11df-8520-806e6f6e6963} Drive Signature = 1b 8d 8e 4e \DosDevices\D: Drive Signature = 47 ee 93 c6 \DosDevices\G: Drive Signature = 47 c3 dc fc \??\Volume{aaa8f891-c4e4-11df-ba4f-806e6f6e6963} Drive Signature = 47 c3 dc fc \??\Volume{aaa8f892-c4e4-11df-ba4f-806e6f6e6963} Drive Signature = 47 c3 dc fc Device: \??\IDE#CdRomSONY_DVD_RW_DRU-840A____________________SS00____#5&20f2915f&0&0.0.0#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} \??\Volume{c21c3b74-c1b4-11df-8520-806e6f6e6963} \DosDevices\F: Device: _??_USBSTOR#Disk&Ven_Kingston&Prod_DataTraveler_2.0&Rev_1.00#0000000025&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} \??\Volume{c8274d68-ccac-11df-9d0d-001d6005034b} Device: _??_USBSTOR#Disk&Ven_Generic&Prod_USB_SD_Reader&Rev_1.00#058F00016378&2#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} \??\Volume{c21c3b84-c1b4-11df-8520-806e6f6e6963} \DosDevices\J: Device: \??\FDC#GENERIC_FLOPPY_DRIVE#5&2a92a121&0&0#{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} \??\Volume{c21c3b75-c1b4-11df-8520-806e6f6e6963} \DosDevices\A: Device: _??_USBSTOR#Disk&Ven_Generic&Prod_USB_CF_Reader&Rev_1.01#058F00016378&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} \??\Volume{c21c3b82-c1b4-11df-8520-806e6f6e6963} \DosDevices\H: Device: _??_USBSTOR#Disk&Ven_Memorex&Prod_TD_Classic_003B&Rev_PMAP#0778102C0441&0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} \DosDevices\E: \??\Volume{e8fee801-cd63-11df-b483-001d6005034b} Device: TrueCryptVolumeZ \??\Volume{c8274d6f-ccac-11df-9d0d-001d6005034b} #{7207c3bf-cd4c-11df-a8cf-001d6005034b} Device: _??_USBSTOR#Disk&Ven_Generic&Prod_USB_xD#SM_Reader&Rev_1.02#058F00016378&3#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} \??\Volume{c21c3b85-c1b4-11df-8520-806e6f6e6963} \DosDevices\K: Device: _??_USBSTOR#Disk&Ven_Generic&Prod_USB_MS_Reader&Rev_1.03#058F00016378&1#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} \??\Volume{c21c3b83-c1b4-11df-8520-806e6f6e6963} \DosDevices\I: ---------------------------------------- ControlSet001\Services\Tcpip\Parameters\PersistentRoutes LastWrite: Thu Sep 16 19:06:35 2010 Address Netmask Gateway Metric 0.0.0.0 0.0.0.0 10.4.0.2 -1 ---------------------------------------- Network key ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318} Interface {3868EC16-BD23-4B6E-A55A-E748ABE53283} LastWrite time Thu Sep 16 15:39:44 2010 (UTC) Name = Local Area Connection PnpInstanceID = PCI\VEN_11AB&DEV_4320&SUBSYS_811A1043&REV_14\4&B244743&0&28F0 MediaSubType = Interface {483C9FF8-503D-414B-B402-E4C1F1F568CB} LastWrite time Tue Jul 14 04:37:35 2009 (UTC) Name = Local Area Connection* 3 PnpInstanceID = MediaSubType = Interface {4AAF5FBC-549C-4396-9D65-D1A58E6D8DB5} LastWrite time Fri Oct 1 13:58:19 2010 (UTC) Name = isatap.{5EFF7958-A790-4204-B370-931ED306307E} PnpInstanceID = MediaSubType = Interface {5EFF7958-A790-4204-B370-931ED306307E} LastWrite time Thu Sep 16 15:39:44 2010 (UTC) Name = Local Area Connection 2 PnpInstanceID = PCI\VEN_11AB&DEV_4360&SUBSYS_81341043&REV_21\4&AAA63F6&0&00E4 MediaSubType = Interface {636FF46E-80FE-4314-BC84-DC7749EDE5B4} LastWrite time Tue Jul 14 04:37:32 2009 (UTC) Name = Local Area Connection* 2 PnpInstanceID = MediaSubType = Interface {72DD97A9-E544-4915-88D8-44E829C34F68} LastWrite time Tue Jul 14 04:37:38 2009 (UTC) Name = Local Area Connection* 7 PnpInstanceID = MediaSubType = Interface {7C5653F0-144A-4534-9E34-28AC99CBA85E} LastWrite time Tue Jul 14 04:39:44 2009 (UTC) Name = Local Area Connection* 8 PnpInstanceID = MediaSubType = Interface {C0DE3E38-8BA7-479F-8B75-833F294C5AA8} LastWrite time Tue Jul 14 04:37:35 2009 (UTC) Name = Local Area Connection* 4 PnpInstanceID = MediaSubType = Interface {CA127C92-63EF-42D8-AA57-7A08B680AFE7} LastWrite time Fri Oct 1 13:58:20 2010 (UTC) Name = isatap.{3868EC16-BD23-4B6E-A55A-E748ABE53283} PnpInstanceID = MediaSubType = Interface {DB2B4279-B5CF-4626-9DBA-32D0ECE44C87} LastWrite time Tue Jul 14 04:37:37 2009 (UTC) Name = Local Area Connection* 5 PnpInstanceID = MediaSubType = Interface {E28D896F-9EA8-433A-9C10-66C97C19A921} LastWrite time Tue Jul 14 04:37:31 2009 (UTC) Name = Local Area Connection* PnpInstanceID = MediaSubType = Interface {E2F8A220-AF88-446C-9A55-453E58DD3A33} LastWrite time Tue Jul 14 04:54:04 2009 (UTC) Name = Local Area Connection* 10 PnpInstanceID = MediaSubType = Interface {F3229805-869E-479E-BA76-DD643F1D1B80} LastWrite time Tue Jul 14 04:37:37 2009 (UTC) Name = Local Area Connection* 6 PnpInstanceID = MediaSubType = ---------------------------------------- Network key ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318} ControlSet001\Services\Tcpip\Parameters\Interfaces LastWrite time Fri Sep 17 10:41:33 2010 (UTC) Interface {5EFF7958-A790-4204-B370-931ED306307E} Name: Local Area Connection 2 Control\Network key LastWrite time Thu Sep 16 15:39:44 2010 (UTC) Services\Tcpip key LastWrite time Thu Sep 16 19:06:35 2010 (UTC) IPAddress = 10.4.0.71 SubnetMask = 255.255.255.0 DefaultGateway = 10.4.0.2 Interface {3868EC16-BD23-4B6E-A55A-E748ABE53283} Name: Local Area Connection Control\Network key LastWrite time Thu Sep 16 15:39:44 2010 (UTC) Services\Tcpip key LastWrite time Thu Sep 16 17:08:34 2010 (UTC) DhcpDomain = DhcpIPAddress = 0.0.0.0 DhcpSubnetMask = 255.0.0.0 DhcpNameServer = DhcpServer = 255.255.255.255 ---------------------------------------- Adapter: {3868EC16-BD23-4B6E-A55A-E748ABE53283} LastWrite Time: Thu Sep 16 17:08:34 2010 Z EnableDHCP 1 Adapter: {5EFF7958-A790-4204-B370-931ED306307E} LastWrite Time: Thu Sep 16 17:08:39 2010 Z EnableDHCP 0 IPAddress 10.4.0.71 SubnetMask 255.255.255.0 DefaultGateway 10.4.0.1 ---------------------------------------- Adapter: {3868EC16-BD23-4B6E-A55A-E748ABE53283} LastWrite Time: Thu Sep 16 17:08:34 2010 Z UseZeroBroadcast 0 EnableDeadGWDetect 1 EnableDHCP 1 NameServer Domain RegistrationEnabled 1 RegisterAdapterName 0 DhcpIPAddress 0.0.0.0 DhcpSubnetMask 255.0.0.0 DhcpServer 255.255.255.255 Lease 0 LeaseObtainedTime Thu Jan 1 00:00:00 1970 Z T1 Thu Jan 1 00:00:00 1970 Z T2 Thu Jan 1 00:00:00 1970 Z LeaseTerminatesTime Thu Jan 1 00:00:00 1970 Z AddressType 0 IsServerNapAware 0 DhcpConnForceBroadcastFlag 0 Adapter: {5EFF7958-A790-4204-B370-931ED306307E} LastWrite Time: Thu Sep 16 19:06:35 2010 Z UseZeroBroadcast 0 EnableDeadGWDetect 1 EnableDHCP 0 NameServer Domain RegistrationEnabled 1 RegisterAdapterName 0 DhcpServer 255.255.255.255 Lease 0 LeaseObtainedTime Thu Jan 1 00:00:00 1970 Z T1 Thu Jan 1 00:00:00 1970 Z T2 Thu Jan 1 00:00:00 1970 Z LeaseTerminatesTime Thu Jan 1 00:00:00 1970 Z AddressType 0 IsServerNapAware 0 DhcpConnForceBroadcastFlag 0 IPAddress 10.4.0.71 SubnetMask 255.255.255.0 DefaultGateway 10.4.0.2 DefaultGatewayMetric 0 Adapter: {e29ac6c2-7037-11de-816d-806e6f6e6963} LastWrite Time: Fri Sep 17 10:41:33 2010 Z ---------------------------------------- Windows Firewall Configuration ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile LastWrite Time Tue Jul 14 04:37:09 2009 (UTC) EnableFirewall -> 1 DisableNotifications -> 0 Windows Firewall Configuration ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile LastWrite Time Tue Jul 14 04:37:09 2009 (UTC) EnableFirewall -> 1 DisableNotifications -> 0 ---------------------------------------- IDE ControlSet001\Enum\IDE LastWrite Time Fri Oct 1 06:39:27 2010 (UTC) CdRomSONY_DVD_RW_DRU-840A____________________SS00____ [Fri Oct 1 06:39:27 2010] 5&20f2915f&0&0.0.0 [Fri Oct 1 13:57:54 2010 (UTC)] FriendlyName : SONY DVD RW DRU-840A ATA Device DiskST31500341AS____________________________CC1H____ [Fri Oct 1 06:39:27 2010] 5&3003bd5e&0&0.1.0 [Fri Oct 1 06:39:27 2010 (UTC)] FriendlyName : ST31500341AS ATA Device DiskWDC_WD800AAJS-00L7A0____________________01.03E01 [Fri Oct 1 06:39:27 2010] 5&3003bd5e&0&0.0.0 [Fri Oct 1 13:57:55 2010 (UTC)] FriendlyName : WDC WD800AAJS-00L7A0 ATA Device 5&3003bd5e&0&0.1.0 [Fri Oct 1 06:39:27 2010 (UTC)] FriendlyName : WDC WD800AAJS-00L7A0 ATA Device DiskWDC_WD800JD-22MSA1______________________10.01E01 [Fri Oct 1 06:39:27 2010] 5&3003bd5e&0&0.0.0 [Fri Oct 1 06:39:27 2010 (UTC)] FriendlyName : WDC WD800JD-22MSA1 ATA Device DevClasses - Disks ControlSet001\Control\DeviceClasses\{53f56307-b6bf-11d0-94f2-00a0c91efb8b} Fri Oct 1 13:58:04 2010 (UTC) DiskWDC_WD800AAJS-00L7A0____________________01.03E01,5&3003bd5e&0&0.0.0 Tue Sep 21 13:39:11 2010 (UTC) DiskST31500341AS____________________________CC1H____,5&3003bd5e&0&0.1.0 Mon Sep 20 18:29:10 2010 (UTC) DiskWDC_WD800AAJS-00L7A0____________________01.03E01,5&3003bd5e&0&0.1.0 DiskWDC_WD800JD-22MSA1______________________10.01E01,5&3003bd5e&0&0.0.0 ---------------------------------------- Users Path=C:\Users Remark= ShareName=Users System Volume Information Path=C:\System Volume Information Remark= ShareName=System Volume Information ---------------------------------------- Fri Oct 1 14:34:59 2010Z,Winmgmt\Parameters,,%SystemRoot%\system32\wbem\WMIsvc.dll,,, Fri Oct 1 14:07:43 2010Z,exfat,exFAT File System Driver,,File system driver,Manual, Fri Oct 1 13:58:16 2010Z,WUDFRd,,system32\DRIVERS\WUDFRd.sys,Kernel driver,Manual, Fri Oct 1 13:58:15 2010Z,LanmanServer\Parameters,,%SystemRoot%\system32\srvsvc.dll,,, Fri Oct 1 13:58:12 2010Z,monitor,Microsoft Monitor Class Function Driver Service,system32\DRIVERS\monitor.sys,Kernel driver,Manual, Fri Oct 1 13:58:11 2010Z,USBSTOR,USB Mass Storage Driver,system32\DRIVERS\USBSTOR.SYS,Kernel driver,Manual, Fri Oct 1 13:58:09 2010Z,HdAudAddService,Microsoft 1.1 UAA Function Driver for High Definition Audio Service,system32\drivers\HdAudio.sys,Kernel driver,Manual, Fri Oct 1 13:58:08 2010Z,flpydisk,Floppy Disk Driver,system32\DRIVERS\flpydisk.sys,Kernel driver,Manual, Fri Oct 1 13:58:08 2010Z,Parport,Parallel port driver,system32\DRIVERS\parport.sys,Kernel driver,Manual, Fri Oct 1 13:58:08 2010Z,usbhub,Microsoft USB Standard Hub Driver,system32\DRIVERS\usbhub.sys,Kernel driver,Manual, Fri Oct 1 13:58:06 2010Z,mssmbios,Microsoft System Management BIOS Driver,system32\DRIVERS\mssmbios.sys,Kernel driver,System Start, Fri Oct 1 13:58:04 2010Z,rdyboost,ReadyBoost,System32\drivers\rdyboost.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:55 2010Z,Disk,Disk Driver,system32\DRIVERS\disk.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:54 2010Z,cdrom,CD-ROM Driver,system32\DRIVERS\cdrom.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,1394ohci,1394 OHCI Compliant Host Controller,system32\DRIVERS\1394ohci.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,ACPI,Microsoft ACPI Driver,system32\DRIVERS\ACPI.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,AFD,@%systemroot%\system32\drivers\afd.sys;-1000,\SystemRoot\system32\drivers\afd.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,aswFsBlk,aswFsBlk,,File system driver,Auto Start, Fri Oct 1 13:57:53 2010Z,aswMonFlt,aswMonFlt,\??\C:\Windows\system32\drivers\aswMonFlt.sys,File system driver,Auto Start, Fri Oct 1 13:57:53 2010Z,aswRdr,aswRdr,,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,aswSP,aswSP,,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,aswTdi,avast! Network Shield Support,,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,atapi,IDE Channel,system32\DRIVERS\atapi.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,Beep,Beep,,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,blbdrive,,system32\DRIVERS\blbdrive.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,bowser,@%systemroot%\system32\browser.dll;-102,system32\DRIVERS\bowser.sys,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,cdfs,CD/DVD File System Reader,system32\DRIVERS\cdfs.sys,File system driver,Disabled, Fri Oct 1 13:57:53 2010Z,CLFS,@%SystemRoot%\system32\clfs.sys;-100,System32\CLFS.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,CNG,,System32\Drivers\cng.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,CompositeBus,Composite Bus Enumerator Driver,system32\DRIVERS\CompositeBus.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,CSC,@%systemroot%\system32\cscsvc.dll;-202,system32\drivers\csc.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,DfsC,@%systemroot%\system32\drivers\dfsc.sys;-101,System32\Drivers\dfsc.sys,File system driver,System Start, Fri Oct 1 13:57:53 2010Z,discache,@%systemroot%\system32\drivers\discache.sys;-102,System32\drivers\discache.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,DXGKrnl,LDDM Graphics Subsystem,\SystemRoot\System32\drivers\dxgkrnl.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,fastfat,FAT12/16/32 File System Driver,,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,fdc,Floppy Disk Controller Driver,system32\DRIVERS\fdc.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,FileInfo,@%SystemRoot%\system32\drivers\fileinfo.sys;-100,system32\drivers\fileinfo.sys,File system driver,Boot Start, Fri Oct 1 13:57:53 2010Z,FltMgr,@%SystemRoot%\system32\drivers\fltmgr.sys;-10001,system32\drivers\fltmgr.sys,File system driver,Boot Start, Fri Oct 1 13:57:53 2010Z,Fs_Rec,,,8,Boot Start, Fri Oct 1 13:57:53 2010Z,fvevol,@%SystemRoot%\system32\drivers\fvevol.sys;-100,System32\DRIVERS\fvevol.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,HDAudBus,Microsoft UAA Bus Driver for High Definition Audio,system32\DRIVERS\HDAudBus.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,HTTP,@%SystemRoot%\system32\drivers\http.sys;-1,system32\drivers\HTTP.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,hwpolicy,@%systemroot%\system32\drivers\hwpolicy.sys;-101,System32\drivers\hwpolicy.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,i8042prt,i8042 Keyboard and PS/2 Mouse Port Driver,system32\DRIVERS\i8042prt.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,intelide,,system32\DRIVERS\intelide.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,intelppm,Intel Processor Driver,system32\DRIVERS\intelppm.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,kbdclass,Keyboard Class Driver,system32\DRIVERS\kbdclass.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,KSecDD,,System32\Drivers\ksecdd.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,KSecPkg,,System32\Drivers\ksecpkg.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,lltdio,Link-Layer Topology Discovery Mapper I/O Driver,system32\DRIVERS\lltdio.sys,Kernel driver,Auto Start, Fri Oct 1 13:57:53 2010Z,LSI_SCSI,,system32\DRIVERS\lsi_scsi.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,luafv,@%systemroot%\system32\drivers\luafv.sys;-100,\SystemRoot\system32\drivers\luafv.sys,File system driver,Auto Start, Fri Oct 1 13:57:53 2010Z,mouclass,Mouse Class Driver,system32\DRIVERS\mouclass.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,mountmgr,@%SystemRoot%\system32\drivers\mountmgr.sys;-100,System32\drivers\mountmgr.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,mpsdrv,@%SystemRoot%\system32\FirewallAPI.dll;-23092,System32\drivers\mpsdrv.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,mrxsmb,@%systemroot%\system32\wkssvc.dll;-1002,system32\DRIVERS\mrxsmb.sys,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,mrxsmb10,@%systemroot%\system32\wkssvc.dll;-1004,system32\DRIVERS\mrxsmb10.sys,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,mrxsmb20,@%systemroot%\system32\wkssvc.dll;-1006,system32\DRIVERS\mrxsmb20.sys,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,Msfs,,,File system driver,System Start, Fri Oct 1 13:57:53 2010Z,msisadrv,,system32\DRIVERS\msisadrv.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,MTsensor,ATK0110 ACPI UTILITY,system32\DRIVERS\ASACPI.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,Mup,@%systemroot%\system32\drivers\mup.sys;-101,System32\Drivers\mup.sys,File system driver,Boot Start, Fri Oct 1 13:57:53 2010Z,NDIS,@%SystemRoot%\system32\drivers\ndis.sys;-200,system32\drivers\ndis.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,NdisTapi,@%systemroot%\system32\rascfg.dll;-32001,system32\DRIVERS\ndistapi.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,NdisWan,@%systemroot%\system32\rascfg.dll;-32002,system32\DRIVERS\ndiswan.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,NDProxy,NDIS Proxy,,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,NetBIOS,NetBIOS Interface,system32\DRIVERS\netbios.sys,File system driver,System Start, Fri Oct 1 13:57:53 2010Z,NetBT,@%SystemRoot%\system32\drivers\netbt.sys;-2,System32\DRIVERS\netbt.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,Npfs,,,File system driver,System Start, Fri Oct 1 13:57:53 2010Z,nsiproxy,@%SystemRoot%\system32\drivers\nsiproxy.sys;-2,system32\drivers\nsiproxy.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,Ntfs,,,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,Null,,,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,nvlddmkm,,system32\DRIVERS\nvlddmkm.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,partmgr,@%SystemRoot%\system32\drivers\partmgr.sys;-100,System32\drivers\partmgr.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,Parvdm,,system32\DRIVERS\parvdm.sys,Kernel driver,Auto Start, Fri Oct 1 13:57:53 2010Z,pci,PCI Bus Driver,system32\DRIVERS\pci.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,pcw,Performance Counters for Windows Driver,System32\drivers\pcw.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,PEAUTH,PEAUTH,system32\drivers\peauth.sys,Kernel driver,Auto Start, Fri Oct 1 13:57:53 2010Z,PptpMiniport,@%systemroot%\system32\rascfg.dll;-32006,system32\DRIVERS\raspptp.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,Psched,@%SystemRoot%\System32\drivers\pacer.sys;-101,system32\DRIVERS\pacer.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,RasAgileVpn,WAN Miniport (IKEv2),system32\DRIVERS\AgileVpn.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,Rasl2tp,@%systemroot%\system32\rascfg.dll;-32005,system32\DRIVERS\rasl2tp.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,RasPppoe,@%systemroot%\system32\rascfg.dll;-32007,system32\DRIVERS\raspppoe.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,RasSstp,@%systemroot%\system32\sstpsvc.dll;-202,system32\DRIVERS\rassstp.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,rdbss,@%systemroot%\system32\wkssvc.dll;-1000,system32\DRIVERS\rdbss.sys,File system driver,System Start, Fri Oct 1 13:57:53 2010Z,rdpbus,Remote Desktop Device Redirector Bus Driver,system32\DRIVERS\rdpbus.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,RDPCDD,@%systemroot%\system32\DRIVERS\RDPCDD.sys;-100,System32\DRIVERS\RDPCDD.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,RDPENCDD,@%systemroot%\system32\drivers\RDPENCDD.sys;-101,system32\drivers\rdpencdd.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,RDPREFMP,@%systemroot%\system32\drivers\RdpRefMp.sys;-101,system32\drivers\rdprefmp.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,rspndr,Link-Layer Topology Discovery Responder,system32\DRIVERS\rspndr.sys,Kernel driver,Auto Start, Fri Oct 1 13:57:53 2010Z,sbp2port,SBP-2 Transport/Protocol Bus Driver,system32\DRIVERS\sbp2port.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,secdrv,Security Driver,,Kernel driver,Auto Start, Fri Oct 1 13:57:53 2010Z,Serenum,Serenum Filter Driver,system32\DRIVERS\serenum.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,Serial,Serial port driver,system32\DRIVERS\serial.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,spldr,Security Processor Loader Driver,,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,srv,@%systemroot%\system32\srvsvc.dll;-102,System32\DRIVERS\srv.sys,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,srv2,@%systemroot%\system32\srvsvc.dll;-104,System32\DRIVERS\srv2.sys,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,srvnet,,System32\DRIVERS\srvnet.sys,File system driver,Manual, Fri Oct 1 13:57:53 2010Z,storflt,@%SystemRoot%\system32\vmstorfltres.dll;-1000,system32\DRIVERS\vmstorfl.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,swenum,Software Bus Driver,system32\DRIVERS\swenum.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,Tcpip,@%SystemRoot%\system32\tcpipcfg.dll;-50003,System32\drivers\tcpip.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,tcpipreg,TCP/IP Registry Compatibility,System32\drivers\tcpipreg.sys,Kernel driver,Auto Start, Fri Oct 1 13:57:53 2010Z,tdx,@%SystemRoot%\system32\tcpipcfg.dll;-50004,system32\DRIVERS\tdx.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,TermDD,Terminal Device Driver,system32\DRIVERS\termdd.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,truecrypt,truecrypt,System32\drivers\truecrypt.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,tunnel,Microsoft Tunnel Miniport Adapter Driver,system32\DRIVERS\tunnel.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,udfs,udfs,system32\DRIVERS\udfs.sys,File system driver,Disabled, Fri Oct 1 13:57:53 2010Z,umbus,UMBus Enumerator Driver,system32\DRIVERS\umbus.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,usbehci,Microsoft USB 2.0 Enhanced Host Controller Miniport Driver,system32\DRIVERS\usbehci.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,usbuhci,Microsoft USB Universal Host Controller Miniport Driver,system32\DRIVERS\usbuhci.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,vdrvroot,Microsoft Virtual Drive Enumerator Driver,system32\DRIVERS\vdrvroot.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,VgaSave,,\SystemRoot\System32\drivers\vga.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,volmgr,Volume Manager Driver,system32\DRIVERS\volmgr.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,volmgrx,@%SystemRoot%\system32\drivers\volmgrx.sys;-100,System32\drivers\volmgrx.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,volsnap,Storage volumes,system32\DRIVERS\volsnap.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,Wanarpv6,@%systemroot%\system32\rascfg.dll;-32012,system32\DRIVERS\wanarp.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,Wdf01000,Kernel Mode Driver Frameworks service,system32\drivers\Wdf01000.sys,Kernel driver,Boot Start, Fri Oct 1 13:57:53 2010Z,WfpLwf,WFP Lightweight Filter,system32\DRIVERS\wfplwf.sys,Kernel driver,System Start, Fri Oct 1 13:57:53 2010Z,WudfPf,User Mode Driver Frameworks Platform Driver,system32\drivers\WudfPf.sys,Kernel driver,Manual, Fri Oct 1 13:57:53 2010Z,yukonw7,NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller,system32\DRIVERS\yk62x86.sys,Kernel driver,Manual, Fri Oct 1 11:02:20 2010Z,BITS,@%SystemRoot%\system32\qmgr.dll;-1000,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Thu Sep 30 20:31:22 2010Z,TrustedInstaller,@%SystemRoot%\servicing\TrustedInstaller.exe;-100,%SystemRoot%\servicing\TrustedInstaller.exe,Own_Process,Manual,localSystem Thu Sep 30 17:12:39 2010Z,McComponentHostService,McAfee Security Scan Component Host Service,"C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe",Own_Process,Manual,LocalSystem Fri Sep 17 15:36:42 2010Z,gupdate,Google Update Service (gupdate),"C:\Program Files\Google\Update\GoogleUpdate.exe" /svc,Own_Process,Auto Start,LocalSystem Fri Sep 17 15:36:37 2010Z,avast! Antivirus,avast! Antivirus,"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe",Share_Process,Auto Start,LocalSystem Fri Sep 17 15:36:36 2010Z,avast! Web Scanner,avast! Web Scanner,"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe",Share_Process,Manual,LocalSystem Fri Sep 17 15:36:35 2010Z,avast! Mail Scanner,avast! Mail Scanner,"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe",Share_Process,Manual,LocalSystem Fri Sep 17 15:33:57 2010Z,gusvc,Google Software Updater,"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe",Own_Process,Manual,LocalSystem Fri Sep 17 10:49:26 2010Z,clr_optimization_v2.0.50727_32,Microsoft .NET Framework NGEN v2.0.50727_X86,%systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe,Own_Process,Manual,LocalSystem Thu Sep 16 19:09:29 2010Z,SharedAccess,@%SystemRoot%\system32\ipnathlp.dll;-106,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Thu Sep 16 17:09:12 2010Z,drmkaud,Microsoft Trusted Audio Drivers,system32\drivers\drmkaud.sys,Kernel driver,Manual, Thu Sep 16 17:09:11 2010Z,MSTEE,Microsoft Streaming Tee/Sink-to-Sink Converter,system32\drivers\MSTEE.sys,Kernel driver,Manual, Thu Sep 16 17:09:10 2010Z,MSKSSRV,Microsoft Streaming Service Proxy,system32\drivers\MSKSSRV.sys,Kernel driver,Manual, Thu Sep 16 17:09:10 2010Z,MSPQM,Microsoft Streaming Quality Manager Proxy,system32\drivers\MSPQM.sys,Kernel driver,Manual, Thu Sep 16 17:09:09 2010Z,MSPCLOCK,Microsoft Streaming Clock Proxy,system32\drivers\MSPCLOCK.sys,Kernel driver,Manual, Thu Sep 16 17:08:39 2010Z,{5EFF7958-A790-4204-B370-931ED306307E},,,,, Thu Sep 16 17:08:34 2010Z,{3868EC16-BD23-4B6E-A55A-E748ABE53283},,,,, Thu Sep 16 17:07:58 2010Z,wudfsvc,@%SystemRoot%\system32\wudfsvc.dll;-1000,%SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Auto Start,LocalSystem Thu Sep 16 17:07:22 2010Z,isapnp,,\SystemRoot\system32\DRIVERS\isapnp.sys,Kernel driver,Manual, Thu Sep 16 17:07:21 2010Z,Compbatt,,\SystemRoot\system32\DRIVERS\compbatt.sys,Kernel driver,Manual, Thu Sep 16 17:07:21 2010Z,HpSAMD,,\SystemRoot\system32\DRIVERS\HpSAMD.sys,Kernel driver,Manual, Thu Sep 16 17:07:21 2010Z,LSI_SAS,,\SystemRoot\system32\DRIVERS\lsi_sas.sys,Kernel driver,Manual, Thu Sep 16 17:07:21 2010Z,msahci,,\SystemRoot\system32\DRIVERS\msahci.sys,Kernel driver,Manual, Thu Sep 16 17:07:21 2010Z,nvraid,,\SystemRoot\system32\DRIVERS\nvraid.sys,Kernel driver,Manual, Thu Sep 16 17:07:21 2010Z,pciide,,\SystemRoot\system32\DRIVERS\pciide.sys,Kernel driver,Manual, Thu Sep 16 17:07:21 2010Z,Wd,,\SystemRoot\system32\DRIVERS\wd.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,amdide,,\SystemRoot\system32\DRIVERS\amdide.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,amdsata,,\SystemRoot\system32\DRIVERS\amdsata.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,amdsbs,,\SystemRoot\system32\DRIVERS\amdsbs.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,LSI_FC,,\SystemRoot\system32\DRIVERS\lsi_fc.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,LSI_SAS2,,\SystemRoot\system32\DRIVERS\lsi_sas2.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,megasas,,\SystemRoot\system32\DRIVERS\megasas.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,MegaSR,,\SystemRoot\system32\DRIVERS\MegaSR.sys,Kernel driver,Manual, Thu Sep 16 17:07:20 2010Z,nfrd960,,\SystemRoot\system32\DRIVERS\nfrd960.sys,Kernel driver,Manual, Thu Sep 16 17:07:19 2010Z,aliide,,\SystemRoot\system32\DRIVERS\aliide.sys,Kernel driver,Manual, Thu Sep 16 17:07:19 2010Z,cmdide,,\SystemRoot\system32\DRIVERS\cmdide.sys,Kernel driver,Manual, Thu Sep 16 17:07:19 2010Z,ql2300,,\SystemRoot\system32\DRIVERS\ql2300.sys,Kernel driver,Manual, Thu Sep 16 17:07:19 2010Z,ql40xx,,\SystemRoot\system32\DRIVERS\ql40xx.sys,Kernel driver,Manual, Thu Sep 16 17:07:19 2010Z,SiSRaid2,,\SystemRoot\system32\DRIVERS\SiSRaid2.sys,Kernel driver,Manual, Thu Sep 16 17:07:19 2010Z,SiSRaid4,,\SystemRoot\system32\DRIVERS\sisraid4.sys,Kernel driver,Manual, Thu Sep 16 17:07:19 2010Z,stexstor,,\SystemRoot\system32\DRIVERS\stexstor.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,adpahci,,\SystemRoot\system32\DRIVERS\adpahci.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,aic78xx,,\SystemRoot\system32\DRIVERS\djsvs.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,elxstor,,\SystemRoot\system32\DRIVERS\elxstor.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,iaStorV,,\SystemRoot\system32\DRIVERS\iaStorV.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,iirsp,,\SystemRoot\system32\DRIVERS\iirsp.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,nvstor,,\SystemRoot\system32\DRIVERS\nvstor.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,viaide,,\SystemRoot\system32\DRIVERS\viaide.sys,Kernel driver,Manual, Thu Sep 16 17:07:18 2010Z,vsmraid,,\SystemRoot\system32\DRIVERS\vsmraid.sys,Kernel driver,Manual, Thu Sep 16 17:07:17 2010Z,adp94xx,,\SystemRoot\system32\DRIVERS\adp94xx.sys,Kernel driver,Manual, Thu Sep 16 17:07:17 2010Z,adpu320,,\SystemRoot\system32\DRIVERS\adpu320.sys,Kernel driver,Manual, Thu Sep 16 17:07:17 2010Z,arc,,\SystemRoot\system32\DRIVERS\arc.sys,Kernel driver,Manual, Thu Sep 16 17:07:17 2010Z,arcsas,,\SystemRoot\system32\DRIVERS\arcsas.sys,Kernel driver,Manual, Thu Sep 16 17:07:17 2010Z,mpio,,\SystemRoot\system32\DRIVERS\mpio.sys,Kernel driver,Manual, Thu Sep 16 17:07:17 2010Z,msdsm,,\SystemRoot\system32\DRIVERS\msdsm.sys,Kernel driver,Manual, Thu Sep 16 17:07:17 2010Z,storvsc,,\SystemRoot\system32\DRIVERS\storvsc.sys,Kernel driver,Manual, Thu Sep 16 17:06:55 2010Z,EapHost,@%systemroot%\system32\eapsvc.dll;-1,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Thu Sep 16 15:46:23 2010Z,HomeGroupListener,@%SystemRoot%\System32\ListSvc.dll;-100,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Thu Sep 16 15:46:22 2010Z,WMPNetworkSvc,@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe;-101,"%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe",Own_Process,Auto Start,NT AUTHORITY\NetworkService Thu Sep 16 15:38:27 2010Z,AsyncMac,@%systemroot%\system32\rascfg.dll;-32000,system32\DRIVERS\asyncmac.sys,Kernel driver,Manual, Tue Jul 14 07:51:56 2009Z,CscService,@%systemroot%\system32\cscsvc.dll;-200,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Auto Start,LocalSystem Tue Jul 14 07:50:57 2009Z,AppMgmt,@appmgmts.dll;-3250,%SystemRoot%\system32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 07:50:57 2009Z,ehRecvr,@%SystemRoot%\ehome\ehrecvr.exe;-101,%systemroot%\ehome\ehRecvr.exe,Own_Process,Manual,NT AUTHORITY\networkService Tue Jul 14 07:50:57 2009Z,ehSched,@%SystemRoot%\ehome\ehsched.exe;-101,%systemroot%\ehome\ehsched.exe,Own_Process,Manual,NT AUTHORITY\networkService Tue Jul 14 07:50:57 2009Z,Mcx2Svc,@%SystemRoot%\ehome\ehres.dll;-15501,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Disabled,NT Authority\LocalService Tue Jul 14 07:50:57 2009Z,PeerDistSvc,@%SystemRoot%\system32\peerdistsvc.dll;-9000,%SystemRoot%\System32\svchost.exe -k PeerDist,Share_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 07:50:57 2009Z,RDPDR,Terminal Server Device Redirector Driver,System32\drivers\rdpdr.sys,Kernel driver,Manual, Tue Jul 14 07:50:57 2009Z,SensrSvc,@%SystemRoot%\System32\sensrsvc.dll;-1000,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 07:50:57 2009Z,UmRdpService,@%SystemRoot%\system32\umrdp.dll;-1000,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,localSystem Tue Jul 14 07:50:56 2009Z,AppMgmt\Parameters,,%SystemRoot%\System32\appmgmts.dll,,, Tue Jul 14 07:50:56 2009Z,CscService\Parameters,,%SystemRoot%\System32\cscsvc.dll,,, Tue Jul 14 07:50:56 2009Z,eventlog,@%SystemRoot%\system32\wevtsvc.dll;-200,%SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted,Share_Process,Auto Start,NT AUTHORITY\LocalService Tue Jul 14 07:50:56 2009Z,Mcx2Svc\Parameters,,%SystemRoot%\system32\Mcx2Svc.dll,,, Tue Jul 14 07:50:56 2009Z,PeerDistSvc\Parameters,,%SystemRoot%\system32\peerdistsvc.dll,,, Tue Jul 14 07:50:56 2009Z,SensrSvc\Parameters,,%SystemRoot%\system32\sensrsvc.dll,,, Tue Jul 14 07:50:56 2009Z,UmRdpService\Parameters,,%SystemRoot%\System32\umrdp.dll,,, Tue Jul 14 07:47:42 2009Z,vmbus,@%SystemRoot%\system32\vmbusres.dll;-1000,\SystemRoot\system32\DRIVERS\vmbus.sys,Kernel driver,Manual, Tue Jul 14 07:47:41 2009Z,s3cap,,\SystemRoot\system32\DRIVERS\vms3cap.sys,Kernel driver,Manual, Tue Jul 14 07:47:41 2009Z,VMBusHID,,\SystemRoot\system32\DRIVERS\VMBusHID.sys,Kernel driver,Manual, Tue Jul 14 04:56:36 2009Z,HidUsb,Microsoft HID Class Driver,\SystemRoot\system32\DRIVERS\hidusb.sys,Kernel driver,Manual, Tue Jul 14 04:56:31 2009Z,mouhid,Mouse HID Driver,\SystemRoot\system32\DRIVERS\mouhid.sys,Kernel driver,Manual, Tue Jul 14 04:56:07 2009Z,kbdhid,Keyboard HID Driver,\SystemRoot\system32\DRIVERS\kbdhid.sys,Kernel driver,Manual, Tue Jul 14 04:55:51 2009Z,WSearch,@%systemroot%\system32\SearchIndexer.exe;-103,%systemroot%\system32\SearchIndexer.exe /Embedding,Own_Process,Auto Start,LocalSystem Tue Jul 14 04:53:53 2009Z,iphlpsvc\Parameters,,%SystemRoot%\System32\iphlpsvc.dll,,, Tue Jul 14 04:53:38 2009Z,BDESVC\Parameters,,%SystemRoot%\System32\bdesvc.dll,,, Tue Jul 14 04:53:38 2009Z,PNRPAutoReg\Parameters,,%SystemRoot%\system32\pnrpauto.dll,,, Tue Jul 14 04:53:38 2009Z,WPCSvc\Parameters,,%SystemRoot%\System32\wpcsvc.dll,,, Tue Jul 14 04:53:37 2009Z,p2pimsvc\Parameters,,%SystemRoot%\system32\pnrpsvc.dll,,, Tue Jul 14 04:53:37 2009Z,p2psvc\Parameters,,%SystemRoot%\system32\p2psvc.dll,,, Tue Jul 14 04:53:37 2009Z,SDRSVC\Parameters,,%Systemroot%\System32\SDRSVC.dll,,, Tue Jul 14 04:52:48 2009Z,b57nd60x,Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0,system32\DRIVERS\b57nd60x.sys,Kernel driver,Manual, Tue Jul 14 04:52:48 2009Z,vga,,system32\DRIVERS\vgapnp.sys,Kernel driver,Manual, Tue Jul 14 04:42:27 2009Z,NativeWifiP,NativeWiFi Filter,system32\DRIVERS\nwifi.sys,Kernel driver,Manual, Tue Jul 14 04:42:09 2009Z,NdisCap,NDIS Capture LightWeight Filter,system32\DRIVERS\ndiscap.sys,Kernel driver,Manual, Tue Jul 14 04:42:04 2009Z,hkmsvc\Parameters,,%SystemRoot%\system32\kmsvc.dll,,, Tue Jul 14 04:42:03 2009Z,napagent\Parameters,,%SystemRoot%\system32\qagentRT.dll,,, Tue Jul 14 04:41:58 2009Z,defragsvc\Parameters,,%Systemroot%\System32\defragsvc.dll,,, Tue Jul 14 04:41:45 2009Z,WerSvc\Parameters,,%SystemRoot%\System32\WerSvc.dll,,, Tue Jul 14 04:41:38 2009Z,lmhosts\Parameters,,%SystemRoot%\System32\lmhsvc.dll,,, Tue Jul 14 04:41:38 2009Z,Smb,@%SystemRoot%\system32\tcpipcfg.dll;-50005,system32\DRIVERS\smb.sys,Kernel driver,Manual, Tue Jul 14 04:41:31 2009Z,THREADORDER\Parameters,,%SystemRoot%\system32\mmcss.dll,,, Tue Jul 14 04:41:29 2009Z,TrkWks,@%SystemRoot%\system32\trkwks.dll;-1,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:41:29 2009Z,TrkWks\Parameters,,%SystemRoot%\System32\trkwks.dll,,, Tue Jul 14 04:41:23 2009Z,RpcEptMapper,@%windir%\system32\RpcEpMap.dll;-1001,%SystemRoot%\system32\svchost.exe -k RPCSS,Share_Process,Auto Start,NT AUTHORITY\NetworkService Tue Jul 14 04:41:23 2009Z,RpcEptMapper\Parameters,,%SystemRoot%\System32\RpcEpMap.dll,,, Tue Jul 14 04:41:20 2009Z,LanmanServer,@%systemroot%\system32\srvsvc.dll;-100,%SystemRoot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:41:18 2009Z,LanmanWorkstation,@%systemroot%\system32\wkssvc.dll;-100,%SystemRoot%\System32\svchost.exe -k NetworkService,Share_Process,Auto Start,NT AUTHORITY\NetworkService Tue Jul 14 04:41:18 2009Z,LanmanWorkstation\Parameters,,%SystemRoot%\System32\wkssvc.dll,,, Tue Jul 14 04:41:11 2009Z,Winmgmt,@%Systemroot%\system32\wbem\wmisvc.dll;-205,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,localSystem Tue Jul 14 04:41:11 2009Z,WmiApRpl,,,,, Tue Jul 14 04:41:11 2009Z,wmiApSrv,@%Systemroot%\system32\wbem\wmiapsrv.exe;-110,%systemroot%\system32\wbem\WmiApSrv.exe,Own_Process,Manual,localSystem Tue Jul 14 04:41:09 2009Z,TCPIP6,Microsoft IPv6 Protocol Driver,system32\DRIVERS\tcpip.sys,Kernel driver,Manual, Tue Jul 14 04:41:09 2009Z,WANARP,@%systemroot%\system32\rascfg.dll;-32011,system32\DRIVERS\wanarp.sys,Kernel driver,Manual, Tue Jul 14 04:39:44 2009Z,lmhosts,@%SystemRoot%\system32\lmhsvc.dll;-101,%SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted,Share_Process,Auto Start,NT AUTHORITY\LocalService Tue Jul 14 04:39:43 2009Z,Dhcp,@%SystemRoot%\system32\dhcpcore.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted,Share_Process,Auto Start,NT Authority\LocalService Tue Jul 14 04:39:43 2009Z,Dhcp\Parameters,,%SystemRoot%\system32\dhcpcore.dll,,, Tue Jul 14 04:39:43 2009Z,Winsock,,,Adapter,Manual, Tue Jul 14 04:37:51 2009Z,SamSs,@%SystemRoot%\system32\samsrv.dll;-1,%SystemRoot%\system32\lsass.exe,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:50 2009Z,W32Time,@%SystemRoot%\system32\w32time.dll;-200,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:50 2009Z,W32Time\Parameters,,%systemroot%\system32\w32time.dll,,, Tue Jul 14 04:37:48 2009Z,Dnscache,@%SystemRoot%\System32\dnsapi.dll;-101,%SystemRoot%\system32\svchost.exe -k NetworkService,Share_Process,Auto Start,NT AUTHORITY\NetworkService Tue Jul 14 04:37:48 2009Z,Dnscache\Parameters,,%SystemRoot%\System32\dnsrslvr.dll,,, Tue Jul 14 04:37:47 2009Z,RemoteAccess,@%Systemroot%\system32\mprdim.dll;-200,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Disabled,localSystem Tue Jul 14 04:37:47 2009Z,RemoteAccess\Parameters,,%SystemRoot%\System32\mprdim.dll,,, Tue Jul 14 04:37:39 2009Z,RasAuto,@%Systemroot%\system32\rasauto.dll;-200,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Tue Jul 14 04:37:39 2009Z,RasAuto\Parameters,,%SystemRoot%\System32\rasauto.dll,,, Tue Jul 14 04:37:39 2009Z,RasMan,@%Systemroot%\system32\rasmans.dll;-200,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Tue Jul 14 04:37:39 2009Z,RasMan\Parameters,,%SystemRoot%\System32\rasmans.dll,,, Tue Jul 14 04:37:30 2009Z,SstpSvc\Parameters,,%SystemRoot%\system32\sstpsvc.dll,,, Tue Jul 14 04:37:28 2009Z,DPS,@%systemroot%\system32\dps.dll;-500,%SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork,Share_Process,Auto Start,NT AUTHORITY\LocalService Tue Jul 14 04:37:28 2009Z,DPS\Parameters,,%SystemRoot%\system32\dps.dll,,, Tue Jul 14 04:37:28 2009Z,WdiServiceHost,@%systemroot%\system32\wdi.dll;-502,%SystemRoot%\System32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:28 2009Z,WdiServiceHost\Parameters,,%SystemRoot%\system32\wdi.dll,,, Tue Jul 14 04:37:28 2009Z,WdiSystemHost,@%systemroot%\system32\wdi.dll;-500,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:28 2009Z,WdiSystemHost\Parameters,,%SystemRoot%\system32\wdi.dll,,, Tue Jul 14 04:37:27 2009Z,EapHost\Parameters,,%SystemRoot%\System32\eapsvc.dll,,, Tue Jul 14 04:37:27 2009Z,Ndisuio,NDIS Usermode I/O Protocol,system32\DRIVERS\ndisuio.sys,Kernel driver,Manual, Tue Jul 14 04:37:25 2009Z,TBS\Parameters,,%SystemRoot%\System32\tbssvc.dll,,, Tue Jul 14 04:37:24 2009Z,gpsvc,@gpapi.dll;-112,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:24 2009Z,gpsvc\Parameters,,%SystemRoot%\System32\gpsvc.dll,,, Tue Jul 14 04:37:24 2009Z,NlaSvc\Parameters,,%SystemRoot%\System32\nlasvc.dll,,, Tue Jul 14 04:37:23 2009Z,BITS\Parameters,,%SystemRoot%\System32\qmgr.dll,,, Tue Jul 14 04:37:13 2009Z,nsi\Parameters,,%systemroot%\system32\nsisvc.dll,,, Tue Jul 14 04:37:09 2009Z,.NET CLR Data,,,,, Tue Jul 14 04:37:09 2009Z,.NET CLR Networking,,,,, Tue Jul 14 04:37:09 2009Z,.NET Data Provider for Oracle,,,,, Tue Jul 14 04:37:09 2009Z,.NET Data Provider for SqlServer,,,,, Tue Jul 14 04:37:09 2009Z,.NETFramework,,,,, Tue Jul 14 04:37:09 2009Z,AcpiPmi,ACPI Power Meter Driver,\SystemRoot\system32\DRIVERS\acpipmi.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,adsi,,,,, Tue Jul 14 04:37:09 2009Z,AeLookupSvc,@%SystemRoot%\system32\aelupsvc.dll;-1,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,AeLookupSvc\Parameters,,%SystemRoot%\System32\aelupsvc.dll,,, Tue Jul 14 04:37:09 2009Z,agp440,Intel AGP Bus Filter,\SystemRoot\system32\DRIVERS\agp440.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,ALG,@%SystemRoot%\system32\Alg.exe;-112,%SystemRoot%\System32\alg.exe,Own_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,amdagp,AMD AGP Bus Filter Driver,\SystemRoot\system32\DRIVERS\amdagp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,AmdK8,AMD K8 Processor Driver,\SystemRoot\system32\DRIVERS\amdk8.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,AmdPPM,AMD Processor Driver,\SystemRoot\system32\DRIVERS\amdppm.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,amdxata,,system32\DRIVERS\amdxata.sys,Kernel driver,Boot Start, Tue Jul 14 04:37:09 2009Z,AppID,@%systemroot%\system32\appidsvc.dll;-102,\SystemRoot\system32\drivers\appid.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,AppIDSvc,@%systemroot%\system32\appidsvc.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,AppIDSvc\Parameters,,%SystemRoot%\System32\appidsvc.dll,,, Tue Jul 14 04:37:09 2009Z,Appinfo,@%systemroot%\system32\appinfo.dll;-100,%SystemRoot%\system32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,Appinfo\Parameters,,%SystemRoot%\System32\appinfo.dll,,, Tue Jul 14 04:37:09 2009Z,AudioEndpointBuilder,@%SystemRoot%\system32\audiosrv.dll;-204,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,AudioEndpointBuilder\Parameters,,%SystemRoot%\System32\Audiosrv.dll,,, Tue Jul 14 04:37:09 2009Z,Audiosrv,@%SystemRoot%\system32\audiosrv.dll;-200,%SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted,Share_Process,Auto Start,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,Audiosrv\Parameters,,%SystemRoot%\System32\Audiosrv.dll,,, Tue Jul 14 04:37:09 2009Z,AxInstSV,@%SystemRoot%\system32\AxInstSV.dll;-103,%SystemRoot%\system32\svchost.exe -k AxInstSVGroup,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,AxInstSV\Parameters,,%SystemRoot%\System32\AxInstSV.dll,,, Tue Jul 14 04:37:09 2009Z,b06bdrv,Broadcom NetXtreme II VBD,\SystemRoot\system32\DRIVERS\bxvbdx.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,BattC,,,,, Tue Jul 14 04:37:09 2009Z,BDESVC,@%SystemRoot%\system32\bdesvc.dll;-100,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,BFE,@%SystemRoot%\system32\bfe.dll;-1001,%systemroot%\system32\svchost.exe -k LocalServiceNoNetwork,Share_Process,Auto Start,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,BFE\Parameters,,%SystemRoot%\System32\bfe.dll,,, Tue Jul 14 04:37:09 2009Z,BrFiltLo,Brother USB Mass-Storage Lower Filter Driver,\SystemRoot\system32\DRIVERS\BrFiltLo.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,BrFiltUp,Brother USB Mass-Storage Upper Filter Driver,\SystemRoot\system32\DRIVERS\BrFiltUp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,Browser,@%systemroot%\system32\browser.dll;-100,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,Browser\Parameters,,%SystemRoot%\System32\browser.dll,,, Tue Jul 14 04:37:09 2009Z,Brserid,Brother MFC Serial Port Interface Driver (WDM),\SystemRoot\System32\Drivers\Brserid.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,BrSerWdm,Brother WDM Serial driver,\SystemRoot\System32\Drivers\BrSerWdm.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,BrUsbMdm,Brother MFC USB Fax Only Modem,\SystemRoot\System32\Drivers\BrUsbMdm.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,BrUsbSer,Brother MFC USB Serial WDM Driver,\SystemRoot\System32\Drivers\BrUsbSer.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,BTHMODEM,Bluetooth Serial Communications Driver,\SystemRoot\system32\DRIVERS\bthmodem.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,BTHPORT,,,,, Tue Jul 14 04:37:09 2009Z,bthserv,@%SystemRoot%\System32\bthserv.dll;-101,%SystemRoot%\system32\svchost.exe -k bthsvcs,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,bthserv\Parameters,,%SystemRoot%\system32\bthserv.dll,,, Tue Jul 14 04:37:09 2009Z,CertPropSvc,@%SystemRoot%\System32\certprop.dll;-11,%SystemRoot%\system32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,CertPropSvc\Parameters,,%SystemRoot%\System32\certprop.dll,,, Tue Jul 14 04:37:09 2009Z,circlass,Consumer IR Devices,\SystemRoot\system32\DRIVERS\circlass.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,CmBatt,Microsoft ACPI Control Method Battery Driver,\SystemRoot\system32\DRIVERS\CmBatt.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,COMSysApp,@comres.dll;-947,%SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235},Own_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,crcdisk,Crcdisk Filter Driver,\SystemRoot\system32\DRIVERS\crcdisk.sys,Kernel driver,Disabled, Tue Jul 14 04:37:09 2009Z,crypt32,,,,, Tue Jul 14 04:37:09 2009Z,CryptSvc,@%SystemRoot%\system32\cryptsvc.dll;-1001,%SystemRoot%\system32\svchost.exe -k NetworkService,Share_Process,Auto Start,NT Authority\NetworkService Tue Jul 14 04:37:09 2009Z,CryptSvc\Parameters,,%SystemRoot%\system32\cryptsvc.dll,,, Tue Jul 14 04:37:09 2009Z,DCLocator,,,,, Tue Jul 14 04:37:09 2009Z,DcomLaunch,@oleres.dll;-5012,%SystemRoot%\system32\svchost.exe -k DcomLaunch,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,defragsvc,@%SystemRoot%\system32\defragsvc.dll;-101,%SystemRoot%\system32\svchost.exe -k defragsvc,Own_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,dot3svc,@%systemroot%\system32\dot3svc.dll;-1102,%SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,dot3svc\Parameters,,%SystemRoot%\System32\dot3svc.dll,,, Tue Jul 14 04:37:09 2009Z,ebdrv,Broadcom NetXtreme II 10 GigE VBD,\SystemRoot\system32\DRIVERS\evbdx.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,EFS,@%SystemRoot%\system32\efssvc.dll;-100,%SystemRoot%\System32\lsass.exe,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,ErrDev,Microsoft Hardware Error Device Driver,\SystemRoot\system32\DRIVERS\errdev.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,ESENT,,,,, Tue Jul 14 04:37:09 2009Z,EventSystem,@comres.dll;-2450,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Auto Start,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,EventSystem\Parameters,,%systemroot%\system32\es.dll,,, Tue Jul 14 04:37:09 2009Z,Fax,@%systemroot%\system32\fxsresm.dll;-118,%systemroot%\system32\fxssvc.exe,Own_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,fdPHost,@%systemroot%\system32\fdPHost.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,fdPHost\Parameters,,%SystemRoot%\system32\fdPHost.dll,,, Tue Jul 14 04:37:09 2009Z,FDResPub,@%systemroot%\system32\fdrespub.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,FDResPub\Parameters,,%SystemRoot%\system32\fdrespub.dll,,, Tue Jul 14 04:37:09 2009Z,Filetrace,@%SystemRoot%\system32\drivers\filetrace.sys;-10001,system32\drivers\filetrace.sys,File system driver,Manual, Tue Jul 14 04:37:09 2009Z,FontCache,@%systemroot%\system32\FntCache.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,FontCache\Parameters,,%SystemRoot%\system32\FntCache.dll,,, Tue Jul 14 04:37:09 2009Z,FontCache3.0.0.0,@%SystemRoot%\system32\PresentationHost.exe;-3309,%systemroot%\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe,Own_Process,Manual,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,FsDepends,@%SystemRoot%\system32\drivers\fsdepends.sys;-10001,System32\drivers\FsDepends.sys,File system driver,Manual, Tue Jul 14 04:37:09 2009Z,gagp30kx,Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms,\SystemRoot\system32\DRIVERS\gagp30kx.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,hcw85cir,Hauppauge Consumer Infrared Receiver,\SystemRoot\system32\drivers\hcw85cir.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,HidBatt,HID UPS Battery Driver,\SystemRoot\system32\DRIVERS\HidBatt.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,HidBth,Microsoft Bluetooth HID Miniport,\SystemRoot\system32\DRIVERS\hidbth.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,HidIr,Microsoft Infrared HID Driver,\SystemRoot\system32\DRIVERS\hidir.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,hidserv,@%SystemRoot%\System32\hidserv.dll;-101,%SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,hidserv\Parameters,,%SystemRoot%\system32\hidserv.dll,,, Tue Jul 14 04:37:09 2009Z,hkmsvc,@%SystemRoot%\system32\kmsvc.dll;-6,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,HomeGroupListener\Parameters,,%SystemRoot%\system32\ListSvc.dll,,, Tue Jul 14 04:37:09 2009Z,HomeGroupProvider,@%SystemRoot%\System32\provsvc.dll;-100,%SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,HomeGroupProvider\Parameters,,%SystemRoot%\system32\provsvc.dll,,, Tue Jul 14 04:37:09 2009Z,idsvc,@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll;-8193,"%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe",Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,IKEEXT,@%SystemRoot%\system32\ikeext.dll;-501,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,IKEEXT\Parameters,,%SystemRoot%\System32\ikeext.dll,,, Tue Jul 14 04:37:09 2009Z,inetaccs,,,,, Tue Jul 14 04:37:09 2009Z,IPBusEnum,@%systemroot%\system32\IPBusEnum.dll;-102,%SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,IPBusEnum\Parameters,,%SystemRoot%\system32\ipbusenum.dll,,, Tue Jul 14 04:37:09 2009Z,IpFilterDriver,@%systemroot%\system32\rascfg.dll;-32013,system32\DRIVERS\ipfltdrv.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,iphlpsvc,@%SystemRoot%\system32\iphlpsvc.dll;-500,%SystemRoot%\System32\svchost.exe -k NetSvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,IPMIDRV,,\SystemRoot\system32\DRIVERS\IPMIDrv.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,IPNAT,IP Network Address Translator,System32\drivers\ipnat.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,IRENUM,@%SystemRoot%\system32\drivers\irenum.sys;-100,system32\drivers\irenum.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,iScsiPrt,iScsiPort Driver,\SystemRoot\system32\DRIVERS\msiscsi.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,KeyIso,@keyiso.dll;-100,%SystemRoot%\system32\lsass.exe,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,KtmRm,@comres.dll;-2946,%SystemRoot%\System32\svchost.exe -k NetworkServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,KtmRm\Parameters,,%systemroot%\system32\msdtckrm.dll,,, Tue Jul 14 04:37:09 2009Z,ldap,,,,, Tue Jul 14 04:37:09 2009Z,lltdsvc,@%SystemRoot%\system32\lltdres.dll;-1,%SystemRoot%\System32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,lltdsvc\Parameters,,%SystemRoot%\System32\lltdsvc.dll,,, Tue Jul 14 04:37:09 2009Z,Lsa,,,,, Tue Jul 14 04:37:09 2009Z,MMCSS,@%systemroot%\system32\mmcss.dll;-100,%SystemRoot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,MMCSS\Parameters,,%SystemRoot%\system32\mmcss.dll,,, Tue Jul 14 04:37:09 2009Z,Modem,,system32\drivers\modem.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,MpsSvc,@%SystemRoot%\system32\FirewallAPI.dll;-23090,%SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork,Share_Process,Auto Start,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,MpsSvc\Parameters,,%SystemRoot%\system32\mpssvc.dll,,, Tue Jul 14 04:37:09 2009Z,MRxDAV,@%systemroot%\system32\webclnt.dll;-104,\SystemRoot\system32\drivers\mrxdav.sys,File system driver,Manual, Tue Jul 14 04:37:09 2009Z,MSDTC,@comres.dll;-2797,%SystemRoot%\System32\msdtc.exe,Own_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,MSDTC Bridge 3.0.0.0,,,,, Tue Jul 14 04:37:09 2009Z,mshidkmdf,@%SystemRoot%\system32\drivers\mshidkmdf.sys;-100,\SystemRoot\System32\drivers\mshidkmdf.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,MSiSCSI,@%SystemRoot%\system32\iscsidsc.dll;-5000,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,MSiSCSI\Parameters,,%systemroot%\system32\iscsiexe.dll,,, Tue Jul 14 04:37:09 2009Z,msiserver,@%SystemRoot%\system32\msimsg.dll;-27,%systemroot%\system32\msiexec.exe /V,Own_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,MsRPC,,,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,MSSCNTRS,,,,, Tue Jul 14 04:37:09 2009Z,MTConfig,Microsoft Input Configuration Driver,\SystemRoot\system32\DRIVERS\MTConfig.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,napagent,@%SystemRoot%\system32\qagentrt.dll;-6,%SystemRoot%\System32\svchost.exe -k NetworkService,Share_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,Netlogon,@%SystemRoot%\System32\netlogon.dll;-102,%systemroot%\system32\lsass.exe,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,Netman,@%SystemRoot%\system32\netman.dll;-109,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,Netman\Parameters,,%SystemRoot%\System32\netman.dll,,, Tue Jul 14 04:37:09 2009Z,netprofm,@%SystemRoot%\system32\netprofm.dll;-202,%SystemRoot%\System32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,netprofm\Parameters,,%SystemRoot%\System32\netprofm.dll,,, Tue Jul 14 04:37:09 2009Z,NetTcpPortSharing,@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll;-8201,"%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe",Share_Process,Disabled,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,NlaSvc,@%SystemRoot%\System32\nlasvc.dll;-1,%SystemRoot%\System32\svchost.exe -k NetworkService,Share_Process,Auto Start,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,nsi,@%SystemRoot%\system32\nsisvc.dll;-200,%systemroot%\system32\svchost.exe -k LocalService,Share_Process,Auto Start,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,NTDS,,,,, Tue Jul 14 04:37:09 2009Z,nv_agp,NVIDIA nForce AGP Bus Filter,\SystemRoot\system32\DRIVERS\nv_agp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,ohci1394,1394 OHCI Compliant Host Controller (Legacy),\SystemRoot\system32\DRIVERS\ohci1394.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,p2pimsvc,@%SystemRoot%\system32\pnrpsvc.dll;-8004,%SystemRoot%\System32\svchost.exe -k LocalServicePeerNet,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,p2psvc,@%SystemRoot%\system32\p2psvc.dll;-8006,%SystemRoot%\System32\svchost.exe -k LocalServicePeerNet,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,PcaSvc,@%SystemRoot%\system32\pcasvc.dll;-1,%systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,PcaSvc\Parameters,,%SystemRoot%\System32\pcasvc.dll,,, Tue Jul 14 04:37:09 2009Z,pcmcia,,\SystemRoot\system32\DRIVERS\pcmcia.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,PerfDisk,,,,, Tue Jul 14 04:37:09 2009Z,PerfNet,,,,, Tue Jul 14 04:37:09 2009Z,PerfOS,,,,, Tue Jul 14 04:37:09 2009Z,PerfProc,,,,, Tue Jul 14 04:37:09 2009Z,pla,@%systemroot%\system32\pla.dll;-500,%SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,pla\Parameters,,%systemroot%\system32\pla.dll,,, Tue Jul 14 04:37:09 2009Z,PlugPlay,@%SystemRoot%\system32\umpnpmgr.dll;-100,%SystemRoot%\system32\svchost.exe -k DcomLaunch,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,PlugPlay\Parameters,,%SystemRoot%\system32\umpnpmgr.dll,,, Tue Jul 14 04:37:09 2009Z,PNRPAutoReg,@%SystemRoot%\system32\pnrpauto.dll;-8002,%SystemRoot%\System32\svchost.exe -k LocalServicePeerNet,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,PNRPsvc,@%SystemRoot%\system32\pnrpsvc.dll;-8000,%SystemRoot%\System32\svchost.exe -k LocalServicePeerNet,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,PNRPsvc\Parameters,,%SystemRoot%\system32\pnrpsvc.dll,,, Tue Jul 14 04:37:09 2009Z,PolicyAgent,@%SystemRoot%\System32\polstore.dll;-5010,%SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted,Share_Process,Manual,NT Authority\NetworkService Tue Jul 14 04:37:09 2009Z,PolicyAgent\Parameters,,%SystemRoot%\System32\ipsecsvc.dll,,, Tue Jul 14 04:37:09 2009Z,PortProxy,,,,, Tue Jul 14 04:37:09 2009Z,Power,@%SystemRoot%\system32\umpo.dll;-100,%SystemRoot%\system32\svchost.exe -k DcomLaunch,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,Power\Parameters,,%SystemRoot%\system32\umpo.dll,,, Tue Jul 14 04:37:09 2009Z,Processor,Processor Driver,\SystemRoot\system32\DRIVERS\processr.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,ProfSvc,@%systemroot%\system32\profsvc.dll;-300,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,ProfSvc\Parameters,,%systemroot%\system32\profsvc.dll,,, Tue Jul 14 04:37:09 2009Z,ProtectedStorage,@%systemroot%\system32\psbase.dll;-300,%SystemRoot%\system32\lsass.exe,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,QWAVE,@%SystemRoot%\system32\qwave.dll;-1,%windir%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,QWAVE\Parameters,,%windir%\system32\qwave.dll,,, Tue Jul 14 04:37:09 2009Z,QWAVEdrv,@%SystemRoot%\system32\drivers\qwavedrv.sys;-1,\SystemRoot\system32\drivers\qwavedrv.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,RasAcd,Remote Access Auto Connection Driver,System32\DRIVERS\rasacd.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,RDPDD,,,,, Tue Jul 14 04:37:09 2009Z,RDPNP,@%systemroot%\system32\drprov.dll;-100,,,, Tue Jul 14 04:37:09 2009Z,RDPWD,RDP Winstation Driver,,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,RemoteRegistry,@regsvc.dll;-1,%SystemRoot%\system32\svchost.exe -k regsvc,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,RemoteRegistry\Parameters,,%SystemRoot%\system32\regsvc.dll,,, Tue Jul 14 04:37:09 2009Z,RpcLocator,@%systemroot%\system32\Locator.exe;-2,%SystemRoot%\system32\locator.exe,Own_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,RpcSs,@oleres.dll;-5010,%SystemRoot%\system32\svchost.exe -k rpcss,Share_Process,Auto Start,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,SCardSvr,@%SystemRoot%\System32\SCardSvr.dll;-1,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,SCardSvr\Parameters,,%SystemRoot%\System32\SCardSvr.dll,,, Tue Jul 14 04:37:09 2009Z,scfilter,@%SystemRoot%\System32\drivers\scfilter.sys;-11,System32\DRIVERS\scfilter.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,Schedule,@%SystemRoot%\system32\schedsvc.dll;-100,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,Schedule\Parameters,,%systemroot%\system32\schedsvc.dll,,, Tue Jul 14 04:37:09 2009Z,SCPolicySvc,@%SystemRoot%\System32\certprop.dll;-13,%SystemRoot%\system32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,SCPolicySvc\Parameters,,%SystemRoot%\System32\certprop.dll,,, Tue Jul 14 04:37:09 2009Z,SDRSVC,@%SystemRoot%\system32\sdrsvc.dll;-107,%SystemRoot%\system32\svchost.exe -k SDRSVC,Own_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,seclogon,@%SystemRoot%\system32\seclogon.dll;-7001,%windir%\system32\svchost.exe -k netsvcs,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,seclogon\Parameters,,%windir%\system32\seclogon.dll,,, Tue Jul 14 04:37:09 2009Z,SENS,@%SystemRoot%\system32\Sens.dll;-200,%SystemRoot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,SENS\Parameters,,%SystemRoot%\System32\sens.dll,,, Tue Jul 14 04:37:09 2009Z,sermouse,Serial Mouse Driver,\SystemRoot\system32\DRIVERS\sermouse.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,ServiceModelEndpoint 3.0.0.0,,,,, Tue Jul 14 04:37:09 2009Z,ServiceModelOperation 3.0.0.0,,,,, Tue Jul 14 04:37:09 2009Z,ServiceModelService 3.0.0.0,,,,, Tue Jul 14 04:37:09 2009Z,SessionEnv,@%SystemRoot%\System32\SessEnv.dll;-1026,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,SessionEnv\Parameters,,%SystemRoot%\system32\sessenv.dll,,, Tue Jul 14 04:37:09 2009Z,sffdisk,SFF Storage Class Driver,\SystemRoot\system32\DRIVERS\sffdisk.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,sffp_mmc,SFF Storage Protocol Driver for MMC,\SystemRoot\system32\DRIVERS\sffp_mmc.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,sffp_sd,SFF Storage Protocol Driver for SDBus,\SystemRoot\system32\DRIVERS\sffp_sd.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,sfloppy,High-Capacity Floppy Disk Drive,\SystemRoot\system32\DRIVERS\sfloppy.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,SharedAccess\Parameters,,%SystemRoot%\System32\ipnathlp.dll,,, Tue Jul 14 04:37:09 2009Z,ShellHWDetection,@%SystemRoot%\System32\shsvcs.dll;-12288,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,ShellHWDetection\Parameters,,%SystemRoot%\System32\shsvcs.dll,,, Tue Jul 14 04:37:09 2009Z,sisagp,SIS AGP Bus Filter,\SystemRoot\system32\DRIVERS\sisagp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,SMSvcHost 3.0.0.0,,,,, Tue Jul 14 04:37:09 2009Z,SNMPTRAP,@%SystemRoot%\system32\snmptrap.exe;-3,%SystemRoot%\System32\snmptrap.exe,Own_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,Spooler,@%systemroot%\system32\spoolsv.exe;-1,%SystemRoot%\System32\spoolsv.exe,272,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,sppsvc,@%SystemRoot%\system32\sppsvc.exe;-101,%SystemRoot%\system32\sppsvc.exe,Own_Process,Auto Start,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,sppuinotify,@%SystemRoot%\system32\sppuinotify.dll;-103,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,sppuinotify\Parameters,,%SystemRoot%\system32\sppuinotify.dll,,, Tue Jul 14 04:37:09 2009Z,SSDPSRV,@%systemroot%\system32\ssdpsrv.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,SSDPSRV\Parameters,,%SystemRoot%\System32\ssdpsrv.dll,,, Tue Jul 14 04:37:09 2009Z,SstpSvc,@%SystemRoot%\system32\sstpsvc.dll;-200,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Manual,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,StiSvc,@%SystemRoot%\system32\wiaservc.dll;-9,%SystemRoot%\system32\svchost.exe -k imgsvc,Own_Process,Manual,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,StiSvc\Parameters,,%SystemRoot%\System32\wiaservc.dll,,, Tue Jul 14 04:37:09 2009Z,swprv,@%SystemRoot%\System32\swprv.dll;-103,%SystemRoot%\System32\svchost.exe -k swprv,Own_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,swprv\Parameters,,%Systemroot%\System32\swprv.dll,,, Tue Jul 14 04:37:09 2009Z,SysMain,@%SystemRoot%\system32\sysmain.dll;-1000,%systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,SysMain\Parameters,,%systemroot%\system32\sysmain.dll,,, Tue Jul 14 04:37:09 2009Z,TabletInputService,@%SystemRoot%\system32\TabSvc.dll;-100,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,TabletInputService\Parameters,,%SystemRoot%\System32\TabSvc.dll,,, Tue Jul 14 04:37:09 2009Z,TapiSrv,@%SystemRoot%\system32\tapisrv.dll;-10100,%SystemRoot%\System32\svchost.exe -k NetworkService,Share_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,TapiSrv\Parameters,,%SystemRoot%\System32\tapisrv.dll,,, Tue Jul 14 04:37:09 2009Z,TBS,@%SystemRoot%\system32\tbssvc.dll;-100,%SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,TCPIP6TUNNEL,,,,, Tue Jul 14 04:37:09 2009Z,TCPIPTUNNEL,,,,, Tue Jul 14 04:37:09 2009Z,TDPIPE,TDPIPE,system32\drivers\tdpipe.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,TDTCP,TDTCP,system32\drivers\tdtcp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,TermService,@%SystemRoot%\System32\termsrv.dll;-268,%SystemRoot%\System32\svchost.exe -k NetworkService,Share_Process,Manual,NT Authority\NetworkService Tue Jul 14 04:37:09 2009Z,TermService\Parameters,,%SystemRoot%\System32\termsrv.dll,,, Tue Jul 14 04:37:09 2009Z,Themes,@%SystemRoot%\System32\themeservice.dll;-8192,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,Themes\Parameters,,%SystemRoot%\system32\themeservice.dll,,, Tue Jul 14 04:37:09 2009Z,THREADORDER,@%systemroot%\system32\mmcss.dll;-102,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,TSDDD,,,,, Tue Jul 14 04:37:09 2009Z,tssecsrv,@%SystemRoot%\System32\DRIVERS\tssecsrv.sys;-101,System32\DRIVERS\tssecsrv.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,uagp35,Microsoft AGPv3.5 Filter,\SystemRoot\system32\DRIVERS\uagp35.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,UGatherer,,,,, Tue Jul 14 04:37:09 2009Z,UGTHRSVC,,,,, Tue Jul 14 04:37:09 2009Z,UI0Detect,@%SystemRoot%\system32\ui0detect.exe;-101,%SystemRoot%\system32\UI0Detect.exe,272,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,uliagpkx,Uli AGP Bus Filter,\SystemRoot\system32\DRIVERS\uliagpkx.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,UmPass,Microsoft UMPass Driver,\SystemRoot\system32\DRIVERS\umpass.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,upnphost,@%systemroot%\system32\upnphost.dll;-213,%SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,upnphost\Parameters,,%SystemRoot%\System32\upnphost.dll,,, Tue Jul 14 04:37:09 2009Z,usbccgp,Microsoft USB Generic Parent Driver,\SystemRoot\system32\DRIVERS\usbccgp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,usbcir,eHome Infrared Receiver (USBCIR),\SystemRoot\system32\DRIVERS\usbcir.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,usbohci,Microsoft USB Open Host Controller Miniport Driver,\SystemRoot\system32\DRIVERS\usbohci.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,usbprint,Microsoft USB PRINTER Class,\SystemRoot\system32\DRIVERS\usbprint.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,UxSms,@%SystemRoot%\system32\dwm.exe;-2000,%SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Auto Start,localSystem Tue Jul 14 04:37:09 2009Z,UxSms\Parameters,,%SystemRoot%\System32\uxsms.dll,,, Tue Jul 14 04:37:09 2009Z,VaultSvc,@%SystemRoot%\system32\vaultsvc.dll;-1003,%SystemRoot%\system32\lsass.exe,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,vds,@%SystemRoot%\system32\vds.exe;-100,%SystemRoot%\System32\vds.exe,Own_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,vhdmp,,\SystemRoot\system32\DRIVERS\vhdmp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,viaagp,VIA AGP Bus Filter,\SystemRoot\system32\DRIVERS\viaagp.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,ViaC7,VIA C7 Processor Driver,\SystemRoot\system32\DRIVERS\viac7.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,VSS,@%systemroot%\system32\vssvc.exe;-102,%systemroot%\system32\vssvc.exe,Own_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,vwifibus,@%SystemRoot%\System32\drivers\vwifibus.sys;-257,\SystemRoot\System32\drivers\vwifibus.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,W3SVC,,,,, Tue Jul 14 04:37:09 2009Z,WacomPen,Wacom Serial Pen HID Driver,\SystemRoot\system32\DRIVERS\wacompen.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,wbengine,@%systemroot%\system32\wbengine.exe;-104,"%systemroot%\system32\wbengine.exe",Own_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,WbioSrvc,@%systemroot%\system32\wbiosrvc.dll;-100,%SystemRoot%\system32\svchost.exe -k WbioSvcGroup,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,WbioSrvc\Parameters,,%SystemRoot%\System32\wbiosrvc.dll,,, Tue Jul 14 04:37:09 2009Z,wcncsvc,@%SystemRoot%\system32\wcncsvc.dll;-3,%SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,wcncsvc\Parameters,,%SystemRoot%\System32\wcncsvc.dll,,, Tue Jul 14 04:37:09 2009Z,WcsPlugInService,@%SystemRoot%\system32\WcsPlugInService.dll;-200,%SystemRoot%\system32\svchost.exe -k wcssvc,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,WcsPlugInService\Parameters,,%SystemRoot%\System32\WcsPlugInService.dll,,, Tue Jul 14 04:37:09 2009Z,WebClient,@%systemroot%\system32\webclnt.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,WebClient\Parameters,,%SystemRoot%\System32\webclnt.dll,,, Tue Jul 14 04:37:09 2009Z,Wecsvc,@%SystemRoot%\system32\wecsvc.dll;-200,%SystemRoot%\system32\svchost.exe -k NetworkService,Share_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,Wecsvc\Parameters,,%SystemRoot%\system32\wecsvc.dll,,, Tue Jul 14 04:37:09 2009Z,wercplsupport,@%SystemRoot%\System32\wercplsupport.dll;-101,%SystemRoot%\System32\svchost.exe -k netsvcs,Share_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,wercplsupport\Parameters,,%SystemRoot%\System32\wercplsupport.dll,,, Tue Jul 14 04:37:09 2009Z,WerSvc,@%SystemRoot%\System32\wersvc.dll;-100,%SystemRoot%\System32\svchost.exe -k WerSvcGroup,Share_Process,Manual,localSystem Tue Jul 14 04:37:09 2009Z,WIMMount,WIMMount,system32\drivers\wimmount.sys,File system driver,Manual, Tue Jul 14 04:37:09 2009Z,WinDefend,@%ProgramFiles%\Windows Defender\MsMpRes.dll;-103,%SystemRoot%\System32\svchost.exe -k secsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,WinDefend\Parameters,,%ProgramFiles%\Windows Defender\mpsvc.dll,,, Tue Jul 14 04:37:09 2009Z,Windows Workflow Foundation 3.0.0.0,,,,, Tue Jul 14 04:37:09 2009Z,WinHttpAutoProxySvc,@%SystemRoot%\system32\winhttp.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalService,Share_Process,Manual,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,WinHttpAutoProxySvc\Parameters,,winhttp.dll,,, Tue Jul 14 04:37:09 2009Z,WinRM,@%Systemroot%\system32\wsmsvc.dll;-101,%SystemRoot%\System32\svchost.exe -k NetworkService,Share_Process,Manual,NT AUTHORITY\NetworkService Tue Jul 14 04:37:09 2009Z,WinRM\Parameters,,%SystemRoot%\system32\WsmSvc.dll,,, Tue Jul 14 04:37:09 2009Z,WinSock2,,,,, Tue Jul 14 04:37:09 2009Z,Wlansvc,@%SystemRoot%\System32\wlansvc.dll;-257,%SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,Wlansvc\Parameters,,%SystemRoot%\System32\wlansvc.dll,,, Tue Jul 14 04:37:09 2009Z,WmiAcpi,Microsoft Windows Management Interface for ACPI,\SystemRoot\system32\DRIVERS\wmiacpi.sys,Kernel driver,Manual, Tue Jul 14 04:37:09 2009Z,WPCSvc,@%SystemRoot%\system32\wpcsvc.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted,Share_Process,Manual,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,WPDBusEnum,@%SystemRoot%\system32\wpdbusenum.dll;-100,%SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted,Share_Process,Manual,LocalSystem Tue Jul 14 04:37:09 2009Z,WPDBusEnum\Parameters,,%SystemRoot%\system32\wpdbusenum.dll,,, Tue Jul 14 04:37:09 2009Z,ws2ifsl,@%systemroot%\System32\drivers\ws2ifsl.sys;-1000,\SystemRoot\system32\drivers\ws2ifsl.sys,Kernel driver,Disabled, Tue Jul 14 04:37:09 2009Z,wscsvc,@%SystemRoot%\System32\wscsvc.dll;-200,%SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted,Share_Process,Auto Start,NT AUTHORITY\LocalService Tue Jul 14 04:37:09 2009Z,wscsvc\Parameters,,%SystemRoot%\System32\wscsvc.dll,,, Tue Jul 14 04:37:09 2009Z,WSearchIdxPi,,,,, Tue Jul 14 04:37:09 2009Z,wuauserv,@%systemroot%\system32\wuaueng.dll;-105,%systemroot%\system32\svchost.exe -k netsvcs,Share_Process,Auto Start,LocalSystem Tue Jul 14 04:37:09 2009Z,wuauserv\Parameters,,%systemroot%\system32\wuaueng.dll,,, Tue Jul 14 04:37:09 2009Z,wudfsvc\Parameters,,%SystemRoot%\System32\WUDFSvc.dll,,, Tue Jul 14 04:37:09 2009Z,WwanSvc,@%SystemRoot%\System32\wwansvc.dll;-257,%SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork,Share_Process,Manual,NT Authority\LocalService Tue Jul 14 04:37:09 2009Z,WwanSvc\Parameters,,%SystemRoot%\System32\wwansvc.dll,,, Tue Jul 14 04:37:09 2009Z,xmlprov,,,,, Tue Jul 14 02:04:11 2009Z,DcomLaunch\Parameters,,%SystemRoot%\system32\rpcss.dll,,, Tue Jul 14 02:04:11 2009Z,RpcSs\Parameters,,%SystemRoot%\system32\rpcss.dll,,, ---------------------------------------- Fri Oct 1 11:02:20 2010Z BITS -> %SystemRoot%\System32\qmgr.dll Thu Sep 16 19:09:29 2010Z SharedAccess -> %SystemRoot%\System32\ipnathlp.dll Thu Sep 16 17:07:58 2010Z wudfsvc -> %SystemRoot%\System32\WUDFSvc.dll Thu Sep 16 17:06:55 2010Z EapHost -> %SystemRoot%\System32\eapsvc.dll Thu Sep 16 15:46:23 2010Z HomeGroupListener -> %SystemRoot%\system32\ListSvc.dll Tue Jul 14 07:51:56 2009Z CscService -> %SystemRoot%\System32\cscsvc.dll Tue Jul 14 07:50:57 2009Z AppMgmt -> %SystemRoot%\System32\appmgmts.dll Mcx2Svc -> %SystemRoot%\system32\Mcx2Svc.dll PeerDistSvc -> %SystemRoot%\system32\peerdistsvc.dll SensrSvc -> %SystemRoot%\system32\sensrsvc.dll UmRdpService -> %SystemRoot%\System32\umrdp.dll Tue Jul 14 04:41:29 2009Z TrkWks -> %SystemRoot%\System32\trkwks.dll Tue Jul 14 04:41:23 2009Z RpcEptMapper -> %SystemRoot%\System32\RpcEpMap.dll Tue Jul 14 04:41:20 2009Z LanmanServer -> %SystemRoot%\system32\srvsvc.dll Tue Jul 14 04:41:18 2009Z LanmanWorkstation -> %SystemRoot%\System32\wkssvc.dll Tue Jul 14 04:41:11 2009Z Winmgmt -> %SystemRoot%\system32\wbem\WMIsvc.dll Tue Jul 14 04:39:44 2009Z lmhosts -> %SystemRoot%\System32\lmhsvc.dll Tue Jul 14 04:39:43 2009Z Dhcp -> %SystemRoot%\system32\dhcpcore.dll Tue Jul 14 04:37:50 2009Z W32Time -> %systemroot%\system32\w32time.dll Tue Jul 14 04:37:48 2009Z Dnscache -> %SystemRoot%\System32\dnsrslvr.dll Tue Jul 14 04:37:47 2009Z RemoteAccess -> %SystemRoot%\System32\mprdim.dll Tue Jul 14 04:37:39 2009Z RasAuto -> %SystemRoot%\System32\rasauto.dll RasMan -> %SystemRoot%\System32\rasmans.dll Tue Jul 14 04:37:28 2009Z DPS -> %SystemRoot%\system32\dps.dll WdiServiceHost -> %SystemRoot%\system32\wdi.dll WdiSystemHost -> %SystemRoot%\system32\wdi.dll Tue Jul 14 04:37:24 2009Z gpsvc -> %SystemRoot%\System32\gpsvc.dll Tue Jul 14 04:37:09 2009Z AeLookupSvc -> %SystemRoot%\System32\aelupsvc.dll AppIDSvc -> %SystemRoot%\System32\appidsvc.dll Appinfo -> %SystemRoot%\System32\appinfo.dll AudioEndpointBuilder -> %SystemRoot%\System32\Audiosrv.dll Audiosrv -> %SystemRoot%\System32\Audiosrv.dll AxInstSV -> %SystemRoot%\System32\AxInstSV.dll BDESVC -> %SystemRoot%\System32\bdesvc.dll BFE -> %SystemRoot%\System32\bfe.dll Browser -> %SystemRoot%\System32\browser.dll bthserv -> %SystemRoot%\system32\bthserv.dll CertPropSvc -> %SystemRoot%\System32\certprop.dll CryptSvc -> %SystemRoot%\system32\cryptsvc.dll DcomLaunch -> %SystemRoot%\system32\rpcss.dll defragsvc -> %Systemroot%\System32\defragsvc.dll dot3svc -> %SystemRoot%\System32\dot3svc.dll EventSystem -> %systemroot%\system32\es.dll fdPHost -> %SystemRoot%\system32\fdPHost.dll FDResPub -> %SystemRoot%\system32\fdrespub.dll FontCache -> %SystemRoot%\system32\FntCache.dll hidserv -> %SystemRoot%\system32\hidserv.dll hkmsvc -> %SystemRoot%\system32\kmsvc.dll HomeGroupProvider -> %SystemRoot%\system32\provsvc.dll IKEEXT -> %SystemRoot%\System32\ikeext.dll IPBusEnum -> %SystemRoot%\system32\ipbusenum.dll iphlpsvc -> %SystemRoot%\System32\iphlpsvc.dll KtmRm -> %systemroot%\system32\msdtckrm.dll lltdsvc -> %SystemRoot%\System32\lltdsvc.dll MMCSS -> %SystemRoot%\system32\mmcss.dll MpsSvc -> %SystemRoot%\system32\mpssvc.dll MSiSCSI -> %systemroot%\system32\iscsiexe.dll napagent -> %SystemRoot%\system32\qagentRT.dll Netman -> %SystemRoot%\System32\netman.dll netprofm -> %SystemRoot%\System32\netprofm.dll NlaSvc -> %SystemRoot%\System32\nlasvc.dll nsi -> %systemroot%\system32\nsisvc.dll p2pimsvc -> %SystemRoot%\system32\pnrpsvc.dll p2psvc -> %SystemRoot%\system32\p2psvc.dll PcaSvc -> %SystemRoot%\System32\pcasvc.dll pla -> %systemroot%\system32\pla.dll PlugPlay -> %SystemRoot%\system32\umpnpmgr.dll PNRPAutoReg -> %SystemRoot%\system32\pnrpauto.dll PNRPsvc -> %SystemRoot%\system32\pnrpsvc.dll PolicyAgent -> %SystemRoot%\System32\ipsecsvc.dll Power -> %SystemRoot%\system32\umpo.dll ProfSvc -> %systemroot%\system32\profsvc.dll QWAVE -> %windir%\system32\qwave.dll RemoteRegistry -> %SystemRoot%\system32\regsvc.dll RpcSs -> %SystemRoot%\system32\rpcss.dll SCardSvr -> %SystemRoot%\System32\SCardSvr.dll Schedule -> %systemroot%\system32\schedsvc.dll SCPolicySvc -> %SystemRoot%\System32\certprop.dll SDRSVC -> %Systemroot%\System32\SDRSVC.dll seclogon -> %windir%\system32\seclogon.dll SENS -> %SystemRoot%\System32\sens.dll SessionEnv -> %SystemRoot%\system32\sessenv.dll ShellHWDetection -> %SystemRoot%\System32\shsvcs.dll sppuinotify -> %SystemRoot%\system32\sppuinotify.dll SSDPSRV -> %SystemRoot%\System32\ssdpsrv.dll SstpSvc -> %SystemRoot%\system32\sstpsvc.dll StiSvc -> %SystemRoot%\System32\wiaservc.dll swprv -> %Systemroot%\System32\swprv.dll SysMain -> %systemroot%\system32\sysmain.dll TabletInputService -> %SystemRoot%\System32\TabSvc.dll TapiSrv -> %SystemRoot%\System32\tapisrv.dll TBS -> %SystemRoot%\System32\tbssvc.dll TermService -> %SystemRoot%\System32\termsrv.dll Themes -> %SystemRoot%\system32\themeservice.dll THREADORDER -> %SystemRoot%\system32\mmcss.dll upnphost -> %SystemRoot%\System32\upnphost.dll UxSms -> %SystemRoot%\System32\uxsms.dll WbioSrvc -> %SystemRoot%\System32\wbiosrvc.dll wcncsvc -> %SystemRoot%\System32\wcncsvc.dll WcsPlugInService -> %SystemRoot%\System32\WcsPlugInService.dll WebClient -> %SystemRoot%\System32\webclnt.dll Wecsvc -> %SystemRoot%\system32\wecsvc.dll wercplsupport -> %SystemRoot%\System32\wercplsupport.dll WerSvc -> %SystemRoot%\System32\WerSvc.dll WinDefend -> %ProgramFiles%\Windows Defender\mpsvc.dll WinHttpAutoProxySvc -> winhttp.dll WinRM -> %SystemRoot%\system32\WsmSvc.dll Wlansvc -> %SystemRoot%\System32\wlansvc.dll WPCSvc -> %SystemRoot%\System32\wpcsvc.dll WPDBusEnum -> %SystemRoot%\system32\wpdbusenum.dll wscsvc -> %SystemRoot%\System32\wscsvc.dll wuauserv -> %systemroot%\system32\wuaueng.dll WwanSvc -> %SystemRoot%\System32\wwansvc.dll ---------------------------------------- imagedev ControlSet001\Control\Class\{6BDD1FC6-810F-11D0-BEC7-08002BE2092F} Still Image Capture Devices ---------------------------------------- Fri Oct 1 14:07:43 2010 (UTC) LEGACY_EXFAT LEGACY_EXFAT\0000 - exFAT File System Driver Fri Oct 1 13:58:19 2010 (UTC) LEGACY_CDFS\0000 - CD/DVD File System Reader Fri Oct 1 13:58:15 2010 (UTC) LEGACY_BOWSER\0000 - @%systemroot%\system32\browser.dll,-102 LEGACY_MRXSMB\0000 - @%systemroot%\system32\wkssvc.dll,-1002 LEGACY_MRXSMB10\0000 - @%systemroot%\system32\wkssvc.dll,-1004 LEGACY_MRXSMB20\0000 - @%systemroot%\system32\wkssvc.dll,-1006 LEGACY_SRV\0000 - @%systemroot%\system32\srvsvc.dll,-102 LEGACY_SRV2\0000 - @%systemroot%\system32\srvsvc.dll,-104 LEGACY_SRVNET\0000 - srvnet Fri Oct 1 13:58:13 2010 (UTC) LEGACY_ASWFSBLK\0000 - aswFsBlk LEGACY_ASWMONFLT\0000 - aswMonFlt LEGACY_LUAFV\0000 - @%systemroot%\system32\drivers\luafv.sys,-100 Fri Oct 1 13:58:06 2010 (UTC) LEGACY_DFSC\0000 - @%systemroot%\system32\drivers\dfsc.sys,-101 LEGACY_MSFS\0000 - Msfs LEGACY_NETBIOS\0000 - NetBIOS Interface LEGACY_NPFS\0000 - Npfs LEGACY_RDBSS\0000 - @%systemroot%\system32\wkssvc.dll,-1000 Fri Oct 1 13:58:04 2010 (UTC) LEGACY_FILEINFO\0000 - @%SystemRoot%\system32\drivers\fileinfo.sys,-100 LEGACY_FLTMGR\0000 - @%SystemRoot%\system32\drivers\fltmgr.sys,-10001 LEGACY_FS_REC\0000 - Fs_Rec LEGACY_MUP\0000 - @%systemroot%\system32\drivers\mup.sys,-101 LEGACY_NTFS\0000 - Ntfs Fri Oct 1 13:57:53 2010 (UTC) LEGACY_AFD\0000 - @%systemroot%\system32\drivers\afd.sys,-1000 LEGACY_ASWRDR\0000 - aswRdr LEGACY_ASWSP\0000 - aswSP LEGACY_ASWTDI\0000 - avast! Network Shield Support LEGACY_BEEP\0000 - Beep LEGACY_CLFS\0000 - @%SystemRoot%\system32\clfs.sys,-100 LEGACY_CNG\0000 - CNG LEGACY_CSC\0000 - @%systemroot%\system32\cscsvc.dll,-202 LEGACY_DISCACHE\0000 - @%systemroot%\system32\drivers\discache.sys,-102 LEGACY_DXGKRNL\0000 - LDDM Graphics Subsystem LEGACY_FVEVOL\0000 - @%SystemRoot%\system32\drivers\fvevol.sys,-100 LEGACY_HTTP\0000 - @%SystemRoot%\system32\drivers\http.sys,-1 LEGACY_HWPOLICY\0000 - @%systemroot%\system32\drivers\hwpolicy.sys,-101 LEGACY_KSECDD\0000 - KSecDD LEGACY_KSECPKG\0000 - KSecPkg LEGACY_LLTDIO\0000 - Link-Layer Topology Discovery Mapper I/O Driver LEGACY_MOUNTMGR\0000 - @%SystemRoot%\system32\drivers\mountmgr.sys,-100 LEGACY_MPSDRV\0000 - @%SystemRoot%\system32\FirewallAPI.dll,-23092 LEGACY_MSISADRV\0000 - msisadrv LEGACY_NDIS\0000 - @%SystemRoot%\system32\drivers\ndis.sys,-200 LEGACY_NDPROXY\0000 - NDProxy LEGACY_NETBT\0000 - @%SystemRoot%\system32\drivers\netbt.sys,-2 LEGACY_NSIPROXY\0000 - @%SystemRoot%\system32\drivers\nsiproxy.sys,-2 LEGACY_NULL\0000 - Null LEGACY_PARVDM\0000 - Parvdm LEGACY_PCW\0000 - Performance Counters for Windows Driver LEGACY_PEAUTH\0000 - PEAUTH LEGACY_PSCHED\0000 - @%SystemRoot%\System32\drivers\pacer.sys,-101 LEGACY_RDPCDD\0000 - @%systemroot%\system32\DRIVERS\RDPCDD.sys,-100 LEGACY_RDPENCDD\0000 - @%systemroot%\system32\drivers\RDPENCDD.sys,-101 LEGACY_RDPREFMP\0000 - @%systemroot%\system32\drivers\RdpRefMp.sys,-101 LEGACY_RSPNDR\0000 - Link-Layer Topology Discovery Responder LEGACY_SBP2PORT\0000 - SBP-2 Transport/Protocol Bus Driver LEGACY_SECDRV\0000 - Security Driver LEGACY_SPLDR\0000 - Security Processor Loader Driver LEGACY_STORFLT\0000 - @%SystemRoot%\system32\vmstorfltres.dll,-1000 LEGACY_TCPIP\0000 - @%SystemRoot%\system32\tcpipcfg.dll,-50003 LEGACY_TCPIPREG\0000 - TCP/IP Registry Compatibility LEGACY_TDX\0000 - @%SystemRoot%\system32\tcpipcfg.dll,-50004 LEGACY_TRUECRYPT\0000 - truecrypt LEGACY_VGASAVE\0000 - VgaSave LEGACY_VOLMGRX\0000 - @%SystemRoot%\system32\drivers\volmgrx.sys,-100 LEGACY_VOLSNAP\0000 - Storage volumes LEGACY_WANARPV6\0000 - @%systemroot%\system32\rascfg.dll,-32012 LEGACY_WDF01000\0000 - Kernel Mode Driver Frameworks service LEGACY_WFPLWF\0000 - WFP Lightweight Filter LEGACY_WUDFPF\0000 - User Mode Driver Frameworks Platform Driver Fri Oct 1 11:13:37 2010 (UTC) LEGACY_FASTFAT\0000 - FAT12/16/32 File System Driver Fri Oct 1 11:02:05 2010 (UTC) LEGACY_SBP2PORT Fri Oct 1 06:39:27 2010 (UTC) LEGACY_AFD LEGACY_ASWFSBLK LEGACY_ASWMONFLT LEGACY_ASWRDR LEGACY_ASWSP LEGACY_ASWTDI LEGACY_BEEP LEGACY_BOWSER LEGACY_CDFS LEGACY_CLFS LEGACY_CNG LEGACY_CSC LEGACY_DFSC LEGACY_DISCACHE LEGACY_DXGKRNL LEGACY_FASTFAT LEGACY_FILEINFO LEGACY_FLTMGR LEGACY_FS_REC LEGACY_FVEVOL LEGACY_HTTP LEGACY_HWPOLICY LEGACY_KSECDD LEGACY_KSECPKG LEGACY_LLTDIO LEGACY_LUAFV LEGACY_MOUNTMGR LEGACY_MPSDRV LEGACY_MRXSMB LEGACY_MRXSMB10 LEGACY_MRXSMB20 LEGACY_MSFS LEGACY_MSISADRV LEGACY_MUP LEGACY_NDIS LEGACY_NDPROXY LEGACY_NETBIOS LEGACY_NETBT LEGACY_NPFS LEGACY_NSIPROXY LEGACY_NTFS LEGACY_NULL LEGACY_PARVDM LEGACY_PCW LEGACY_PEAUTH LEGACY_PSCHED LEGACY_RDBSS LEGACY_RDPCDD LEGACY_RDPENCDD LEGACY_RDPREFMP LEGACY_RSPNDR LEGACY_SECDRV LEGACY_SPLDR LEGACY_SRV LEGACY_SRV2 LEGACY_SRVNET LEGACY_STORFLT LEGACY_TCPIP LEGACY_TCPIPREG LEGACY_TDX LEGACY_TRUECRYPT LEGACY_UDFS LEGACY_UDFS\0000 - udfs LEGACY_VGASAVE LEGACY_VOLMGRX LEGACY_VOLSNAP LEGACY_WANARPV6 LEGACY_WDF01000 LEGACY_WFPLWF LEGACY_WUDFPF ---------------------------------------- StillImage Logging Level STICLI Logging Level = 0x4 STIMON Logging Level = 0x4 ---------------------------------------- @usbport.inf,%usb\root_hub.devicedesc%;USB Root Hub [ROOT_HUB\4&1c5b443c&0] Class : USB Service : usbhub Mfg : @usbport.inf,%generic.mfg%;(Standard USB Host Controller) @usbport.inf,%usb\root_hub.devicedesc%;USB Root Hub [ROOT_HUB\4&34aece3e&0] Class : USB Service : usbhub Mfg : @usbport.inf,%generic.mfg%;(Standard USB Host Controller) @usbport.inf,%usb\root_hub.devicedesc%;USB Root Hub [ROOT_HUB\4&765d3eb&0] Class : USB Service : usbhub Mfg : @usbport.inf,%generic.mfg%;(Standard USB Host Controller) @usbport.inf,%usb\root_hub.devicedesc%;USB Root Hub [ROOT_HUB\4&e097488&0] Class : USB Service : usbhub Mfg : @usbport.inf,%generic.mfg%;(Standard USB Host Controller) @usbport.inf,%usb\root_hub20.devicedesc%;USB Root Hub [ROOT_HUB20\4&353844c7&0] Class : USB Service : usbhub Mfg : @usbport.inf,%generic.mfg%;(Standard USB Host Controller) @usb.inf,%usb\class_09.devicedesc%;Generic USB Hub [VID_0409&PID_005A\5&10ef021e&0&5] Class : USB Service : usbhub Location Information: Port_#0005.Hub_#0005 Mfg : @usb.inf,%generichub.mfg%;(Generic USB Hub) HASP HL 3.21 [VID_0529&PID_0001\6&1cf8c0bd&0&4] Location Information: Port_#0004.Hub_#0006 @usbstor.inf,%genericbulkonly.devicedesc%;USB Mass Storage Device [VID_058F&PID_0001\058F00016378] Class : USB Service : USBSTOR Location Information: Port_#0006.Hub_#0005 Mfg : @usbstor.inf,%generic.mfg%;Compatible USB storage device @usbstor.inf,%genericbulkonly.devicedesc%;USB Mass Storage Device [VID_0951&PID_1603\0000000025] Class : USB Service : USBSTOR Location Information: Port_#0001.Hub_#0006 Mfg : @usbstor.inf,%generic.mfg%;Compatible USB storage device @usbstor.inf,%genericbulkonly.devicedesc%;USB Mass Storage Device [VID_12F7&PID_1D00\0778102C0441] Class : USB Service : USBSTOR Location Information: Port_#0001.Hub_#0006 Mfg : @usbstor.inf,%generic.mfg%;Compatible USB storage device ---------------------------------------- USBStor ControlSet001\Enum\USBStor Disk&Ven_Generic&Prod_USB_CF_Reader&Rev_1.01 [Fri Oct 1 06:39:27 2010] S/N: 058F00016378&0 [Fri Oct 1 13:58:11 2010] FriendlyName : Generic USB CF Reader USB Device Disk&Ven_Generic&Prod_USB_MS_Reader&Rev_1.03 [Fri Oct 1 06:39:27 2010] S/N: 058F00016378&1 [Fri Oct 1 13:58:11 2010] FriendlyName : Generic USB MS Reader USB Device Disk&Ven_Generic&Prod_USB_SD_Reader&Rev_1.00 [Fri Oct 1 06:39:27 2010] S/N: 058F00016378&2 [Fri Oct 1 13:58:11 2010] FriendlyName : Generic USB SD Reader USB Device Disk&Ven_Generic&Prod_USB_xD/SM_Reader&Rev_1.02 [Fri Oct 1 06:39:27 2010] S/N: 058F00016378&3 [Fri Oct 1 13:58:11 2010] FriendlyName : Generic USB xD/SM Reader USB Device Disk&Ven_Kingston&Prod_DataTraveler_2.0&Rev_1.00 [Fri Oct 1 06:39:27 2010] S/N: 0000000025&0 [Fri Oct 1 11:12:19 2010] FriendlyName : Kingston DataTraveler 2.0 USB Device Disk&Ven_Memorex&Prod_TD_Classic_003B&Rev_PMAP [Fri Oct 1 13:59:11 2010] S/N: 0778102C0441&0 [Fri Oct 1 13:59:12 2010] FriendlyName : Memorex TD Classic 003B USB Device ---------------------------------------- DevClasses - Disks ControlSet001\Control\DeviceClasses\{53f56307-b6bf-11d0-94f2-00a0c91efb8b} Fri Oct 1 13:59:12 2010 (UTC) Disk&Ven_Memorex&Prod_TD_Classic_003B&Rev_PMAP,0778102C0441&0 Fri Oct 1 13:58:11 2010 (UTC) Disk&Ven_Generic&Prod_USB_CF_Reader&Rev_1.01,058F00016378&0 Disk&Ven_Generic&Prod_USB_MS_Reader&Rev_1.03,058F00016378&1 Disk&Ven_Generic&Prod_USB_SD_Reader&Rev_1.00,058F00016378&2 Disk&Ven_Generic&Prod_USB_xD,SM_Reader&Rev_1.02 Fri Oct 1 11:12:19 2010 (UTC) Disk&Ven_Kingston&Prod_DataTraveler_2.0&Rev_1.00,0000000025&0 DevClasses - Volumes ControlSet001\Control\DeviceClasses\{53f5630d-b6bf-11d0-94f2-00a0c91efb8b} ----------------------------------------