AntonioJesus
2015-01-28, 02:02
Spybot 2.2.18.0. Copyright © 2000-2015 Safer-Networking Limited. All rights reserved.
SBSD compatible log file. All rights reserved.
This log includes only active entries.
This log includes only unknown and bad entries.
--- Startup entries list (32 bit) ---
Located: Known DLLs, NORMALIZ
command: NORMALIZ.dll
file: C:\WINDOWS\system32\NORMALIZ.dll
size: 0
MD5: C9FF1D4D2FE373DB3D33886B31046E51
Located: Known DLLs, MSVCRT
command: MSVCRT.dll
file: C:\WINDOWS\system32\MSVCRT.dll
size: 0
MD5: 6465A029E543CA5AE3547B74CFE9293E
Located: Known DLLs, MSCTF
command: MSCTF.dll
file: C:\WINDOWS\system32\MSCTF.dll
size: 0
MD5: 75914C685DE3539F3A621B27B9D9F919
Located: Known DLLs, IMM32
command: IMM32.dll
file: C:\WINDOWS\system32\IMM32.dll
size: 0
MD5: 59452E147C6A5D055E5EBCB6B8E99CB7
Located: Known DLLs, IMAGEHLP
command: IMAGEHLP.dll
file: C:\WINDOWS\system32\IMAGEHLP.dll
size: 0
MD5: 20E4F2C93AA1F665FDB7EECB30B46503
Located: Known DLLs, LPK
command: LPK.dll
file: C:\WINDOWS\system32\LPK.dll
size: 0
MD5: A21697CB0D4719CB0944EAB89954645C
Located: Known DLLs, kernel32
command: kernel32.dll
file: C:\WINDOWS\system32\kernel32.dll
size: 0
MD5: 00DC86D9068D7E780407A8B66E2AFD9D
Located: Known DLLs, SHLWAPI
command: SHLWAPI.dll
file: C:\WINDOWS\system32\SHLWAPI.dll
size: 0
MD5: F3B94FC86266C10911CDC4961F4F14FF
Located: Known DLLs, SHELL32
command: SHELL32.dll
file: C:\WINDOWS\system32\SHELL32.dll
size: 0
MD5: FE21D836EE5C90F2EFCBDE2F52E25482
Located: Known DLLs, Setupapi
command: Setupapi.dll
file: C:\WINDOWS\system32\Setupapi.dll
size: 0
MD5: E5C0AC531CE6D06F97428B2E4BD28A5D
Located: Known DLLs, WS2_32
command: WS2_32.dll
file: C:\WINDOWS\system32\WS2_32.dll
size: 0
MD5: 34E71A52A1BFA68411CAECCFB6D72F8C
Located: Known DLLs, WLDAP32
command: WLDAP32.dll
file: C:\WINDOWS\system32\WLDAP32.dll
size: 0
MD5: 9A69EE134E39BB0804E3B38C7FBD3F86
Located: Known DLLs, user32
command: user32.dll
file: C:\WINDOWS\system32\user32.dll
size: 0
MD5: 76C5CF09F53A3B089B5581B9938F8CAE
Located: Known DLLs, OLEAUT32
command: OLEAUT32.dll
file: C:\WINDOWS\system32\OLEAUT32.dll
size: 0
MD5: 645CC44EBD6C29EAC35FED07FDBBD88D
Located: Known DLLs, ole32
command: ole32.dll
file: C:\WINDOWS\system32\ole32.dll
size: 0
MD5: 074D700A200508287A6E697F7056AF8D
Located: Known DLLs, NSI
command: NSI.dll
file: C:\WINDOWS\system32\NSI.dll
size: 0
MD5: 40A9F8D687A37A2C034EB21832B4422C
Located: Known DLLs, sechost
command: sechost.dll
file: C:\WINDOWS\system32\sechost.dll
size: 0
MD5: D6A0DC6A3B55BDF02BCFCA50EE2A36BD
Located: Known DLLs, rpcrt4
command: rpcrt4.dll
file: C:\WINDOWS\system32\rpcrt4.dll
size: 0
MD5: BC00F8DE0EFB6CC6D5544814D39728A0
Located: Known DLLs, PSAPI
command: PSAPI.DLL
file: C:\WINDOWS\system32\PSAPI.DLL
size: 0
MD5: F4858C84F99BDBCBA445EA183277A618
Located: Known DLLs, combase
command: combase.dll
file: C:\WINDOWS\system32\combase.dll
size: 0
MD5: 33F50BFD715A530B9ED683C6BE108A74
Located: Known DLLs, clbcatq
command: clbcatq.dll
file: C:\WINDOWS\system32\clbcatq.dll
size: 0
MD5: C16526B898B16A443D2C7D82B4C525B8
Located: Known DLLs, gdi32
command: gdi32.dll
file: C:\WINDOWS\system32\gdi32.dll
size: 0
MD5: C7E1C4DB1934706041B0D63D3D665BA0
Located: Known DLLs, COMDLG32
command: COMDLG32.dll
file: C:\WINDOWS\system32\COMDLG32.dll
size: 0
MD5: 8816F87759FE47FB26AF298166D575F4
Located: Known DLLs, DifxApi
command: difxapi.dll
file: C:\WINDOWS\system32\difxapi.dll
size: 0
MD5: BBEF579DB250E012011C2B2C5BEF9DD3
Located: Known DLLs, gdiplus
command: gdiplus.dll
file: C:\WINDOWS\system32\gdiplus.dll
size: 0
MD5: B8FE0DE7CBEC15CB59DD149DC24A7CB3
Located: Known DLLs, advapi32
command: advapi32.dll
file: C:\WINDOWS\system32\advapi32.dll
size: 0
MD5: 22510ACC3B3D3E4D11B6C0845A6DF24F
Located: Safe Boot Shell, AlternateShell
command: cmd.exe
file: C:\WINDOWS\system32\cmd.exe
size: 0
MD5: 622D21C40A25F9834A03BFD5FF4710C1
Located: User Init, UserInit
command: userinit.exe
file: C:\WINDOWS\system32\userinit.exe
size: 0
MD5: D10643FC0095434C819316CA6CD748C0
Located: Startup (user), Dropbox.lnk
where: C:\Users\Antonio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Users\Antonio\AppData\Roaming\Dropbox\bin\Dropbox.exe
file: C:\Users\Antonio\AppData\Roaming\Dropbox\bin\Dropbox.exe
size: 0
MD5: 6226810F26227F083929AC5584122951
Located: Startup (common), Polar WebSync.lnk
where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files (x86)\Polar\WebSync\WebSync.exe
file: C:\Program Files (x86)\Polar\WebSync\WebSync.exe
size: 0
MD5: 7A6B6ED4E0E167065AE9774D8C715E0B
Located: HK_CU:Run, HP Officejet 6500 E710n-z (NET)
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: "C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe" -deviceID "CN12C1352305JW:NW" -scfn "HP Officejet 6500 E710n-z (NET)" -AutoStart 1
file: C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe
size: 0
MD5: 22F7B9670AD770C7ED7F4738204C8E5C
Located: HK_CU:Run, ApplePhotoStreams
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
file: C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
size: 0
MD5: 105C276BB7B43501225C419B062096D0
Located: HK_CU:Run, GoogleChromeAutoLaunch_4EE4AB8A294CA68933F3F25839191513
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
file: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
size: 0
MD5: 2CA0461A5730F6FC3F90FA3833C645C9
Located: HK_CU:Run, Beats Updater
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: C:\Program Files (x86)\Beats Electronics LLC\Beats Updater.exe
file: C:\Program Files (x86)\Beats Electronics LLC\Beats Updater.exe
size: 0
MD5: 481D18271FFC579FAA7A6243FCADCCBB
Located: HK_CU:Run, LaCie Desktop Manager Startup
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: "C:\Program Files\LaCie\Desktop Manager\LaCieDesktopManagerStatusItem.exe"
file: C:\Program Files\LaCie\Desktop Manager\LaCieDesktopManagerStatusItem.exe
size: 0
MD5: AA3DFA4A343096616C8CCCB134AEC47E
Located: HK_CU:Run, iCloudServices
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
file: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
size: 0
MD5: EC58C1A9A3281CE0C8FCC05BDBFECB37
Located: HK_LM:Run, WD Quick View
command: C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
file: C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
size: 0
MD5: E84F189BE4353A47EBF063D8EA3C4B63
Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
file: C:\Program Files (x86)\QuickTime\QTTask.exe
size: 0
MD5: 271B0D188430670509CB9943D5229205
Located: HK_LM:Run, PWRISOVM.EXE
command: C:\Program Files\PowerISO\PWRISOVM.EXE -startup
file: C:\Program Files\PowerISO\PWRISOVM.EXE
size: 0
MD5: AF668AA70F1BA4A849AA866019B89B16
Located: HK_LM:Run, iTunesHelper
command: "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
file: C:\Program Files (x86)\iTunes\iTunesHelper.exe
size: 0
MD5: 0EF0822810009D58118CCDFD098FA9F4
Located: HK_LM:Run, HP Software Update
command: C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
file: C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
size: 0
MD5: 34D296AFC913E302953C70463EF09A48
Located: HK_LM:Run, IMSS
command: "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
file: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
size: 0
MD5: 4C7C4CADD2515329D9D40D7DC91C5930
Located: HK_LM:Run, Intel AppUp(R) center
command: "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
file: C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
size: 0
MD5: 49CD8D25D932C5BF867EBFF00D432B75
--- Startup entries list (64 bit) ---
Located: HK_LM:Run, TFPUService
command: C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe /start
file: C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe
size: 0
MD5: 94C30EAB9CD3F6E0FFDA6579386875DE
Located: HK_LM:Run, TFPUPWDBankService
command: C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\TFPUPWDBank.exe /start
file: C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\TFPUPWDBank.exe
size: 0
MD5: 767CC5227D8E01D0E7B3523D2C5E5903
Located: HK_LM:Run, TCrdMain
command: C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
file: C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
size: 0
MD5: 919C80271F41A85B28D218CED3E26A16
Located: HK_LM:Run, TecoResident
command: C:\Program Files\TOSHIBA\Teco\TecoResident.exe
file: C:\Program Files\TOSHIBA\Teco\TecoResident.exe
size: 0
MD5: 57C4B4289DAB34CBAEEB92865C6BC022
Located: HK_LM:Run, TSleepSrv
command: C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
file: C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
size: 0
MD5: CF74C5BE20CD4DE1299F6C92A738A2DF
Located: HK_LM:Run, TODDMain
command: C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
file: C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
size: 0
MD5: 6EF487A46FB615DF717F85D7458BD2CD
Located: HK_LM:Run, IAStorIcon
command: "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
file: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
size: 0
MD5: E0F958DF006E6FEB31AF000F1E9DC4CE
Located: HK_LM:Run, BoxSync
command: "C:\Program Files\Box\Box Sync\BoxSync.exe" -m
file: C:\Program Files\Box\Box Sync\BoxSync.exe
size: 0
MD5: 806C91A2E0482DC5635B046FA599C4D0
Located: HK_LM:Run, RtHDVCpl
command: C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
file: C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
size: 0
MD5: F072EF002CE7B945DC7DBBA6F9664FCF
Located: HK_LM:Run, SRS Premium Sound 3D
command: "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_PS3D.zip" /h
file: C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
size: 0
MD5: DA721D686043AA30B4B836A957E92B35
--- System Services ---
Service (registry key): AdobeARMservice
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Adobe Acrobat Update Service
Description: Adobe Acrobat Updater keeps your Adobe software up to date.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
Image size: 0
Image MD5: FC5B75CA6A1DA31EDD4F8D53F5540B98
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 0
Service (registry key): AdobeFlashPlayerUpdateSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Adobe Flash Player Update Service
Description: This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes.
Object name: LocalSystem
Image path: C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Image size: 0
Image MD5: 73F937DCC68E13C752D59FE33BE62FC5
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): AeLookupSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\aelupsvc.dll,-1
Description: @%SystemRoot%\system32\aelupsvc.dll,-2
Object name: localSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): AppIDSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\appidsvc.dll,-100
Description: @%systemroot%\system32\appidsvc.dll,-101
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,AppID,CryptSvc
Service (registry key): Appinfo
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\appinfo.dll,-100
Description: @%systemroot%\system32\appinfo.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,ProfSvc
Service (registry key): Apple Mobile Device
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Apple Mobile Device
Description: Provides the interface to Apple mobile devices.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
Image size: 0
Image MD5: 650D03E40F93FAE323CB841F80368E5C
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: Tcpip
Service (registry key): AppMgmt
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @appmgmts.dll,-3250
Description: @appmgmts.dll,-3251
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): AppReadiness
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\AppReadiness.dll,-1000
Description: @%SystemRoot%\System32\AppReadiness.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k AppReadiness
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): AppXSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\appxdeploymentserver.dll,-1
Description: @%SystemRoot%\system32\appxdeploymentserver.dll,-2
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k wsappx
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): AudioEndpointBuilder
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204
Description: @%SystemRoot%\System32\AudioEndpointBuilder.dll,-205
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): Audiosrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\audiosrv.dll,-200
Description: @%SystemRoot%\System32\audiosrv.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: AudioEndpointBuilder,RpcSs,MMCSS
Service (registry key): AxInstSV
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\AxInstSV.dll,-103
Description: @%SystemRoot%\system32\AxInstSV.dll,-104
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k AxInstSVGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): BDESVC
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\bdesvc.dll,-100
Description: @%SystemRoot%\system32\bdesvc.dll,-101
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): BFE
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\bfe.dll,-1001
Description: @%SystemRoot%\system32\bfe.dll,-1002
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,WfpLwfs
Service (registry key): BITS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\qmgr.dll,-1000
Description: @%SystemRoot%\system32\qmgr.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,EventSystem
Service (registry key): BoxSyncUpdateService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Box Sync Update Service
Description: Updater for Box Sync
Object name: LocalSystem
Image path: "C:\Program Files\Box\Box Sync\SyncUpdaterService.exe"
Image size: 0
Image MD5: C52093BEF318FFCC1130E9D66F3ED5DD
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): BrokerInfrastructure
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\bisrv.dll,-100
Description: @%windir%\system32\bisrv.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,DcomLaunch,RpcSs
Service (registry key): Browser
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\browser.dll,-100
Description: @%systemroot%\system32\browser.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer
Service (registry key): BthHFSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\BthHFSrv.dll,-103
Description: @%SystemRoot%\System32\BthHFSrv.dll,-102
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: bthserv
Service (registry key): bthserv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\bthserv.dll,-101
Description: @%SystemRoot%\System32\bthserv.dll,-102
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): CertPropSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\certprop.dll,-11
Description: @%SystemRoot%\System32\certprop.dll,-12
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): COMSysApp
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @comres.dll,-947
Description: @comres.dll,-948
Object name: LocalSystem
Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 0
Image MD5: CC05C14EEFF5E7813A49718BA88E59B0
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RpcSs,EventSystem,SENS
Service (registry key): cphs
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Content Protection HECI Service
Description: Intel(R) Content Protection HECI Service - enables communication with the Content Protection FW
Object name: LocalSystem
Image path: %SystemRoot%\SysWow64\IntelCpHeciSvc.exe
Image size: 0
Image MD5: 10CA7F8EF882104CFBA8D0871DB06AF3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): CryptSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001
Description: @%SystemRoot%\system32\cryptsvc.dll,-1002
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): CscService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\cscsvc.dll,-200
Description: @%systemroot%\system32\cscsvc.dll,-201
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): DcomLaunch
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @combase.dll,-5012
Description: @combase.dll,-5013
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): defragsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\defragsvc.dll,-101
Description: @%SystemRoot%\system32\defragsvc.dll,-102
Object name: localSystem
Image path: %SystemRoot%\system32\svchost.exe -k defragsvc
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): DeviceAssociationService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\das.dll,-100
Description: @%SystemRoot%\system32\das.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): DeviceInstall
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umpnpmgr.dll,-100
Description: @%SystemRoot%\system32\umpnpmgr.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): Dhcp
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\dhcpcore.dll,-100
Description: @%SystemRoot%\system32\dhcpcore.dll,-101
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: NSI,Tdx,Afd
Service (registry key): Dnscache
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\dnsapi.dll,-101
Description: @%SystemRoot%\System32\dnsapi.dll,-102
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: Tdx,nsi
Service (registry key): dot3svc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\dot3svc.dll,-1102
Description: @%systemroot%\system32\dot3svc.dll,-1103
Object name: localSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,Ndisuio,Eaphost
Service (registry key): DPS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\dps.dll,-500
Description: @%systemroot%\system32\dps.dll,-501
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): DsmSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000
Description: @%SystemRoot%\system32\DeviceSetupManager.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,HTTP
Service (registry key): Eaphost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\eapsvc.dll,-1
Description: @%systemroot%\system32\eapsvc.dll,-2
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,KeyIso
Service (registry key): EventLog
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wevtsvc.dll,-200
Description: @%SystemRoot%\system32\wevtsvc.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): EventSystem
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @comres.dll,-2450
Description: @comres.dll,-2451
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): EvtEng
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) PROSet/Wireless Event Log
Description: Manages the event trace messages for all the Intel® PROSet/Wireless Software components.
Object name: LocalSystem
Image path: "C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
Image size: 0
Image MD5: 21FFB87A70019E9B39C5A8469695ACBA
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): fdPHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\fdPHost.dll,-100
Description: @%systemroot%\system32\fdPHost.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,http
Service (registry key): FDResPub
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\fdrespub.dll,-100
Description: @%systemroot%\system32\fdrespub.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,http
Service (registry key): fhsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\fhsvc.dll,-101
Description: @%systemroot%\system32\fhsvc.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): FontCache
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\FntCache.dll,-100
Description: @%systemroot%\system32\FntCache.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): FontCache3.0.0.0
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309
Description: @%SystemRoot%\system32\PresentationHost.exe,-3310
Object name: NT Authority\LocalService
Image path: %systemroot%\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
Image size: 0
Image MD5: 1C52387BF5A127F5F3BFB31288F30D93
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): GenieTimelineService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Genie Timeline Service
Description: Genie Timeline Service provided by. Genie9
Object name: LocalSystem
Image path: "C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe"
Image size: 0
Image MD5: 35A52E4721D3C1D2FDCC7FC9BEF1A95D
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 0
Service (registry key): gpsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @gpapi.dll,-112
Description: @gpapi.dll,-113
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS,Mup
Service (registry key): gupdate
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Serviço Google Update (gupdate)
Description: Mantém o software Google atualizado. Se este serviço for desactivado ou interrompido, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
Image size: 0
Image MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): gupdatem
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Serviço Google Update (gupdatem)
Description: Mantém o software Google atualizado. Se este serviço for desactivado ou interrompido, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
Image size: 0
Image MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): hidserv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\hidserv.dll,-101
Description: @%SystemRoot%\System32\hidserv.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): hkmsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\kmsvc.dll,-6
Description: @%SystemRoot%\system32\kmsvc.dll,-7
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): HomeGroupListener
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\ListSvc.dll,-100
Description: @%SystemRoot%\System32\ListSvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): HomeGroupProvider
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\provsvc.dll,-100
Description: @%SystemRoot%\System32\provsvc.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: netprofm,fdrespub,fdphost
Service (registry key): IAStorDataMgrSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Rapid Storage Technology
Description: Provides storage event notification and manages communication between the storage driver and user space applications.
Object name: LocalSystem
Image path: "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
Image size: 0
Image MD5: 9D7AFC77C928460336642D6EFDB5BDEA
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 0
Depends On services: winmgmt
Service (registry key): ICCS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS
Description: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
Image size: 0
Image MD5: 83FF82FE209E7997067B375DAD6CF23D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): IFXSpMgtSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Security Platform Management Service
Description: Provides management services for the Security Platform.
Object name: LocalSystem
Image path: C:\Program Files (x86)\Infineon\Security Platform Software\ifxspmgt.exe
Image size: 0
Image MD5: BF5331A37DDF11AD2CBF7129C653191C
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): IFXTCS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Trusted Platform Core Service
Description: The Trusted Platform Core Service manages access to the Trusted Platform Module of this computer. If this service is stopped, the trustworthiness of this computer no longer can be verified. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\Program Files (x86)\Infineon\Security Platform Software\ifxtcs.exe
Image size: 0
Image MD5: 563A64BA3184F1E79CDF078FD3AC9460
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): IKEEXT
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ikeext.dll,-501
Description: @%SystemRoot%\system32\ikeext.dll,-502
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: BFE
Service (registry key): Intel(R) Capability Licensing Service Interface
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Capability Licensing Service Interface
Description: Version: 1.24.738.1
Object name: LocalSystem
Image path: "C:\Program Files\Intel\iCLS Client\HeciServer.exe"
Image size: 0
Image MD5: B353F1834FCD36D77BE3F74992C147D4
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): Intel(R) ME Service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) ME Service
Description: Intel® Manageability Engine Service (Intel® ME Service)
Object name: LocalSystem
Image path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
Image size: 0
Image MD5: 06A1E47AF06788E25A7A290164B1E434
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): iphlpsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\iphlpsvc.dll,-500
Description: @%SystemRoot%\system32\iphlpsvc.dll,-501
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi,WinHttpAutoProxySvc
Service (registry key): iPod Service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Serviço iPod
Description: Serviços de gestão de hardware do iPod
Object name: LocalSystem
Image path: "C:\Program Files\iPod\bin\iPodService.exe"
Image size: 0
Image MD5: 7FAE5B6CDB18B0B2E81F32869F595022
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RpcSs
Service (registry key): jhi_service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Dynamic Application Loader Host Interface Service
Description: Intel(R) Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel (R) DAL
Object name: LocalSystem
Image path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
Image size: 0
Image MD5: 5B7DE9D87B9D2713BDD6A53678DC2A49
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): KtmRm
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @comres.dll,-2946
Description: @comres.dll,-2947
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,SamSS
Service (registry key): LaCieDesktopManagerService
Registry path: \SYSTEM\ControlSet001\Services\
Object name: LocalSystem
Image path: C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe
Image size: 0
Image MD5: EB43C677193C36734E918BBAD85E5114
Control Set: ControlSet001
Start: 2
Type: 272
Error Control: 1
Service (registry key): LanmanServer
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\srvsvc.dll,-100
Description: @%systemroot%\system32\srvsvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: SamSS,Srv2
Service (registry key): LanmanWorkstation
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wkssvc.dll,-100
Description: @%systemroot%\system32\wkssvc.dll,-101
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: Bowser,MRxSmb20,NSI
Service (registry key): lfsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\GeofenceMonitorService.dll,-1
Description: @%SystemRoot%\System32\GeofenceMonitorService.dll,-2
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): lltdsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\lltdres.dll,-1
Description: @%SystemRoot%\system32\lltdres.dll,-2
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss,lltdio
Service (registry key): lmhosts
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\lmhsvc.dll,-101
Description: @%SystemRoot%\system32\lmhsvc.dll,-102
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: NetBT,Afd
Service (registry key): LMS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Management and Security Application Local Management Service
Description: Allows applications to access the local Intel(R) Management and Security Application using its locally-available selected network interfaces.
Object name: LocalSystem
Image path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
Image size: 0
Image MD5: E70FD0D2C95F559A17321D831875593D
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): LSM
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\lsm.dll,-1001
Description: @%windir%\system32\lsm.dll,-1002
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,DcomLaunch,RpcSs
Service (registry key): MMCSS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\mmcss.dll,-100
Description: @%systemroot%\system32\mmcss.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): MozillaMaintenance
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Mozilla Maintenance Service
Description: The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
Image size: 0
Image MD5: 345477F02C308B7480702767218C86A2
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): MpsSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090
Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: mpsdrv,bfe
Service (registry key): MSiSCSI
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000
Description: @%SystemRoot%\system32\iscsidsc.dll,-5001
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): msiserver
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\msimsg.dll,-27
Description: @%SystemRoot%\system32\msimsg.dll,-32
Object name: LocalSystem
Image path: %systemroot%\system32\msiexec.exe /V
Image size: 0
Image MD5: 055CCE830A54C2C1B598E2066F65C9AB
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss
Service (registry key): MsKeyboardFilter
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\KeyboardFilterSvc.dll,-101
Description: @%SystemRoot%\system32\KeyboardFilterSvc.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Service (registry key): MyWiFiDHCPDNS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Wireless PAN DHCP Server
Object name: LocalSystem
Image path: "C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe"
Image size: 0
Image MD5: 53EE034F83E9A7A8E421572E385F67CD
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Depends On services: RPCSS
Service (registry key): napagent
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\qagentrt.dll,-6
Description: @%SystemRoot%\system32\qagentrt.dll,-7
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): NcaSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ncasvc.dll,-3009
Description: @%SystemRoot%\system32\ncasvc.dll,-3008
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: BFE,dnscache,NSI,iphlpsvc
Service (registry key): NcbService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ncbservice.dll,-500
Description: @%SystemRoot%\system32\ncbservice.dll,-501
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSS,tcpip
Service (registry key): NcdAutoSetup
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\NcdAutoSetup.dll,-100
Description: @%SystemRoot%\system32\NcdAutoSetup.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: netprofm
Service (registry key): Netman
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\netman.dll,-109
Description: @%SystemRoot%\system32\netman.dll,-110
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,nsi
Service (registry key): netprofm
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\netprofmsvc.dll,-202
Description: @%SystemRoot%\system32\netprofmsvc.dll,-203
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,nlasvc
Service (registry key): NetTcpPortSharing
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201
Description: @%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8200
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
Image size: 0
Image MD5: 1092B3190E69E0C5ECBCE90F171DE047
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Service (registry key): NlaSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\nlasvc.dll,-1
Description: @%SystemRoot%\System32\nlasvc.dll,-2
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: NSI,RpcSs,TcpIp,Dhcp,Eventlog
Service (registry key): nsi
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\nsisvc.dll,-200
Description: @%SystemRoot%\system32\nsisvc.dll,-201
Object name: NT Authority\LocalService
Image path: %systemroot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: rpcss,nsiproxy
Service (registry key): ose64
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Office 64 Source Engine
Description: Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports.
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
Image size: 0
Image MD5: 11E0B35479C895888BA3D7F619DCFFF3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): p2pimsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pnrpsvc.dll,-8004
Description: @%SystemRoot%\system32\pnrpsvc.dll,-8005
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): p2psvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\p2psvc.dll,-8006
Description: @%SystemRoot%\system32\p2psvc.dll,-8007
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: p2pimsvc,PNRPSvc
Service (registry key): PcaSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pcasvc.dll,-1
Description: @%SystemRoot%\system32\pcasvc.dll,-2
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): PeerDistSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\peerdistsvc.dll,-9000
Description: @%SystemRoot%\system32\peerdistsvc.dll,-9001
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k PeerDist
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: http
Service (registry key): PerfHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\sysWow64\perfhost.exe,-2
Description: @%systemroot%\SysWow64\perfhost.exe,-1
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\SysWow64\perfhost.exe
Image size: 0
Image MD5: 8E3C640FFF5A963F570233AE99C0FFF3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): PersonalSecureDriveService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Personal Secure Drive Service
Description: Serviço para drives de criptografados da Personal Secure Drive
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Infineon\Security Platform Software\IfxPsdSv.exe"
Image size: 0
Image MD5: E4B675314DCEA58CBEACB856EE870678
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): pla
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\pla.dll,-500
Description: @%systemroot%\system32\pla.dll,-501
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): PlugPlay
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umpnpmgr.dll,-200
Description: @%SystemRoot%\system32\umpnpmgr.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): PNRPAutoReg
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pnrpauto.dll,-8002
Description: @%SystemRoot%\system32\pnrpauto.dll,-8003
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: pnrpsvc
Service (registry key): PNRPsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pnrpsvc.dll,-8000
Description: @%SystemRoot%\system32\pnrpsvc.dll,-8001
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: p2pimsvc
Service (registry key): Polar Daemon
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Polar Daemon
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Polar\Daemon\polard.exe"
Image size: 0
Image MD5: 652565EA2FAB8E7366101A0B04DECBBC
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): PolicyAgent
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\polstore.dll,-5010
Description: @%SystemRoot%\system32\polstore.dll,-5011
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: Tcpip,bfe
Service (registry key): Power
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umpo.dll,-100
Description: @%SystemRoot%\system32\umpo.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): PrintNotify
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-1
Description: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-2
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k print
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 288
Error Control: 1
Depends On services: RpcSs
Service (registry key): ProfSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\profsvc.dll,-300
Description: @%systemroot%\system32\profsvc.dll,-301
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): QWAVE
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\qwave.dll,-1
Description: @%SystemRoot%\system32\qwave.dll,-2
Object name: NT AUTHORITY\LocalService
Image path: %windir%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss,psched,QWAVEdrv,LLTDIO
Service (registry key): RasAuto
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\rasauto.dll,-200
Description: @%Systemroot%\system32\rasauto.dll,-201
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RasAcd
Service (registry key): RasMan
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\rasmans.dll,-200
Description: @%Systemroot%\system32\rasmans.dll,-201
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: SstpSvc
Service (registry key): RegSrvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) PROSet/Wireless Registry Service
Description: Provides registry access to all Intel® PROSet/Wireless Software components
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
Image size: 0
Image MD5: 1791B1C8C72E13D193ADE659E7DB87C1
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): RemoteAccess
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\mprdim.dll,-200
Description: @%Systemroot%\system32\mprdim.dll,-201
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Depends On services: RpcSS,Bfe,RasMan,Http
Depends On group: NetBIOSGroup
Service (registry key): RemoteRegistry
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @regsvc.dll,-1
Description: @regsvc.dll,-2
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k localService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): RpcEptMapper
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\RpcEpMap.dll,-1001
Description: @%windir%\system32\RpcEpMap.dll,-1002
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k RPCSS
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): RpcSs
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @combase.dll,-5010
Description: @combase.dll,-5011
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k rpcss
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,DcomLaunch
Service (registry key): RtkAudioService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Realtek Audio Service
Description: For cooperation with Realtek audio driver.
Object name: LocalSystem
Image path: C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
Image size: 0
Image MD5: 6831D30B0DB45E25E6C3207247C6EC36
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): SCardSvr
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\SCardSvr.dll,-1
Description: @%SystemRoot%\System32\SCardSvr.dll,-5
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: wudfsvc
Service (registry key): ScDeviceEnum
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\ScDeviceEnum.dll,-100
Description: @%SystemRoot%\System32\ScDeviceEnum.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): Schedule
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\schedsvc.dll,-100
Description: @%SystemRoot%\system32\schedsvc.dll,-101
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS,SystemEventsBroker
Service (registry key): SCPolicySvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\certprop.dll,-13
Description: @%SystemRoot%\System32\certprop.dll,-14
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): seclogon
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\seclogon.dll,-7001
Description: @%SystemRoot%\system32\seclogon.dll,-7000
Object name: LocalSystem
Image path: %windir%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): SENS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\Sens.dll,-200
Description: @%SystemRoot%\system32\Sens.dll,-201
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: EventSystem
Service (registry key): SensrSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\sensrsvc.dll,-1000
Description: @%SystemRoot%\System32\sensrsvc.dll,-1001
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): SessionEnv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\SessEnv.dll,-1026
Description: @%SystemRoot%\System32\SessEnv.dll,-1027
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,LanmanWorkstation
Service (registry key): SharedAccess
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ipnathlp.dll,-106
Description: @%SystemRoot%\system32\ipnathlp.dll,-107
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Depends On services: Netman,WinMgmt,BFE
Service (registry key): ShellHWDetection
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\shsvcs.dll,-12288
Description: @%SystemRoot%\System32\shsvcs.dll,-12289
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs
Service (registry key): smphost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\smphost.dll,-102
Description: @%SystemRoot%\System32\smphost.dll,-101
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k smphost
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): SSDPSRV
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\ssdpsrv.dll,-100
Description: @%systemroot%\system32\ssdpsrv.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP
Service (registry key): SstpSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\sstpsvc.dll,-200
Description: @%SystemRoot%\system32\sstpsvc.dll,-201
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): stisvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wiaservc.dll,-9
Description: @%SystemRoot%\system32\wiaservc.dll,-10
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k imgsvc
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RpcSs
Service (registry key): StorSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\StorSvc.dll,-100
Description: @%SystemRoot%\System32\StorSvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): svsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\svsvc.dll,-101
Description: @%SystemRoot%\system32\svsvc.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): swprv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\swprv.dll,-103
Description: @%SystemRoot%\System32\swprv.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k swprv
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): SysMain
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\sysmain.dll,-1000
Description: @%SystemRoot%\system32\sysmain.dll,-1001
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 0
Depends On services: rpcss,fileinfo
Service (registry key): SystemEventsBroker
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\SystemEventsBrokerServer.dll,-1001
Description: @%windir%\system32\SystemEventsBrokerServer.dll,-1002
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,RpcSs
Service (registry key): TabletInputService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\TabSvc.dll,-100
Description: @%SystemRoot%\system32\TabSvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): TapiSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\tapisrv.dll,-10100
Description: @%SystemRoot%\system32\tapisrv.dll,-10101
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): TeamViewer9
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TeamViewer 9
Description: TeamViewer Remote Software
Object name: LocalSystem
Image path: "C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
Image size: 0
Image MD5: E849218177EC8F7541EC3FAA693EE21A
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): TemproMonitoringService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TEMPRO Service
Description: Toshiba support and information tool
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe"
Image size: 0
Image MD5: E964837B2A702D82E51DE879FEFDF22B
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): TermService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\termsrv.dll,-268
Description: @%SystemRoot%\System32\termsrv.dll,-267
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): Themes
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\themeservice.dll,-8192
Description: @%SystemRoot%\System32\themeservice.dll,-8193
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): THREADORDER
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\mmcss.dll,-102
Description: @%systemroot%\system32\mmcss.dll,-103
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): TimeBroker
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\TimeBrokerServer.dll,-1001
Description: @%windir%\system32\TimeBrokerServer.dll,-1002
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): TMachInfo
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TMachInfo
Description: TOSHIBA Machine Information Service
Object name: LocalSystem
Image path: "C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
Image size: 0
Image MD5: 6C4F5CD42074DB52AE88FC4BAB2C54F7
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): TOSHIBA eco Utility Service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TOSHIBA eco Utility Service
Description: TOSHIBA eco Utility Service
Object name: LocalSystem
Image path: "C:\Program Files\TOSHIBA\Teco\TecoService.exe"
Image size: 0
Image MD5: 14029F05C2DDAD29DAE614E407A9551F
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: Winmgmt
Service (registry key): TPCHSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TPCH Service
Description: TOSHIBA PC Health Monitor
Object name: LocalSystem
Image path: "C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
Image size: 0
Image MD5: 8608681DC6E2975815A593209A6432CD
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: Winmgmt
Service (registry key): TrkWks
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\trkwks.dll,-1
Description: @%SystemRoot%\system32\trkwks.dll,-2
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): TrustedInstaller
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\servicing\TrustedInstaller.exe,-100
Description: @%SystemRoot%\servicing\TrustedInstaller.exe,-101
Object name: localSystem
Image path: %SystemRoot%\servicing\TrustedInstaller.exe
Image size: 0
Image MD5: 44A94FB4C76528D2382FFE04B05827C3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): UmRdpService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umrdp.dll,-1000
Description: @%SystemRoot%\system32\umrdp.dll,-1001
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: TermService,RDPDR
Service (registry key): UNS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Management and Security Application User Notification Service
Description: Intel(R) Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel(R) Management and Security Application Device.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
Image size: 0
Image MD5: C485FB802F6C4A306B8F89BA087E5CA2
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: LMS
Service (registry key): upnphost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\upnphost.dll,-213
Description: @%systemroot%\system32\upnphost.dll,-214
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: SSDPSRV,HTTP
Service (registry key): vmicguestinterface
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-801
Description: @%systemroot%\system32\vmicres.dll,-802
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicheartbeat
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-101
Description: @%systemroot%\system32\vmicres.dll,-102
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k ICService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmickvpexchange
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-201
Description: @%systemroot%\system32\vmicres.dll,-202
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicrdv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-601
Description: @%systemroot%\system32\vmicres.dll,-602
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k ICService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicshutdown
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-301
Description: @%systemroot%\system32\vmicres.dll,-302
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmictimesync
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-401
Description: @%systemroot%\system32\vmicres.dll,-402
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicvss
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-501
Description: @%systemroot%\system32\vmicres.dll,-502
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): W32Time
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\w32time.dll,-200
Description: @%SystemRoot%\system32\w32time.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WbioSrvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wbiosrvc.dll,-100
Description: @%systemroot%\system32\wbiosrvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k WbioSvcGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,VaultSvc,WUDFSvc
Service (registry key): Wcmsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wcmsvc.dll,-4097
Description: @%SystemRoot%\System32\wcmsvc.dll,-4098
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): wcncsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wcncsvc.dll,-3
Description: @%SystemRoot%\system32\wcncsvc.dll,-4
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): WcsPlugInService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\WcsPlugInService.dll,-200
Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k wcssvc
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): WDBackup
Registry path: \SYSTEM\ControlSet001\Services\
Display name: WD Backup
Description: WD SmartWare Backup Engine
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
Image size: 0
Image MD5: 502FA6BD01D9141D34C2FCA8F8726E3F
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: WDDriveService,RPCSS
Service (registry key): WDDriveService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: WD Drive Manager
Description: Provides discovery of WD Drives
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
Image size: 0
Image MD5: C50B1A397F35908EEA98C964E77A6A97
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): WdiServiceHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wdi.dll,-502
Description: @%systemroot%\system32\wdi.dll,-503
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WdiSystemHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wdi.dll,-500
Description: @%systemroot%\system32\wdi.dll,-501
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WebClient
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\webclnt.dll,-100
Description: @%systemroot%\system32\webclnt.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: MRxDAV
Service (registry key): Wecsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wecsvc.dll,-200
Description: @%SystemRoot%\system32\wecsvc.dll,-201
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP,Eventlog
Service (registry key): WEPHOSTSVC
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wephostsvc.dll,-100
Description: @%systemroot%\system32\wephostsvc.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\system32\svchost.exe -k WepHostSvcGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): wercplsupport
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wercplsupport.dll,-101
Description: @%SystemRoot%\System32\wercplsupport.dll,-100
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WerSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wersvc.dll,-100
Description: @%SystemRoot%\System32\wersvc.dll,-101
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k WerSvcGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): WiaRpc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wiarpc.dll,-2
Description: @%SystemRoot%\system32\wiarpc.dll,-1
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): WinHttpAutoProxySvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\winhttp.dll,-100
Description: @%SystemRoot%\system32\winhttp.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: Dhcp
Service (registry key): Winmgmt
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\wbem\wmisvc.dll,-205
Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204
Object name: localSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 0
Depends On services: RPCSS
Service (registry key): WinRM
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\wsmsvc.dll,-101
Description: @%Systemroot%\system32\wsmsvc.dll,-102
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,HTTP
Service (registry key): WlanSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wlansvc.dll,-257
Description: @%SystemRoot%\System32\wlansvc.dll,-258
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: nativewifip,RpcSs,Ndisuio,wcmsvc
Service (registry key): wlidsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wlidsvc.dll,-100
Description: @%SystemRoot%\system32\wlidsvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): workfolderssvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\workfolderssvc.dll,-102
Description: @%systemroot%\system32\workfolderssvc.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,wsearch
Service (registry key): WPCSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wpcsvc.dll,-100
Description: @%SystemRoot%\system32\wpcsvc.dll,-101
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): WPDBusEnum
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wpdbusenum.dll,-100
Description: @%SystemRoot%\system32\wpdbusenum.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): wscsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wscsvc.dll,-200
Description: @%SystemRoot%\System32\wscsvc.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,WinMgmt
Service (registry key): WSearch
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\SearchIndexer.exe,-103
Description: @%systemroot%\system32\SearchIndexer.exe,-104
Object name: LocalSystem
Image path: %systemroot%\system32\SearchIndexer.exe /Embedding
Image size: 0
Image MD5: 78B0100BE4A533819A043093FC64CE3E
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): WSService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\WSService.dll,-103
Description: @%SystemRoot%\system32\WSService.dll,-104
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k wsappx
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): wuauserv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wuaueng.dll,-105
Description: @%systemroot%\system32\wuaueng.dll,-106
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): wudfsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wudfsvc.dll,-1000
Description: @%SystemRoot%\system32\wudfsvc.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: WudfPf
Service (registry key): WwanSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wwansvc.dll,-257
Description: @%SystemRoot%\System32\wwansvc.dll,-258
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,NdisUio,wcmsvc
Service (registry key): ZeroConfigService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) PROSet/Wireless Zero Configuration Service
Description: Manages the zero configuration service for all the Intel® PROSet/Wireless Software components.
Object name: LocalSystem
Image path: "C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
Image size: 0
Image MD5: 2AC426C57AC3D6A226D66E5A03223C90
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
--- Winsock Layered Service Provider list ---
Namespace Provider 0: @%SystemRoot%\system32\napinsp.dll,-1000
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename: %SystemRoot%\system32\napinsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1000
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1001
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\nlasvc.dll,-1000
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\system32\NLAapi.dll
Namespace Provider 0: @%SystemRoot%\system32\wshtcpip.dll,-60103
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Namespace Provider 0: @%SystemRoot%\System32\winrnr.dll,-1000
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Namespace Provider 0: Bluetooth Namespace
GUID: {06AA63E0-7D60-41FF-AFB2-3EE6D2D9392D}
Filename: %SystemRoot%\system32\wshbth.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60100
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60101
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60102
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60200
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60201
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60202
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-100
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-101
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-102
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-103
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: MSAFD RfComm
GUID: {9FC48064-7298-43E4-B7BD-181F2089792A}
Filename: %SystemRoot%\system32\mswsock.dll
Namespace Provider 0: @%SystemRoot%\system32\napinsp.dll,-1000
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename: %SystemRoot%\system32\napinsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1000
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1001
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\nlasvc.dll,-1000
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\system32\NLAapi.dll
Namespace Provider 0: @%SystemRoot%\system32\wshtcpip.dll,-60103
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Namespace Provider 0: @%SystemRoot%\System32\winrnr.dll,-1000
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Namespace Provider 0: Bluetooth Namespace
GUID: {06AA63E0-7D60-41FF-AFB2-3EE6D2D9392D}
Filename: %SystemRoot%\system32\wshbth.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60100
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60101
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60102
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60200
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60201
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60202
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-100
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-101
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-102
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-103
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: MSAFD RfComm [Bluetooth]
GUID: {9FC48064-7298-43E4-B7BD-181F2089792A}
Filename: %SystemRoot%\system32\mswsock.dll
--- Scheduled Tasks list ---
Scheduled Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Filesize: 0
File MD5: 73F937DCC68E13C752D59FE33BE62FC5
Parameters:
Creator: Adobe Systems Incorporated
Comment: This task keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes. If this task is disabled or removed, Adobe Flash Player will be unable to automatically secure your machine with the latest security fixes.
Scheduled Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters: /c
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters: /ua /installsource scheduler
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job
schedules in: C:\WINDOWS\Tasks\
Exec dir: C:\ProgramData\HP Photo Creations
Filename: C:\ProgramData\HP Photo Creations\Communicator.exe
Filesize: 0
File MD5: B9E3FCBACBD3DD05C2C60E8405C9B78D
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\Tasks\Security Platform Backup Schedule.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Infineon\Security Platform Software\SpBackupWz.exe
Filesize: 0
File MD5: B562D37CF917EBF91C9E947C8557B595
Parameters: /BackupAll
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Adobe Acrobat Update Task
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Filesize: 0
File MD5: 3E04F1E482357B1FC8B088197C3D9FF8
Parameters:
Creator: Adobe Systems Incorporated
Comment: This task keeps your Adobe Reader and Acrobat applications up to date with the latest enhancements and security fixes
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Adobe Flash Player Updater
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Filesize: 0
File MD5: 73F937DCC68E13C752D59FE33BE62FC5
Parameters:
Creator: Adobe Systems Incorporated
Comment: This task keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes. If this task is disabled or removed, Adobe Flash Player will be unable to automatically secure your machine with the latest security fixes.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Apple Diagnostics
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Filesize: 0
File MD5: E516D7811B24812819A3BAC8AD350510
Parameters:
Creator: Apple Inc.
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\CreateChoiceProcessTask
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Windows\BrowserChoice\browserchoice.exe
Filesize: 0
File MD5: 642F850B5D94E08AB6CFF997BE09C688
Parameters:
Creator: BrowserChoice
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\GoogleUpdateTaskMachineCore
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters:
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\GoogleUpdateTaskMachineUA
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters:
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\HP Photo Creations Communicator
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\ProgramData\HP Photo Creations\Communicator.exe
Filesize: 0
File MD5: B9E3FCBACBD3DD05C2C60E8405C9B78D
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\iolo System Checkup
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\ProgramData\iolo\scustask.lnk
Filesize: 0
File MD5: 2896E0C594C5BE8394F6DAE211F7EDFA
Parameters:
Creator: Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft Office 15 Sync Maintenance for PORT-AF-CASA-Antonio PORT-AF-CASA
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files\Microsoft Office\Office15\MsoSync.exe
Filesize: 0
File MD5: 0FE8E16D27436AE1D105CE358AEC42CB
Parameters:
Creator: Microsoft Office
Comment: Lightweight task keeps Microsoft Office Document Cache in good shape. Disabling this task may lead to unexpected issues when working with documents from online sources as well as higher disk usage.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Security Platform Backup Schedule
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Infineon\Security Platform Software\SpBackupWz.exe
Filesize: 0
File MD5: B562D37CF917EBF91C9E947C8557B595
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\User_Feed_Synchronization-{51B699CB-3D67-468E-A01C-024C6C357E4E}
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\WINDOWS\system32\msfeedssync.exe
Filesize: 0
File MD5: 1BD4CD20A25B4A3A5F7BAAC25E9D9202
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment: Updates out-of-date system feeds.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Toshiba\CommonNotifier
schedules in: C:\WINDOWS\SysNative\Tasks\Toshiba\
Exec dir:
Filename: C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
Filesize: 0
File MD5: C6B8CB65A3AACABB00F3DAA371C46A3E
Parameters:
Creator:
Comment: Generated task from Tempro Installer
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\MUI\Mcbuilder
schedules in: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\MUI\
Exec dir:
Filename: C:\windows\System32\mcbuilder.exe
Filesize: 0
File MD5: B411D87B239022E69B2B4B381A70EA91
Parameters:
Creator: Microsoft Corporation
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start
schedules in: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\
Exec dir:
Filename: C:\WINDOWS\system32\sc.exe
Filesize: 0
File MD5: 8D2C2B54B86AF85923EEBFE5AEF68280
Parameters:
Creator: Microsoft Corporation.
Comment: This task is used to start the Windows Update service when needed to perform scheduled operations such as scans.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network
schedules in: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\
Exec dir:
Filename: C:\WINDOWS\system32\sc.exe
Filesize: 0
File MD5: 8D2C2B54B86AF85923EEBFE5AEF68280
Parameters:
Creator: Microsoft Corporation.
Comment: This task is used to start the Windows Update service when needed to perform scheduled operations such as scans.
--- Browser helper object list (32 bit) ---
{030AC7B6-E7EC-40F1-8FB2-C0FD344DE0B9} (BHOHOOK)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: BHOHOOK
CLSID name: TOSHIBA Fingerprint Utility Automatic Password Input
Path: C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\
Long name: TFPUPWDBankBHO.dll
Short name: TFPUPW~1.DLL
Date (created): 16/03/2012 18:28:36
Date (last access): 18/02/2014 15:02:24
Date (last write): 16/03/2012 18:28:36
Filesize: 62336
Attributes: archive
MD5: 7476B447D622B5F563C0CE4862FCF5CC
CRC32: FF4D4326
Version: 2.0.0.4
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call BHO)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: Lync Click to Call BHO
CLSID name: Lync Browser Helper
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 22/10/2014 14:05:36
Date (last access): 13/11/2014 08:28:32
Date (last write): 22/10/2014 14:05:36
Filesize: 153248
Attributes: archive
MD5: D2FA55F98AEC5D82D055062101145C20
CRC32: 7C579EAD
Version: 15.0.4667.1000
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Java(tm) Plug-In SSV Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Java(tm) Plug-In SSV Helper
Path: C:\Program Files (x86)\Java\jre1.8.0_31\bin\
Long name: ssv.dll
Short name:
Date (created): 25/01/2015 10:08:18
Date (last access): 25/01/2015 10:08:18
Date (last write): 25/01/2015 10:08:18
Filesize: 460712
Attributes: archive
MD5: 7C15112AEB2A24A7B21FA7A534C083C5
CRC32: 29F9FA4C
Version: 11.31.2.13
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{DBC80044-A445-435b-BC74-9C25C1C588A9} (Java(tm) Plug-In 2 SSV Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Java(tm) Plug-In 2 SSV Helper
Path: C:\Program Files (x86)\Java\jre1.8.0_31\bin\
Long name: jp2ssv.dll
Short name:
Date (created): 25/01/2015 10:08:18
Date (last access): 25/01/2015 10:08:18
Date (last write): 25/01/2015 10:08:18
Filesize: 172968
Attributes: archive
MD5: DA41FC2EA6E979D147258AB053E2D136
CRC32: 5A0E2377
Version: 11.31.2.13
{22d6f312-b0f6-11d0-94ab-0080c74c7e95} (Microsoft Windows Media Player 12.0)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name: Microsoft Windows Media Player 12.0
CLSID name: Windows Media Player
Path: C:\Windows\SysWOW64\
Long name: wmpdxm.dll
Short name:
Date (created): 23/01/2015 21:43:30
Date (last access): 23/01/2015 21:43:30
Date (last write): 29/10/2014 01:06:32
Filesize: 174080
Attributes: archive
MD5: 66DD20A705D1EF1F379B2D0957AF4417
CRC32: 007BB5D4
Version: 12.0.9600.17415
{89B4C1CD-B018-4511-B0A1-5476DBF70820} ()
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name:
CLSID name:
Path: C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\
Long name: mscories.dll,Install
MD5: 8BFE805555CDAF6387912A34D7978DAA
{8A69D345-D564-463c-AFF1-A69D9E530F96} (Google Chrome)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name: Google Chrome
CLSID name:
Path: "C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\Installer\
Long name: chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
MD5: A23FCE5B5D0B316A8C7327A6AAFD3E6C
{89B4C1CD-B018-4511-B0A1-5476DBF70820} ()
location: HKEY_USERS\S-1-5-21-562293194-3371628172-2901755781-1001\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name:
CLSID name:
Path: C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\
Long name: mscories.dll,Install
MD5: 8BFE805555CDAF6387912A34D7978DAA
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\
BHO name: Lync Click to Call
CLSID name: Lync Browser Helper
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 22/10/2014 14:05:36
Date (last access): 13/11/2014 08:28:32
Date (last write): 22/10/2014 14:05:36
Filesize: 153248
Attributes: archive
MD5: D2FA55F98AEC5D82D055062101145C20
CRC32: 7C579EAD
Version: 15.0.4667.1000
{08165EA0-E946-11CF-9C87-00AA005127ED} (WebCheckWebCrawler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheckWebCrawler
CLSID name: WebCheckWebCrawler
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{F5175861-2688-11d0-9C5E-00AA00A45957} (Subscription Folder)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Folder
CLSID name: Subscription Folder
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{7D559C10-9FE9-11d0-93F7-00AA0059CE02} (Code Download Agent)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Code Download Agent
CLSID name: Code Download Agent
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{289AF617-1CC3-42A6-926C-E6A863F0E3BA} (DLNA Namespace Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: DLNA Namespace Extension
CLSID name: DLNA Media Servers Data Source
Path: C:\Windows\SysWOW64\
Long name: dlnashext.dll
Short name:
Date (created): 23/01/2015 21:44:08
Date (last access): 23/01/2015 21:44:08
Date (last write): 29/10/2014 01:29:06
Filesize: 434176
Attributes: archive
MD5: AAA6B19531E8BBE585A38591D935E05E
CRC32: 9B14B9A4
Version: 12.0.9600.17415
{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE} (Subscription Mgr)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Mgr
CLSID name: Subscription Mgr
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{60254CA5-953B-11CF-8C96-00AA00B8708C} (Shell extensions for Windows Script Host)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Shell extensions for Windows Script Host
CLSID name: Shell Extension For Windows Script Host
Path: C:\Windows\SysWOW64\
Long name: wshext.dll
Short name:
Date (created): 23/01/2015 21:43:12
Date (last access): 23/01/2015 21:43:12
Date (last write): 29/10/2014 01:33:04
Filesize: 80896
Attributes: archive
MD5: B5FE3CDB7E54D59324B4749B720E7E44
CRC32: 6426A430
Version: 5.8.9600.17415
{BFD468D2-D0A0-4bdc-878C-E69C2F5B435D} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewUrl
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{f8b8412b-dea3-4130-b36c-5e8be73106ac} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewHtml
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{b9815375-5d7f-4ce2-9245-c9d4da436930} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewEmail
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB} (WebCheck SyncMgr Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheck SyncMgr Handler
CLSID name: WebCheck SyncMgr Handler
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{92dbad9f-5025-49b0-9078-2d78f935e341} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewMime
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{3DBEE9A1-C471-4B95-BBCA-F39310064458} (Microsoft Camera Raw Property Store)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Camera Raw Property Store
CLSID name:
Path: C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\
Long name: MicrosoftRawCodec.dll
Short name:
Date (created): 13/11/2014 04:03:52
Date (last access): 13/11/2014 04:03:52
Date (last write): 02/10/2014 06:26:46
Filesize: 28098072
Attributes: archive
MD5: 70518D4BB56214268C90E00A5BB1317E
CRC32: D8CA66F0
Version: 6.3.9600.17388
{8BA85C75-763B-4103-94EB-9470F12FE0F7} (Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{CD55129A-B1A1-438E-A425-CEBC7DC684EE} (Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} (Microsoft SkyDrive Pro Icon Overlay 3 (InSync))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Browser Helper
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{DB19096C-5365-4164-A246-59FEFF9D8062} (Nameext)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Nameext
CLSID name: Enterprise Projects
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: NAMEEXT.DLL
Short name:
Date (created): 15/11/2013 03:35:22
Date (last access): 19/02/2014 21:37:52
Date (last write): 15/11/2013 03:35:22
Filesize: 317632
Attributes: archive
MD5: 1EFDC8ED7440F0B616DD5E15B2B67054
CRC32: E3525FDB
Version: 15.0.4543.1000
{0006F045-0000-0000-C000-000000000046} (Microsoft Outlook Custom Icon Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Outlook Custom Icon Handler
CLSID name:
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: OLKFSTUB.DLL
Short name:
Date (created): 22/01/2014 04:11:44
Date (last access): 05/03/2014 13:53:10
Date (last write): 22/01/2014 04:11:44
Filesize: 252104
Attributes: archive
MD5: 245EE0EB023A1A4D02CDBEA2D3522638
CRC32: 49D4925D
Version: 15.0.4553.1000
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} (Microsoft Office Thumbnail Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Thumbnail Handler
CLSID name: Microsoft Office Thumbnail Handler
Path: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 22/01/2014 04:11:44
Date (last access): 05/03/2014 13:53:08
Date (last write): 22/01/2014 04:11:44
Filesize: 732376
Attributes: archive
MD5: 43EEAAE8723300F5007B494629791C6E
CRC32: 9360580F
Version: 15.0.4569.1503
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} (Microsoft Office Metadata Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Metadata Handler
CLSID name: Microsoft Office Metadata Handler
Path: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 22/01/2014 04:11:44
Date (last access): 05/03/2014 13:53:08
Date (last write): 22/01/2014 04:11:44
Filesize: 732376
Attributes: archive
MD5: 43EEAAE8723300F5007B494629791C6E
CRC32: 9360580F
Version: 15.0.4569.1503
{E08BF9C5-191E-4B15-8F67-2622B4DB5580} (PSD Shell Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: PSD Shell Extension
CLSID name: PSDShCtrl Class
Path: C:\Program Files (x86)\Infineon\Security Platform Software\
Long name: PSDShExt.dll
Short name:
Date (created): 26/06/2013 21:09:54
Date (last access): 08/11/2014 23:12:46
Date (last write): 26/06/2013 21:09:54
Filesize: 259920
Attributes: archive
MD5: 188CCD167E7A9B56C2ADECC3471C2D82
CRC32: 43019DA1
Version: 4.3.3390.0
--- Browser helper object list (64 bit) ---
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call BHO)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: Lync Click to Call BHO
CLSID name: Lync Browser Helper
Path: C:\Program Files\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:23:48
Date (last write): 12/11/2014 17:17:06
Filesize: 218784
Attributes: archive
MD5: AFB56DF7E027A12739188ED96B1EDE04
CRC32: 292C9346
Version: 15.0.4673.1000
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{22d6f312-b0f6-11d0-94ab-0080c74c7e95} (Microsoft Windows Media Player 12.0)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name: Microsoft Windows Media Player 12.0
CLSID name: Windows Media Player
Path: C:\Windows\System32\
Long name: wmpdxm.dll
Short name:
Date (created): 23/01/2015 21:43:30
Date (last access): 23/01/2015 21:43:30
Date (last write): 29/10/2014 01:06:32
Filesize: 174080
Attributes: archive
MD5: 66DD20A705D1EF1F379B2D0957AF4417
CRC32: 007BB5D4
Version: 12.0.9600.17415
{89B4C1CD-B018-4511-B0A1-5476DBF70820} ()
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name:
CLSID name:
Path: C:\Windows\System32\Rundll32.exe C:\Windows\System32\
Long name: mscories.dll,Install
MD5: 8BFE805555CDAF6387912A34D7978DAA
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\
BHO name: Lync Click to Call
CLSID name: Lync Browser Helper
Path: C:\Program Files\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:23:48
Date (last write): 12/11/2014 17:17:06
Filesize: 218784
Attributes: archive
MD5: AFB56DF7E027A12739188ED96B1EDE04
CRC32: 292C9346
Version: 15.0.4673.1000
{08165EA0-E946-11CF-9C87-00AA005127ED} (WebCheckWebCrawler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheckWebCrawler
CLSID name: WebCheckWebCrawler
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{F5175861-2688-11d0-9C5E-00AA00A45957} (Subscription Folder)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Folder
CLSID name: Subscription Folder
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{7D559C10-9FE9-11d0-93F7-00AA0059CE02} (Code Download Agent)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Code Download Agent
CLSID name: Code Download Agent
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE} (Subscription Mgr)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Mgr
CLSID name: Subscription Mgr
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{289AF617-1CC3-42A6-926C-E6A863F0E3BA} (DLNA Namespace Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: DLNA Namespace Extension
CLSID name: DLNA Media Servers Data Source
Path: C:\Windows\System32\
Long name: dlnashext.dll
Short name:
Date (created): 23/01/2015 21:44:08
Date (last access): 23/01/2015 21:44:08
Date (last write): 29/10/2014 01:29:06
Filesize: 434176
Attributes: archive
MD5: AAA6B19531E8BBE585A38591D935E05E
CRC32: 9B14B9A4
Version: 12.0.9600.17415
{60254CA5-953B-11CF-8C96-00AA00B8708C} (Shell extensions for Windows Script Host)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Shell extensions for Windows Script Host
CLSID name: Shell Extension For Windows Script Host
Path: C:\Windows\System32\
Long name: wshext.dll
Short name:
Date (created): 23/01/2015 21:43:12
Date (last access): 23/01/2015 21:43:12
Date (last write): 29/10/2014 01:33:04
Filesize: 80896
Attributes: archive
MD5: B5FE3CDB7E54D59324B4749B720E7E44
CRC32: 6426A430
Version: 5.8.9600.17415
{BFD468D2-D0A0-4bdc-878C-E69C2F5B435D} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewUrl
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{f8b8412b-dea3-4130-b36c-5e8be73106ac} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewHtml
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{b9815375-5d7f-4ce2-9245-c9d4da436930} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewEmail
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB} (WebCheck SyncMgr Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheck SyncMgr Handler
CLSID name: WebCheck SyncMgr Handler
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{92dbad9f-5025-49b0-9078-2d78f935e341} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewMime
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{3DBEE9A1-C471-4B95-BBCA-F39310064458} (Microsoft Camera Raw Property Store)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Camera Raw Property Store
CLSID name:
Path: C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\
Long name: MicrosoftRawCodec.dll
Short name:
Date (created): 13/11/2014 04:03:54
Date (last access): 13/11/2014 04:03:54
Date (last write): 02/10/2014 07:14:18
Filesize: 28876456
Attributes: archive
MD5: 0DA05FA9D52526D00DC5A1E3C3497D6D
CRC32: C5DB63B9
Version: 6.3.9600.17388
{2F603045-309F-11CF-9774-0020AFD0CFF6} (Synaptics Control Panel)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Synaptics Control Panel
CLSID name:
Path: %ProgramFiles%\Synaptics\SynTP\
Long name: SynTPCpl.dll
MD5: E1B00771447F42CBCDAD0AC56C09DEE8
{F4AE3B49-F019-4C6C-9A1A-3EE75DC83555} (TFPU file icon extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: TFPU file icon extension
CLSID name: TFPUFileExtIcon Class
Path: C:\Program Files\TOSHIBA\Fingerprint Utility\
Long name: TFPUFileShellExt.dll
Short name: TFPUFI~1.DLL
Date (created): 16/03/2012 18:25:50
Date (last access): 18/02/2014 15:02:24
Date (last write): 16/03/2012 18:25:50
Filesize: 155008
Attributes: archive
MD5: 64D234759FE38B4F0E5E83F9A0FF7E4A
CRC32: 9B22DAD9
Version: 2.0.0.4
{967B2D40-8B7D-4127-9049-61EA0C2C6DCE} (PowerISO)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: PowerISO
CLSID name: PowerISO
Path: C:\Program Files\PowerISO\
Long name: PWRISOSH.DLL
Short name:
Date (created): 03/02/2014 06:45:46
Date (last access): 19/02/2014 14:01:48
Date (last write): 03/02/2014 06:45:46
Filesize: 233496
Attributes: archive
MD5: E55B8C8D6AB0B877DD5A74CA12335CEF
CRC32: B0D553E1
Version: 5.9.0.0
{B28AA736-876B-46DA-B3A8-84C5E30BA492} (Web Sites)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Web Sites
CLSID name: Web Sites
Path: C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE15\
Long name: WXPNSE.DLL
Short name:
Date (created): 23/01/2014 16:05:00
Date (last access): 05/03/2014 13:50:44
Date (last write): 23/01/2014 16:05:00
Filesize: 850128
Attributes: archive
MD5: 8FA27310CF8B24752DEDB3E8F068C109
CRC32: 638FBF77
Version: 15.0.4569.1503
{42042206-2D85-11D3-8CFF-005004838597} (Microsoft Office HTML Icon Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office HTML Icon Handler
CLSID name:
Path: C:\Program Files\Microsoft Office\Office15\
Long name: MSOHEVI.DLL
Short name:
Date (created): 23/01/2014 16:06:24
Date (last access): 05/03/2014 13:50:50
Date (last write): 23/01/2014 16:06:24
Filesize: 80992
Attributes: archive
MD5: 23BBABA1813DC411E6B9CC624676EA89
CRC32: 4E2B8B15
Version: 15.0.4454.1000
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} (Microsoft Office Metadata Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Metadata Handler
CLSID name: Microsoft Office Metadata Handler
Path: C:\Program Files\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 23/01/2014 16:06:24
Date (last access): 05/03/2014 13:50:46
Date (last write): 23/01/2014 16:06:24
Filesize: 934616
Attributes: archive
MD5: 7593DAD61E08512CAD1FF6B04BD8CD68
CRC32: 52C6F297
Version: 15.0.4569.1503
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} (Microsoft Office Thumbnail Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Thumbnail Handler
CLSID name: Microsoft Office Thumbnail Handler
Path: C:\Program Files\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 23/01/2014 16:06:24
Date (last access): 05/03/2014 13:50:46
Date (last write): 23/01/2014 16:06:24
Filesize: 934616
Attributes: archive
MD5: 7593DAD61E08512CAD1FF6B04BD8CD68
CRC32: 52C6F297
Version: 15.0.4569.1503
{0875DCB6-C686-4243-9432-ADCCF0B9F2D7} (Microsoft OneNote Namespace Extension for Windows Desktop Search)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft OneNote Namespace Extension for Windows Desktop Search
CLSID name: Microsoft OneNote Namespace Extension for Windows Desktop Search
Path: C:\Program Files\Microsoft Office\Office15\
Long name: ONFILTER.DLL
Short name:
Date (created): 23/01/2014 16:05:10
Date (last access): 05/03/2014 13:51:14
Date (last write): 23/01/2014 16:05:10
Filesize: 2165432
Attributes: archive
MD5: 351E637153EAE3B22338D8B9F6746445
CRC32: 1FC1E5A2
Version: 15.0.4569.1503
{506F4668-F13E-4AA1-BB04-B43203AB3CC0} ({506F4668-F13E-4AA1-BB04-B43203AB3CC0})
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: {506F4668-F13E-4AA1-BB04-B43203AB3CC0}
CLSID name: ImageExtractorShellExt Class
Path: C:\Program Files\Microsoft Office\Office15\
Long name: VISSHE.DLL
Short name:
Date (created): 24/10/2013 19:25:20
Date (last access): 19/02/2014 21:37:14
Date (last write): 24/10/2013 19:25:20
Filesize: 922808
Attributes: archive
MD5: 639C712FCAD1762B82EBF9FBFCF6BF86
CRC32: 256AE457
Version: 15.0.4545.1000
{D66DC78C-4F61-447F-942B-3FB6980118CF} ({D66DC78C-4F61-447F-942B-3FB6980118CF})
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: {D66DC78C-4F61-447F-942B-3FB6980118CF}
CLSID name: CInfoTipShellExt Class
Path: C:\Program Files\Microsoft Office\Office15\
Long name: VISSHE.DLL
Short name:
Date (created): 24/10/2013 19:25:20
Date (last access): 19/02/2014 21:37:14
Date (last write): 24/10/2013 19:25:20
Filesize: 922808
Attributes: archive
MD5: 639C712FCAD1762B82EBF9FBFCF6BF86
CRC32: 256AE457
Version: 15.0.4545.1000
{8BA85C75-763B-4103-94EB-9470F12FE0F7} (Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{CD55129A-B1A1-438E-A425-CEBC7DC684EE} (Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} (Microsoft SkyDrive Pro Icon Overlay 3 (InSync))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Browser Helper
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{0006F045-0000-0000-C000-000000000046} (Microsoft Outlook Custom Icon Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Outlook Custom Icon Handler
CLSID name: Outlook File Icon Extension
Path: C:\Program Files\Microsoft Office\Office15\
Long name: OLKFSTUB.DLL
Short name:
Date (created): 23/01/2014 16:05:36
Date (last access): 05/03/2014 13:51:14
Date (last write): 23/01/2014 16:05:36
Filesize: 258760
Attributes: archive
MD5: 5C488D5DD6A864695C7CF9E7EE45AB31
CRC32: 3FB2138F
Version: 15.0.4553.1000
{44176360-2BBF-4EC1-93CE-384B8681A0BC} (SDECon64)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: SDECon64
CLSID name: Spybot-S&D Explorer Integration
Path: C:\Program Files (x86)\Spybot - Search & Destroy 2\
Long name: SDECon64.dll
Short name:
Date (created): 12/03/2014 13:04:50
Date (last access): 12/03/2014 13:04:50
Date (last write): 16/05/2013 10:55:50
Filesize: 467456
Attributes: archive
MD5: BB5E24166EE6FB7E35A36083A8267BFA
CRC32: 4E314EB2
Version: 2.1.18.113
{BC593DF5-466F-44EC-8FFD-C4DBC603B917} (IZArc Shell Context Menu)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: IZArc Shell Context Menu
CLSID name: IZArc Shell Context Menu
Path: C:\PROGRA~2\IZArc\
Long name: IZArcCM64.dll
Short name: IZARCC~1.DLL
Date (created): 12/04/2014 21:54:54
Date (last access): 12/04/2014 21:54:54
Date (last write): 20/07/2012 13:39:14
Filesize: 2469888
Attributes: archive
MD5: 97287470B9B6D0FEA3469995D1E3891E
CRC32: DED13FB8
{CA5FEE26-14C1-4B5A-86E9-233FC0EE2682} (IZArc DragDrop Menu)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: IZArc DragDrop Menu
CLSID name: IZArc DragDrop Menu
Path: C:\PROGRA~2\IZArc\
Long name: IZArcCM64.dll
Short name: IZARCC~1.DLL
Date (created): 12/04/2014 21:54:54
Date (last access): 12/04/2014 21:54:54
Date (last write): 20/07/2012 13:39:14
Filesize: 2469888
Attributes: archive
MD5: 97287470B9B6D0FEA3469995D1E3891E
CRC32: DED13FB8
{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} (iTunes)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: iTunes
CLSID name: iTunes
Path: C:\Program Files\iTunes\
Long name: iTunesMiniPlayer.dll
Short name: ITUNES~1.DLL
Date (created): 15/10/2014 04:42:22
Date (last access): 22/10/2014 19:58:18
Date (last write): 15/10/2014 04:42:22
Filesize: 155944
Attributes: archive
MD5: CF8AC4599644EE42F1F945D3877F59ED
CRC32: D2A995EE
Version: 12.0.1.26
{E08BF9C5-191E-4B15-8F67-2622B4DB5580} (PSD Shell Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: PSD Shell Extension
CLSID name: PSDShCtrl Class
Path: C:\Program Files (x86)\Infineon\Security Platform Software\x64\
Long name: PSDShExt.dll
Short name:
Date (created): 26/06/2013 21:09:56
Date (last access): 08/11/2014 23:12:46
Date (last write): 26/06/2013 21:09:56
Filesize: 315216
Attributes: archive
MD5: 04FF689F823E82A1883DBAF0CBD05BD1
CRC32: E4AAA1E3
Version: 4.3.3390.0
{CFBFAE00-17A6-11D0-99CB-00C04FD64497} (Microsoft Url Search Hook)
location: HKEY_USERS\S-1-5-21-562293194-3371628172-2901755781-1001\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\
BHO name:
CLSID name: Microsoft Url Search Hook
Path: C:\Windows\System32\
Long name: ieframe.dll
Short name:
Date (created): 11/12/2014 15:06:48
Date (last access): 11/12/2014 15:06:48
Date (last write): 22/11/2014 01:13:50
Filesize: 12836864
Attributes: archive
MD5: B59E370277EDB6643083B62297175628
CRC32: 5DDCE56E
Version: 11.0.9600.17496
--- ActiveX list (32 bit) ---
--- ActiveX list (64 bit) ---
---------------------------------------------------------------
11986
[B]Edit
Please don't post Malware logs in the Spybot forums, thanks :-) (http://forums.spybot.info/showthread.php?1266-Please-don-t-post-Malware-logs-in-the-Spybot-forums-thanks-%29)
SBSD compatible log file. All rights reserved.
This log includes only active entries.
This log includes only unknown and bad entries.
--- Startup entries list (32 bit) ---
Located: Known DLLs, NORMALIZ
command: NORMALIZ.dll
file: C:\WINDOWS\system32\NORMALIZ.dll
size: 0
MD5: C9FF1D4D2FE373DB3D33886B31046E51
Located: Known DLLs, MSVCRT
command: MSVCRT.dll
file: C:\WINDOWS\system32\MSVCRT.dll
size: 0
MD5: 6465A029E543CA5AE3547B74CFE9293E
Located: Known DLLs, MSCTF
command: MSCTF.dll
file: C:\WINDOWS\system32\MSCTF.dll
size: 0
MD5: 75914C685DE3539F3A621B27B9D9F919
Located: Known DLLs, IMM32
command: IMM32.dll
file: C:\WINDOWS\system32\IMM32.dll
size: 0
MD5: 59452E147C6A5D055E5EBCB6B8E99CB7
Located: Known DLLs, IMAGEHLP
command: IMAGEHLP.dll
file: C:\WINDOWS\system32\IMAGEHLP.dll
size: 0
MD5: 20E4F2C93AA1F665FDB7EECB30B46503
Located: Known DLLs, LPK
command: LPK.dll
file: C:\WINDOWS\system32\LPK.dll
size: 0
MD5: A21697CB0D4719CB0944EAB89954645C
Located: Known DLLs, kernel32
command: kernel32.dll
file: C:\WINDOWS\system32\kernel32.dll
size: 0
MD5: 00DC86D9068D7E780407A8B66E2AFD9D
Located: Known DLLs, SHLWAPI
command: SHLWAPI.dll
file: C:\WINDOWS\system32\SHLWAPI.dll
size: 0
MD5: F3B94FC86266C10911CDC4961F4F14FF
Located: Known DLLs, SHELL32
command: SHELL32.dll
file: C:\WINDOWS\system32\SHELL32.dll
size: 0
MD5: FE21D836EE5C90F2EFCBDE2F52E25482
Located: Known DLLs, Setupapi
command: Setupapi.dll
file: C:\WINDOWS\system32\Setupapi.dll
size: 0
MD5: E5C0AC531CE6D06F97428B2E4BD28A5D
Located: Known DLLs, WS2_32
command: WS2_32.dll
file: C:\WINDOWS\system32\WS2_32.dll
size: 0
MD5: 34E71A52A1BFA68411CAECCFB6D72F8C
Located: Known DLLs, WLDAP32
command: WLDAP32.dll
file: C:\WINDOWS\system32\WLDAP32.dll
size: 0
MD5: 9A69EE134E39BB0804E3B38C7FBD3F86
Located: Known DLLs, user32
command: user32.dll
file: C:\WINDOWS\system32\user32.dll
size: 0
MD5: 76C5CF09F53A3B089B5581B9938F8CAE
Located: Known DLLs, OLEAUT32
command: OLEAUT32.dll
file: C:\WINDOWS\system32\OLEAUT32.dll
size: 0
MD5: 645CC44EBD6C29EAC35FED07FDBBD88D
Located: Known DLLs, ole32
command: ole32.dll
file: C:\WINDOWS\system32\ole32.dll
size: 0
MD5: 074D700A200508287A6E697F7056AF8D
Located: Known DLLs, NSI
command: NSI.dll
file: C:\WINDOWS\system32\NSI.dll
size: 0
MD5: 40A9F8D687A37A2C034EB21832B4422C
Located: Known DLLs, sechost
command: sechost.dll
file: C:\WINDOWS\system32\sechost.dll
size: 0
MD5: D6A0DC6A3B55BDF02BCFCA50EE2A36BD
Located: Known DLLs, rpcrt4
command: rpcrt4.dll
file: C:\WINDOWS\system32\rpcrt4.dll
size: 0
MD5: BC00F8DE0EFB6CC6D5544814D39728A0
Located: Known DLLs, PSAPI
command: PSAPI.DLL
file: C:\WINDOWS\system32\PSAPI.DLL
size: 0
MD5: F4858C84F99BDBCBA445EA183277A618
Located: Known DLLs, combase
command: combase.dll
file: C:\WINDOWS\system32\combase.dll
size: 0
MD5: 33F50BFD715A530B9ED683C6BE108A74
Located: Known DLLs, clbcatq
command: clbcatq.dll
file: C:\WINDOWS\system32\clbcatq.dll
size: 0
MD5: C16526B898B16A443D2C7D82B4C525B8
Located: Known DLLs, gdi32
command: gdi32.dll
file: C:\WINDOWS\system32\gdi32.dll
size: 0
MD5: C7E1C4DB1934706041B0D63D3D665BA0
Located: Known DLLs, COMDLG32
command: COMDLG32.dll
file: C:\WINDOWS\system32\COMDLG32.dll
size: 0
MD5: 8816F87759FE47FB26AF298166D575F4
Located: Known DLLs, DifxApi
command: difxapi.dll
file: C:\WINDOWS\system32\difxapi.dll
size: 0
MD5: BBEF579DB250E012011C2B2C5BEF9DD3
Located: Known DLLs, gdiplus
command: gdiplus.dll
file: C:\WINDOWS\system32\gdiplus.dll
size: 0
MD5: B8FE0DE7CBEC15CB59DD149DC24A7CB3
Located: Known DLLs, advapi32
command: advapi32.dll
file: C:\WINDOWS\system32\advapi32.dll
size: 0
MD5: 22510ACC3B3D3E4D11B6C0845A6DF24F
Located: Safe Boot Shell, AlternateShell
command: cmd.exe
file: C:\WINDOWS\system32\cmd.exe
size: 0
MD5: 622D21C40A25F9834A03BFD5FF4710C1
Located: User Init, UserInit
command: userinit.exe
file: C:\WINDOWS\system32\userinit.exe
size: 0
MD5: D10643FC0095434C819316CA6CD748C0
Located: Startup (user), Dropbox.lnk
where: C:\Users\Antonio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Users\Antonio\AppData\Roaming\Dropbox\bin\Dropbox.exe
file: C:\Users\Antonio\AppData\Roaming\Dropbox\bin\Dropbox.exe
size: 0
MD5: 6226810F26227F083929AC5584122951
Located: Startup (common), Polar WebSync.lnk
where: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup...
command: C:\Program Files (x86)\Polar\WebSync\WebSync.exe
file: C:\Program Files (x86)\Polar\WebSync\WebSync.exe
size: 0
MD5: 7A6B6ED4E0E167065AE9774D8C715E0B
Located: HK_CU:Run, HP Officejet 6500 E710n-z (NET)
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: "C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe" -deviceID "CN12C1352305JW:NW" -scfn "HP Officejet 6500 E710n-z (NET)" -AutoStart 1
file: C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe
size: 0
MD5: 22F7B9670AD770C7ED7F4738204C8E5C
Located: HK_CU:Run, ApplePhotoStreams
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
file: C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
size: 0
MD5: 105C276BB7B43501225C419B062096D0
Located: HK_CU:Run, GoogleChromeAutoLaunch_4EE4AB8A294CA68933F3F25839191513
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
file: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
size: 0
MD5: 2CA0461A5730F6FC3F90FA3833C645C9
Located: HK_CU:Run, Beats Updater
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: C:\Program Files (x86)\Beats Electronics LLC\Beats Updater.exe
file: C:\Program Files (x86)\Beats Electronics LLC\Beats Updater.exe
size: 0
MD5: 481D18271FFC579FAA7A6243FCADCCBB
Located: HK_CU:Run, LaCie Desktop Manager Startup
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: "C:\Program Files\LaCie\Desktop Manager\LaCieDesktopManagerStatusItem.exe"
file: C:\Program Files\LaCie\Desktop Manager\LaCieDesktopManagerStatusItem.exe
size: 0
MD5: AA3DFA4A343096616C8CCCB134AEC47E
Located: HK_CU:Run, iCloudServices
where: S-1-5-21-562293194-3371628172-2901755781-1001...
command: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
file: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
size: 0
MD5: EC58C1A9A3281CE0C8FCC05BDBFECB37
Located: HK_LM:Run, WD Quick View
command: C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
file: C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
size: 0
MD5: E84F189BE4353A47EBF063D8EA3C4B63
Located: HK_LM:Run, QuickTime Task
command: "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
file: C:\Program Files (x86)\QuickTime\QTTask.exe
size: 0
MD5: 271B0D188430670509CB9943D5229205
Located: HK_LM:Run, PWRISOVM.EXE
command: C:\Program Files\PowerISO\PWRISOVM.EXE -startup
file: C:\Program Files\PowerISO\PWRISOVM.EXE
size: 0
MD5: AF668AA70F1BA4A849AA866019B89B16
Located: HK_LM:Run, iTunesHelper
command: "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
file: C:\Program Files (x86)\iTunes\iTunesHelper.exe
size: 0
MD5: 0EF0822810009D58118CCDFD098FA9F4
Located: HK_LM:Run, HP Software Update
command: C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
file: C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
size: 0
MD5: 34D296AFC913E302953C70463EF09A48
Located: HK_LM:Run, IMSS
command: "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe"
file: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe
size: 0
MD5: 4C7C4CADD2515329D9D40D7DC91C5930
Located: HK_LM:Run, Intel AppUp(R) center
command: "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
file: C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
size: 0
MD5: 49CD8D25D932C5BF867EBFF00D432B75
--- Startup entries list (64 bit) ---
Located: HK_LM:Run, TFPUService
command: C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe /start
file: C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe
size: 0
MD5: 94C30EAB9CD3F6E0FFDA6579386875DE
Located: HK_LM:Run, TFPUPWDBankService
command: C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\TFPUPWDBank.exe /start
file: C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\TFPUPWDBank.exe
size: 0
MD5: 767CC5227D8E01D0E7B3523D2C5E5903
Located: HK_LM:Run, TCrdMain
command: C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
file: C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
size: 0
MD5: 919C80271F41A85B28D218CED3E26A16
Located: HK_LM:Run, TecoResident
command: C:\Program Files\TOSHIBA\Teco\TecoResident.exe
file: C:\Program Files\TOSHIBA\Teco\TecoResident.exe
size: 0
MD5: 57C4B4289DAB34CBAEEB92865C6BC022
Located: HK_LM:Run, TSleepSrv
command: C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
file: C:\Program Files (x86)\TOSHIBA\System Setting\TSleepSrv.exe
size: 0
MD5: CF74C5BE20CD4DE1299F6C92A738A2DF
Located: HK_LM:Run, TODDMain
command: C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
file: C:\Program Files (x86)\TOSHIBA\System Setting\TODDMain.exe
size: 0
MD5: 6EF487A46FB615DF717F85D7458BD2CD
Located: HK_LM:Run, IAStorIcon
command: "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
file: C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
size: 0
MD5: E0F958DF006E6FEB31AF000F1E9DC4CE
Located: HK_LM:Run, BoxSync
command: "C:\Program Files\Box\Box Sync\BoxSync.exe" -m
file: C:\Program Files\Box\Box Sync\BoxSync.exe
size: 0
MD5: 806C91A2E0482DC5635B046FA599C4D0
Located: HK_LM:Run, RtHDVCpl
command: C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
file: C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
size: 0
MD5: F072EF002CE7B945DC7DBBA6F9664FCF
Located: HK_LM:Run, SRS Premium Sound 3D
command: "C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe" /f="C:\Program Files\SRS Labs\SRS Control Panel\SRS_Premium_Sound_PS3D.zip" /h
file: C:\Program Files\SRS Labs\SRS Control Panel\SRSPanel_64.exe
size: 0
MD5: DA721D686043AA30B4B836A957E92B35
--- System Services ---
Service (registry key): AdobeARMservice
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Adobe Acrobat Update Service
Description: Adobe Acrobat Updater keeps your Adobe software up to date.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
Image size: 0
Image MD5: FC5B75CA6A1DA31EDD4F8D53F5540B98
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 0
Service (registry key): AdobeFlashPlayerUpdateSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Adobe Flash Player Update Service
Description: This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes.
Object name: LocalSystem
Image path: C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Image size: 0
Image MD5: 73F937DCC68E13C752D59FE33BE62FC5
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): AeLookupSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\aelupsvc.dll,-1
Description: @%SystemRoot%\system32\aelupsvc.dll,-2
Object name: localSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): AppIDSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\appidsvc.dll,-100
Description: @%systemroot%\system32\appidsvc.dll,-101
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,AppID,CryptSvc
Service (registry key): Appinfo
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\appinfo.dll,-100
Description: @%systemroot%\system32\appinfo.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,ProfSvc
Service (registry key): Apple Mobile Device
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Apple Mobile Device
Description: Provides the interface to Apple mobile devices.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
Image size: 0
Image MD5: 650D03E40F93FAE323CB841F80368E5C
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: Tcpip
Service (registry key): AppMgmt
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @appmgmts.dll,-3250
Description: @appmgmts.dll,-3251
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): AppReadiness
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\AppReadiness.dll,-1000
Description: @%SystemRoot%\System32\AppReadiness.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k AppReadiness
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): AppXSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\appxdeploymentserver.dll,-1
Description: @%SystemRoot%\system32\appxdeploymentserver.dll,-2
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k wsappx
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): AudioEndpointBuilder
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204
Description: @%SystemRoot%\System32\AudioEndpointBuilder.dll,-205
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): Audiosrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\audiosrv.dll,-200
Description: @%SystemRoot%\System32\audiosrv.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: AudioEndpointBuilder,RpcSs,MMCSS
Service (registry key): AxInstSV
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\AxInstSV.dll,-103
Description: @%SystemRoot%\system32\AxInstSV.dll,-104
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k AxInstSVGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): BDESVC
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\bdesvc.dll,-100
Description: @%SystemRoot%\system32\bdesvc.dll,-101
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): BFE
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\bfe.dll,-1001
Description: @%SystemRoot%\system32\bfe.dll,-1002
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,WfpLwfs
Service (registry key): BITS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\qmgr.dll,-1000
Description: @%SystemRoot%\system32\qmgr.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,EventSystem
Service (registry key): BoxSyncUpdateService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Box Sync Update Service
Description: Updater for Box Sync
Object name: LocalSystem
Image path: "C:\Program Files\Box\Box Sync\SyncUpdaterService.exe"
Image size: 0
Image MD5: C52093BEF318FFCC1130E9D66F3ED5DD
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): BrokerInfrastructure
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\bisrv.dll,-100
Description: @%windir%\system32\bisrv.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,DcomLaunch,RpcSs
Service (registry key): Browser
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\browser.dll,-100
Description: @%systemroot%\system32\browser.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: LanmanWorkstation,LanmanServer
Service (registry key): BthHFSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\BthHFSrv.dll,-103
Description: @%SystemRoot%\System32\BthHFSrv.dll,-102
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: bthserv
Service (registry key): bthserv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\bthserv.dll,-101
Description: @%SystemRoot%\System32\bthserv.dll,-102
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): CertPropSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\certprop.dll,-11
Description: @%SystemRoot%\System32\certprop.dll,-12
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): COMSysApp
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @comres.dll,-947
Description: @comres.dll,-948
Object name: LocalSystem
Image path: %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
Image size: 0
Image MD5: CC05C14EEFF5E7813A49718BA88E59B0
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RpcSs,EventSystem,SENS
Service (registry key): cphs
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Content Protection HECI Service
Description: Intel(R) Content Protection HECI Service - enables communication with the Content Protection FW
Object name: LocalSystem
Image path: %SystemRoot%\SysWow64\IntelCpHeciSvc.exe
Image size: 0
Image MD5: 10CA7F8EF882104CFBA8D0871DB06AF3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): CryptSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\cryptsvc.dll,-1001
Description: @%SystemRoot%\system32\cryptsvc.dll,-1002
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): CscService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\cscsvc.dll,-200
Description: @%systemroot%\system32\cscsvc.dll,-201
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): DcomLaunch
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @combase.dll,-5012
Description: @combase.dll,-5013
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): defragsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\defragsvc.dll,-101
Description: @%SystemRoot%\system32\defragsvc.dll,-102
Object name: localSystem
Image path: %SystemRoot%\system32\svchost.exe -k defragsvc
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): DeviceAssociationService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\das.dll,-100
Description: @%SystemRoot%\system32\das.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): DeviceInstall
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umpnpmgr.dll,-100
Description: @%SystemRoot%\system32\umpnpmgr.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): Dhcp
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\dhcpcore.dll,-100
Description: @%SystemRoot%\system32\dhcpcore.dll,-101
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: NSI,Tdx,Afd
Service (registry key): Dnscache
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\dnsapi.dll,-101
Description: @%SystemRoot%\System32\dnsapi.dll,-102
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: Tdx,nsi
Service (registry key): dot3svc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\dot3svc.dll,-1102
Description: @%systemroot%\system32\dot3svc.dll,-1103
Object name: localSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,Ndisuio,Eaphost
Service (registry key): DPS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\dps.dll,-500
Description: @%systemroot%\system32\dps.dll,-501
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): DsmSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000
Description: @%SystemRoot%\system32\DeviceSetupManager.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,HTTP
Service (registry key): Eaphost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\eapsvc.dll,-1
Description: @%systemroot%\system32\eapsvc.dll,-2
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,KeyIso
Service (registry key): EventLog
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wevtsvc.dll,-200
Description: @%SystemRoot%\system32\wevtsvc.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): EventSystem
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @comres.dll,-2450
Description: @comres.dll,-2451
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): EvtEng
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) PROSet/Wireless Event Log
Description: Manages the event trace messages for all the Intel® PROSet/Wireless Software components.
Object name: LocalSystem
Image path: "C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
Image size: 0
Image MD5: 21FFB87A70019E9B39C5A8469695ACBA
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): fdPHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\fdPHost.dll,-100
Description: @%systemroot%\system32\fdPHost.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,http
Service (registry key): FDResPub
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\fdrespub.dll,-100
Description: @%systemroot%\system32\fdrespub.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,http
Service (registry key): fhsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\fhsvc.dll,-101
Description: @%systemroot%\system32\fhsvc.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): FontCache
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\FntCache.dll,-100
Description: @%systemroot%\system32\FntCache.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): FontCache3.0.0.0
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\PresentationHost.exe,-3309
Description: @%SystemRoot%\system32\PresentationHost.exe,-3310
Object name: NT Authority\LocalService
Image path: %systemroot%\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
Image size: 0
Image MD5: 1C52387BF5A127F5F3BFB31288F30D93
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): GenieTimelineService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Genie Timeline Service
Description: Genie Timeline Service provided by. Genie9
Object name: LocalSystem
Image path: "C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe"
Image size: 0
Image MD5: 35A52E4721D3C1D2FDCC7FC9BEF1A95D
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 0
Service (registry key): gpsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @gpapi.dll,-112
Description: @gpapi.dll,-113
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS,Mup
Service (registry key): gupdate
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Serviço Google Update (gupdate)
Description: Mantém o software Google atualizado. Se este serviço for desactivado ou interrompido, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
Image size: 0
Image MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): gupdatem
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Serviço Google Update (gupdatem)
Description: Mantém o software Google atualizado. Se este serviço for desactivado ou interrompido, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
Image size: 0
Image MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): hidserv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\hidserv.dll,-101
Description: @%SystemRoot%\System32\hidserv.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): hkmsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\kmsvc.dll,-6
Description: @%SystemRoot%\system32\kmsvc.dll,-7
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): HomeGroupListener
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\ListSvc.dll,-100
Description: @%SystemRoot%\System32\ListSvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): HomeGroupProvider
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\provsvc.dll,-100
Description: @%SystemRoot%\System32\provsvc.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: netprofm,fdrespub,fdphost
Service (registry key): IAStorDataMgrSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Rapid Storage Technology
Description: Provides storage event notification and manages communication between the storage driver and user space applications.
Object name: LocalSystem
Image path: "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
Image size: 0
Image MD5: 9D7AFC77C928460336642D6EFDB5BDEA
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 0
Depends On services: winmgmt
Service (registry key): ICCS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS
Description: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe"
Image size: 0
Image MD5: 83FF82FE209E7997067B375DAD6CF23D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): IFXSpMgtSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Security Platform Management Service
Description: Provides management services for the Security Platform.
Object name: LocalSystem
Image path: C:\Program Files (x86)\Infineon\Security Platform Software\ifxspmgt.exe
Image size: 0
Image MD5: BF5331A37DDF11AD2CBF7129C653191C
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): IFXTCS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Trusted Platform Core Service
Description: The Trusted Platform Core Service manages access to the Trusted Platform Module of this computer. If this service is stopped, the trustworthiness of this computer no longer can be verified. If this service is disabled, any services that explicitly depend on it will fail to start.
Object name: LocalSystem
Image path: C:\Program Files (x86)\Infineon\Security Platform Software\ifxtcs.exe
Image size: 0
Image MD5: 563A64BA3184F1E79CDF078FD3AC9460
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): IKEEXT
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ikeext.dll,-501
Description: @%SystemRoot%\system32\ikeext.dll,-502
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: BFE
Service (registry key): Intel(R) Capability Licensing Service Interface
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Capability Licensing Service Interface
Description: Version: 1.24.738.1
Object name: LocalSystem
Image path: "C:\Program Files\Intel\iCLS Client\HeciServer.exe"
Image size: 0
Image MD5: B353F1834FCD36D77BE3F74992C147D4
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): Intel(R) ME Service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) ME Service
Description: Intel® Manageability Engine Service (Intel® ME Service)
Object name: LocalSystem
Image path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
Image size: 0
Image MD5: 06A1E47AF06788E25A7A290164B1E434
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): iphlpsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\iphlpsvc.dll,-500
Description: @%SystemRoot%\system32\iphlpsvc.dll,-501
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSS,Tdx,winmgmt,tcpip,nsi,WinHttpAutoProxySvc
Service (registry key): iPod Service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Serviço iPod
Description: Serviços de gestão de hardware do iPod
Object name: LocalSystem
Image path: "C:\Program Files\iPod\bin\iPodService.exe"
Image size: 0
Image MD5: 7FAE5B6CDB18B0B2E81F32869F595022
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RpcSs
Service (registry key): jhi_service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Dynamic Application Loader Host Interface Service
Description: Intel(R) Dynamic Application Loader Host Interface Service - Allows applications to access the local Intel (R) DAL
Object name: LocalSystem
Image path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
Image size: 0
Image MD5: 5B7DE9D87B9D2713BDD6A53678DC2A49
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): KtmRm
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @comres.dll,-2946
Description: @comres.dll,-2947
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,SamSS
Service (registry key): LaCieDesktopManagerService
Registry path: \SYSTEM\ControlSet001\Services\
Object name: LocalSystem
Image path: C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe
Image size: 0
Image MD5: EB43C677193C36734E918BBAD85E5114
Control Set: ControlSet001
Start: 2
Type: 272
Error Control: 1
Service (registry key): LanmanServer
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\srvsvc.dll,-100
Description: @%systemroot%\system32\srvsvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: SamSS,Srv2
Service (registry key): LanmanWorkstation
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wkssvc.dll,-100
Description: @%systemroot%\system32\wkssvc.dll,-101
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: Bowser,MRxSmb20,NSI
Service (registry key): lfsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\GeofenceMonitorService.dll,-1
Description: @%SystemRoot%\System32\GeofenceMonitorService.dll,-2
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): lltdsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\lltdres.dll,-1
Description: @%SystemRoot%\system32\lltdres.dll,-2
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss,lltdio
Service (registry key): lmhosts
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\lmhsvc.dll,-101
Description: @%SystemRoot%\system32\lmhsvc.dll,-102
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: NetBT,Afd
Service (registry key): LMS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Management and Security Application Local Management Service
Description: Allows applications to access the local Intel(R) Management and Security Application using its locally-available selected network interfaces.
Object name: LocalSystem
Image path: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
Image size: 0
Image MD5: E70FD0D2C95F559A17321D831875593D
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): LSM
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\lsm.dll,-1001
Description: @%windir%\system32\lsm.dll,-1002
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,DcomLaunch,RpcSs
Service (registry key): MMCSS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\mmcss.dll,-100
Description: @%systemroot%\system32\mmcss.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): MozillaMaintenance
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Mozilla Maintenance Service
Description: The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe"
Image size: 0
Image MD5: 345477F02C308B7480702767218C86A2
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): MpsSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\FirewallAPI.dll,-23090
Description: @%SystemRoot%\system32\FirewallAPI.dll,-23091
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: mpsdrv,bfe
Service (registry key): MSiSCSI
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\iscsidsc.dll,-5000
Description: @%SystemRoot%\system32\iscsidsc.dll,-5001
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): msiserver
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\msimsg.dll,-27
Description: @%SystemRoot%\system32\msimsg.dll,-32
Object name: LocalSystem
Image path: %systemroot%\system32\msiexec.exe /V
Image size: 0
Image MD5: 055CCE830A54C2C1B598E2066F65C9AB
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: rpcss
Service (registry key): MsKeyboardFilter
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\KeyboardFilterSvc.dll,-101
Description: @%SystemRoot%\system32\KeyboardFilterSvc.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Service (registry key): MyWiFiDHCPDNS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Wireless PAN DHCP Server
Object name: LocalSystem
Image path: "C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe"
Image size: 0
Image MD5: 53EE034F83E9A7A8E421572E385F67CD
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Depends On services: RPCSS
Service (registry key): napagent
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\qagentrt.dll,-6
Description: @%SystemRoot%\system32\qagentrt.dll,-7
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): NcaSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ncasvc.dll,-3009
Description: @%SystemRoot%\system32\ncasvc.dll,-3008
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k NetSvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: BFE,dnscache,NSI,iphlpsvc
Service (registry key): NcbService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ncbservice.dll,-500
Description: @%SystemRoot%\system32\ncbservice.dll,-501
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSS,tcpip
Service (registry key): NcdAutoSetup
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\NcdAutoSetup.dll,-100
Description: @%SystemRoot%\system32\NcdAutoSetup.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: netprofm
Service (registry key): Netman
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\netman.dll,-109
Description: @%SystemRoot%\system32\netman.dll,-110
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,nsi
Service (registry key): netprofm
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\netprofmsvc.dll,-202
Description: @%SystemRoot%\system32\netprofmsvc.dll,-203
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,nlasvc
Service (registry key): NetTcpPortSharing
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8201
Description: @%systemroot%\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll,-8200
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
Image size: 0
Image MD5: 1092B3190E69E0C5ECBCE90F171DE047
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Service (registry key): NlaSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\nlasvc.dll,-1
Description: @%SystemRoot%\System32\nlasvc.dll,-2
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: NSI,RpcSs,TcpIp,Dhcp,Eventlog
Service (registry key): nsi
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\nsisvc.dll,-200
Description: @%SystemRoot%\system32\nsisvc.dll,-201
Object name: NT Authority\LocalService
Image path: %systemroot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: rpcss,nsiproxy
Service (registry key): ose64
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Office 64 Source Engine
Description: Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports.
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
Image size: 0
Image MD5: 11E0B35479C895888BA3D7F619DCFFF3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): p2pimsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pnrpsvc.dll,-8004
Description: @%SystemRoot%\system32\pnrpsvc.dll,-8005
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): p2psvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\p2psvc.dll,-8006
Description: @%SystemRoot%\system32\p2psvc.dll,-8007
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: p2pimsvc,PNRPSvc
Service (registry key): PcaSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pcasvc.dll,-1
Description: @%SystemRoot%\system32\pcasvc.dll,-2
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): PeerDistSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\peerdistsvc.dll,-9000
Description: @%SystemRoot%\system32\peerdistsvc.dll,-9001
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k PeerDist
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: http
Service (registry key): PerfHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\sysWow64\perfhost.exe,-2
Description: @%systemroot%\SysWow64\perfhost.exe,-1
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\SysWow64\perfhost.exe
Image size: 0
Image MD5: 8E3C640FFF5A963F570233AE99C0FFF3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): PersonalSecureDriveService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Personal Secure Drive Service
Description: Serviço para drives de criptografados da Personal Secure Drive
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Infineon\Security Platform Software\IfxPsdSv.exe"
Image size: 0
Image MD5: E4B675314DCEA58CBEACB856EE870678
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): pla
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\pla.dll,-500
Description: @%systemroot%\system32\pla.dll,-501
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): PlugPlay
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umpnpmgr.dll,-200
Description: @%SystemRoot%\system32\umpnpmgr.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): PNRPAutoReg
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pnrpauto.dll,-8002
Description: @%SystemRoot%\system32\pnrpauto.dll,-8003
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: pnrpsvc
Service (registry key): PNRPsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\pnrpsvc.dll,-8000
Description: @%SystemRoot%\system32\pnrpsvc.dll,-8001
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: p2pimsvc
Service (registry key): Polar Daemon
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Polar Daemon
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Polar\Daemon\polard.exe"
Image size: 0
Image MD5: 652565EA2FAB8E7366101A0B04DECBBC
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): PolicyAgent
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\polstore.dll,-5010
Description: @%SystemRoot%\system32\polstore.dll,-5011
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: Tcpip,bfe
Service (registry key): Power
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umpo.dll,-100
Description: @%SystemRoot%\system32\umpo.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): PrintNotify
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-1
Description: @C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll,-2
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k print
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 288
Error Control: 1
Depends On services: RpcSs
Service (registry key): ProfSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\profsvc.dll,-300
Description: @%systemroot%\system32\profsvc.dll,-301
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): QWAVE
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\qwave.dll,-1
Description: @%SystemRoot%\system32\qwave.dll,-2
Object name: NT AUTHORITY\LocalService
Image path: %windir%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss,psched,QWAVEdrv,LLTDIO
Service (registry key): RasAuto
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\rasauto.dll,-200
Description: @%Systemroot%\system32\rasauto.dll,-201
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RasAcd
Service (registry key): RasMan
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\rasmans.dll,-200
Description: @%Systemroot%\system32\rasmans.dll,-201
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: SstpSvc
Service (registry key): RegSrvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) PROSet/Wireless Registry Service
Description: Provides registry access to all Intel® PROSet/Wireless Software components
Object name: LocalSystem
Image path: "C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
Image size: 0
Image MD5: 1791B1C8C72E13D193ADE659E7DB87C1
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): RemoteAccess
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\mprdim.dll,-200
Description: @%Systemroot%\system32\mprdim.dll,-201
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Depends On services: RpcSS,Bfe,RasMan,Http
Depends On group: NetBIOSGroup
Service (registry key): RemoteRegistry
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @regsvc.dll,-1
Description: @regsvc.dll,-2
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k localService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): RpcEptMapper
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\RpcEpMap.dll,-1001
Description: @%windir%\system32\RpcEpMap.dll,-1002
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k RPCSS
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): RpcSs
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @combase.dll,-5010
Description: @combase.dll,-5011
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k rpcss
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,DcomLaunch
Service (registry key): RtkAudioService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Realtek Audio Service
Description: For cooperation with Realtek audio driver.
Object name: LocalSystem
Image path: C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
Image size: 0
Image MD5: 6831D30B0DB45E25E6C3207247C6EC36
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): SCardSvr
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\SCardSvr.dll,-1
Description: @%SystemRoot%\System32\SCardSvr.dll,-5
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: wudfsvc
Service (registry key): ScDeviceEnum
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\ScDeviceEnum.dll,-100
Description: @%SystemRoot%\System32\ScDeviceEnum.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): Schedule
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\schedsvc.dll,-100
Description: @%SystemRoot%\system32\schedsvc.dll,-101
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RPCSS,SystemEventsBroker
Service (registry key): SCPolicySvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\certprop.dll,-13
Description: @%SystemRoot%\System32\certprop.dll,-14
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): seclogon
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\seclogon.dll,-7001
Description: @%SystemRoot%\system32\seclogon.dll,-7000
Object name: LocalSystem
Image path: %windir%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): SENS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\Sens.dll,-200
Description: @%SystemRoot%\system32\Sens.dll,-201
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: EventSystem
Service (registry key): SensrSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\sensrsvc.dll,-1000
Description: @%SystemRoot%\System32\sensrsvc.dll,-1001
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): SessionEnv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\SessEnv.dll,-1026
Description: @%SystemRoot%\System32\SessEnv.dll,-1027
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,LanmanWorkstation
Service (registry key): SharedAccess
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\ipnathlp.dll,-106
Description: @%SystemRoot%\system32\ipnathlp.dll,-107
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 4
Type: 32
Error Control: 1
Depends On services: Netman,WinMgmt,BFE
Service (registry key): ShellHWDetection
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\shsvcs.dll,-12288
Description: @%SystemRoot%\System32\shsvcs.dll,-12289
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 0
Depends On services: RpcSs
Service (registry key): smphost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\smphost.dll,-102
Description: @%SystemRoot%\System32\smphost.dll,-101
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k smphost
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): SSDPSRV
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\ssdpsrv.dll,-100
Description: @%systemroot%\system32\ssdpsrv.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP
Service (registry key): SstpSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\sstpsvc.dll,-200
Description: @%SystemRoot%\system32\sstpsvc.dll,-201
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): stisvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wiaservc.dll,-9
Description: @%SystemRoot%\system32\wiaservc.dll,-10
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k imgsvc
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RpcSs
Service (registry key): StorSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\StorSvc.dll,-100
Description: @%SystemRoot%\System32\StorSvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): svsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\svsvc.dll,-101
Description: @%SystemRoot%\system32\svsvc.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): swprv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\swprv.dll,-103
Description: @%SystemRoot%\System32\swprv.dll,-102
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k swprv
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): SysMain
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\sysmain.dll,-1000
Description: @%SystemRoot%\system32\sysmain.dll,-1001
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 0
Depends On services: rpcss,fileinfo
Service (registry key): SystemEventsBroker
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\SystemEventsBrokerServer.dll,-1001
Description: @%windir%\system32\SystemEventsBrokerServer.dll,-1002
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k DcomLaunch
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcEptMapper,RpcSs
Service (registry key): TabletInputService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\TabSvc.dll,-100
Description: @%SystemRoot%\system32\TabSvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): TapiSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\tapisrv.dll,-10100
Description: @%SystemRoot%\system32\tapisrv.dll,-10101
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): TeamViewer9
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TeamViewer 9
Description: TeamViewer Remote Software
Object name: LocalSystem
Image path: "C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
Image size: 0
Image MD5: E849218177EC8F7541EC3FAA693EE21A
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Service (registry key): TemproMonitoringService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TEMPRO Service
Description: Toshiba support and information tool
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe"
Image size: 0
Image MD5: E964837B2A702D82E51DE879FEFDF22B
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): TermService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\termsrv.dll,-268
Description: @%SystemRoot%\System32\termsrv.dll,-267
Object name: NT Authority\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS
Service (registry key): Themes
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\themeservice.dll,-8192
Description: @%SystemRoot%\System32\themeservice.dll,-8193
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Service (registry key): THREADORDER
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\mmcss.dll,-102
Description: @%systemroot%\system32\mmcss.dll,-103
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): TimeBroker
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%windir%\system32\TimeBrokerServer.dll,-1001
Description: @%windir%\system32\TimeBrokerServer.dll,-1002
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): TMachInfo
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TMachInfo
Description: TOSHIBA Machine Information Service
Object name: LocalSystem
Image path: "C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe"
Image size: 0
Image MD5: 6C4F5CD42074DB52AE88FC4BAB2C54F7
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): TOSHIBA eco Utility Service
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TOSHIBA eco Utility Service
Description: TOSHIBA eco Utility Service
Object name: LocalSystem
Image path: "C:\Program Files\TOSHIBA\Teco\TecoService.exe"
Image size: 0
Image MD5: 14029F05C2DDAD29DAE614E407A9551F
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: Winmgmt
Service (registry key): TPCHSrv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: TPCH Service
Description: TOSHIBA PC Health Monitor
Object name: LocalSystem
Image path: "C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe"
Image size: 0
Image MD5: 8608681DC6E2975815A593209A6432CD
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Depends On services: Winmgmt
Service (registry key): TrkWks
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\trkwks.dll,-1
Description: @%SystemRoot%\system32\trkwks.dll,-2
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): TrustedInstaller
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\servicing\TrustedInstaller.exe,-100
Description: @%SystemRoot%\servicing\TrustedInstaller.exe,-101
Object name: localSystem
Image path: %SystemRoot%\servicing\TrustedInstaller.exe
Image size: 0
Image MD5: 44A94FB4C76528D2382FFE04B05827C3
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 1
Service (registry key): UmRdpService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\umrdp.dll,-1000
Description: @%SystemRoot%\system32\umrdp.dll,-1001
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: TermService,RDPDR
Service (registry key): UNS
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) Management and Security Application User Notification Service
Description: Intel(R) Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel(R) Management and Security Application Device.
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
Image size: 0
Image MD5: C485FB802F6C4A306B8F89BA087E5CA2
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: LMS
Service (registry key): upnphost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\upnphost.dll,-213
Description: @%systemroot%\system32\upnphost.dll,-214
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: SSDPSRV,HTTP
Service (registry key): vmicguestinterface
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-801
Description: @%systemroot%\system32\vmicres.dll,-802
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicheartbeat
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-101
Description: @%systemroot%\system32\vmicres.dll,-102
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k ICService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmickvpexchange
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-201
Description: @%systemroot%\system32\vmicres.dll,-202
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicrdv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-601
Description: @%systemroot%\system32\vmicres.dll,-602
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k ICService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicshutdown
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-301
Description: @%systemroot%\system32\vmicres.dll,-302
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmictimesync
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-401
Description: @%systemroot%\system32\vmicres.dll,-402
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): vmicvss
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\vmicres.dll,-501
Description: @%systemroot%\system32\vmicres.dll,-502
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): W32Time
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\w32time.dll,-200
Description: @%SystemRoot%\system32\w32time.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WbioSrvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wbiosrvc.dll,-100
Description: @%systemroot%\system32\wbiosrvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k WbioSvcGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,VaultSvc,WUDFSvc
Service (registry key): Wcmsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wcmsvc.dll,-4097
Description: @%SystemRoot%\System32\wcmsvc.dll,-4098
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): wcncsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wcncsvc.dll,-3
Description: @%SystemRoot%\system32\wcncsvc.dll,-4
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): WcsPlugInService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\WcsPlugInService.dll,-200
Description: @%SystemRoot%\system32\WcsPlugInService.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k wcssvc
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): WDBackup
Registry path: \SYSTEM\ControlSet001\Services\
Display name: WD Backup
Description: WD SmartWare Backup Engine
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
Image size: 0
Image MD5: 502FA6BD01D9141D34C2FCA8F8726E3F
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: WDDriveService,RPCSS
Service (registry key): WDDriveService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: WD Drive Manager
Description: Provides discovery of WD Drives
Object name: LocalSystem
Image path: "C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
Image size: 0
Image MD5: C50B1A397F35908EEA98C964E77A6A97
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): WdiServiceHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wdi.dll,-502
Description: @%systemroot%\system32\wdi.dll,-503
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WdiSystemHost
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wdi.dll,-500
Description: @%systemroot%\system32\wdi.dll,-501
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WebClient
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\webclnt.dll,-100
Description: @%systemroot%\system32\webclnt.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: MRxDAV
Service (registry key): Wecsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wecsvc.dll,-200
Description: @%SystemRoot%\system32\wecsvc.dll,-201
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\system32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: HTTP,Eventlog
Service (registry key): WEPHOSTSVC
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wephostsvc.dll,-100
Description: @%systemroot%\system32\wephostsvc.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %systemroot%\system32\svchost.exe -k WepHostSvcGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): wercplsupport
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wercplsupport.dll,-101
Description: @%SystemRoot%\System32\wercplsupport.dll,-100
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Service (registry key): WerSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wersvc.dll,-100
Description: @%SystemRoot%\System32\wersvc.dll,-101
Object name: localSystem
Image path: %SystemRoot%\System32\svchost.exe -k WerSvcGroup
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 16
Error Control: 0
Service (registry key): WiaRpc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wiarpc.dll,-2
Description: @%SystemRoot%\system32\wiarpc.dll,-1
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): WinHttpAutoProxySvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\winhttp.dll,-100
Description: @%SystemRoot%\system32\winhttp.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: Dhcp
Service (registry key): Winmgmt
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\wbem\wmisvc.dll,-205
Description: @%Systemroot%\system32\wbem\wmisvc.dll,-204
Object name: localSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 0
Depends On services: RPCSS
Service (registry key): WinRM
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%Systemroot%\system32\wsmsvc.dll,-101
Description: @%Systemroot%\system32\wsmsvc.dll,-102
Object name: NT AUTHORITY\NetworkService
Image path: %SystemRoot%\System32\svchost.exe -k NetworkService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RPCSS,HTTP
Service (registry key): WlanSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wlansvc.dll,-257
Description: @%SystemRoot%\System32\wlansvc.dll,-258
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: nativewifip,RpcSs,Ndisuio,wcmsvc
Service (registry key): wlidsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wlidsvc.dll,-100
Description: @%SystemRoot%\system32\wlidsvc.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): workfolderssvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\workfolderssvc.dll,-102
Description: @%systemroot%\system32\workfolderssvc.dll,-101
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalService
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,wsearch
Service (registry key): WPCSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wpcsvc.dll,-100
Description: @%SystemRoot%\system32\wpcsvc.dll,-101
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): WPDBusEnum
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wpdbusenum.dll,-100
Description: @%SystemRoot%\system32\wpdbusenum.dll,-101
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs
Service (registry key): wscsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wscsvc.dll,-200
Description: @%SystemRoot%\System32\wscsvc.dll,-201
Object name: NT AUTHORITY\LocalService
Image path: %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 2
Type: 32
Error Control: 1
Depends On services: RpcSs,WinMgmt
Service (registry key): WSearch
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\SearchIndexer.exe,-103
Description: @%systemroot%\system32\SearchIndexer.exe,-104
Object name: LocalSystem
Image path: %systemroot%\system32\SearchIndexer.exe /Embedding
Image size: 0
Image MD5: 78B0100BE4A533819A043093FC64CE3E
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
Service (registry key): WSService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\WSService.dll,-103
Description: @%SystemRoot%\system32\WSService.dll,-104
Object name: LocalSystem
Image path: %SystemRoot%\System32\svchost.exe -k wsappx
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): wuauserv
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%systemroot%\system32\wuaueng.dll,-105
Description: @%systemroot%\system32\wuaueng.dll,-106
Object name: LocalSystem
Image path: %systemroot%\system32\svchost.exe -k netsvcs
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: rpcss
Service (registry key): wudfsvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\system32\wudfsvc.dll,-1000
Description: @%SystemRoot%\system32\wudfsvc.dll,-1001
Object name: LocalSystem
Image path: %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: WudfPf
Service (registry key): WwanSvc
Registry path: \SYSTEM\ControlSet001\Services\
Display name: @%SystemRoot%\System32\wwansvc.dll,-257
Description: @%SystemRoot%\System32\wwansvc.dll,-258
Object name: NT Authority\LocalService
Image path: %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork
Image size: 0
Image MD5: D0ABC231C0B3E88C6B612B28ABBF734D
Control Set: ControlSet001
Start: 3
Type: 32
Error Control: 1
Depends On services: RpcSs,NdisUio,wcmsvc
Service (registry key): ZeroConfigService
Registry path: \SYSTEM\ControlSet001\Services\
Display name: Intel(R) PROSet/Wireless Zero Configuration Service
Description: Manages the zero configuration service for all the Intel® PROSet/Wireless Software components.
Object name: LocalSystem
Image path: "C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
Image size: 0
Image MD5: 2AC426C57AC3D6A226D66E5A03223C90
Control Set: ControlSet001
Start: 2
Type: 16
Error Control: 1
Depends On services: RPCSS
--- Winsock Layered Service Provider list ---
Namespace Provider 0: @%SystemRoot%\system32\napinsp.dll,-1000
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename: %SystemRoot%\system32\napinsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1000
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1001
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\nlasvc.dll,-1000
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\system32\NLAapi.dll
Namespace Provider 0: @%SystemRoot%\system32\wshtcpip.dll,-60103
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Namespace Provider 0: @%SystemRoot%\System32\winrnr.dll,-1000
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Namespace Provider 0: Bluetooth Namespace
GUID: {06AA63E0-7D60-41FF-AFB2-3EE6D2D9392D}
Filename: %SystemRoot%\system32\wshbth.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60100
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60101
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60102
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60200
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60201
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60202
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-100
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-101
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-102
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-103
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: MSAFD RfComm
GUID: {9FC48064-7298-43E4-B7BD-181F2089792A}
Filename: %SystemRoot%\system32\mswsock.dll
Namespace Provider 0: @%SystemRoot%\system32\napinsp.dll,-1000
GUID: {964ACBA2-B2BC-40EB-8C6A-A6DB40161CAE}
Filename: %SystemRoot%\system32\napinsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1000
GUID: {03FE89CE-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\pnrpnsp.dll,-1001
GUID: {03FE89CD-766D-4976-B9C1-BB9BC42C7B4D}
Filename: %SystemRoot%\system32\pnrpnsp.dll
Namespace Provider 0: @%SystemRoot%\system32\nlasvc.dll,-1000
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\system32\NLAapi.dll
Namespace Provider 0: @%SystemRoot%\system32\wshtcpip.dll,-60103
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Namespace Provider 0: @%SystemRoot%\System32\winrnr.dll,-1000
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Namespace Provider 0: Bluetooth Namespace
GUID: {06AA63E0-7D60-41FF-AFB2-3EE6D2D9392D}
Filename: %SystemRoot%\system32\wshbth.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60100
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60101
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60102
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60200
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60201
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\mswsock.dll,-60202
GUID: {F9EAB0C0-26D4-11D0-BBBF-00AA006C34E4}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-100
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-101
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-102
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: @%SystemRoot%\System32\wshqos.dll,-103
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\mswsock.dll
Protocol 0: MSAFD RfComm [Bluetooth]
GUID: {9FC48064-7298-43E4-B7BD-181F2089792A}
Filename: %SystemRoot%\system32\mswsock.dll
--- Scheduled Tasks list ---
Scheduled Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Filesize: 0
File MD5: 73F937DCC68E13C752D59FE33BE62FC5
Parameters:
Creator: Adobe Systems Incorporated
Comment: This task keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes. If this task is disabled or removed, Adobe Flash Player will be unable to automatically secure your machine with the latest security fixes.
Scheduled Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters: /c
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters: /ua /installsource scheduler
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job
schedules in: C:\WINDOWS\Tasks\
Exec dir: C:\ProgramData\HP Photo Creations
Filename: C:\ProgramData\HP Photo Creations\Communicator.exe
Filesize: 0
File MD5: B9E3FCBACBD3DD05C2C60E8405C9B78D
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\Tasks\Security Platform Backup Schedule.job
schedules in: C:\WINDOWS\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Infineon\Security Platform Software\SpBackupWz.exe
Filesize: 0
File MD5: B562D37CF917EBF91C9E947C8557B595
Parameters: /BackupAll
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Adobe Acrobat Update Task
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Filesize: 0
File MD5: 3E04F1E482357B1FC8B088197C3D9FF8
Parameters:
Creator: Adobe Systems Incorporated
Comment: This task keeps your Adobe Reader and Acrobat applications up to date with the latest enhancements and security fixes
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Adobe Flash Player Updater
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Filesize: 0
File MD5: 73F937DCC68E13C752D59FE33BE62FC5
Parameters:
Creator: Adobe Systems Incorporated
Comment: This task keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes. If this task is disabled or removed, Adobe Flash Player will be unable to automatically secure your machine with the latest security fixes.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Apple Diagnostics
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Filesize: 0
File MD5: E516D7811B24812819A3BAC8AD350510
Parameters:
Creator: Apple Inc.
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\CreateChoiceProcessTask
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Windows\BrowserChoice\browserchoice.exe
Filesize: 0
File MD5: 642F850B5D94E08AB6CFF997BE09C688
Parameters:
Creator: BrowserChoice
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\GoogleUpdateTaskMachineCore
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters:
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\GoogleUpdateTaskMachineUA
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Filesize: 0
File MD5: 51508F0C2476177E50C31B0BBFBF1BDB
Parameters:
Creator: CASAJESUS\PORT-AF-CASA$
Comment: Mantém o software Google atualizado. Se esta tarefa for desactivada ou interrompida, o software Google não ficará atualizado, o que significa que não será possível corrigir eventuais vulnerabilidades de segurança e as funcionalidades poderão não funcionar. Esta tarefa desinstala-se quando não está a ser utilizada por nenhum software Google.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\HP Photo Creations Communicator
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\ProgramData\HP Photo Creations\Communicator.exe
Filesize: 0
File MD5: B9E3FCBACBD3DD05C2C60E8405C9B78D
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\iolo System Checkup
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\ProgramData\iolo\scustask.lnk
Filesize: 0
File MD5: 2896E0C594C5BE8394F6DAE211F7EDFA
Parameters:
Creator: Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft Office 15 Sync Maintenance for PORT-AF-CASA-Antonio PORT-AF-CASA
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files\Microsoft Office\Office15\MsoSync.exe
Filesize: 0
File MD5: 0FE8E16D27436AE1D105CE358AEC42CB
Parameters:
Creator: Microsoft Office
Comment: Lightweight task keeps Microsoft Office Document Cache in good shape. Disabling this task may lead to unexpected issues when working with documents from online sources as well as higher disk usage.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Security Platform Backup Schedule
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\Program Files (x86)\Infineon\Security Platform Software\SpBackupWz.exe
Filesize: 0
File MD5: B562D37CF917EBF91C9E947C8557B595
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\User_Feed_Synchronization-{51B699CB-3D67-468E-A01C-024C6C357E4E}
schedules in: C:\WINDOWS\SysNative\Tasks\
Exec dir:
Filename: C:\WINDOWS\system32\msfeedssync.exe
Filesize: 0
File MD5: 1BD4CD20A25B4A3A5F7BAAC25E9D9202
Parameters:
Creator: PORT-AF-CASA\Antonio
Comment: Updates out-of-date system feeds.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Toshiba\CommonNotifier
schedules in: C:\WINDOWS\SysNative\Tasks\Toshiba\
Exec dir:
Filename: C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
Filesize: 0
File MD5: C6B8CB65A3AACABB00F3DAA371C46A3E
Parameters:
Creator:
Comment: Generated task from Tempro Installer
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\MUI\Mcbuilder
schedules in: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\MUI\
Exec dir:
Filename: C:\windows\System32\mcbuilder.exe
Filesize: 0
File MD5: B411D87B239022E69B2B4B381A70EA91
Parameters:
Creator: Microsoft Corporation
Comment:
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start
schedules in: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\
Exec dir:
Filename: C:\WINDOWS\system32\sc.exe
Filesize: 0
File MD5: 8D2C2B54B86AF85923EEBFE5AEF68280
Parameters:
Creator: Microsoft Corporation.
Comment: This task is used to start the Windows Update service when needed to perform scheduled operations such as scans.
Scheduled Task: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network
schedules in: C:\WINDOWS\SysNative\Tasks\Microsoft\Windows\WindowsUpdate\
Exec dir:
Filename: C:\WINDOWS\system32\sc.exe
Filesize: 0
File MD5: 8D2C2B54B86AF85923EEBFE5AEF68280
Parameters:
Creator: Microsoft Corporation.
Comment: This task is used to start the Windows Update service when needed to perform scheduled operations such as scans.
--- Browser helper object list (32 bit) ---
{030AC7B6-E7EC-40F1-8FB2-C0FD344DE0B9} (BHOHOOK)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: BHOHOOK
CLSID name: TOSHIBA Fingerprint Utility Automatic Password Input
Path: C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\
Long name: TFPUPWDBankBHO.dll
Short name: TFPUPW~1.DLL
Date (created): 16/03/2012 18:28:36
Date (last access): 18/02/2014 15:02:24
Date (last write): 16/03/2012 18:28:36
Filesize: 62336
Attributes: archive
MD5: 7476B447D622B5F563C0CE4862FCF5CC
CRC32: FF4D4326
Version: 2.0.0.4
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call BHO)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: Lync Click to Call BHO
CLSID name: Lync Browser Helper
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 22/10/2014 14:05:36
Date (last access): 13/11/2014 08:28:32
Date (last write): 22/10/2014 14:05:36
Filesize: 153248
Attributes: archive
MD5: D2FA55F98AEC5D82D055062101145C20
CRC32: 7C579EAD
Version: 15.0.4667.1000
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (Java(tm) Plug-In SSV Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Java(tm) Plug-In SSV Helper
Path: C:\Program Files (x86)\Java\jre1.8.0_31\bin\
Long name: ssv.dll
Short name:
Date (created): 25/01/2015 10:08:18
Date (last access): 25/01/2015 10:08:18
Date (last write): 25/01/2015 10:08:18
Filesize: 460712
Attributes: archive
MD5: 7C15112AEB2A24A7B21FA7A534C083C5
CRC32: 29F9FA4C
Version: 11.31.2.13
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{DBC80044-A445-435b-BC74-9C25C1C588A9} (Java(tm) Plug-In 2 SSV Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Java(tm) Plug-In 2 SSV Helper
Path: C:\Program Files (x86)\Java\jre1.8.0_31\bin\
Long name: jp2ssv.dll
Short name:
Date (created): 25/01/2015 10:08:18
Date (last access): 25/01/2015 10:08:18
Date (last write): 25/01/2015 10:08:18
Filesize: 172968
Attributes: archive
MD5: DA41FC2EA6E979D147258AB053E2D136
CRC32: 5A0E2377
Version: 11.31.2.13
{22d6f312-b0f6-11d0-94ab-0080c74c7e95} (Microsoft Windows Media Player 12.0)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name: Microsoft Windows Media Player 12.0
CLSID name: Windows Media Player
Path: C:\Windows\SysWOW64\
Long name: wmpdxm.dll
Short name:
Date (created): 23/01/2015 21:43:30
Date (last access): 23/01/2015 21:43:30
Date (last write): 29/10/2014 01:06:32
Filesize: 174080
Attributes: archive
MD5: 66DD20A705D1EF1F379B2D0957AF4417
CRC32: 007BB5D4
Version: 12.0.9600.17415
{89B4C1CD-B018-4511-B0A1-5476DBF70820} ()
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name:
CLSID name:
Path: C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\
Long name: mscories.dll,Install
MD5: 8BFE805555CDAF6387912A34D7978DAA
{8A69D345-D564-463c-AFF1-A69D9E530F96} (Google Chrome)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name: Google Chrome
CLSID name:
Path: "C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.99\Installer\
Long name: chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
MD5: A23FCE5B5D0B316A8C7327A6AAFD3E6C
{89B4C1CD-B018-4511-B0A1-5476DBF70820} ()
location: HKEY_USERS\S-1-5-21-562293194-3371628172-2901755781-1001\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name:
CLSID name:
Path: C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\
Long name: mscories.dll,Install
MD5: 8BFE805555CDAF6387912A34D7978DAA
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\
BHO name: Lync Click to Call
CLSID name: Lync Browser Helper
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 22/10/2014 14:05:36
Date (last access): 13/11/2014 08:28:32
Date (last write): 22/10/2014 14:05:36
Filesize: 153248
Attributes: archive
MD5: D2FA55F98AEC5D82D055062101145C20
CRC32: 7C579EAD
Version: 15.0.4667.1000
{08165EA0-E946-11CF-9C87-00AA005127ED} (WebCheckWebCrawler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheckWebCrawler
CLSID name: WebCheckWebCrawler
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{F5175861-2688-11d0-9C5E-00AA00A45957} (Subscription Folder)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Folder
CLSID name: Subscription Folder
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{7D559C10-9FE9-11d0-93F7-00AA0059CE02} (Code Download Agent)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Code Download Agent
CLSID name: Code Download Agent
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{289AF617-1CC3-42A6-926C-E6A863F0E3BA} (DLNA Namespace Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: DLNA Namespace Extension
CLSID name: DLNA Media Servers Data Source
Path: C:\Windows\SysWOW64\
Long name: dlnashext.dll
Short name:
Date (created): 23/01/2015 21:44:08
Date (last access): 23/01/2015 21:44:08
Date (last write): 29/10/2014 01:29:06
Filesize: 434176
Attributes: archive
MD5: AAA6B19531E8BBE585A38591D935E05E
CRC32: 9B14B9A4
Version: 12.0.9600.17415
{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE} (Subscription Mgr)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Mgr
CLSID name: Subscription Mgr
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{60254CA5-953B-11CF-8C96-00AA00B8708C} (Shell extensions for Windows Script Host)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Shell extensions for Windows Script Host
CLSID name: Shell Extension For Windows Script Host
Path: C:\Windows\SysWOW64\
Long name: wshext.dll
Short name:
Date (created): 23/01/2015 21:43:12
Date (last access): 23/01/2015 21:43:12
Date (last write): 29/10/2014 01:33:04
Filesize: 80896
Attributes: archive
MD5: B5FE3CDB7E54D59324B4749B720E7E44
CRC32: 6426A430
Version: 5.8.9600.17415
{BFD468D2-D0A0-4bdc-878C-E69C2F5B435D} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewUrl
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{f8b8412b-dea3-4130-b36c-5e8be73106ac} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewHtml
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{b9815375-5d7f-4ce2-9245-c9d4da436930} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewEmail
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB} (WebCheck SyncMgr Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheck SyncMgr Handler
CLSID name: WebCheck SyncMgr Handler
Path: C:\Windows\SysWOW64\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{92dbad9f-5025-49b0-9078-2d78f935e341} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewMime
Path: C:\Windows\SysWOW64\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{3DBEE9A1-C471-4B95-BBCA-F39310064458} (Microsoft Camera Raw Property Store)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Camera Raw Property Store
CLSID name:
Path: C:\Program Files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\
Long name: MicrosoftRawCodec.dll
Short name:
Date (created): 13/11/2014 04:03:52
Date (last access): 13/11/2014 04:03:52
Date (last write): 02/10/2014 06:26:46
Filesize: 28098072
Attributes: archive
MD5: 70518D4BB56214268C90E00A5BB1317E
CRC32: D8CA66F0
Version: 6.3.9600.17388
{8BA85C75-763B-4103-94EB-9470F12FE0F7} (Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{CD55129A-B1A1-438E-A425-CEBC7DC684EE} (Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} (Microsoft SkyDrive Pro Icon Overlay 3 (InSync))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Browser Helper
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~2\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:19:58
Date (last access): 13/12/2014 15:08:20
Date (last write): 12/11/2014 17:19:58
Filesize: 1729744
Attributes: archive
MD5: A228E3D69AF1326FF2F67EF1E47A4800
CRC32: A978C724
Version: 15.0.4675.1000
{DB19096C-5365-4164-A246-59FEFF9D8062} (Nameext)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Nameext
CLSID name: Enterprise Projects
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: NAMEEXT.DLL
Short name:
Date (created): 15/11/2013 03:35:22
Date (last access): 19/02/2014 21:37:52
Date (last write): 15/11/2013 03:35:22
Filesize: 317632
Attributes: archive
MD5: 1EFDC8ED7440F0B616DD5E15B2B67054
CRC32: E3525FDB
Version: 15.0.4543.1000
{0006F045-0000-0000-C000-000000000046} (Microsoft Outlook Custom Icon Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Outlook Custom Icon Handler
CLSID name:
Path: C:\Program Files (x86)\Microsoft Office\Office15\
Long name: OLKFSTUB.DLL
Short name:
Date (created): 22/01/2014 04:11:44
Date (last access): 05/03/2014 13:53:10
Date (last write): 22/01/2014 04:11:44
Filesize: 252104
Attributes: archive
MD5: 245EE0EB023A1A4D02CDBEA2D3522638
CRC32: 49D4925D
Version: 15.0.4553.1000
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} (Microsoft Office Thumbnail Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Thumbnail Handler
CLSID name: Microsoft Office Thumbnail Handler
Path: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 22/01/2014 04:11:44
Date (last access): 05/03/2014 13:53:08
Date (last write): 22/01/2014 04:11:44
Filesize: 732376
Attributes: archive
MD5: 43EEAAE8723300F5007B494629791C6E
CRC32: 9360580F
Version: 15.0.4569.1503
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} (Microsoft Office Metadata Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Metadata Handler
CLSID name: Microsoft Office Metadata Handler
Path: C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 22/01/2014 04:11:44
Date (last access): 05/03/2014 13:53:08
Date (last write): 22/01/2014 04:11:44
Filesize: 732376
Attributes: archive
MD5: 43EEAAE8723300F5007B494629791C6E
CRC32: 9360580F
Version: 15.0.4569.1503
{E08BF9C5-191E-4B15-8F67-2622B4DB5580} (PSD Shell Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: PSD Shell Extension
CLSID name: PSDShCtrl Class
Path: C:\Program Files (x86)\Infineon\Security Platform Software\
Long name: PSDShExt.dll
Short name:
Date (created): 26/06/2013 21:09:54
Date (last access): 08/11/2014 23:12:46
Date (last write): 26/06/2013 21:09:54
Filesize: 259920
Attributes: archive
MD5: 188CCD167E7A9B56C2ADECC3471C2D82
CRC32: 43019DA1
Version: 4.3.3390.0
--- Browser helper object list (64 bit) ---
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call BHO)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name: Lync Click to Call BHO
CLSID name: Lync Browser Helper
Path: C:\Program Files\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:23:48
Date (last write): 12/11/2014 17:17:06
Filesize: 218784
Attributes: archive
MD5: AFB56DF7E027A12739188ED96B1EDE04
CRC32: 292C9346
Version: 15.0.4673.1000
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
BHO name:
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{22d6f312-b0f6-11d0-94ab-0080c74c7e95} (Microsoft Windows Media Player 12.0)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name: Microsoft Windows Media Player 12.0
CLSID name: Windows Media Player
Path: C:\Windows\System32\
Long name: wmpdxm.dll
Short name:
Date (created): 23/01/2015 21:43:30
Date (last access): 23/01/2015 21:43:30
Date (last write): 29/10/2014 01:06:32
Filesize: 174080
Attributes: archive
MD5: 66DD20A705D1EF1F379B2D0957AF4417
CRC32: 007BB5D4
Version: 12.0.9600.17415
{89B4C1CD-B018-4511-B0A1-5476DBF70820} ()
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\
BHO name:
CLSID name:
Path: C:\Windows\System32\Rundll32.exe C:\Windows\System32\
Long name: mscories.dll,Install
MD5: 8BFE805555CDAF6387912A34D7978DAA
{31D09BA0-12F5-4CCE-BE8A-2923E76605DA} (Lync Click to Call)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\
BHO name: Lync Click to Call
CLSID name: Lync Browser Helper
Path: C:\Program Files\Microsoft Office\Office15\
Long name: OCHelper.dll
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:23:48
Date (last write): 12/11/2014 17:17:06
Filesize: 218784
Attributes: archive
MD5: AFB56DF7E027A12739188ED96B1EDE04
CRC32: 292C9346
Version: 15.0.4673.1000
{08165EA0-E946-11CF-9C87-00AA005127ED} (WebCheckWebCrawler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheckWebCrawler
CLSID name: WebCheckWebCrawler
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{F5175861-2688-11d0-9C5E-00AA00A45957} (Subscription Folder)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Folder
CLSID name: Subscription Folder
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{7D559C10-9FE9-11d0-93F7-00AA0059CE02} (Code Download Agent)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Code Download Agent
CLSID name: Code Download Agent
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE} (Subscription Mgr)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Subscription Mgr
CLSID name: Subscription Mgr
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{289AF617-1CC3-42A6-926C-E6A863F0E3BA} (DLNA Namespace Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: DLNA Namespace Extension
CLSID name: DLNA Media Servers Data Source
Path: C:\Windows\System32\
Long name: dlnashext.dll
Short name:
Date (created): 23/01/2015 21:44:08
Date (last access): 23/01/2015 21:44:08
Date (last write): 29/10/2014 01:29:06
Filesize: 434176
Attributes: archive
MD5: AAA6B19531E8BBE585A38591D935E05E
CRC32: 9B14B9A4
Version: 12.0.9600.17415
{60254CA5-953B-11CF-8C96-00AA00B8708C} (Shell extensions for Windows Script Host)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Shell extensions for Windows Script Host
CLSID name: Shell Extension For Windows Script Host
Path: C:\Windows\System32\
Long name: wshext.dll
Short name:
Date (created): 23/01/2015 21:43:12
Date (last access): 23/01/2015 21:43:12
Date (last write): 29/10/2014 01:33:04
Filesize: 80896
Attributes: archive
MD5: B5FE3CDB7E54D59324B4749B720E7E44
CRC32: 6426A430
Version: 5.8.9600.17415
{BFD468D2-D0A0-4bdc-878C-E69C2F5B435D} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewUrl
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{f8b8412b-dea3-4130-b36c-5e8be73106ac} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewHtml
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{b9815375-5d7f-4ce2-9245-c9d4da436930} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewEmail
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB} (WebCheck SyncMgr Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: WebCheck SyncMgr Handler
CLSID name: WebCheck SyncMgr Handler
Path: C:\Windows\System32\
Long name: webcheck.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:25:14
Filesize: 230400
Attributes: archive
MD5: 476900A8699F5C3D954ADD4A35D33F89
CRC32: 30C4BBA4
Version: 11.0.9600.17496
{92dbad9f-5025-49b0-9078-2d78f935e341} (Microsoft Windows Mail Html Preview Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Windows Mail Html Preview Handler
CLSID name: CLSID_PreviewMime
Path: C:\Windows\System32\
Long name: inetcomm.dll
Short name:
Date (created): 11/12/2014 15:06:40
Date (last access): 11/12/2014 15:06:40
Date (last write): 22/11/2014 01:29:30
Filesize: 880128
Attributes: archive
MD5: 98F2784FC4A4A80CE20016C6281834EE
CRC32: 4696D74D
Version: 6.3.9600.17496
{3DBEE9A1-C471-4B95-BBCA-F39310064458} (Microsoft Camera Raw Property Store)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Camera Raw Property Store
CLSID name:
Path: C:\Program Files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\
Long name: MicrosoftRawCodec.dll
Short name:
Date (created): 13/11/2014 04:03:54
Date (last access): 13/11/2014 04:03:54
Date (last write): 02/10/2014 07:14:18
Filesize: 28876456
Attributes: archive
MD5: 0DA05FA9D52526D00DC5A1E3C3497D6D
CRC32: C5DB63B9
Version: 6.3.9600.17388
{2F603045-309F-11CF-9774-0020AFD0CFF6} (Synaptics Control Panel)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Synaptics Control Panel
CLSID name:
Path: %ProgramFiles%\Synaptics\SynTP\
Long name: SynTPCpl.dll
MD5: E1B00771447F42CBCDAD0AC56C09DEE8
{F4AE3B49-F019-4C6C-9A1A-3EE75DC83555} (TFPU file icon extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: TFPU file icon extension
CLSID name: TFPUFileExtIcon Class
Path: C:\Program Files\TOSHIBA\Fingerprint Utility\
Long name: TFPUFileShellExt.dll
Short name: TFPUFI~1.DLL
Date (created): 16/03/2012 18:25:50
Date (last access): 18/02/2014 15:02:24
Date (last write): 16/03/2012 18:25:50
Filesize: 155008
Attributes: archive
MD5: 64D234759FE38B4F0E5E83F9A0FF7E4A
CRC32: 9B22DAD9
Version: 2.0.0.4
{967B2D40-8B7D-4127-9049-61EA0C2C6DCE} (PowerISO)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: PowerISO
CLSID name: PowerISO
Path: C:\Program Files\PowerISO\
Long name: PWRISOSH.DLL
Short name:
Date (created): 03/02/2014 06:45:46
Date (last access): 19/02/2014 14:01:48
Date (last write): 03/02/2014 06:45:46
Filesize: 233496
Attributes: archive
MD5: E55B8C8D6AB0B877DD5A74CA12335CEF
CRC32: B0D553E1
Version: 5.9.0.0
{B28AA736-876B-46DA-B3A8-84C5E30BA492} (Web Sites)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Web Sites
CLSID name: Web Sites
Path: C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE15\
Long name: WXPNSE.DLL
Short name:
Date (created): 23/01/2014 16:05:00
Date (last access): 05/03/2014 13:50:44
Date (last write): 23/01/2014 16:05:00
Filesize: 850128
Attributes: archive
MD5: 8FA27310CF8B24752DEDB3E8F068C109
CRC32: 638FBF77
Version: 15.0.4569.1503
{42042206-2D85-11D3-8CFF-005004838597} (Microsoft Office HTML Icon Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office HTML Icon Handler
CLSID name:
Path: C:\Program Files\Microsoft Office\Office15\
Long name: MSOHEVI.DLL
Short name:
Date (created): 23/01/2014 16:06:24
Date (last access): 05/03/2014 13:50:50
Date (last write): 23/01/2014 16:06:24
Filesize: 80992
Attributes: archive
MD5: 23BBABA1813DC411E6B9CC624676EA89
CRC32: 4E2B8B15
Version: 15.0.4454.1000
{993BE281-6695-4BA5-8A2A-7AACBFAAB69E} (Microsoft Office Metadata Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Metadata Handler
CLSID name: Microsoft Office Metadata Handler
Path: C:\Program Files\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 23/01/2014 16:06:24
Date (last access): 05/03/2014 13:50:46
Date (last write): 23/01/2014 16:06:24
Filesize: 934616
Attributes: archive
MD5: 7593DAD61E08512CAD1FF6B04BD8CD68
CRC32: 52C6F297
Version: 15.0.4569.1503
{C41662BB-1FA0-4CE0-8DC5-9B7F8279FF97} (Microsoft Office Thumbnail Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Office Thumbnail Handler
CLSID name: Microsoft Office Thumbnail Handler
Path: C:\Program Files\Common Files\Microsoft Shared\OFFICE15\
Long name: msoshext.dll
Short name:
Date (created): 23/01/2014 16:06:24
Date (last access): 05/03/2014 13:50:46
Date (last write): 23/01/2014 16:06:24
Filesize: 934616
Attributes: archive
MD5: 7593DAD61E08512CAD1FF6B04BD8CD68
CRC32: 52C6F297
Version: 15.0.4569.1503
{0875DCB6-C686-4243-9432-ADCCF0B9F2D7} (Microsoft OneNote Namespace Extension for Windows Desktop Search)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft OneNote Namespace Extension for Windows Desktop Search
CLSID name: Microsoft OneNote Namespace Extension for Windows Desktop Search
Path: C:\Program Files\Microsoft Office\Office15\
Long name: ONFILTER.DLL
Short name:
Date (created): 23/01/2014 16:05:10
Date (last access): 05/03/2014 13:51:14
Date (last write): 23/01/2014 16:05:10
Filesize: 2165432
Attributes: archive
MD5: 351E637153EAE3B22338D8B9F6746445
CRC32: 1FC1E5A2
Version: 15.0.4569.1503
{506F4668-F13E-4AA1-BB04-B43203AB3CC0} ({506F4668-F13E-4AA1-BB04-B43203AB3CC0})
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: {506F4668-F13E-4AA1-BB04-B43203AB3CC0}
CLSID name: ImageExtractorShellExt Class
Path: C:\Program Files\Microsoft Office\Office15\
Long name: VISSHE.DLL
Short name:
Date (created): 24/10/2013 19:25:20
Date (last access): 19/02/2014 21:37:14
Date (last write): 24/10/2013 19:25:20
Filesize: 922808
Attributes: archive
MD5: 639C712FCAD1762B82EBF9FBFCF6BF86
CRC32: 256AE457
Version: 15.0.4545.1000
{D66DC78C-4F61-447F-942B-3FB6980118CF} ({D66DC78C-4F61-447F-942B-3FB6980118CF})
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: {D66DC78C-4F61-447F-942B-3FB6980118CF}
CLSID name: CInfoTipShellExt Class
Path: C:\Program Files\Microsoft Office\Office15\
Long name: VISSHE.DLL
Short name:
Date (created): 24/10/2013 19:25:20
Date (last access): 19/02/2014 21:37:14
Date (last write): 24/10/2013 19:25:20
Filesize: 922808
Attributes: archive
MD5: 639C712FCAD1762B82EBF9FBFCF6BF86
CRC32: 256AE457
Version: 15.0.4545.1000
{8BA85C75-763B-4103-94EB-9470F12FE0F7} (Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 1 (ErrorConflict)
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{CD55129A-B1A1-438E-A425-CEBC7DC684EE} (Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 2 (SyncInProgress)
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} (Microsoft SkyDrive Pro Icon Overlay 3 (InSync))
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
CLSID name: Microsoft SkyDrive Pro Icon Overlay 3 (InSync)
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} (Microsoft SkyDrive Pro Browser Helper)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft SkyDrive Pro Browser Helper
CLSID name: Microsoft SkyDrive Pro Browser Helper
Path: C:\PROGRA~1\MICROS~1\Office15\
Long name: GROOVEEX.DLL
Short name:
Date (created): 12/11/2014 17:17:06
Date (last access): 13/12/2014 15:09:02
Date (last write): 12/11/2014 17:17:06
Filesize: 2334928
Attributes: archive
MD5: 82B16E36A069D6AFF33576CEB641387F
CRC32: D4D84264
Version: 15.0.4675.1000
{0006F045-0000-0000-C000-000000000046} (Microsoft Outlook Custom Icon Handler)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: Microsoft Outlook Custom Icon Handler
CLSID name: Outlook File Icon Extension
Path: C:\Program Files\Microsoft Office\Office15\
Long name: OLKFSTUB.DLL
Short name:
Date (created): 23/01/2014 16:05:36
Date (last access): 05/03/2014 13:51:14
Date (last write): 23/01/2014 16:05:36
Filesize: 258760
Attributes: archive
MD5: 5C488D5DD6A864695C7CF9E7EE45AB31
CRC32: 3FB2138F
Version: 15.0.4553.1000
{44176360-2BBF-4EC1-93CE-384B8681A0BC} (SDECon64)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: SDECon64
CLSID name: Spybot-S&D Explorer Integration
Path: C:\Program Files (x86)\Spybot - Search & Destroy 2\
Long name: SDECon64.dll
Short name:
Date (created): 12/03/2014 13:04:50
Date (last access): 12/03/2014 13:04:50
Date (last write): 16/05/2013 10:55:50
Filesize: 467456
Attributes: archive
MD5: BB5E24166EE6FB7E35A36083A8267BFA
CRC32: 4E314EB2
Version: 2.1.18.113
{BC593DF5-466F-44EC-8FFD-C4DBC603B917} (IZArc Shell Context Menu)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: IZArc Shell Context Menu
CLSID name: IZArc Shell Context Menu
Path: C:\PROGRA~2\IZArc\
Long name: IZArcCM64.dll
Short name: IZARCC~1.DLL
Date (created): 12/04/2014 21:54:54
Date (last access): 12/04/2014 21:54:54
Date (last write): 20/07/2012 13:39:14
Filesize: 2469888
Attributes: archive
MD5: 97287470B9B6D0FEA3469995D1E3891E
CRC32: DED13FB8
{CA5FEE26-14C1-4B5A-86E9-233FC0EE2682} (IZArc DragDrop Menu)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: IZArc DragDrop Menu
CLSID name: IZArc DragDrop Menu
Path: C:\PROGRA~2\IZArc\
Long name: IZArcCM64.dll
Short name: IZARCC~1.DLL
Date (created): 12/04/2014 21:54:54
Date (last access): 12/04/2014 21:54:54
Date (last write): 20/07/2012 13:39:14
Filesize: 2469888
Attributes: archive
MD5: 97287470B9B6D0FEA3469995D1E3891E
CRC32: DED13FB8
{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF} (iTunes)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: iTunes
CLSID name: iTunes
Path: C:\Program Files\iTunes\
Long name: iTunesMiniPlayer.dll
Short name: ITUNES~1.DLL
Date (created): 15/10/2014 04:42:22
Date (last access): 22/10/2014 19:58:18
Date (last write): 15/10/2014 04:42:22
Filesize: 155944
Attributes: archive
MD5: CF8AC4599644EE42F1F945D3877F59ED
CRC32: D2A995EE
Version: 12.0.1.26
{E08BF9C5-191E-4B15-8F67-2622B4DB5580} (PSD Shell Extension)
location: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
BHO name: PSD Shell Extension
CLSID name: PSDShCtrl Class
Path: C:\Program Files (x86)\Infineon\Security Platform Software\x64\
Long name: PSDShExt.dll
Short name:
Date (created): 26/06/2013 21:09:56
Date (last access): 08/11/2014 23:12:46
Date (last write): 26/06/2013 21:09:56
Filesize: 315216
Attributes: archive
MD5: 04FF689F823E82A1883DBAF0CBD05BD1
CRC32: E4AAA1E3
Version: 4.3.3390.0
{CFBFAE00-17A6-11D0-99CB-00C04FD64497} (Microsoft Url Search Hook)
location: HKEY_USERS\S-1-5-21-562293194-3371628172-2901755781-1001\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\
BHO name:
CLSID name: Microsoft Url Search Hook
Path: C:\Windows\System32\
Long name: ieframe.dll
Short name:
Date (created): 11/12/2014 15:06:48
Date (last access): 11/12/2014 15:06:48
Date (last write): 22/11/2014 01:13:50
Filesize: 12836864
Attributes: archive
MD5: B59E370277EDB6643083B62297175628
CRC32: 5DDCE56E
Version: 11.0.9600.17496
--- ActiveX list (32 bit) ---
--- ActiveX list (64 bit) ---
---------------------------------------------------------------
11986
[B]Edit
Please don't post Malware logs in the Spybot forums, thanks :-) (http://forums.spybot.info/showthread.php?1266-Please-don-t-post-Malware-logs-in-the-Spybot-forums-thanks-%29)