Forum d'Entraide Informatique (FEI)

Bonjour,
J'ai voulu supprimer speedbitsearch de google chrome en procedant par fixlist.txt puis FRST et je ne peux plus me connecter a internet avec aucun navigateurs. J'ai fait plusieurs analyse avec Avast, Adwcleaner, Malwarebytes' Anti-Malware et rien n'y fait. Je n'ai pas pensé a créer un point de restauration avant de passer FRST. Par contre je reçois mes e-mails et je peux me connecter en passant par Aide et Support Windows,réparer Internet Explorer, désactiver tous les modules complémentaires puis cliquez pour ouvrir Internet Explorer. Je ne sais plus quoi faire. Si quelqu'un peut m'apporter une aide?

Bonsoir,



Je déplace le sujet dans la catégorie désinfection.

Pourrais-tu me donner le script qui a fait planter la connexion ?

Merci,

Gabriel.

Bonsoir, merci   .
Comment fait on? Le script?

C'est le rapport de FRST?

Re,

Ben justement un script ça se fait pas seul, tu l'as sorti d'où ce script ?

Gabriel.

D'ici. Voici le lien:
http://www.forum-entraide-informatique. ... bit-search

Re,

C'est-à-dire ce script précisément ? http://cjoint.com/13nv/CKdarhNUPU9_fixlist.txt

Gabriel.

Re,
Oui, c'est bien ça

J'ai fait une betise? Y a une solution?

Salut,

As-tu un point de restauration avant d'avoir passé FRST ?

Gabriel.

Salut.
Non, j'ai pas pensé a en créer un.

Re,

Et tu as tout de même vérifié qu'il n'y en a pas ?
Car normalement le système en créer automatiquement régulièrement.

Gabriel.

Oui, y avait écrit aucun point de retauration, quelque chose dans le genre. Depuis j'en crée a chaque manip

Re,

Tu as accès à internet en mode sans échec avec prise en charge réseau ? http://www.forum-entraide-informatique. ... rge-reseau

Gabriel.

Non. Je peux me connecter en passant par Aide et Support Windows,réparer Internet Explorer, désactiver tous les modules complémentaires puis cliquez pour ouvrir Internet Explorer. Avec mon compte utilisateur et en mode sans echec. Mais meme en mode sans echec je ne peux pas me connecter normalement

Re,

As-tu essayé avec un autre navigateur ?

Gabriel.

Oui, firefox et google chrome. Réinstallés mais meme probleme

Re,

Passe RogueKiller en option Proxy RAZ (option 4/ du tutoriel) et poste le rapport : http://www.forum-entraide-informatique. ... y-tutoriel

Gabriel.

Salut. C'est fait

RogueKiller V8.8.7 [Feb 11 2014] par Tigzy
mail : tigzyRKgmailcom
Remontees : http://forum.adlice.com
Site Web : http://www.sur-la-toile.com/RogueKiller/
Blog : http://www.adlice.com

Systeme d'exploitation : Windows Vista (6.0.6002 Service Pack 2) 64 bits version
Demarrage : Mode normal
Utilisateur : Steeve [Droits d'admin]
Mode : Proxy RAZ -- Date : 02/13/2014 18:55:58
| ARK || FAK || MBR |

¤¤¤ Processus malicieux : 0 ¤¤¤

¤¤¤ Entrees de registre : 0 ¤¤¤

¤¤¤ Navigateurs web : 0 ¤¤¤

¤¤¤ Driver : [NON CHARGE 0x0] ¤¤¤

¤¤¤ Ruches Externes: ¤¤¤

¤¤¤ Infection : ¤¤¤

Termine :
RKreport[0]_S_02132014_185538.txt

Salut,

Tu peux toujours pas te connecter à internet ?

Gabriel.

Non, toujours pas

Re,

Passe Pre_Scan et poste le rapport : http://www.forum-entraide-informatique. ... n-tutoriel

Gabriel.

Salut

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan | g3n-h@ckm@n | 4.02.12.3 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ - Start 21:28:37

Mis à jour le 12/02/2014 | 21.50 par g3n-h@ckm@n
Contact : http://www.sosvirus.net/
Pre_Script Infos : http://gen-hackman.purforum.com/t49-5-l ... -du-script
Pre_scan Feedbacks : http://gen-hackman.purforum.com/f10-pre_scan-feedbacks

[Steeve (Administrator)] - [PC-DE-STEEVE]
SID = S-1-5-21-1720773443-3340476489-2937632913-1000

D‚marrage : Normal
Système : Windows (TM) Vista Ultimate (64 bits) Service Pack 2
ProcessorNameString : Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Identifier : Intel64 Family 6 Model 15 Stepping 6


Mémoire RAM = Total (MB) : 2816 | Libre (MB) : 937
Pagefile = Total (MB) : 3791 | Libre (MB) : 2161
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4072

¤¤¤¤¤¤¤¤¤¤ | Composants de démarrage


¤¤¤¤¤¤¤¤¤¤¤ | Péripheriques

C:\- [Fixed] | [] | Total : 152630 Mo | Libre : 7890 Mo - NTFS
D:\- [Fixed] | [] | Total : 300000 Mo | Libre : 9710 Mo - NTFS
E:\- [Fixed] | [] | Total : 176930 Mo | Libre : 2420 Mo - NTFS
J:\- [Fixed] | [SAMSUNG] | Total : 953630 Mo | Libre : 1830 Mo - FAT32
K:\- [Fixed] | [SWISNIFE1] | Total : 238410 Mo | Libre : 2820 Mo - FAT32
L:\- [Fixed] | [INTENSO] | Total : 476820 Mo | Libre : 98550 Mo - FAT32

¤¤¤¤¤¤¤¤¤¤ | Mises à jour Windows

Aucune mise à jour détectée !!!


¤¤¤¤¤¤¤¤¤¤ | Sessions

C:\Windows\system32\config\systemprofile
C:\Windows\ServiceProfiles\LocalService
C:\Windows\ServiceProfiles\NetworkService
C:\Users\Steeve
C:\Users\Mcx1
C:\Users\UpdatusUser
C:\Users\UpdatusUser.PC-de-Steeve
C:\Users\UpdatusUser.PC-de-Steeve
C:\Users\Administrateur

Registre sauvegardé , pour restaurer : C:\Pre_Scan\Save\Scan\ERDNT.exe

Mise en veille supprimée !


¤¤¤¤¤¤¤¤¤¤ | Navigateurs

IE : 9.0.8112.16526 (© Microsoft Corporation.)
FF : 27.0.0.5140 (©Firefox and Mozilla Developers; available under the MPL 2 license.)

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

FlashPlayer ActiveX : 12.0.0.44
FlashPlayer Plugin : 12.0.0.44

¤¤¤¤¤¤¤¤¤¤ | Security

AV : avast! Antivirus Enabled
AS : avast! Antivirus Enabled
FW : WINDOWS Firewall

¤¤¤¤¤¤¤¤¤¤ | Processus stoppés

432 | C:\Windows\system32\nvvsvc.exe (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.82.) - (8.17.13.3182) - "C:\Windows\system32\nvvsvc.exe"
964 | C:\Windows\System32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
1220 | C:\Windows\system32\SLsvc.exe (.Microsoft Corporation - Service de gestion des licences Microsoft.) - (6.0.6002.18005) - C:\Windows\system32\SLsvc.exe
1332 | C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.3182) - "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
1340 | C:\Windows\system32\nvvsvc.exe (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.82.) - (8.17.13.3182) - C:\Windows\system32\nvvsvc.exe -session -first
1856 | C:\Windows\System32\spoolsv.exe (.Microsoft Corporation - Application sous-système spouleur.) - (6.0.6002.18294) - C:\Windows\System32\spoolsv.exe
1748 | C:\Program Files\Bonjour\mDNSResponder.exe (.Apple Inc. - Bonjour Service.) - (3.0.0.10) - "C:\Program Files\Bonjour\mDNSResponder.exe"
2152 | C:\PROGRA~2\AVANQU~1\Fix-It\mxtask.exe (.Avanquest Software - MXTask Background Service.) - (10.3.3.4) - C:\PROGRA~2\AVANQU~1\Fix-It\mxtask.exe -Service
2216 | C:\Program Files\ma-config.com\MaConfigAgent.exe (.CybelSoft - Service de détection matériel.) - (7.0.0.6) - "C:\Program Files\ma-config.com\MaConfigAgent.exe"
2244 | C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe (.Nero AG - Nero BackItUp.) - (3.1.0.0) - "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe"
2488 | C:\Program Files\OO Software\Defrag\oodag.exe (.OO Software GmbH - OO Defrag Agent (x64).) - (14.0.145.0) - "C:\Program Files\OO Software\Defrag\oodag.exe"
2528 | C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe (.PACE Anti-Piracy, Inc. - PACE License Support Service.) - (1.2.0.15555) - "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
2580 | C:\Program Files (x86)\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe (.Realtek - RtlService MFC Application.) - (700.1004.1207.2009) - "C:\Program Files (x86)\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe"
2692 | C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe (.TuneUp Software - TuneUp Utilities Service.) - (9.0.4200.55) - "C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe"
2760 | C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4232.0) - "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
2804 | C:\Windows\system32\SearchIndexer.exe (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.6002.18005) - C:\Windows\system32\SearchIndexer.exe /Embedding
2868 | C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) - (7.250.4232.0) - WLIDSvcM.exe 2760
1408 | C:\Windows\system32\taskeng.exe (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.0.6002.18342) - taskeng.exe {8C8109D4-F688-4C1E-AD25-6406D188A787}
3464 | C:\PROGRA~2\AVANQU~1\Fix-It\mxtask2.exe (.Avanquest Software - MXTask Background User Process.) - (10.3.3.4) - C:\PROGRA~2\AVANQU~1\Fix-It\mxtask2.exe -MXUSER
3556 | C:\Windows\system32\taskeng.exe (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.0.6002.18342) - taskeng.exe {D38F5580-9344-483A-8FE0-3A2972D7D5EF}
3716 | C:\Windows\Explorer.EXE (.Microsoft Corporation - Explorateur Windows.) - (6.0.6002.18005) - C:\Windows\Explorer.EXE
4080 | C:\Program Files (x86)\Common Files\AntiVirus\SBAMSvc.exe (.Sunbelt Software - Sunbelt Software Anti Malware Service.) - (3.1.2838.0) - "C:\Program Files (x86)\Common Files\AntiVirus\SBAMSvc.exe"
752 | C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (.NVIDIA Corporation - NVIDIA NvTmru Application.) - (9.3.21.0) - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
2396 | C:\Windows\ehome\ehtray.exe (.Microsoft Corporation - Media Center Tray Applet.) - (6.0.6001.18000) - "C:\Windows\ehome\ehtray.exe"
3516 | C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.3182) - "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
2880 | C:\Users\Steeve\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (.Spotify Ltd - SpotifyWebHelper.) - (0.9.7.16) - "C:\Users\Steeve\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
3740 | C:\Program Files\Logitech\SetPoint\SetPoint.exe (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) - (4.60.122.0) - "C:\Program Files\Logitech\SetPoint\SetPoint.exe"
1600 | C:\Program Files (x86)\Winamp\winampa.exe (.Nullsoft, Inc. - Winamp Agent.) - (5.6.3.3235) - "C:\Program Files (x86)\Winamp\winampa.exe"
728 | C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (.Analog Devices, Inc. - SMax4PNP.) - (6.1.6000.81) - "C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
3108 | C:\Windows\system32\wbem\unsecapp.exe (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.0.6001.18000) - C:\Windows\system32\wbem\unsecapp.exe -Embedding
4552 | C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe (. - .) - (0.0.0.0) - "C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe"
4776 | C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE (.Logitech, Inc. - Logitech KHAL Main Process.) - (4.60.42.0) - KHALMNPR.EXE /API
4964 | C:\Program Files (x86)\Internet Explorer\IELowutil.exe (.Microsoft Corporation - Internet Low-Mic Utility Tool.) - (9.0.8112.16421) - "C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -embedding
5044 | C:\Program Files\iPod\bin\iPodService.exe (.Apple Inc. - iPodService Module (64-bit).) - (11.1.4.62) - "C:\Program Files\iPod\bin\iPodService.exe"
4448 | C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe (.Last.fm - Last.fm.) - (2.1.36.0) - "C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe" --tray
2948 | C:\Program Files\Internet Explorer\iexplore.exe (.Microsoft Corporation - Internet Explorer.) - (9.0.8112.16526) - "C:\Program Files\Internet Explorer\iexplore.exe"
4848 | C:\Windows\system32\Macromed\Flash\FlashUtil64_12_0_0_44_ActiveX.exe (.Adobe Systems Incorporated - Adobe® Flash® Player Installer/Uninstaller 12.0 r0.) - (12.0.0.44) - C:\Windows\system32\Macromed\Flash\FlashUtil64_12_0_0_44_ActiveX.exe -Embedding
2060 | C:\Program Files\Internet Explorer\iexplore.exe (.Microsoft Corporation - Internet Explorer.) - (9.0.8112.16526) - "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2948 CREDAT:203010
4704 | C:\Program Files\Internet Explorer\iexplore.exe (.Microsoft Corporation - Internet Explorer.) - (9.0.8112.16526) - "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2948 CREDAT:137478
6500 | C:\Program Files\Internet Explorer\iexplore.exe (.Microsoft Corporation - Internet Explorer.) - (9.0.8112.16526) - "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2948 CREDAT:203045
4668 | C:\Windows\SysWOW64\conime.exe (.Microsoft Corporation - Console IME.) - (6.0.6002.18005) - C:\Windows\system32\conime.exe


¤¤¤¤¤¤¤¤¤¤ | Processus en cours


[21/01/2008 03:47:10] - 680 | C:\Windows\system32\wininit.exe (.Microsoft Corporation - Application de démarrage de Windows.) - (6.0.6001.18000) - wininit.exe [96768 Ko]
[10/08/2010 05:31:32] - 716 | C:\Windows\system32\winlogon.exe (.Microsoft Corporation - Application d'ouverture de session Windows.) - (6.0.6002.18005) - winlogon.exe [314368 Ko]
[10/08/2010 05:32:09] - 760 | C:\Windows\system32\services.exe (.Microsoft Corporation - Applications Services et Contrôleur.) - (6.0.6002.18005) - C:\Windows\system32\services.exe [279552 Ko]
[21/01/2008 03:47:18] - 780 | C:\Windows\system32\lsm.exe (.Microsoft Corporation - Service du gestionnaire de session locale.) - (6.0.6001.18000) - C:\Windows\system32\lsm.exe [229888 Ko]
[21/01/2008 03:47:13] - 932 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k DcomLaunch [21504 Ko]
[21/01/2008 03:47:13] - 560 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k rpcss [21504 Ko]
[21/01/2008 03:47:13] - 1068 | C:\Windows\System32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [21504 Ko]
[21/01/2008 03:47:13] - 1080 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k netsvcs [21504 Ko]
[21/01/2008 03:47:13] - 1204 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k GPSvcGroup [21504 Ko]
[21/01/2008 03:47:13] - 1360 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k LocalService [21504 Ko]
[21/01/2008 03:47:13] - 1516 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k NetworkService [21504 Ko]
[24/08/2013 21:37:26] - 1720 | C:\Program Files\AVAST Software\Avast\AvastSvc.exe (.AVAST Software - avast! Service.) - (9.0.2011.263) - "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [50344 Ko]
[21/01/2008 03:47:13] - 1884 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork [21504 Ko]
[21/01/2008 03:47:13] - 2612 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k imgsvc [21504 Ko]
[24/08/2013 21:37:26] - 2700 | C:\Program Files\AVAST Software\Avast\AvastUI.exe (.AVAST Software - avast! Antivirus.) - (9.0.2011.263) - "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui [3764024 Ko]
[21/01/2008 03:47:13] - 872 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [21504 Ko]
[02/11/2006 13:14:33] - 4764 | C:\Windows\SysWOW64\DllHost.exe (.Microsoft Corporation - COM Surrogate.) - (6.0.6000.16386) - C:\Windows\SysWOW64\DllHost.exe /Processid:{5011B6DE-E9FA-4518-B5E5-45DE9DD2CDC6} [7168 Ko]
[13/02/2014 21:02:12] - 6988 | C:\Users\Steeve\Desktop\Pre_Scan.exe (. - Pre_Scan.) - (4.2.12.3) - "C:\Users\Steeve\Desktop\Pre_Scan.exe" [2919936 Ko]
[10/08/2010 05:32:37] - 6216 | C:\Windows\system32\wbem\wmiprvse.exe (.Microsoft Corporation - WMI Provider Host.) - (6.0.6002.18005) - C:\Windows\system32\wbem\wmiprvse.exe [247296 Ko]
[21/01/2008 03:47:13] - 5196 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted [21504 Ko]
[15/05/2013 18:01:22] - 6636 | C:\Program Files\ma-config.com\MaConfigAgent.exe (.CybelSoft - Service de détection matériel.) - (7.0.0.6) - "C:\Program Files\ma-config.com\MaConfigAgent.exe" [1144144 Ko]
[28/03/2011 20:11:06] - 6760 | C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4232.0) - "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE" [2292096 Ko]
[10/08/2010 05:34:10] - 3824 | C:\Windows\system32\SearchIndexer.exe (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.6002.18005) - C:\Windows\system32\SearchIndexer.exe /Embedding [441344 Ko]
[28/03/2011 20:11:06] - 5192 | C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) - (7.250.4232.0) - WLIDSvcM.exe 6760 [223104 Ko]
[15/12/2010 04:43:36] - 6596 | C:\Windows\system32\taskeng.exe (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.0.6002.18342) - taskeng.exe {16AD9560-74CE-412F-AAE5-D5C2CE8A4D15} [171520 Ko]
[15/12/2010 04:43:36] - 6256 | C:\Windows\system32\taskeng.exe (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.0.6002.18342) - taskeng.exe {FAF50493-7723-4DF4-A408-C9891DAD1C6A} [171520 Ko]
[10/08/2010 05:33:21] - 3888 | C:\Windows\system32\SearchProtocolHost.exe (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.6002.18005) - "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" [185344 Ko]
[10/08/2010 05:33:21] - 6304 | C:\Windows\system32\SearchFilterHost.exe (.Microsoft Corporation - Microsoft Windows Search Filter Host.) - (7.0.6002.18005) - "C:\Windows\system32\SearchFilterHost.exe" 0 644 648 656 65536 652 [87552 Ko]

¤¤¤¤¤¤¤¤¤¤ | Winlogon utilisateur : OK !


¤¤¤¤¤¤¤¤¤¤ | Winlogon machine

Modifié : [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]|[AutoRestartShell] : 1 - 0
Modifié : [HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]|[AutoRestartShell] : 1 - 0
Réparé : [HKLM | Winlogon]|[userinit] : userinit.exe, - C:\Windows\SysWOW64\userinit.exe,

¤¤¤¤¤¤¤¤¤¤ | Associations

Impossible de réparer ! [HKCR\InternetShortcut\shell\open\command] : "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\ieframe.dll",OpenURL %l
Réparé : [HKCR\Folder\shell\open\command] : %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L - C:\Windows\Explorer.exe


¤

Réparé : [HKLM\Software\Clients\StartMenuInternet\Firefox.exe\shell\open\command] : C:\Program Files (x86)\Mozilla Firefox\firefox.exe - "C:\Program Files (x86)\Mozilla Firefox\Firefox.exe"
Réparé : [HKLM\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : C:\Program Files (x86)\Internet Explorer\iexplore.exe - "C:\Program Files (x86)\Internet Explorer\iexplore.exe"
Réparé : [HKLM64\Software\Clients\StartMenuInternet\IExplore.exe\shell\open\command] : C:\Program Files (x86)\Internet Explorer\iexplore.exe - "C:\Program Files (x86)\Internet Explorer\iexplore.exe"
Réparé : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] : http://www.fileextensionpro.com/redir.aspx?Ext=%saff=SO - http://shell.windows.com/fileassoc/%04x ... asp?Ext=%s
Réparé : [HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] : http://go.microsoft.com/fwlink/?LinkId=57426Ext=%s - http://shell.windows.com/fileassoc/%04x ... asp?Ext=%s

¤¤¤¤¤¤¤¤¤¤ | Registre

Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{9343812e-1c37-4a49-a12e-4b2d810d956b}] : 1 - 0
Réparé : [HKLM64\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{9343812e-1c37-4a49-a12e-4b2d810d956b}] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}] : 1 - 0
Réparé : [HKLM64\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{20D04FE0-3AEA-1069-A2D8-08002B30309D}] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{208D2C60-3AEA-1069-A2D7-08002B30309D}] : 1 - 0
Réparé : [HKLM64\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{208D2C60-3AEA-1069-A2D7-08002B30309D}] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{871C5380-42A0-1069-A2EA-08002B30309D}] : 1 - 0
Réparé : [HKLM64\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{871C5380-42A0-1069-A2EA-08002B30309D}] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}] : 1 - 0
Réparé : [HKLM64\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]|[{59031a47-3f72-44a7-89c5-5595fe6b30ee}] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\policies\Explorer]|[NoDriveTypeAutoRun] : 28 - 145
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Policies\Explorer]|[NoActiveDesktop] : 1 - 0
Réparé : [HKLM\software\Microsoft\Windows\CurrentVersion\Policies\Explorer]|[NoActiveDesktopChanges] : 1 - 0
Réparé : [HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]| : 2 - 0

¤¤¤¤¤¤¤¤¤¤ | Accès au registre et au gestionnaire des taches



¤¤¤¤¤¤¤¤¤¤ | SafeBoot

Safeboot Keys are O.K

Alternate shell is OK !

¤

Repaired : [HKLM | Minimal\ProfSvc] : - Service
Repaired : [HKLM | Minimal\SRService] : - Service
Repaired : [HKLM | Minimal\WinDefend] : - Service
Repaired : [HKLM | Minimal\sr.sys] : - FSFilter System Recovery

¤

Repaired : [HKLM | Network\MPSSvc] : - Service
Repaired : [HKLM | Network\ProfSvc] : - Service
Repaired : [HKLM | Network\WinDefend] : - Service
Repaired : [HKLM | Network\MPSDrv] : - Driver
Repaired : [HKLM | Network\rdpcdd.sys] : - Driver

¤¤¤¤¤¤¤¤¤¤ | IFEO

Supprimé : [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File execution Options\rjatydimofu.exe] : tasklist.exe

¤¤¤¤¤¤¤¤¤¤ | Mountpoints2

Supprimé : HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Mountpoints2\{89c2f5a6-2401-11e0-baae-0018f3c52db4} | AutoRun\command : J:\LaunchU3.exe -a


Contenu de J:\Autorun.inf :

[autorun]
ICON = APPInst.exe, 1
OPEN = APPInst.exe
ACTION = "Install Samsung Tools"

¤¤¤¤¤¤¤¤¤¤ | Windows

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]|[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]|[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini]|[winlogon] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon

Winsrv : OK !


[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[AppInit_DLLS] :

[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[AppInit_DLLS] :
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1
[HKLM64\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]|[LoadAppInit_DLLs] : 1

¤¤¤¤¤¤¤¤¤¤ | Centre de sécurité







Réparé : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]|[EnableFirewall] : 1 - 0

Réparé : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]|[EnableFirewall] : 1 - 0

Réparé : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]|[EnableFirewall] : 1 - 0

¤¤¤¤¤¤¤¤¤¤ | Correction des services

Impossible to restore service : EMDMGNT

Réparé : [Compbatt] : 4 - 0
Réparé : [IKEEXT] : 3 - 2
Réparé : [Browser] : 2 - 3
Réparé : [EapHost] : 3 - 2
Réparé : [SharedAccess] : 3 - 2
Réparé : [winmgmt] : 3 - 2
Réparé : [WerSvc] : 3 - 2
Réparé : [Ndisuio] : 4 - 3

¤¤¤¤¤¤¤¤¤¤ | Internet Explorer

Réparé : [HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\Microsoft\Internet Explorer\Main]|[Search Bar] : Preserve - http://www.google.com/
Réparé : [HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\Microsoft\Internet Explorer\Main]|[Start Page] : https://www.google.fr/ - http://www.google.com/
Réparé : [HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\system32\blank.htm - C:\Windows\SysWOW64\blank.htm
Réparé : [HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\Microsoft\Internet Explorer\Main]|[Search Page] : http://go.microsoft.com/fwlink/?LinkId=54896 - http://www.microsoft.com/isapi/redir.dl ... r=iesearch
Réparé : [HKLM\Software\Microsoft\Internet Explorer\Search]|[SearchAssistant] : http://www.google.com - http://www.google.com/ie
Réparé : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://www.google.com - http://go.microsoft.com/fwlink/?LinkId=69157
Réparé : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Start Page] : http://www.google.com - http://go.microsoft.com/fwlink/?LinkId=69157
Réparé : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Local Page] : C:\Windows\System32\blank.htm - C:\Windows\SysWOW64\blank.htm
Réparé : [HKLM\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://www.google.com - http://go.microsoft.com/fwlink/?LinkId=69157
Réparé : [HKLM64\Software\Microsoft\Internet Explorer\Main]|[Default_Page_URL] : http://www.google.com - http://go.microsoft.com/fwlink/?LinkId=69157
Réparé : [HKLM\Software\Microsoft\Internet Explorer\AboutURLs]|[Tabs] : http://www.google.com - res://ieframe.dll/tabswelcome.htm

¤

Réparé : [HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\Microsoft\Windows\CurrentVersion\Internet settings]|[WarnonZoneCrossing] : 0 - 1

¤¤¤¤¤¤¤¤¤¤ | Hosts

C:\Windows\System32\Drivers\etc\hosts : Nettoyé

¤¤¤¤¤¤¤¤¤¤ | reparsepoint



¤¤¤¤¤¤¤¤¤¤ | Détection des offsets


¤¤¤¤¤¤¤¤¤¤ | Fichiers | Dossiers | Registre


Supprimé : C:\$Recycle.bin\S-1-5-21-1720773443-3340476489-2937632913-500
Supprimé : C:\$Recycle.bin\S-1-5-21-1720773443-3340476489-2937632913-1000
Supprimé : HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\AVS4YOU
Supprimé : HKLM\Software\AVS4YOU
Supprimé : HKLM64\Software\AVS4YOU

Déplacé en quarantaine avec succès : C:\Program Files (x86)\AVS4YOU
Déplacé en quarantaine avec succès : C:\Program Files (x86)\ParetoLogic
Déplacé en quarantaine avec succès : C:\Program Files (x86)\Uniblue
Déplacé en quarantaine avec succès : C:\Program Files (x86)\Common Files\AVSMedia
Déplacé en quarantaine avec succès : C:\Program Files (x86)\Common Files\ParetoLogic

Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Roaming\inst.exe
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Local\d3d9caps.dat
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Local\d3d9caps64.dat
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Roaming\AVS4YOU
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Roaming\DriverCure
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Roaming\ParetoLogic
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Roaming\Uniblue
Déplacé en quarantaine avec succès : C:\ProgramData\AVS4YOU
Déplacé en quarantaine avec succès : C:\ProgramData\ParetoLogic
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU
Déplacé en quarantaine avec succès : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVS4YOU
Déplacé en quarantaine avec succès : C:\Windows\system32\%APPDATA%
Déplacé en quarantaine avec succès : C:\install.exe
Déplacé en quarantaine avec succès : C:\sqmnoopt19.sqm
Déplacé en quarantaine avec succès : C:\sqmdata19.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt00.sqm
Déplacé en quarantaine avec succès : C:\sqmdata00.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt01.sqm
Déplacé en quarantaine avec succès : C:\sqmdata01.sqm
Déplacé en quarantaine avec succès : C:\sqmdata02.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt02.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt03.sqm
Déplacé en quarantaine avec succès : C:\sqmdata03.sqm
Déplacé en quarantaine avec succès : C:\sqmdata04.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt04.sqm
Déplacé en quarantaine avec succès : C:\sqmdata05.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt05.sqm
Déplacé en quarantaine avec succès : C:\sqmdata06.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt06.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt07.sqm
Déplacé en quarantaine avec succès : C:\sqmdata07.sqm
Déplacé en quarantaine avec succès : C:\sqmdata08.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt08.sqm
Déplacé en quarantaine avec succès : C:\sqmdata09.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt09.sqm
Déplacé en quarantaine avec succès : C:\sqmdata10.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt10.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt11.sqm
Déplacé en quarantaine avec succès : C:\sqmdata11.sqm
Déplacé en quarantaine avec succès : C:\sqmdata12.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt12.sqm
Déplacé en quarantaine avec succès : C:\sqmdata13.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt13.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt14.sqm
Déplacé en quarantaine avec succès : C:\sqmdata14.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt15.sqm
Déplacé en quarantaine avec succès : C:\sqmdata15.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt16.sqm
Déplacé en quarantaine avec succès : C:\sqmdata16.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt17.sqm
Déplacé en quarantaine avec succès : C:\sqmdata17.sqm
Déplacé en quarantaine avec succès : C:\sqmnoopt18.sqm
Déplacé en quarantaine avec succès : C:\sqmdata18.sqm
Déplacé en quarantaine avec succès : C:\install.res.1028.dll
Déplacé en quarantaine avec succès : C:\install.res.1031.dll
Déplacé en quarantaine avec succès : C:\install.res.1033.dll
Déplacé en quarantaine avec succès : C:\install.res.1036.dll
Déplacé en quarantaine avec succès : C:\install.res.1040.dll
Déplacé en quarantaine avec succès : C:\install.res.1041.dll
Déplacé en quarantaine avec succès : C:\install.res.1042.dll
Déplacé en quarantaine avec succès : C:\install.res.2052.dll
Déplacé en quarantaine avec succès : C:\install.res.3082.dll
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\Roaming\CloneSpy
Déplacé en quarantaine avec succès : C:\Windows\assembly\tmp\
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\LocalLow\Sun\Java\Deployment\cache\6.0
Déplacé en quarantaine avec succès : C:\Users\Steeve\AppData\LocalLow\Sun\Java\Deployment\cache\security

Prefetch - Nettoyé



D:\ : Vaccinated (Vaccin created by Pre_Scan)
E:\ : Vaccinated (Vaccin created by Pre_Scan)
J:\AutoRun.inf : Deleted
J:\ : Vaccinated (Vaccin created by Pre_Scan)
K:\ : Vaccinated (Vaccin created by Pre_Scan)

¤¤¤¤¤¤¤¤¤¤ | Hidden files

~ [Drive D:] : Hidden : 82 | Restored : 81
~ [Drive E:] : Hidden : 3586 | Restored : 3586
~ [Drive J:] : Hidden : 1713 | Restored : 1713
~ [Drive K:] : Hidden : 19 | Restored : 19
~ [Drive C:] : Hidden : 3 | Restored : 3
~ [Program Files] : Hidden : 2 | Restored : 2
~ [Users] : Hidden : 2 | Restored : 2
~ [Searches] : Hidden : 2 | Restored : 2
~ [Contacts] : Hidden : 5 | Restored : 5
~ [Windows] : Hidden : 77 | Restored : 77
~ [Start Menu | Programs | Startup] : Hidden : 1 | Restored : 1
~ [Libraries] : Hidden : 268 | Restored : 268


¤¤¤¤¤¤¤¤¤¤ | Contrôle des partitions

Disk: 0 Size=153G
Pos MBRndx Type/Name Size Active Hide Start Sector Sectors
--- ------ ---------- ---- ------ ---- ------------ ------------
0 0 07-NTFS 153G Yes No 63 312,576,642

¤¤¤¤¤¤¤¤¤¤

[HKLM | Winlogon] | AutoRestartShell : 0 - 1
[HKLM64 | Winlogon] | AutoRestartShell : 0 - 1

End : 22:24:04


Mise en veille restaurée
¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤ - 428

Salut,

Tu peux toujours pas te connecter ?

Gabriel.

Salut
Non, toujours pas. Tu as repéré des problemes dans le rapport?

Salut,

Rien de majeur.

Relance Pre_Scan, clique sur Diag et poste le rapport hébergé.

Gabriel.

Salut.
Je trouve pas le rapport, je l'ai passé une deuxième fois, pareil.

Diag passé une troisieme fois, rapport ni sur C:\, ni sur le bureau.

Tu sais ou je peux le trouver? Merci

Re,

Et dans le dossier C:\Pre_scan\ ?

Gabriel.

Salut
Non plus. Excuses moi pour l'attente, le pc galere de plus en plus

Bonjour,

Essaye en mode sans échec alors.

Gabriel.

Salut

Pas de rapport non plus en M.S.E.

Re
C'est bon. J'ai retélécharger Pre_Scan sur le bureaux et désactivé toutes les applications de le barre des taches



¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ - Start 15:25:11

Mis à jour le 12/02/2014 | 21.50 par g3n-h@ckm@n
Contact : http://www.sosvirus.net/
Pre_Script Infos : http://gen-hackman.purforum.com/t49-5-l ... -du-script
Pre_scan Feedbacks : http://gen-hackman.purforum.com/f10-pre_scan-feedbacks

~ [Steeve (Administrator)] - [PC-DE-STEEVE]
~ SID = S-1-5-21-1720773443-3340476489-2937632913-1000

Système : Windows (TM) Vista Ultimate (64 bits) Service Pack 2
~ SystemBiosVersion : AWARD - 42302e31
Phoenix - AwardBIOS v6.00PG | SystemBiosDate : 06/11/07
~ ProcessorNameString : Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
~ Identifier : Intel64 Family 6 Model 15 Stepping 6


Mémoire RAM = Total (MB) : 2816 | Libre (MB) : 805
Pagefile = Total (MB) : 3266 | Libre (MB) : 1323
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4070

¤¤¤¤¤¤¤¤¤¤ | Péripheriques

c:\ - [Fixed] | [] | Total : 152630 Mo | Free : 29630 Mo - NTFS
d:\ - [Fixed] | [] | Total : 300000 Mo | Free : 9550 Mo - NTFS
e:\ - [Fixed] | [] | Total : 176930 Mo | Free : 2270 Mo - NTFS
i:\ - [Network] | [Disque dur] | Total : 233740 Mo | Free : 17200 Mo - NTFS
j:\ - [Fixed] | [SAMSUNG] | Total : 953630 Mo | Free : 1830 Mo - FAT32
k:\ - [Fixed] | [SWISNIFE1] | Total : 238410 Mo | Free : 2820 Mo - FAT32

¤¤¤¤¤¤¤¤¤¤ | Navigateurs

IE : 9.0.8112.16533 (© Microsoft Corporation. Tous droits réservés.)
FF : 27.0.0.5140 (©Firefox and Mozilla Developers; available under the MPL 2 license.)

¤¤¤¤¤¤¤¤¤¤ | FlashPlayer

FlashPlayer ActiveX : 12.0.0.44
FlashPlayer Plugin : 11.9.900.170

¤¤¤¤¤¤¤¤¤¤ | Suppression au redémarrage


¤¤¤¤¤¤¤¤¤¤ | Contrôle MD5

[MD5.6B08E54A451B3F95E4109DBA7E594270] - [10/08/2010 05:33:34] - (.© Microsoft Corporation. - Explorateur Windows.) - [3007 Ko] - (6.0.6002.18005) - C:\Windows\explorer.exe
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - [10/08/2010 05:32:55] - (.© Microsoft Corporation. - Explorateur Windows.) - [2858 Ko] - (6.0.6002.18005) - C:\Windows\SysWOW64\explorer.exe
[MD5.50514057C28A74BAC2BD04B7B990D615] - [14/12/2008 22:22:50] - (.© Microsoft Corporation. - Windows Explorer.) - [3015 Ko] - (6.0.6000.16771) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_aba256ac352b2919\explorer.exe
[MD5.72B9990E45C25AA3C75C4FB50A9D6CE0] - [14/12/2008 22:22:50] - (.© Microsoft Corporation. - Windows Explorer.) - [3014.5 Ko] - (6.0.6000.20947) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_ac5266dd4e2b0a41\explorer.exe
[MD5.F6D765FB6B457542D954682F50C26E4F] - [21/01/2008 03:47:50] - (.© Microsoft Corporation. - Windows Explorer.) - [3008.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_add342963219dff5\explorer.exe
[MD5.BBD8E74F23D7605CB0CDB57A1B25D826] - [14/12/2008 22:22:49] - (.© Microsoft Corporation. - Windows Explorer.) - [3008.5 Ko] - (6.0.6001.18164) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_ad96661c3246ea1e\explorer.exe
[MD5.E404A65EF890140410E9F3D405841C95] - [14/12/2008 22:22:49] - (.© Microsoft Corporation. - Windows Explorer.) - [3009 Ko] - (6.0.6001.22298) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_ae03944b4b794317\explorer.exe
[MD5.6B08E54A451B3F95E4109DBA7E594270] - [10/08/2010 05:33:34] - (.© Microsoft Corporation. - Windows Explorer.) - [3007 Ko] - (6.0.6002.18005) - C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_afbebba22f3bab41\explorer.exe
[MD5.37440D09DEAE0B672A04DCCF7ABF06BE] - [14/12/2008 22:22:50] - (.© Microsoft Corporation. - Windows Explorer.) - [2855 Ko] - (6.0.6000.16771) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_b5f700fe698beb14\explorer.exe
[MD5.E7156B0B74762D9DE0E66BDCDE06E5FB] - [14/12/2008 22:22:49] - (.© Microsoft Corporation. - Windows Explorer.) - [2855 Ko] - (6.0.6000.20947) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_b6a7112f828bcc3c\explorer.exe
[MD5.FFA764631CB70A30065C12EF8E174F9F] - [21/01/2008 03:48:30] - (.© Microsoft Corporation. - Windows Explorer.) - [2858.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_b827ece8667aa1f0\explorer.exe
[MD5.4F554999D7D5F05DAAEBBA7B5BA1089D] - [14/12/2008 22:22:49] - (.© Microsoft Corporation. - Windows Explorer.) - [2858.5 Ko] - (6.0.6001.18164) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_b7eb106e66a7ac19\explorer.exe
[MD5.50BA5850147410CDE89C523AD3BC606E] - [14/12/2008 22:22:49] - (.© Microsoft Corporation. - Windows Explorer.) - [2859 Ko] - (6.0.6001.22298) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_b8583e9d7fda0512\explorer.exe
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - [10/08/2010 05:32:55] - (.© Microsoft Corporation. - Windows Explorer.) - [2858 Ko] - (6.0.6002.18005) - C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_ba1365f4639c6d3c\explorer.exe
[MD5.934E0B7D77FF78C18D9F8891221B6DE3] - [10/08/2010 05:32:44] - (.© Microsoft Corporation. - Applications Services et Contrôleur.) - [375.5 Ko] - (6.0.6002.18005) - C:\Windows\System32\services.exe
[MD5.D4E6D91C1349B7BFB3599A6ADA56851B] - [10/08/2010 05:32:09] - (.© Microsoft Corporation. - Applications Services et Contrôleur.) - [273 Ko] - (6.0.6002.18005) - C:\Windows\SysWOW64\services.exe
[MD5.DFAC660F0F139276CC9299812DE42719] - [21/01/2008 03:48:47] - (.© Microsoft Corporation. - Services and Controller app.) - [375.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_2b7e5beb85a67240\services.exe
[MD5.934E0B7D77FF78C18D9F8891221B6DE3] - [10/08/2010 05:32:44] - (.© Microsoft Corporation. - Services and Controller app.) - [375.5 Ko] - (6.0.6002.18005) - C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_2d69d4f782c83d8c\services.exe
[MD5.2B336AB6286D6C81FA02CBAB914E3C6C] - [21/01/2008 03:49:37] - (.© Microsoft Corporation. - Services and Controller app.) - [272.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6001.18000_none_cf5fc067cd49010a\services.exe
[MD5.D4E6D91C1349B7BFB3599A6ADA56851B] - [10/08/2010 05:32:09] - (.© Microsoft Corporation. - Services and Controller app.) - [273 Ko] - (6.0.6002.18005) - C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56\services.exe
[MD5.A0AB2BB9A92293D9CE66E252719AB5FE] - [21/01/2008 03:48:49] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [27.5 Ko] - (6.0.6001.18000) - C:\Windows\System32\userinit.exe
[MD5.0E135526E9785D085BCD9AEDE6FBCBF9] - [21/01/2008 03:49:40] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [24.5 Ko] - (6.0.6001.18000) - C:\Windows\SysWOW64\userinit.exe
[MD5.A0AB2BB9A92293D9CE66E252719AB5FE] - [21/01/2008 03:48:49] - (.© Microsoft Corporation. - Userinit Logon Application.) - [27.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_384755998a0d6941\userinit.exe
[MD5.0E135526E9785D085BCD9AEDE6FBCBF9] - [21/01/2008 03:49:40] - (.© Microsoft Corporation. - Userinit Logon Application.) - [24.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - [21/01/2008 03:49:28] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [121 Ko] - (6.0.6001.18000) - C:\Windows\System32\wininit.exe
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - [21/01/2008 03:47:10] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [94.5 Ko] - (6.0.6001.18000) - C:\Windows\SysWOW64\wininit.exe
[MD5.117EA87DF785CA1B9D821F6F213DCE07] - [21/01/2008 03:49:28] - (.© Microsoft Corporation. - Windows Start-Up Application.) - [121 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_8d115452bcae17d8\wininit.exe
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - [21/01/2008 03:47:10] - (.© Microsoft Corporation. - Windows Start-Up Application.) - [94.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.0.6001.18000_none_30f2b8cf0450a6a2\wininit.exe
[MD5.6D0773A3A65D28B663F334C90441D01A] - [10/08/2010 05:32:12] - (.© Microsoft Corporation. - Application d'ouverture de session Windows.) - [396 Ko] - (6.0.6002.18005) - C:\Windows\System32\winlogon.exe
[MD5.898E7C06A350D4A1A64A9EA264D55452] - [10/08/2010 05:31:32] - (.© Microsoft Corporation. - Application d'ouverture de session Windows.) - [307 Ko] - (6.0.6002.18005) - C:\Windows\SysWOW64\winlogon.exe
[MD5.856491FCED98093D824B9EB2892F564A] - [21/01/2008 03:48:54] - (.© Microsoft Corporation. - Windows Logon Application.) - [396.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_cbe19c9a8d4eed2b\winlogon.exe
[MD5.6D0773A3A65D28B663F334C90441D01A] - [10/08/2010 05:32:12] - (.© Microsoft Corporation. - Windows Logon Application.) - [396 Ko] - (6.0.6002.18005) - C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_cdcd15a68a70b877\winlogon.exe
[MD5.C2610B6BDBEFC053BBDAB4F1B965CB24] - [21/01/2008 03:49:41] - (.© Microsoft Corporation. - Windows Logon Application.) - [307.5 Ko] - (6.0.6001.18000) - C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe
[MD5.898E7C06A350D4A1A64A9EA264D55452] - [10/08/2010 05:31:32] - (.© Microsoft Corporation. - Windows Logon Application.) - [307 Ko] - (6.0.6002.18005) - C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[MD5.D2707DE999CF5062A78F2436A73EEBFB] - [14/02/2014 08:58:24] - (.© Microsoft Corporation. - IE ActiveX Interface Marshaling Library.) - [190 Ko] - (9.0.8112.16533) - C:\Program Files (x86)\Internet Explorer\ieproxy.dll

¤¤¤¤¤¤¤¤¤¤ | Démarrages

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[AppleSyncNotifier] : C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [23/02/2012 10:38:24]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[SoundMAXPnP] : C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe [03/08/2008 12:11:30]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[AvastUI.exe] : "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
[HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Kernel and Hardware Abstraction Layer] : KHALMNPR.EXE
[HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Nvtmru] : "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
[HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Sidebar] : %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
[HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[WindowsWelcomeCenter] : rundll32.exe oobefldr.dll,ShowWelcomeCenter
[HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Sidebar] : %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem
[HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[WindowsWelcomeCenter] : rundll32.exe oobefldr.dll,ShowWelcomeCenter
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[ehTray.exe] : C:\Windows\ehome\ehTray.exe [21/01/2008 03:50:36]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Windows Defender User Interface] : C:\Program Files\Windows Defender\MSASCui.exe [21/01/2008 03:46:39]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Windows Mail] : C:\Program Files\Windows Mail\WinMail.exe [21/01/2008 03:46:38]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[PrivatVPN] : C:\Program Files (x86)\PrivatVPN\PrivatVPN.exe [21/11/2013 21:29:22]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Spotify Web Helper] : "C:\Users\Steeve\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

¤¤¤¤¤¤¤¤¤¤ | Démarrages registre | Démarrage dossiers

[HKLM64\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AppleSyncNotifier] : C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

¤¤¤¤¤¤¤¤¤¤ | Autres clés

[HKLM\System\CurrentControlSet\Control\SecurityProviders]|[SecurityProviders] : credssp.dll
[HKLM\System\CurrentControlSet\Control\Terminal Server]|[AllowRemoteRPC] : 0
[HKLM\System\CurrentControlSet\Control\Session Manager]|[BootExecute] : autocheck autochk *
OODBS
sdnclean64.exe
[HKLM\System\ControlSet001\Control\Session Manager]|[SetupExecute] :
[HKLM\System\ControlSet001\Control]|[FirmwareBootDevice] : multi(0)disk(0)rdisk(0)partition(1)
[HKLM\System\ControlSet001\Control]|[SystemBootDevice] : multi(0)disk(0)rdisk(0)partition(1)
[HKLM\System\currentcontrolset\control\lsa]|[SecureBoot] : 1
[HKLM\system\currentcontrolset\control\lsa]|[restrictanonymous] : 0
[HKLM\system\currentcontrolset\control\lsa]|[restrictanonymoussam] : 1
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]|[VMApplet] : rundll32 shell32,Control_RunDLL "sysdm.cpl"
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]|[WinStationsDisabled] : 0

¤¤¤¤¤¤¤¤¤¤ | Notify


¤¤¤¤¤¤¤¤¤¤ | SSODL

[HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]|[WebCheck] - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKLM64\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]|[WebCheck] - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

¤¤¤¤¤¤¤¤¤¤ | ShellExecuteHooks


¤¤¤¤¤¤¤¤¤¤ | URLSearchHooks


¤¤¤¤¤¤¤¤¤¤ | Explorer Bars


¤¤¤¤¤¤¤¤¤¤ | IE Extensions

[HKLM\Software\Microsoft\Internet Explorer\Extensions\{0000036B-C524-4050-81A0-243669A86B9F}] :
[HKLM\Software\Microsoft\Internet Explorer\Extensions\{08B0E5C0-4FCB-11CF-AAA5-00401C608501}] :
[HKLM64\Software\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}] :

¤¤¤¤¤¤¤¤¤¤ | Toolbar

[HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[10] : 10
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}] : avast! Online Security : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}] :
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[10] : 10
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[Locked] : 1

¤¤¤¤¤¤¤¤¤¤ | SharedTaskScheduler

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]|[{8C7461EF-2B13-11d2-BE35-3078302C2030}] : Component Categories cache daemon : %SystemRoot%\system32\browseui.dll
[HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]|[{8C7461EF-2B13-11d2-BE35-3078302C2030}] : Component Categories cache daemon : %SystemRoot%\system32\browseui.dll

¤¤¤¤¤¤¤¤¤¤ | SearchScopes


¤¤¤¤¤¤¤¤¤¤ | ElevationPolicy

[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0002df01-0000-0000-c000-000000000046}] - (iexplore.exe) - %ProgramFiles(x86)%\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{003B91A6-61E3-4591-891D-01E94C8CB11E}] - (Silverlight.Configuration.exe) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{054aae20-4bea-4347-8a35-64a533254a9d}] - (tabtip.exe) - %CommonProgramFiles(x86)%\Microsoft Shared\Ink
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a}] - (wpcer.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08f24d68-9087-4b24-81ad-7b34af3e3ed6}] - (DAP.exe) - C:\Program Files (x86)\DAP
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695}] - (winfxdocobj.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{10483e7e-0e8b-4e16-9e77-6be5d991683b}] - (mstsc.exe) - %systemroot%\system32
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1138506a-b949-46a7-b6c0-ee26499fdeaf}] - (wuapp.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130c40f0-1bcb-4852-8b63-291cf90a600b}] - (msdt.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ec76a37-1762-46ff-9b14-765b3e6793be}] - (agcp.exe) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F1E561D-AF17-4510-B996-351BBA0862A7}] - () -
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{26fe7361-bd5a-4dcb-b309-c6f42dde661c}] - (ieinstal.exe) - %ProgramFiles(x86)%\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2C3FAF69-6E33-483B-8291-BD917201109A}] - (companionuser.exe) - C:\Program Files (x86)\Windows Live\Companion\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{380689D0-AFAA-47E6-B80E-A33436FE314B}] - (wlcomm.exe) - C:\Program Files (x86)\Windows Live\Contacts\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3B9A6E32-36C9-4946-B78C-3F58E3785EC1}] - (unpack200.exe) - C:\Program Files (x86)\Java\jre1.6.0\bin
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43ABBB95-C0E9-497B-8BB9-B5FA08861705}] - (wlmail.exe) - C:\Program Files (x86)\Windows Live\Mail\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{50A6102E-D757-409e-97B7-6EA4EEEA5BC3}] - (BookmarkDAV_client.exe) - C:\Program Files (x86)\Common Files\Apple\Internet Services\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6a0490af-eadc-416c-abda-d6146b8ea0ee}] - (DAPupd.exe) - C:\Program Files (x86)\DAP
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6A477AC7-0721-4F67-8C86-2AE4E53A8B11}] - (iLokCom2.exe) - C:\Program Files (x86)\PACE Anti-Piracy\iLok\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}] - (wmplayer.exe) - %ProgramFiles%\Windows Media Player : %SystemRoot%\system32\wmp.dll
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}-32] - (wmplayer.exe) - %ProgramFiles(x86)%\Windows Media Player
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999}] - (iedw.exe) - %ProgramFiles(x86)%\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7aaae723-5fb5-4b2d-9327-75519f336825}] - () -
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7BBC017F-5144-426C-85CD-20AF8F2FFAFE}] - (wlstartup.exe) - C:\Program Files (x86)\Windows Live\Installer\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7eb01fb2-f185-445a-94e4-ec4e1ba2202c}] - (verclsid.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85fc331e-bb64-4c53-ba25-3d8a956c02fd}] - (ctfmon.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}] - (helppane.exe) - C:\Windows
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9019d14b-638d-4383-bb95-441b7f57eafb}] - (wlstartup.exe) - C:\Program Files (x86)\Windows Live\Installer\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a1ad1bbb-3b33-4260-a74c-5fd8bc1479fc}] - (splwow64.exe) - C:\Windows
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a5a2d52a-4944-47c4-a3e0-8bd92e14d953}] - (xpsviewer.exe) - C:\Windows\SysWOW64\xpsviewer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aff735eb-cdf9-4894-aa69-3e3131128618}] - (cmd.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BA8343C6-FA3E-4130-AA27-F5C2D85ACCDE}] - (dtuser.exe) - C:\PROGRA~2\MOVIES~2\SAFETY~1\SRTOOL~1\IE
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D133B285-8A43-4EC7-93BE-9B909C2370F5}] - (msnmsgr.exe) - C:\Program Files (x86)\Windows Live\Messenger\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB9524B3-24F4-48fa-91C5-B8EEF1C0A14F}] - () -
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{dc6bf185-7ae4-444e-8c35-e447b0d2bd1e}] - (notepad.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eee261cc-4b3e-46e7-affb-61f297155bf2}] - (presentationhost.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FAF199D2-BFA7-4394-A4DE-044A08E59B32}] - (FlashUtil32_12_0_0_44_ActiveX.exe) - C:\Windows\SysWOW64\Macromed\Flash
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0002df01-0000-0000-c000-000000000046}] - (iexplore.exe) - %ProgramFiles%\Internet Explorer
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{054aae20-4bea-4347-8a35-64a533254a9d}] - (tabtip.exe) - %CommonProgramFiles%\Microsoft Shared\Ink
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a}] - (wpcer.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695}] - (winfxdocobj.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{10483e7e-0e8b-4e16-9e77-6be5d991683b}] - (mstsc.exe) - %systemroot%\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1138506a-b949-46a7-b6c0-ee26499fdeaf}] - (wuapp.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_8S] - (cnmse8S.exe) - C:\Windows\system32\spool\DRIVERS\x64\3
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130c40f0-1bcb-4852-8b63-291cf90a600b}] - (msdt.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F1E561D-AF17-4510-B996-351BBA0862A7}] - () -
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{26fe7361-bd5a-4dcb-b309-c6f42dde661c}] - (ieinstal.exe) - %ProgramFiles%\Internet Explorer
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}] - (wmplayer.exe) - %ProgramFiles%\Windows Media Player : %SystemRoot%\system32\wmp.dll
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}-32] - (wmplayer.exe) - %ProgramFiles(x86)%\Windows Media Player
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999}] - (iedw.exe) - %ProgramFiles%\Internet Explorer
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7aaae723-5fb5-4b2d-9327-75519f336825}] - () -
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7eb01fb2-f185-445a-94e4-ec4e1ba2202c}] - (verclsid.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85fc331e-bb64-4c53-ba25-3d8a956c02fd}] - (ctfmon.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}] - (helppane.exe) - C:\Windows
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a5a2d52a-4944-47c4-a3e0-8bd92e14d953}] - (xpsviewer.exe) - C:\Windows\SysWOW64\xpsviewer
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5B020FD-E04B-4e67-B65A-E7DEED25B2CF}] - (wisptis.exe) - %SystemRoot%\System32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aff735eb-cdf9-4894-aa69-3e3131128618}] - (cmd.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{dc6bf185-7ae4-444e-8c35-e447b0d2bd1e}] - (notepad.exe) - C:\Windows\System32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eee261cc-4b3e-46e7-affb-61f297155bf2}] - (presentationhost.exe) - C:\Windows\system32
[HKLM64\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FAF199D2-BFA7-4394-A4DE-044A08E59B32}] - (FlashUtil64_12_0_0_44_ActiveX.exe) - C:\Windows\system32\Macromed\Flash
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{06FA95D3-52EC-41FB-BB9D-378A61770FC4}] - (ssvagent.exe) - C:\Program Files (x86)\Java\jre1.6.0_07\bin
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{10A28C26-BAFE-4D12-9492-099350AA7AF0}] - (GoogleToolbarNotifier.exe) - C:\Program Files (x86)\Google\GoogleToolbarNotifier
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4C69D14C-E939-486A-A46E-BA645978B383}] - (GoogleToolbarUser_32.exe) - C:\Program Files (x86)\Google\Google Toolbar
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4DCA6DD5-3524-4C37-B73B-5C08CB740FE2}] - (iLokCom2.exe) - C:\Program Files (x86)\PACE Anti-Piracy\iLok
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6}] - (spotify.exe) - C:\Users\Steeve\AppData\Roaming\Spotify
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{603C4CC9-5DC6-4C44-873F-8281509DF953}] - (Converter.exe) - C:\Program Files (x86)\SPEEDbit Video Downloader
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65468624-CBE3-4358-9596-C6C685B3E1BA}] - (FlashUtil32_11_6_602_180_ActiveX.exe) - C:\Windows\SysWOW64\Macromed\Flash
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89BEB378-5703-4C4A-953D-C11FDEEAA5D6}] - (klwtblfs.exe) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BF113C04-F358-4D64-BCB2-D4D4A18489B9}] - (DAP.exe) - C:\Program Files (x86)\DAP
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C936F5E3-0C43-4854-BCF6-C61089BCFA6E}] - (FlashUtil32_11_7_700_202_ActiveX.exe) - C:\Windows\SysWOW64\Macromed\Flash
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A}] - (chrome_launcher.exe) - C:\Users\Steeve\AppData\Local\Google\Chrome\Application\14.0.835.202
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EC0FAA61-3910-47EE-B4B6-48DA3C3DD461}] - (companionuser.exe) - C:\Program Files (x86)\Windows Live\Companion
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F99AAFE0-0B2F-4a4d-8667-D2A0122081A5}] - (getPlus_HelperSvc.exe) - C:\Program Files (x86)\NOS\bin\

¤¤¤¤¤¤¤¤¤¤ | Ext\PreApproved

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\3E4D4F1C-2AEE-11D1-9D3D-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\435899C9-44AB-11D1-AF00-080036234103]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\4F664F91-FF01-11D0-8AED-00C04FD7B597]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\65303443-AD66-11D1-9D65-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\92337A8C-E11D-11D0-BE48-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\C3701884-B39B-11D1-9D68-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{166B1BCA-3F9C-11CF-8075-444553540000}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{19916E01-B44E-4E31-94A4-4696DF46157B}] : C:\Windows\SysWOW64\icardie.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{233C1507-6A77-46A4-9443-F871F945D258}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3050F819-98B5-11CF-BB82-00AA00BDCE0B}] : C:\Windows\SysWOW64\mshtmled.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{312B9567-734D-4a21-A8AA-F319BD1AAA6F}] : C:\Program Files (x86)\Windows Live\Messenger\msgsc.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{333C7BC4-460F-11D0-BC04-0080C7055A83}] : C:\Windows\SysWOW64\tdc.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4063BE15-3B08-470D-A0D5-B37161CFFD69}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4F07F79F-087F-42cf-8B36-7A88D06088E9}] : C:\Program Files (x86)\Windows Live\Messenger\msgsc.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5852F5ED-8BF4-11D4-A245-0080C6F74284}] : C:\Program Files (x86)\Java\jre7\bin\wsdetect.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{64AB4BB7-111E-11d1-8F79-00C04FC2FBE1}] : C:\Windows\SysWOW64\ieframe.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] : %SystemRoot%\system32\wmp.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{760C4B83-E211-11D2-BF3E-00805FBE84A6}] : C:\Windows\SysWOW64\msnetobj.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{867E13F2-7F31-44FB-AC97-CD38E0DC46EF}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8AD9C840-044E-11D1-B3E9-00805F499D93}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8E4062D9-FE1B-4b9e-AA16-5E8EEF68F48E}] : C:\Windows\SysWOW64\RegCtrl.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A9FC132B-096D-460B-B7D5-1DB0FAE0C062}] : C:\Windows\SysWOW64\msnetobj.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CA8A9780-280D-11CF-A24D-444553540000}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBB}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA}] : C:\Windows\SysWOW64\deployJava1.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBC}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CB927D12-4FF7-4A9E-A169-56E4B8A75598}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D2517915-48CE-4286-970F-921E881B8C5C}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D27CDB6E-AE6D-11cf-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_44.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D719897A-B07A-4C0C-AEA9-9B663A28DFCB}] : C:\Program Files (x86)\iTunes\ITDetector.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DFEAF541-F3E1-4c24-ACAC-99C30715084A}] : c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E13AAC70-70AE-4988-808C-B267F2C20E79}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E1771B7F-98BE-407F-BA67-AA16ADA5D0C5}] : C:\Program Files (x86)\Windows Live\Messenger\msgsc.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EE09B103-97E0-11CF-978F-00A02463E06F}] : C:\Windows\SysWOW64\scrrun.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F06608C7-1874-4EEA-B3B2-DF99EBB144B8}] : C:\Program Files (x86)\Windows Live\Messenger\msgsc.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\3E4D4F1C-2AEE-11D1-9D3D-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\435899C9-44AB-11D1-AF00-080036234103]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\4F664F91-FF01-11D0-8AED-00C04FD7B597]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\65303443-AD66-11D1-9D65-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\92337A8C-E11D-11D0-BE48-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\C3701884-B39B-11D1-9D68-00C04FC30DF6]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{166B1BCA-3F9C-11CF-8075-444553540000}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{19916E01-B44E-4E31-94A4-4696DF46157B}] : C:\Windows\SysWOW64\icardie.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{233C1507-6A77-46A4-9443-F871F945D258}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3050F819-98B5-11CF-BB82-00AA00BDCE0B}] : C:\Windows\SysWOW64\mshtmled.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{333C7BC4-460F-11D0-BC04-0080C7055A83}] : C:\Windows\SysWOW64\tdc.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4063BE15-3B08-470D-A0D5-B37161CFFD69}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{64AB4BB7-111E-11d1-8F79-00C04FC2FBE1}] : C:\Windows\SysWOW64\ieframe.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] : %SystemRoot%\system32\wmp.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{760C4B83-E211-11D2-BF3E-00805FBE84A6}] : C:\Windows\SysWOW64\msnetobj.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{867E13F2-7F31-44FB-AC97-CD38E0DC46EF}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8AD9C840-044E-11D1-B3E9-00805F499D93}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8E4062D9-FE1B-4b9e-AA16-5E8EEF68F48E}] : C:\Windows\SysWOW64\RegCtrl.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A9FC132B-096D-460B-B7D5-1DB0FAE0C062}] : C:\Windows\SysWOW64\msnetobj.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CA8A9780-280D-11CF-A24D-444553540000}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-DEC7-0000-0000-ABCDEFFEDCBA}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA}] : C:\Windows\SysWOW64\deployJava1.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CFCDAA03-8BE4-11cf-B84B-0020AFBBCCFA}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D2517915-48CE-4286-970F-921E881B8C5C}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D27CDB6E-AE6D-11cf-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_44.ocx
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EE09B103-97E0-11CF-978F-00A02463E06F}] : C:\Windows\SysWOW64\scrrun.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}]

¤¤¤¤¤¤¤¤¤¤ | Ext\Settings

[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1E54D648-B804-468D-BC78-4AFFED8E262F}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{32004B8A-44A9-43E7-84E9-808838809519}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{867E13F2-7F31-44FB-AC97-CD38E0DC46EF}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] : C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{D27CDB6E-AE6D-11CF-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_44.ocx
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}] : C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{FFCB3198-32F3-4E8B-9539-4324694ED663}] : C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker32.dll

¤¤¤¤¤¤¤¤¤¤ | Ext\Stats

[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00EF2092-6AC5-47C0-BD25-CF2D5D657FEB}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{166B1BCA-3F9C-11CF-8075-444553540000}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{17492023-C23A-453E-A040-C7C580BBF700}] : C:\Windows\SysWow64\LegitCheckControl.DLL
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{19916E01-B44E-4E31-94A4-4696DF46157B}] : C:\Windows\SysWOW64\icardie.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A6FE369-F28C-4AD9-A3E6-2BCB50807CF1}] : C:\Program Files (x86)\Internet Explorer\iedvtool.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1E54D648-B804-468D-BC78-4AFFED8E262F}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{22D6F312-B0F6-11D0-94AB-0080C74C7E95}] : C:\Windows\SysWOW64\wmpdxm.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25336920-03F9-11CF-8FD0-00AA00686F13}] : C:\Windows\SysWOW64\mshtml.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2665693B-C4F3-434B-83DB-7574CF50C8B7}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2933BF90-7B36-11D2-B20E-00C04F983E60}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2C640A95-3210-48F5-BD5A-EF2CD5553385}] : C:\Program Files (x86)\PACE Anti-Piracy\iLok\PacePlugin.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{312B9567-734D-4A21-A8AA-F319BD1AAA6F}] : C:\Program Files (x86)\Windows Live\Messenger\msgsc.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4063BE15-3B08-470D-A0D5-B37161CFFD69}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{48123BC4-99D9-11D1-A6B3-00C04FD91555}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{57BDEE5A-1E29-4CFD-AEE7-EF32118EB6D6}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5852F5ED-8BF4-11D4-A245-0080C6F74284}] : C:\Program Files (x86)\Java\jre7\bin\wsdetect.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{67DABFBF-D0AB-41FA-9C46-CC0F21721616}] : C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6BF52A52-394A-11D3-B153-00C04F79FAA6}] : %SystemRoot%\system32\wmp.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{867E13F2-7F31-44FB-AC97-CD38E0DC46EF}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}] : C:\Windows\SysWOW64\ieframe.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{88D969C0-F192-11D4-A65F-0040963251E5}] : C:\Windows\SysWOW64\msxml4.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{88D969C5-F192-11D4-A65F-0040963251E5}] : C:\Windows\SysWOW64\msxml4.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{88D96A05-F192-11D4-A65F-0040963251E5}] : %SystemRoot%\System32\msxml6.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{88D96A06-F192-11D4-A65F-0040963251E5}] : %SystemRoot%\System32\msxml6.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{88D96A08-F192-11D4-A65F-0040963251E5}] : %SystemRoot%\System32\msxml6.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{88D96A0A-F192-11D4-A65F-0040963251E5}] : %SystemRoot%\System32\msxml6.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8AD9C840-044E-11D1-B3E9-00805F499D93}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9BE31822-FDAD-461B-AD51-BE1D1C159921}] : C:\Program Files (x86)\VideoLAN\VLC\axvlc.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9F1C11AA-197B-4942-BA54-47A8489BB47F}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}] : C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA8A9780-280D-11CF-A24D-444553540000}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CAFEEFAC-DEC7-0000-0001-ABCDEFFEDCBA}] : C:\Windows\SysWOW64\deployJava1.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD3AFA73-B84F-48F0-9393-7EDC34128127}] : %SystemRoot%\system32\wmp.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD3AFA74-B84F-48F0-9393-7EDC34128127}] : %SystemRoot%\system32\wmp.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD3AFA76-B84F-48F0-9393-7EDC34128127}] : %SystemRoot%\system32\wmp.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CD3AFA8F-B84F-48F0-9393-7EDC34128127}] : %SystemRoot%\system32\wmp.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CFBFAE00-17A6-11D0-99CB-00C04FD64497}] : C:\Windows\SysWOW64\ieframe.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA}]
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2517915-48CE-4286-970F-921E881B8C5C}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_12_0_0_44.ocx
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D719897A-B07A-4C0C-AEA9-9B663A28DFCB}] : C:\Program Files (x86)\iTunes\ITDetector.ocx
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}] : C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21}] : C:\Program Files (x86)\QuickTime\QTSystem\QuickTimeCheck.ocx
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DFEAF541-F3E1-4C24-ACAC-99C30715084A}] : c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{E1771B7F-98BE-407F-BA67-AA16ADA5D0C5}] : C:\Program Files (x86)\Windows Live\Messenger\msgsc.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{E23FE9C6-778E-49D4-B537-38FCDE4887D8}] : C:\Program Files (x86)\VideoLAN\VLC\axvlc.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{ED8C108E-4349-11D2-91A4-00C04F7969E8}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F5078F32-C551-11D3-89B9-0000F81FE221}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F5078F35-C551-11D3-89B9-0000F81FE221}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F6D90F11-9C73-11D3-B32E-00C04F990BB4}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F6D90F16-9C73-11D3-B32E-00C04F990BB4}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFCB3198-32F3-4E8B-9539-4324694ED663}] : C:\Program Files (x86)\AVAST Software\avast! Ad Blocker IE\Adblocker32.dll

¤¤¤¤¤¤¤¤¤¤ | Browser Helper Objects


¤¤¤¤¤¤¤¤¤¤ | Chrome

C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\fplhdcjmbpfkejbhngmlngaecbjmoimd
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
C:\Users\Steeve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp]
[HKLM\Software\Google\Chrome\Extensions\aaaaimdcedbpbcjjbbnfcbbjcngmomic]
[HKLM\Software\Google\Chrome\Extensions\fplhdcjmbpfkejbhngmlngaecbjmoimd]
[HKLM\Software\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
[HKLM\Software\Google\Chrome\Extensions\kbhplonhjleiopohgmppianogioknked]

¤¤¤¤¤¤¤¤¤¤ | Firefox

C:\Users\Steeve\AppData\Roaming\Mozilla\Firefox\Profiles\fcjwrg9w.default-1389549710114\extensions\29abb661-0efc-4f64-8a89-b11430d434c4@9678608e-dc95-42b0-8db0-4ce126239776.com
C:\Program Files (x86)\Mozilla Firefox\extensions\adblocker@avast.com.xpi

[HKLM\Software\mozilla\Firefox\Extensions]|[{20a82645-c095-46ed-80e3-08825760534b}]
[HKLM\Software\mozilla\Firefox\Extensions]|[wrc@avast.com]
[HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer] - (Adobe® Flash® Player 12.0.0.44 Plugin) : C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_44.dll
[HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=] - (Module iTunes Detector) :
[HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0] - () : C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
[HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0] - (DivX Web Player) : C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll
[HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0] - (DivX® Player Plugin for VOD Content) : C:\Program Files (x86)\DivX\DivX Player\npDivxPlayerPlugin.dll
[HKLM\Software\MozillaPlugins\@ilok.com/iLokHelper,version=3.1.0.7] - (PACE iLok Client Helper Plugin) : C:\Program Files (x86)\PACE Anti-Piracy\iLok\NPPaceILok.dll
[HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2] - (Java™ Deployment Toolkit) : C:\Windows\SysWOW64\npDeployJava1.dll
[HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2] - (Oracle® Next Generation Java™ Plug-In) : C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
[HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] - (Ag Player Plugin) : c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
[HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5] - (Windows Presentation Foundation plug-in for Mozilla browsers) : c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKLM\Software\MozillaPlugins\@videolan.org/vlc;version=0.8.6i] - (VLC Multimedia Plugin) : C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKLM\Software\MozillaPlugins\Adobe Reader] - (Handles PDFs in-place in Firefox) : C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
[HKLM64\Software\MozillaPlugins\@adobe.com/FlashPlayer] - (Adobe® Flash® Player 11.9.900.170 Plugin) : C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\Software\MozillaPlugins\ubisoft.com/uplaypc] - () : C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll

¤¤¤¤¤¤¤¤¤¤ | DNS

[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters]|[DhcpNameServer] : 192.168.0.254
[HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{3B68449E-9539-492A-A261-7DA7816C806A}]|[DhcpNameServer] : 8.8.8.8
[HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{E06EB42A-86F8-4711-A272-B46C748D0A47}]|[DhcpNameServer] : 192.168.0.254
[HKLM\SYSTEM\ControlSet009\services\Tcpip\Parameters\Interfaces\{3B68449E-9539-492A-A261-7DA7816C806A}]|[DhcpNameServer] : 8.8.8.8
[HKLM\SYSTEM\ControlSet009\services\Tcpip\Parameters\Interfaces\{E06EB42A-86F8-4711-A272-B46C748D0A47}]|[DhcpNameServer] : 192.168.0.254
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{3B68449E-9539-492A-A261-7DA7816C806A}]|[DhcpNameServer] : 8.8.8.8
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{E06EB42A-86F8-4711-A272-B46C748D0A47}]|[DhcpNameServer] : 192.168.0.254

¤¤¤¤¤¤¤¤¤¤ | ActiveX

[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - (WMPACCESS) : 11,0,6002,18311
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{26923b43-4d38-484f-9b9e-de460746276c}] - (IEACCESS) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - (BRANDING.CAB) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}] - (JAVAVM) : 5,0,5000,0
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - () : 11,0,6002,18311
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - (Theme Component) : 1,1,1,9
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{3af36230-a269-11d1-b5bf-0000f8051515}] - (MobilePk) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - (MailNews) : 6,0,6002,18005
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}] - (DirectDrawEx) : 4,71,1113,0
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{45ea75a0-a269-11d1-b5bf-0000f8051515}] - (HelpCont) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}] - (MSVBScript) : 5,6,0,8833
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}] - (GenSetup) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{630b1da0-b465-11d1-9948-00c04f98bbc9}] - (ExtraPack) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - (Microsoft Windows Media Player) : 11,0,6000,6324
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}] - (MSN_Auth) : 4,9,9,2
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] - () : 6,0,6002,18324
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{7C028AF8-F614-47B3-82DA-BA94E41B1089}] - (.NETFramework) : 2,0,50727,0
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - (IE4_SHELLID) : 6,0,6002,18646
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - (BASEIE40_W2K) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - (DOTNETFRAMEWORKS) :
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{9381D8F2-0288-11D0-9501-00AA00B911A5}] - (Tridata) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD}] - (.NETFramework) : 2,0,50727,1
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{C9E9A340-D1F1-11D0-821E-444553540600}] - (Fontcore) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{D27CDB6E-AE6D-11CF-96B8-444553540000}] - (Flash) : 10.0.32.18
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}] - (HTMLHelp) : 6,1,7601,16978
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}] - (ADSI) : 5,0,00,0
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}] - (.NETFramework) : 4,0,30319,0
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - (WMPACCESS) : 11,0,6002,18311
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{26923b43-4d38-484f-9b9e-de460746276c}] - (IEACCESS) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - (BRANDING.CAB) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] - () : 11,0,6001,7000
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - () : 11,0,6002,18311
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - (Theme Component) : 1,1,1,9
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{3af36230-a269-11d1-b5bf-0000f8051515}] - (MobilePk) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - (MailNews) : 6,0,6002,18005
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}] - () : 11,0,6001,7000
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}] - (DirectDrawEx) : 4,71,1113,0
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{45ea75a0-a269-11d1-b5bf-0000f8051515}] - (HelpCont) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}] - (MSVBScript) : 5,6,0,8833
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}] - (GenSetup) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{630b1da0-b465-11d1-9948-00c04f98bbc9}] - (ExtraPack) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - (Microsoft Windows Media Player) : 11,0,6001,7000
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}] - (MSN_Auth) : 4,9,9,2
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] - () : 6,0,6002,18324
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - (IE4_SHELLID) : 6,0,6002,18646
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - (BASEIE40_W2K) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - (DOTNETFRAMEWORKS) :
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{9381D8F2-0288-11D0-9501-00AA00B911A5}] - (Tridata) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{C9E9A340-D1F1-11D0-821E-444553540600}] - (Fontcore) : 9,0,8112,16421
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{CDD7975E-60F8-41d5-8149-19E51D6F71D0}] - (Windows Movie Maker v2.1) : 2,1,4025,0
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}] - (HTMLHelp) : 6,1,7601,16978
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}] - (ADSI) : 5,0,00,0
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}] - (.NETFramework) : 4,0,30319,0
[HKLM64\SOFTWARE\Microsoft\Active Setup\Installed Components\{FEBEF00C-046D-438D-8A88-BF94A6C9E703}] - (.NETFramework) : 2,0,50727,0
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{26923b43-4d38-484f-9b9e-de460746276c}] - () : 9,0,8112,16421
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - () : 9,0,8112,16421
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] - () : 11,0,6001,7000
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - () : 11,0,6001,7000
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - () : 1,1,1,9
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - () : 6,0,6002,18005
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}] - () : 11,0,6001,7000
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - () : 11,0,6001,7000
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - () : 6,0,6002,18646
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - () : 9,0,8112,16421
[HKU\S-1-5-21-1720773443-3340476489-2937632913-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - () :
[HKU\S-1-5-18\SOFTWARE\Microsoft\Active Setup\Installed Components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] - () : 11,0,6000,6324
[HKU\S-1-5-18\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - () : 11,0,6000,6324
[HKU\S-1-5-18\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}] - () : 11,0,6000,6324
[HKU\S-1-5-18\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - () : 11,0,6000,6324

[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}] - (QuickTime Object) - http://appldnld.apple.com.edgesuite.net ... plugin.cab | [HKCR\CLSID\{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}] : C:\Program Files (x86)\QuickTime\QTPlugin.ocx
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{17492023-C23A-453E-A040-C7C580BBF700}] - (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/ ... ontrol.cab | [HKCR\CLSID\{17492023-C23A-453E-A040-C7C580BBF700}] : C:\Windows\SysWow64\LegitCheckControl.DLL
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1E54D648-B804-468d-BC78-4AFFED8E262F}] - () - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{2665693B-C4F3-434B-83DB-7574CF50C8B7}] - () - http://www.kaspersky.com/downloads/misc ... finder.cab
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{867E13F2-7F31-44FB-AC97-CD38E0DC46EF}] - () - http://www.ma-config.com/plugins/MaConfig_5_2_2_0.cab
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}] - (Java Plug-in 10.45.2) - http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab | [HKCR\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}] - () - http://fpdownload.macromedia.com/get/fl ... rashim.cab
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}] - (Java Plug-in 1.6.0) - http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab | [HKCR\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}] - (Java Plug-in 10.45.2) - http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab | [HKCR\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}] : C:\Program Files (x86)\Java\jre7\bin\ssv.dll
[HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}] - () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

¤¤¤¤¤¤¤¤¤¤ | Upgradecodes

[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\000021509B0000000100000000F01FEC]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\022BA32B881CF1D43A31FA4145227558]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\04674484F204D5C4D8048C6D1659EFDF]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\07824487A2BA5B03C96C48E093C23AE6]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\08D509FB22F83444B92CBDDBF7EEC1C4]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\0C02866596E20E1128D16590FD7D0258]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\0C2AD661603B76B44A458BA0D3BB8890]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\0F2F141C674CF6F459DFC733D6298F6A]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\0F5F61C73107FC3409A85B0584ADCF14]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1523EA646D34FC14C8FD9E203C58611D]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1620D6F3E198C5943858290CF10BE7A5]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\20133B77FD483a9499E562545F4A5738]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\20703093AB0FDA44DAC6A37FD41D33E3]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\25DEF9C37D49FD11DBB25E23FD7D0258]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\29D990C5359253D40AC396307B716A7D]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\2C48A7582A5235A48B9A473820253830]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\2CDBFA4009AF52D30B786864ACCFC640]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\2F4B3AF466F94BC3D9BB468A50EAA633]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\3E327EC7B65EC234F942870C0606545A]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\3E8314AA5D9065242970D6BD671D9255]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\3F71084C6D0B4A447B6E1B08A23EA05F]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\41A387AA3A7A33D3590FA953D1350011]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\42A04066356B7494F8822313FE41175B]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\4AE2841C3D7016247914C7DE6E8A2CA5]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\4E9641E9107F74FFD70FB770A9E35168]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\51186FE2150469B46BE071FCBF75B404]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\515E409F632745941A9B2E0A732C22C1]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\53E03BD32DE82AE4AAD1C4D7D4579FB3]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\54ABCED5EF628114896130E274C4E365]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5D029AD8C14C0E24FB1378AB9489E44E]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5F1A43BBAC4B8C747A761E4DD746612F]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\61A06632C8ACCC042938A4584BF90122]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\632F482003F5AF04B88EDE3C6926F46A]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\63CB2DC37781A294CBB7F59F4860642C]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\64FC63371376DD111877016C658D5939]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\66647FE0263B86349B77598DB147B66B]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\66EDAE6A0000000084E4E7A854000000]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\6C5ADB75C34456D42B338232391207FF]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\720FA4676FF3DC74194C0EBFAB385A03]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7457D761CA73AEB42BE4419D8110A96D]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7E373E855D6C196488F527D1B3139781]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\83354448BDA7FAF45B3927186F13D766]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\8B008651EDDE5B948ABE4A1E44D8A82E]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\8DE056B6F612326488BCFE08B5CD5AE2]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\8F613925C106BA84AB6F9D0E99838D3D]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\92091D8AC5E822E408118470F0E997E6]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\9330EBCD3D02B4D408E3E752C1221BDA]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\99FB8B638D510AE4B8BBF2CC10CAB321]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\9A320D8E273407039B163D22A4E107D4]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\9B390E389C119E63FB6CD9E6A9EA0317]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\9C2E0170AB89ED11698100F0EF79B51A]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\9DD53E019628E1F3794F990FADC3C2CE]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\9E15C2C721875C408ECA676F9E436070]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\9FDC79762E93619449B88D15A45FAD8A]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A1F7F49BAA23B8442B251DC4C14A6E9B]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A2D1F4F1AD9DFC2399908484D50AD65D]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A302263E515560A409A259FE53DA2584]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A5CCAAC40F5B69B47777ACF82566467C]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A9513C995E4C6E2389AFA74CB5BC982C]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\AA5D9C68C00F12943B2F6CA09FE28244]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\B8C7D62AD5782E84EB1D178662D820A2]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA9B53C73EC281C4EBC7B579AE80E93B]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BEB810B36D12A324E810FA6A38A12C9A]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\C1B3BB13D3A586E4281AC361F6303C97]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\C7444484EE4D2D2409B08C26ADC4576B]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\C84960046A129114ABC985081FDFBB50]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\CB69E0505708DA94F82302685BD81253]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\D1D63269B5AA3B143BDEC6BEE3AB1F77]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\D2F954888FC085546BBAE6916BCA430B]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\D450EF6053B159047ABC65EAB732348C]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\D61848C2FBD4DA54F96FEE7D19E33939]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\D65CFA4F547AB1E4481E5C19D9FF7C6E]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\DF3A0880E1A25C340B029039E070D543]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\DFE13B7A64E06F93D920B9B2004D2258]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\E16E8351484CDD042A735B1145A6B6B1]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\E30907022FFCAA846A9378B4CD96FD0A]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\E6560FC58B3FBD11AB1808E4658D5939]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\EB4F4780F3FEC9A4199BB7697FDD95DF]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\EFC7D16F46CDD174A82CA378EDE6BB9C]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F0076E7141DFCA14C8991162CFF67297]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F603C2ED760AFE838BC630EDB430219F]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\FBBFC8CBC0DD49F489741868BCD06C79]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\FC4E44DD52E725B479AF545C356FC331]
[HKLM64\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\FDD54ADF71E8F6333ADE53B6B7C786A8]

Re,

Non faut l'héberger : http://www.forum-entraide-informatique. ... m-tutoriel

Gabriel.

Ok. Merci

http://cjoint.com/?DBuqyGWTPrk

Re,

Passe Shortcut_Module et poste le rapport : http://www.forum-entraide-informatique. ... e-tutoriel

Gabriel.

¤¤¤¤¤¤¤¤¤¤ | Shortcut_Module | g3n-h@ckm@n | 20.02.2014.1

¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ - Start 17:33:14 - 20/02/2014

Mis à jour le : 20/02/2014 | 15.15 par g3n-h@ckm@n

Contact : http://www.sosvirus.net

Boot : Normal

Système : Windows (TM) Vista Ultimate (64 bits) Service Pack 2

Mémoire RAM = Total (MB) : 2816 | Libre (MB) : 627
Pagefile = Total (MB) : 3266 | Libre (MB) : 1180
Virtuelle = Total (MB) : 4194 | Libre (MB) : 4076

¤¤¤¤¤¤¤¤¤¤ | Mises à jour Windows

Aucune mise à jour détectée !!!


124 | C:\Windows\system32\nvvsvc.exe (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 331.82.) - (8.17.13.3182) - "C:\Windows\system32\nvvsvc.exe"
328 | C:\Windows\system32\svchost.exe (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.0.6001.18000) - C:\Windows\system32\svchost.exe -k rpcss
1092 | C:\Windows\system32\SLsvc.exe (.Microsoft Corporation - Service de gestion des licences Microsoft.) - (6.0.6002.18005) - C:\Windows\system32\SLsvc.exe
1188 | C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.3182) - "C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
1808 | C:\Windows\system32\taskeng.exe (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.0.6002.18342) - taskeng.exe {965A8F1D-5A81-4546-BA9F-86947EB4829C}
1872 | C:\Windows\System32\spoolsv.exe (.Microsoft Corporation - Application sous-système spouleur.) - (6.0.6002.18294) - C:\Windows\System32\spoolsv.exe
1464 | C:\Program Files\Bonjour\mDNSResponder.exe (.Apple Inc. - Bonjour Service.) - (3.0.0.10) - "C:\Program Files\Bonjour\mDNSResponder.exe"
552 | C:\PROGRA~2\AVANQU~1\Fix-It\mxtask.exe (.Avanquest Software - MXTask Background Service.) - (10.3.3.4) - C:\PROGRA~2\AVANQU~1\Fix-It\mxtask.exe -Service
1924 | C:\Windows\Explorer.EXE (.Microsoft Corporation - Explorateur Windows.) - (6.0.6002.18005) - C:\Windows\Explorer.EXE
1444 | C:\Program Files\ma-config.com\MaConfigAgent.exe (.CybelSoft - Service de détection matériel.) - (7.0.0.6) - "C:\Program Files\ma-config.com\MaConfigAgent.exe"
732 | C:\PROGRA~2\AVANQU~1\Fix-It\mxtask2.exe (.Avanquest Software - MXTask Background User Process.) - (10.3.3.4) - C:\PROGRA~2\AVANQU~1\Fix-It\mxtask2.exe -MXUSER
588 | C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe (.Nero AG - Nero BackItUp.) - (3.1.0.0) - "C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe"
2088 | C:\Program Files\OO Software\Defrag\oodag.exe (.OO Software GmbH - OO Defrag Agent (x64).) - (14.0.145.0) - "C:\Program Files\OO Software\Defrag\oodag.exe"
2148 | C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe (.PACE Anti-Piracy, Inc. - PACE License Support Service.) - (1.2.0.15555) - "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe"
2204 | C:\Program Files (x86)\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe (.Realtek - RtlService MFC Application.) - (700.1004.1207.2009) - "C:\Program Files (x86)\REALTEK\RTL8187B Wireless LAN Utility\RtlService.exe"
2320 | C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe (.TuneUp Software - TuneUp Utilities Service.) - (9.0.4200.55) - "C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe"
2392 | C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4232.0) - "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
2456 | C:\Windows\system32\SearchIndexer.exe (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.6002.18005) - C:\Windows\system32\SearchIndexer.exe /Embedding
2784 | C:\Windows\system32\taskeng.exe (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.0.6002.18342) - taskeng.exe {538EB6E6-0D69-477D-9CAB-6E15659E4EF1}
2012 | C:\Windows\system32\SearchProtocolHost.exe (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.6002.18005) - "C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe2_ Global\UsGthrCtrlFltPipeMssGthrPipe2 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
1608 | C:\Program Files (x86)\Common Files\AntiVirus\SBAMSvc.exe (.Sunbelt Software - Sunbelt Software Anti Malware Service.) - (3.1.2838.0) - "C:\Program Files (x86)\Common Files\AntiVirus\SBAMSvc.exe"
2064 | C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe (.NVIDIA Corporation - NVIDIA NvTmru Application.) - (9.3.21.0) - "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
2528 | C:\Windows\ehome\ehtray.exe (.Microsoft Corporation - Media Center Tray Applet.) - (6.0.6001.18000) - "C:\Windows\ehome\ehtray.exe"
3208 | C:\Users\Steeve\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (.Spotify Ltd - SpotifyWebHelper.) - (0.9.7.16) - "C:\Users\Steeve\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
3288 | C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe (.Analog Devices, Inc. - SMax4PNP.) - (6.1.6000.81) - "C:\Program Files (x86)\Analog Devices\Core\smax4pnp.exe"
900 | C:\Windows\system32\wbem\unsecapp.exe (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (6.0.6001.18000) - C:\Windows\system32\wbem\unsecapp.exe -Embedding
4936 | C:\Windows\system32\conime.exe (.Microsoft Corporation - Console IME.) - (6.0.6002.18005) - C:\Windows\system32\conime.exe
1388 | C:\Windows\SysWOW64\ctfmon.exe (.Microsoft Corporation - Chargeur CTF.) - (6.0.6000.16386) - ctfmon.exe
3248 | C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.3182) - "C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
3196 | C:\Program Files\Internet Explorer\iexplore.exe (.Microsoft Corporation - Internet Explorer.) - (9.0.8112.16533) - "C:\Program Files\Internet Explorer\iexplore.exe"
4352 | C:\Program Files (x86)\Winamp\winamp.exe (.Nullsoft, Inc. - Winamp.) - (5.6.3.3235) - "C:\Program Files (x86)\Winamp\winamp.exe"
492 | C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe (.Last.fm - Last.fm.) - (2.1.36.0) - "C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe" --tray

¤¤¤¤¤¤¤¤¤¤ | Services


¤¤¤¤¤¤¤¤¤¤ | Hosts

C:\Windows\System32\Drivers\etc\hosts : Remis a zéro avec succès

¤¤¤¤¤¤¤¤¤¤ | Registre


¤¤¤¤¤¤¤¤¤¤ | Dossiers