Page 1 of 3 123 LastLast
Results 1 to 20 of 43

Thread: trojan removal help please

  1. #1
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default trojan removal help please

    hello i need help my pc is on its last legs i think i have downloaded hjtinstall and ran the app but i cant oppen the log it says thatwindows cannot acess the specified device,path or file you may not have the appropriate permission to access the item this has happend with other app i have tryed to open my avg has found the following trojans

    c:\windows\pixart\pac7302\monitor.exe
    c:\program files\windows defender\masacui.exe-hide
    c:\program files\commonfiles\ahead\lib\nerocheck.exe
    c:\program files\spybot- search&distroy\teatimer.exe
    c:\users\rita\appdata\local\temp\b.exe


    please help thanks for looking

  2. #2
    Security Team
    Join Date
    Aug 2009
    Location
    Singapore
    Posts
    193

    PC Experience:
    Very Experienced


    Operating System:
    Windows Vista - Home Premium

    Default

    Hi Jinkie,

    A few things before we start....
    1. Please Read All Instructions Carefully.
    2. If you don't understand something, stop and ask! Don't keep going on.
    3. Please do not run any other tools or scans whilst I am helping you.
    4. If you have to go away for an extended period of time, let me know.
    5. Please continue to respond until I give you the "All Clear".
    (Just because you can't see a problem doesn't mean it isn't there)


    Please download DDS and save it to your desktop from here or here or here.
    Disable any script blocker, and then double click dds.scr to run the tool.
    When done, DDS will open two (2) logs
    DDS.txt
    Attach.txt

    Copy/Paste the contents of 'DDS.txt' to be posted as text to your post.
    The Attach.txt file should be attached and uploaded to your post.

    When posting your reply, Attach.txt may be attached by clicking the [Manage Attachments] button.
    It's located under [Additonal Options] on the composition page.
    Browse to where you saved the file, and click Upload.

  3. #3
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    Thanks for helping me how do i Disable any script blocker

  4. #4
    Security Team
    Join Date
    Aug 2009
    Location
    Singapore
    Posts
    193

    PC Experience:
    Very Experienced


    Operating System:
    Windows Vista - Home Premium

    Default

    You probably don't have one. Go on with running the tool.

  5. #5
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    i opend the app the dds filed opend up but disaperd before i could read it and i cant find it now am i dowing somthing wrong

  6. #6
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    Hello just a up date my computer has just shut down and when i rebooted it the intel screen has came up with the option of pressing the tab f1 f8 key but this seams to have frose i am using my laptop now to post this responce thanks for your help


    ps that is the windows loading up now
    Last edited by jinkie; 29-11-2009 at 01:36 PM.

  7. #7
    Security Team
    Join Date
    Aug 2009
    Location
    Singapore
    Posts
    193

    PC Experience:
    Very Experienced


    Operating System:
    Windows Vista - Home Premium

    Default

    Sorry I don't get what you mean. Maybe you can elaborate.

  8. #8
    FPCH Senior Member
    Join Date
    Nov 2009
    Posts
    172

    PC Experience:
    Beginner


    Operating System:
    Windows XP - Home Edition

    Default

    Can you get into the BIOS when you start up the computer or is it just refusing to load anything up full stop?

  9. #9
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    hello when i tryed to open the dds file it opend ok but then it went away and i could not find it now when i try and open it this massage opens up windows cannot acess the specified device,path or file you may not have the appropriate permission to access the item and the file does not run

  10. #10
    FPCH Senior Member
    Join Date
    Nov 2009
    Posts
    172

    PC Experience:
    Beginner


    Operating System:
    Windows XP - Home Edition

    Default

    It sounds to me as if you need to use the recovery console that came with your computer if you can't load anything up. There's no point in directing you to download programs and scan them if you can't even get onto it in the first place.

  11. #11
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    is that the same as the back up copy it tells you to make at the start if so i have lost my copy

  12. #12
    Security Team
    Join Date
    Aug 2009
    Location
    Singapore
    Posts
    193

    PC Experience:
    Very Experienced


    Operating System:
    Windows Vista - Home Premium

    Default

    Jinkie,

    OK forget DDS for the moment.


    ================


    Please download Malwarebytes' Anti-Malware by clicking the link below:
    Malwarebytes Anti-Malware - Reviews and free Malwarebytes Anti-Malware downloads at Download.com

    Double Click mbam-setup.exe to install the application.

    * Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select "Perform Quick Scan", then click Scan.
    * The scan may take some time to finish,so please be patient.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Make sure that everything is checked, and click Remove Selected.
    * When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
    * The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
    * You'll be required to post the contents of this log later.

    Please Note:
    If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

    Also, if you cannot open MBAM, rename the file to ***.exe before running it again.


    ===================


    Next let's have you download ComboFix.exe. Please visit this webpage for downloading and instructions for running the tool:

    Go here ======> A guide and tutorial on using ComboFix <====== Go here

    Please ensure you read this guide carefully and install the Recovery Console first.This applies to XP Pro and XP Home users only.If you have SP3 installed you will need to use the download meant for SP2.

    The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

    Once installed, you should get a prompt that says:

    The Recovery Console was successfully installed.

    Please continue as follows:

    (1) Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    (2) Click Yes to allow ComboFix to continue scanning for malware.

    When the tool is finished, it will produce a report for you.


    Please include the MBAM log and C:\ComboFix.txt for further review, so that we may continue cleansing the system.


    Caution: Never run and remove files with Combofix unless supervised by a qualified security analyst who is experienced in the use of Combofix. Misuse can cause serious computer problems.

  13. #13
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default regrunlog

    his appeard om the desktop page

    [WinSock2 Components] :HKLM mswsock.dll=%SystemRoot%\System32\mswsock.dll
    ### Microsoft Windows Sockets 2.0 Service Provider Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [WinSock2 Components] :HKLM winrnr.dll=%SystemRoot%\System32\winrnr.dll
    ### LDAP RnR Provider DLL Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Software Components]
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\armhelper.ocx=C:\Windows\Downloaded Program Files\armhelper.ocx
    ### ArmHelper Control SpinTop Media Inc. ArmHelper Control 1, 0, 0, 1
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\BeboUploader.ocx=C:\Windows\Downloaded Program Files\BeboUploader.ocx
    ### Bebo Uploader Control Bebo, Inc. Bebo Uploader 5, 1, 4, 0
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.1\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.1\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.10\stg_drm.ocx=C:\Windows\Downloade d Program Files\CONFLICT.10\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.11\stg_drm.ocx=C:\Windows\Downloade d Program Files\CONFLICT.11\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.12\stg_drm.ocx=C:\Windows\Downloade d Program Files\CONFLICT.12\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.13\stg_drm.ocx=C:\Windows\Downloade d Program Files\CONFLICT.13\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.14\stg_drm.ocx=C:\Windows\Downloade d Program Files\CONFLICT.14\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.15\stg_drm.ocx=C:\Windows\Downloade d Program Files\CONFLICT.15\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.2\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.2\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.3\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.3\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.4\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.4\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.5\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.5\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.6\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.6\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.7\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.7\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.8\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.8\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\CONFLICT.9\stg_drm.ocx=C:\Windows\Downloaded Program Files\CONFLICT.9\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\JBGamePlayer.dll=C:\Windows\Downloaded Program Files\JBGamePlayer.dll
    ### JBGamePlayer Module Jolly Bear Games JBGamePlayer Module 1, 1, 0, 0
    [Internet Components] :HKLM C:\Windows\Downloaded Program Files\stg_drm.ocx=C:\Windows\Downloaded Program Files\stg_drm.ocx
    ### SpinTopDRM Module SpinTop Media Inc. SpinTopDRM Module 1, 0, 0, 5
    [Internet Components] :HKLM C:\Windows\System32\unicows.dll=C:\Windows\System3 2\unicows.dll
    ### Microsoft Layer for Unicode on Win9x Systems (MSLU) Microsoft Corporation Microsoft (R) Windows (R) 95, Windows (R) 98, and Windows (R) Millennium Operating Systems 1.0.4018.0
    [Windows Shell]
    [Display Scrap's Extensions] :HKLM NeverShowExt=""
    [ScreenSaver] :HKCU SCRNSAVE.EXE=C:\Users\rita\Desktop\dds.scr
    [System.ini] shell=explorer.exe
    [User Shell] :HKCU shell=""
    [Main File Extensions] :HKLM .exe="%1" %*
    [Main File Extensions] :HKLM .com="%1" %*
    [Main File Extensions] :HKLM .pif="%1" %*
    [Main File Extensions] :HKLM .bat="%1" %*
    [Main File Extensions] :HKLM .cmd="%1" %*
    [Main File Extensions] :HKLM .scr="%1" /S
    [Main File Extensions] :HKLM .txt=%SystemRoot%\system32\NOTEPAD.EXE %1
    [Main File Extensions] :HKLM .reg=regedit.exe "%1"
    [Main File Extensions] :HKLM .inf=%SystemRoot%\system32\NOTEPAD.EXE %1
    [Main File Extensions] :HKLM .ini=%SystemRoot%\system32\NOTEPAD.EXE %1
    [Main File Extensions] :HKLM .js=%SystemRoot%\System32\WScript.exe "%1" %*
    [Main File Extensions] :HKLM .vbs="%SystemRoot%\System32\WScript.exe" "%1" %*
    [Main File Extensions] :HKLM .vbe="%SystemRoot%\System32\WScript.exe" "%1" %*
    [Main File Extensions] :HKLM .msc=%SystemRoot%\system32\mmc.exe "%1" %*
    [Main File Extensions] :HKLM .html="C:\Program Files\Internet Explorer\iexplore.exe"

  14. #14
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    nohome
    [Main File Extensions] :HKLM .jpg=%SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Gallery\PhotoViewer.dll", ImageView_Fullscreen %1
    [Main File Extensions] :HKLM .jpeg=%SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Gallery\PhotoViewer.dll", ImageView_Fullscreen %1
    [UserInit Value] :HKLM UserInit=C:\Windows\system32\userinit.exe,
    [Shell Services DelayLoad] :HKLM WebCheck=C:\Windows\system32\webcheck.dll
    ### Web Site Monitor Microsoft Corporation Windows® Internet Explorer 7.00.6000.16386
    [App Paths] :HKLM AcroRd32.exe=C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
    ### AcroRd32.exe Adobe Reader 8.1 Adobe Systems Incorporated Adobe Reader 8.1.0.2007051100
    [App Paths] :HKLM AVGSE.DLL=C:\PROGRA~1\AVG\AVG9\avgse.dll
    ### AVGSE.DLL AVG Shell Extension AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.663
    [App Paths] :HKLM BackItUp.exe=C:\Program Files\Nero\Nero 7\Nero BackItUp\BackItUp.exe
    ### BackItUp.exe Nero BackItUp Nero AG Nero BackItUp 2, 7, 3, 0
    [App Paths] :HKLM cmmgr32.exe
    ### cmmgr32.exe
    [App Paths] :HKLM excel.exe=C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE
    ### excel.exe Microsoft Office Excel Microsoft Corporation 2007 Microsoft Office system 12.0.6514.5000
    [App Paths] :HKLM HijackThis.exe=C:\Program Files\Trend Micro\HijackThis\hijackthis.exe
    ### HijackThis.exe
    [App Paths] :HKLM IEXPLORE.EXE=C:\Program Files\Internet Explorer\IEXPLORE.EXE
    ### IEXPLORE.EXE Internet Explorer Microsoft Corporation Windows® Internet Explorer 7.00.6000.16386
    [App Paths] :HKLM install.exe
    ### install.exe
    [App Paths] :HKLM javaws.exe=C:\Program Files\Java\jre6\bin\javaws.exe
    ### javaws.exe Java(TM) Web Start Launcher Sun Microsystems, Inc. Java(TM) Platform SE 6 U15 6.0.150.3
    [App Paths] :HKLM mbam.exe=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    ### mbam.exe
    [App Paths] :HKLM migwiz.exe
    ### migwiz.exe
    [App Paths] :HKLM moviemk.exe=%ProgramFiles%\Movie Maker\moviemk.exe

  15. #15
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    ### moviemk.exe
    [App Paths] :HKLM mplayer2.exe=%ProgramFiles%\Windows Media Player\wmplayer.exe
    ### mplayer2.exe
    [App Paths] :HKLM msimn.exe=%ProgramFiles%\Windows Mail\WinMail.exe
    ### msimn.exe
    [App Paths] :HKLM MSNMSGR.EXE=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    ### MSNMSGR.EXE Windows Live Messenger Microsoft Corporation Messenger 8.5.1302
    [App Paths] :HKLM MsoHtmEd.exe
    ### MsoHtmEd.exe
    [App Paths] :HKLM msoxmled.exe=C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLED.EXE
    ### msoxmled.exe XML Editor Microsoft Corporation Microsoft Office InfoPath 12.0.4518.1014
    [App Paths] :HKLM msworks.exe=C:\Program Files\Microsoft Works\msworks.exe
    ### msworks.exe Microsoft® Works Microsoft® Corporation Microsoft® Works 8 8.05.0822.0
    [App Paths] :HKLM MyDSC2.exe=C:\Windows\Twain_32\MyDSC2\MyDSC2.exe
    ### MyDSC2.exe USB DSC USB DSC 1, 9, 2, 23
    [App Paths] :HKLM NCoverEd.exe=C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverDes.exe
    ### NCoverEd.exe Cover Designer Nero AG Cover Designer 2, 5, 7, 0
    [App Paths] :HKLM Nero.exe=C:\Program Files\Nero\Nero 7\Core\Nero.exe
    ### Nero.exe Nero Burning ROM Nero AG Nero Burning ROM 7, 5, 13, 0
    [App Paths] :HKLM NeroMediaHome.exe=C:\Program Files\Nero\Nero 7\Nero MediaHome\NeroMediaHome.exe
    ### NeroMediaHome.exe Nero MediaHome Nero AG Nero MediaHome 2, 0, 13, 0
    [App Paths] :HKLM NeroVision.exe=C:\Program Files\Nero\Nero 7\Nero Vision\NeroVision.exe
    ### NeroVision.exe Nero Vision Nero AG Nero Vision 4,7,0,19
    [App Paths] :HKLM OBGet.exe=C:\Program Files\GamesBar\OBGet.exe
    ### OBGet.exe OBGet Oberon Oberon, Inc. OBGet 1, 0, 0, 3
    [App Paths] :HKLM ois.exe=C:\PROGRA~1\MICROS~3\Office12\OIS.EXE
    ### ois.exe Microsoft Office Picture Manager Microsoft Corporation Microsoft Office Picture Manager 12.0.6413.1000
    [App Paths] :HKLM OneNote.exe=C:\PROGRA~1\MICROS~3\Office12\ONENOTE. EXE
    ### OneNote.exe Microsoft Office OneNote Microsoft Corporation Microsoft Office OneNote 12.0.6415.1000
    [App Paths] :HKLM pbrush.exe=%SystemRoot%\System32\mspaint.exe
    ### pbrush.exe
    [App Paths] :HKLM PhotoImpression.exe=C:\Program Files\ArcSoft\PhotoImpression 4\PhotoImpression.exe
    ### PhotoImpression.exe PhotoImpression ArcSoft PhotoImpression 4.0.0.77
    [App Paths] :HKLM PhotoSnapViewer.exe=C:\Program Files\Nero\Nero 7\Nero PhotoSnap\PhotoSnapViewer.exe
    ### PhotoSnapViewer.exe Nero Photosnap Image Viewer Nero AG Nero Photosnap Viewer 1, 2, 0, 19
    [App Paths] :HKLM powerpnt.exe=C:\PROGRA~1\MICROS~3\Office12\POWERPN T.EXE
    ### powerpnt.exe Microsoft Office PowerPoint Microsoft Corporation 2007 Microsoft Office system 12.0.6500.5000
    [App Paths] :HKLM Recode.exe=C:\Program Files\Nero\Nero 7\Nero Recode\Recode.exe
    ### Recode.exe Nero Recode 2 Nero AG Nero Recode 2 2, 3, 7, 0
    [App Paths] :HKLM setup.exe
    ### setup.exe
    [App Paths] :HKLM ShowTime.exe=C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe
    ### ShowTime.exe Nero ShowTime Nero AG Nero ShowTime 3, 2, 3, 2
    [App Paths] :HKLM sidebar.exe="%ProgramFiles%\Windows Sidebar\sidebar.exe"
    ### sidebar.exe
    [App Paths] :HKLM table30.exe
    ### table30.exe
    [App Paths] :HKLM vi20.exe=C:\Program Files\ArcSoft\VideoImpression 2\vi20.exe
    ### vi20.exe Video Impression ArcSoft Inc. Video Impression 2. 0. 0. 99
    [App Paths] :HKLM wab.exe=%ProgramFiles%\Windows Mail\wab.exe
    ### wab.exe
    [App Paths] :HKLM wabmig.exe=%ProgramFiles%\Windows Mail\wabmig.exe
    ### wabmig.exe
    [App Paths] :HKLM waveedit.exe=C:\Program Files\Nero\Nero 7\Nero WaveEditor\waveedit.exe
    ### waveedit.exe Wave Editor Nero AG Nero WaveEditor 3, 5, 8, 0
    [App Paths] :HKLM WinCal.exe="%ProgramFiles%\Windows Calendar\wincal.exe"
    ### WinCal.exe
    [App Paths] :HKLM WinMail.exe=%ProgramFiles%\Windows Mail\WinMail.exe
    ### WinMail.exe
    [App Paths] :HKLM WinRAR.exe=C:\Program Files\WinRAR\WinRAR.exe
    ### WinRAR.exe WinRAR archiver Alexander Roshal
    [App Paths] :HKLM Winword.exe=C:\PROGRA~1\MICROS~3\Office12\WINWORD. EXE
    ### Winword.exe Microsoft Office Word Microsoft Corporation 2007 Microsoft Office system 12.0.6514.5000
    [App Paths] :HKLM WKPLMSTP.EXE=C:\Program Files\Microsoft Works\wkplmstp.exe
    ### WKPLMSTP.EXE setup Microsoft Corporation Microsoft Corporation setup 1, 0, 0, 1
    [App Paths] :HKLM WKSAB.EXE=C:\Program Files\Microsoft Works\WKSAB.exe
    ### WKSAB.EXE Microsoft® Works Address Book Microsoft® Corporation Microsoft® Works 8 8.05.0818.0
    [App Paths] :HKLM wkscal.exe=C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkscal.exe
    ### wkscal.exe Microsoft® Works Calendar Microsoft® Corporation Microsoft® Works 8 8.05.0818.0
    [App Paths] :HKLM wksdb.exe=C:\Program Files\Microsoft Works\wksdb.exe
    ### wksdb.exe Microsoft® Works Database Microsoft® Corporation Microsoft® Works 8 8.05.0818.0
    [App Paths] :HKLM WKSSB.EXE=C:\Program Files\Microsoft Works\WKSSB.exe
    ### WKSSB.EXE Microsoft® Works PortFolio Microsoft® Corporation Microsoft® Works 8 8.05.0818.0
    [App Paths] :HKLM wksss.exe=C:\Program Files\Microsoft Works\wksss.exe
    ### wksss.exe Microsoft® Works Spreadsheet Microsoft® Corporation Microsoft® Works 8

  16. #16
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    8.05.0818.0
    [App Paths] :HKLM wkswp.exe=C:\Program Files\Microsoft Works\wkswp.exe
    ### wkswp.exe Microsoft® Works Word Processor Microsoft® Corporation Microsoft® Works 8 8.05.0818.0
    [App Paths] :HKLM WKWCESTP.EXE=C:\Program Files\Microsoft Works\wkwcestp.exe
    ### WKWCESTP.EXE
    [App Paths] :HKLM wlmail.exe=C:\Program Files\Windows Live\Mail\wlmail.exe
    ### wlmail.exe Windows Live Mail Microsoft Corporation Windows Live Mail 12.0.1606
    [App Paths] :HKLM wmplayer.exe=%ProgramFiles%\Windows Media Player\wmplayer.exe
    ### wmplayer.exe
    [App Paths] :HKLM WORDPAD.EXE="%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"
    ### WORDPAD.EXE Windows Wordpad Application Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [App Paths] :HKLM WRITE.EXE="%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"
    ### WRITE.EXE
    [App Paths] :HKLM XPSViewer.exe="C:\Windows\System32\XPSViewer\XPSVi ewer.exe"
    ### XPSViewer.exe XPSViewer.exe Microsoft Corporation Microsoft® .NET Framework 3.0.6920.1453
    [Prevents Display in Control Panel from running.] :HKCU NoDispCpl=0
    [Disable Registry Tools] :HKCU DisableRegistryTools =0
    [SharedTaskScheduler] :HKLM {8C7461EF-2B13-11d2-BE35-3078302C2030}=%SystemRoot%\system32\browseui.dll
    ### Shell Browser UI Library Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Print Monitors] :HKLM 640 Series Port=lxdalmpm.dll
    ### Printer Communication System Printer Communication System 6.4.24.0
    [Print Monitors] :HKLM Lexmark Network Port=lxdalmpm.DLL
    ### Printer Communication System Printer Communication System 6.4.24.0
    [Print Monitors] :HKLM Local Port=localspl.dll
    ### Local Spooler DLL Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Print Monitors] :HKLM Send To Microsoft OneNote Monitor=msonpmon.dll
    ### Microsoft Office OneNote 2007 Printer Driver Microsoft Corporation Microsoft Office OneNote 2007 Printer Driver 12.3.6414.1000
    [Print Monitors] :HKLM Standard TCP/IP Port=tcpmon.dll
    ### Standard TCP/IP Port Monitor DLL Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Print Monitors] :HKLM USB Monitor=usbmon.dll
    ### Standard Dynamic Printing Port Monitor DLL Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Print Monitors] :HKLM WSD Port=WSDMon.dll
    ### WSD Printer Port Monitor Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Context Menu Handlers] :HKLM AVG9 Shell Extension=C:\Program Files\AVG\AVG9\avgse.dll
    ### AVG Shell Extension AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.663
    [Context Menu Handlers] :HKLM BriefcaseMenu=syncui.dll
    ### Windows Briefcase Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Context Menu Handlers] :HKLM Open With=%SystemRoot%\system32\shell32.dll
    ### Windows Shell Common Dll Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Context Menu Handlers] :HKLM Open With EncryptionMenu=%SystemRoot%\system32\shell32.dll
    ### Windows Shell Common Dll Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Context Menu Handlers] :HKLM Sharing=ntshrui.dll
    ### Shell extensions for sharing Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Context Menu Handlers] :HKLM TuneUp Shredder Shell Extension=C:\Program Files\TuneUp Utilities 2008\SDShelEx-win32.dll
    ### TuneUp Shredder Shell Extension TuneUp Software GmbH TuneUp Utilities 6.0
    [Context Menu Handlers] :HKLM WinRAR=C:\Program Files\WinRAR\rarext.dll
    [Context Menu Handlers] :HKLM {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}=%SystemRoot%\system32\shell32.dll
    ### Windows Shell Common Dll Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Context Menu Handlers] :HKLM {EB4D3CFE-E2AA-4C6E-B2FE-2A749F95D208}=C:\Program Files\Nero\Nero 7\Nero BackItUp\NBShell.dll
    ### Nero BackItUp Nero AG Nero BackItUp 2, 7, 3, 0
    [Kernel Auto Boot]
    [ActiveSetup] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95}=C:\Windows\system32\unregmp2.exe /ShowWMP
    ### Microsoft Windows Media Player Setup Utility Microsoft Corporation Microsoft® Windows® Operating System 11.0.6000.6324
    [Svchost DLLs] :HKLM nsi=%systemroot%\system32\nsisvc.dll
    [Svchost DLLs] :HKLM lltdsvc=%SystemRoot%\System32\lltdsvc.dll
    [Svchost DLLs] :HKLM SSDPSRV=%SystemRoot%\System32\ssdpsrv.dll
    [Svchost DLLs] :HKLM upnphost=%SystemRoot%\System32\upnphost.dll
    [Svchost DLLs] :HKLM SCardSvr=%SystemRoot%\System32\SCardSvr.dll
    [Svchost DLLs] :HKLM W32Time=%systemroot%\system32\w32time.dll
    [Svchost DLLs] :HKLM EventSystem=%systemroot%\system32\es.dll
    [Svchost DLLs] :HKLM RemoteRegistry=%SystemRoot%\system32\regsvc.dll
    [Svchost DLLs] :HKLM WinHttpAutoProxySvc=winhttp.dll
    [Svchost DLLs] :HKLM LanmanWorkstation=%SystemRoot%\System32\wkssvc.dll
    [Svchost DLLs] :HKLM TBS=%SystemRoot%\System32\tbssvc.dll
    [Svchost DLLs] :HKLM SLUINotify=%SystemRoot%\system32\SLUINotify.dll
    [Svchost DLLs] :HKLM THREADORDER=%SystemRoot%\system32\mmcss.dll
    [Svchost DLLs] :HKLM FDResPub=%SystemRoot%\system32\fdrespub.dll
    [Svchost DLLs] :HKLM netprofm=%SystemRoot%\System32\netprofm.dll
    [Svchost DLLs] :HKLM fdPHost=%SystemRoot%\system32\fdPHost.dll
    [Svchost DLLs] :HKLM wcncsvc=%SystemRoot%\System32\wcncsvc.dll
    [Svchost DLLs] :HKLM QWAVE=%windir%\system32\qwave.dll
    [Svchost DLLs] :HKLM WebClient=%SystemRoot%\System32\webclnt.dll
    [Svchost DLLs] :HKLM SstpSvc=%SystemRoot%\system32\sstpsvc.dll
    [Svchost DLLs] :HKLM hidserv=%SystemRoot%\system32\hidserv.dll
    [Svchost DLLs] :HKLM UxSms=%SystemRoot%\System32\uxsms.dll
    [Svchost DLLs] :HKLM WdiSystemHost=%SystemRoot%\system32\wdi.dll
    [Svchost DLLs] :HKLM Netman=%SystemRoot%\System32\netman.dll
    [Svchost DLLs] :HKLM TrkWks=%SystemRoot%\System32\trkwks.dll
    [Svchost DLLs] :HKLM AudioEndpointBuilder=%SystemRoot%\System32\Audiosr v.dll
    [Svchost DLLs] :HKLM wudfsvc=%SystemRoot%\System32\WUDFSvc.dll
    [Svchost DLLs] :HKLM irmon
    [Svchost DLLs] :HKLM SysMain=%systemroot%\system32\sysmain.dll
    [Svchost DLLs] :HKLM IPBusEnum=%SystemRoot%\system32\ipbusenum.dll
    [Svchost DLLs] :HKLM dot3svc=%SystemRoot%\System32\dot3svc.dll
    [Svchost DLLs] :HKLM PcaSvc=%SystemRoot%\System32\pcasvc.dll
    [Svchost DLLs] :HKLM Wlansvc=%SystemRoot%\System32\wlansvc.dll
    [Svchost DLLs] :HKLM EMDMgmt=%systemroot%\system32\emdmgmt.dll
    [Svchost DLLs] :HKLM TabletInputService=%SystemRoot%\System32\TabSvc.dl l
    [Svchost DLLs] :HKLM WPDBusEnum=%SystemRoot%\system32\wpdbusenum.dll
    [Svchost DLLs] :HKLM PolicyAgent=%SystemRoot%\System32\ipsecsvc.dll
    [Svchost DLLs] :HKLM pla=%systemroot%\system32\pla.dll
    [Svchost DLLs] :HKLM DPS=%SystemRoot%\system32\dps.dll
    [Svchost DLLs] :HKLM BFE=%SystemRoot%\System32\bfe.dll
    [Svchost DLLs] :HKLM MpsSvc=%SystemRoot%\system32\mpssvc.dll
    [Svchost DLLs] :HKLM CryptSvc=%SystemRoot%\system32\cryptsvc.dll
    [Svchost DLLs] :HKLM Dhcp=%SystemRoot%\System32\dhcpcsvc.dll
    [Svchost DLLs] :HKLM TermService=%SystemRoot%\System32\termsrv.dll
    [Svchost DLLs] :HKLM KtmRm=%systemroot%\system32\msdtckrm.dll
    [Svchost DLLs] :HKLM Dnscache=%SystemRoot%\System32\dnsrslvr.dll
    [Svchost DLLs] :HKLM napagent=%SystemRoot%\system32\qagentRT.dll
    [Svchost DLLs] :HKLM NlaSvc=%SystemRoot%\System32\nlasvc.dll
    [Svchost DLLs] :HKLM WinRM=%SystemRoot%\system32\WsmSvc.dll
    [Svchost DLLs] :HKLM Wecsvc=%SystemRoot%\system32\wecsvc.dll
    [Svchost DLLs] :HKLM TapiSrv=%SystemRoot%\System32\tapisrv.dll
    [Svchost DLLs] :HKLM WerSvc=%SystemRoot%\System32\WerSvc.dll
    [Svchost DLLs] :HKLM AeLookupSvc=%SystemRoot%\System32\aelupsvc.dll
    [Svchost DLLs] :HKLM UxTuneUp=%SystemRoot%\System32\uxtuneup.dll
    [Svchost DLLs] :HKLM wercplsupport=%SystemRoot%\System32\wercplsupport. dll
    [Svchost DLLs] :HKLM Themes=%SystemRoot%\system32\shsvcs.dll
    [Svchost DLLs] :HKLM CertPropSvc=%SystemRoot%\System32\certprop.dll
    [Svchost DLLs] :HKLM SCPolicySvc=%SystemRoot%\System32\certprop.dll
    [Svchost DLLs] :HKLM LanmanServer=%SystemRoot%\system32\srvsvc.dll
    [Svchost DLLs] :HKLM gpsvc=%SystemRoot%\System32\gpsvc.dll
    [Svchost DLLs] :HKLM IKEEXT=%SystemRoot%\System32\ikeext.dll
    [Svchost DLLs] :HKLM Audiosrv=%SystemRoot%\System32\Audiosrv.dll
    [Svchost DLLs] :HKLM FastUserSwitchingCompatibility
    [Svchost DLLs] :HKLM Ias
    [Svchost DLLs] :HKLM Nla
    [Svchost DLLs] :HKLM Ntmssvc
    [Svchost DLLs] :HKLM NWCWorkstation
    [Svchost DLLs] :HKLM Nwsapagent
    [Svchost DLLs] :HKLM RasAuto=%SystemRoot%\System32\rasauto.dll
    [Svchost DLLs] :HKLM RasMan=%SystemRoot%\System32\rasmans.dll
    [Svchost DLLs] :HKLM RemoteAccess=%SystemRoot%\System32\mprdim.dll
    [Svchost DLLs] :HKLM SENS=%SystemRoot%\System32\sens.dll
    [Svchost DLLs] :HKLM SharedAccess=%SystemRoot%\System32\ipnathlp.dll
    [Svchost DLLs] :HKLM SRService
    [Svchost DLLs] :HKLM Wmi
    [Svchost DLLs] :HKLM WmdmPmSp
    [Svchost DLLs] :HKLM wuauserv=%systemroot%\system32\wuaueng.dll
    [Svchost DLLs] :HKLM BITS=%SystemRoot%\System32\qmgr.dll
    [Svchost DLLs] :HKLM ShellHWDetection=%SystemRoot%\System32\shsvcs.dll
    [Svchost DLLs] :HKLM LogonHours
    [Svchost DLLs] :HKLM PCAudit
    [Svchost DLLs] :HKLM helpsvc
    [Svchost DLLs] :HKLM uploadmgr
    [Svchost DLLs] :HKLM iphlpsvc=%SystemRoot%\System32\iphlpsvc.dll
    [Svchost DLLs] :HKLM seclogon=%windir%\system32\seclogon.dll
    [Svchost DLLs] :HKLM Appinfo=%SystemRoot%\System32\appinfo.dll
    [Svchost DLLs] :HKLM MSiSCSI=%systemroot%\system32\iscsiexe.dll
    [Svchost DLLs] :HKLM MMCSS=%SystemRoot%\system32\mmcss.dll
    [Svchost DLLs] :HKLM ProfSvc=%systemroot%\system32\profsvc.dll
    [Svchost DLLs] :HKLM EapHost=%SystemRoot%\System32\eapsvc.dll
    [Svchost DLLs] :HKLM Winmgmt=%SystemRoot%\system32\wbem\WMIsvc.dll
    [Svchost DLLs] :HKLM Schedule=%systemroot%\system32\schedsvc.dll
    [Svchost DLLs] :HKLM SessionEnv=%SystemRoot%\system32\sessenv.dll
    [Svchost DLLs] :HKLM Browser=%SystemRoot%\System32\browser.dll
    [Svchost DLLs] :HKLM hkmsvc=%SystemRoot%\system32\kmsvc.dll
    [Svchost DLLs] :HKLM swprv=%Systemroot%\System32\swprv.dll
    [Svchost DLLs] :HKLM eventlog
    [Svchost DLLs] :HKLM lmhosts=%SystemRoot%\System32\lmhsvc.dll
    [Svchost DLLs] :HKLM wscsvc=%SystemRoot%\System32\wscsvc.dll
    [Svchost DLLs] :HKLM p2pimsvc=%SystemRoot%\system32\p2psvc.dll
    [Svchost DLLs] :HKLM PNRPSvc=%SystemRoot%\system32\p2psvc.dll
    ### Peer-to-Peer Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Svchost DLLs] :HKLM p2psvc=%SystemRoot%\system32\p2psvc.dll
    [Svchost DLLs] :HKLM WPCSvc=%SystemRoot%\System32\wpcsvc.dll
    [Svchost DLLs] :HKLM PnrpAutoReg=%SystemRoot%\system32\p2psvc.dll
    ### Peer-to-Peer Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Svchost DLLs] :HKLM RpcSs=%SystemRoot%\system32\rpcss.dll
    [Svchost DLLs] :HKLM WcsPlugInService=%SystemRoot%\System32\WcsPlugInSe rvice.dll
    [Svchost DLLs] :HKLM PlugPlay=%SystemRoot%\system32\umpnpmgr.dll
    [Svchost DLLs] :HKLM DcomLaunch=%SystemRoot%\system32\rpcss.dll
    [Svchost DLLs] :HKLM WdiServiceHost=%SystemRoot%\system32\wdi.dll
    [Svchost DLLs] :HKLM SDRSVC=%Systemroot%\System32\SDRSVC.dll
    [Svchost DLLs] :HKLM stisvc=%SystemRoot%\System32\wiaservc.dll
    [Svchost DLLs] :HKLM WinDefend=%ProgramFiles%\Windows Defender\mpsvc.dll
    [Bootexecute] :HKLM BootExecute=autocheck autochk *
    Partizan
    [Winlogon System] :HKLM system=""

  17. #17
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    ### File is deleted or hidden by rootkit or could not be located.
    [KnownDLLs] :HKLM clbcatq=clbcatq.dll
    [KnownDLLs] :HKLM ole32=ole32.dll
    [KnownDLLs] :HKLM advapi32=advapi32.dll
    [KnownDLLs] :HKLM COMDLG32=COMDLG32.dll
    [KnownDLLs] :HKLM DllDirectory=%SystemRoot%\system32
    [KnownDLLs] :HKLM gdi32=gdi32.dll
    [KnownDLLs] :HKLM IERTUTIL=IERTUTIL.dll
    [KnownDLLs] :HKLM IMAGEHLP=IMAGEHLP.dll
    [KnownDLLs] :HKLM IMM32=IMM32.dll
    [KnownDLLs] :HKLM kernel32=kernel32.dll
    [KnownDLLs] :HKLM LPK=LPK.dll
    [KnownDLLs] :HKLM MSCTF=MSCTF.dll
    [KnownDLLs] :HKLM MSVCRT=MSVCRT.dll
    [KnownDLLs] :HKLM NORMALIZ=NORMALIZ.dll
    [KnownDLLs] :HKLM NSI=NSI.dll
    [KnownDLLs] :HKLM OLEAUT32=OLEAUT32.dll
    [KnownDLLs] :HKLM rpcrt4=rpcrt4.dll
    [KnownDLLs] :HKLM Setupapi=Setupapi.dll
    [KnownDLLs] :HKLM SHELL32=SHELL32.dll
    [KnownDLLs] :HKLM SHLWAPI=SHLWAPI.dll
    [KnownDLLs] :HKLM URLMON=URLMON.dll
    [KnownDLLs] :HKLM user32=user32.dll
    [KnownDLLs] :HKLM USP10=USP10.dll
    [KnownDLLs] :HKLM WININET=WININET.dll
    [KnownDLLs] :HKLM WLDAP32=WLDAP32.dll
    [KnownDLLs] :HKLM WS2_32=WS2_32.dll
    [Environment - Path] :HKLM Path=%SystemRoot%\system32;%SystemRoot%;%SystemRoo t%\System32\Wbem
    [List of Injected DLLs] :HKLM AppInit_DLLs=avgrsstx.dll
    [Auto Services] AeLookupSvc
    ### Internal Name: AeLookupSvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * Processes application compatibility cache requests for applications as they are launched Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] AudioEndpointBuilder
    ### Internal Name: AudioEndpointBuilder. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted * Manages audio devices for the Windows Audio service. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] Audiosrv
    ### Internal Name: Audiosrv. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted * Manages audio for Windows-based programs. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] avg9emc
    ### Internal Name: avg9emc. Status: service running. Actual File: "C:\Program Files\AVG\AVG9\avgemc.exe" * AVG E-Mail Scanner AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.663
    [Auto Services] avg9wd
    ### Internal Name: avg9wd. Status: service running. Actual File: "C:\Program Files\AVG\AVG9\avgwdsvc.exe" * AVG Watchdog Service AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.663
    [Auto Services] BFE
    ### Internal Name: BFE. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork * The Base Filtering Engine (BFE) is a service that manages firewall and Internet Protocol security (IPsec) policies and implements user mode filtering. Stopping or disabling the BFE service will significantly reduce the security of the system. It will also result in unpredictable behavior in IPsec management and firewall applications. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] BITS
    ### Internal Name: BITS. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k netsvcs * Transfers files in the background using idle network bandwidth. If the service is disabled, then any applications that depend on BITS, such as Windows Update or MSN Explorer, will be unable to automatically download programs and other information. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] Browser
    ### Internal Name: Browser. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k netsvcs * Maintains an updated list of computers on the network and supplies this list to computers designated as browsers. If this service is stopped, this list will not be updated or maintained. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] CryptSvc
    ### Internal Name: CryptSvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k NetworkService * Provides four management services: Catalog Database Service, which confirms the signatures of Windows files and allows new programs to be installed; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; Automatic Root Certificate Update Service, which retrieves root certificates from Windows Update and enable scenarios such as SSL; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] DcomLaunch
    ### Internal Name: CryptSvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k NetworkService * Provides four management services: Catalog Database Service, which confirms the signatures of Windows files and allows new programs to be installed; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; Automatic Root Certificate Update Service, which retrieves root certificates from Windows Update and enable scenarios such as SSL; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] Dhcp
    ### Internal Name: Dhcp. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted * Registers and updates IP addresses and DNS records for this computer. If this service is stopped, this computer will not receive dynamic IP addresses and DNS updates. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] Dnscache
    ### Internal Name: Dnscache. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k NetworkService * The DNS Client service (dnscache) caches Domain Name System (DNS) names and registers the full computer name for this computer. If the service is stopped, DNS names will continue to be resolved. However, the results of DNS name queries will not be cached and the computer's name will not be registered. If the service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] DPS
    ### Internal Name: Dnscache. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k NetworkService * The DNS Client service (dnscache) caches Domain Name System (DNS) names and registers the full computer name for this computer. If the service is stopped, DNS names will continue to be resolved. However, the results of DNS name queries will not be cached and the computer's name will not be registered. If the service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] EMDMgmt
    ### Internal Name: EMDMgmt. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted * Provides support for improving system performance using ReadyBoost. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] Eventlog
    ### Internal Name: Eventlog. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted * This service manages events and event logs. It supports logging events, querying events, subscribing to events, archiving event logs, and managing event metadata. It can display events in both XML and plain text format. Stopping this service may compromise security and reliability of the system. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] EventSystem
    ### Internal Name: EventSystem. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalService * Supports System Event Notification Service (SENS), which provides automatic distribution of events to subscribing Component Object Model (COM) components. If the service is stopped, SENS will close and will not be able to provide logon and logoff notifications. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] FDResPub
    ### Internal Name: FDResPub. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalService * Publishes this computer and resources attached to this computer so they can be discovered over the network. If this service is stopped, network resources will no longer be published and they will not be discovered by other computers on the network. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] gpsvc
    ### Internal Name: FDResPub. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalService * Publishes this computer and resources attached to this computer so they can be discovered over the network. If this service is stopped, network resources will no longer be published and they will not be discovered by other computers on the network. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] hidserv
    ### Internal Name: hidserv. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted * Enables generic input access to Human Interface Devices (HID), which activates and maintains the use of predefined hot buttons on keyboards, remote controls, and other multimedia devices. If this service is stopped, hot buttons controlled by this service will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] IKEEXT

  18. #18
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    ### Internal Name: IKEEXT. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * The IKEEXT service hosts the Internet Key Exchange (IKE) and Authenticated Internet Protocol (AuthIP) keying modules. These keying modules are used for authentication and key exchange in Internet Protocol security (IPsec). Stopping or disabling the IKEEXT service will disable IKE and AuthIP key exchange with peer computers. IPsec is typically configured to use IKE or AuthIP; therefore, stopping or disabling the IKEEXT service might result in an IPsec failure and might compromise the security of the system. It is strongly recommended that you have the IKEEXT service running. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] iphlpsvc
    ### Internal Name: iphlpsvc. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k NetSvcs * Provides automatic IPv6 connectivity over an IPv4 network. If this service is stopped, the machine will only have IPv6 connectivity if it is connected to a native IPv6 network. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] iWinTrusted
    ### Internal Name: iWinTrusted. Status: service running. Actual File: C:\Program Files\iWin Games\iWinTrusted.exe * iWin Trusted Game Service iWin Trusted Games Service iWin Inc. iWinGames Application 1, 0, 3, 0
    [Auto Services] KtmRm
    ### Internal Name: KtmRm. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k NetworkService * Coordinates transactions between MSDTC and the Kernel Transaction Manager (KTM). Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] LanmanServer
    ### Internal Name: LanmanServer. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * Supports file, print, and named-pipe sharing over the network for this computer. If this service is stopped, these functions will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] LanmanWorkstation
    ### Internal Name: LanmanWorkstation. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalService * Creates and maintains client network connections to remote servers using the SMB protocol. If this service is stopped, these connections will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] LightScribeService
    ### Internal Name: LightScribeService. Status: service running. Actual File: "C:\Program Files\Common Files\LightScribe\LSSrvc.exe" * Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work. Hewlett-Packard Company LightScribe
    [Auto Services] lmhosts
    ### Internal Name: lmhosts. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted * Provides support for the NetBIOS over TCP/IP (NetBT) service and NetBIOS name resolution for clients on the network, therefore enabling users to share files, print, and log on to the network. If this service is stopped, these functions might be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] lxda_device
    ### Internal Name: lxda_device. Status: service running. Actual File: C:\Windows\system32\lxdacoms.exe -service * Printer Communication System Printer Communication System 6.4.24.0
    [Auto Services] MMCSS
    ### Internal Name: MMCSS. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * Enables relative prioritization of work based on system-wide task priorities. This is intended mainly for multimedia applications. If this service is stopped, individual tasks resort to their default priority. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] MpsSvc
    ### Internal Name: MpsSvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork * Windows Firewall helps protect your computer by preventing unauthorized users from gaining access to your computer through the Internet or a network. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] netprofm
    ### Internal Name: netprofm. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalService * Identifies the networks to which the computer has connected, collects and stores properties for these networks, and notifies applications when these properties change. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] NlaSvc
    ### Internal Name: NlaSvc. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k NetworkService * Collects and stores configuration information for the network and notifies programs when this information is modified. If this service is stopped, configuration information might be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] NMSAccessU
    ### Internal Name: NMSAccessU. Status: service running. Actual File: C:\Program Files\CDBurnerXP\NMSAccessU.exe *
    [Auto Services] nsi
    ### Internal Name: nsi. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalService * This service delivers network notifications (e.g. interface addition/deleting etc) to user mode clients. Stopping this service will cause loss of network connectivity. If this service is disabled, any other services that explicitly depend on this service will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] PcaSvc
    ### Internal Name: PcaSvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted * Provides support for the Program Compatibility Assistant. If this service is stopped, the Program Compatibility Assistant will not function properly. If this service is disabled, any services that depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] PlugPlay
    ### Internal Name: PlugPlay. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k DcomLaunch * Enables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] PolicyAgent
    ### Internal Name: PolicyAgent. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted * Internet Protocol security (IPsec) supports network-level peer authentication, data origin authentication, data integrity, data confidentiality (encryption), and replay protection. This service enforces IPsec policies created through the IP Security Policies snap-in or the command-line tool "netsh ipsec". If you stop this service, you may experience network connectivity issues if your policy requires that connections use IPsec. Also,remote management of Windows Firewall is not available when this service is stopped. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] ProfSvc
    ### Internal Name: ProfSvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * This service is responsible for loading and unloading user profiles. If this service is stopped or disabled, users will no longer be able to successfully logon or logoff, applications may have problems getting to users' data, and components registered to receive profile event notifications will not receive them. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] RpcSs
    ### Internal Name: ProfSvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * This service is responsible for loading and unloading user profiles. If this service is stopped or disabled, users will no longer be able to successfully logon or logoff, applications may have problems getting to users' data, and components registered to receive profile event notifications will not receive them. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] SamSs
    ### Internal Name: SamSs. Status: service running. Actual File: C:\Windows\system32\lsass.exe * The startup of this service signals other services that the Security Accounts Manager (SAM) is ready to accept requests. Disabling this service will prevent other services in the system from being notified when the SAM is ready, which may in turn cause those services to fail to start correctly. This service should not be disabled. Local Security Authority Process Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] SBSDWSCService
    ### Internal Name: SBSDWSCService. Status: service running. Actual File: C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe * Spybot-S&D Security Center integration Safer Networking Ltd. Spybot - Search & Destroy 1, 5, 2, 0
    [Auto Services] Schedule
    ### Internal Name: SBSDWSCService. Status: service running. Actual File: C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe * Spybot-S&D Security Center integration Safer Networking Ltd. Spybot - Search & Destroy 1, 5, 2, 0
    [Auto Services] seclogon
    ### Internal Name: seclogon. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * Enables starting processes under alternate credentials. If this service is stopped, this type of logon access will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] SENS
    ### Internal Name: SENS. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * Monitors system events and notifies subscribers to COM+ Event System of these events. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] ShellHWDetection
    ### Internal Name: ShellHWDetection. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k netsvcs * Provides notifications for AutoPlay hardware events. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] slsvc
    ### Internal Name: slsvc. Status: service running. Actual File: C:\Windows\system32\SLsvc.exe * Enables the download, installation and enforcement of digital licenses for Windows and Windows applications. If the service is disabled, the operating system and licensed applications may run in a reduced function mode. Microsoft Software Licensing Service Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Auto Services] Spooler
    ### Internal Name: Spooler. Status: service running. Actual File: C:\Windows\System32\spoolsv.exe * Loads files to memory for later printing Spooler SubSystem App Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386

  19. #19
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    [Auto Services] stisvc
    ### Internal Name: stisvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k imgsvc * Provides image acquisition services for scanners and cameras Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] SysMain
    ### Internal Name: SysMain. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted * Maintains and improves system performance over time. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] TabletInputService
    ### Internal Name: TabletInputService. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted * Enables Tablet PC pen and ink functionality Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] TBS
    ### Internal Name: TBS. Status: service stopped. Actual File: C:\Windows\System32\svchost.exe -k LocalService * Enables access to the Trusted Platform Module (TPM), which provides hardware-based cryptographic services to system components and applications. If this service is stopped or disabled, applications will be unable to use keys protected by the TPM. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] TermService
    ### Internal Name: TermService. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k NetworkService * Allows users to connect interactively to a remote computer. Remote Desktop and Terminal Server depend on this service. To prevent remote use of this computer, clear the checkboxes on the Remote tab of the System properties control panel item. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] Themes
    ### Internal Name: Themes. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k netsvcs * Provides user experience theme management. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] TrkWks
    ### Internal Name: TrkWks. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted * Maintains links between NTFS files within a computer or across computers in a network. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] upnphost
    ### Internal Name: upnphost. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalService * Allows UPnP devices to be hosted on this computer. If this service is stopped, any hosted UPnP devices will stop functioning and no additional hosted devices can be added. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] UxSms
    ### Internal Name: UxSms. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted * Provides Desktop Window Manager startup and maintenance services Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] UxTuneUp
    ### Internal Name: UxTuneUp. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k netsvcs * Allows to use visual styles without Microsoft signature. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] W32Time
    ### Internal Name: W32Time. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalService * Maintains date and time synchronization on all clients and servers in the network. If this service is stopped, date and time synchronization will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] WebClient
    ### Internal Name: WebClient. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalService * Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] WerSvc
    ### Internal Name: WerSvc. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k WerSvcGroup * Allows errors to be reported when programs stop working or responding and allows existing solutions to be delivered. Also allows logs to be generated for diagnostic and repair services. If this service is stopped, error reporting might not work correctly and results of diagnostic services and repairs might not be displayed. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] WinDefend
    ### Internal Name: WinDefend. Status: service stopped. Actual File: C:\Windows\System32\svchost.exe -k secsvcs * Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] Winmgmt
    ### Internal Name: Winmgmt. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * Provides a common interface and object model to access management information about operating system, devices, applications and services. If this service is stopped, most Windows-based software will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] WPDBusEnum
    ### Internal Name: WPDBusEnum. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted * Enforces group policy for removable mass-storage devices. Enables applications such as Windows Media Player and Image Import Wizard to transfer and synchronize content using removable mass-storage devices. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] wscsvc
    ### Internal Name: wscsvc. Status: service running. Actual File: C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted * Monitors system security settings and configurations. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] WSearch
    ### Internal Name: WSearch. Status: service running. Actual File: C:\Windows\system32\SearchIndexer.exe /Embedding * Provides content indexing and property caching for file, email and other content (via extensibility APIs). The service responds to file and email notifications to index modified content. If the service is stopped or disabled, the Explorer will not be able to display virtual folder views of items, and search in the Explorer will fall back to item-by-item slow search. Microsoft Windows Search Indexer Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] wuauserv
    ### Internal Name: wuauserv. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k netsvcs * Enables the detection, download, and installation of updates for Windows and other programs. If this service is disabled, users of this computer will not be able to use Windows Update or its automatic updating feature, and programs will not be able to use the Windows Update Agent (WUA) API. Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Auto Services] wudfsvc
    ### Internal Name: wudfsvc. Status: service running. Actual File: C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted * Manages user-mode driver host processes Host Process for Windows Services Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] ntkrnlpa.exe=C:\Windows\SYSTEM32\NTKRNLPA.EXE
    ### NT Kernel & System Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18304
    [Drivers] hal.dll=C:\Windows\SYSTEM32\HAL.DLL
    ### Hardware Abstraction Layer DLL Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] kdcom.dll=C:\Windows\SYSTEM32\KDCOM.DLL
    ### Kernel Debugger HW Extension DLL Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mcupdate_GenuineIntel.dll=C:\Windows\SYSTEM32\MCUP DATE_GENUINEINTEL.DLL
    ### Intel Microcode Update Library Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] PSHED.dll=C:\Windows\SYSTEM32\PSHED.DLL
    ### Platform Specific Hardware Error Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] BOOTVID.dll=C:\Windows\SYSTEM32\BOOTVID.DLL
    ### VGA Boot Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] CLFS.SYS=C:\Windows\SYSTEM32\CLFS.SYS
    ### Common Log File System Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] CI.dll=C:\Windows\SYSTEM32\CI.DLL
    ### Code Integrity Module Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] Wdf01000.sys=C:\Windows\SYSTEM32\DRIVERS\WDF01000. SYS
    ### WDF Dynamic Microsoft Corporation Microsoft® Windows® Operating System 1.7.6001.0
    [Drivers] WDFLDR.SYS=C:\Windows\SYSTEM32\DRIVERS\WDFLDR.SYS
    ### WDFLDR Microsoft Corporation Microsoft® Windows® Operating System 1.7.6001.0
    [Drivers] acpi.sys=C:\Windows\SYSTEM32\DRIVERS\ACPI.SYS
    ### ACPI Driver for NT Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] WMILIB.SYS=C:\Windows\SYSTEM32\DRIVERS\WMILIB.SYS
    ### WMILIB WMI support library Dll Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] msisadrv.sys=C:\Windows\SYSTEM32\DRIVERS\MSISADRV. SYS
    ### ISA Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] pci.sys=C:\Windows\SYSTEM32\DRIVERS\PCI.SYS
    ### NT Plug and Play PCI Enumerator Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] partmgr.sys=C:\Windows\SYSTEM32\DRIVERS\PARTMGR.SY S
    ### Partition Management Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] volmgr.sys=C:\Windows\SYSTEM32\DRIVERS\VOLMGR.SYS
    ### Volume Manager Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] volmgrx.sys=C:\Windows\SYSTEM32\DRIVERS\VOLMGRX.SY S
    ### Volume Manager Extension Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] viaide.sys=C:\Windows\SYSTEM32\DRIVERS\VIAIDE.SYS
    ### VIA Generic PCI IDE Bus Driver VIA Technologies, Inc. VIA PCI IDE MINI Driver 5.1.3790.150
    [Drivers] PCIIDEX.SYS=C:\Windows\SYSTEM32\DRIVERS\PCIIDEX.SY S
    ### PCI IDE Bus Driver Extension Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mountmgr.sys=C:\Windows\SYSTEM32\DRIVERS\MOUNTMGR. SYS
    ### Mount Point Manager Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] atapi.sys=C:\Windows\SYSTEM32\DRIVERS\ATAPI.SYS
    ### ATAPI IDE Miniport Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] ataport.SYS=C:\Windows\SYSTEM32\DRIVERS\ATAPORT.SY S
    ### ATAPI Driver Extension Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] fltmgr.sys=C:\Windows\SYSTEM32\DRIVERS\FLTMGR.SYS
    ### Microsoft Filesystem Filter Manager Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] fileinfo.sys=C:\Windows\SYSTEM32\DRIVERS\FILEINFO. SYS
    ### FileInfo Filter Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] ksecdd.sys=C:\Windows\SYSTEM32\DRIVERS\KSECDD.SYS
    ### Kernel Security Support Provider Interface Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18272
    [Drivers] ndis.sys=C:\Windows\SYSTEM32\DRIVERS\NDIS.SYS
    ### NDIS 6.0 wrapper driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] msrpc.sys=C:\Windows\SYSTEM32\DRIVERS\MSRPC.SYS
    ### Kernel Remote Procedure Call Provider Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] NETIO.SYS=C:\Windows\SYSTEM32\DRIVERS\NETIO.SYS
    ### Network I/O Subsystem Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] tcpip.sys=C:\Windows\SYSTEM32\DRIVERS\TCPIP.SYS
    ### TCP/IP Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18311
    [Drivers] fwpkclnt.sys=C:\Windows\SYSTEM32\DRIVERS\FWPKCLNT. SYS
    ### FWP/IPsec Kernel-Mode API Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] Ntfs.sys=C:\Windows\SYSTEM32\DRIVERS\NTFS.SYS
    ### NT File System Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] volsnap.sys=C:\Windows\SYSTEM32\DRIVERS\VOLSNAP.SY S
    ### Volume Shadow Copy Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] uagp35.sys=C:\Windows\SYSTEM32\DRIVERS\UAGP35.SYS
    ### MS AGPv3.5 Filter Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] spldr.sys=C:\Windows\SYSTEM32\DRIVERS\SPLDR.SYS
    ### loader for security processor Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.16606
    [Drivers] mup.sys=C:\Windows\SYSTEM32\DRIVERS\MUP.SYS
    ### Multiple UNC Provider driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] ecache.sys=C:\Windows\SYSTEM32\DRIVERS\ECACHE.SYS
    ### Special Memory Device Cache Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] disk.sys=C:\Windows\SYSTEM32\DRIVERS\DISK.SYS
    ### PnP Disk Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] CLASSPNP.SYS=C:\Windows\SYSTEM32\DRIVERS\CLASSPNP. SYS
    ### SCSI Class System Dll Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] crcdisk.sys=C:\Windows\SYSTEM32\DRIVERS\CRCDISK.SY S
    ### Disk Block Verification Filter Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] avgrkx86.sys=C:\Windows\SYSTEM32\DRIVERS\AVGRKX86. SYS
    ### AVG Anti-Rootkit Driver AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.676
    [Drivers] tunnel.sys=C:\Windows\SYSTEM32\DRIVERS\TUNNEL.SYS
    ### Microsoft Tunnel Interface Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] tunmp.sys=C:\Windows\SYSTEM32\DRIVERS\TUNMP.SYS
    ### Microsoft Tunnel Interface Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] intelppm.sys=C:\Windows\SYSTEM32\DRIVERS\INTELPPM. SYS
    ### Processor Device Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] VTGKModeDX32.sys=C:\Windows\SYSTEM32\DRIVERS\VTGKM ODEDX32.SYS
    ### S3 Graphics 86c700-series Miniport S3 Graphics Co., Ltd. S3 Graphics 86c700-series Miniport 7.14.10.0055-15.31.07.07
    [Drivers] dxgkrnl.sys=C:\Windows\SYSTEM32\DRIVERS\DXGKRNL.SY S
    ### DirectX Graphics Kernel Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] watchdog.sys=C:\Windows\SYSTEM32\DRIVERS\WATCHDOG. SYS
    ### Watchdog Driver Microsoft Corporation Microsoft® Windows® Operating System

  20. #20
    FPCH Member jinkie's Avatar
    Join Date
    Jul 2009
    Posts
    86

    PC Experience:
    PC Illiterate


    Operating System:
    Windows Vista - Home Basic

    Default

    6.0.6001.18000
    [Drivers] Afc.sys=C:\Windows\SYSTEM32\DRIVERS\AFC.SYS
    ### Arcsoft(R) ASPI Shell Arcsoft, Inc. Arcsoft(R) ASPI Shell 1, 0, 0, 2
    [Drivers] cdrom.sys=C:\Windows\SYSTEM32\DRIVERS\CDROM.SYS
    ### SCSI CD-ROM Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] usbuhci.sys=C:\Windows\SYSTEM32\DRIVERS\USBUHCI.SY S
    ### UHCI USB Miniport Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] USBPORT.SYS=C:\Windows\SYSTEM32\DRIVERS\USBPORT.SY S
    ### USB 1.1 & 2.0 Port Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] usbehci.sys=C:\Windows\SYSTEM32\DRIVERS\USBEHCI.SY S
    ### EHCI eUSB Miniport Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] fetnd5.sys=C:\Windows\SYSTEM32\DRIVERS\FETND5.SYS
    ### NDIS 5.0 miniport driver VIA Technologies, Inc. VIA Rhine Family Fast Ethernet Adapter 3.57.00.0442
    [Drivers] serial.sys=C:\Windows\SYSTEM32\DRIVERS\SERIAL.SYS
    ### Serial Device Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] serenum.sys=C:\Windows\SYSTEM32\DRIVERS\SERENUM.SY S
    ### Serial Port Enumerator Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] parport.sys=C:\Windows\SYSTEM32\DRIVERS\PARPORT.SY S
    ### Parallel Port Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] i8042prt.sys=C:\Windows\SYSTEM32\DRIVERS\I8042PRT. SYS
    ### i8042 Port Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] kbdclass.sys=C:\Windows\SYSTEM32\DRIVERS\KBDCLASS. SYS
    ### Keyboard Class Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] HDAudBus.sys=C:\Windows\SYSTEM32\DRIVERS\HDAUDBUS. SYS
    ### High Definition Audio Bus Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.17036
    [Drivers] msiscsi.sys=C:\Windows\SYSTEM32\DRIVERS\MSISCSI.SY S
    ### Microsoft iSCSI Initiator Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] storport.sys=C:\Windows\SYSTEM32\DRIVERS\STORPORT. SYS
    ### Microsoft Storage Port Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] TDI.SYS=C:\Windows\SYSTEM32\DRIVERS\TDI.SYS
    ### TDI Wrapper Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] rasl2tp.sys=C:\Windows\SYSTEM32\DRIVERS\RASL2TP.SY S
    ### RAS L2TP mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] ndistapi.sys=C:\Windows\SYSTEM32\DRIVERS\NDISTAPI. SYS
    ### NDIS 3.0 connection wrapper driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] ndiswan.sys=C:\Windows\SYSTEM32\DRIVERS\NDISWAN.SY S
    ### MS PPP Framing Driver (Strong Encryption) Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] raspppoe.sys=C:\Windows\SYSTEM32\DRIVERS\RASPPPOE. SYS
    ### RAS PPPoE mini-port/call-manager driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] raspptp.sys=C:\Windows\SYSTEM32\DRIVERS\RASPPTP.SY S
    ### Peer-to-Peer Tunneling Protocol Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] termdd.sys=C:\Windows\SYSTEM32\DRIVERS\TERMDD.SYS
    ### Terminal Server Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mouclass.sys=C:\Windows\SYSTEM32\DRIVERS\MOUCLASS. SYS
    ### Mouse Class Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] swenum.sys=C:\Windows\SYSTEM32\DRIVERS\SWENUM.SYS
    ### Plug and Play Software Device Enumerator Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] ks.sys=C:\Windows\SYSTEM32\DRIVERS\KS.SYS
    ### Kernel CSA Library Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mssmbios.sys=C:\Windows\SYSTEM32\DRIVERS\MSSMBIOS. SYS
    ### System Management BIOS Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] umbus.sys=C:\Windows\SYSTEM32\DRIVERS\UMBUS.SYS
    ### User-Mode Bus Enumerator Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] usbhub.sys=C:\Windows\SYSTEM32\DRIVERS\USBHUB.SYS
    ### Default Hub Driver for USB Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] NDProxy.SYS=C:\Windows\SYSTEM32\DRIVERS\NDPROXY.SY S
    ### NDIS Proxy Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] RTKVHDA.sys=C:\Windows\SYSTEM32\DRIVERS\RTKVHDA.SY S
    ### Realtek(r) High Definition Audio Function Driver Realtek Semiconductor Corp. Realtek(r) High Definition Audio Function Driver 6.0.1.5334
    [Drivers] portcls.sys=C:\Windows\SYSTEM32\DRIVERS\PORTCLS.SY S
    ### Port Class (Class Driver for Port/Miniport Devices) Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] drmk.sys=C:\Windows\SYSTEM32\DRIVERS\DRMK.SYS
    ### Microsoft Kernel DRM Descrambler Filter Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] Fs_Rec.SYS=C:\Windows\SYSTEM32\DRIVERS\FS_REC.SYS
    ### File System Recognizer Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] Null.SYS=C:\Windows\SYSTEM32\DRIVERS\NULL.SYS
    ### NULL Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] Beep.SYS=C:\Windows\SYSTEM32\DRIVERS\BEEP.SYS
    ### BEEP Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] vga.sys=C:\Windows\SYSTEM32\DRIVERS\VGA.SYS
    ### VGA/Super VGA Video Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] VIDEOPRT.SYS=C:\Windows\SYSTEM32\DRIVERS\VIDEOPRT. SYS
    ### Video Port Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] RDPCDD.sys=C:\Windows\SYSTEM32\DRIVERS\RDPCDD.SYS
    ### RDP Miniport Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] rdpencdd.sys=C:\Windows\SYSTEM32\DRIVERS\RDPENCDD. SYS
    ### RDP Miniport Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] Msfs.SYS=C:\Windows\SYSTEM32\DRIVERS\MSFS.SYS
    ### Mailslot driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] Npfs.SYS=C:\Windows\SYSTEM32\DRIVERS\NPFS.SYS
    ### NPFS Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] rasacd.sys=C:\Windows\SYSTEM32\DRIVERS\RASACD.SYS
    ### RAS Automatic Connection Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] tdx.sys=C:\Windows\SYSTEM32\DRIVERS\TDX.SYS
    ### TDI Translation Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] smb.sys=C:\Windows\SYSTEM32\DRIVERS\SMB.SYS
    ### SMB Transport driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] avgtdix.sys=C:\Windows\SYSTEM32\DRIVERS\AVGTDIX.SY S
    ### AVG Network connection watcher AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.701
    [Drivers] netbt.sys=C:\Windows\SYSTEM32\DRIVERS\NETBT.SYS
    ### MBT Transport driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] afd.sys=C:\Windows\SYSTEM32\DRIVERS\AFD.SYS
    ### Ancillary Function Driver for WinSock Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] pacer.sys=C:\Windows\SYSTEM32\DRIVERS\PACER.SYS
    ### QoS Packet Scheduler Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] netbios.sys=C:\Windows\SYSTEM32\DRIVERS\NETBIOS.SY S
    ### NetBIOS interface driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] wanarp.sys=C:\Windows\SYSTEM32\DRIVERS\WANARP.SYS
    ### MS Remote Access and Routing ARP Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] rdbss.sys=C:\Windows\SYSTEM32\DRIVERS\RDBSS.SYS
    ### Redirected Drive Buffering SubSystem Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] nsiproxy.sys=C:\Windows\SYSTEM32\DRIVERS\NSIPROXY. SYS
    ### NSI Proxy Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] dfsc.sys=C:\Windows\SYSTEM32\DRIVERS\DFSC.SYS
    ### DFS Namespace Client Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] avgmfx86.sys=C:\Windows\SYSTEM32\DRIVERS\AVGMFX86. SYS
    ### AVG Resident Shield Minifilter Driver AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.685
    [Drivers] avgldx86.sys=C:\Windows\SYSTEM32\DRIVERS\AVGLDX86. SYS
    ### AVG AVI Loader Driver AVG Technologies CZ, s.r.o. AVG Internet Security 9.0.0.663
    [Drivers] hidusb.sys=C:\Windows\SYSTEM32\DRIVERS\HIDUSB.SYS
    ### USB Miniport Driver for Input Devices Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] HIDCLASS.SYS=C:\Windows\SYSTEM32\DRIVERS\HIDCLASS. SYS
    ### Hid Class Library Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] HIDP****.SYS=C:\Windows\SYSTEM32\DRIVERS\HIDP****. SYS
    ### Hid Parsing Library Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] USBD.SYS=C:\Windows\SYSTEM32\DRIVERS\USBD.SYS
    ### Universal Serial Bus Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mouhid.sys=C:\Windows\SYSTEM32\DRIVERS\MOUHID.SYS
    ### HID Mouse Filter Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] USBSTOR.SYS=C:\Windows\SYSTEM32\DRIVERS\USBSTOR.SY S
    ### USB Mass Storage Class Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] fastfat.SYS=C:\Windows\SYSTEM32\DRIVERS\FASTFAT.SY S
    ### Fast FAT File System Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] udfs.sys=C:\Windows\SYSTEM32\DRIVERS\UDFS.SYS
    ### UDF File System Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] crashdmp.sys=C:\Windows\SYSTEM32\DRIVERS\CRASHDMP. SYS
    ### Crash Dump Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] dumpata.sys=C:\Windows\SYSTEM32\DRIVERS\DUMP_DUMPA TA.SYS
    [Drivers] atapi.sys=C:\Windows\SYSTEM32\DRIVERS\DUMP_ATAPI.S YS
    [Drivers] win32k.sys=C:\Windows\SYSTEM32\WIN32K.SYS
    ### Multi-User Win32 Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6000.16386
    [Drivers] Dxapi.sys=C:\Windows\SYSTEM32\DRIVERS\DXAPI.SYS
    ### DirectX API Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] monitor.sys=C:\Windows\SYSTEM32\DRIVERS\MONITOR.SY S
    ### Monitor Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] TSDDD.dll=C:\Windows\SYSTEM32\TSDDD.DLL
    ### Framebuffer Display Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] cdd.dll=C:\Windows\SYSTEM32\CDD.DLL
    ### Canonical Display Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] luafv.sys=C:\Windows\SYSTEM32\DRIVERS\LUAFV.SYS
    ### LUA File Virtualization Filter Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] spsys.sys=C:\Windows\SYSTEM32\DRIVERS\SPSYS.SYS
    ### security processor Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.16606
    [Drivers] lltdio.sys=C:\Windows\SYSTEM32\DRIVERS\LLTDIO.SYS
    ### Link-Layer Topology Mapper I/O Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] rspndr.sys=C:\Windows\SYSTEM32\DRIVERS\RSPNDR.SYS
    ### Link-Layer Topology Responder Driver for NDIS 6 Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] HTTP.sys=C:\Windows\SYSTEM32\DRIVERS\HTTP.SYS
    ### HTTP Protocol Stack Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] srvnet.sys=C:\Windows\SYSTEM32\DRIVERS\SRVNET.SYS
    ### Server Network driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] bowser.sys=C:\Windows\SYSTEM32\DRIVERS\BOWSER.SYS
    ### NT Lan Manager Datagram Receiver Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mpsdrv.sys=C:\Windows\SYSTEM32\DRIVERS\MPSDRV.SYS
    ### Microsoft Protection Service Driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mrxdav.sys=C:\Windows\SYSTEM32\DRIVERS\MRXDAV.SYS
    ### Windows NT WebDav Minirdr Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mrxsmb.sys=C:\Windows\SYSTEM32\DRIVERS\MRXSMB.SYS
    ### Windows NT SMB Minirdr Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] mrxsmb10.sys=C:\Windows\SYSTEM32\DRIVERS\MRXSMB10. SYS
    ### Longhorn SMB Downlevel SubRdr Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18130
    [Drivers] mrxsmb20.sys=C:\Windows\SYSTEM32\DRIVERS\MRXSMB20. SYS
    ### Longhorn SMB 2.0 Redirector Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18000
    [Drivers] srv2.sys=C:\Windows\SYSTEM32\DRIVERS\SRV2.SYS
    ### Smb 2.0 Server driver Microsoft Corporation Microsoft® Windows® Operating System 6.0.6001.18331
    [Drivers] srv.sys=C:\Windows\SYSTEM32\DRIVERS\SRV.SYS
    ### Server driver Microsoft Corporation Microsoft® Windows® Operating System

Page 1 of 3 123 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •